/* Portions of this file are subject to the following copyright(s).  See

 * the Net-SNMP's COPYING file for more details and other copyrights

 * that may apply:

 */

/******************************************************************

  Copyright 1989, 1991, 1992 by Carnegie Mellon University

                      All Rights Reserved

Permission to use, copy, modify, and distribute this software and its

documentation for any purpose and without fee is hereby granted,

provided that the above copyright notice appear in all copies and that

both that copyright notice and this permission notice appear in

supporting documentation, and that the name of CMU not be

used in advertising or publicity pertaining to distribution of the

software without specific, written prior permission.

CMU DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE, INCLUDING

ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS, IN NO EVENT SHALL

CMU BE LIABLE FOR ANY SPECIAL, INDIRECT OR CONSEQUENTIAL DAMAGES OR

ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS,

WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION,

ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS

SOFTWARE.

******************************************************************/

/*

 * Portions of this file are copyrighted by:

 * Copyright Copyright 2003 Sun Microsystems, Inc. All rights reserved.

 * Use is subject to license terms specified in the COPYING file

 * distributed with the Net-SNMP package.

 *

 * Portions of this file are copyrighted by:

 * Copyright (c) 2016 VMware, Inc. All rights reserved.

 * Use is subject to license terms specified in the COPYING file

 * distributed with the Net-SNMP package.

 */

/** @defgroup library The Net-SNMP library

 *  @{

 */

/*

 * snmp_api.c - API for access to snmp.

 */

#include <net-snmp/net-snmp-config.h>

#include <net-snmp/net-snmp-features.h>

#include <stdio.h>

#include <ctype.h>

#ifdef HAVE_STDLIB_H

#include <stdlib.h>

#endif

#ifdef HAVE_STRING_H

#include <string.h>

#else

#include <strings.h>

#endif

#ifdef HAVE_UNISTD_H

#include <unistd.h>

#endif

#include <sys/types.h>

#ifdef HAVE_SYS_PARAM_H

#include <sys/param.h>

#endif

#ifdef TIME_WITH_SYS_TIME

# include <sys/time.h>

# include <time.h>

#else

# ifdef HAVE_SYS_TIME_H

#  include <sys/time.h>

# else

#  include <time.h>

# endif

#endif

#ifdef HAVE_NETINET_IN_H

#include <netinet/in.h>

#endif

#ifdef HAVE_ARPA_INET_H

#include <arpa/inet.h>

#endif

#ifdef HAVE_SYS_SELECT_H

#include <sys/select.h>

#endif

#ifdef HAVE_IO_H

#include <io.h>

#endif

#ifdef HAVE_SYS_SOCKET_H

#include <sys/socket.h>

#endif

#ifdef HAVE_SYS_UN_H

#include <sys/un.h>

#endif

#ifdef HAVE_NETDB_H

#include <netdb.h>

#endif

#ifdef HAVE_NET_IF_DL_H

#ifndef dynix

#include <net/if_dl.h>

#else

#include <sys/net/if_dl.h>

#endif

#endif

#include <errno.h>

#ifdef HAVE_LOCALE_H

#include <locale.h>

#endif

#define SNMP_NEED_REQUEST_LIST

#include <net-snmp/types.h>

#include <net-snmp/output_api.h>

#include <net-snmp/config_api.h>

#include <net-snmp/utilities.h>

#include <net-snmp/agent/agent_callbacks.h>

#include <net-snmp/library/asn1.h>

#include <net-snmp/library/snmp.h>      /* for xdump & {build,parse}_var_op */

#include <net-snmp/library/snmp_api.h>

#include <net-snmp/library/snmp_client.h>

#include <net-snmp/library/parse.h>

#include <net-snmp/library/mib.h>

#include <net-snmp/library/int64.h>

#include <net-snmp/library/snmpv3.h>

#include <net-snmp/library/callback.h>

#include <net-snmp/library/container.h>

#include <net-snmp/library/snmp_secmod.h>

#include <net-snmp/library/large_fd_set.h>

#ifdef NETSNMP_SECMOD_USM

#include <net-snmp/library/snmpusm.h>

#endif

#ifdef NETSNMP_SECMOD_KSM

#include <net-snmp/library/snmpksm.h>

#endif

#include <net-snmp/library/keytools.h>

#include <net-snmp/library/lcd_time.h>

#include <net-snmp/library/snmp_alarm.h>

#include <net-snmp/library/snmp_transport.h>

#include <net-snmp/library/snmp_service.h>

#include <net-snmp/library/vacm.h>

#if defined(NETSNMP_USE_OPENSSL) && defined(HAVE_LIBSSL)

#include <openssl/ssl.h>

#include <net-snmp/library/cert_util.h>

#endif

netsnmp_feature_child_of(statistics, libnetsnmp);

netsnmp_feature_child_of(snmp_api, libnetsnmp);

netsnmp_feature_child_of(oid_is_subtree, snmp_api);

netsnmp_feature_child_of(snmpv3_probe_contextEngineID_rfc5343, snmp_api);

static void     _init_snmp(void);

static int      _snmp_store_needed = 0;

#include "../agent/mibgroup/agentx/protocol.h"

#include <net-snmp/library/transform_oids.h>

#ifndef timercmp

#define timercmp(tvp, uvp, cmp) \

  /* CSTYLED */ \

  ((tvp)->tv_sec cmp (uvp)->tv_sec || \

  ((tvp)->tv_sec == (uvp)->tv_sec && \

  /* CSTYLED */ \

  (tvp)->tv_usec cmp (uvp)->tv_usec))

#endif

#ifndef timerclear

#define timerclear(tvp)   (tvp)->tv_sec = (tvp)->tv_usec = 0

#endif

/*

 * Globals.

 */

#ifndef NETSNMP_STREAM_QUEUE_LEN

#define NETSNMP_STREAM_QUEUE_LEN  5

#endif

#ifndef BSD4_3

#define BSD4_2

#endif

static const oid default_enterprise[] = { 1, 3, 6, 1, 4, 1, 3, 1, 1 };

/*

 * enterprises.cmu.systems.cmuSNMP 

 */

#define DEFAULT_COMMUNITY   "public"

#define DEFAULT_RETRIES     5

#define DEFAULT_TIMEOUT     (1000L * 1000L)

#define DEFAULT_REMPORT     SNMP_PORT

#define DEFAULT_ENTERPRISE  default_enterprise

#define DEFAULT_TIME      0

/*

 * Internal information about the state of the snmp session.

 */

struct snmp_internal_session {

    netsnmp_request_list *requests;     /* Info about outstanding requests */

    netsnmp_request_list *requestsEnd;  /* ptr to end of list */

    int             (*hook_pre) (netsnmp_session *, netsnmp_transport *,

                                 void *, int);

    int             (*hook_parse) (netsnmp_session *, netsnmp_pdu *,

                                   u_char *, size_t);

    int             (*hook_post) (netsnmp_session *, netsnmp_pdu *, int);

    int             (*hook_build) (netsnmp_session *, netsnmp_pdu *,

                                   u_char *, size_t *);

    int             (*hook_realloc_build) (netsnmp_session *,

                                           netsnmp_pdu *, u_char **,

                                           size_t *, size_t *);

    int             (*check_packet) (u_char *, size_t);

    netsnmp_pdu    *(*hook_create_pdu) (netsnmp_transport *,

                                        void *, size_t);

    u_char       *packet;      /* curr rcv packet data (may be incomplete) */

    size_t        packet_len;  /* length of data received so far */

    size_t        packet_size; /* size of buffer for packet data */

    u_char       *obuf;         /* send packet buffer */

    size_t        obuf_size;    /* size of buffer for packet data */

    u_char       *opacket;      /* send packet data (within obuf) */

    size_t        opacket_len;  /* length of data */

};

/*

 * information about received packet

 */

typedef struct snmp_rcv_packet_s {

    u_char   *packet;

    size_t    packet_len;

    void     *opaque;

    int       olength;

} snmp_rcv_packet;

static const char *api_errors[-SNMPERR_MAX + 1] = {

    "No error",                 /* SNMPERR_SUCCESS */

    "Generic error",            /* SNMPERR_GENERR */

    "Invalid local port",       /* SNMPERR_BAD_LOCPORT */

    "Unknown host",             /* SNMPERR_BAD_ADDRESS */

    "Unknown session",          /* SNMPERR_BAD_SESSION */

    "Too long",                 /* SNMPERR_TOO_LONG */

    "No socket",                /* SNMPERR_NO_SOCKET */

    "Cannot send V2 PDU on V1 session", /* SNMPERR_V2_IN_V1 */

    "Cannot send V1 PDU on V2 session", /* SNMPERR_V1_IN_V2 */

    "Bad value for non-repeaters",      /* SNMPERR_BAD_REPEATERS */

    "Bad value for max-repetitions",    /* SNMPERR_BAD_REPETITIONS */

    "Error building ASN.1 representation",      /* SNMPERR_BAD_ASN1_BUILD */

    "Failure in sendto",        /* SNMPERR_BAD_SENDTO */

    "Bad parse of ASN.1 type",  /* SNMPERR_BAD_PARSE */

    "Bad version specified",    /* SNMPERR_BAD_VERSION */

    "Bad source party specified",       /* SNMPERR_BAD_SRC_PARTY */

    "Bad destination party specified",  /* SNMPERR_BAD_DST_PARTY */

    "Bad context specified",    /* SNMPERR_BAD_CONTEXT */

    "Bad community specified",  /* SNMPERR_BAD_COMMUNITY */

    "Cannot send noAuth/Priv",       /* SNMPERR_NOAUTH_DESPRIV */

    "Bad ACL definition",       /* SNMPERR_BAD_ACL */

    "Bad Party definition",     /* SNMPERR_BAD_PARTY */

    "Session abort failure",    /* SNMPERR_ABORT */

    "Unknown PDU type",         /* SNMPERR_UNKNOWN_PDU */

    "Timeout",                  /* SNMPERR_TIMEOUT */

    "Failure in recvfrom",      /* SNMPERR_BAD_RECVFROM */

    "Unable to determine contextEngineID",      /* SNMPERR_BAD_ENG_ID */

    "No securityName specified",        /* SNMPERR_BAD_SEC_NAME */

    "Unable to determine securityLevel",        /* SNMPERR_BAD_SEC_LEVEL  */

    "ASN.1 parse error in message",     /* SNMPERR_ASN_PARSE_ERR */

    "Unknown security model in message",        /* SNMPERR_UNKNOWN_SEC_MODEL */

    "Invalid message (e.g. msgFlags)",  /* SNMPERR_INVALID_MSG */

    "Unknown engine ID",        /* SNMPERR_UNKNOWN_ENG_ID */

    "Unknown user name",        /* SNMPERR_UNKNOWN_USER_NAME */

    "Unsupported security level",       /* SNMPERR_UNSUPPORTED_SEC_LEVEL */

    "Authentication failure (incorrect password, community or key)",    /* SNMPERR_AUTHENTICATION_FAILURE */

    "Not in time window",       /* SNMPERR_NOT_IN_TIME_WINDOW */

    "Decryption error",         /* SNMPERR_DECRYPTION_ERR */

    "SCAPI general failure",    /* SNMPERR_SC_GENERAL_FAILURE */

    "SCAPI sub-system not configured",  /* SNMPERR_SC_NOT_CONFIGURED */

    "Key tools not available",  /* SNMPERR_KT_NOT_AVAILABLE */

    "Unknown Report message",   /* SNMPERR_UNKNOWN_REPORT */

    "USM generic error",        /* SNMPERR_USM_GENERICERROR */

    "USM unknown security name (no such user exists)",  /* SNMPERR_USM_UNKNOWNSECURITYNAME */

    "USM unsupported security level (this user has not been configured for that level of security)",    /* SNMPERR_USM_UNSUPPORTEDSECURITYLEVEL */

    "USM encryption error",     /* SNMPERR_USM_ENCRYPTIONERROR */

    "USM authentication failure (incorrect password or key)",   /* SNMPERR_USM_AUTHENTICATIONFAILURE */

    "USM parse error",          /* SNMPERR_USM_PARSEERROR */

    "USM unknown engineID",     /* SNMPERR_USM_UNKNOWNENGINEID */

    "USM not in time window",   /* SNMPERR_USM_NOTINTIMEWINDOW */

    "USM decryption error",     /* SNMPERR_USM_DECRYPTIONERROR */

    "MIB not initialized",      /* SNMPERR_NOMIB */

    "Value out of range",       /* SNMPERR_RANGE */

    "Sub-id out of range",      /* SNMPERR_MAX_SUBID */

    "Bad sub-id in object identifier",  /* SNMPERR_BAD_SUBID */

    "Object identifier too long",       /* SNMPERR_LONG_OID */

    "Bad value name",           /* SNMPERR_BAD_NAME */

    "Bad value notation",       /* SNMPERR_VALUE */

    "Unknown Object Identifier",        /* SNMPERR_UNKNOWN_OBJID */

    "No PDU in snmp_send",      /* SNMPERR_NULL_PDU */

    "Missing variables in PDU", /* SNMPERR_NO_VARS */

    "Bad variable type",        /* SNMPERR_VAR_TYPE */

    "Out of memory (malloc failure)",   /* SNMPERR_MALLOC */

    "Kerberos related error",   /* SNMPERR_KRB5 */

    "Protocol error",   /* SNMPERR_PROTOCOL */

    "OID not increasing",       /* SNMPERR_OID_NONINCREASING */

    "Context probe",            /* SNMPERR_JUST_A_CONTEXT_PROBE */

    "Configuration data found but the transport can't be configured", /* SNMPERR_TRANSPORT_NO_CONFIG */

    "Transport configuration failed", /* SNMPERR_TRANSPORT_CONFIG_ERROR */

};

static const char *secLevelName[] = {

    "BAD_SEC_LEVEL",

    "noAuthNoPriv",

    "authNoPriv",

    "authPriv"

};

/*

 * Multiple threads may changes these variables.

 * Suggest using the Single API, which does not use Sessions.

 *

 * Reqid may need to be protected. Time will tell...

 *

 */

/*

 * MTCRITICAL_RESOURCE

 */

/*

 * use token in comments to individually protect these resources 

 */

struct session_list *Sessions = NULL;   /* MT_LIB_SESSION */

static long     Reqid = 0;      /* MT_LIB_REQUESTID */

static long     Msgid = 0;      /* MT_LIB_MESSAGEID */

static long     Sessid = 0;     /* MT_LIB_SESSIONID */

static long     Transid = 0;    /* MT_LIB_TRANSID */

int             snmp_errno = 0;

/*

 * END MTCRITICAL_RESOURCE

 */

/*

 * global error detail storage

 */

static char     snmp_detail[192];

static int      snmp_detail_f = 0;

/*

 * Prototypes.

 */

static void     snmpv3_calc_msg_flags(int, int, u_char *);

static int      snmpv3_verify_msg(netsnmp_request_list *, netsnmp_pdu *);

static int      snmpv3_build(u_char ** pkt, size_t * pkt_len,

                             size_t * offset, netsnmp_session * session,

                             netsnmp_pdu *pdu);

static int      snmp_parse_version(u_char *, size_t);

static int      snmp_resend_request(struct session_list *slp,

                                    netsnmp_request_list *orp,

                                    netsnmp_request_list *rp,

                                    int incr_retries);

static void     register_default_handlers(void);

static struct session_list *snmp_sess_copy(netsnmp_session * pss);

/*

 * return configured max message size for outgoing packets

 */

int

netsnmp_max_send_msg_size(void)

{

    u_int max = netsnmp_ds_get_int(NETSNMP_DS_LIBRARY_ID,

                                   NETSNMP_DS_LIB_MSG_SEND_MAX);

    if (0 == max)

        max = SNMP_MAX_PACKET_LEN;

    else if (max < SNMP_MIN_MAX_LEN)

        max = SNMP_MIN_MAX_LEN; /* minimum max size per SNMP specs */

    else if (max > SNMP_MAX_PACKET_LEN)

        max = SNMP_MAX_PACKET_LEN;

    return max;

}

#ifndef HAVE_STRERROR

const char     *

strerror(int err)

{

    extern const char *sys_errlist[];

    extern int      sys_nerr;

    if (err < 0 || err >= sys_nerr)

        return "Unknown error";

    return sys_errlist[err];

}

#endif

const char *

snmp_pdu_type(int type)

{

    static char unknown[20];

    switch(type) {

    case SNMP_MSG_GET:

        return "GET";

    case SNMP_MSG_GETNEXT:

        return "GETNEXT";

    case SNMP_MSG_GETBULK:

        return "GETBULK";

#ifndef NETSNMP_NO_WRITE_SUPPORT

    case SNMP_MSG_SET:

        return "SET";

#endif /* !NETSNMP_NO_WRITE_SUPPORT */

    case SNMP_MSG_RESPONSE:

        return "RESPONSE";

    case SNMP_MSG_TRAP:

        return "TRAP";

    case SNMP_MSG_INFORM:

        return "INFORM";

    case SNMP_MSG_TRAP2:

        return "TRAP2";

    case SNMP_MSG_REPORT:

        return "REPORT";

    default:

        snprintf(unknown, sizeof(unknown), "?0x%2X?", type);

  return unknown;

    }

}

#define DEBUGPRINTPDUTYPE(token, type) \

    DEBUGDUMPSECTION(token, snmp_pdu_type(type))

long

snmp_get_next_reqid(void)

{

    long            retVal;

    snmp_res_lock(MT_LIBRARY_ID, MT_LIB_REQUESTID);

    retVal = 1 + Reqid;         /*MTCRITICAL_RESOURCE */

    if (!retVal)

        retVal = 2;

    Reqid = retVal;

    if (netsnmp_ds_get_boolean(NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_16BIT_IDS))

        retVal &= 0x7fff; /* mask to 15 bits */

    else

        retVal &= 0x7fffffff; /* mask to 31 bits */

    if (!retVal) {

        Reqid = retVal = 2;

    }

    snmp_res_unlock(MT_LIBRARY_ID, MT_LIB_REQUESTID);

    return retVal;

}

long

snmp_get_next_msgid(void)

{

    long            retVal;

    snmp_res_lock(MT_LIBRARY_ID, MT_LIB_MESSAGEID);

    retVal = 1 + Msgid;         /*MTCRITICAL_RESOURCE */

    if (!retVal)

        retVal = 2;

    Msgid = retVal;

    if (netsnmp_ds_get_boolean(NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_16BIT_IDS))

        retVal &= 0x7fff; /* mask to 15 bits */

    else

        retVal &= 0x7fffffff; /* mask to 31 bits */

    if (!retVal) {

        Msgid = retVal = 2;

    }

    snmp_res_unlock(MT_LIBRARY_ID, MT_LIB_MESSAGEID);

    return retVal;

}

long

snmp_get_next_sessid(void)

{

    long            retVal;

    snmp_res_lock(MT_LIBRARY_ID, MT_LIB_SESSIONID);

    retVal = 1 + Sessid;        /*MTCRITICAL_RESOURCE */

    if (!retVal)

        retVal = 2;

    Sessid = retVal;

    if (netsnmp_ds_get_boolean(NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_16BIT_IDS))

        retVal &= 0x7fff; /* mask to 15 bits */

    else

        retVal &= 0x7fffffff; /* mask to 31 bits */

    if (!retVal) {

        Sessid = retVal = 2;

    }

    snmp_res_unlock(MT_LIBRARY_ID, MT_LIB_SESSIONID);

    return retVal;

}

long

snmp_get_next_transid(void)

{

    long            retVal;

    snmp_res_lock(MT_LIBRARY_ID, MT_LIB_TRANSID);

    retVal = 1 + Transid;       /*MTCRITICAL_RESOURCE */

    if (!retVal)

        retVal = 2;

    Transid = retVal;

    if (netsnmp_ds_get_boolean(NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_16BIT_IDS))

        retVal &= 0x7fff;  /* mask to 15 bits */

    else

        retVal &= 0x7fffffff; /* mask to 31 bits */

    if (!retVal) {

        Transid = retVal = 2;

    }

    snmp_res_unlock(MT_LIBRARY_ID, MT_LIB_TRANSID);

    return retVal;

}

void

snmp_perror(const char *prog_string)

{

    const char     *str;

    int             xerr;

    xerr = snmp_errno;          /*MTCRITICAL_RESOURCE */

    str = snmp_api_errstring(xerr);

    snmp_log(LOG_ERR, "%s: %s\n", prog_string, str);

}

void

snmp_set_detail(const char *detail_string)

{

    if (detail_string != NULL) {

        strlcpy(snmp_detail, detail_string, sizeof(snmp_detail));

        snmp_detail_f = 1;

    }

}

/*

 * returns pointer to static data 

 */

/*

 * results not guaranteed in multi-threaded use 

 */

const char     *

snmp_api_errstring(int snmp_errnumber)

{

    const char     *msg = "";

    static char     msg_buf[SPRINT_MAX_LEN];

    if (snmp_errnumber >= SNMPERR_MAX && snmp_errnumber <= SNMPERR_GENERR) {

        msg = api_errors[-snmp_errnumber];

    } else if (snmp_errnumber != SNMPERR_SUCCESS) {

        msg = NULL;

    }

    if (!msg) {

  snprintf(msg_buf, sizeof(msg_buf), "Unknown error: %d", snmp_errnumber);

        msg_buf[sizeof(msg_buf)-1] = '\0';

    } else if (snmp_detail_f) {

        snprintf(msg_buf, sizeof(msg_buf), "%s (%s)", msg, snmp_detail);

        msg_buf[sizeof(msg_buf)-1] = '\0';

        snmp_detail_f = 0;

    } else {

        strlcpy(msg_buf, msg, sizeof(msg_buf));

    }

    return (msg_buf);

}

/*

 * snmp_error - return error data

 * Inputs :  address of errno, address of snmp_errno, address of string

 * Caller must free the string returned after use.

 */

void

snmp_error(netsnmp_session * psess,

           int *p_errno, int *p_snmp_errno, char **p_str)

{

    char            buf[SPRINT_MAX_LEN];

    int             snmp_errnumber;

    if (p_errno)

        *p_errno = psess->s_errno;

    if (p_snmp_errno)

        *p_snmp_errno = psess->s_snmp_errno;

    if (p_str == NULL)

        return;

    strcpy(buf, "");

    snmp_errnumber = psess->s_snmp_errno;

    if (snmp_errnumber >= SNMPERR_MAX && snmp_errnumber <= SNMPERR_GENERR) {

  if (snmp_detail_f) {

            snprintf(buf, sizeof(buf), "%s (%s)", api_errors[-snmp_errnumber],

        snmp_detail);

            buf[sizeof(buf)-1] = '\0';

      snmp_detail_f = 0;

  }

  else

      strlcpy(buf, api_errors[-snmp_errnumber], sizeof(buf));

    } else {

        if (snmp_errnumber) {

            snprintf(buf, sizeof(buf), "Unknown Error %d", snmp_errnumber);

            buf[sizeof(buf)-1] = '\0';

        }

    }

    /*

     * append a useful system errno interpretation. 

     */

    if (psess->s_errno) {

        const char* error = strerror(psess->s_errno);

        if(error == NULL)

            error = "Unknown Error";

        snprintf (&buf[strlen(buf)], sizeof(buf)-strlen(buf),

                 " (%s)", error);

    }

    buf[sizeof(buf)-1] = '\0';

    *p_str = strdup(buf);

}

/*

 * snmp_sess_error - same as snmp_error for single session API use.

 */

void

snmp_sess_error(struct session_list *slp, int *p_errno, int *p_snmp_errno,

                char **p_str)

{

    if ((slp) && (slp->session))

        snmp_error(slp->session, p_errno, p_snmp_errno, p_str);

}

/*

 * netsnmp_sess_log_error(): print a error stored in a session pointer 

 */

void

netsnmp_sess_log_error(int priority,

                       const char *prog_string, netsnmp_session * ss)

{

    char           *err;

    snmp_error(ss, NULL, NULL, &err);

    snmp_log(priority, "%s: %s\n", prog_string, err);

    SNMP_FREE(err);

}

/*

 * snmp_sess_perror(): print a error stored in a session pointer 

 */

void

snmp_sess_perror(const char *prog_string, netsnmp_session * ss)

{

    netsnmp_sess_log_error(LOG_ERR, prog_string, ss);

}

long int netsnmp_random(void)

{

#if defined(HAVE_RANDOM)

    /*

     * The function random() is a more sophisticated random number generator

     * which uses nonlinear feedback and an internal table that is 124 bytes

     * (992 bits) long. The function returns random values that are 32 bits in

     * length. All of the bits generated by random() are usable. The random()

     * function is adequate for simulations and games, but should not be used

     * for security related applications such as picking cryptographic keys or

     * simulating one-time pads.

     */

    return random();

#elif defined(HAVE_LRAND48)

    /*

     * As with random(), lrand48() provides excellent random numbers for

     * simulations and games, but should not be used for security-related

     * applications such as picking cryptographic keys or simulating one-time

     * pads; linear congruential algorithms are too easy to break.

     */

    return lrand48();

#elif defined(HAVE_RAND)

    /*

     * The original UNIX random number generator, rand(), is not a very good

     * random number generator. It uses a 32-bit seed and maintains a 32-bit

     * internal state.

     */

    return rand();

#else

#error "Neither random(), nor lrand48() nor rand() are available"

#endif

}

void netsnmp_srandom(unsigned int seed)

{

#if defined(HAVE_SRANDOM)

    srandom(seed);

#elif defined(HAVE_SRAND48)

    srand48(seed);

#elif defined(HAVE_SRAND)

    srand(seed);

#else

#error "Neither srandom(), nor srand48() nor srand() are available"

#endif

}

/*

 * Primordial SNMP library initialization.

 * Initializes mutex locks.

 * Invokes minimum required initialization for displaying MIB objects.

 * Gets initial request ID for all transactions,

 * and finds which port SNMP over UDP uses.

 * SNMP over AppleTalk is not currently supported.

 *

 * Warning: no debug messages here.

 */

static char _init_snmp_init_done = 0;

static void

_init_snmp(void)

{

    struct timeval  tv;

    long            tmpReqid, tmpMsgid;

    if (_init_snmp_init_done)

        return;

    _init_snmp_init_done = 1;

    Reqid = 1;

    snmp_res_init();            /* initialize the mt locking structures */

#ifndef NETSNMP_DISABLE_MIB_LOADING

    netsnmp_init_mib_internals();

#endif /* NETSNMP_DISABLE_MIB_LOADING */

    netsnmp_tdomain_init();

    gettimeofday(&tv, (struct timezone *) 0);

    /*

     * Now = tv;

     */

    /*

     * get pseudo-random values for request ID and message ID 

     */

    netsnmp_srandom((unsigned)(tv.tv_sec ^ tv.tv_usec));

    tmpReqid = netsnmp_random();

    tmpMsgid = netsnmp_random();

    /*

     * don't allow zero value to repeat init 

     */

    if (tmpReqid == 0)

        tmpReqid = 1;

    if (tmpMsgid == 0)

        tmpMsgid = 1;

    Reqid = tmpReqid;

    Msgid = tmpMsgid;

    netsnmp_register_default_domain("snmp", "udp udp6");

    netsnmp_register_default_domain("snmptrap", "udp udp6");

    netsnmp_register_default_target("snmp", "udp", ":161");

    netsnmp_register_default_target("snmp", "tcp", ":161");

    netsnmp_register_default_target("snmp", "udp6", ":161");

    netsnmp_register_default_target("snmp", "tcp6", ":161");

    netsnmp_register_default_target("snmp", "dtlsudp", ":10161");

    netsnmp_register_default_target("snmp", "tlstcp", ":10161");

    netsnmp_register_default_target("snmp", "ipx", "/36879");

    netsnmp_register_default_target("snmptrap", "udp", ":162");

    netsnmp_register_default_target("snmptrap", "tcp", ":162");

    netsnmp_register_default_target("snmptrap", "udp6", ":162");

    netsnmp_register_default_target("snmptrap", "tcp6", ":162");

    netsnmp_register_default_target("snmptrap", "dtlsudp", ":10162");

    netsnmp_register_default_target("snmptrap", "tlstcp", ":10162");

    netsnmp_register_default_target("snmptrap", "ipx", "/36880");

    netsnmp_ds_set_int(NETSNMP_DS_LIBRARY_ID, 

                       NETSNMP_DS_LIB_HEX_OUTPUT_LENGTH, 16);

    netsnmp_ds_set_int(NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_RETRIES,

                       DEFAULT_RETRIES);

    netsnmp_ds_set_boolean(NETSNMP_DS_LIBRARY_ID, 

         NETSNMP_DS_LIB_MIB_ERRORS, 1);

#ifdef NETSNMP_USE_REVERSE_ASNENCODING

    netsnmp_ds_set_boolean(NETSNMP_DS_LIBRARY_ID, 

         NETSNMP_DS_LIB_REVERSE_ENCODE,

         NETSNMP_DEFAULT_ASNENCODING_DIRECTION);

#endif

}

/*

 * Initializes the session structure.

 * May perform one time minimal library initialization.

 * No MIB file processing is done via this call.

 */

void

snmp_sess_init(netsnmp_session * session)

{

    _init_snmp();

    /*

     * initialize session to default values 

     */

    memset(session, 0, sizeof(netsnmp_session));

    session->timeout = SNMP_DEFAULT_TIMEOUT;

    session->retries = SNMP_DEFAULT_RETRIES;

    session->version = SNMP_DEFAULT_VERSION;

    session->securityModel = SNMP_DEFAULT_SECMODEL;

    session->rcvMsgMaxSize = netsnmp_max_send_msg_size();

    session->sndMsgMaxSize = netsnmp_max_send_msg_size();

    session->flags |= SNMP_FLAGS_DONT_PROBE;

}

static void

register_default_handlers(void)

{

    netsnmp_ds_register_config(ASN_BOOLEAN, "snmp", "dumpPacket",

          NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_DUMP_PACKET);

    netsnmp_ds_register_config(ASN_BOOLEAN, "snmp", "reverseEncodeBER",

          NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_REVERSE_ENCODE);

    netsnmp_ds_register_config(ASN_INTEGER, "snmp", "defaultPort",

          NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_DEFAULT_PORT);

#ifndef NETSNMP_FEATURE_REMOVE_RUNTIME_DISABLE_VERSION

    netsnmp_ds_register_config(ASN_BOOLEAN, "snmp", "disableSNMPv3",

                      NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_DISABLE_V3);

#endif /* NETSNMP_FEATURE_REMOVE_RUNTIME_DISABLE_VERSION */

#if !defined(NETSNMP_DISABLE_SNMPV1) || !defined(NETSNMP_DISABLE_SNMPV2C)

#ifndef NETSNMP_FEATURE_REMOVE_RUNTIME_DISABLE_VERSION

#if !defined(NETSNMP_DISABLE_SNMPV1)

    netsnmp_ds_register_config(ASN_BOOLEAN, "snmp", "disableSNMPv1",

                      NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_DISABLE_V1);

#endif

#if !defined(NETSNMP_DISABLE_SNMPV2C)

    netsnmp_ds_register_config(ASN_BOOLEAN, "snmp", "disableSNMPv2c",

                      NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_DISABLE_V2c);

#endif

#endif /* NETSNMP_FEATURE_REMOVE_RUNTIME_DISABLE_VERSION */

    netsnmp_ds_register_config(ASN_OCTET_STR, "snmp", "defCommunity",

                      NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_COMMUNITY);

#endif /* !defined(NETSNMP_DISABLE_SNMPV1) || !defined(NETSNMP_DISABLE_SNMPV2C) */

    netsnmp_ds_register_premib(ASN_BOOLEAN, "snmp", "noTokenWarnings",

                      NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_NO_TOKEN_WARNINGS);

    netsnmp_ds_register_config(ASN_BOOLEAN, "snmp", "noRangeCheck",

          NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_DONT_CHECK_RANGE);

    netsnmp_ds_register_premib(ASN_OCTET_STR, "snmp", "persistentDir",

                NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_PERSISTENT_DIR);

    netsnmp_ds_register_config(ASN_OCTET_STR, "snmp", "tempFilePattern",

                NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_TEMP_FILE_PATTERN);

    netsnmp_ds_register_config(ASN_BOOLEAN, "snmp", "noDisplayHint",

                NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_NO_DISPLAY_HINT);

    netsnmp_ds_register_config(ASN_BOOLEAN, "snmp", "16bitIDs",

                NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_16BIT_IDS);

    netsnmp_ds_register_premib(ASN_OCTET_STR, "snmp", "clientaddr",

                      NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_CLIENT_ADDR);

    netsnmp_ds_register_premib(ASN_BOOLEAN, "snmp", "clientaddrUsesPort",

                      NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_CLIENT_ADDR_USES_PORT);

    netsnmp_ds_register_config(ASN_INTEGER, "snmp", "serverSendBuf",

          NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_SERVERSENDBUF);

    netsnmp_ds_register_config(ASN_INTEGER, "snmp", "serverRecvBuf",

          NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_SERVERRECVBUF);

    netsnmp_ds_register_config(ASN_INTEGER, "snmp", "clientSendBuf",

          NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_CLIENTSENDBUF);

    netsnmp_ds_register_config(ASN_INTEGER, "snmp", "clientRecvBuf",

          NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_CLIENTRECVBUF);

    netsnmp_ds_register_config(ASN_INTEGER, "snmp", "sendMessageMaxSize",

                               NETSNMP_DS_LIBRARY_ID,

                               NETSNMP_DS_LIB_MSG_SEND_MAX);

    netsnmp_ds_register_config(ASN_BOOLEAN, "snmp", "noPersistentLoad",

          NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_DISABLE_PERSISTENT_LOAD);

    netsnmp_ds_register_config(ASN_BOOLEAN, "snmp", "noPersistentSave",

          NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_DISABLE_PERSISTENT_SAVE);

    netsnmp_ds_register_config(ASN_BOOLEAN, "snmp",

                               "noContextEngineIDDiscovery",

                               NETSNMP_DS_LIBRARY_ID,

                               NETSNMP_DS_LIB_NO_DISCOVERY);

    netsnmp_ds_register_config(ASN_INTEGER, "snmp", "timeout",

                   NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_TIMEOUT);

    netsnmp_ds_register_config(ASN_INTEGER, "snmp", "retries",

                   NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_RETRIES);

    netsnmp_ds_register_config(ASN_OCTET_STR, "snmp", "outputPrecision",

                               NETSNMP_DS_LIBRARY_ID, NETSNMP_DS_LIB_OUTPUT_PRECISION);

    netsnmp_register_service_handlers();

}

static int init_snmp_init_done = 0; /* To prevent double init's. */

/**

 * Calls the functions to do config file loading and  mib module parsing

 * in the correct order.

 *

 * @param type label for the config file "type"

 *

 * @return void

 *

 * @see init_agent

 */

void

init_snmp(const char *type)

{

    if (init_snmp_init_done) {

        return;

    }

    init_snmp_init_done = 1;

    /*

     * make the type available everywhere else 

     */

    if (type && !netsnmp_ds_get_string(NETSNMP_DS_LIBRARY_ID, 

               NETSNMP_DS_LIB_APPTYPE)) {

        netsnmp_ds_set_string(NETSNMP_DS_LIBRARY_ID, 

            NETSNMP_DS_LIB_APPTYPE, type);

    }

    _init_snmp();

    /*

     * set our current locale properly to initialize isprint() type functions 

     */

#ifdef HAVE_SETLOCALE

    setlocale(LC_CTYPE, "");

#endif

    snmp_debug_init();    /* should be done first, to turn on debugging ASAP */

    netsnmp_container_init_list();

    init_callbacks();

    init_snmp_logging();

    snmp_init_statistics();

    register_mib_handlers();

    register_default_handlers();

    init_snmp_transport();

    init_snmpv3(type);

    init_snmp_alarm();

    init_snmp_enum(type);

    init_vacm();

#if defined(NETSNMP_USE_OPENSSL) && defined(HAVE_LIBSSL) && NETSNMP_TRANSPORT_TLSBASE_DOMAIN

    netsnmp_certs_init();

#endif

#ifdef DNSSEC_LOCAL_VALIDATION

    netsnmp_ds_register_config(ASN_BOOLEAN, "snmp", "dnssecWarnOnly",

                               NETSNMP_DS_LIBRARY_ID,

                               NETSNMP_DS_LIB_DNSSEC_WARN_ONLY);

#endif

    read_premib_configs();

#ifndef NETSNMP_DISABLE_MIB_LOADING

    netsnmp_init_mib();

#endif /* NETSNMP_DISABLE_MIB_LOADING */

    read_configs();

}                               /* end init_snmp() */

/**

 * set a flag indicating that the persistent store needs to be saved.

 */

void

snmp_store_needed(const char *type)

{

    DEBUGMSGTL(("snmp_store", "setting needed flag...\n"));

    _snmp_store_needed = 1;

}

void

snmp_store_if_needed(void)

{

    if (0 == _snmp_store_needed)

        return;

    DEBUGMSGTL(("snmp_store", "store needed...\n"));

    snmp_store(netsnmp_ds_get_string(NETSNMP_DS_LIBRARY_ID, 

                                     NETSNMP_DS_LIB_APPTYPE));

    _snmp_store_needed = 0;

}

void

snmp_store(const char *type)

{

    DEBUGMSGTL(("snmp_store", "storing stuff...\n"));

    snmp_save_persistent(type);

    snmp_call_callbacks(SNMP_CALLBACK_LIBRARY, SNMP_CALLBACK_STORE_DATA, NULL);

    snmp_clean_persistent(type);

}

/**

 * Shuts down the application, saving any needed persistent storage,

 * and appropriate clean up.

 * 

 * @param type Label for the config file "type" used

 *

 * @return void

 */

void

snmp_shutdown(const char *type)

{

    snmp_store(type);

    snmp_call_callbacks(SNMP_CALLBACK_LIBRARY, SNMP_CALLBACK_SHUTDOWN, NULL);

    shutdown_snmp_logging();

    snmp_alarm_unregister_all();

    snmp_close_sessions();

#ifndef NETSNMP_DISABLE_MIB_LOADING

    shutdown_mib();

#endif /* NETSNMP_DISABLE_MIB_LOADING */

#if defined(NETSNMP_USE_OPENSSL) && defined(HAVE_LIBSSL) && NETSNMP_TRANSPORT_TLSBASE_DOMAIN

    netsnmp_certs_shutdown();

#endif

#if !defined(NETSNMP_FEATURE_REMOVE_FILTER_SOURCE)

    netsnmp_transport_filter_cleanup();

#endif

    unregister_all_config_handlers();

    netsnmp_container_free_list();

    clear_sec_mod();

    clear_snmp_enum();

    netsnmp_clear_tdomain_list();

    clear_callback();

    netsnmp_ds_shutdown();

    netsnmp_clear_default_target();

    netsnmp_clear_default_domain();

    shutdown_secmod();

    shutdown_snmp_transport();

    shutdown_data_list();

    snmp_debug_shutdown();    /* should be done last */

    init_snmp_init_done  = 0;

    _init_snmp_init_done = 0;

}

/*

 * inserts session into session list

 */

void  snmp_session_insert(struct session_list *slp)

{

    if (NULL == slp)

        return;

    snmp_res_lock(MT_LIBRARY_ID, MT_LIB_SESSION);

    slp->next = Sessions;

    Sessions = slp;

    snmp_res_unlock(MT_LIBRARY_ID, MT_LIB_SESSION);

}

/*

 * Sets up the session with the snmp_session information provided by the user.

 * Then opens and binds the necessary low-level transport.  A handle to the

 * created session is returned (this is NOT the same as the pointer passed to

 * snmp_open()).  On any error, NULL is returned and snmp_errno is set to the

 * appropriate error code.

 */

netsnmp_session *

snmp_open(netsnmp_session *session)

{

    struct session_list *slp;

    slp = snmp_sess_open(session);

    if (!slp) {

        return NULL;

    }

    slp->session->flags &= ~SNMP_FLAGS_SESSION_USER;

    snmp_session_insert(slp);