xref: /openbsd/usr.sbin/tcpdump/print-enc.c (revision cca36db2) 
1 /*	$OpenBSD: print-enc.c,v 1.11 2009/10/27 23:59:55 deraadt Exp $	*/
2 
3 /*
4  * Copyright (c) 1990, 1991, 1993, 1994, 1995, 1996
5  *	The Regents of the University of California.  All rights reserved.
6  *
7  * Redistribution and use in source and binary forms, with or without
8  * modification, are permitted provided that: (1) source code distributions
9  * retain the above copyright notice and this paragraph in its entirety, (2)
10  * distributions including binary code include the above copyright notice and
11  * this paragraph in its entirety in the documentation or other materials
12  * provided with the distribution, and (3) all advertising materials mentioning
13  * features or use of this software display the following acknowledgement:
14  * ``This product includes software developed by the University of California,
15  * Lawrence Berkeley Laboratory and its contributors.'' Neither the name of
16  * the University nor the names of its contributors may be used to endorse
17  * or promote products derived from this software without specific prior
18  * written permission.
19  * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR IMPLIED
20  * WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF
21  * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
22  */
23 
24 #include <sys/param.h>
25 #include <sys/time.h>
26 #include <sys/socket.h>
27 #include <sys/file.h>
28 #include <sys/ioctl.h>
29 #include <sys/mbuf.h>
30 
31 struct rtentry;
32 #include <net/if.h>
33 #include <netinet/ip_ipsp.h>
34 #include <net/if_enc.h>
35 
36 #include <netinet/in.h>
37 #include <netinet/in_systm.h>
38 #include <netinet/ip.h>
39 
40 #include <ctype.h>
41 #include <netdb.h>
42 #include <pcap.h>
43 #include <signal.h>
44 #include <stdio.h>
45 
46 #include "interface.h"
47 #include "addrtoname.h"
48 
49 #define ENC_PRINT_TYPE(wh, xf, nam) \
50 	if ((wh) & (xf)) { \
51 		printf("%s%s", nam, (wh) == (xf) ? "): " : ","); \
52 		(wh) &= ~(xf); \
53 	}
54 
55 void
56 enc_if_print(u_char *user, const struct pcap_pkthdr *h, const u_char *p)
57 {
58 	u_int length = h->len, caplen = h->caplen;
59 	const struct enchdr *hdr;
60 	int flags;
61 
62 	ts_print(&h->ts);
63 
64 	if (caplen < ENC_HDRLEN) {
65 		printf("[|enc]");
66 		goto out;
67 	}
68 
69 	/*
70 	 * Some printers want to get back at the link level addresses,
71 	 * and/or check that they're not walking off the end of the packet.
72 	 * Rather than pass them all the way down, we set these globals.
73 	 */
74 	packetp = p;
75 	snapend = p + caplen;
76 
77 	hdr = (struct enchdr *)p;
78 	flags = hdr->flags;
79 	if (flags == 0)
80 		printf("(unprotected): ");
81 	else
82 		printf("(");
83 	ENC_PRINT_TYPE(flags, M_AUTH, "authentic");
84 	ENC_PRINT_TYPE(flags, M_CONF, "confidential");
85 	/* ENC_PRINT_TYPE(flags, M_TUNNEL, "tunnel"); */
86 	printf("SPI 0x%08x: ", ntohl(hdr->spi));
87 
88 	length -= ENC_HDRLEN;
89 	p += ENC_HDRLEN;
90 
91 	switch (hdr->af) {
92 	case AF_INET:
93 	default:
94 		ip_print(p, length);
95 		break;
96 	case AF_INET6:
97 		ip6_print(p, length);
98 		break;
99 	}
100 
101 	if (xflag)
102 		default_print(p, caplen - ENC_HDRLEN);
103 out:
104 	putchar('\n');
105 }
106