vacm.h
上传用户:wxp200602
上传日期:2007-10-30
资源大小:4028k
文件大小:7k
- /*
- * vacm.h
- *
- * SNMPv3 View-based Access Control Model
- */
- #ifndef VACM_H
- #define VACM_H
- #ifdef __cplusplus
- extern "C" {
- #endif
- #define VACM_SUCCESS 0
- #define VACM_NOSECNAME 1
- #define VACM_NOGROUP 2
- #define VACM_NOACCESS 3
- #define VACM_NOVIEW 4
- #define VACM_NOTINVIEW 5
- #define VACM_NOSUCHCONTEXT 6
- #define VACM_SUBTREE_UNKNOWN 7
- #define SECURITYMODEL 1
- #define SECURITYNAME 2
- #define SECURITYGROUP 3
- #define SECURITYSTORAGE 4
- #define SECURITYSTATUS 5
- #define ACCESSPREFIX 1
- #define ACCESSMODEL 2
- #define ACCESSLEVEL 3
- #define ACCESSMATCH 4
- #define ACCESSREAD 5
- #define ACCESSWRITE 6
- #define ACCESSNOTIFY 7
- #define ACCESSSTORAGE 8
- #define ACCESSSTATUS 9
- #define VACMVIEWSPINLOCK 1
- #define VIEWNAME 2
- #define VIEWSUBTREE 3
- #define VIEWMASK 4
- #define VIEWTYPE 5
- #define VIEWSTORAGE 6
- #define VIEWSTATUS 7
- #define VACM_MAX_STRING 32
- #define VACMSTRINGLEN 34 /* VACM_MAX_STRING + 2 */
- struct vacm_groupEntry {
- int securityModel;
- char securityName[VACMSTRINGLEN];
- char groupName[VACMSTRINGLEN];
- int storageType;
- int status;
- u_long bitMask;
- struct vacm_groupEntry *reserved;
- struct vacm_groupEntry *next;
- };
- #define CONTEXT_MATCH_EXACT 1
- #define CONTEXT_MATCH_PREFIX 2
- struct vacm_accessEntry {
- char groupName[VACMSTRINGLEN];
- char contextPrefix[VACMSTRINGLEN];
- int securityModel;
- int securityLevel;
- int contextMatch;
- char readView[VACMSTRINGLEN];
- char writeView[VACMSTRINGLEN];
- char notifyView[VACMSTRINGLEN];
- int storageType;
- int status;
- u_long bitMask;
- struct vacm_accessEntry *reserved;
- struct vacm_accessEntry *next;
- };
- struct vacm_viewEntry {
- char viewName[VACMSTRINGLEN];
- oid viewSubtree[MAX_OID_LEN];
- size_t viewSubtreeLen;
- u_char viewMask[VACMSTRINGLEN];
- size_t viewMaskLen;
- int viewType;
- int viewStorageType;
- int viewStatus;
- u_long bitMask;
- struct vacm_viewEntry *reserved;
- struct vacm_viewEntry *next;
- };
- void vacm_destroyViewEntry(const char *, oid *, size_t);
- void vacm_destroyAllViewEntries(void);
- #define VACM_MODE_FIND 0
- #define VACM_MODE_IGNORE_MASK 1
- #define VACM_MODE_CHECK_SUBTREE 2
- struct vacm_viewEntry *vacm_getViewEntry(const char *, oid *, size_t,
- int);
- /*
- * Returns a pointer to the viewEntry with the
- * same viewName and viewSubtree
- * Returns NULL if that entry does not exist.
- */
- int vacm_checkSubtree(const char *, oid *, size_t);
- /*
- * Check to see if everything within a subtree is in view, not in view,
- * or possibly both.
- *
- * Returns:
- * VACM_SUCCESS The OID is included in the view.
- * VACM_NOTINVIEW If no entry in the view list includes the
- * provided OID, or the OID is explicitly excluded
- * from the view.
- * VACM_SUBTREE_UNKNOWN The entire subtree has both allowed and
- * disallowed portions.
- */
- void
- vacm_scanViewInit(void);
- /*
- * Initialized the scan routines so that they will begin at the
- * beginning of the list of viewEntries.
- *
- */
- struct vacm_viewEntry *vacm_scanViewNext(void);
- /*
- * Returns a pointer to the next viewEntry.
- * These entries are returned in no particular order,
- * but if N entries exist, N calls to view_scanNext() will
- * return all N entries once.
- * Returns NULL if all entries have been returned.
- * view_scanInit() starts the scan over.
- */
- struct vacm_viewEntry *vacm_createViewEntry(const char *, oid *,
- size_t);
- /*
- * Creates a viewEntry with the given index
- * and returns a pointer to it.
- * The status of this entry is created as invalid.
- */
- void vacm_destroyGroupEntry(int, const char *);
- void vacm_destroyAllGroupEntries(void);
- struct vacm_groupEntry *vacm_createGroupEntry(int, const char *);
- struct vacm_groupEntry *vacm_getGroupEntry(int, const char *);
- void vacm_scanGroupInit(void);
- struct vacm_groupEntry *vacm_scanGroupNext(void);
- void vacm_destroyAccessEntry(const char *, const char *,
- int, int);
- void vacm_destroyAllAccessEntries(void);
- struct vacm_accessEntry *vacm_createAccessEntry(const char *,
- const char *, int,
- int);
- struct vacm_accessEntry *vacm_getAccessEntry(const char *,
- const char *, int, int);
- void vacm_scanAccessInit(void);
- struct vacm_accessEntry *vacm_scanAccessNext(void);
- void vacm_destroySecurityEntry(const char *);
- struct vacm_securityEntry *vacm_createSecurityEntry(const char *);
- struct vacm_securityEntry *vacm_getSecurityEntry(const char *);
- void vacm_scanSecurityInit(void);
- struct vacm_securityEntry *vacm_scanSecurityEntry(void);
- int vacm_is_configured(void);
- void vacm_save(const char *token, const char *type);
- void vacm_save_view(struct vacm_viewEntry *view,
- const char *token, const char *type);
- void vacm_save_access(struct vacm_accessEntry *access_entry,
- const char *token, const char *type);
- void vacm_save_group(struct vacm_groupEntry *group_entry,
- const char *token, const char *type);
- void vacm_parse_config_view(const char *token, char *line);
- void vacm_parse_config_group(const char *token, char *line);
- void vacm_parse_config_access(const char *token,
- char *line);
- int store_vacm(int majorID, int minorID, void *serverarg,
- void *clientarg);
- #ifdef __cplusplus
- }
- #endif
- #endif /* VACM_H */