1 | #include <machine/rtems-bsd-user-space.h> |
---|
2 | |
---|
3 | /* $OpenBSD: pfctl_osfp.c,v 1.14 2006/04/08 02:13:14 ray Exp $ */ |
---|
4 | |
---|
5 | /* |
---|
6 | * Copyright (c) 2003 Mike Frantzen <frantzen@openbsd.org> |
---|
7 | * |
---|
8 | * Permission to use, copy, modify, and distribute this software for any |
---|
9 | * purpose with or without fee is hereby granted, provided that the above |
---|
10 | * copyright notice and this permission notice appear in all copies. |
---|
11 | * |
---|
12 | * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES |
---|
13 | * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF |
---|
14 | * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR |
---|
15 | * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES |
---|
16 | * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN |
---|
17 | * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF |
---|
18 | * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. |
---|
19 | */ |
---|
20 | |
---|
21 | #include <rtems/bsd/sys/types.h> |
---|
22 | #include <sys/ioctl.h> |
---|
23 | #include <sys/socket.h> |
---|
24 | |
---|
25 | #include <net/if.h> |
---|
26 | #include <net/pfvar.h> |
---|
27 | |
---|
28 | #include <netinet/in_systm.h> |
---|
29 | #include <netinet/ip.h> |
---|
30 | #include <netinet/ip6.h> |
---|
31 | |
---|
32 | #include <ctype.h> |
---|
33 | #include <err.h> |
---|
34 | #include <errno.h> |
---|
35 | #include <stdio.h> |
---|
36 | #include <stdlib.h> |
---|
37 | #include <string.h> |
---|
38 | |
---|
39 | #include "pfctl_parser.h" |
---|
40 | #include "pfctl.h" |
---|
41 | |
---|
42 | #ifndef MIN |
---|
43 | # define MIN(a,b) (((a) < (b)) ? (a) : (b)) |
---|
44 | #endif /* MIN */ |
---|
45 | #ifndef MAX |
---|
46 | # define MAX(a,b) (((a) > (b)) ? (a) : (b)) |
---|
47 | #endif /* MAX */ |
---|
48 | |
---|
49 | |
---|
50 | #if 0 |
---|
51 | # define DEBUG(fp, str, v...) \ |
---|
52 | fprintf(stderr, "%s:%s:%s " str "\n", (fp)->fp_os.fp_class_nm, \ |
---|
53 | (fp)->fp_os.fp_version_nm, (fp)->fp_os.fp_subtype_nm , ## v); |
---|
54 | #else |
---|
55 | # define DEBUG(fp, str, v...) ((void)0) |
---|
56 | #endif |
---|
57 | |
---|
58 | |
---|
59 | struct name_entry; |
---|
60 | LIST_HEAD(name_list, name_entry); |
---|
61 | struct name_entry { |
---|
62 | LIST_ENTRY(name_entry) nm_entry; |
---|
63 | int nm_num; |
---|
64 | char nm_name[PF_OSFP_LEN]; |
---|
65 | |
---|
66 | struct name_list nm_sublist; |
---|
67 | int nm_sublist_num; |
---|
68 | }; |
---|
69 | struct name_list classes = LIST_HEAD_INITIALIZER(&classes); |
---|
70 | int class_count; |
---|
71 | int fingerprint_count; |
---|
72 | |
---|
73 | void add_fingerprint(int, int, struct pf_osfp_ioctl *); |
---|
74 | struct name_entry *fingerprint_name_entry(struct name_list *, char *); |
---|
75 | void pfctl_flush_my_fingerprints(struct name_list *); |
---|
76 | char *get_field(char **, size_t *, int *); |
---|
77 | int get_int(char **, size_t *, int *, int *, const char *, |
---|
78 | int, int, const char *, int); |
---|
79 | int get_str(char **, size_t *, char **, const char *, int, |
---|
80 | const char *, int); |
---|
81 | int get_tcpopts(const char *, int, const char *, |
---|
82 | pf_tcpopts_t *, int *, int *, int *, int *, int *, |
---|
83 | int *); |
---|
84 | void import_fingerprint(struct pf_osfp_ioctl *); |
---|
85 | const char *print_ioctl(struct pf_osfp_ioctl *); |
---|
86 | void print_name_list(int, struct name_list *, const char *); |
---|
87 | void sort_name_list(int, struct name_list *); |
---|
88 | struct name_entry *lookup_name_list(struct name_list *, const char *); |
---|
89 | |
---|
90 | /* Load fingerprints from a file */ |
---|
91 | int |
---|
92 | pfctl_file_fingerprints(int dev, int opts, const char *fp_filename) |
---|
93 | { |
---|
94 | FILE *in; |
---|
95 | char *line; |
---|
96 | size_t len; |
---|
97 | int i, lineno = 0; |
---|
98 | int window, w_mod, ttl, df, psize, p_mod, mss, mss_mod, wscale, |
---|
99 | wscale_mod, optcnt, ts0; |
---|
100 | pf_tcpopts_t packed_tcpopts; |
---|
101 | char *class, *version, *subtype, *desc, *tcpopts; |
---|
102 | struct pf_osfp_ioctl fp; |
---|
103 | |
---|
104 | pfctl_flush_my_fingerprints(&classes); |
---|
105 | |
---|
106 | if ((in = pfctl_fopen(fp_filename, "r")) == NULL) { |
---|
107 | warn("%s", fp_filename); |
---|
108 | return (1); |
---|
109 | } |
---|
110 | class = version = subtype = desc = tcpopts = NULL; |
---|
111 | |
---|
112 | if ((opts & PF_OPT_NOACTION) == 0) |
---|
113 | pfctl_clear_fingerprints(dev, opts); |
---|
114 | |
---|
115 | while ((line = fgetln(in, &len)) != NULL) { |
---|
116 | lineno++; |
---|
117 | if (class) |
---|
118 | free(class); |
---|
119 | if (version) |
---|
120 | free(version); |
---|
121 | if (subtype) |
---|
122 | free(subtype); |
---|
123 | if (desc) |
---|
124 | free(desc); |
---|
125 | if (tcpopts) |
---|
126 | free(tcpopts); |
---|
127 | class = version = subtype = desc = tcpopts = NULL; |
---|
128 | memset(&fp, 0, sizeof(fp)); |
---|
129 | |
---|
130 | /* Chop off comment */ |
---|
131 | for (i = 0; i < len; i++) |
---|
132 | if (line[i] == '#') { |
---|
133 | len = i; |
---|
134 | break; |
---|
135 | } |
---|
136 | /* Chop off whitespace */ |
---|
137 | while (len > 0 && isspace(line[len - 1])) |
---|
138 | len--; |
---|
139 | while (len > 0 && isspace(line[0])) { |
---|
140 | len--; |
---|
141 | line++; |
---|
142 | } |
---|
143 | if (len == 0) |
---|
144 | continue; |
---|
145 | |
---|
146 | #define T_DC 0x01 /* Allow don't care */ |
---|
147 | #define T_MSS 0x02 /* Allow MSS multiple */ |
---|
148 | #define T_MTU 0x04 /* Allow MTU multiple */ |
---|
149 | #define T_MOD 0x08 /* Allow modulus */ |
---|
150 | |
---|
151 | #define GET_INT(v, mod, n, ty, mx) \ |
---|
152 | get_int(&line, &len, &v, mod, n, ty, mx, fp_filename, lineno) |
---|
153 | #define GET_STR(v, n, mn) \ |
---|
154 | get_str(&line, &len, &v, n, mn, fp_filename, lineno) |
---|
155 | |
---|
156 | if (GET_INT(window, &w_mod, "window size", T_DC|T_MSS|T_MTU| |
---|
157 | T_MOD, 0xffff) || |
---|
158 | GET_INT(ttl, NULL, "ttl", 0, 0xff) || |
---|
159 | GET_INT(df, NULL, "don't fragment frag", 0, 1) || |
---|
160 | GET_INT(psize, &p_mod, "overall packet size", T_MOD|T_DC, |
---|
161 | 8192) || |
---|
162 | GET_STR(tcpopts, "TCP Options", 1) || |
---|
163 | GET_STR(class, "OS class", 1) || |
---|
164 | GET_STR(version, "OS version", 0) || |
---|
165 | GET_STR(subtype, "OS subtype", 0) || |
---|
166 | GET_STR(desc, "OS description", 2)) |
---|
167 | continue; |
---|
168 | if (get_tcpopts(fp_filename, lineno, tcpopts, &packed_tcpopts, |
---|
169 | &optcnt, &mss, &mss_mod, &wscale, &wscale_mod, &ts0)) |
---|
170 | continue; |
---|
171 | if (len != 0) { |
---|
172 | fprintf(stderr, "%s:%d excess field\n", fp_filename, |
---|
173 | lineno); |
---|
174 | continue; |
---|
175 | } |
---|
176 | |
---|
177 | fp.fp_ttl = ttl; |
---|
178 | if (df) |
---|
179 | fp.fp_flags |= PF_OSFP_DF; |
---|
180 | switch (w_mod) { |
---|
181 | case 0: |
---|
182 | break; |
---|
183 | case T_DC: |
---|
184 | fp.fp_flags |= PF_OSFP_WSIZE_DC; |
---|
185 | break; |
---|
186 | case T_MSS: |
---|
187 | fp.fp_flags |= PF_OSFP_WSIZE_MSS; |
---|
188 | break; |
---|
189 | case T_MTU: |
---|
190 | fp.fp_flags |= PF_OSFP_WSIZE_MTU; |
---|
191 | break; |
---|
192 | case T_MOD: |
---|
193 | fp.fp_flags |= PF_OSFP_WSIZE_MOD; |
---|
194 | break; |
---|
195 | } |
---|
196 | fp.fp_wsize = window; |
---|
197 | |
---|
198 | switch (p_mod) { |
---|
199 | case T_DC: |
---|
200 | fp.fp_flags |= PF_OSFP_PSIZE_DC; |
---|
201 | break; |
---|
202 | case T_MOD: |
---|
203 | fp.fp_flags |= PF_OSFP_PSIZE_MOD; |
---|
204 | } |
---|
205 | fp.fp_psize = psize; |
---|
206 | |
---|
207 | |
---|
208 | switch (wscale_mod) { |
---|
209 | case T_DC: |
---|
210 | fp.fp_flags |= PF_OSFP_WSCALE_DC; |
---|
211 | break; |
---|
212 | case T_MOD: |
---|
213 | fp.fp_flags |= PF_OSFP_WSCALE_MOD; |
---|
214 | } |
---|
215 | fp.fp_wscale = wscale; |
---|
216 | |
---|
217 | switch (mss_mod) { |
---|
218 | case T_DC: |
---|
219 | fp.fp_flags |= PF_OSFP_MSS_DC; |
---|
220 | break; |
---|
221 | case T_MOD: |
---|
222 | fp.fp_flags |= PF_OSFP_MSS_MOD; |
---|
223 | break; |
---|
224 | } |
---|
225 | fp.fp_mss = mss; |
---|
226 | |
---|
227 | fp.fp_tcpopts = packed_tcpopts; |
---|
228 | fp.fp_optcnt = optcnt; |
---|
229 | if (ts0) |
---|
230 | fp.fp_flags |= PF_OSFP_TS0; |
---|
231 | |
---|
232 | if (class[0] == '@') |
---|
233 | fp.fp_os.fp_enflags |= PF_OSFP_GENERIC; |
---|
234 | if (class[0] == '*') |
---|
235 | fp.fp_os.fp_enflags |= PF_OSFP_NODETAIL; |
---|
236 | |
---|
237 | if (class[0] == '@' || class[0] == '*') |
---|
238 | strlcpy(fp.fp_os.fp_class_nm, class + 1, |
---|
239 | sizeof(fp.fp_os.fp_class_nm)); |
---|
240 | else |
---|
241 | strlcpy(fp.fp_os.fp_class_nm, class, |
---|
242 | sizeof(fp.fp_os.fp_class_nm)); |
---|
243 | strlcpy(fp.fp_os.fp_version_nm, version, |
---|
244 | sizeof(fp.fp_os.fp_version_nm)); |
---|
245 | strlcpy(fp.fp_os.fp_subtype_nm, subtype, |
---|
246 | sizeof(fp.fp_os.fp_subtype_nm)); |
---|
247 | |
---|
248 | add_fingerprint(dev, opts, &fp); |
---|
249 | |
---|
250 | fp.fp_flags |= (PF_OSFP_DF | PF_OSFP_INET6); |
---|
251 | fp.fp_psize += sizeof(struct ip6_hdr) - sizeof(struct ip); |
---|
252 | add_fingerprint(dev, opts, &fp); |
---|
253 | } |
---|
254 | |
---|
255 | if (class) |
---|
256 | free(class); |
---|
257 | if (version) |
---|
258 | free(version); |
---|
259 | if (subtype) |
---|
260 | free(subtype); |
---|
261 | if (desc) |
---|
262 | free(desc); |
---|
263 | if (tcpopts) |
---|
264 | free(tcpopts); |
---|
265 | |
---|
266 | fclose(in); |
---|
267 | |
---|
268 | if (opts & PF_OPT_VERBOSE2) |
---|
269 | printf("Loaded %d passive OS fingerprints\n", |
---|
270 | fingerprint_count); |
---|
271 | return (0); |
---|
272 | } |
---|
273 | |
---|
274 | /* flush the kernel's fingerprints */ |
---|
275 | void |
---|
276 | pfctl_clear_fingerprints(int dev, int opts) |
---|
277 | { |
---|
278 | if (ioctl(dev, DIOCOSFPFLUSH)) |
---|
279 | err(1, "DIOCOSFPFLUSH"); |
---|
280 | } |
---|
281 | |
---|
282 | /* flush pfctl's view of the fingerprints */ |
---|
283 | void |
---|
284 | pfctl_flush_my_fingerprints(struct name_list *list) |
---|
285 | { |
---|
286 | struct name_entry *nm; |
---|
287 | |
---|
288 | while ((nm = LIST_FIRST(list)) != NULL) { |
---|
289 | LIST_REMOVE(nm, nm_entry); |
---|
290 | pfctl_flush_my_fingerprints(&nm->nm_sublist); |
---|
291 | free(nm); |
---|
292 | } |
---|
293 | fingerprint_count = 0; |
---|
294 | class_count = 0; |
---|
295 | } |
---|
296 | |
---|
297 | /* Fetch the active fingerprints from the kernel */ |
---|
298 | int |
---|
299 | pfctl_load_fingerprints(int dev, int opts) |
---|
300 | { |
---|
301 | struct pf_osfp_ioctl io; |
---|
302 | int i; |
---|
303 | |
---|
304 | pfctl_flush_my_fingerprints(&classes); |
---|
305 | |
---|
306 | for (i = 0; i >= 0; i++) { |
---|
307 | memset(&io, 0, sizeof(io)); |
---|
308 | io.fp_getnum = i; |
---|
309 | if (ioctl(dev, DIOCOSFPGET, &io)) { |
---|
310 | if (errno == EBUSY) |
---|
311 | break; |
---|
312 | warn("DIOCOSFPGET"); |
---|
313 | return (1); |
---|
314 | } |
---|
315 | import_fingerprint(&io); |
---|
316 | } |
---|
317 | return (0); |
---|
318 | } |
---|
319 | |
---|
320 | /* List the fingerprints */ |
---|
321 | void |
---|
322 | pfctl_show_fingerprints(int opts) |
---|
323 | { |
---|
324 | if (LIST_FIRST(&classes) != NULL) { |
---|
325 | if (opts & PF_OPT_SHOWALL) { |
---|
326 | pfctl_print_title("OS FINGERPRINTS:"); |
---|
327 | printf("%u fingerprints loaded\n", fingerprint_count); |
---|
328 | } else { |
---|
329 | printf("Class\tVersion\tSubtype(subversion)\n"); |
---|
330 | printf("-----\t-------\t-------------------\n"); |
---|
331 | sort_name_list(opts, &classes); |
---|
332 | print_name_list(opts, &classes, ""); |
---|
333 | } |
---|
334 | } |
---|
335 | } |
---|
336 | |
---|
337 | /* Lookup a fingerprint */ |
---|
338 | pf_osfp_t |
---|
339 | pfctl_get_fingerprint(const char *name) |
---|
340 | { |
---|
341 | struct name_entry *nm, *class_nm, *version_nm, *subtype_nm; |
---|
342 | pf_osfp_t ret = PF_OSFP_NOMATCH; |
---|
343 | int class, version, subtype; |
---|
344 | int unp_class, unp_version, unp_subtype; |
---|
345 | int wr_len, version_len, subtype_len; |
---|
346 | char *ptr, *wr_name; |
---|
347 | |
---|
348 | if (strcasecmp(name, "unknown") == 0) |
---|
349 | return (PF_OSFP_UNKNOWN); |
---|
350 | |
---|
351 | /* Try most likely no version and no subtype */ |
---|
352 | if ((nm = lookup_name_list(&classes, name))) { |
---|
353 | class = nm->nm_num; |
---|
354 | version = PF_OSFP_ANY; |
---|
355 | subtype = PF_OSFP_ANY; |
---|
356 | goto found; |
---|
357 | } else { |
---|
358 | |
---|
359 | /* Chop it up into class/version/subtype */ |
---|
360 | |
---|
361 | if ((wr_name = strdup(name)) == NULL) |
---|
362 | err(1, "malloc"); |
---|
363 | if ((ptr = strchr(wr_name, ' ')) == NULL) { |
---|
364 | free(wr_name); |
---|
365 | return (PF_OSFP_NOMATCH); |
---|
366 | } |
---|
367 | *ptr++ = '\0'; |
---|
368 | |
---|
369 | /* The class is easy to find since it is delimited by a space */ |
---|
370 | if ((class_nm = lookup_name_list(&classes, wr_name)) == NULL) { |
---|
371 | free(wr_name); |
---|
372 | return (PF_OSFP_NOMATCH); |
---|
373 | } |
---|
374 | class = class_nm->nm_num; |
---|
375 | |
---|
376 | /* Try no subtype */ |
---|
377 | if ((version_nm = lookup_name_list(&class_nm->nm_sublist, ptr))) |
---|
378 | { |
---|
379 | version = version_nm->nm_num; |
---|
380 | subtype = PF_OSFP_ANY; |
---|
381 | free(wr_name); |
---|
382 | goto found; |
---|
383 | } |
---|
384 | |
---|
385 | |
---|
386 | /* |
---|
387 | * There must be a version and a subtype. |
---|
388 | * We'll do some fuzzy matching to pick up things like: |
---|
389 | * Linux 2.2.14 (version=2.2 subtype=14) |
---|
390 | * FreeBSD 4.0-STABLE (version=4.0 subtype=STABLE) |
---|
391 | * Windows 2000 SP2 (version=2000 subtype=SP2) |
---|
392 | */ |
---|
393 | #define CONNECTOR(x) ((x) == '.' || (x) == ' ' || (x) == '\t' || (x) == '-') |
---|
394 | wr_len = strlen(ptr); |
---|
395 | LIST_FOREACH(version_nm, &class_nm->nm_sublist, nm_entry) { |
---|
396 | version_len = strlen(version_nm->nm_name); |
---|
397 | if (wr_len < version_len + 2 || |
---|
398 | !CONNECTOR(ptr[version_len])) |
---|
399 | continue; |
---|
400 | /* first part of the string must be version */ |
---|
401 | if (strncasecmp(ptr, version_nm->nm_name, |
---|
402 | version_len)) |
---|
403 | continue; |
---|
404 | |
---|
405 | LIST_FOREACH(subtype_nm, &version_nm->nm_sublist, |
---|
406 | nm_entry) { |
---|
407 | subtype_len = strlen(subtype_nm->nm_name); |
---|
408 | if (wr_len != version_len + subtype_len + 1) |
---|
409 | continue; |
---|
410 | |
---|
411 | /* last part of the string must be subtype */ |
---|
412 | if (strcasecmp(&ptr[version_len+1], |
---|
413 | subtype_nm->nm_name) != 0) |
---|
414 | continue; |
---|
415 | |
---|
416 | /* Found it!! */ |
---|
417 | version = version_nm->nm_num; |
---|
418 | subtype = subtype_nm->nm_num; |
---|
419 | free(wr_name); |
---|
420 | goto found; |
---|
421 | } |
---|
422 | } |
---|
423 | |
---|
424 | free(wr_name); |
---|
425 | return (PF_OSFP_NOMATCH); |
---|
426 | } |
---|
427 | |
---|
428 | found: |
---|
429 | PF_OSFP_PACK(ret, class, version, subtype); |
---|
430 | if (ret != PF_OSFP_NOMATCH) { |
---|
431 | PF_OSFP_UNPACK(ret, unp_class, unp_version, unp_subtype); |
---|
432 | if (class != unp_class) { |
---|
433 | fprintf(stderr, "warning: fingerprint table overflowed " |
---|
434 | "classes\n"); |
---|
435 | return (PF_OSFP_NOMATCH); |
---|
436 | } |
---|
437 | if (version != unp_version) { |
---|
438 | fprintf(stderr, "warning: fingerprint table overflowed " |
---|
439 | "versions\n"); |
---|
440 | return (PF_OSFP_NOMATCH); |
---|
441 | } |
---|
442 | if (subtype != unp_subtype) { |
---|
443 | fprintf(stderr, "warning: fingerprint table overflowed " |
---|
444 | "subtypes\n"); |
---|
445 | return (PF_OSFP_NOMATCH); |
---|
446 | } |
---|
447 | } |
---|
448 | if (ret == PF_OSFP_ANY) { |
---|
449 | /* should never happen */ |
---|
450 | fprintf(stderr, "warning: fingerprint packed to 'any'\n"); |
---|
451 | return (PF_OSFP_NOMATCH); |
---|
452 | } |
---|
453 | |
---|
454 | return (ret); |
---|
455 | } |
---|
456 | |
---|
457 | /* Lookup a fingerprint name by ID */ |
---|
458 | char * |
---|
459 | pfctl_lookup_fingerprint(pf_osfp_t fp, char *buf, size_t len) |
---|
460 | { |
---|
461 | int class, version, subtype; |
---|
462 | struct name_list *list; |
---|
463 | struct name_entry *nm; |
---|
464 | |
---|
465 | char *class_name, *version_name, *subtype_name; |
---|
466 | class_name = version_name = subtype_name = NULL; |
---|
467 | |
---|
468 | if (fp == PF_OSFP_UNKNOWN) { |
---|
469 | strlcpy(buf, "unknown", len); |
---|
470 | return (buf); |
---|
471 | } |
---|
472 | if (fp == PF_OSFP_ANY) { |
---|
473 | strlcpy(buf, "any", len); |
---|
474 | return (buf); |
---|
475 | } |
---|
476 | |
---|
477 | PF_OSFP_UNPACK(fp, class, version, subtype); |
---|
478 | if (class >= (1 << _FP_CLASS_BITS) || |
---|
479 | version >= (1 << _FP_VERSION_BITS) || |
---|
480 | subtype >= (1 << _FP_SUBTYPE_BITS)) { |
---|
481 | warnx("PF_OSFP_UNPACK(0x%x) failed!!", fp); |
---|
482 | strlcpy(buf, "nomatch", len); |
---|
483 | return (buf); |
---|
484 | } |
---|
485 | |
---|
486 | LIST_FOREACH(nm, &classes, nm_entry) { |
---|
487 | if (nm->nm_num == class) { |
---|
488 | class_name = nm->nm_name; |
---|
489 | if (version == PF_OSFP_ANY) |
---|
490 | goto found; |
---|
491 | list = &nm->nm_sublist; |
---|
492 | LIST_FOREACH(nm, list, nm_entry) { |
---|
493 | if (nm->nm_num == version) { |
---|
494 | version_name = nm->nm_name; |
---|
495 | if (subtype == PF_OSFP_ANY) |
---|
496 | goto found; |
---|
497 | list = &nm->nm_sublist; |
---|
498 | LIST_FOREACH(nm, list, nm_entry) { |
---|
499 | if (nm->nm_num == subtype) { |
---|
500 | subtype_name = |
---|
501 | nm->nm_name; |
---|
502 | goto found; |
---|
503 | } |
---|
504 | } /* foreach subtype */ |
---|
505 | strlcpy(buf, "nomatch", len); |
---|
506 | return (buf); |
---|
507 | } |
---|
508 | } /* foreach version */ |
---|
509 | strlcpy(buf, "nomatch", len); |
---|
510 | return (buf); |
---|
511 | } |
---|
512 | } /* foreach class */ |
---|
513 | |
---|
514 | strlcpy(buf, "nomatch", len); |
---|
515 | return (buf); |
---|
516 | |
---|
517 | found: |
---|
518 | snprintf(buf, len, "%s", class_name); |
---|
519 | if (version_name) { |
---|
520 | strlcat(buf, " ", len); |
---|
521 | strlcat(buf, version_name, len); |
---|
522 | if (subtype_name) { |
---|
523 | if (strchr(version_name, ' ')) |
---|
524 | strlcat(buf, " ", len); |
---|
525 | else if (strchr(version_name, '.') && |
---|
526 | isdigit(*subtype_name)) |
---|
527 | strlcat(buf, ".", len); |
---|
528 | else |
---|
529 | strlcat(buf, " ", len); |
---|
530 | strlcat(buf, subtype_name, len); |
---|
531 | } |
---|
532 | } |
---|
533 | return (buf); |
---|
534 | } |
---|
535 | |
---|
536 | /* lookup a name in a list */ |
---|
537 | struct name_entry * |
---|
538 | lookup_name_list(struct name_list *list, const char *name) |
---|
539 | { |
---|
540 | struct name_entry *nm; |
---|
541 | LIST_FOREACH(nm, list, nm_entry) |
---|
542 | if (strcasecmp(name, nm->nm_name) == 0) |
---|
543 | return (nm); |
---|
544 | |
---|
545 | return (NULL); |
---|
546 | } |
---|
547 | |
---|
548 | |
---|
549 | void |
---|
550 | add_fingerprint(int dev, int opts, struct pf_osfp_ioctl *fp) |
---|
551 | { |
---|
552 | struct pf_osfp_ioctl fptmp; |
---|
553 | struct name_entry *nm_class, *nm_version, *nm_subtype; |
---|
554 | int class, version, subtype; |
---|
555 | |
---|
556 | /* We expand #-# or #.#-#.# version/subtypes into multiple fingerprints */ |
---|
557 | #define EXPAND(field) do { \ |
---|
558 | int _dot = -1, _start = -1, _end = -1, _i = 0; \ |
---|
559 | /* pick major version out of #.# */ \ |
---|
560 | if (isdigit(fp->field[_i]) && fp->field[_i+1] == '.') { \ |
---|
561 | _dot = fp->field[_i] - '0'; \ |
---|
562 | _i += 2; \ |
---|
563 | } \ |
---|
564 | if (isdigit(fp->field[_i])) \ |
---|
565 | _start = fp->field[_i++] - '0'; \ |
---|
566 | else \ |
---|
567 | break; \ |
---|
568 | if (isdigit(fp->field[_i])) \ |
---|
569 | _start = (_start * 10) + fp->field[_i++] - '0'; \ |
---|
570 | if (fp->field[_i++] != '-') \ |
---|
571 | break; \ |
---|
572 | if (isdigit(fp->field[_i]) && fp->field[_i+1] == '.' && \ |
---|
573 | fp->field[_i] - '0' == _dot) \ |
---|
574 | _i += 2; \ |
---|
575 | else if (_dot != -1) \ |
---|
576 | break; \ |
---|
577 | if (isdigit(fp->field[_i])) \ |
---|
578 | _end = fp->field[_i++] - '0'; \ |
---|
579 | else \ |
---|
580 | break; \ |
---|
581 | if (isdigit(fp->field[_i])) \ |
---|
582 | _end = (_end * 10) + fp->field[_i++] - '0'; \ |
---|
583 | if (isdigit(fp->field[_i])) \ |
---|
584 | _end = (_end * 10) + fp->field[_i++] - '0'; \ |
---|
585 | if (fp->field[_i] != '\0') \ |
---|
586 | break; \ |
---|
587 | memcpy(&fptmp, fp, sizeof(fptmp)); \ |
---|
588 | for (;_start <= _end; _start++) { \ |
---|
589 | memset(fptmp.field, 0, sizeof(fptmp.field)); \ |
---|
590 | fptmp.fp_os.fp_enflags |= PF_OSFP_EXPANDED; \ |
---|
591 | if (_dot == -1) \ |
---|
592 | snprintf(fptmp.field, sizeof(fptmp.field), \ |
---|
593 | "%d", _start); \ |
---|
594 | else \ |
---|
595 | snprintf(fptmp.field, sizeof(fptmp.field), \ |
---|
596 | "%d.%d", _dot, _start); \ |
---|
597 | add_fingerprint(dev, opts, &fptmp); \ |
---|
598 | } \ |
---|
599 | } while(0) |
---|
600 | |
---|
601 | /* We allow "#-#" as a version or subtype and we'll expand it */ |
---|
602 | EXPAND(fp_os.fp_version_nm); |
---|
603 | EXPAND(fp_os.fp_subtype_nm); |
---|
604 | |
---|
605 | if (strcasecmp(fp->fp_os.fp_class_nm, "nomatch") == 0) |
---|
606 | errx(1, "fingerprint class \"nomatch\" is reserved"); |
---|
607 | |
---|
608 | version = PF_OSFP_ANY; |
---|
609 | subtype = PF_OSFP_ANY; |
---|
610 | |
---|
611 | nm_class = fingerprint_name_entry(&classes, fp->fp_os.fp_class_nm); |
---|
612 | if (nm_class->nm_num == 0) |
---|
613 | nm_class->nm_num = ++class_count; |
---|
614 | class = nm_class->nm_num; |
---|
615 | |
---|
616 | nm_version = fingerprint_name_entry(&nm_class->nm_sublist, |
---|
617 | fp->fp_os.fp_version_nm); |
---|
618 | if (nm_version) { |
---|
619 | if (nm_version->nm_num == 0) |
---|
620 | nm_version->nm_num = ++nm_class->nm_sublist_num; |
---|
621 | version = nm_version->nm_num; |
---|
622 | nm_subtype = fingerprint_name_entry(&nm_version->nm_sublist, |
---|
623 | fp->fp_os.fp_subtype_nm); |
---|
624 | if (nm_subtype) { |
---|
625 | if (nm_subtype->nm_num == 0) |
---|
626 | nm_subtype->nm_num = |
---|
627 | ++nm_version->nm_sublist_num; |
---|
628 | subtype = nm_subtype->nm_num; |
---|
629 | } |
---|
630 | } |
---|
631 | |
---|
632 | |
---|
633 | DEBUG(fp, "\tsignature %d:%d:%d %s", class, version, subtype, |
---|
634 | print_ioctl(fp)); |
---|
635 | |
---|
636 | PF_OSFP_PACK(fp->fp_os.fp_os, class, version, subtype); |
---|
637 | fingerprint_count++; |
---|
638 | |
---|
639 | #ifdef FAKE_PF_KERNEL |
---|
640 | /* Linked to the sys/net/pf_osfp.c. Call pf_osfp_add() */ |
---|
641 | if ((errno = pf_osfp_add(fp))) |
---|
642 | #else |
---|
643 | if ((opts & PF_OPT_NOACTION) == 0 && ioctl(dev, DIOCOSFPADD, fp)) |
---|
644 | #endif /* FAKE_PF_KERNEL */ |
---|
645 | { |
---|
646 | if (errno == EEXIST) { |
---|
647 | warn("Duplicate signature for %s %s %s", |
---|
648 | fp->fp_os.fp_class_nm, |
---|
649 | fp->fp_os.fp_version_nm, |
---|
650 | fp->fp_os.fp_subtype_nm); |
---|
651 | |
---|
652 | } else { |
---|
653 | err(1, "DIOCOSFPADD"); |
---|
654 | } |
---|
655 | } |
---|
656 | } |
---|
657 | |
---|
658 | /* import a fingerprint from the kernel */ |
---|
659 | void |
---|
660 | import_fingerprint(struct pf_osfp_ioctl *fp) |
---|
661 | { |
---|
662 | struct name_entry *nm_class, *nm_version, *nm_subtype; |
---|
663 | int class, version, subtype; |
---|
664 | |
---|
665 | PF_OSFP_UNPACK(fp->fp_os.fp_os, class, version, subtype); |
---|
666 | |
---|
667 | nm_class = fingerprint_name_entry(&classes, fp->fp_os.fp_class_nm); |
---|
668 | if (nm_class->nm_num == 0) { |
---|
669 | nm_class->nm_num = class; |
---|
670 | class_count = MAX(class_count, class); |
---|
671 | } |
---|
672 | |
---|
673 | nm_version = fingerprint_name_entry(&nm_class->nm_sublist, |
---|
674 | fp->fp_os.fp_version_nm); |
---|
675 | if (nm_version) { |
---|
676 | if (nm_version->nm_num == 0) { |
---|
677 | nm_version->nm_num = version; |
---|
678 | nm_class->nm_sublist_num = MAX(nm_class->nm_sublist_num, |
---|
679 | version); |
---|
680 | } |
---|
681 | nm_subtype = fingerprint_name_entry(&nm_version->nm_sublist, |
---|
682 | fp->fp_os.fp_subtype_nm); |
---|
683 | if (nm_subtype) { |
---|
684 | if (nm_subtype->nm_num == 0) { |
---|
685 | nm_subtype->nm_num = subtype; |
---|
686 | nm_version->nm_sublist_num = |
---|
687 | MAX(nm_version->nm_sublist_num, subtype); |
---|
688 | } |
---|
689 | } |
---|
690 | } |
---|
691 | |
---|
692 | |
---|
693 | fingerprint_count++; |
---|
694 | DEBUG(fp, "import signature %d:%d:%d", class, version, subtype); |
---|
695 | } |
---|
696 | |
---|
697 | /* Find an entry for a fingerprints class/version/subtype */ |
---|
698 | struct name_entry * |
---|
699 | fingerprint_name_entry(struct name_list *list, char *name) |
---|
700 | { |
---|
701 | struct name_entry *nm_entry; |
---|
702 | |
---|
703 | if (name == NULL || strlen(name) == 0) |
---|
704 | return (NULL); |
---|
705 | |
---|
706 | LIST_FOREACH(nm_entry, list, nm_entry) { |
---|
707 | if (strcasecmp(nm_entry->nm_name, name) == 0) { |
---|
708 | /* We'll move this to the front of the list later */ |
---|
709 | LIST_REMOVE(nm_entry, nm_entry); |
---|
710 | break; |
---|
711 | } |
---|
712 | } |
---|
713 | if (nm_entry == NULL) { |
---|
714 | nm_entry = calloc(1, sizeof(*nm_entry)); |
---|
715 | if (nm_entry == NULL) |
---|
716 | err(1, "calloc"); |
---|
717 | LIST_INIT(&nm_entry->nm_sublist); |
---|
718 | strlcpy(nm_entry->nm_name, name, sizeof(nm_entry->nm_name)); |
---|
719 | } |
---|
720 | LIST_INSERT_HEAD(list, nm_entry, nm_entry); |
---|
721 | return (nm_entry); |
---|
722 | } |
---|
723 | |
---|
724 | |
---|
725 | void |
---|
726 | print_name_list(int opts, struct name_list *nml, const char *prefix) |
---|
727 | { |
---|
728 | char newprefix[32]; |
---|
729 | struct name_entry *nm; |
---|
730 | |
---|
731 | LIST_FOREACH(nm, nml, nm_entry) { |
---|
732 | snprintf(newprefix, sizeof(newprefix), "%s%s\t", prefix, |
---|
733 | nm->nm_name); |
---|
734 | printf("%s\n", newprefix); |
---|
735 | print_name_list(opts, &nm->nm_sublist, newprefix); |
---|
736 | } |
---|
737 | } |
---|
738 | |
---|
739 | void |
---|
740 | sort_name_list(int opts, struct name_list *nml) |
---|
741 | { |
---|
742 | struct name_list new; |
---|
743 | struct name_entry *nm, *nmsearch, *nmlast; |
---|
744 | |
---|
745 | /* yes yes, it's a very slow sort. so sue me */ |
---|
746 | |
---|
747 | LIST_INIT(&new); |
---|
748 | |
---|
749 | while ((nm = LIST_FIRST(nml)) != NULL) { |
---|
750 | LIST_REMOVE(nm, nm_entry); |
---|
751 | nmlast = NULL; |
---|
752 | LIST_FOREACH(nmsearch, &new, nm_entry) { |
---|
753 | if (strcasecmp(nmsearch->nm_name, nm->nm_name) > 0) { |
---|
754 | LIST_INSERT_BEFORE(nmsearch, nm, nm_entry); |
---|
755 | break; |
---|
756 | } |
---|
757 | nmlast = nmsearch; |
---|
758 | } |
---|
759 | if (nmsearch == NULL) { |
---|
760 | if (nmlast) |
---|
761 | LIST_INSERT_AFTER(nmlast, nm, nm_entry); |
---|
762 | else |
---|
763 | LIST_INSERT_HEAD(&new, nm, nm_entry); |
---|
764 | } |
---|
765 | |
---|
766 | sort_name_list(opts, &nm->nm_sublist); |
---|
767 | } |
---|
768 | nmlast = NULL; |
---|
769 | while ((nm = LIST_FIRST(&new)) != NULL) { |
---|
770 | LIST_REMOVE(nm, nm_entry); |
---|
771 | if (nmlast == NULL) |
---|
772 | LIST_INSERT_HEAD(nml, nm, nm_entry); |
---|
773 | else |
---|
774 | LIST_INSERT_AFTER(nmlast, nm, nm_entry); |
---|
775 | nmlast = nm; |
---|
776 | } |
---|
777 | } |
---|
778 | |
---|
779 | /* parse the next integer in a formatted config file line */ |
---|
780 | int |
---|
781 | get_int(char **line, size_t *len, int *var, int *mod, |
---|
782 | const char *name, int flags, int max, const char *filename, int lineno) |
---|
783 | { |
---|
784 | int fieldlen, i; |
---|
785 | char *field; |
---|
786 | long val = 0; |
---|
787 | |
---|
788 | if (mod) |
---|
789 | *mod = 0; |
---|
790 | *var = 0; |
---|
791 | |
---|
792 | field = get_field(line, len, &fieldlen); |
---|
793 | if (field == NULL) |
---|
794 | return (1); |
---|
795 | if (fieldlen == 0) { |
---|
796 | fprintf(stderr, "%s:%d empty %s\n", filename, lineno, name); |
---|
797 | return (1); |
---|
798 | } |
---|
799 | |
---|
800 | i = 0; |
---|
801 | if ((*field == '%' || *field == 'S' || *field == 'T' || *field == '*') |
---|
802 | && fieldlen >= 1) { |
---|
803 | switch (*field) { |
---|
804 | case 'S': |
---|
805 | if (mod && (flags & T_MSS)) |
---|
806 | *mod = T_MSS; |
---|
807 | if (fieldlen == 1) |
---|
808 | return (0); |
---|
809 | break; |
---|
810 | case 'T': |
---|
811 | if (mod && (flags & T_MTU)) |
---|
812 | *mod = T_MTU; |
---|
813 | if (fieldlen == 1) |
---|
814 | return (0); |
---|
815 | break; |
---|
816 | case '*': |
---|
817 | if (fieldlen != 1) { |
---|
818 | fprintf(stderr, "%s:%d long '%c' %s\n", |
---|
819 | filename, lineno, *field, name); |
---|
820 | return (1); |
---|
821 | } |
---|
822 | if (mod && (flags & T_DC)) { |
---|
823 | *mod = T_DC; |
---|
824 | return (0); |
---|
825 | } |
---|
826 | case '%': |
---|
827 | if (mod && (flags & T_MOD)) |
---|
828 | *mod = T_MOD; |
---|
829 | if (fieldlen == 1) { |
---|
830 | fprintf(stderr, "%s:%d modulus %s must have a " |
---|
831 | "value\n", filename, lineno, name); |
---|
832 | return (1); |
---|
833 | } |
---|
834 | break; |
---|
835 | } |
---|
836 | if (mod == NULL || *mod == 0) { |
---|
837 | fprintf(stderr, "%s:%d does not allow %c' %s\n", |
---|
838 | filename, lineno, *field, name); |
---|
839 | return (1); |
---|
840 | } |
---|
841 | i++; |
---|
842 | } |
---|
843 | |
---|
844 | for (; i < fieldlen; i++) { |
---|
845 | if (field[i] < '0' || field[i] > '9') { |
---|
846 | fprintf(stderr, "%s:%d non-digit character in %s\n", |
---|
847 | filename, lineno, name); |
---|
848 | return (1); |
---|
849 | } |
---|
850 | val = val * 10 + field[i] - '0'; |
---|
851 | if (val < 0) { |
---|
852 | fprintf(stderr, "%s:%d %s overflowed\n", filename, |
---|
853 | lineno, name); |
---|
854 | return (1); |
---|
855 | } |
---|
856 | } |
---|
857 | |
---|
858 | if (val > max) { |
---|
859 | fprintf(stderr, "%s:%d %s value %ld > %d\n", filename, lineno, |
---|
860 | name, val, max); |
---|
861 | return (1); |
---|
862 | } |
---|
863 | *var = (int)val; |
---|
864 | |
---|
865 | return (0); |
---|
866 | } |
---|
867 | |
---|
868 | /* parse the next string in a formatted config file line */ |
---|
869 | int |
---|
870 | get_str(char **line, size_t *len, char **v, const char *name, int minlen, |
---|
871 | const char *filename, int lineno) |
---|
872 | { |
---|
873 | int fieldlen; |
---|
874 | char *ptr; |
---|
875 | |
---|
876 | ptr = get_field(line, len, &fieldlen); |
---|
877 | if (ptr == NULL) |
---|
878 | return (1); |
---|
879 | if (fieldlen < minlen) { |
---|
880 | fprintf(stderr, "%s:%d too short %s\n", filename, lineno, name); |
---|
881 | return (1); |
---|
882 | } |
---|
883 | if ((*v = malloc(fieldlen + 1)) == NULL) { |
---|
884 | perror("malloc()"); |
---|
885 | return (1); |
---|
886 | } |
---|
887 | memcpy(*v, ptr, fieldlen); |
---|
888 | (*v)[fieldlen] = '\0'; |
---|
889 | |
---|
890 | return (0); |
---|
891 | } |
---|
892 | |
---|
893 | /* Parse out the TCP opts */ |
---|
894 | int |
---|
895 | get_tcpopts(const char *filename, int lineno, const char *tcpopts, |
---|
896 | pf_tcpopts_t *packed, int *optcnt, int *mss, int *mss_mod, int *wscale, |
---|
897 | int *wscale_mod, int *ts0) |
---|
898 | { |
---|
899 | int i, opt; |
---|
900 | |
---|
901 | *packed = 0; |
---|
902 | *optcnt = 0; |
---|
903 | *wscale = 0; |
---|
904 | *wscale_mod = T_DC; |
---|
905 | *mss = 0; |
---|
906 | *mss_mod = T_DC; |
---|
907 | *ts0 = 0; |
---|
908 | if (strcmp(tcpopts, ".") == 0) |
---|
909 | return (0); |
---|
910 | |
---|
911 | for (i = 0; tcpopts[i] && *optcnt < PF_OSFP_MAX_OPTS;) { |
---|
912 | switch ((opt = toupper(tcpopts[i++]))) { |
---|
913 | case 'N': /* FALLTHROUGH */ |
---|
914 | case 'S': |
---|
915 | *packed = (*packed << PF_OSFP_TCPOPT_BITS) | |
---|
916 | (opt == 'N' ? PF_OSFP_TCPOPT_NOP : |
---|
917 | PF_OSFP_TCPOPT_SACK); |
---|
918 | break; |
---|
919 | case 'W': /* FALLTHROUGH */ |
---|
920 | case 'M': { |
---|
921 | int *this_mod, *this; |
---|
922 | |
---|
923 | if (opt == 'W') { |
---|
924 | this = wscale; |
---|
925 | this_mod = wscale_mod; |
---|
926 | } else { |
---|
927 | this = mss; |
---|
928 | this_mod = mss_mod; |
---|
929 | } |
---|
930 | *this = 0; |
---|
931 | *this_mod = 0; |
---|
932 | |
---|
933 | *packed = (*packed << PF_OSFP_TCPOPT_BITS) | |
---|
934 | (opt == 'W' ? PF_OSFP_TCPOPT_WSCALE : |
---|
935 | PF_OSFP_TCPOPT_MSS); |
---|
936 | if (tcpopts[i] == '*' && (tcpopts[i + 1] == '\0' || |
---|
937 | tcpopts[i + 1] == ',')) { |
---|
938 | *this_mod = T_DC; |
---|
939 | i++; |
---|
940 | break; |
---|
941 | } |
---|
942 | |
---|
943 | if (tcpopts[i] == '%') { |
---|
944 | *this_mod = T_MOD; |
---|
945 | i++; |
---|
946 | } |
---|
947 | do { |
---|
948 | if (!isdigit(tcpopts[i])) { |
---|
949 | fprintf(stderr, "%s:%d unknown " |
---|
950 | "character '%c' in %c TCP opt\n", |
---|
951 | filename, lineno, tcpopts[i], opt); |
---|
952 | return (1); |
---|
953 | } |
---|
954 | *this = (*this * 10) + tcpopts[i++] - '0'; |
---|
955 | } while(tcpopts[i] != ',' && tcpopts[i] != '\0'); |
---|
956 | break; |
---|
957 | } |
---|
958 | case 'T': |
---|
959 | if (tcpopts[i] == '0') { |
---|
960 | *ts0 = 1; |
---|
961 | i++; |
---|
962 | } |
---|
963 | *packed = (*packed << PF_OSFP_TCPOPT_BITS) | |
---|
964 | PF_OSFP_TCPOPT_TS; |
---|
965 | break; |
---|
966 | } |
---|
967 | (*optcnt) ++; |
---|
968 | if (tcpopts[i] == '\0') |
---|
969 | break; |
---|
970 | if (tcpopts[i] != ',') { |
---|
971 | fprintf(stderr, "%s:%d unknown option to %c TCP opt\n", |
---|
972 | filename, lineno, opt); |
---|
973 | return (1); |
---|
974 | } |
---|
975 | i++; |
---|
976 | } |
---|
977 | |
---|
978 | return (0); |
---|
979 | } |
---|
980 | |
---|
981 | /* rip the next field ouf of a formatted config file line */ |
---|
982 | char * |
---|
983 | get_field(char **line, size_t *len, int *fieldlen) |
---|
984 | { |
---|
985 | char *ret, *ptr = *line; |
---|
986 | size_t plen = *len; |
---|
987 | |
---|
988 | |
---|
989 | while (plen && isspace(*ptr)) { |
---|
990 | plen--; |
---|
991 | ptr++; |
---|
992 | } |
---|
993 | ret = ptr; |
---|
994 | *fieldlen = 0; |
---|
995 | |
---|
996 | for (; plen > 0 && *ptr != ':'; plen--, ptr++) |
---|
997 | (*fieldlen)++; |
---|
998 | if (plen) { |
---|
999 | *line = ptr + 1; |
---|
1000 | *len = plen - 1; |
---|
1001 | } else { |
---|
1002 | *len = 0; |
---|
1003 | } |
---|
1004 | while (*fieldlen && isspace(ret[*fieldlen - 1])) |
---|
1005 | (*fieldlen)--; |
---|
1006 | return (ret); |
---|
1007 | } |
---|
1008 | |
---|
1009 | |
---|
1010 | const char * |
---|
1011 | print_ioctl(struct pf_osfp_ioctl *fp) |
---|
1012 | { |
---|
1013 | static char buf[1024]; |
---|
1014 | char tmp[32]; |
---|
1015 | int i, opt; |
---|
1016 | |
---|
1017 | *buf = '\0'; |
---|
1018 | if (fp->fp_flags & PF_OSFP_WSIZE_DC) |
---|
1019 | strlcat(buf, "*", sizeof(buf)); |
---|
1020 | else if (fp->fp_flags & PF_OSFP_WSIZE_MSS) |
---|
1021 | strlcat(buf, "S", sizeof(buf)); |
---|
1022 | else if (fp->fp_flags & PF_OSFP_WSIZE_MTU) |
---|
1023 | strlcat(buf, "T", sizeof(buf)); |
---|
1024 | else { |
---|
1025 | if (fp->fp_flags & PF_OSFP_WSIZE_MOD) |
---|
1026 | strlcat(buf, "%", sizeof(buf)); |
---|
1027 | snprintf(tmp, sizeof(tmp), "%d", fp->fp_wsize); |
---|
1028 | strlcat(buf, tmp, sizeof(buf)); |
---|
1029 | } |
---|
1030 | strlcat(buf, ":", sizeof(buf)); |
---|
1031 | |
---|
1032 | snprintf(tmp, sizeof(tmp), "%d", fp->fp_ttl); |
---|
1033 | strlcat(buf, tmp, sizeof(buf)); |
---|
1034 | strlcat(buf, ":", sizeof(buf)); |
---|
1035 | |
---|
1036 | if (fp->fp_flags & PF_OSFP_DF) |
---|
1037 | strlcat(buf, "1", sizeof(buf)); |
---|
1038 | else |
---|
1039 | strlcat(buf, "0", sizeof(buf)); |
---|
1040 | strlcat(buf, ":", sizeof(buf)); |
---|
1041 | |
---|
1042 | if (fp->fp_flags & PF_OSFP_PSIZE_DC) |
---|
1043 | strlcat(buf, "*", sizeof(buf)); |
---|
1044 | else { |
---|
1045 | if (fp->fp_flags & PF_OSFP_PSIZE_MOD) |
---|
1046 | strlcat(buf, "%", sizeof(buf)); |
---|
1047 | snprintf(tmp, sizeof(tmp), "%d", fp->fp_psize); |
---|
1048 | strlcat(buf, tmp, sizeof(buf)); |
---|
1049 | } |
---|
1050 | strlcat(buf, ":", sizeof(buf)); |
---|
1051 | |
---|
1052 | if (fp->fp_optcnt == 0) |
---|
1053 | strlcat(buf, ".", sizeof(buf)); |
---|
1054 | for (i = fp->fp_optcnt - 1; i >= 0; i--) { |
---|
1055 | opt = fp->fp_tcpopts >> (i * PF_OSFP_TCPOPT_BITS); |
---|
1056 | opt &= (1 << PF_OSFP_TCPOPT_BITS) - 1; |
---|
1057 | switch (opt) { |
---|
1058 | case PF_OSFP_TCPOPT_NOP: |
---|
1059 | strlcat(buf, "N", sizeof(buf)); |
---|
1060 | break; |
---|
1061 | case PF_OSFP_TCPOPT_SACK: |
---|
1062 | strlcat(buf, "S", sizeof(buf)); |
---|
1063 | break; |
---|
1064 | case PF_OSFP_TCPOPT_TS: |
---|
1065 | strlcat(buf, "T", sizeof(buf)); |
---|
1066 | if (fp->fp_flags & PF_OSFP_TS0) |
---|
1067 | strlcat(buf, "0", sizeof(buf)); |
---|
1068 | break; |
---|
1069 | case PF_OSFP_TCPOPT_MSS: |
---|
1070 | strlcat(buf, "M", sizeof(buf)); |
---|
1071 | if (fp->fp_flags & PF_OSFP_MSS_DC) |
---|
1072 | strlcat(buf, "*", sizeof(buf)); |
---|
1073 | else { |
---|
1074 | if (fp->fp_flags & PF_OSFP_MSS_MOD) |
---|
1075 | strlcat(buf, "%", sizeof(buf)); |
---|
1076 | snprintf(tmp, sizeof(tmp), "%d", fp->fp_mss); |
---|
1077 | strlcat(buf, tmp, sizeof(buf)); |
---|
1078 | } |
---|
1079 | break; |
---|
1080 | case PF_OSFP_TCPOPT_WSCALE: |
---|
1081 | strlcat(buf, "W", sizeof(buf)); |
---|
1082 | if (fp->fp_flags & PF_OSFP_WSCALE_DC) |
---|
1083 | strlcat(buf, "*", sizeof(buf)); |
---|
1084 | else { |
---|
1085 | if (fp->fp_flags & PF_OSFP_WSCALE_MOD) |
---|
1086 | strlcat(buf, "%", sizeof(buf)); |
---|
1087 | snprintf(tmp, sizeof(tmp), "%d", fp->fp_wscale); |
---|
1088 | strlcat(buf, tmp, sizeof(buf)); |
---|
1089 | } |
---|
1090 | break; |
---|
1091 | } |
---|
1092 | |
---|
1093 | if (i != 0) |
---|
1094 | strlcat(buf, ",", sizeof(buf)); |
---|
1095 | } |
---|
1096 | strlcat(buf, ":", sizeof(buf)); |
---|
1097 | |
---|
1098 | strlcat(buf, fp->fp_os.fp_class_nm, sizeof(buf)); |
---|
1099 | strlcat(buf, ":", sizeof(buf)); |
---|
1100 | strlcat(buf, fp->fp_os.fp_version_nm, sizeof(buf)); |
---|
1101 | strlcat(buf, ":", sizeof(buf)); |
---|
1102 | strlcat(buf, fp->fp_os.fp_subtype_nm, sizeof(buf)); |
---|
1103 | strlcat(buf, ":", sizeof(buf)); |
---|
1104 | |
---|
1105 | snprintf(tmp, sizeof(tmp), "TcpOpts %d 0x%llx", fp->fp_optcnt, |
---|
1106 | (long long int)fp->fp_tcpopts); |
---|
1107 | strlcat(buf, tmp, sizeof(buf)); |
---|
1108 | |
---|
1109 | return (buf); |
---|
1110 | } |
---|