contrib/tcpdump/print-enc.c

127668Sbms/*	$OpenBSD: print-enc.c,v 1.7 2002/02/19 19:39:40 millert Exp $	*/
127668Sbms
127668Sbms/*
127668Sbms * Copyright (c) 1990, 1991, 1993, 1994, 1995, 1996
127668Sbms *	The Regents of the University of California.  All rights reserved.
127668Sbms *
127668Sbms * Redistribution and use in source and binary forms, with or without
127668Sbms * modification, are permitted provided that: (1) source code distributions
127668Sbms * retain the above copyright notice and this paragraph in its entirety, (2)
127668Sbms * distributions including binary code include the above copyright notice and
127668Sbms * this paragraph in its entirety in the documentation or other materials
127668Sbms * provided with the distribution, and (3) all advertising materials mentioning
127668Sbms * features or use of this software display the following acknowledgement:
127668Sbms * ``This product includes software developed by the University of California,
127668Sbms * Lawrence Berkeley Laboratory and its contributors.'' Neither the name of
127668Sbms * the University nor the names of its contributors may be used to endorse
127668Sbms * or promote products derived from this software without specific prior
127668Sbms * written permission.
127668Sbms * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR IMPLIED
127668Sbms * WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF
127668Sbms * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
127668Sbms */
127668Sbms
313537Sglebius/* \summary: OpenBSD IPsec encapsulation BPF layer printer */
313537Sglebius
127668Sbms#ifdef HAVE_CONFIG_H
127668Sbms#include "config.h"
127668Sbms#endif
127668Sbms
313537Sglebius#include <netdissect-stdinc.h>
127668Sbms
313537Sglebius#include "netdissect.h"
214478Srpaulo#include "extract.h"
127668Sbms
276788Sdelphij/* From $OpenBSD: if_enc.h,v 1.8 2001/06/25 05:14:00 angelos Exp $ */
276788Sdelphij/*
276788Sdelphij * The authors of this code are John Ioannidis (ji@tla.org),
276788Sdelphij * Angelos D. Keromytis (kermit@csd.uch.gr) and
276788Sdelphij * Niels Provos (provos@physnet.uni-hamburg.de).
276788Sdelphij *
276788Sdelphij * This code was written by John Ioannidis for BSD/OS in Athens, Greece,
276788Sdelphij * in November 1995.
276788Sdelphij *
276788Sdelphij * Ported to OpenBSD and NetBSD, with additional transforms, in December 1996,
276788Sdelphij * by Angelos D. Keromytis.
276788Sdelphij *
276788Sdelphij * Additional transforms and features in 1997 and 1998 by Angelos D. Keromytis
276788Sdelphij * and Niels Provos.
276788Sdelphij *
276788Sdelphij * Copyright (C) 1995, 1996, 1997, 1998 by John Ioannidis, Angelos D. Keromytis
276788Sdelphij * and Niels Provos.
276788Sdelphij * Copyright (c) 2001, Angelos D. Keromytis.
276788Sdelphij *
276788Sdelphij * Permission to use, copy, and modify this software with or without fee
276788Sdelphij * is hereby granted, provided that this entire notice is included in
276788Sdelphij * all copies of any software which is or includes a copy or
276788Sdelphij * modification of this software.
276788Sdelphij * You may use this code under the GNU public license if you so wish. Please
276788Sdelphij * contribute changes back to the authors under this freer than GPL license
276788Sdelphij * so that we may further the use of strong encryption without limitations to
276788Sdelphij * all.
276788Sdelphij *
276788Sdelphij * THIS SOFTWARE IS BEING PROVIDED "AS IS", WITHOUT ANY EXPRESS OR
276788Sdelphij * IMPLIED WARRANTY. IN PARTICULAR, NONE OF THE AUTHORS MAKES ANY
276788Sdelphij * REPRESENTATION OR WARRANTY OF ANY KIND CONCERNING THE
276788Sdelphij * MERCHANTABILITY OF THIS SOFTWARE OR ITS FITNESS FOR ANY PARTICULAR
276788Sdelphij * PURPOSE.
276788Sdelphij */
127668Sbms
276788Sdelphij#define ENC_HDRLEN	12
276788Sdelphij
276788Sdelphij/* From $OpenBSD: mbuf.h,v 1.56 2002/01/25 15:50:23 art Exp $	*/
276788Sdelphij#define M_CONF		0x0400  /* packet was encrypted (ESP-transport) */
276788Sdelphij#define M_AUTH		0x0800  /* packet was authenticated (AH) */
276788Sdelphij
276788Sdelphijstruct enchdr {
276788Sdelphij	uint32_t af;
276788Sdelphij	uint32_t spi;
276788Sdelphij	uint32_t flags;
276788Sdelphij};
276788Sdelphij
127668Sbms#define ENC_PRINT_TYPE(wh, xf, nam) \
127668Sbms	if ((wh) & (xf)) { \
276788Sdelphij		ND_PRINT((ndo, "%s%s", nam, (wh) == (xf) ? "): " : ",")); \
127668Sbms		(wh) &= ~(xf); \
127668Sbms	}
127668Sbms
127668Sbmsu_int
276788Sdelphijenc_if_print(netdissect_options *ndo,
276788Sdelphij             const struct pcap_pkthdr *h, register const u_char *p)
127668Sbms{
127668Sbms	register u_int length = h->len;
127668Sbms	register u_int caplen = h->caplen;
127668Sbms	int flags;
127668Sbms	const struct enchdr *hdr;
127668Sbms
127668Sbms	if (caplen < ENC_HDRLEN) {
276788Sdelphij		ND_PRINT((ndo, "[|enc]"));
127668Sbms		goto out;
127668Sbms	}
127668Sbms
313537Sglebius	hdr = (const struct enchdr *)p;
127668Sbms	flags = hdr->flags;
127668Sbms	if (flags == 0)
276788Sdelphij		ND_PRINT((ndo, "(unprotected): "));
127668Sbms	else
276788Sdelphij		ND_PRINT((ndo, "("));
127668Sbms	ENC_PRINT_TYPE(flags, M_AUTH, "authentic");
127668Sbms	ENC_PRINT_TYPE(flags, M_CONF, "confidential");
127668Sbms	/* ENC_PRINT_TYPE(flags, M_TUNNEL, "tunnel"); */
276788Sdelphij	ND_PRINT((ndo, "SPI 0x%08x: ", EXTRACT_32BITS(&hdr->spi)));
127668Sbms
127668Sbms	length -= ENC_HDRLEN;
190207Srpaulo	caplen -= ENC_HDRLEN;
190207Srpaulo	p += ENC_HDRLEN;
276788Sdelphij
190207Srpaulo	switch (hdr->af) {
190207Srpaulo	case AF_INET:
276788Sdelphij		ip_print(ndo, p, length);
190207Srpaulo		break;
285275Spkelsey#ifdef AF_INET6
190207Srpaulo	case AF_INET6:
276788Sdelphij		ip6_print(ndo, p, length);
190207Srpaulo		break;
285275Spkelsey#endif
190207Srpaulo	}
127668Sbms
127668Sbmsout:
127668Sbms	return (ENC_HDRLEN);
127668Sbms}
146773Ssam
146773Ssam
146773Ssam/*
146773Ssam * Local Variables:
146773Ssam * c-style: whitesmith
146773Ssam * c-basic-offset: 8
146773Ssam * End:
146773Ssam */