File: flow_report.c

package info (click to toggle)

libtrace3 3.0.22-0.2

links: PTS
area: main
in suites: forky, sid, trixie
size: 4,452 kB
sloc: ansic: 24,574; sh: 11,372; cpp: 1,811; makefile: 460; yacc: 96; lex: 50

file content (60 lines) | stat: -rw-r--r-- 1,277 bytes

parent folder | download | duplicates (5)

#include <netdb.h>
#include <inttypes.h>
#include <lt_inttypes.h>
#include <stdio.h>
#include <stdlib.h>
#include "libtrace.h"
#include "tracereport.h"
#include "contain.h"
#include "report.h"

static uint64_t flow_count=0;

struct fivetuple_t {
	uint32_t ipa;
	uint32_t ipb;
	uint16_t porta;
	uint16_t portb;
	uint8_t prot;
};

static int fivetuplecmp(struct fivetuple_t a, struct fivetuple_t b)
{
	if (a.porta != b.porta) return a.porta-b.porta;
	if (a.portb != b.portb) return a.portb-b.portb;
	if (a.ipa != b.ipa) return a.ipa-b.ipa;
	if (a.ipb != b.ipb) return a.ipb-b.ipb;
	return a.prot - b.prot;
}

static int flowset_cmp(const splay *a, const splay *b);
SET_CREATE(flowset,struct fivetuple_t,fivetuplecmp)

void flow_per_packet(struct libtrace_packet_t *packet)
{
	struct libtrace_ip *ip = trace_get_ip(packet);
	struct fivetuple_t ft;
	if (!ip)
		return;
	ft.ipa=ip->ip_src.s_addr;
	ft.ipb=ip->ip_dst.s_addr;
	ft.porta=trace_get_source_port(packet);
	ft.portb=trace_get_destination_port(packet);
	ft.prot = 0;

	if (!SET_CONTAINS(flowset,ft)) {
		SET_INSERT(flowset,ft);
		flow_count++;
	}
}

void flow_report(void)
{
	FILE *out = fopen("flows.rpt", "w");
	if (!out) {
		perror("fopen");
		return;
	}
	fprintf(out, "Flows: %" PRIu64 "\n",flow_count);
	fclose(out);
}