1145519Sdarrenr/* $FreeBSD$ */ 2145510Sdarrenr 3145510Sdarrenr/* 4170268Sdarrenr * Copyright (C) 2002-2004 by Darren Reed. 5145510Sdarrenr * 6145510Sdarrenr * See the IPFILTER.LICENCE file for details on licencing. 7145510Sdarrenr * 8145510Sdarrenr * Added redirect stuff and a variety of bug fixes. (mcn@EnGarde.com) 9145510Sdarrenr */ 10145510Sdarrenr 11145510Sdarrenr#include "ipf.h" 12145510Sdarrenr#include "kmem.h" 13145510Sdarrenr 14145510Sdarrenr 15145510Sdarrenr#if !defined(lint) 16170268Sdarrenrstatic const char rcsid[] = "@(#)$Id: printaps.c,v 1.4.2.1 2006/06/16 17:21:10 darrenr Exp $"; 17145510Sdarrenr#endif 18145510Sdarrenr 19145510Sdarrenr 20145510Sdarrenrvoid printaps(aps, opts) 21145510Sdarrenrap_session_t *aps; 22145510Sdarrenrint opts; 23145510Sdarrenr{ 24145510Sdarrenr ipsec_pxy_t ipsec; 25145510Sdarrenr ap_session_t ap; 26145510Sdarrenr ftpinfo_t ftp; 27145510Sdarrenr aproxy_t apr; 28145510Sdarrenr raudio_t ra; 29145510Sdarrenr 30145510Sdarrenr if (kmemcpy((char *)&ap, (long)aps, sizeof(ap))) 31145510Sdarrenr return; 32145510Sdarrenr if (kmemcpy((char *)&apr, (long)ap.aps_apr, sizeof(apr))) 33145510Sdarrenr return; 34145510Sdarrenr printf("\tproxy %s/%d use %d flags %x\n", apr.apr_label, 35145510Sdarrenr apr.apr_p, apr.apr_ref, apr.apr_flags); 36145510Sdarrenr printf("\t\tproto %d flags %#x bytes ", ap.aps_p, ap.aps_flags); 37145510Sdarrenr#ifdef USE_QUAD_T 38145510Sdarrenr printf("%qu pkts %qu", (unsigned long long)ap.aps_bytes, 39145510Sdarrenr (unsigned long long)ap.aps_pkts); 40145510Sdarrenr#else 41145510Sdarrenr printf("%lu pkts %lu", ap.aps_bytes, ap.aps_pkts); 42145510Sdarrenr#endif 43145510Sdarrenr printf(" data %s size %d\n", ap.aps_data ? "YES" : "NO", ap.aps_psiz); 44145510Sdarrenr if ((ap.aps_p == IPPROTO_TCP) && (opts & OPT_VERBOSE)) { 45145510Sdarrenr printf("\t\tstate[%u,%u], sel[%d,%d]\n", 46145510Sdarrenr ap.aps_state[0], ap.aps_state[1], 47145510Sdarrenr ap.aps_sel[0], ap.aps_sel[1]); 48145510Sdarrenr#if (defined(NetBSD) && (NetBSD >= 199905) && (NetBSD < 1991011)) || \ 49145510Sdarrenr (__FreeBSD_version >= 300000) || defined(OpenBSD) 50145510Sdarrenr printf("\t\tseq: off %hd/%hd min %x/%x\n", 51145510Sdarrenr ap.aps_seqoff[0], ap.aps_seqoff[1], 52145510Sdarrenr ap.aps_seqmin[0], ap.aps_seqmin[1]); 53145510Sdarrenr printf("\t\tack: off %hd/%hd min %x/%x\n", 54145510Sdarrenr ap.aps_ackoff[0], ap.aps_ackoff[1], 55145510Sdarrenr ap.aps_ackmin[0], ap.aps_ackmin[1]); 56145510Sdarrenr#else 57145510Sdarrenr printf("\t\tseq: off %hd/%hd min %lx/%lx\n", 58145510Sdarrenr ap.aps_seqoff[0], ap.aps_seqoff[1], 59145510Sdarrenr ap.aps_seqmin[0], ap.aps_seqmin[1]); 60145510Sdarrenr printf("\t\tack: off %hd/%hd min %lx/%lx\n", 61145510Sdarrenr ap.aps_ackoff[0], ap.aps_ackoff[1], 62145510Sdarrenr ap.aps_ackmin[0], ap.aps_ackmin[1]); 63145510Sdarrenr#endif 64145510Sdarrenr } 65145510Sdarrenr 66145510Sdarrenr if (!strcmp(apr.apr_label, "raudio") && ap.aps_psiz == sizeof(ra)) { 67145510Sdarrenr if (kmemcpy((char *)&ra, (long)ap.aps_data, sizeof(ra))) 68145510Sdarrenr return; 69145510Sdarrenr printf("\tReal Audio Proxy:\n"); 70145510Sdarrenr printf("\t\tSeen PNA: %d\tVersion: %d\tEOS: %d\n", 71145510Sdarrenr ra.rap_seenpna, ra.rap_version, ra.rap_eos); 72145510Sdarrenr printf("\t\tMode: %#x\tSBF: %#x\n", ra.rap_mode, ra.rap_sbf); 73145510Sdarrenr printf("\t\tPorts:pl %hu, pr %hu, sr %hu\n", 74145510Sdarrenr ra.rap_plport, ra.rap_prport, ra.rap_srport); 75145510Sdarrenr } else if (!strcmp(apr.apr_label, "ftp") && 76145510Sdarrenr (ap.aps_psiz == sizeof(ftp))) { 77145510Sdarrenr if (kmemcpy((char *)&ftp, (long)ap.aps_data, sizeof(ftp))) 78145510Sdarrenr return; 79145510Sdarrenr printf("\tFTP Proxy:\n"); 80145510Sdarrenr printf("\t\tpassok: %d\n", ftp.ftp_passok); 81145510Sdarrenr ftp.ftp_side[0].ftps_buf[FTP_BUFSZ - 1] = '\0'; 82145510Sdarrenr ftp.ftp_side[1].ftps_buf[FTP_BUFSZ - 1] = '\0'; 83145510Sdarrenr printf("\tClient:\n"); 84145510Sdarrenr printf("\t\tseq %x (ack %x) len %d junk %d cmds %d\n", 85145510Sdarrenr ftp.ftp_side[0].ftps_seq[0], 86145510Sdarrenr ftp.ftp_side[0].ftps_seq[1], 87145510Sdarrenr ftp.ftp_side[0].ftps_len, ftp.ftp_side[0].ftps_junk, 88145510Sdarrenr ftp.ftp_side[0].ftps_cmds); 89145510Sdarrenr printf("\t\tbuf ["); 90145510Sdarrenr printbuf(ftp.ftp_side[0].ftps_buf, FTP_BUFSZ, 1); 91145510Sdarrenr printf("]\n\tServer:\n"); 92145510Sdarrenr printf("\t\tseq %x (ack %x) len %d junk %d cmds %d\n", 93145510Sdarrenr ftp.ftp_side[1].ftps_seq[0], 94145510Sdarrenr ftp.ftp_side[1].ftps_seq[1], 95145510Sdarrenr ftp.ftp_side[1].ftps_len, ftp.ftp_side[1].ftps_junk, 96145510Sdarrenr ftp.ftp_side[1].ftps_cmds); 97145510Sdarrenr printf("\t\tbuf ["); 98145510Sdarrenr printbuf(ftp.ftp_side[1].ftps_buf, FTP_BUFSZ, 1); 99145510Sdarrenr printf("]\n"); 100145510Sdarrenr } else if (!strcmp(apr.apr_label, "ipsec") && 101145510Sdarrenr (ap.aps_psiz == sizeof(ipsec))) { 102145510Sdarrenr if (kmemcpy((char *)&ipsec, (long)ap.aps_data, sizeof(ipsec))) 103145510Sdarrenr return; 104145510Sdarrenr printf("\tIPSec Proxy:\n"); 105145510Sdarrenr printf("\t\tICookie %08x%08x RCookie %08x%08x %s\n", 106145510Sdarrenr (u_int)ntohl(ipsec.ipsc_icookie[0]), 107145510Sdarrenr (u_int)ntohl(ipsec.ipsc_icookie[1]), 108145510Sdarrenr (u_int)ntohl(ipsec.ipsc_rcookie[0]), 109145510Sdarrenr (u_int)ntohl(ipsec.ipsc_rcookie[1]), 110145510Sdarrenr ipsec.ipsc_rckset ? "(Set)" : "(Not set)"); 111145510Sdarrenr } 112145510Sdarrenr} 113