xref: /openbsd/usr.sbin/snmpd/trap.c (revision 274d7c50) 
1 /*	$OpenBSD: trap.c,v 1.33 2019/10/24 12:39:27 tb Exp $	*/
2 
3 /*
4  * Copyright (c) 2008 Reyk Floeter <reyk@openbsd.org>
5  *
6  * Permission to use, copy, modify, and distribute this software for any
7  * purpose with or without fee is hereby granted, provided that the above
8  * copyright notice and this permission notice appear in all copies.
9  *
10  * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
11  * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
12  * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
13  * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
14  * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
15  * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
16  * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
17  */
18 
19 #include <sys/queue.h>
20 #include <sys/types.h>
21 #include <sys/stat.h>
22 #include <sys/socket.h>
23 #include <sys/un.h>
24 #include <sys/tree.h>
25 
26 #include <net/if.h>
27 #include <netinet/in.h>
28 #include <arpa/inet.h>
29 
30 #include <stdlib.h>
31 #include <stdio.h>
32 #include <errno.h>
33 #include <event.h>
34 #include <fcntl.h>
35 #include <string.h>
36 #include <unistd.h>
37 #include <pwd.h>
38 
39 #include "snmpd.h"
40 #include "mib.h"
41 
42 void
43 trap_init(void)
44 {
45 	struct ber_oid	 trapoid = OID(MIB_coldStart);
46 
47 	/*
48 	 * Send a coldStart to notify that the daemon has been
49 	 * started and re-initialized.
50 	 */
51 	trap_send(&trapoid, NULL);
52 }
53 
54 int
55 trap_agentx(struct agentx_handle *h, struct agentx_pdu *pdu, int *idx,
56     char **varcpy, int *vcpylen)
57 {
58 	struct agentx_varbind_hdr	 vbhdr;
59 	u_int32_t			 d;
60 	struct ber_oid			 o, oid;
61 	struct ber_oid			 uptime = OID(MIB_sysUpTime);
62 	struct ber_oid			 trapoid = OID(MIB_snmpTrapOID);
63 	struct ber_element		*varbind, *iter;
64 	int				 x = 0, state = 0;
65 	int				 ret = AGENTX_ERR_NONE;
66 	int				 seensysuptime, seentrapoid;
67 	size_t				 len = 0;
68 	char				*v = NULL;
69 
70 	*varcpy = NULL;
71 	varbind = NULL;
72 	iter = NULL;
73 	seensysuptime = seentrapoid = 0;
74 
75 	if (pdu->hdr->flags & AGENTX_NON_DEFAULT_CONTEXT) {
76 		ret = AGENTX_ERR_UNSUPPORTED_CONTEXT;
77 		goto done;
78 	}
79 
80 	if ((v = malloc(pdu->hdr->length)) == NULL ||
81 	    snmp_agentx_copy_raw(pdu, v, pdu->hdr->length) == -1) {
82 		ret = AGENTX_ERR_PROCESSING_ERROR;
83 		goto done;
84 	}
85 
86 	while (pdu->datalen > sizeof(struct agentx_hdr)) {
87 		x++;
88 
89 		if (snmp_agentx_read_vbhdr(pdu, &vbhdr) == -1) {
90 			ret = AGENTX_ERR_PARSE_ERROR;
91 			goto done;
92 		}
93 
94 		if (state < 2) {
95 			if (snmp_agentx_read_oid(pdu, (struct snmp_oid *)&oid) == -1) {
96 				ret = AGENTX_ERR_PARSE_ERROR;
97 				goto done;
98 			}
99 			if (state == 0 && ober_oid_cmp(&oid, &uptime) == 0) {
100 				if (snmp_agentx_read_int(pdu, &d) == -1) {
101 					ret = AGENTX_ERR_PARSE_ERROR;
102 					goto done;
103 				}
104 				state = 1;
105 				continue;
106 			} else if (ober_oid_cmp(&oid, &trapoid) == 0) {
107 				if (snmp_agentx_read_oid(pdu,
108 				    (struct snmp_oid *)&o) == -1) {
109 					ret = AGENTX_ERR_PARSE_ERROR;
110 					goto done;
111 				}
112 				state = 2;
113 				continue;
114 			} else {
115 				ret = AGENTX_ERR_PROCESSING_ERROR;
116 				goto done;
117 			}
118 		}
119 
120 		ret = varbind_convert(pdu, &vbhdr, &varbind, &iter);
121 		if (ret != AGENTX_ERR_NONE)
122 			goto done;
123 	}
124 
125 	if (varbind != NULL)
126 		len = ober_calc_len(varbind);
127 	log_debug("trap_agentx: from packetid %d len %zu elements %d",
128 	    pdu->hdr->packetid, len, x);
129 
130 	trap_send(&o, varbind);
131 
132 	*varcpy = v;
133 	*vcpylen = pdu->hdr->length;
134 
135 	return (AGENTX_ERR_NONE);
136  done:
137 	if (varbind != NULL)
138 		ober_free_elements(varbind);
139 	free(v);
140 	*idx = x;
141 	return (ret);
142 }
143 
144 int
145 trap_send(struct ber_oid *oid, struct ber_element *elm)
146 {
147 	int			 ret = 0, s;
148 	struct address		*tr;
149 	struct ber_element	*root, *b, *c, *trap;
150 	struct ber		 ber;
151 	char			*cmn;
152 	ssize_t			 len;
153 	u_int8_t		*ptr;
154 	struct			 ber_oid uptime = OID(MIB_sysUpTime);
155 	struct			 ber_oid trapoid = OID(MIB_snmpTrapOID);
156 	char			 ostr[SNMP_MAX_OID_STRLEN];
157 	struct oid		 oa, ob;
158 
159 	if (TAILQ_EMPTY(&snmpd_env->sc_trapreceivers))
160 		return (0);
161 
162 	smi_scalar_oidlen(&uptime);
163 	smi_scalar_oidlen(&trapoid);
164 	smi_scalar_oidlen(oid);
165 
166 	smi_oid2string(oid, ostr, sizeof(ostr), 0);
167 	log_debug("trap_send: oid %s", ostr);
168 
169 	/* Setup OIDs to compare against the trap receiver MIB */
170 	bzero(&oa, sizeof(oa));
171 	bcopy(oid->bo_id, &oa.o_oid, sizeof(oa.o_oid));
172 	oa.o_oidlen = oid->bo_n;
173 	bzero(&ob, sizeof(ob));
174 	ob.o_flags = OID_TABLE;
175 
176 	/* Add mandatory varbind elements */
177 	trap = ober_add_sequence(NULL);
178 	c = ober_printf_elements(trap, "{Odt}{OO}",
179 	    &uptime, smi_getticks(),
180 	    BER_CLASS_APPLICATION, SNMP_T_TIMETICKS,
181 	    &trapoid, oid);
182 	if (elm != NULL)
183 		ober_link_elements(c, elm);
184 
185 	bzero(&ber, sizeof(ber));
186 
187 	TAILQ_FOREACH(tr, &snmpd_env->sc_trapreceivers, entry) {
188 		if (tr->sa_oid != NULL && tr->sa_oid->bo_n) {
189 			/* The trap receiver may want only a specified MIB */
190 			bcopy(&tr->sa_oid->bo_id, &ob.o_oid,
191 			    sizeof(ob.o_oid));
192 			ob.o_oidlen = tr->sa_oid->bo_n;
193 			if (smi_oid_cmp(&oa, &ob) != 0)
194 				continue;
195 		}
196 
197 		if ((s = snmpd_socket_af(&tr->ss, htons(tr->port),
198 		    IPPROTO_UDP)) == -1) {
199 			ret = -1;
200 			goto done;
201 		}
202 		if (tr->sa_srcaddr != NULL) {
203 			if (bind(s, (struct sockaddr *)&tr->sa_srcaddr->ss,
204 			    tr->sa_srcaddr->ss.ss_len) == -1) {
205 				ret = -1;
206 				goto done;
207 			}
208 		}
209 
210 		cmn = tr->sa_community != NULL ?
211 		    tr->sa_community : snmpd_env->sc_trcommunity;
212 
213 		/* SNMP header */
214 		root = ober_add_sequence(NULL);
215 		b = ober_printf_elements(root, "ds{tddd",
216 		    SNMP_V2, cmn, BER_CLASS_CONTEXT, SNMP_C_TRAPV2,
217 		    arc4random(), 0, 0);
218 		ober_link_elements(b, trap);
219 
220 #ifdef DEBUG
221 		smi_debug_elements(root);
222 #endif
223 		len = ober_write_elements(&ber, root);
224 		if (ober_get_writebuf(&ber, (void *)&ptr) > 0 &&
225 		    sendto(s, ptr, len, 0, (struct sockaddr *)&tr->ss,
226 		    tr->ss.ss_len) != -1) {
227 			snmpd_env->sc_stats.snmp_outpkts++;
228 			ret++;
229 		}
230 
231 		close(s);
232 		ober_unlink_elements(b);
233 		ober_free_elements(root);
234 	}
235 
236  done:
237 	ober_free_elements(trap);
238 	ober_free(&ber);
239 
240 	return (ret);
241 }
242