1 /* $OpenBSD: if_pflog.h,v 1.13 2006/10/23 12:46:09 henning Exp $ */
2 /*
3  * Copyright 2001 Niels Provos <provos@citi.umich.edu>
4  * All rights reserved.
5  *
6  * Redistribution and use in source and binary forms, with or without
7  * modification, are permitted provided that the following conditions
8  * are met:
9  * 1. Redistributions of source code must retain the above copyright
10  *    notice, this list of conditions and the following disclaimer.
11  * 2. Redistributions in binary form must reproduce the above copyright
12  *    notice, this list of conditions and the following disclaimer in the
13  *    documentation and/or other materials provided with the distribution.
14  *
15  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
16  * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
17  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
18  * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
19  * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
20  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
21  * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
22  * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
23  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
24  * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
25  */
26 
27 #ifndef _NET_IF_PFLOG_H_
28 #define	_NET_IF_PFLOG_H_
29 
30 #define	PFLOGIFS_MAX	16
31 
32 struct pflog_softc {
33 #ifdef __FreeBSD__
34 	struct ifnet		*sc_ifp;	/* the interface pointer */
35 #else
36 	struct ifnet		sc_if;		/* the interface */
37 #endif
38 	int			sc_unit;
39 	LIST_ENTRY(pflog_softc)	sc_list;
40 };
41 
42 #define	PFLOG_RULESET_NAME_SIZE	16
43 
44 struct pfloghdr {
45 	u_int8_t	length;
46 	sa_family_t	af;
47 	u_int8_t	action;
48 	u_int8_t	reason;
49 	char		ifname[IFNAMSIZ];
50 	char		ruleset[PFLOG_RULESET_NAME_SIZE];
51 	u_int32_t	rulenr;
52 	u_int32_t	subrulenr;
53 	uid_t		uid;
54 	pid_t		pid;
55 	uid_t		rule_uid;
56 	pid_t		rule_pid;
57 	u_int8_t	dir;
58 	u_int8_t	pad[3];
59 };
60 
61 #define	PFLOG_HDRLEN		sizeof(struct pfloghdr)
62 /* minus pad, also used as a signature */
63 #define	PFLOG_REAL_HDRLEN	offsetof(struct pfloghdr, pad)
64 
65 /* XXX remove later when old format logs are no longer needed */
66 struct old_pfloghdr {
67 	u_int32_t af;
68 	char ifname[IFNAMSIZ];
69 	short rnr;
70 	u_short reason;
71 	u_short action;
72 	u_short dir;
73 };
74 #define	OLD_PFLOG_HDRLEN	sizeof(struct old_pfloghdr)
75 
76 #ifdef _KERNEL
77 #ifdef __FreeBSD__
78 struct pf_rule;
79 struct pf_ruleset;
80 struct pfi_kif;
81 struct pf_pdesc;
82 
83 #if 0
84 typedef int pflog_packet_t(struct pfi_kif *, struct mbuf *, sa_family_t,
85     u_int8_t, u_int8_t, struct pf_rule *, struct pf_rule *,
86     struct pf_ruleset *, struct pf_pdesc *);
87 extern pflog_packet_t *pflog_packet_ptr;
88 #endif
89 #define	PFLOG_PACKET(i,x,a,b,c,d,e,f,g,h) do {		\
90 	if (pflog_packet_ptr != NULL)			\
91 		pflog_packet_ptr(i,a,b,c,d,e,f,g,h);    \
92 } while (0)
93 #else /* ! __FreeBSD__ */
94 #if NPFLOG > 0
95 #define	PFLOG_PACKET(i,x,a,b,c,d,e,f,g,h) pflog_packet(i,a,b,c,d,e,f,g,h)
96 #else
97 #define	PFLOG_PACKET(i,x,a,b,c,d,e,f,g,h) ((void)0)
98 #endif /* NPFLOG > 0 */
99 #endif
100 #endif /* _KERNEL */
101 #endif /* _NET_IF_PFLOG_H_ */
102