/*	$OpenBSD: pcap-bpf.c,v 1.35 2017/04/19 05:36:12 natano Exp $	*/

/*

 * Copyright (c) 1993, 1994, 1995, 1996, 1998

 *	The Regents of the University of California.  All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that: (1) source code distributions

 * retain the above copyright notice and this paragraph in its entirety, (2)

 * distributions including binary code include the above copyright notice and

 * this paragraph in its entirety in the documentation or other materials

 * provided with the distribution, and (3) all advertising materials mentioning

 * features or use of this software display the following acknowledgement:

 * ``This product includes software developed by the University of California,

 * Lawrence Berkeley Laboratory and its contributors.'' Neither the name of

 * the University nor the names of its contributors may be used to endorse

 * or promote products derived from this software without specific prior

 * written permission.

 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND WITHOUT ANY EXPRESS OR IMPLIED

 * WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF

 * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.

 */

#include <sys/param.h>			/* optionally get BSD define */

#include <sys/time.h>

#include <sys/socket.h>

#include <sys/ioctl.h>

#include <net/if.h>

#include <ctype.h>

#include <errno.h>

#include <fcntl.h>

#include <netdb.h>

#include <stdio.h>

#include <stdlib.h>

#include <string.h>

#include <unistd.h>

#include <net/if_media.h>

#include "pcap-int.h"

#ifdef HAVE_OS_PROTO_H

#include "os-proto.h"

#endif

#include "gencode.h"

static int find_802_11(struct bpf_dltlist *);

static int monitor_mode(pcap_t *, int);

int

pcap_stats(pcap_t *p, struct pcap_stat *ps)

{

	}

}

int

pcap_read(pcap_t *p, int cnt, pcap_handler callback, u_char *user)

{

	int cc;

	int n = 0;

 again:

	/*

	 * Has "pcap_breakloop()" been called?

	 */

		/*

		 * Yes - clear the flag that indicates that it

		 * has, and return PCAP_ERROR_BREAK to indicate

		 * that we were told to break out of the loop.

		 */

	}

			/* Don't choke when we get ptraced */

			case EINTR:

				goto again;

			case EWOULDBLOCK:

			case ENXIO:

				/*

				 * The device on which we're capturing

				 * went away.

				 *

				 * XXX - we should really return

				 * PCAP_ERROR_IFACE_NOT_UP, but

				 * pcap_dispatch() etc. aren't

				 * defined to return that.

				 */

				    "The interface went down");

#if defined(sun) && !defined(BSD)

			/*

			 * Due to a SunOS bug, after 2^31 bytes, the kernel

			 * file offset overflows and read fails with EINVAL.

			 * The lseek() to 0 will fix things.

			 */

			case EINVAL:

				if (lseek(p->fd, 0L, SEEK_CUR) +

				    p->bufsize < 0) {

					(void)lseek(p->fd, 0L, SEEK_SET);

					goto again;

				}

				/* FALLTHROUGH */

#endif

			}

		}

	/*

	 * Loop through each packet.

	 */

#define bhp ((struct bpf_hdr *)bp)

		int caplen, hdrlen;

		/*

		 * Has "pcap_breakloop()" been called?

		 * If so, return immediately - if we haven't read any

		 * packets, clear the flag and return PCAP_ERROR_BREAK

		 * to indicate that we were told to break out of the loop,

		 * otherwise leave the flag set, so that the *next* call

		 * will break out of the loop without having read any

		 * packets, and return the number of packets we've

		 * processed so far.

		 */

			/*

			 * ep is set based on the return value of read(),

			 * but read() from a BPF device doesn't necessarily

			 * return a value that's a multiple of the alignment

			 * value for BPF_WORDALIGN().  However, whenever we

			 * increment bp, we round up the increment value by

			 * a value rounded up by BPF_WORDALIGN(), so we

			 * could increment bp past ep after processing the

			 * last packet in the buffer.

			 *

			 * We treat ep < bp as an indication that this

			 * happened, and just set p->cc to 0.

			 */

			} else

		}

		/*

		 * XXX A bpf_hdr matches a pcap_pkthdr.

		 */

		}

#undef bhp

int

pcap_inject(pcap_t *p, const void *buf, size_t len)

{

}

int

pcap_sendpacket(pcap_t *p, const u_char *buf, int size)

{

}

/* ARGSUSED */

static __inline int

bpf_open(pcap_t *p)

{

	int fd;

		else

			fd = PCAP_ERROR;

		    "(cannot open BPF device): %s",

	}

}

static int

get_dlt_list(int fd, int v, struct bpf_dltlist *bdlp, char *ebuf)

{

		}

		}

	} else {

		/*

		 * EINVAL just means "we don't support this ioctl on

		 * this device"; don't treat it as an error.

		 */

		}

	}

/*

 * Returns 1 if rfmon mode can be set on the pcap_t, 0 if it can't,

 * a PCAP_ERROR value on an error.

 */

int

pcap_can_set_rfmon(pcap_t *p)

{

#if defined(HAVE_BSD_IEEE80211)

	int ret;

#else

	return (0);

#endif

}

static void

pcap_cleanup_bpf(pcap_t *p)

{

#ifdef HAVE_BSD_IEEE80211

	int sock;

#endif

		/*

		 * There's something we have to do when closing this

		 * pcap_t.

		 */

#ifdef HAVE_BSD_IEEE80211

			/*

			 * We put the interface into rfmon mode;

			 * take it out of rfmon mode.

			 *

			 * XXX - if somebody else wants it in rfmon

			 * mode, this code cannot know that, so it'll take

			 * it out of rfmon mode.

			 */

				    "Can't restore interface flags (socket() failed: %s).\n"

				    "Please adjust manually.\n",

				    sizeof(req.ifm_name));

					    "Can't restore interface flags "

					    "(SIOCGIFMEDIA failed: %s).\n"

					    "Please adjust manually.\n",

					/*

					 * Rfmon mode is currently on;

					 * turn it off.

					 */

					    sizeof(ifr.ifr_name));

						    "Can't restore interface flags "

						    "(SIOCSIFMEDIA failed: %s).\n"

						    "Please adjust manually.\n",

					}

				}

			}

		}

#endif /* HAVE_BSD_IEEE80211 */

		/*

		 * Take this pcap out of the list of pcaps for which we

		 * have to take the interface out of some mode.

		 */

	}

	/*XXX*/

	}

	}

void

pcap_close(pcap_t *p)

{

static int

check_setif_failure(pcap_t *p, int error)

{

		/*

		 * No such device.

		 */

		/*

		 * Return a "network down" indication, so that

		 * the application can report that rather than

		 * saying we had a mysterious failure and

		 * suggest that they report a problem to the

		 * libpcap developers.

		 */

	} else {

		/*

		 * Some other error; fill in the error string, and

		 * return PCAP_ERROR.

		 */

	}

}

int

pcap_activate(pcap_t *p)

{

	int status = 0;

	int fd;

		status = fd;

	}

		status = PCAP_ERROR;

	}

		    "kernel bpf filter out of date");

		status = PCAP_ERROR;

	}

#if 0

	/* Just use the kernel default */

	v = 32768;	/* XXX this should be a user-accessible hook */

	/* Ignore the return value - this is because the call fails on

	 * BPF systems that don't have kernel malloc.  And if the call

	 * fails, it's no big deal, we just continue to use the standard

	 * buffer size.

	 */

	(void) ioctl(fd, BIOCSBLEN, (caddr_t)&v);

#endif

	/*

	 * Set the buffer size.

	 */

		/*

		 * A buffer size was explicitly specified; use it.

		 */

			status = PCAP_ERROR;

		}

	}

	/*

	 * Now bind to the device.

	 */

	}

	/* Get the data link layer type. */

		status = PCAP_ERROR;

	}

	/*

	 * We know the default link type -- now determine all the DLTs

	 * this interface supports.  If this fails with EINVAL, it's

	 * not fatal; we just don't get to use the feature later.

	 */

		status = PCAP_ERROR;

	}

	/*

	 * *BSD with the new 802.11 ioctls.

	 * Do we want monitor mode?

	 */

		/*

		 * Try to put the interface into monitor mode.

		 */

			/*

			 * We failed.

			 */

			goto bad;

		}

		/*

		 * We're in monitor mode.

		 * Try to find the best 802.11 DLT_ value and, if we

		 * succeed, try to switch to that mode if we're not

		 * already in that mode.

		 */

			/*

			 * We have at least one 802.11 DLT_ value.

			 * new_dlt is the best of the 802.11

			 * DLT_ values in the list.

			 *

			 * If the new mode we want isn't the default mode,

			 * attempt to select the new mode.

			 */

					/*

					 * We succeeded; make this the

					 * new DLT_ value.

					 */

				}

			}

		}

	}

	/* set timeout */

			status = PCAP_ERROR;

		}

		/* set promiscuous mode, just warn if it fails */

			status = PCAP_WARNING_PROMISC_NOTSUP;

		}

	}

		status = PCAP_ERROR;

	}

		status = PCAP_ERROR;

	}

		goto bad;

 bad:

		/*

		 * No error message supplied by the activate routine;

		 * for the benefit of programs that don't specially

		 * handle errors other than PCAP_ERROR, return the

		 * error message corresponding to the status.

		 */

	}

static int

monitor_mode(pcap_t *p, int set)

{

	int sock;

	uint64_t *media_list;

	int i;

	int can_do;

	}

	/*

	 * Find out how many media types we have.

	 */

		/*

		 * Can't get the media types.

		 */

		case ENXIO:

			/*

			 * There's no such device.

			 */

		case EINVAL:

		case ENOTTY:

			/*

			 * Interface doesn't support SIOC{G,S}IFMEDIA.

			 */

		default:

		}

	}

		/*

		 * No media types.

		 */

	}

	/*

	 * Allocate a buffer to hold all the media types, and

	 * get the media types.

	 */

	}

	}

	/*

	 * Look for an 802.11 "automatic" media type.

	 * We assume that all 802.11 adapters have that media type,

	 * and that it will carry the monitor mode supported flag.

	 */

	can_do = 0;

			/* OK, does it do monitor mode? */

				can_do = 1;

			}

		}

	}

		/*

		 * This adapter doesn't support monitor mode.

		 */

	}

		/*

		 * Don't just check whether we can enable monitor mode,

		 * do so, if it's not already enabled.

		 */

			/*

			 * Monitor mode isn't currently on, so turn it on,

			 * and remember that we should turn it off when the

			 * pcap_t is closed.

			 */

			/*

			 * If we haven't already done so, arrange to have

			 * "pcap_close_all()" called when we exit.

			 */

				/*

				 * "atexit()" failed; don't put the interface

				 * in monitor mode, just give up.

				 */

				     "atexit failed");

			}

			    sizeof(ifr.ifr_name));

			}

			/*

			 * Add this to the list of pcaps to close when we exit.

			 */

		}

	}

}

/*

 * Check whether we have any 802.11 link-layer types; return the best

 * of the 802.11 link-layer types if we find one, and return -1

 * otherwise.

 *

 * DLT_IEEE802_11_RADIO, with the radiotap header, is considered the

 * best 802.11 link-layer type; any of the other 802.11-plus-radio

 * headers are second-best; 802.11 with no radio information is

 * the least good.

 */

static int

find_802_11(struct bpf_dltlist *bdlp)

{

	int new_dlt;

	int i;

	/*

	 * Scan the list of DLT_ values, looking for 802.11 values,

	 * and, if we find any, choose the best of them.

	 */

	new_dlt = -1;

		case DLT_IEEE802_11:

			/*

			 * 802.11, but no radio.

			 *

			 * Offer this, and select it as the new mode

			 * unless we've already found an 802.11

			 * header with radio information.

			 */

			break;

		case DLT_IEEE802_11_RADIO:

			/*

			 * 802.11 with radiotap.

			 *

			 * Offer this, and select it as the new mode.

			 */

			new_dlt = bdlp->bfl_list[i];

		default:

			/*

			 * Not 802.11.

			 */

			break;

		}

	}

}

pcap_t *

pcap_create(const char *device, char *errbuf)

{

	pcap_t *p;

	}

	}

	/* put in some defaults*/

pcap_t *

pcap_open_live(const char *source, int snaplen, int promisc, int to_ms,

    char *errbuf)

{

	pcap_t *p;

	int status;

		goto fail;

		goto fail;

		goto fail;

	/*

	 * Mark this as opened with pcap_open_live(), so that, for

	 * example, we show the full list of DLT_ values, rather

	 * than just the ones that are compatible with capturing

	 * when not in monitor mode.  That allows existing applications

	 * to work the way they used to work, but allows new applications

	 * that know about the new open API to, for example, find out the

	 * DLT_ values that they can select without changing whether

	 * the adapter is in monitor mode or not.

	 */

		goto fail;

fail:

	else

		    pcap_statustostr(status));

int

pcap_setfilter(pcap_t *p, struct bpf_program *fp)

{

	/*

	 * It looks that BPF code generated by gen_protochain() is not

	 * compatible with some of kernel BPF code (for example BSD/OS 3.1).

	 * Take a safer side for now.

	 */

		}

	}

int

pcap_setdirection(pcap_t *p, pcap_direction_t d)

{

	case PCAP_D_INOUT:

	case PCAP_D_IN:

	case PCAP_D_OUT:

	default:

	}

	}

}

int

pcap_set_datalink(pcap_t *p, int dlt)

{

	int i;

		/*

		 * We couldn't fetch the list of DLTs, or we don't

		 * have a "set datalink" operation, which means

		 * this platform doesn't support changing the

		 * DLT for an interface.  Check whether the new

		 * DLT is the one this interface supports.

		 */

			goto unsupported;

		/*

		 * It is, so there's nothing we need to do here.

		 */

	}

			break;