xref: /freebsd/usr.bin/netstat/pfkey.c (revision 6472ac3d8a86336899b6cfb789a4cd9897e3fab5)
1 /*	$NetBSD: inet.c,v 1.35.2.1 1999/04/29 14:57:08 perry Exp $	*/
2 /*	$KAME: ipsec.c,v 1.25 2001/03/12 09:04:39 itojun Exp $	*/
3 /*-
4  * Copyright (C) 1995, 1996, 1997, 1998, and 1999 WIDE Project.
5  * All rights reserved.
6  *
7  * Redistribution and use in source and binary forms, with or without
8  * modification, are permitted provided that the following conditions
9  * are met:
10  * 1. Redistributions of source code must retain the above copyright
11  *    notice, this list of conditions and the following disclaimer.
12  * 2. Redistributions in binary form must reproduce the above copyright
13  *    notice, this list of conditions and the following disclaimer in the
14  *    documentation and/or other materials provided with the distribution.
15  * 3. Neither the name of the project nor the names of its contributors
16  *    may be used to endorse or promote products derived from this software
17  *    without specific prior written permission.
18  *
19  * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
20  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
21  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
22  * ARE DISCLAIMED.  IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
23  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
24  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
25  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
26  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
27  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
28  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
29  * SUCH DAMAGE.
30  */
31 /*-
32  * Copyright (c) 1983, 1988, 1993
33  *	The Regents of the University of California.  All rights reserved.
34  *
35  * Redistribution and use in source and binary forms, with or without
36  * modification, are permitted provided that the following conditions
37  * are met:
38  * 1. Redistributions of source code must retain the above copyright
39  *    notice, this list of conditions and the following disclaimer.
40  * 2. Redistributions in binary form must reproduce the above copyright
41  *    notice, this list of conditions and the following disclaimer in the
42  *    documentation and/or other materials provided with the distribution.
43  * 4. Neither the name of the University nor the names of its contributors
44  *    may be used to endorse or promote products derived from this software
45  *    without specific prior written permission.
46  *
47  * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
48  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
49  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
50  * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
51  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
52  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
53  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
54  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
55  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
56  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
57  * SUCH DAMAGE.
58  */
59 
60 #if 0
61 #ifndef lint
62 static char sccsid[] = "@(#)inet.c	8.5 (Berkeley) 5/24/95";
63 #endif /* not lint */
64 #endif
65 
66 #include <sys/cdefs.h>
67 __FBSDID("$FreeBSD$");
68 
69 #include <sys/param.h>
70 #include <sys/queue.h>
71 #include <sys/socket.h>
72 #include <sys/socketvar.h>
73 
74 #include <netinet/in.h>
75 
76 #ifdef IPSEC
77 #include <netipsec/keysock.h>
78 #endif
79 
80 #include <stdint.h>
81 #include <stdio.h>
82 #include <string.h>
83 #include <unistd.h>
84 #include "netstat.h"
85 
86 #ifdef IPSEC
87 
88 static const char *pfkey_msgtypenames[] = {
89 	"reserved", "getspi", "update", "add", "delete",
90 	"get", "acquire", "register", "expire", "flush",
91 	"dump", "x_promisc", "x_pchange", "x_spdupdate", "x_spdadd",
92 	"x_spddelete", "x_spdget", "x_spdacquire", "x_spddump", "x_spdflush",
93 	"x_spdsetidx", "x_spdexpire", "x_spddelete2"
94 };
95 
96 static const char *pfkey_msgtype_names (int);
97 
98 
99 static const char *
100 pfkey_msgtype_names(int x)
101 {
102 	const int max =
103 	    sizeof(pfkey_msgtypenames)/sizeof(pfkey_msgtypenames[0]);
104 	static char buf[20];
105 
106 	if (x < max && pfkey_msgtypenames[x])
107 		return pfkey_msgtypenames[x];
108 	snprintf(buf, sizeof(buf), "#%d", x);
109 	return buf;
110 }
111 
112 void
113 pfkey_stats(u_long off, const char *name, int family __unused,
114     int proto __unused)
115 {
116 	struct pfkeystat pfkeystat;
117 	unsigned first, type;
118 
119 	if (off == 0)
120 		return;
121 	printf ("%s:\n", name);
122 	kread(off, (char *)&pfkeystat, sizeof(pfkeystat));
123 
124 #define	p(f, m) if (pfkeystat.f || sflag <= 1) \
125     printf(m, (uintmax_t)pfkeystat.f, plural(pfkeystat.f))
126 
127 	/* userland -> kernel */
128 	p(out_total, "\t%ju request%s sent from userland\n");
129 	p(out_bytes, "\t%ju byte%s sent from userland\n");
130 	for (first = 1, type = 0;
131 	     type < sizeof(pfkeystat.out_msgtype)/sizeof(pfkeystat.out_msgtype[0]);
132 	     type++) {
133 		if (pfkeystat.out_msgtype[type] <= 0)
134 			continue;
135 		if (first) {
136 			printf("\thistogram by message type:\n");
137 			first = 0;
138 		}
139 		printf("\t\t%s: %ju\n", pfkey_msgtype_names(type),
140 			(uintmax_t)pfkeystat.out_msgtype[type]);
141 	}
142 	p(out_invlen, "\t%ju message%s with invalid length field\n");
143 	p(out_invver, "\t%ju message%s with invalid version field\n");
144 	p(out_invmsgtype, "\t%ju message%s with invalid message type field\n");
145 	p(out_tooshort, "\t%ju message%s too short\n");
146 	p(out_nomem, "\t%ju message%s with memory allocation failure\n");
147 	p(out_dupext, "\t%ju message%s with duplicate extension\n");
148 	p(out_invexttype, "\t%ju message%s with invalid extension type\n");
149 	p(out_invsatype, "\t%ju message%s with invalid sa type\n");
150 	p(out_invaddr, "\t%ju message%s with invalid address extension\n");
151 
152 	/* kernel -> userland */
153 	p(in_total, "\t%ju request%s sent to userland\n");
154 	p(in_bytes, "\t%ju byte%s sent to userland\n");
155 	for (first = 1, type = 0;
156 	     type < sizeof(pfkeystat.in_msgtype)/sizeof(pfkeystat.in_msgtype[0]);
157 	     type++) {
158 		if (pfkeystat.in_msgtype[type] <= 0)
159 			continue;
160 		if (first) {
161 			printf("\thistogram by message type:\n");
162 			first = 0;
163 		}
164 		printf("\t\t%s: %ju\n", pfkey_msgtype_names(type),
165 			(uintmax_t)pfkeystat.in_msgtype[type]);
166 	}
167 	p(in_msgtarget[KEY_SENDUP_ONE],
168 	    "\t%ju message%s toward single socket\n");
169 	p(in_msgtarget[KEY_SENDUP_ALL],
170 	    "\t%ju message%s toward all sockets\n");
171 	p(in_msgtarget[KEY_SENDUP_REGISTERED],
172 	    "\t%ju message%s toward registered sockets\n");
173 	p(in_nomem, "\t%ju message%s with memory allocation failure\n");
174 #undef p
175 }
176 #endif /* IPSEC */
177