1f06ca4afSHartmut Brandt /* 2f06ca4afSHartmut Brandt * Copyright (c) 2001-2003 3f06ca4afSHartmut Brandt * Fraunhofer Institute for Open Communication Systems (FhG Fokus). 4f06ca4afSHartmut Brandt * All rights reserved. 5f06ca4afSHartmut Brandt * 6f06ca4afSHartmut Brandt * Author: Harti Brandt <harti@freebsd.org> 7f06ca4afSHartmut Brandt * 8896052c1SHartmut Brandt * Redistribution and use in source and binary forms, with or without 9896052c1SHartmut Brandt * modification, are permitted provided that the following conditions 10896052c1SHartmut Brandt * are met: 11896052c1SHartmut Brandt * 1. Redistributions of source code must retain the above copyright 12896052c1SHartmut Brandt * notice, this list of conditions and the following disclaimer. 13f06ca4afSHartmut Brandt * 2. Redistributions in binary form must reproduce the above copyright 14f06ca4afSHartmut Brandt * notice, this list of conditions and the following disclaimer in the 15f06ca4afSHartmut Brandt * documentation and/or other materials provided with the distribution. 16f06ca4afSHartmut Brandt * 17896052c1SHartmut Brandt * THIS SOFTWARE IS PROVIDED BY AUTHOR AND CONTRIBUTORS ``AS IS'' AND 18896052c1SHartmut Brandt * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 19896052c1SHartmut Brandt * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 20896052c1SHartmut Brandt * ARE DISCLAIMED. IN NO EVENT SHALL AUTHOR OR CONTRIBUTORS BE LIABLE 21896052c1SHartmut Brandt * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 22896052c1SHartmut Brandt * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 23896052c1SHartmut Brandt * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 24896052c1SHartmut Brandt * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 25896052c1SHartmut Brandt * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 26896052c1SHartmut Brandt * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 27896052c1SHartmut Brandt * SUCH DAMAGE. 28f06ca4afSHartmut Brandt * 29165c5d31SHartmut Brandt * $Begemot: bsnmp/lib/snmpagent.c,v 1.20 2005/10/04 11:21:33 brandt_h Exp $ 30f06ca4afSHartmut Brandt * 31f06ca4afSHartmut Brandt * SNMP Agent functions 32f06ca4afSHartmut Brandt */ 33f06ca4afSHartmut Brandt #include <sys/types.h> 34f06ca4afSHartmut Brandt #include <sys/queue.h> 35f06ca4afSHartmut Brandt #include <stdio.h> 36f06ca4afSHartmut Brandt #include <stdlib.h> 37f06ca4afSHartmut Brandt #include <stddef.h> 38f06ca4afSHartmut Brandt #include <stdarg.h> 39165c5d31SHartmut Brandt #ifdef HAVE_STDINT_H 40896052c1SHartmut Brandt #include <stdint.h> 41165c5d31SHartmut Brandt #elif defined(HAVE_INTTYPES_H) 42165c5d31SHartmut Brandt #include <inttypes.h> 43165c5d31SHartmut Brandt #endif 44f06ca4afSHartmut Brandt #include <string.h> 45f06ca4afSHartmut Brandt 46f06ca4afSHartmut Brandt #include "asn1.h" 47f06ca4afSHartmut Brandt #include "snmp.h" 48f06ca4afSHartmut Brandt #include "snmppriv.h" 49f06ca4afSHartmut Brandt #include "snmpagent.h" 50f06ca4afSHartmut Brandt 51f06ca4afSHartmut Brandt static void snmp_debug_func(const char *fmt, ...); 52f06ca4afSHartmut Brandt 53f06ca4afSHartmut Brandt void (*snmp_debug)(const char *fmt, ...) = snmp_debug_func; 54f06ca4afSHartmut Brandt 55f06ca4afSHartmut Brandt struct snmp_node *tree; 56f06ca4afSHartmut Brandt u_int tree_size; 57f06ca4afSHartmut Brandt 58f06ca4afSHartmut Brandt /* 59f06ca4afSHartmut Brandt * Structure to hold dependencies during SET processing 60f06ca4afSHartmut Brandt * The last two members of this structure must be the 61f06ca4afSHartmut Brandt * dependency visible by the user and the user data. 62f06ca4afSHartmut Brandt */ 63f06ca4afSHartmut Brandt struct depend { 64f06ca4afSHartmut Brandt TAILQ_ENTRY(depend) link; 65f06ca4afSHartmut Brandt size_t len; /* size of data part */ 66f06ca4afSHartmut Brandt snmp_depop_t func; 67f06ca4afSHartmut Brandt struct snmp_dependency dep; 68896052c1SHartmut Brandt #if defined(__GNUC__) && __GNUC__ < 3 69896052c1SHartmut Brandt u_char data[0]; 70896052c1SHartmut Brandt #else 71f06ca4afSHartmut Brandt u_char data[]; 72896052c1SHartmut Brandt #endif 73f06ca4afSHartmut Brandt }; 74f06ca4afSHartmut Brandt TAILQ_HEAD(depend_list, depend); 75f06ca4afSHartmut Brandt 76f06ca4afSHartmut Brandt /* 77f06ca4afSHartmut Brandt * Set context 78f06ca4afSHartmut Brandt */ 79f06ca4afSHartmut Brandt struct context { 80f06ca4afSHartmut Brandt struct snmp_context ctx; 81f06ca4afSHartmut Brandt struct depend_list dlist; 82f06ca4afSHartmut Brandt const struct snmp_node *node[SNMP_MAX_BINDINGS]; 83f06ca4afSHartmut Brandt struct snmp_scratch scratch[SNMP_MAX_BINDINGS]; 84f06ca4afSHartmut Brandt struct depend *depend; 85f06ca4afSHartmut Brandt }; 86f06ca4afSHartmut Brandt 87f06ca4afSHartmut Brandt #define TR(W) (snmp_trace & SNMP_TRACE_##W) 88f06ca4afSHartmut Brandt u_int snmp_trace = 0; 89f06ca4afSHartmut Brandt 90f06ca4afSHartmut Brandt static char oidbuf[ASN_OIDSTRLEN]; 91f06ca4afSHartmut Brandt 92f06ca4afSHartmut Brandt /* 93f06ca4afSHartmut Brandt * Allocate a context 94f06ca4afSHartmut Brandt */ 95f06ca4afSHartmut Brandt struct snmp_context * 96f06ca4afSHartmut Brandt snmp_init_context(void) 97f06ca4afSHartmut Brandt { 98f06ca4afSHartmut Brandt struct context *context; 99f06ca4afSHartmut Brandt 100f06ca4afSHartmut Brandt if ((context = malloc(sizeof(*context))) == NULL) 101f06ca4afSHartmut Brandt return (NULL); 102f06ca4afSHartmut Brandt 103f06ca4afSHartmut Brandt memset(context, 0, sizeof(*context)); 104f06ca4afSHartmut Brandt TAILQ_INIT(&context->dlist); 105f06ca4afSHartmut Brandt 106f06ca4afSHartmut Brandt return (&context->ctx); 107f06ca4afSHartmut Brandt } 108f06ca4afSHartmut Brandt 109f06ca4afSHartmut Brandt /* 110f06ca4afSHartmut Brandt * Find a variable for SET/GET and the first GETBULK pass. 111f06ca4afSHartmut Brandt * Return the node pointer. If the search fails, set the errp to 112f06ca4afSHartmut Brandt * the correct SNMPv2 GET exception code. 113f06ca4afSHartmut Brandt */ 114f06ca4afSHartmut Brandt static struct snmp_node * 115f06ca4afSHartmut Brandt find_node(const struct snmp_value *value, enum snmp_syntax *errp) 116f06ca4afSHartmut Brandt { 117f06ca4afSHartmut Brandt struct snmp_node *tp; 118f06ca4afSHartmut Brandt 119f06ca4afSHartmut Brandt if (TR(FIND)) 120f06ca4afSHartmut Brandt snmp_debug("find: searching %s", 121f06ca4afSHartmut Brandt asn_oid2str_r(&value->var, oidbuf)); 122f06ca4afSHartmut Brandt 123f06ca4afSHartmut Brandt /* 124f06ca4afSHartmut Brandt * If we have an exact match (the entry in the table is a 125f06ca4afSHartmut Brandt * sub-oid from the variable) we have found what we are for. 126f06ca4afSHartmut Brandt * If the table oid is higher than the variable, there is no match. 127f06ca4afSHartmut Brandt */ 128f06ca4afSHartmut Brandt for (tp = tree; tp < tree + tree_size; tp++) { 129f06ca4afSHartmut Brandt if (asn_is_suboid(&tp->oid, &value->var)) 130f06ca4afSHartmut Brandt goto found; 131f06ca4afSHartmut Brandt if (asn_compare_oid(&tp->oid, &value->var) >= 0) 132f06ca4afSHartmut Brandt break; 133f06ca4afSHartmut Brandt } 134f06ca4afSHartmut Brandt 135f06ca4afSHartmut Brandt if (TR(FIND)) 136f06ca4afSHartmut Brandt snmp_debug("find: no match"); 137f06ca4afSHartmut Brandt *errp = SNMP_SYNTAX_NOSUCHOBJECT; 138f06ca4afSHartmut Brandt return (NULL); 139f06ca4afSHartmut Brandt 140f06ca4afSHartmut Brandt found: 141f06ca4afSHartmut Brandt /* leafs must have a 0 instance identifier */ 142f06ca4afSHartmut Brandt if (tp->type == SNMP_NODE_LEAF && 143f06ca4afSHartmut Brandt (value->var.len != tp->oid.len + 1 || 144f06ca4afSHartmut Brandt value->var.subs[tp->oid.len] != 0)) { 145f06ca4afSHartmut Brandt if (TR(FIND)) 146f06ca4afSHartmut Brandt snmp_debug("find: bad leaf index"); 147f06ca4afSHartmut Brandt *errp = SNMP_SYNTAX_NOSUCHINSTANCE; 148f06ca4afSHartmut Brandt return (NULL); 149f06ca4afSHartmut Brandt } 150f06ca4afSHartmut Brandt if (TR(FIND)) 151f06ca4afSHartmut Brandt snmp_debug("find: found %s", 152f06ca4afSHartmut Brandt asn_oid2str_r(&value->var, oidbuf)); 153f06ca4afSHartmut Brandt return (tp); 154f06ca4afSHartmut Brandt } 155f06ca4afSHartmut Brandt 156f06ca4afSHartmut Brandt static struct snmp_node * 157f06ca4afSHartmut Brandt find_subnode(const struct snmp_value *value) 158f06ca4afSHartmut Brandt { 159f06ca4afSHartmut Brandt struct snmp_node *tp; 160f06ca4afSHartmut Brandt 161f06ca4afSHartmut Brandt for (tp = tree; tp < tree + tree_size; tp++) { 162f06ca4afSHartmut Brandt if (asn_is_suboid(&value->var, &tp->oid)) 163f06ca4afSHartmut Brandt return (tp); 164f06ca4afSHartmut Brandt } 165f06ca4afSHartmut Brandt return (NULL); 166f06ca4afSHartmut Brandt } 167f06ca4afSHartmut Brandt 168135f7de5SShteryana Shopova static void 16906983448SShteryana Shopova snmp_pdu_create_response(const struct snmp_pdu *pdu, struct snmp_pdu *resp) 170135f7de5SShteryana Shopova { 171135f7de5SShteryana Shopova memset(resp, 0, sizeof(*resp)); 172135f7de5SShteryana Shopova strcpy(resp->community, pdu->community); 173135f7de5SShteryana Shopova resp->version = pdu->version; 174135f7de5SShteryana Shopova resp->type = SNMP_PDU_RESPONSE; 175135f7de5SShteryana Shopova resp->request_id = pdu->request_id; 176135f7de5SShteryana Shopova resp->version = pdu->version; 177135f7de5SShteryana Shopova 178135f7de5SShteryana Shopova if (resp->version != SNMP_V3) 179135f7de5SShteryana Shopova return; 180135f7de5SShteryana Shopova 18172cd7a52SShteryana Shopova memcpy(&resp->engine, &pdu->engine, sizeof(pdu->engine)); 18272cd7a52SShteryana Shopova memcpy(&resp->user, &pdu->user, sizeof(pdu->user)); 18372cd7a52SShteryana Shopova snmp_pdu_init_secparams(resp); 184135f7de5SShteryana Shopova resp->identifier = pdu->identifier; 185135f7de5SShteryana Shopova resp->security_model = pdu->security_model; 186135f7de5SShteryana Shopova resp->context_engine_len = pdu->context_engine_len; 187135f7de5SShteryana Shopova memcpy(resp->context_engine, pdu->context_engine, 188135f7de5SShteryana Shopova resp->context_engine_len); 189135f7de5SShteryana Shopova strlcpy(resp->context_name, pdu->context_name, 190135f7de5SShteryana Shopova sizeof(resp->context_name)); 191135f7de5SShteryana Shopova } 192135f7de5SShteryana Shopova 193f06ca4afSHartmut Brandt /* 194f06ca4afSHartmut Brandt * Execute a GET operation. The tree is rooted at the global 'root'. 195f06ca4afSHartmut Brandt * Build the response PDU on the fly. If the return code is SNMP_RET_ERR 196f06ca4afSHartmut Brandt * the pdu error status and index will be set. 197f06ca4afSHartmut Brandt */ 198f06ca4afSHartmut Brandt enum snmp_ret 199f06ca4afSHartmut Brandt snmp_get(struct snmp_pdu *pdu, struct asn_buf *resp_b, 200f06ca4afSHartmut Brandt struct snmp_pdu *resp, void *data) 201f06ca4afSHartmut Brandt { 202f06ca4afSHartmut Brandt int ret; 203f06ca4afSHartmut Brandt u_int i; 204f06ca4afSHartmut Brandt struct snmp_node *tp; 205f06ca4afSHartmut Brandt enum snmp_syntax except; 206f06ca4afSHartmut Brandt struct context context; 207f06ca4afSHartmut Brandt enum asn_err err; 208f06ca4afSHartmut Brandt 209f06ca4afSHartmut Brandt memset(&context, 0, sizeof(context)); 210f06ca4afSHartmut Brandt context.ctx.data = data; 211f06ca4afSHartmut Brandt 212135f7de5SShteryana Shopova snmp_pdu_create_response(pdu, resp); 213f06ca4afSHartmut Brandt 214f06ca4afSHartmut Brandt if (snmp_pdu_encode_header(resp_b, resp) != SNMP_CODE_OK) 215f06ca4afSHartmut Brandt /* cannot even encode header - very bad */ 216f06ca4afSHartmut Brandt return (SNMP_RET_IGN); 217f06ca4afSHartmut Brandt 218f06ca4afSHartmut Brandt for (i = 0; i < pdu->nbindings; i++) { 219f06ca4afSHartmut Brandt resp->bindings[i].var = pdu->bindings[i].var; 220f06ca4afSHartmut Brandt if ((tp = find_node(&pdu->bindings[i], &except)) == NULL) { 221f06ca4afSHartmut Brandt if (pdu->version == SNMP_V1) { 222f06ca4afSHartmut Brandt if (TR(GET)) 223f06ca4afSHartmut Brandt snmp_debug("get: nosuchname"); 224f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_NOSUCHNAME; 225f06ca4afSHartmut Brandt pdu->error_index = i + 1; 226f06ca4afSHartmut Brandt snmp_pdu_free(resp); 227f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 228f06ca4afSHartmut Brandt } 229f06ca4afSHartmut Brandt if (TR(GET)) 230f06ca4afSHartmut Brandt snmp_debug("get: exception %u", except); 231f06ca4afSHartmut Brandt resp->bindings[i].syntax = except; 232f06ca4afSHartmut Brandt 233f06ca4afSHartmut Brandt } else { 234f06ca4afSHartmut Brandt /* call the action to fetch the value. */ 235f06ca4afSHartmut Brandt resp->bindings[i].syntax = tp->syntax; 236f06ca4afSHartmut Brandt ret = (*tp->op)(&context.ctx, &resp->bindings[i], 237f06ca4afSHartmut Brandt tp->oid.len, tp->index, SNMP_OP_GET); 238f06ca4afSHartmut Brandt if (TR(GET)) 239f06ca4afSHartmut Brandt snmp_debug("get: action returns %d", ret); 240f06ca4afSHartmut Brandt 241f06ca4afSHartmut Brandt if (ret == SNMP_ERR_NOSUCHNAME) { 242f06ca4afSHartmut Brandt if (pdu->version == SNMP_V1) { 243f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_NOSUCHNAME; 244f06ca4afSHartmut Brandt pdu->error_index = i + 1; 245f06ca4afSHartmut Brandt snmp_pdu_free(resp); 246f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 247f06ca4afSHartmut Brandt } 248f06ca4afSHartmut Brandt if (TR(GET)) 249f06ca4afSHartmut Brandt snmp_debug("get: exception noSuchInstance"); 250f06ca4afSHartmut Brandt resp->bindings[i].syntax = SNMP_SYNTAX_NOSUCHINSTANCE; 251f06ca4afSHartmut Brandt 252f06ca4afSHartmut Brandt } else if (ret != SNMP_ERR_NOERROR) { 253f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_GENERR; 254f06ca4afSHartmut Brandt pdu->error_index = i + 1; 255f06ca4afSHartmut Brandt snmp_pdu_free(resp); 256f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 257f06ca4afSHartmut Brandt } 258f06ca4afSHartmut Brandt } 259f06ca4afSHartmut Brandt resp->nbindings++; 260f06ca4afSHartmut Brandt 261f06ca4afSHartmut Brandt err = snmp_binding_encode(resp_b, &resp->bindings[i]); 262f06ca4afSHartmut Brandt 263f06ca4afSHartmut Brandt if (err == ASN_ERR_EOBUF) { 264f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_TOOBIG; 265f06ca4afSHartmut Brandt pdu->error_index = 0; 266f06ca4afSHartmut Brandt snmp_pdu_free(resp); 267f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 268f06ca4afSHartmut Brandt } 269f06ca4afSHartmut Brandt if (err != ASN_ERR_OK) { 270f06ca4afSHartmut Brandt if (TR(GET)) 271f06ca4afSHartmut Brandt snmp_debug("get: binding encoding: %u", err); 272f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_GENERR; 273f06ca4afSHartmut Brandt pdu->error_index = i + 1; 274f06ca4afSHartmut Brandt snmp_pdu_free(resp); 275f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 276f06ca4afSHartmut Brandt } 277f06ca4afSHartmut Brandt } 278f06ca4afSHartmut Brandt 279546401ceSShteryana Shopova if (snmp_fix_encoding(resp_b, resp) != SNMP_CODE_OK) { 280546401ceSShteryana Shopova snmp_debug("get: failed to encode PDU"); 281546401ceSShteryana Shopova return (SNMP_RET_ERR); 282546401ceSShteryana Shopova } 283546401ceSShteryana Shopova 284546401ceSShteryana Shopova return (SNMP_RET_OK); 285f06ca4afSHartmut Brandt } 286f06ca4afSHartmut Brandt 287f06ca4afSHartmut Brandt static struct snmp_node * 288f06ca4afSHartmut Brandt next_node(const struct snmp_value *value, int *pnext) 289f06ca4afSHartmut Brandt { 290f06ca4afSHartmut Brandt struct snmp_node *tp; 291f06ca4afSHartmut Brandt 292f06ca4afSHartmut Brandt if (TR(FIND)) 293f06ca4afSHartmut Brandt snmp_debug("next: searching %s", 294f06ca4afSHartmut Brandt asn_oid2str_r(&value->var, oidbuf)); 295f06ca4afSHartmut Brandt 296f06ca4afSHartmut Brandt *pnext = 0; 297f06ca4afSHartmut Brandt for (tp = tree; tp < tree + tree_size; tp++) { 298f06ca4afSHartmut Brandt if (asn_is_suboid(&tp->oid, &value->var)) { 299f06ca4afSHartmut Brandt /* the tree OID is a sub-oid of the requested OID. */ 300f06ca4afSHartmut Brandt if (tp->type == SNMP_NODE_LEAF) { 301f06ca4afSHartmut Brandt if (tp->oid.len == value->var.len) { 302f06ca4afSHartmut Brandt /* request for scalar type */ 303f06ca4afSHartmut Brandt if (TR(FIND)) 304f06ca4afSHartmut Brandt snmp_debug("next: found scalar %s", 305f06ca4afSHartmut Brandt asn_oid2str_r(&tp->oid, oidbuf)); 306f06ca4afSHartmut Brandt return (tp); 307f06ca4afSHartmut Brandt } 308f06ca4afSHartmut Brandt /* try next */ 309f06ca4afSHartmut Brandt } else { 310f06ca4afSHartmut Brandt if (TR(FIND)) 311f06ca4afSHartmut Brandt snmp_debug("next: found column %s", 312f06ca4afSHartmut Brandt asn_oid2str_r(&tp->oid, oidbuf)); 313f06ca4afSHartmut Brandt return (tp); 314f06ca4afSHartmut Brandt } 315f06ca4afSHartmut Brandt } else if (asn_is_suboid(&value->var, &tp->oid) || 316f06ca4afSHartmut Brandt asn_compare_oid(&tp->oid, &value->var) >= 0) { 317f06ca4afSHartmut Brandt if (TR(FIND)) 318f06ca4afSHartmut Brandt snmp_debug("next: found %s", 319f06ca4afSHartmut Brandt asn_oid2str_r(&tp->oid, oidbuf)); 320f06ca4afSHartmut Brandt *pnext = 1; 321f06ca4afSHartmut Brandt return (tp); 322f06ca4afSHartmut Brandt } 323f06ca4afSHartmut Brandt } 324f06ca4afSHartmut Brandt 325f06ca4afSHartmut Brandt if (TR(FIND)) 326f06ca4afSHartmut Brandt snmp_debug("next: failed"); 327f06ca4afSHartmut Brandt 328f06ca4afSHartmut Brandt return (NULL); 329f06ca4afSHartmut Brandt } 330f06ca4afSHartmut Brandt 331f06ca4afSHartmut Brandt static enum snmp_ret 332f06ca4afSHartmut Brandt do_getnext(struct context *context, const struct snmp_value *inb, 333f06ca4afSHartmut Brandt struct snmp_value *outb, struct snmp_pdu *pdu) 334f06ca4afSHartmut Brandt { 335f06ca4afSHartmut Brandt const struct snmp_node *tp; 336f06ca4afSHartmut Brandt int ret, next; 337f06ca4afSHartmut Brandt 338f06ca4afSHartmut Brandt if ((tp = next_node(inb, &next)) == NULL) 339f06ca4afSHartmut Brandt goto eofMib; 340f06ca4afSHartmut Brandt 341f06ca4afSHartmut Brandt /* retain old variable if we are doing a GETNEXT on an exact 342f06ca4afSHartmut Brandt * matched leaf only */ 343f06ca4afSHartmut Brandt if (tp->type == SNMP_NODE_LEAF || next) 344f06ca4afSHartmut Brandt outb->var = tp->oid; 345f06ca4afSHartmut Brandt else 346f06ca4afSHartmut Brandt outb->var = inb->var; 347f06ca4afSHartmut Brandt 348f06ca4afSHartmut Brandt for (;;) { 349f06ca4afSHartmut Brandt outb->syntax = tp->syntax; 350f06ca4afSHartmut Brandt if (tp->type == SNMP_NODE_LEAF) { 351f06ca4afSHartmut Brandt /* make a GET operation */ 352f06ca4afSHartmut Brandt outb->var.subs[outb->var.len++] = 0; 353f06ca4afSHartmut Brandt ret = (*tp->op)(&context->ctx, outb, tp->oid.len, 354f06ca4afSHartmut Brandt tp->index, SNMP_OP_GET); 355f06ca4afSHartmut Brandt } else { 356f06ca4afSHartmut Brandt /* make a GETNEXT */ 357f06ca4afSHartmut Brandt ret = (*tp->op)(&context->ctx, outb, tp->oid.len, 358f06ca4afSHartmut Brandt tp->index, SNMP_OP_GETNEXT); 359f06ca4afSHartmut Brandt } 360f06ca4afSHartmut Brandt if (ret != SNMP_ERR_NOSUCHNAME) { 361f06ca4afSHartmut Brandt /* got something */ 362f06ca4afSHartmut Brandt if (ret != SNMP_ERR_NOERROR && TR(GETNEXT)) 363f06ca4afSHartmut Brandt snmp_debug("getnext: %s returns %u", 364f06ca4afSHartmut Brandt asn_oid2str(&outb->var), ret); 365f06ca4afSHartmut Brandt break; 366f06ca4afSHartmut Brandt } 367f06ca4afSHartmut Brandt 368f06ca4afSHartmut Brandt /* object has no data - try next */ 369f06ca4afSHartmut Brandt if (++tp == tree + tree_size) 370f06ca4afSHartmut Brandt break; 37194caccb3SHartmut Brandt 37294caccb3SHartmut Brandt if (TR(GETNEXT)) 37394caccb3SHartmut Brandt snmp_debug("getnext: no data - avancing to %s", 37494caccb3SHartmut Brandt asn_oid2str(&tp->oid)); 37594caccb3SHartmut Brandt 376f06ca4afSHartmut Brandt outb->var = tp->oid; 377f06ca4afSHartmut Brandt } 378f06ca4afSHartmut Brandt 379f06ca4afSHartmut Brandt if (ret == SNMP_ERR_NOSUCHNAME) { 380f06ca4afSHartmut Brandt eofMib: 381f06ca4afSHartmut Brandt outb->var = inb->var; 382f06ca4afSHartmut Brandt if (pdu->version == SNMP_V1) { 383f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_NOSUCHNAME; 384f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 385f06ca4afSHartmut Brandt } 386f06ca4afSHartmut Brandt outb->syntax = SNMP_SYNTAX_ENDOFMIBVIEW; 387f06ca4afSHartmut Brandt 388f06ca4afSHartmut Brandt } else if (ret != SNMP_ERR_NOERROR) { 389f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_GENERR; 390f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 391f06ca4afSHartmut Brandt } 392f06ca4afSHartmut Brandt return (SNMP_RET_OK); 393f06ca4afSHartmut Brandt } 394f06ca4afSHartmut Brandt 395f06ca4afSHartmut Brandt 396f06ca4afSHartmut Brandt /* 397f06ca4afSHartmut Brandt * Execute a GETNEXT operation. The tree is rooted at the global 'root'. 398f06ca4afSHartmut Brandt * Build the response PDU on the fly. The return is: 399f06ca4afSHartmut Brandt */ 400f06ca4afSHartmut Brandt enum snmp_ret 401f06ca4afSHartmut Brandt snmp_getnext(struct snmp_pdu *pdu, struct asn_buf *resp_b, 402f06ca4afSHartmut Brandt struct snmp_pdu *resp, void *data) 403f06ca4afSHartmut Brandt { 404f06ca4afSHartmut Brandt struct context context; 405f06ca4afSHartmut Brandt u_int i; 406f06ca4afSHartmut Brandt enum asn_err err; 407f06ca4afSHartmut Brandt enum snmp_ret result; 408f06ca4afSHartmut Brandt 409f06ca4afSHartmut Brandt memset(&context, 0, sizeof(context)); 410f06ca4afSHartmut Brandt context.ctx.data = data; 411f06ca4afSHartmut Brandt 412135f7de5SShteryana Shopova snmp_pdu_create_response(pdu, resp); 413f06ca4afSHartmut Brandt 414f06ca4afSHartmut Brandt if (snmp_pdu_encode_header(resp_b, resp)) 415f06ca4afSHartmut Brandt return (SNMP_RET_IGN); 416f06ca4afSHartmut Brandt 417f06ca4afSHartmut Brandt for (i = 0; i < pdu->nbindings; i++) { 418f06ca4afSHartmut Brandt result = do_getnext(&context, &pdu->bindings[i], 419f06ca4afSHartmut Brandt &resp->bindings[i], pdu); 420f06ca4afSHartmut Brandt 421f06ca4afSHartmut Brandt if (result != SNMP_RET_OK) { 422f06ca4afSHartmut Brandt pdu->error_index = i + 1; 423f06ca4afSHartmut Brandt snmp_pdu_free(resp); 424f06ca4afSHartmut Brandt return (result); 425f06ca4afSHartmut Brandt } 426f06ca4afSHartmut Brandt 427f06ca4afSHartmut Brandt resp->nbindings++; 428f06ca4afSHartmut Brandt 429f06ca4afSHartmut Brandt err = snmp_binding_encode(resp_b, &resp->bindings[i]); 430f06ca4afSHartmut Brandt 431f06ca4afSHartmut Brandt if (err == ASN_ERR_EOBUF) { 432f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_TOOBIG; 433f06ca4afSHartmut Brandt pdu->error_index = 0; 434f06ca4afSHartmut Brandt snmp_pdu_free(resp); 435f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 436f06ca4afSHartmut Brandt } 437f06ca4afSHartmut Brandt if (err != ASN_ERR_OK) { 438f06ca4afSHartmut Brandt if (TR(GET)) 439f06ca4afSHartmut Brandt snmp_debug("getnext: binding encoding: %u", err); 440f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_GENERR; 441f06ca4afSHartmut Brandt pdu->error_index = i + 1; 442f06ca4afSHartmut Brandt snmp_pdu_free(resp); 443f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 444f06ca4afSHartmut Brandt } 445f06ca4afSHartmut Brandt } 446546401ceSShteryana Shopova 447546401ceSShteryana Shopova if (snmp_fix_encoding(resp_b, resp) != SNMP_CODE_OK) { 448546401ceSShteryana Shopova snmp_debug("getnext: failed to encode PDU"); 449546401ceSShteryana Shopova return (SNMP_RET_ERR); 450546401ceSShteryana Shopova } 451546401ceSShteryana Shopova 452546401ceSShteryana Shopova return (SNMP_RET_OK); 453f06ca4afSHartmut Brandt } 454f06ca4afSHartmut Brandt 455f06ca4afSHartmut Brandt enum snmp_ret 456f06ca4afSHartmut Brandt snmp_getbulk(struct snmp_pdu *pdu, struct asn_buf *resp_b, 457f06ca4afSHartmut Brandt struct snmp_pdu *resp, void *data) 458f06ca4afSHartmut Brandt { 459f06ca4afSHartmut Brandt struct context context; 460f06ca4afSHartmut Brandt u_int i; 461f06ca4afSHartmut Brandt int cnt; 462f06ca4afSHartmut Brandt u_int non_rep; 463f06ca4afSHartmut Brandt int eomib; 464f06ca4afSHartmut Brandt enum snmp_ret result; 465f06ca4afSHartmut Brandt enum asn_err err; 466f06ca4afSHartmut Brandt 467f06ca4afSHartmut Brandt memset(&context, 0, sizeof(context)); 468f06ca4afSHartmut Brandt context.ctx.data = data; 469f06ca4afSHartmut Brandt 470135f7de5SShteryana Shopova snmp_pdu_create_response(pdu, resp); 471f06ca4afSHartmut Brandt 472f06ca4afSHartmut Brandt if (snmp_pdu_encode_header(resp_b, resp) != SNMP_CODE_OK) 473f06ca4afSHartmut Brandt /* cannot even encode header - very bad */ 474f06ca4afSHartmut Brandt return (SNMP_RET_IGN); 475f06ca4afSHartmut Brandt 476f06ca4afSHartmut Brandt if ((non_rep = pdu->error_status) > pdu->nbindings) 477f06ca4afSHartmut Brandt non_rep = pdu->nbindings; 478f06ca4afSHartmut Brandt 479f06ca4afSHartmut Brandt /* non-repeaters */ 480f06ca4afSHartmut Brandt for (i = 0; i < non_rep; i++) { 481f06ca4afSHartmut Brandt result = do_getnext(&context, &pdu->bindings[i], 482f06ca4afSHartmut Brandt &resp->bindings[resp->nbindings], pdu); 483f06ca4afSHartmut Brandt 484f06ca4afSHartmut Brandt if (result != SNMP_RET_OK) { 485f06ca4afSHartmut Brandt pdu->error_index = i + 1; 486f06ca4afSHartmut Brandt snmp_pdu_free(resp); 487f06ca4afSHartmut Brandt return (result); 488f06ca4afSHartmut Brandt } 489f06ca4afSHartmut Brandt 490f06ca4afSHartmut Brandt err = snmp_binding_encode(resp_b, 491f06ca4afSHartmut Brandt &resp->bindings[resp->nbindings++]); 492f06ca4afSHartmut Brandt 493f06ca4afSHartmut Brandt if (err == ASN_ERR_EOBUF) 494f06ca4afSHartmut Brandt goto done; 495f06ca4afSHartmut Brandt 496f06ca4afSHartmut Brandt if (err != ASN_ERR_OK) { 497f06ca4afSHartmut Brandt if (TR(GET)) 498f06ca4afSHartmut Brandt snmp_debug("getnext: binding encoding: %u", err); 499f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_GENERR; 500f06ca4afSHartmut Brandt pdu->error_index = i + 1; 501f06ca4afSHartmut Brandt snmp_pdu_free(resp); 502f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 503f06ca4afSHartmut Brandt } 504f06ca4afSHartmut Brandt } 505f06ca4afSHartmut Brandt 506f06ca4afSHartmut Brandt if (non_rep == pdu->nbindings) 507f06ca4afSHartmut Brandt goto done; 508f06ca4afSHartmut Brandt 509f06ca4afSHartmut Brandt /* repeates */ 510f06ca4afSHartmut Brandt for (cnt = 0; cnt < pdu->error_index; cnt++) { 511f06ca4afSHartmut Brandt eomib = 1; 512f06ca4afSHartmut Brandt for (i = non_rep; i < pdu->nbindings; i++) { 513*ecd241b6SXin LI 514*ecd241b6SXin LI if (resp->nbindings == SNMP_MAX_BINDINGS) 515*ecd241b6SXin LI /* PDU is full */ 516*ecd241b6SXin LI goto done; 517*ecd241b6SXin LI 518f06ca4afSHartmut Brandt if (cnt == 0) 519f06ca4afSHartmut Brandt result = do_getnext(&context, &pdu->bindings[i], 520f06ca4afSHartmut Brandt &resp->bindings[resp->nbindings], pdu); 521f06ca4afSHartmut Brandt else 522f06ca4afSHartmut Brandt result = do_getnext(&context, 523f06ca4afSHartmut Brandt &resp->bindings[resp->nbindings - 524f06ca4afSHartmut Brandt (pdu->nbindings - non_rep)], 525f06ca4afSHartmut Brandt &resp->bindings[resp->nbindings], pdu); 526f06ca4afSHartmut Brandt 527f06ca4afSHartmut Brandt if (result != SNMP_RET_OK) { 528f06ca4afSHartmut Brandt pdu->error_index = i + 1; 529f06ca4afSHartmut Brandt snmp_pdu_free(resp); 530f06ca4afSHartmut Brandt return (result); 531f06ca4afSHartmut Brandt } 532f06ca4afSHartmut Brandt if (resp->bindings[resp->nbindings].syntax != 533f06ca4afSHartmut Brandt SNMP_SYNTAX_ENDOFMIBVIEW) 534f06ca4afSHartmut Brandt eomib = 0; 535f06ca4afSHartmut Brandt 536f06ca4afSHartmut Brandt err = snmp_binding_encode(resp_b, 537f06ca4afSHartmut Brandt &resp->bindings[resp->nbindings++]); 538f06ca4afSHartmut Brandt 539f06ca4afSHartmut Brandt if (err == ASN_ERR_EOBUF) 540f06ca4afSHartmut Brandt goto done; 541f06ca4afSHartmut Brandt 542f06ca4afSHartmut Brandt if (err != ASN_ERR_OK) { 543f06ca4afSHartmut Brandt if (TR(GET)) 544f06ca4afSHartmut Brandt snmp_debug("getnext: binding encoding: %u", err); 545f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_GENERR; 546f06ca4afSHartmut Brandt pdu->error_index = i + 1; 547f06ca4afSHartmut Brandt snmp_pdu_free(resp); 548f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 549f06ca4afSHartmut Brandt } 550f06ca4afSHartmut Brandt } 551f06ca4afSHartmut Brandt if (eomib) 552f06ca4afSHartmut Brandt break; 553f06ca4afSHartmut Brandt } 554f06ca4afSHartmut Brandt 555f06ca4afSHartmut Brandt done: 556546401ceSShteryana Shopova if (snmp_fix_encoding(resp_b, resp) != SNMP_CODE_OK) { 557546401ceSShteryana Shopova snmp_debug("getnext: failed to encode PDU"); 558546401ceSShteryana Shopova return (SNMP_RET_ERR); 559546401ceSShteryana Shopova } 560546401ceSShteryana Shopova 561546401ceSShteryana Shopova return (SNMP_RET_OK); 562f06ca4afSHartmut Brandt } 563f06ca4afSHartmut Brandt 564f06ca4afSHartmut Brandt /* 565f06ca4afSHartmut Brandt * Rollback a SET operation. Failed index is 'i'. 566f06ca4afSHartmut Brandt */ 567f06ca4afSHartmut Brandt static void 568f06ca4afSHartmut Brandt rollback(struct context *context, struct snmp_pdu *pdu, u_int i) 569f06ca4afSHartmut Brandt { 570f06ca4afSHartmut Brandt struct snmp_value *b; 571f06ca4afSHartmut Brandt const struct snmp_node *np; 572f06ca4afSHartmut Brandt int ret; 573f06ca4afSHartmut Brandt 574f06ca4afSHartmut Brandt while (i-- > 0) { 575f06ca4afSHartmut Brandt b = &pdu->bindings[i]; 576f06ca4afSHartmut Brandt np = context->node[i]; 577f06ca4afSHartmut Brandt 578f06ca4afSHartmut Brandt context->ctx.scratch = &context->scratch[i]; 579f06ca4afSHartmut Brandt 580f06ca4afSHartmut Brandt ret = (*np->op)(&context->ctx, b, np->oid.len, np->index, 581f06ca4afSHartmut Brandt SNMP_OP_ROLLBACK); 582f06ca4afSHartmut Brandt 583f06ca4afSHartmut Brandt if (ret != SNMP_ERR_NOERROR) { 584f06ca4afSHartmut Brandt snmp_error("set: rollback failed (%d) on variable %s " 585f06ca4afSHartmut Brandt "index %u", ret, asn_oid2str(&b->var), i); 586f06ca4afSHartmut Brandt if (pdu->version != SNMP_V1) { 587f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_UNDO_FAILED; 588f06ca4afSHartmut Brandt pdu->error_index = 0; 589f06ca4afSHartmut Brandt } 590f06ca4afSHartmut Brandt } 591f06ca4afSHartmut Brandt } 592f06ca4afSHartmut Brandt } 593f06ca4afSHartmut Brandt 594f06ca4afSHartmut Brandt /* 595f06ca4afSHartmut Brandt * Commit dependencies. 596f06ca4afSHartmut Brandt */ 597f06ca4afSHartmut Brandt int 598f06ca4afSHartmut Brandt snmp_dep_commit(struct snmp_context *ctx) 599f06ca4afSHartmut Brandt { 600f06ca4afSHartmut Brandt struct context *context = (struct context *)ctx; 601f06ca4afSHartmut Brandt int ret; 602f06ca4afSHartmut Brandt 603f06ca4afSHartmut Brandt TAILQ_FOREACH(context->depend, &context->dlist, link) { 604f06ca4afSHartmut Brandt ctx->dep = &context->depend->dep; 605f06ca4afSHartmut Brandt 606f06ca4afSHartmut Brandt if (TR(SET)) 607f06ca4afSHartmut Brandt snmp_debug("set: dependency commit %s", 608f06ca4afSHartmut Brandt asn_oid2str(&ctx->dep->obj)); 609f06ca4afSHartmut Brandt 610f06ca4afSHartmut Brandt ret = context->depend->func(ctx, ctx->dep, SNMP_DEPOP_COMMIT); 611f06ca4afSHartmut Brandt 612f06ca4afSHartmut Brandt if (ret != SNMP_ERR_NOERROR) { 613f06ca4afSHartmut Brandt if (TR(SET)) 614f06ca4afSHartmut Brandt snmp_debug("set: dependency failed %d", ret); 615f06ca4afSHartmut Brandt return (ret); 616f06ca4afSHartmut Brandt } 617f06ca4afSHartmut Brandt } 618f06ca4afSHartmut Brandt return (SNMP_ERR_NOERROR); 619f06ca4afSHartmut Brandt } 620f06ca4afSHartmut Brandt 621f06ca4afSHartmut Brandt /* 622f06ca4afSHartmut Brandt * Rollback dependencies 623f06ca4afSHartmut Brandt */ 624f06ca4afSHartmut Brandt int 625f06ca4afSHartmut Brandt snmp_dep_rollback(struct snmp_context *ctx) 626f06ca4afSHartmut Brandt { 627f06ca4afSHartmut Brandt struct context *context = (struct context *)ctx; 628f06ca4afSHartmut Brandt int ret, ret1; 629f06ca4afSHartmut Brandt char objbuf[ASN_OIDSTRLEN]; 630f06ca4afSHartmut Brandt char idxbuf[ASN_OIDSTRLEN]; 631f06ca4afSHartmut Brandt 632f06ca4afSHartmut Brandt ret1 = SNMP_ERR_NOERROR; 633f06ca4afSHartmut Brandt while ((context->depend = 634f06ca4afSHartmut Brandt TAILQ_PREV(context->depend, depend_list, link)) != NULL) { 635f06ca4afSHartmut Brandt ctx->dep = &context->depend->dep; 636f06ca4afSHartmut Brandt 637f06ca4afSHartmut Brandt if (TR(SET)) 638f06ca4afSHartmut Brandt snmp_debug("set: dependency rollback %s", 639f06ca4afSHartmut Brandt asn_oid2str(&ctx->dep->obj)); 640f06ca4afSHartmut Brandt 641f06ca4afSHartmut Brandt ret = context->depend->func(ctx, ctx->dep, SNMP_DEPOP_ROLLBACK); 642f06ca4afSHartmut Brandt 643f06ca4afSHartmut Brandt if (ret != SNMP_ERR_NOERROR) { 644f06ca4afSHartmut Brandt snmp_debug("set: dep rollback returns %u: %s %s", ret, 645f06ca4afSHartmut Brandt asn_oid2str_r(&ctx->dep->obj, objbuf), 646f06ca4afSHartmut Brandt asn_oid2str_r(&ctx->dep->idx, idxbuf)); 647f06ca4afSHartmut Brandt if (ret1 == SNMP_ERR_NOERROR) 648f06ca4afSHartmut Brandt ret1 = ret; 649f06ca4afSHartmut Brandt } 650f06ca4afSHartmut Brandt } 651f06ca4afSHartmut Brandt return (ret1); 652f06ca4afSHartmut Brandt } 653f06ca4afSHartmut Brandt 6548eecd77aSHartmut Brandt void 6558eecd77aSHartmut Brandt snmp_dep_finish(struct snmp_context *ctx) 6568eecd77aSHartmut Brandt { 6578eecd77aSHartmut Brandt struct context *context = (struct context *)ctx; 6588eecd77aSHartmut Brandt struct depend *d; 6598eecd77aSHartmut Brandt 6608eecd77aSHartmut Brandt while ((d = TAILQ_FIRST(&context->dlist)) != NULL) { 6618eecd77aSHartmut Brandt ctx->dep = &d->dep; 6628eecd77aSHartmut Brandt (void)d->func(ctx, ctx->dep, SNMP_DEPOP_FINISH); 6638eecd77aSHartmut Brandt TAILQ_REMOVE(&context->dlist, d, link); 6648eecd77aSHartmut Brandt free(d); 6658eecd77aSHartmut Brandt } 6668eecd77aSHartmut Brandt } 6678eecd77aSHartmut Brandt 668f06ca4afSHartmut Brandt /* 669f06ca4afSHartmut Brandt * Do a SET operation. 670f06ca4afSHartmut Brandt */ 671f06ca4afSHartmut Brandt enum snmp_ret 672f06ca4afSHartmut Brandt snmp_set(struct snmp_pdu *pdu, struct asn_buf *resp_b, 673f06ca4afSHartmut Brandt struct snmp_pdu *resp, void *data) 674f06ca4afSHartmut Brandt { 675f06ca4afSHartmut Brandt int ret; 676f06ca4afSHartmut Brandt u_int i; 677f06ca4afSHartmut Brandt enum asn_err asnerr; 678f06ca4afSHartmut Brandt struct context context; 679f06ca4afSHartmut Brandt const struct snmp_node *np; 680f06ca4afSHartmut Brandt struct snmp_value *b; 681f06ca4afSHartmut Brandt enum snmp_syntax except; 682f06ca4afSHartmut Brandt 683f06ca4afSHartmut Brandt memset(&context, 0, sizeof(context)); 684f06ca4afSHartmut Brandt TAILQ_INIT(&context.dlist); 685f06ca4afSHartmut Brandt context.ctx.data = data; 686f06ca4afSHartmut Brandt 687135f7de5SShteryana Shopova snmp_pdu_create_response(pdu, resp); 688f06ca4afSHartmut Brandt 689f06ca4afSHartmut Brandt if (snmp_pdu_encode_header(resp_b, resp)) 690f06ca4afSHartmut Brandt return (SNMP_RET_IGN); 691f06ca4afSHartmut Brandt 692f06ca4afSHartmut Brandt /* 693f06ca4afSHartmut Brandt * 1. Find all nodes, check that they are writeable and 694f06ca4afSHartmut Brandt * that the syntax is ok, copy over the binding to the response. 695f06ca4afSHartmut Brandt */ 696f06ca4afSHartmut Brandt for (i = 0; i < pdu->nbindings; i++) { 697f06ca4afSHartmut Brandt b = &pdu->bindings[i]; 698f06ca4afSHartmut Brandt 699f06ca4afSHartmut Brandt if ((np = context.node[i] = find_node(b, &except)) == NULL) { 700f06ca4afSHartmut Brandt /* not found altogether or LEAF with wrong index */ 701f06ca4afSHartmut Brandt if (TR(SET)) 702f06ca4afSHartmut Brandt snmp_debug("set: node not found %s", 703f06ca4afSHartmut Brandt asn_oid2str_r(&b->var, oidbuf)); 704f06ca4afSHartmut Brandt if (pdu->version == SNMP_V1) { 705f06ca4afSHartmut Brandt pdu->error_index = i + 1; 706f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_NOSUCHNAME; 707f06ca4afSHartmut Brandt } else if ((np = find_subnode(b)) != NULL) { 708f06ca4afSHartmut Brandt /* 2. intermediate object */ 709f06ca4afSHartmut Brandt pdu->error_index = i + 1; 710f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_NOT_WRITEABLE; 711f06ca4afSHartmut Brandt } else if (except == SNMP_SYNTAX_NOSUCHOBJECT) { 712f06ca4afSHartmut Brandt pdu->error_index = i + 1; 713f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_NO_ACCESS; 714f06ca4afSHartmut Brandt } else { 715f06ca4afSHartmut Brandt pdu->error_index = i + 1; 716f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_NO_CREATION; 717f06ca4afSHartmut Brandt } 718f06ca4afSHartmut Brandt snmp_pdu_free(resp); 719f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 720f06ca4afSHartmut Brandt } 721f06ca4afSHartmut Brandt /* 722f06ca4afSHartmut Brandt * 2. write/createable? 723f06ca4afSHartmut Brandt * Can check this for leafs only, because in v2 we have 724f06ca4afSHartmut Brandt * to differentiate between NOT_WRITEABLE and NO_CREATION 725f06ca4afSHartmut Brandt * and only the action routine for COLUMNS knows, whether 726f06ca4afSHartmut Brandt * a column exists. 727f06ca4afSHartmut Brandt */ 728f06ca4afSHartmut Brandt if (np->type == SNMP_NODE_LEAF && 729f06ca4afSHartmut Brandt !(np->flags & SNMP_NODE_CANSET)) { 730f06ca4afSHartmut Brandt if (pdu->version == SNMP_V1) { 731f06ca4afSHartmut Brandt pdu->error_index = i + 1; 732f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_NOSUCHNAME; 733f06ca4afSHartmut Brandt } else { 734f06ca4afSHartmut Brandt pdu->error_index = i + 1; 735f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_NOT_WRITEABLE; 736f06ca4afSHartmut Brandt } 737f06ca4afSHartmut Brandt snmp_pdu_free(resp); 738f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 739f06ca4afSHartmut Brandt } 740f06ca4afSHartmut Brandt /* 741f06ca4afSHartmut Brandt * 3. Ensure the right syntax 742f06ca4afSHartmut Brandt */ 743f06ca4afSHartmut Brandt if (np->syntax != b->syntax) { 744f06ca4afSHartmut Brandt if (pdu->version == SNMP_V1) { 745f06ca4afSHartmut Brandt pdu->error_index = i + 1; 746f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_BADVALUE; /* v2: wrongType */ 747f06ca4afSHartmut Brandt } else { 748f06ca4afSHartmut Brandt pdu->error_index = i + 1; 749f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_WRONG_TYPE; 750f06ca4afSHartmut Brandt } 751f06ca4afSHartmut Brandt snmp_pdu_free(resp); 752f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 753f06ca4afSHartmut Brandt } 754f06ca4afSHartmut Brandt /* 755f06ca4afSHartmut Brandt * 4. Copy binding 756f06ca4afSHartmut Brandt */ 757f06ca4afSHartmut Brandt if (snmp_value_copy(&resp->bindings[i], b)) { 758f06ca4afSHartmut Brandt pdu->error_index = i + 1; 759f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_GENERR; 760f06ca4afSHartmut Brandt snmp_pdu_free(resp); 761f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 762f06ca4afSHartmut Brandt } 763f06ca4afSHartmut Brandt asnerr = snmp_binding_encode(resp_b, &resp->bindings[i]); 764f06ca4afSHartmut Brandt if (asnerr == ASN_ERR_EOBUF) { 765f06ca4afSHartmut Brandt pdu->error_index = i + 1; 766f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_TOOBIG; 767f06ca4afSHartmut Brandt snmp_pdu_free(resp); 768f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 769f06ca4afSHartmut Brandt } else if (asnerr != ASN_ERR_OK) { 770f06ca4afSHartmut Brandt pdu->error_index = i + 1; 771f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_GENERR; 772f06ca4afSHartmut Brandt snmp_pdu_free(resp); 773f06ca4afSHartmut Brandt return (SNMP_RET_ERR); 774f06ca4afSHartmut Brandt } 775f06ca4afSHartmut Brandt resp->nbindings++; 776f06ca4afSHartmut Brandt } 777f06ca4afSHartmut Brandt 7788eecd77aSHartmut Brandt context.ctx.code = SNMP_RET_OK; 779f06ca4afSHartmut Brandt 780f06ca4afSHartmut Brandt /* 781f06ca4afSHartmut Brandt * 2. Call the SET method for each node. If a SET fails, rollback 782f06ca4afSHartmut Brandt * everything. Map error codes depending on the version. 783f06ca4afSHartmut Brandt */ 784f06ca4afSHartmut Brandt for (i = 0; i < pdu->nbindings; i++) { 785f06ca4afSHartmut Brandt b = &pdu->bindings[i]; 786f06ca4afSHartmut Brandt np = context.node[i]; 787f06ca4afSHartmut Brandt 788f06ca4afSHartmut Brandt context.ctx.var_index = i + 1; 789f06ca4afSHartmut Brandt context.ctx.scratch = &context.scratch[i]; 790f06ca4afSHartmut Brandt 791f06ca4afSHartmut Brandt ret = (*np->op)(&context.ctx, b, np->oid.len, np->index, 792f06ca4afSHartmut Brandt SNMP_OP_SET); 793f06ca4afSHartmut Brandt 794f06ca4afSHartmut Brandt if (TR(SET)) 795f06ca4afSHartmut Brandt snmp_debug("set: action %s returns %d", np->name, ret); 796f06ca4afSHartmut Brandt 797f06ca4afSHartmut Brandt if (pdu->version == SNMP_V1) { 798f06ca4afSHartmut Brandt switch (ret) { 799f06ca4afSHartmut Brandt case SNMP_ERR_NO_ACCESS: 800f06ca4afSHartmut Brandt ret = SNMP_ERR_NOSUCHNAME; 801f06ca4afSHartmut Brandt break; 802f06ca4afSHartmut Brandt case SNMP_ERR_WRONG_TYPE: 803f06ca4afSHartmut Brandt /* should no happen */ 804f06ca4afSHartmut Brandt ret = SNMP_ERR_BADVALUE; 805f06ca4afSHartmut Brandt break; 806f06ca4afSHartmut Brandt case SNMP_ERR_WRONG_LENGTH: 807f06ca4afSHartmut Brandt ret = SNMP_ERR_BADVALUE; 808f06ca4afSHartmut Brandt break; 809f06ca4afSHartmut Brandt case SNMP_ERR_WRONG_ENCODING: 810f06ca4afSHartmut Brandt /* should not happen */ 811f06ca4afSHartmut Brandt ret = SNMP_ERR_BADVALUE; 812f06ca4afSHartmut Brandt break; 813f06ca4afSHartmut Brandt case SNMP_ERR_WRONG_VALUE: 814f06ca4afSHartmut Brandt ret = SNMP_ERR_BADVALUE; 815f06ca4afSHartmut Brandt break; 816f06ca4afSHartmut Brandt case SNMP_ERR_NO_CREATION: 817f06ca4afSHartmut Brandt ret = SNMP_ERR_NOSUCHNAME; 818f06ca4afSHartmut Brandt break; 819f06ca4afSHartmut Brandt case SNMP_ERR_INCONS_VALUE: 820f06ca4afSHartmut Brandt ret = SNMP_ERR_BADVALUE; 821f06ca4afSHartmut Brandt break; 822f06ca4afSHartmut Brandt case SNMP_ERR_RES_UNAVAIL: 823f06ca4afSHartmut Brandt ret = SNMP_ERR_GENERR; 824f06ca4afSHartmut Brandt break; 825f06ca4afSHartmut Brandt case SNMP_ERR_COMMIT_FAILED: 826f06ca4afSHartmut Brandt ret = SNMP_ERR_GENERR; 827f06ca4afSHartmut Brandt break; 828f06ca4afSHartmut Brandt case SNMP_ERR_UNDO_FAILED: 829f06ca4afSHartmut Brandt ret = SNMP_ERR_GENERR; 830f06ca4afSHartmut Brandt break; 831f06ca4afSHartmut Brandt case SNMP_ERR_AUTH_ERR: 832f06ca4afSHartmut Brandt /* should not happen */ 833f06ca4afSHartmut Brandt ret = SNMP_ERR_GENERR; 834f06ca4afSHartmut Brandt break; 835f06ca4afSHartmut Brandt case SNMP_ERR_NOT_WRITEABLE: 836f06ca4afSHartmut Brandt ret = SNMP_ERR_NOSUCHNAME; 837f06ca4afSHartmut Brandt break; 838f06ca4afSHartmut Brandt case SNMP_ERR_INCONS_NAME: 839f06ca4afSHartmut Brandt ret = SNMP_ERR_BADVALUE; 840f06ca4afSHartmut Brandt break; 841f06ca4afSHartmut Brandt } 842f06ca4afSHartmut Brandt } 843f06ca4afSHartmut Brandt if (ret != SNMP_ERR_NOERROR) { 844f06ca4afSHartmut Brandt pdu->error_index = i + 1; 845f06ca4afSHartmut Brandt pdu->error_status = ret; 846f06ca4afSHartmut Brandt 847f06ca4afSHartmut Brandt rollback(&context, pdu, i); 848f06ca4afSHartmut Brandt snmp_pdu_free(resp); 849f06ca4afSHartmut Brandt 8508eecd77aSHartmut Brandt context.ctx.code = SNMP_RET_ERR; 851f06ca4afSHartmut Brandt 852f06ca4afSHartmut Brandt goto errout; 853f06ca4afSHartmut Brandt } 854f06ca4afSHartmut Brandt } 855f06ca4afSHartmut Brandt 856f06ca4afSHartmut Brandt /* 857f06ca4afSHartmut Brandt * 3. Call dependencies 858f06ca4afSHartmut Brandt */ 859f06ca4afSHartmut Brandt if (TR(SET)) 860f06ca4afSHartmut Brandt snmp_debug("set: set operations ok"); 861f06ca4afSHartmut Brandt 862f06ca4afSHartmut Brandt if ((ret = snmp_dep_commit(&context.ctx)) != SNMP_ERR_NOERROR) { 863f06ca4afSHartmut Brandt pdu->error_status = ret; 864f06ca4afSHartmut Brandt pdu->error_index = context.ctx.var_index; 865f06ca4afSHartmut Brandt 866f06ca4afSHartmut Brandt if ((ret = snmp_dep_rollback(&context.ctx)) != SNMP_ERR_NOERROR) { 867f06ca4afSHartmut Brandt if (pdu->version != SNMP_V1) { 868f06ca4afSHartmut Brandt pdu->error_status = SNMP_ERR_UNDO_FAILED; 869f06ca4afSHartmut Brandt pdu->error_index = 0; 870f06ca4afSHartmut Brandt } 871f06ca4afSHartmut Brandt } 872f06ca4afSHartmut Brandt rollback(&context, pdu, i); 873f06ca4afSHartmut Brandt snmp_pdu_free(resp); 874f06ca4afSHartmut Brandt 8758eecd77aSHartmut Brandt context.ctx.code = SNMP_RET_ERR; 876f06ca4afSHartmut Brandt 877f06ca4afSHartmut Brandt goto errout; 878f06ca4afSHartmut Brandt } 879f06ca4afSHartmut Brandt 880f06ca4afSHartmut Brandt /* 881f06ca4afSHartmut Brandt * 4. Commit and copy values from the original packet to the response. 882f06ca4afSHartmut Brandt * This is not the commit operation from RFC 1905 but rather an 883f06ca4afSHartmut Brandt * 'FREE RESOURCES' operation. It shouldn't fail. 884f06ca4afSHartmut Brandt */ 885f06ca4afSHartmut Brandt if (TR(SET)) 886f06ca4afSHartmut Brandt snmp_debug("set: commiting"); 887f06ca4afSHartmut Brandt 888f06ca4afSHartmut Brandt for (i = 0; i < pdu->nbindings; i++) { 889f06ca4afSHartmut Brandt b = &resp->bindings[i]; 890f06ca4afSHartmut Brandt np = context.node[i]; 891f06ca4afSHartmut Brandt 892f06ca4afSHartmut Brandt context.ctx.var_index = i + 1; 893f06ca4afSHartmut Brandt context.ctx.scratch = &context.scratch[i]; 894f06ca4afSHartmut Brandt 895f06ca4afSHartmut Brandt ret = (*np->op)(&context.ctx, b, np->oid.len, np->index, 896f06ca4afSHartmut Brandt SNMP_OP_COMMIT); 897f06ca4afSHartmut Brandt 898f06ca4afSHartmut Brandt if (ret != SNMP_ERR_NOERROR) 899f06ca4afSHartmut Brandt snmp_error("set: commit failed (%d) on" 900f06ca4afSHartmut Brandt " variable %s index %u", ret, 901f06ca4afSHartmut Brandt asn_oid2str_r(&b->var, oidbuf), i); 902f06ca4afSHartmut Brandt } 903f06ca4afSHartmut Brandt 904f06ca4afSHartmut Brandt if (snmp_fix_encoding(resp_b, resp) != SNMP_CODE_OK) { 905f06ca4afSHartmut Brandt snmp_error("set: fix_encoding failed"); 906f06ca4afSHartmut Brandt snmp_pdu_free(resp); 9078eecd77aSHartmut Brandt context.ctx.code = SNMP_RET_IGN; 908f06ca4afSHartmut Brandt } 909f06ca4afSHartmut Brandt 910f06ca4afSHartmut Brandt /* 911f06ca4afSHartmut Brandt * Done 912f06ca4afSHartmut Brandt */ 913f06ca4afSHartmut Brandt errout: 9148eecd77aSHartmut Brandt snmp_dep_finish(&context.ctx); 915f06ca4afSHartmut Brandt 916f06ca4afSHartmut Brandt if (TR(SET)) 9178eecd77aSHartmut Brandt snmp_debug("set: returning %d", context.ctx.code); 918f06ca4afSHartmut Brandt 9198eecd77aSHartmut Brandt return (context.ctx.code); 920f06ca4afSHartmut Brandt } 921f06ca4afSHartmut Brandt /* 922f06ca4afSHartmut Brandt * Lookup a dependency. If it doesn't exist, create one 923f06ca4afSHartmut Brandt */ 924f06ca4afSHartmut Brandt struct snmp_dependency * 925f06ca4afSHartmut Brandt snmp_dep_lookup(struct snmp_context *ctx, const struct asn_oid *obj, 926f06ca4afSHartmut Brandt const struct asn_oid *idx, size_t len, snmp_depop_t func) 927f06ca4afSHartmut Brandt { 928f06ca4afSHartmut Brandt struct context *context; 929f06ca4afSHartmut Brandt struct depend *d; 930f06ca4afSHartmut Brandt 931f06ca4afSHartmut Brandt context = (struct context *)(void *) 932f06ca4afSHartmut Brandt ((char *)ctx - offsetof(struct context, ctx)); 933f06ca4afSHartmut Brandt if (TR(DEPEND)) { 934f06ca4afSHartmut Brandt snmp_debug("depend: looking for %s", asn_oid2str(obj)); 935f06ca4afSHartmut Brandt if (idx) 936f06ca4afSHartmut Brandt snmp_debug("depend: index is %s", asn_oid2str(idx)); 937f06ca4afSHartmut Brandt } 938f06ca4afSHartmut Brandt TAILQ_FOREACH(d, &context->dlist, link) 939f06ca4afSHartmut Brandt if (asn_compare_oid(obj, &d->dep.obj) == 0 && 940f06ca4afSHartmut Brandt ((idx == NULL && d->dep.idx.len == 0) || 941f06ca4afSHartmut Brandt (idx != NULL && asn_compare_oid(idx, &d->dep.idx) == 0))) { 942f06ca4afSHartmut Brandt if(TR(DEPEND)) 943f06ca4afSHartmut Brandt snmp_debug("depend: found"); 944f06ca4afSHartmut Brandt return (&d->dep); 945f06ca4afSHartmut Brandt } 946f06ca4afSHartmut Brandt 947f06ca4afSHartmut Brandt if(TR(DEPEND)) 948f06ca4afSHartmut Brandt snmp_debug("depend: creating"); 949f06ca4afSHartmut Brandt 950f06ca4afSHartmut Brandt if ((d = malloc(offsetof(struct depend, dep) + len)) == NULL) 951f06ca4afSHartmut Brandt return (NULL); 952f06ca4afSHartmut Brandt memset(&d->dep, 0, len); 953f06ca4afSHartmut Brandt 954f06ca4afSHartmut Brandt d->dep.obj = *obj; 955f06ca4afSHartmut Brandt if (idx == NULL) 956f06ca4afSHartmut Brandt d->dep.idx.len = 0; 957f06ca4afSHartmut Brandt else 958f06ca4afSHartmut Brandt d->dep.idx = *idx; 959f06ca4afSHartmut Brandt d->len = len; 960f06ca4afSHartmut Brandt d->func = func; 961f06ca4afSHartmut Brandt 962f06ca4afSHartmut Brandt TAILQ_INSERT_TAIL(&context->dlist, d, link); 963f06ca4afSHartmut Brandt 964f06ca4afSHartmut Brandt return (&d->dep); 965f06ca4afSHartmut Brandt } 966f06ca4afSHartmut Brandt 967f06ca4afSHartmut Brandt /* 968f06ca4afSHartmut Brandt * Make an error response from a PDU. We do this without decoding the 969f06ca4afSHartmut Brandt * variable bindings. This means we can sent the junk back to a caller 970f06ca4afSHartmut Brandt * that has sent us junk in the first place. 971f06ca4afSHartmut Brandt */ 972f06ca4afSHartmut Brandt enum snmp_ret 973f06ca4afSHartmut Brandt snmp_make_errresp(const struct snmp_pdu *pdu, struct asn_buf *pdu_b, 974f06ca4afSHartmut Brandt struct asn_buf *resp_b) 975f06ca4afSHartmut Brandt { 97606983448SShteryana Shopova u_char type; 977f06ca4afSHartmut Brandt asn_len_t len; 978f06ca4afSHartmut Brandt struct snmp_pdu resp; 979f06ca4afSHartmut Brandt enum asn_err err; 980f06ca4afSHartmut Brandt enum snmp_code code; 981f06ca4afSHartmut Brandt 98206983448SShteryana Shopova snmp_pdu_create_response(pdu, &resp); 98306983448SShteryana Shopova 984135f7de5SShteryana Shopova if ((code = snmp_pdu_decode_header(pdu_b, &resp)) != SNMP_CODE_OK) 985f06ca4afSHartmut Brandt return (SNMP_RET_IGN); 986f06ca4afSHartmut Brandt 98706983448SShteryana Shopova if (pdu->version == SNMP_V3) { 98806983448SShteryana Shopova if (resp.user.priv_proto != SNMP_PRIV_NOPRIV && 98906983448SShteryana Shopova (asn_get_header(pdu_b, &type, &resp.scoped_len) != ASN_ERR_OK 99006983448SShteryana Shopova || type != ASN_TYPE_OCTETSTRING)) { 99106983448SShteryana Shopova snmp_error("cannot decode encrypted pdu"); 992f06ca4afSHartmut Brandt return (SNMP_RET_IGN); 99306983448SShteryana Shopova } 99406983448SShteryana Shopova 99506983448SShteryana Shopova if (asn_get_sequence(pdu_b, &len) != ASN_ERR_OK) { 99606983448SShteryana Shopova snmp_error("cannot decode scoped pdu header"); 99706983448SShteryana Shopova return (SNMP_RET_IGN); 99806983448SShteryana Shopova } 99906983448SShteryana Shopova 100006983448SShteryana Shopova len = SNMP_ENGINE_ID_SIZ; 100106983448SShteryana Shopova if (asn_get_octetstring(pdu_b, (u_char *)resp.context_engine, 100206983448SShteryana Shopova &len) != ASN_ERR_OK) { 100306983448SShteryana Shopova snmp_error("cannot decode msg context engine"); 100406983448SShteryana Shopova return (SNMP_RET_IGN); 100506983448SShteryana Shopova } 100606983448SShteryana Shopova resp.context_engine_len = len; 100706983448SShteryana Shopova len = SNMP_CONTEXT_NAME_SIZ; 100806983448SShteryana Shopova if (asn_get_octetstring(pdu_b, (u_char *)resp.context_name, 100906983448SShteryana Shopova &len) != ASN_ERR_OK) { 101006983448SShteryana Shopova snmp_error("cannot decode msg context name"); 101106983448SShteryana Shopova return (SNMP_RET_IGN); 101206983448SShteryana Shopova } 101306983448SShteryana Shopova resp.context_name[len] = '\0'; 101406983448SShteryana Shopova } 101506983448SShteryana Shopova 101606983448SShteryana Shopova 101706983448SShteryana Shopova if (asn_get_header(pdu_b, &type, &len) != ASN_ERR_OK) { 101806983448SShteryana Shopova snmp_error("cannot get pdu header"); 101906983448SShteryana Shopova return (SNMP_RET_IGN); 102006983448SShteryana Shopova } 102106983448SShteryana Shopova 102206983448SShteryana Shopova if ((type & ~ASN_TYPE_MASK) != 102306983448SShteryana Shopova (ASN_TYPE_CONSTRUCTED | ASN_CLASS_CONTEXT)) { 102406983448SShteryana Shopova snmp_error("bad pdu header tag"); 102506983448SShteryana Shopova return (SNMP_RET_IGN); 102606983448SShteryana Shopova } 1027f06ca4afSHartmut Brandt 1028f06ca4afSHartmut Brandt err = snmp_parse_pdus_hdr(pdu_b, &resp, &len); 1029f06ca4afSHartmut Brandt if (ASN_ERR_STOPPED(err)) 1030f06ca4afSHartmut Brandt return (SNMP_RET_IGN); 1031f06ca4afSHartmut Brandt if (pdu_b->asn_len < len) 1032f06ca4afSHartmut Brandt return (SNMP_RET_IGN); 1033f06ca4afSHartmut Brandt pdu_b->asn_len = len; 1034f06ca4afSHartmut Brandt 1035f06ca4afSHartmut Brandt /* now we have the bindings left - construct new message */ 1036f06ca4afSHartmut Brandt resp.error_status = pdu->error_status; 1037f06ca4afSHartmut Brandt resp.error_index = pdu->error_index; 1038f06ca4afSHartmut Brandt resp.type = SNMP_PDU_RESPONSE; 1039f06ca4afSHartmut Brandt 1040f06ca4afSHartmut Brandt code = snmp_pdu_encode_header(resp_b, &resp); 1041f06ca4afSHartmut Brandt if (code != SNMP_CODE_OK) 1042f06ca4afSHartmut Brandt return (SNMP_RET_IGN); 1043f06ca4afSHartmut Brandt 1044f06ca4afSHartmut Brandt if (pdu_b->asn_len > resp_b->asn_len) 1045f06ca4afSHartmut Brandt /* too short */ 1046f06ca4afSHartmut Brandt return (SNMP_RET_IGN); 1047f06ca4afSHartmut Brandt (void)memcpy(resp_b->asn_ptr, pdu_b->asn_cptr, pdu_b->asn_len); 1048f06ca4afSHartmut Brandt resp_b->asn_len -= pdu_b->asn_len; 1049f06ca4afSHartmut Brandt resp_b->asn_ptr += pdu_b->asn_len; 1050f06ca4afSHartmut Brandt 1051f06ca4afSHartmut Brandt code = snmp_fix_encoding(resp_b, &resp); 1052f06ca4afSHartmut Brandt if (code != SNMP_CODE_OK) 1053f06ca4afSHartmut Brandt return (SNMP_RET_IGN); 1054f06ca4afSHartmut Brandt 1055f06ca4afSHartmut Brandt return (SNMP_RET_OK); 1056f06ca4afSHartmut Brandt } 1057f06ca4afSHartmut Brandt 1058f06ca4afSHartmut Brandt static void 1059f06ca4afSHartmut Brandt snmp_debug_func(const char *fmt, ...) 1060f06ca4afSHartmut Brandt { 1061f06ca4afSHartmut Brandt va_list ap; 1062f06ca4afSHartmut Brandt 1063f06ca4afSHartmut Brandt va_start(ap, fmt); 1064f06ca4afSHartmut Brandt vfprintf(stderr, fmt, ap); 1065f06ca4afSHartmut Brandt va_end(ap); 1066f06ca4afSHartmut Brandt fprintf(stderr, "\n"); 1067f06ca4afSHartmut Brandt } 1068