/* Handle signals for clean reloading or shutdown */
void handle_signal(int sig) {
#ifdef DEBUG
ASSERT(sig > 0);
#endif
switch (sig) {
case SIGHUP:
LOG_PRINT("Caught SIGHUP, reloading...");
print_stats();
if (rate_stats)
cleanup_rate_stats();
open_outfiles();
if (rate_stats)
init_rate_stats(rate_interval, use_infile, rate_threshold);
return;
case SIGINT:
LOG_PRINT("Caught SIGINT, shutting down...");
print_stats();
cleanup();
break;
case SIGTERM:
LOG_PRINT("Caught SIGTERM, shutting down...");
print_stats();
cleanup();
break;
default:
LOG_WARN("Ignoring unknown signal '%d'", sig);
return;
}
exit(sig);
}
int main(int argc, char **argv) {
int opt;
extern char *optarg;
extern int optind;
int loop_status;
signal(SIGHUP, &handle_signal);
signal(SIGINT, &handle_signal);
/* Process command line arguments */
while ((opt = getopt(argc, argv, "b:df:Fhpqi:l:m:n:o:P:r:st:u:S:")) != -1) {
switch (opt) {
case 'b': use_dumpfile = optarg; break;
case 'd': daemon_mode = 1; use_syslog = 1; break;
case 'f': format_str = optarg; break;
case 'F': force_flush = 1; break;
case 'h': display_usage(); break;
case 'i': interface = optarg; break;
case 'l': rate_threshold = atoi(optarg); break;
case 'm': methods_str = optarg; break;
case 'n': parse_count = atoi(optarg); break;
case 'o': use_outfile = optarg; break;
case 'p': set_promisc = 0; break;
case 'P': pid_filename = optarg; break;
case 'q': quiet_mode = 1; break;
case 'r': use_infile = optarg; break;
case 's': rate_stats = 1; break;
case 't': rate_interval = atoi(optarg); break;
case 'u': new_user = optarg; break;
case 'S': eth_skip_bits = atoi(optarg); break;
default: display_usage();
}
}
display_banner();
if (daemon_mode && !use_outfile)
LOG_DIE("Daemon mode requires an output file");
if (parse_count < 0)
LOG_DIE("Invalid -n value, must be 0 or greater");
if (rate_interval < 1)
LOG_DIE("Invalid -t value, must be 1 or greater");
if (rate_threshold < 1)
LOG_DIE("Invalid -l value, must be 1 or greater");
if (argv[optind] && *(argv[optind])) {
capfilter = argv[optind];
} else {
capfilter = default_capfilter;
}
if (!format_str) format_str = default_format;
if (rate_stats) format_str = rate_format;
parse_format_string(format_str);
if (!methods_str) methods_str = default_methods;
parse_methods_string(methods_str);
if (force_flush) {
if (setvbuf(stdout, NULL, _IONBF, 0) != 0)
LOG_WARN("Cannot disable buffering on stdout");
}
if (!pid_filename) pid_filename = PID_FILENAME;
pcap_hnd = prepare_capture(interface, set_promisc, use_infile, capfilter);
open_outfiles();
if (daemon_mode) runas_daemon();
if (new_user) change_user(new_user);
if ((buf = malloc(BUFSIZ + 1)) == NULL)
LOG_DIE("Cannot allocate memory for packet data buffer");
if (rate_stats)
init_rate_stats(rate_interval, use_infile, rate_threshold);
start_time = time(0);
loop_status = pcap_loop(pcap_hnd, -1, &parse_http_packet, NULL);
if (loop_status == -1) {
LOG_DIE("Problem reading packets from interface: %s", pcap_geterr(pcap_hnd));
} else if (loop_status == -2) {
PRINT("Loop halted, shutting down...");
}
print_stats();
cleanup();
return loop_status == -1 ? EXIT_FAILURE : EXIT_SUCCESS;
}
int main(int argc, char **argv) {
int opt;
extern char *optarg;
extern int optind;
int loop_status;
signal(SIGINT, &handle_signal);
/* Process command line arguments */
while ((opt = getopt(argc, argv, "b:df:hpqi:m:n:o:r:u:")) != -1) {
switch (opt) {
case 'b': use_dumpfile = optarg; break;
case 'd': daemon_mode = 1;
use_syslog = 1; break;
case 'f': format_str = optarg; break;
case 'h': display_usage(); break;
case 'i': interface = optarg; break;
case 'm': methods_str = optarg; break;
case 'n': parse_count = atoi(optarg); break;
case 'o': use_outfile = optarg; break;
case 'p': set_promisc = 0; break;
case 'q': quiet_mode = 1; break;
case 'r': use_infile = optarg; break;
case 'u': new_user = optarg; break;
default: display_usage();
}
}
display_banner();
if (daemon_mode && !use_outfile)
LOG_DIE("Daemon mode requires an output file");
if (parse_count < 0)
LOG_DIE("Invalid -n value, must be 0 or greater");
if (argv[optind] && *(argv[optind])) {
capfilter = argv[optind];
} else {
capfilter = default_capfilter;
}
if (!format_str) format_str = default_format;
parse_format_string(format_str);
if (!methods_str) methods_str = default_methods;
parse_methods_string(methods_str);
pcap_hnd = prepare_capture(interface, set_promisc, use_infile, capfilter);
open_outfiles();
if (daemon_mode) runas_daemon();
if (new_user) change_user(new_user);
if ((buf = malloc(BUFSIZ + 1)) == NULL)
LOG_DIE("Cannot allocate memory for packet data buffer");
start_time = time(0);
loop_status = pcap_loop(pcap_hnd, -1, &parse_http_packet, NULL);
if (loop_status == -1) {
LOG_DIE("Problem reading packets from interface: %s", pcap_geterr(pcap_hnd));
} else if (loop_status == -2) {
PRINT("Loop halted, shutting down...");
}
cleanup();
return loop_status == -1 ? EXIT_FAILURE : EXIT_SUCCESS;
}
