登录 注册
开源 企业版 高校版 私有云 模力方舟
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
2 Star 2 Fork 1

wwhai/GoSNMPServer

代码 Issues 0 Pull Requests 0 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
文件
克隆/下载
agentcontrol.go 8.72 KB
一键复制 编辑 原始数据 按行查看 历史
lilinzhe 提交于 2020-02-25 19:22 +08:00 . V3: EngineID fill values
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309
package GoSNMPServer



import (

	"reflect"

	"strings"

	"time"



	"github.com/pkg/errors"

	"github.com/shirou/gopsutil/host"

	"github.com/slayercat/gosnmp"

)



type FuncGetAuthoritativeEngineTime func() uint32



//MasterAgent identifys software which runs on managed devices

//            One server (port) could ONLY have one MasterAgent

type MasterAgent struct {

	SecurityConfig SecurityConfig



	SubAgents []*SubAgent



	Logger ILogger



	priv struct {

		communityToSubAgent map[string]*SubAgent

		defaultSubAgent     *SubAgent

	}

}



type SecurityConfig struct {

	NoSecurity bool



	// AuthoritativeEngineID is SNMPV3 AuthoritativeEngineID

	AuthoritativeEngineID SNMPEngineID

	// AuthoritativeEngineBoots is SNMPV3 AuthoritativeEngineBoots

	AuthoritativeEngineBoots uint32

	// OnGetAuthoritativeEngineTime will be called to get SNMPV3 AuthoritativeEngineTime

	//      if sets to nil, the sys boottime will be used

	OnGetAuthoritativeEngineTime FuncGetAuthoritativeEngineTime



	Users []gosnmp.UsmSecurityParameters

}



func (v *SecurityConfig) FindForUser(name string) *gosnmp.UsmSecurityParameters {

	if v.Users == nil {

		return nil

	}

	for item, user := range v.Users {

		if user.UserName == name {

			return &v.Users[item]

		}

	}

	return nil

}



type SNMPEngineID struct {

	// See https://tools.ietf.org/html/rfc3411#section-5

	// 			SnmpEngineID ::= TEXTUAL-CONVENTION

	//      SYNTAX       OCTET STRING (SIZE(5..32))

	EngineIDData string

}



func (t *SNMPEngineID) Marshal() []byte {



	// msgAuthoritativeEngineID: 80004fb8054445534b544f502d4a3732533245343ab63bc8

	// 1... .... = Engine ID Conformance: RFC3411 (SNMPv3)

	// Engine Enterprise ID: pysnmp (20408)

	// Engine ID Format: Octets, administratively assigned (5)

	// Engine ID Data: 4445534b544f502d4a3732533245343ab63bc8



	var tm = []byte{

		0x80, 0x00, 0x4f, 0xb8, 0x05,

	}

	toAppend := []byte(t.EngineIDData)

	maxDefineallowed := 32 - 5

	if len(toAppend) > maxDefineallowed { //Max 32 bytes

		toAppend = toAppend[:maxDefineallowed]

	}

	tm = append(tm, toAppend...)

	return tm

}



func (t *MasterAgent) syncAndCheck() error {

	if len(t.SubAgents) == 0 {

		return errors.WithStack(errors.Errorf("MasterAgent shell have at least one SubAgents"))

	}

	if t.SecurityConfig.NoSecurity && len(t.SubAgents) != 1 {

		return errors.WithStack(errors.Errorf("NoSecurity MasterAgent shell have one one SubAgent"))

	}



	if t.Logger == nil {

		//Set New NIL Logger

		t.Logger = NewDiscardLogger()

	}

	if t.SecurityConfig.OnGetAuthoritativeEngineTime == nil {

		t.SecurityConfig.OnGetAuthoritativeEngineTime = DefaultGetAuthoritativeEngineTime

	}



	if t.SecurityConfig.AuthoritativeEngineID.EngineIDData == "" {

		t.SecurityConfig.AuthoritativeEngineID = DefaultAuthoritativeEngineID()

	}

	return nil

}



func (t *MasterAgent) ReadyForWork() error {

	if err := t.syncAndCheck(); err != nil {

		return err

	}

	return t.SyncConfig()

}



func (t *MasterAgent) getUserNameFromRequest(request *gosnmp.SnmpPacket) string {

	var username string

	if val, ok := request.SecurityParameters.(*gosnmp.UsmSecurityParameters); !ok {

		panic(errors.WithMessagef(ErrUnsupportedPacketData, "GoSNMP .Unknown Type:%v", reflect.TypeOf(request.SecurityParameters)))

	} else {

		username = val.UserName

	}

	return username

}



func (t *MasterAgent) ResponseForBuffer(i []byte) ([]byte, error) {

	// Decode

	vhandle := gosnmp.GoSNMP{}

	vhandle.Logger = &SnmpLoggerAdapter{t.Logger}

	mb, _ := t.getUsmSecurityParametersFromUser("")

	vhandle.SecurityParameters = mb

	request, decodeError := vhandle.SnmpDecodePacket(i)



	switch request.Version {

	case gosnmp.Version1, gosnmp.Version2c:

		return t.marshalPkt(t.ResponseForPkt(request))

		//

	case gosnmp.Version3:

		// check for initial - discover response / non Privacy Items

		if decodeError == nil && len(request.Variables) == 0 {

			val, err := t.ResponseForPkt(request)



			if val == nil {

				return t.marshalPkt(request, err)

			} else {

				return t.marshalPkt(val, err)

			}

		}

		//v3 might want for Privacy

		if request.SecurityParameters == nil {

			return nil, errors.WithMessagef(ErrUnsupportedPacketData, "GoSNMP Returns %v", decodeError)

		}

		username := t.getUserNameFromRequest(request)

		usm, err := t.getUsmSecurityParametersFromUser(username)

		if err != nil {

			return nil, err

		}

		if decodeError != nil {

			t.Logger.Debugf("v3 decode [will fail with non password] meet %v", err)

			vhandle.SecurityParameters = &gosnmp.UsmSecurityParameters{

				UserName:                 usm.UserName,

				AuthenticationProtocol:   usm.AuthenticationProtocol,

				PrivacyProtocol:          usm.PrivacyProtocol,

				AuthenticationPassphrase: usm.AuthenticationPassphrase,

				PrivacyPassphrase:        usm.PrivacyPassphrase,

				Logger:                   vhandle.Logger,

			}

			request, err = vhandle.SnmpDecodePacket(i)

			if err != nil {

				return nil, errors.WithMessagef(ErrUnsupportedPacketData, "GoSNMP Returns %v", err)

			}

		}



		val, err := t.ResponseForPkt(request)

		if val == nil {

			request.SecurityParameters = vhandle.SecurityParameters

			return t.marshalPkt(request, err)

		} else {

			securityParamters := usm

			securityParamters.GenKeys()

			securityParamters.GenSalt()

			val.SecurityParameters = securityParamters



			return t.marshalPkt(val, err)

		}

	}

	return nil, errors.WithStack(ErrUnsupportedProtoVersion)

}



func (t *MasterAgent) marshalPkt(pkt *gosnmp.SnmpPacket, err error) ([]byte, error) {

	// when err. marshal error pkt

	if pkt == nil {

		pkt = &gosnmp.SnmpPacket{}

	}

	if err != nil {

		t.Logger.Debugf("Will marshal: %v", err)



		errFill := t.fillErrorPkt(err, pkt)

		if errFill != nil {

			return nil, err

		}



		return pkt.MarshalMsg()

	}



	out, err := pkt.MarshalMsg()

	return out, err

}



func (t *MasterAgent) getUsmSecurityParametersFromUser(username string) (*gosnmp.UsmSecurityParameters, error) {

	if username == "" {

		return &gosnmp.UsmSecurityParameters{

			Logger:                   &SnmpLoggerAdapter{t.Logger},

			AuthoritativeEngineID:    string(t.SecurityConfig.AuthoritativeEngineID.Marshal()),

			AuthoritativeEngineBoots: t.SecurityConfig.AuthoritativeEngineBoots,

			AuthoritativeEngineTime:  t.SecurityConfig.OnGetAuthoritativeEngineTime(),

		}, nil



	}

	if val := t.SecurityConfig.FindForUser(username); val != nil {

		fval := val.Copy().(*gosnmp.UsmSecurityParameters)

		fval.Logger = &SnmpLoggerAdapter{t.Logger}

		fval.AuthoritativeEngineID = string(t.SecurityConfig.AuthoritativeEngineID.Marshal())

		fval.AuthoritativeEngineBoots = t.SecurityConfig.AuthoritativeEngineBoots

		fval.AuthoritativeEngineTime = t.SecurityConfig.OnGetAuthoritativeEngineTime()

		return fval, nil

	} else {

		return nil, errors.WithStack(ErrNoPermission)

	}



}



func (t *MasterAgent) fillErrorPkt(err error, io *gosnmp.SnmpPacket) error {

	io.PDUType = gosnmp.GetResponse

	if errors.Is(err, ErrNoSNMPInstance) {

		io.Error = gosnmp.NoAccess

	} else if errors.Is(err, ErrUnsupportedOperation) {

		io.Error = gosnmp.ResourceUnavailable

	} else if errors.Is(err, ErrNoPermission) {

		io.Error = gosnmp.AuthorizationError

	} else if errors.Is(err, ErrUnsupportedPacketData) {

		io.Error = gosnmp.BadValue

	} else {

		io.Error = gosnmp.GenErr

	}

	io.ErrorIndex = 0

	return nil

}



func (t *MasterAgent) ResponseForPkt(i *gosnmp.SnmpPacket) (*gosnmp.SnmpPacket, error) {

	// Find for which SubAgent

	community := getPktContextOrCommunity(i)

	subAgent := t.findForSubAgent(community)

	if subAgent == nil {

		return i, errors.WithStack(ErrNoSNMPInstance)

	}

	return subAgent.Serve(i)

}



func (t *MasterAgent) SyncConfig() error {

	t.priv.defaultSubAgent = nil

	t.priv.communityToSubAgent = make(map[string]*SubAgent)



	for id, current := range t.SubAgents {

		t.SubAgents[id].Logger = t.Logger

		t.SubAgents[id].master = t

		if err := t.SubAgents[id].SyncConfig(); err != nil {

			return err

		}



		if len(current.CommunityIDs) == 0 || t.SecurityConfig.NoSecurity {

			if t.priv.defaultSubAgent != nil {

				return errors.Errorf("SyncConfig: Config Error: duplicate default agent")

			}

			t.priv.defaultSubAgent = current

			continue

		}

		for _, val := range current.CommunityIDs {

			if _, exists := t.priv.communityToSubAgent[val]; exists {

				return errors.Errorf("SyncConfig: Config Error: duplicate value:%s", val)

			}

			t.Logger.Debugf("communityToSubAgent: val=%v, current=%p", val, current)

			t.priv.communityToSubAgent[val] = current

		}



	}

	return nil

}



func (t *MasterAgent) findForSubAgent(community string) *SubAgent {

	if val, ok := t.priv.communityToSubAgent[community]; ok {

		return val

	} else {

		return t.priv.defaultSubAgent

	}

}



func DefaultAuthoritativeEngineID() SNMPEngineID {

	// XXX:TODO: return random

	val, _ := host.Info()

	data := strings.Replace(val.HostID, "-", "", -1)

	return SNMPEngineID{

		EngineIDData: data,

	}

}



func DefaultGetAuthoritativeEngineTime() uint32 {

	val, err := host.Uptime()

	if err != nil {

		return uint32(time.Now().Unix())

	}

	return uint32(val)

}
Loading...
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
1
https://gitee.com/wwhai/GoSNMPServer.git
git@gitee.com:wwhai/GoSNMPServer.git
wwhai
GoSNMPServer
GoSNMPServer
master
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部