Attachment #24111 for bug #38769




++ src/util.c  2003-10-01 16:20:27.000000000 +0200

            LogMessage("\n\n===================================="
                    "===========================================\n");
            LogMessage("Snort analyzed %d out of %d packets, ", 
                    ps.ps_recv - ps.ps_drop, ps.ps_recv);

            if(ps.ps_recv)
            {
                LogMessage("dropping %d(%.3f%%) packets\n\n", 
                        ps.ps_drop, 
                        CalcPct( (float) ps.ps_drop, (float) ps.ps_recv ));
            }
            else
            {


            LogMessage("Breakdown by protocol:                Action Stats:\n");
            LogMessage("    TCP: %-10ld (%.3f%%)%-*sALERTS: %-10ld\n", 
                    pc.tcp, CalcPct((float) pc.tcp, recv), 
                    CalcPct((float)pc.tcp,recv + drop)<10?10:9 , " ", pc.alert_pkts);
            LogMessage("    UDP: %-10ld (%.3f%%)%-*sLOGGED: %-10ld\n", 
                    pc.udp, CalcPct((float) pc.udp, recv),  
                    CalcPct((float)pc.udp,recv + drop)<10?10:9, " ", pc.log_pkts);
            LogMessage("   ICMP: %-10ld (%.3f%%)%-*sPASSED: %-10ld\n", 
                    pc.icmp, CalcPct((float) pc.icmp, recv), 
                    CalcPct((float)pc.icmp,recv + drop)<10?10:9, " ", pc.pass_pkts);
            LogMessage("    ARP: %-10ld (%.3f%%)\n", 
                    pc.arp, CalcPct((float) pc.arp, recv));
            LogMessage("  EAPOL: %-10ld (%.3f%%)\n", 
                        pc.eapol, CalcPct((float) pc.eapol, recv));
            LogMessage("   IPv6: %-10ld (%.3f%%)\n", 
                    pc.ipv6, CalcPct((float) pc.ipv6, recv));
            LogMessage("    IPX: %-10ld (%.3f%%)\n", 
                    pc.ipx, CalcPct((float) pc.ipx, recv));
            LogMessage("  OTHER: %-10ld (%.3f%%)\n", 
                    pc.other, CalcPct((float) pc.other, recv));
            LogMessage("DISCARD: %-10ld (%.3f%%)\n", 
                    pc.discards, CalcPct((float) pc.discards, recv));
            LogMessage("================================================"
                    "===============================\n");
            LogMessage("Wireless Stats:\n");
        LogMessage("Breakdown by type:\n");
            LogMessage("    Management Packets: %-10ld (%.3f%%)\n", 
                        pc.wifi_mgmt, CalcPct((float) pc.wifi_mgmt
                          , recv));
            LogMessage("    Control Packets:    %-10ld (%.3f%%)\n", 
                        pc.wifi_control, CalcPct((float) pc.wifi_control
                          , recv));
            LogMessage("    Data Packets:       %-10ld (%.3f%%)\n", 
                        pc.wifi_data, CalcPct((float) pc.wifi_data
                          , recv));
            LogMessage("================================================"
                       "===============================\n");
            LogMessage("Fragmentation Stats:\n");
            LogMessage("Fragmented IP Packets: %-10ld (%.3f%%)\n", 
                    pc.frags, CalcPct((float) pc.frags, recv));
            LogMessage("    Fragment Trackers: %-10ld\n", 
                    pc.frag_trackers);
            LogMessage("   Rebuilt IP Packets: %-10ld\n", 

            LogMessage("TCP Stream Reassembly Stats:\n");
            LogMessage("        TCP Packets Used: %-10ld (%-3.3f%%)\n", 
                    pc.tcp_stream_pkts, 
                    CalcPct((float) pc.tcp_stream_pkts, recv));
            LogMessage("         Stream Trackers: %-10ld\n", pc.tcp_streams);
            LogMessage("          Stream flushes: %-10ld\n", pc.rebuilt_tcp);
            LogMessage("           Segments used: %-10ld\n", pc.rebuilt_segs);

Return to bug 38769

Line Link Here

(-)file_not_specified_in_diff (-17 / +17 lines)
0	-- src/util.orig 2003-10-01 16:17:50.000000000 +0200	0	++ src/util.c 2003-10-01 16:20:27.000000000 +0200
Lines 916-928 Link Here
916	LogMessage("\n\n===================================="	916	LogMessage("\n\n===================================="
917	"===========================================\n");	917	"===========================================\n");
918	LogMessage("Snort analyzed %d out of %d packets, ",	918	LogMessage("Snort analyzed %d out of %d packets, ",
919	ps.ps_recv, ps.ps_recv+ps.ps_drop);	919	ps.ps_recv - ps.ps_drop, ps.ps_recv);
920		920
921	if(ps.ps_recv)	921	if(ps.ps_recv)
922	{	922	{
923	LogMessage("dropping %d(%.3f%%) packets\n\n",	923	LogMessage("dropping %d(%.3f%%) packets\n\n",
924	ps.ps_drop,	924	ps.ps_drop,
925	CalcPct( (float) ps.ps_drop, (float) (ps.ps_recv+ps.ps_drop) ));	925	CalcPct( (float) ps.ps_drop, (float) ps.ps_recv ));
926	}	926	}
927	else	927	else
928	{	928	{
Lines 931-974 Link Here
931		931
932	LogMessage("Breakdown by protocol: Action Stats:\n");	932	LogMessage("Breakdown by protocol: Action Stats:\n");
933	LogMessage(" TCP: %-10ld (%.3f%%)%-*sALERTS: %-10ld\n",	933	LogMessage(" TCP: %-10ld (%.3f%%)%-*sALERTS: %-10ld\n",
934	pc.tcp, CalcPct((float) pc.tcp, recv + drop),	934	pc.tcp, CalcPct((float) pc.tcp, recv),
935	CalcPct((float)pc.tcp,recv + drop)<10?10:9 , " ", pc.alert_pkts);	935	CalcPct((float)pc.tcp,recv + drop)<10?10:9 , " ", pc.alert_pkts);
936	LogMessage(" UDP: %-10ld (%.3f%%)%-*sLOGGED: %-10ld\n",	936	LogMessage(" UDP: %-10ld (%.3f%%)%-*sLOGGED: %-10ld\n",
937	pc.udp, CalcPct((float) pc.udp, recv + drop),	937	pc.udp, CalcPct((float) pc.udp, recv),
938	CalcPct((float)pc.udp,recv + drop)<10?10:9, " ", pc.log_pkts);	938	CalcPct((float)pc.udp,recv + drop)<10?10:9, " ", pc.log_pkts);
939	LogMessage(" ICMP: %-10ld (%.3f%%)%-*sPASSED: %-10ld\n",	939	LogMessage(" ICMP: %-10ld (%.3f%%)%-*sPASSED: %-10ld\n",
940	pc.icmp, CalcPct((float) pc.icmp, recv + drop),	940	pc.icmp, CalcPct((float) pc.icmp, recv),
941	CalcPct((float)pc.icmp,recv + drop)<10?10:9, " ", pc.pass_pkts);	941	CalcPct((float)pc.icmp,recv + drop)<10?10:9, " ", pc.pass_pkts);
942	LogMessage(" ARP: %-10ld (%.3f%%)\n",	942	LogMessage(" ARP: %-10ld (%.3f%%)\n",
943	pc.arp, CalcPct((float) pc.arp, recv + drop));	943	pc.arp, CalcPct((float) pc.arp, recv));
944	LogMessage(" EAPOL: %-10ld (%.3f%%)\n",	944	LogMessage(" EAPOL: %-10ld (%.3f%%)\n",
945	pc.eapol, CalcPct((float) pc.eapol, recv + drop));	945	pc.eapol, CalcPct((float) pc.eapol, recv));
946	LogMessage(" IPv6: %-10ld (%.3f%%)\n",	946	LogMessage(" IPv6: %-10ld (%.3f%%)\n",
947	pc.ipv6, CalcPct((float) pc.ipv6, recv + drop));	947	pc.ipv6, CalcPct((float) pc.ipv6, recv));
948	LogMessage(" IPX: %-10ld (%.3f%%)\n",	948	LogMessage(" IPX: %-10ld (%.3f%%)\n",
949	pc.ipx, CalcPct((float) pc.ipx, recv + drop));	949	pc.ipx, CalcPct((float) pc.ipx, recv));
950	LogMessage(" OTHER: %-10ld (%.3f%%)\n",	950	LogMessage(" OTHER: %-10ld (%.3f%%)\n",
951	pc.other, CalcPct((float) pc.other, recv + drop));	951	pc.other, CalcPct((float) pc.other, recv));
952	LogMessage("DISCARD: %-10ld (%.3f%%)\n",	952	LogMessage("DISCARD: %-10ld (%.3f%%)\n",
953	pc.discards, CalcPct((float) pc.discards, recv + drop));	953	pc.discards, CalcPct((float) pc.discards, recv));
954	LogMessage("================================================"	954	LogMessage("================================================"
955	"===============================\n");	955	"===============================\n");
956	LogMessage("Wireless Stats:\n");	956	LogMessage("Wireless Stats:\n");
957	LogMessage("Breakdown by type:\n");	957	LogMessage("Breakdown by type:\n");
958	LogMessage(" Management Packets: %-10ld (%.3f%%)\n",	958	LogMessage(" Management Packets: %-10ld (%.3f%%)\n",
959	pc.wifi_mgmt, CalcPct((float) pc.wifi_mgmt	959	pc.wifi_mgmt, CalcPct((float) pc.wifi_mgmt
960	, recv + drop));	960	, recv));
961	LogMessage(" Control Packets: %-10ld (%.3f%%)\n",	961	LogMessage(" Control Packets: %-10ld (%.3f%%)\n",
962	pc.wifi_control, CalcPct((float) pc.wifi_control	962	pc.wifi_control, CalcPct((float) pc.wifi_control
963	, recv + drop));	963	, recv));
964	LogMessage(" Data Packets: %-10ld (%.3f%%)\n",	964	LogMessage(" Data Packets: %-10ld (%.3f%%)\n",
965	pc.wifi_data, CalcPct((float) pc.wifi_data	965	pc.wifi_data, CalcPct((float) pc.wifi_data
966	, recv + drop));	966	, recv));
967	LogMessage("================================================"	967	LogMessage("================================================"
968	"===============================\n");	968	"===============================\n");
969	LogMessage("Fragmentation Stats:\n");	969	LogMessage("Fragmentation Stats:\n");
970	LogMessage("Fragmented IP Packets: %-10ld (%.3f%%)\n",	970	LogMessage("Fragmented IP Packets: %-10ld (%.3f%%)\n",
971	pc.frags, CalcPct((float) pc.frags, recv + drop));	971	pc.frags, CalcPct((float) pc.frags, recv));
972	LogMessage(" Fragment Trackers: %-10ld\n",	972	LogMessage(" Fragment Trackers: %-10ld\n",
973	pc.frag_trackers);	973	pc.frag_trackers);
974	LogMessage(" Rebuilt IP Packets: %-10ld\n",	974	LogMessage(" Rebuilt IP Packets: %-10ld\n",
Lines 987-993 Link Here
987	LogMessage("TCP Stream Reassembly Stats:\n");	987	LogMessage("TCP Stream Reassembly Stats:\n");
988	LogMessage(" TCP Packets Used: %-10ld (%-3.3f%%)\n",	988	LogMessage(" TCP Packets Used: %-10ld (%-3.3f%%)\n",
989	pc.tcp_stream_pkts,	989	pc.tcp_stream_pkts,
990	CalcPct((float) pc.tcp_stream_pkts, recv + drop));	990	CalcPct((float) pc.tcp_stream_pkts, recv));
991	LogMessage(" Stream Trackers: %-10ld\n", pc.tcp_streams);	991	LogMessage(" Stream Trackers: %-10ld\n", pc.tcp_streams);
992	LogMessage(" Stream flushes: %-10ld\n", pc.rebuilt_tcp);	992	LogMessage(" Stream flushes: %-10ld\n", pc.rebuilt_tcp);
993	LogMessage(" Segments used: %-10ld\n", pc.rebuilt_segs);	993	LogMessage(" Segments used: %-10ld\n", pc.rebuilt_segs);