#ifdef HAVE_CONFIG_H#include "config.h"#endif#include <unistd.h>#include <errno.h>#include <sys/socket.h>#include <netinet/in.h>#include <arpa/inet.h>#include <string.h>#include <sys/types.h>#include <sys/stat.h>#include <signal.h>#include <net/if.h>#include <netinet/in.h>#include <netinet/in_systm.h>#include <netinet/ip.h>#include <netinet/udp.h>#include <netinet/tcp.h>#include <stdio.h>#include <pcap.h>#include <signal.h>#include <stdlib.h>#include <sys/time.h>#include <sys/wait.h>#include <dirent.h>#if HAVE_INTTYPES_H#include <inttypes.h>#endif#ifdef TYPEDEF_UINT32typedef u_int32_t uint32_t;#endif#ifdef TYPEDEF_UINT16typedef u_int16_t uint16_t;#endif#ifdef HAVE_GD_H#include <gd.h>#else #ifdef HAVE_GD_GD_H#include <gd/gd.h>#endif#endif#ifdef HAVE_GDFONTS_H#include <gdfonts.h>#else #ifdef HAVE_GD_GDFONTS_H#include <gd/gdfonts.h>#endif#endif#include <netdb.h>#include <time.h>#include <syslog.h>#define IP_NUM 4000			// TODO: Do this dynamicly to save ram and/or scale bigger#define SUBNET_NUM 100#define XWIDTH 900#define YHEIGHT 256L#define XOFFSET 90L#define YOFFSET 45L#define NR_WORKER_CHILDS 3#define RANGE1 172800.0    	// 2 days#define RANGE2 604800.0    	// 7 days#define RANGE3 3024000.0    // 35 days#define RANGE4 35640000.0	// 412.5ish days #define INTERVAL1 200L     	// 150 -60 (213 is the perfect interval?)#define INTERVAL2 600L		// 10 minutes#define INTERVAL3 3600L		// 1 hour#define INTERVAL4 43200L	// 12 hours #define CONFIG_GRAPHINTERVALS 1    // 2 -5 Number of Intervals to wait before redrawing the graphs#define CONFIG_GRAPHCUTOFF 1024*1024    // If total data transfered doesn't reach at least this number we don't graph the ip#define LEAD .05    // % Of time to lead the graph#define TRUE 1#define FALSE 0#define CONFIG_METAREFRESH 150#define PERMIS 1#define DB_PGSQL 1struct config	{	char *dev;	char *filter;	unsigned int skip_intervals;	unsigned long long graph_cutoff;	int promisc;	int output_cdf;	int recover_cdf;	int graph;	double range;	unsigned long long interval;	char tag;	unsigned int meta_refresh;	int output_database;	char *db_connect_string;	char *sensor_id;	};struct SubnetData    {    uint32_t ip;    uint32_t mask;    } SubnetTable[SUBNET_NUM];struct Statistics    {    unsigned long long total;    unsigned long long icmp;    unsigned long long udp;    unsigned long long tcp;	unsigned long long ftp;    unsigned long long http;	unsigned long long p2p;    };struct IPData    {    time_t timestamp;    uint32_t ip;	// Host byte order    struct Statistics Send;    struct Statistics Receive;    } IpTable[IP_NUM];struct SummaryData	{	uint32_t IP;	int Graph;  // TRUE or FALSE, Did we write out a graph for this ip	unsigned long long Total;	unsigned long long TotalSent;	unsigned long long TotalReceived;    unsigned long long ICMP;    unsigned long long UDP;    unsigned long long TCP;	unsigned long long FTP;    unsigned long long HTTP;		unsigned long long P2P;	};struct IPDataStore	{	uint32_t ip;		struct DataStoreBlock *FirstBlock;  // This is structure is allocated at the same time, so it always exists.		    struct IPDataStore *Next;	};#define IPDATAALLOCCHUNKS 100struct DataStoreBlock	{	time_t LatestTimestamp;	int NumEntries;  // Is the index of the first unused entry in IPData	struct IPData *Data;  // These are allocated at creation, and thus always exist	struct DataStoreBlock *Next;	};// ****************************************************************************************// ** Function Prototypes// ****************************************************************************************// ************ A fork that orphans the childint             fork2();// ************ The function that gets called with each packetvoid            PacketCallback(u_char *user, const struct pcap_pkthdr *h, const u_char *p);// ************ Reads a CDF file from a previous runvoid RecoverDataFromCDF(void);// ************ This function converts and IP to a char stringchar inline 	*HostIp2CharIp(unsigned long ipaddr, char *buffer);// ************ This function converts the numbers for each quad into an IPinline uint32_t IpAddr(unsigned char q1, unsigned char q2, unsigned char q3, unsigned char q4);// ************ This function adds the packet's size to the proper entries in the data structureinline void     Credit(struct Statistics *Stats, const struct ip *ip);// ************ Finds an IP in our IPTableinline struct IPData *FindIp(uint32_t ipaddr);// ************ Writes our IPTable to Disk or to the Ram cachevoid            CommitData(time_t timestamp);// ************ Creates our Graphsvoid            GraphIp(struct IPDataStore *DataStore, struct SummaryData *SummaryData, time_t timestamp);void            PrepareXAxis(gdImagePtr im, time_t timestamp);void            PrepareYAxis(gdImagePtr im, unsigned long long int YMax);unsigned long long GraphData(gdImagePtr im, gdImagePtr im2, struct IPDataStore *DataStore, time_t timestamp,  struct SummaryData *SummaryData);// ************ Miscinline void     DstCredit(uint32_t ipaddr, unsigned int psize);void			MakeIndexPages(int NumGraphs, struct SummaryData *SummaryData[]);