/* * ***** BEGIN LICENSE BLOCK ***** Copyright (C) 2022 Olof Hagsand and Kristofer Hallin This file is part of CLIXON. Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. Alternatively, the contents of this file may be used under the terms of the GNU General Public License Version 3 or later (the "GPL"), in which case the provisions of the GPL are applicable instead of those above. If you wish to allow use of your version of this file only under the terms of the GPL, and not to allow others to use your version of this file under the terms of Apache License version 2, indicate your decision by deleting the provisions above and replace them with the notice and other provisions required by the GPL. If you do not delete the provisions above, a recipient may use your version of this file under the terms of any one of the Apache License version 2 or the GPL. ***** END LICENSE BLOCK ***** * See RFC 6643 * Extensions are grouped in some categories, the one I have seen are, example: * 1. leaf * smiv2:max-access "read-write"; * smiv2:oid "1.3.6.1.4.1.8072.2.1.1"; * smiv2:defval "42"; (not always) * 2. container, list * smiv2:oid "1.3.6.1.4.1.8072.2.1"; * 3. module level * smiv2:alias "netSnmpExamples" { * smiv2:oid "1.3.6.1.4.1.8072.2"; * * SNMP messages: * 160 MODE_GETNEXT / SNMP_MSG_GET * 161 MODE_GET / SNMP_MSG_GETNEXT * 0 MODE_SET_RESERVE1 * 1 MODE_SET_RESERVE2 * 2 MODE_SET_ACTION * 3 MODE_SET_COMMIT */ #ifdef HAVE_CONFIG_H #include "clixon_config.h" /* generated by config & autoconf */ #endif #include #include #include #include #include #include #include #include /* net-snmp */ #include #include #include /* cligen */ #include /* clicon */ #include #include "snmp_lib.h" #include "snmp_register.h" #include "snmp_handler.h" #define IETF_YANG_SMIV2_NS "urn:ietf:params:xml:ns:yang:ietf-yang-smiv2" /*! Parse smiv2 extensions for YANG container/list * * Typical table: * container x { * smiv2:oid "1.3.6.1.4.1.8072.2.2.1"; * list y{ * * } * } * @param[in] h Clixon handle * @param[in] ys Mib-Yang node * @retval 0 OK * @retval -1 Error */ static int mib_yang_table(clicon_handle h, yang_stmt *ys) { int retval = SNMP_ERR_GENERR; netsnmp_handler_registration *nhreg; netsnmp_table_data_set *table; char *oidstr = NULL; oid oid1[MAX_OID_LEN] = {0,}; size_t sz1 = MAX_OID_LEN; char *name; clixon_snmp_handle *sh; int ret; /* Get OID from parent container */ if (yang_extension_value(ys, "oid", IETF_YANG_SMIV2_NS, NULL, &oidstr) < 0) goto done; if (oidstr == NULL) goto ok; if (snmp_parse_oid(oidstr, oid1, &sz1) == NULL){ clicon_err(OE_SNMP, 0, "snmp_parse_oid"); goto done; } name = yang_argument_get(ys); if ((table = netsnmp_create_table_data_set(name)) == NULL){ clicon_err(OE_SNMP, errno, "netsnmp_create_table_data_set"); goto done; } /* Userdata to pass around in netsmp callbacks * XXX: not deallocated */ if ((sh = malloc(sizeof(*sh))) == NULL){ clicon_err(OE_UNIX, errno, "malloc"); goto done; } memset(sh, 0, sizeof(*sh)); sh->sh_h = h; sh->sh_ys = ys; sh->sh_table = table; memcpy(sh->sh_oid, oid1, sizeof(oid1)); sh->sh_oidlen = sz1; if (clixon_table_create(table, ys, h) < 0) goto done; if ((nhreg = netsnmp_create_handler_registration(name, snmp_table_handler, oid1, sz1, HANDLER_CAN_RWRITE)) == NULL){ clicon_err(OE_SNMP, errno, "netsnmp_create_handler_registration"); goto done; } nhreg->my_reg_void = sh; if ((ret = netsnmp_register_table_data_set(nhreg, table, NULL)) != SNMPERR_SUCCESS){ //XXX err return? clicon_err(OE_SNMP, ret, "netsnmp_register_table_data_set"); // goto done; } (void)netsnmp_register_auto_data_table(table, NULL); clicon_debug(1, "%s %s registered", __FUNCTION__, oidstr); ok: retval = 0; done: return retval; } /*! Parse smiv2 extensions for YANG leaf * Typical leaf: * smiv2:oid "1.3.6.1.4.1.8072.2.1.1"; * smiv2:max-access "read-write"; * smiv2:defval "42"; (optional) * @param[in] h Clixon handle * @param[in] ys Mib-Yang node * @retval 0 OK * @retval -1 Error */ static int mib_yang_leaf(clicon_handle h, yang_stmt *ys) { int retval = -1; netsnmp_handler_registration *nhreg = NULL; netsnmp_mib_handler *handler; int ret; char *modes_str = NULL; char *default_str = NULL; char *oidstr = NULL; oid oid1[MAX_OID_LEN] = {0,}; size_t sz1 = MAX_OID_LEN; int modes; char *name; clixon_snmp_handle *sh; /* Get OID from leaf */ if (yang_extension_value(ys, "oid", IETF_YANG_SMIV2_NS, NULL, &oidstr) < 0) goto done; if (oidstr == NULL) goto ok; if (snmp_parse_oid(oidstr, oid1, &sz1) == NULL){ clicon_err(OE_SNMP, 0, "snmp_parse_oid"); goto done; } if (yang_extension_value(ys, "max-access", IETF_YANG_SMIV2_NS, NULL, &modes_str) < 0) goto done; #if 1 /* Sanity check of types */ if (type_yang2asn1(ys, NULL) < 0) goto done; #endif /* Get modes (access) read-only, read-write, not-accessible, oaccessible-for-notify */ if (modes_str == NULL) goto ok; modes = snmp_access_str2int(modes_str); /* SMI default value, How is this different from yang defaults? */ if (yang_extension_value(ys, "defval", IETF_YANG_SMIV2_NS, NULL, &default_str) < 0) goto done; name = yang_argument_get(ys); if ((handler = netsnmp_create_handler(name, snmp_scalar_handler)) == NULL){ clicon_err(OE_SNMP, errno, "netsnmp_create_handler"); goto done; } /* Userdata to pass around in netsmp callbacks * XXX: not deallocated */ if ((sh = malloc(sizeof(*sh))) == NULL){ clicon_err(OE_UNIX, errno, "malloc"); goto done; } memset(sh, 0, sizeof(*sh)); sh->sh_h = h; sh->sh_ys = ys; memcpy(sh->sh_oid, oid1, sizeof(oid1)); sh->sh_oidlen = sz1; sh->sh_default = default_str; if ((nhreg = netsnmp_handler_registration_create(name, handler, oid1, sz1, modes)) == NULL){ clicon_err(OE_SNMP, errno, "netsnmp_handler_registration_create"); netsnmp_handler_free(handler); goto done; } nhreg->my_reg_void =(void*)sh; /* * XXX: nhreg->agent_data */ if ((ret = netsnmp_register_instance(nhreg)) < 0){ /* XXX Failures are MIB_REGISTRATION_FAILED and MIB_DUPLICATE_REGISTRATION. */ clicon_err(OE_SNMP, ret, "netsnmp_register_instance"); goto done; } clicon_debug(1, "%s %s registered", __FUNCTION__, oidstr); ok: retval = 0; done: return retval; } /*! Traverse mib-yang tree, identify scalars and tables, register OID and callbacks * * The tree is traversed depth-first, which at least guarantees that a parent is * traversed before a child. * Extensions are grouped in some categories, the one I have seen are, example: * 1. leaf * smiv2:max-access "read-write"; * smiv2:oid "1.3.6.1.4.1.8072.2.1.1"; * smiv2:defval "42"; (not always) * 2. container, list * smiv2:oid "1.3.6.1.4.1.8072.2.1"; * 3. module level * smiv2:alias "netSnmpExamples" { * smiv2:oid "1.3.6.1.4.1.8072.2"; * @param[in] h Clixon handle * @param[in] yn yang node * @retval 0 OK, all nodes traversed * @retval -1 Error, aborted at first error encounter */ static int mib_traverse(clicon_handle h, yang_stmt *yn) { int retval = -1; yang_stmt *ys = NULL; yang_stmt *yp; int ret; enum rfc_6020 keyw; keyw = yang_keyword_get(yn); switch(keyw){ case Y_LEAF: if (mib_yang_leaf(h, yn) < 0) goto done; break; case Y_CONTAINER: /* See list case */ break; case Y_LIST: /* If parent is container -> identify as table */ yp = yang_parent_get(yn); if (yang_keyword_get(yp) == Y_CONTAINER){ if (mib_yang_table(h, yp) < 0) goto done; goto ok; /* Dont traverse child leafs further */ } break; default: break; } /* Traverse data nodes in tree (module is special case */ ys = NULL; if (yang_schemanode(yn) || keyw == Y_MODULE|| keyw == Y_SUBMODULE) while ((ys = yn_each(yn, ys)) != NULL) { if ((ret = mib_traverse(h, ys)) < 0) goto done; if (ret > 0){ retval = ret; goto done; } } ok: retval = 0; done: return retval; } /*! Init mib-translated yangs and register callbacks by traversing the yang * * @þaram[in] h Clixon handle * @retval 0 OK * @retval -1 Error */ int clixon_snmp_traverse_mibyangs(clicon_handle h) { int retval = -1; char *modname; cxobj *x; yang_stmt *yspec; yang_stmt *ymod; /* XXX Hardcoded, replace this with generic MIB */ if ((yspec = clicon_dbspec_yang(h)) == NULL){ clicon_err(OE_FATAL, 0, "No DB_SPEC"); goto done; } x = NULL; while ((x = xml_child_each(clicon_conf_xml(h), x, CX_ELMNT)) != NULL) { if (strcmp(xml_name(x), "CLICON_SNMP_MIB") != 0) continue; if ((modname = xml_body(x)) == NULL) continue; clicon_debug(1, "%s %s: \"%s\"", __FUNCTION__, xml_name(x), modname); /* Note, here we assume the Yang is loaded by some other mechanism and * error if it not found. * Alternatively, that YANG could be loaded. * Problem is, if clixon_snmp has not loaded it, has backend done it? * What happens if backend has not loaded it? */ if ((ymod = yang_find(yspec, Y_MODULE, modname)) == NULL){ clicon_err(OE_YANG, 0, "Mib-translated-yang %s not loaded", modname); goto done; } /* Recursively traverse the mib-yang to find extensions */ if (mib_traverse(h, ymod) < 0) goto done; } retval = 0; done: return retval; }