1/* $OpenBSD: if_pflog.h,v 1.13 2006/10/23 12:46:09 henning Exp $ */ 2/* 3 * Copyright 2001 Niels Provos <provos@citi.umich.edu> 4 * All rights reserved. 5 * 6 * Redistribution and use in source and binary forms, with or without 7 * modification, are permitted provided that the following conditions 8 * are met: 9 * 1. Redistributions of source code must retain the above copyright 10 * notice, this list of conditions and the following disclaimer. 11 * 2. Redistributions in binary form must reproduce the above copyright 12 * notice, this list of conditions and the following disclaimer in the 13 * documentation and/or other materials provided with the distribution. 14 * 15 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 16 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 17 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 18 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 19 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 20 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 21 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 22 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 23 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 24 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 25 */ 26 27#ifndef _NET_IF_PFLOG_H_ 28#define _NET_IF_PFLOG_H_ 29 30#define PFLOGIFS_MAX 16 31 32#define PFLOG_RULESET_NAME_SIZE 16 33 34struct pfloghdr { 35 u_int8_t length; 36 sa_family_t af; 37 u_int8_t action; 38 u_int8_t reason; 39 char ifname[IFNAMSIZ]; 40 char ruleset[PFLOG_RULESET_NAME_SIZE]; 41 u_int32_t rulenr; 42 u_int32_t subrulenr; 43 uid_t uid; 44 pid_t pid; 45 uid_t rule_uid; 46 pid_t rule_pid; 47 u_int8_t dir; 48 u_int8_t pad[3]; 49}; 50 51#define PFLOG_HDRLEN sizeof(struct pfloghdr) 52/* minus pad, also used as a signature */ 53#define PFLOG_REAL_HDRLEN offsetof(struct pfloghdr, pad) 54 55#ifdef _KERNEL 56struct pf_rule; 57struct pf_ruleset; 58struct pfi_kif; 59struct pf_pdesc; 60 61#define PFLOG_PACKET(i,a,b,c,d,e,f,g,h,di) do { \ 62 if (pflog_packet_ptr != NULL) \ 63 pflog_packet_ptr(i,a,b,c,d,e,f,g,h,di); \ 64} while (0) 65#endif /* _KERNEL */ 66#endif /* _NET_IF_PFLOG_H_ */ 67