if_pflog.h revision 223637
1/* $OpenBSD: if_pflog.h,v 1.13 2006/10/23 12:46:09 henning Exp $ */ 2/* 3 * Copyright 2001 Niels Provos <provos@citi.umich.edu> 4 * All rights reserved. 5 * 6 * Redistribution and use in source and binary forms, with or without 7 * modification, are permitted provided that the following conditions 8 * are met: 9 * 1. Redistributions of source code must retain the above copyright 10 * notice, this list of conditions and the following disclaimer. 11 * 2. Redistributions in binary form must reproduce the above copyright 12 * notice, this list of conditions and the following disclaimer in the 13 * documentation and/or other materials provided with the distribution. 14 * 15 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 16 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 17 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 18 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 19 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 20 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 21 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 22 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 23 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 24 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 25 */ 26 27#ifndef _NET_IF_PFLOG_H_ 28#define _NET_IF_PFLOG_H_ 29 30#define PFLOGIFS_MAX 16 31 32struct pflog_softc { 33#ifdef __FreeBSD__ 34 struct ifnet *sc_ifp; /* the interface pointer */ 35#else 36 struct ifnet sc_if; /* the interface */ 37#endif 38 int sc_unit; 39 LIST_ENTRY(pflog_softc) sc_list; 40}; 41 42#define PFLOG_RULESET_NAME_SIZE 16 43 44struct pfloghdr { 45 u_int8_t length; 46 sa_family_t af; 47 u_int8_t action; 48 u_int8_t reason; 49 char ifname[IFNAMSIZ]; 50 char ruleset[PFLOG_RULESET_NAME_SIZE]; 51 u_int32_t rulenr; 52 u_int32_t subrulenr; 53 uid_t uid; 54 pid_t pid; 55 uid_t rule_uid; 56 pid_t rule_pid; 57 u_int8_t dir; 58 u_int8_t pad[3]; 59}; 60 61#define PFLOG_HDRLEN sizeof(struct pfloghdr) 62/* minus pad, also used as a signature */ 63#define PFLOG_REAL_HDRLEN offsetof(struct pfloghdr, pad) 64 65/* XXX remove later when old format logs are no longer needed */ 66struct old_pfloghdr { 67 u_int32_t af; 68 char ifname[IFNAMSIZ]; 69 short rnr; 70 u_short reason; 71 u_short action; 72 u_short dir; 73}; 74#define OLD_PFLOG_HDRLEN sizeof(struct old_pfloghdr) 75 76#ifdef _KERNEL 77#ifdef __FreeBSD__ 78struct pf_rule; 79struct pf_ruleset; 80struct pfi_kif; 81struct pf_pdesc; 82 83#if 0 84typedef int pflog_packet_t(struct pfi_kif *, struct mbuf *, sa_family_t, 85 u_int8_t, u_int8_t, struct pf_rule *, struct pf_rule *, 86 struct pf_ruleset *, struct pf_pdesc *); 87extern pflog_packet_t *pflog_packet_ptr; 88#endif 89#define PFLOG_PACKET(i,x,a,b,c,d,e,f,g,h) do { \ 90 if (pflog_packet_ptr != NULL) \ 91 pflog_packet_ptr(i,a,b,c,d,e,f,g,h); \ 92} while (0) 93#else /* ! __FreeBSD__ */ 94#if NPFLOG > 0 95#define PFLOG_PACKET(i,x,a,b,c,d,e,f,g,h) pflog_packet(i,a,b,c,d,e,f,g,h) 96#else 97#define PFLOG_PACKET(i,x,a,b,c,d,e,f,g,h) ((void)0) 98#endif /* NPFLOG > 0 */ 99#endif 100#endif /* _KERNEL */ 101#endif /* _NET_IF_PFLOG_H_ */ 102