]> git.proxmox.com Git - mirror_frr.git/blame - lib/keychain.c
projects / mirror_frr.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Merge pull request #429 from hwchiu/fix_clang_sa
[mirror_frr.git] / lib / keychain.c
CommitLineData
718e3744 1/* key-chain for authentication.
2 Copyright (C) 2000 Kunihiro Ishiguro
3
4This file is part of GNU Zebra.
5
6GNU Zebra is free software; you can redistribute it and/or modify
7it under the terms of the GNU General Public License as published
8by the Free Software Foundation; either version 2, or (at your
9option) any later version.
10
11GNU Zebra is distributed in the hope that it will be useful, but
12WITHOUT ANY WARRANTY; without even the implied warranty of
13MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14General Public License for more details.
15
16You should have received a copy of the GNU General Public License
17along with GNU Zebra; see the file COPYING. If not, write to the
18Free Software Foundation, Inc., 59 Temple Place - Suite 330,
19Boston, MA 02111-1307, USA. */
20
21#include <zebra.h>
22
23#include "command.h"
24#include "memory.h"
25#include "linklist.h"
26#include "keychain.h"
27
4a1ab8e4
DL		 28DEFINE_MTYPE_STATIC(LIB, KEY, "Key")
29DEFINE_MTYPE_STATIC(LIB, KEYCHAIN, "Key chain")
30
e80e7cce
DL		 31DEFINE_QOBJ_TYPE(keychain)
32DEFINE_QOBJ_TYPE(key)
33
718e3744 34/* Master list of key chain. */
35struct list *keychain_list;
36
8cc4198f 37static struct keychain *
38keychain_new (void)
718e3744 39{
e80e7cce
DL		 40 struct keychain *keychain;
41 keychain = XCALLOC (MTYPE_KEYCHAIN, sizeof (struct keychain));
42 QOBJ_REG (keychain, keychain);
43 return keychain;
718e3744 44}
45
8cc4198f 46static void
718e3744 47keychain_free (struct keychain *keychain)
48{
e80e7cce 49 QOBJ_UNREG (keychain);
718e3744 50 XFREE (MTYPE_KEYCHAIN, keychain);
51}
52
8cc4198f 53static struct key *
54key_new (void)
718e3744 55{
e80e7cce
DL		 56 struct key *key = XCALLOC (MTYPE_KEY, sizeof (struct key));
57 QOBJ_REG (key, key);
58 return key;
718e3744 59}
60
8cc4198f 61static void
718e3744 62key_free (struct key *key)
63{
e80e7cce 64 QOBJ_UNREG (key);
718e3744 65 XFREE (MTYPE_KEY, key);
66}
67
68struct keychain *
8c328f11 69keychain_lookup (const char *name)
718e3744 70{
1eb8ef25 71 struct listnode *node;
718e3744 72 struct keychain *keychain;
73
74 if (name == NULL)
75 return NULL;
76
1eb8ef25 77 for (ALL_LIST_ELEMENTS_RO (keychain_list, node, keychain))
718e3744 78 {
79 if (strcmp (keychain->name, name) == 0)
80 return keychain;
81 }
82 return NULL;
83}
84
8cc4198f 85static int
86key_cmp_func (void *arg1, void *arg2)
718e3744 87{
8cc4198f 88 const struct key *k1 = arg1;
89 const struct key *k2 = arg2;
90
718e3744 91 if (k1->index > k2->index)
92 return 1;
93 if (k1->index < k2->index)
94 return -1;
95 return 0;
96}
97
8cc4198f 98static void
718e3744 99key_delete_func (struct key *key)
100{
101 if (key->string)
102 free (key->string);
103 key_free (key);
104}
105
8cc4198f 106static struct keychain *
8c328f11 107keychain_get (const char *name)
718e3744 108{
109 struct keychain *keychain;
110
111 keychain = keychain_lookup (name);
112
113 if (keychain)
114 return keychain;
115
116 keychain = keychain_new ();
6e919709 117 keychain->name = XSTRDUP(MTYPE_KEYCHAIN, name);
718e3744 118 keychain->key = list_new ();
119 keychain->key->cmp = (int (*)(void *, void *)) key_cmp_func;
120 keychain->key->del = (void (*)(void *)) key_delete_func;
121 listnode_add (keychain_list, keychain);
122
123 return keychain;
124}
125
8cc4198f 126static void
718e3744 127keychain_delete (struct keychain *keychain)
128{
129 if (keychain->name)
6e919709 130 XFREE(MTYPE_KEYCHAIN, keychain->name);
718e3744 131
132 list_delete (keychain->key);
133 listnode_delete (keychain_list, keychain);
134 keychain_free (keychain);
135}
136
8cc4198f 137static struct key *
8c328f11 138key_lookup (const struct keychain *keychain, u_int32_t index)
718e3744 139{
1eb8ef25 140 struct listnode *node;
718e3744 141 struct key *key;
142
1eb8ef25 143 for (ALL_LIST_ELEMENTS_RO (keychain->key, node, key))
718e3744 144 {
145 if (key->index == index)
146 return key;
147 }
148 return NULL;
149}
150
151struct key *
8c328f11 152key_lookup_for_accept (const struct keychain *keychain, u_int32_t index)
718e3744 153{
1eb8ef25 154 struct listnode *node;
718e3744 155 struct key *key;
156 time_t now;
157
158 now = time (NULL);
159
1eb8ef25 160 for (ALL_LIST_ELEMENTS_RO (keychain->key, node, key))
718e3744 161 {
162 if (key->index >= index)
163 {
164 if (key->accept.start == 0)
165 return key;
166
167 if (key->accept.start <= now)
168 if (key->accept.end >= now || key->accept.end == -1)
169 return key;
170 }
171 }
172 return NULL;
173}
174
175struct key *
8c328f11 176key_match_for_accept (const struct keychain *keychain, const char *auth_str)
718e3744 177{
1eb8ef25 178 struct listnode *node;
718e3744 179 struct key *key;
180 time_t now;
181
182 now = time (NULL);
183
1eb8ef25 184 for (ALL_LIST_ELEMENTS_RO (keychain->key, node, key))
718e3744 185 {
186 if (key->accept.start == 0 ||
187 (key->accept.start <= now &&
188 (key->accept.end >= now || key->accept.end == -1)))
189 if (strncmp (key->string, auth_str, 16) == 0)
190 return key;
191 }
192 return NULL;
193}
194
195struct key *
8c328f11 196key_lookup_for_send (const struct keychain *keychain)
718e3744 197{
1eb8ef25 198 struct listnode *node;
718e3744 199 struct key *key;
200 time_t now;
201
202 now = time (NULL);
203
1eb8ef25 204 for (ALL_LIST_ELEMENTS_RO (keychain->key, node, key))
718e3744 205 {
206 if (key->send.start == 0)
207 return key;
208
209 if (key->send.start <= now)
210 if (key->send.end >= now || key->send.end == -1)
211 return key;
212 }
213 return NULL;
214}
215
8cc4198f 216static struct key *
8c328f11 217key_get (const struct keychain *keychain, u_int32_t index)
718e3744 218{
219 struct key *key;
220
221 key = key_lookup (keychain, index);
222
223 if (key)
224 return key;
225
226 key = key_new ();
227 key->index = index;
228 listnode_add_sort (keychain->key, key);
229
230 return key;
231}
232
8cc4198f 233static void
718e3744 234key_delete (struct keychain *keychain, struct key *key)
235{
236 listnode_delete (keychain->key, key);
237
238 if (key->string)
6e919709 239 XFREE(MTYPE_KEY, key->string);
718e3744 240 key_free (key);
241}
6b0655a2 242
718e3744 243DEFUN (key_chain,
244 key_chain_cmd,
245 "key chain WORD",
246 "Authentication key management\n"
247 "Key-chain management\n"
248 "Key-chain name\n")
249{
250 struct keychain *keychain;
251
252 keychain = keychain_get (argv[0]);
be301cc2 253 VTY_PUSH_CONTEXT_COMPAT (KEYCHAIN_NODE, keychain);
718e3744 254
255 return CMD_SUCCESS;
256}
257
258DEFUN (no_key_chain,
259 no_key_chain_cmd,
260 "no key chain WORD",
261 NO_STR
262 "Authentication key management\n"
263 "Key-chain management\n"
264 "Key-chain name\n")
265{
266 struct keychain *keychain;
267
268 keychain = keychain_lookup (argv[0]);
269
270 if (! keychain)
271 {
272 vty_out (vty, "Can't find keychain %s%s", argv[0], VTY_NEWLINE);
273 return CMD_WARNING;
274 }
275
276 keychain_delete (keychain);
277
278 return CMD_SUCCESS;
279}
280
281DEFUN (key,
282 key_cmd,
283 "key <0-2147483647>",
284 "Configure a key\n"
285 "Key identifier number\n")
286{
be301cc2 287 VTY_DECLVAR_CONTEXT (keychain, keychain);
718e3744 288 struct key *key;
289 u_int32_t index;
718e3744 290
66cbbceb 291 VTY_GET_INTEGER ("key identifier", index, argv[0]);
718e3744 292 key = key_get (keychain, index);
6a098b3a
DL		 293 VTY_PUSH_CONTEXT_SUB (KEYCHAIN_KEY_NODE, key);
294
718e3744 295 return CMD_SUCCESS;
296}
297
298DEFUN (no_key,
299 no_key_cmd,
300 "no key <0-2147483647>",
301 NO_STR
302 "Delete a key\n"
303 "Key identifier number\n")
304{
be301cc2 305 VTY_DECLVAR_CONTEXT (keychain, keychain);
718e3744 306 struct key *key;
307 u_int32_t index;
718e3744 308
66cbbceb 309 VTY_GET_INTEGER ("key identifier", index, argv[0]);
718e3744 310 key = key_lookup (keychain, index);
311 if (! key)
312 {
313 vty_out (vty, "Can't find key %d%s", index, VTY_NEWLINE);
314 return CMD_WARNING;
315 }
316
317 key_delete (keychain, key);
318
319 vty->node = KEYCHAIN_NODE;
320
321 return CMD_SUCCESS;
322}
323
324DEFUN (key_string,
325 key_string_cmd,
326 "key-string LINE",
327 "Set key string\n"
328 "The key\n")
329{
6a098b3a 330 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 331
332 if (key->string)
6e919709
DS		 333 XFREE(MTYPE_KEY, key->string);
334 key->string = XSTRDUP(MTYPE_KEY, argv[0]);
718e3744 335
336 return CMD_SUCCESS;
337}
338
339DEFUN (no_key_string,
340 no_key_string_cmd,
341 "no key-string [LINE]",
342 NO_STR
343 "Unset key string\n"
344 "The key\n")
345{
6a098b3a 346 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 347
348 if (key->string)
349 {
6e919709 350 XFREE(MTYPE_KEY, key->string);
718e3744 351 key->string = NULL;
352 }
353
354 return CMD_SUCCESS;
355}
356
357/* Convert HH:MM:SS MON DAY YEAR to time_t value. -1 is returned when
358 given string is malformed. */
8cc4198f 359static time_t
8c328f11 360key_str2time (const char *time_str, const char *day_str, const char *month_str,
361 const char *year_str)
718e3744 362{
363 int i = 0;
364 char *colon;
365 struct tm tm;
366 time_t time;
8c328f11 367 unsigned int sec, min, hour;
368 unsigned int day, month, year;
718e3744 369
8c328f11 370 const char *month_name[] =
718e3744 371 {
372 "January",
373 "February",
374 "March",
375 "April",
376 "May",
377 "June",
378 "July",
379 "August",
380 "September",
381 "October",
382 "November",
383 "December",
384 NULL
385 };
386
5eafab76 387#define _GET_LONG_RANGE(V,STR,MMCOND) \
8cc4198f 388{ \
389 unsigned long tmpl; \
390 char *endptr = NULL; \
391 tmpl = strtoul ((STR), &endptr, 10); \
392 if (*endptr != '\0' || tmpl == ULONG_MAX) \
393 return -1; \
5eafab76 394 if (MMCOND) \
8cc4198f 395 return -1; \
396 (V) = tmpl; \
397}
5eafab76
DL		 398#define GET_LONG_RANGE(V,STR,MIN,MAX) \
399 _GET_LONG_RANGE(V,STR,tmpl < (MIN) || tmpl > (MAX))
400#define GET_LONG_RANGE0(V,STR,MAX) \
401 _GET_LONG_RANGE(V,STR,tmpl > (MAX))
402
718e3744 403 /* Check hour field of time_str. */
404 colon = strchr (time_str, ':');
405 if (colon == NULL)
406 return -1;
407 *colon = '\0';
408
409 /* Hour must be between 0 and 23. */
5eafab76 410 GET_LONG_RANGE0 (hour, time_str, 23);
718e3744 411
412 /* Check min field of time_str. */
413 time_str = colon + 1;
414 colon = strchr (time_str, ':');
415 if (*time_str == '\0' || colon == NULL)
416 return -1;
417 *colon = '\0';
418
419 /* Min must be between 0 and 59. */
5eafab76 420 GET_LONG_RANGE0 (min, time_str, 59);
718e3744 421
422 /* Check sec field of time_str. */
423 time_str = colon + 1;
424 if (*time_str == '\0')
425 return -1;
426
427 /* Sec must be between 0 and 59. */
5eafab76 428 GET_LONG_RANGE0 (sec, time_str, 59);
718e3744 429
430 /* Check day_str. Day must be <1-31>. */
8cc4198f 431 GET_LONG_RANGE (day, day_str, 1, 31);
718e3744 432
433 /* Check month_str. Month must match month_name. */
434 month = 0;
435 if (strlen (month_str) >= 3)
436 for (i = 0; month_name[i]; i++)
437 if (strncmp (month_str, month_name[i], strlen (month_str)) == 0)
438 {
439 month = i;
440 break;
441 }
442 if (! month_name[i])
443 return -1;
444
445 /* Check year_str. Year must be <1993-2035>. */
8cc4198f 446 GET_LONG_RANGE (year, year_str, 1993, 2035);
718e3744 447
448 memset (&tm, 0, sizeof (struct tm));
449 tm.tm_sec = sec;
450 tm.tm_min = min;
451 tm.tm_hour = hour;
452 tm.tm_mon = month;
453 tm.tm_mday = day;
454 tm.tm_year = year - 1900;
455
456 time = mktime (&tm);
66cbbceb 457
718e3744 458 return time;
8cc4198f 459#undef GET_LONG_RANGE
718e3744 460}
461
8cc4198f 462static int
8c328f11 463key_lifetime_set (struct vty *vty, struct key_range *krange,
464 const char *stime_str, const char *sday_str,
465 const char *smonth_str, const char *syear_str,
466 const char *etime_str, const char *eday_str,
467 const char *emonth_str, const char *eyear_str)
718e3744 468{
469 time_t time_start;
470 time_t time_end;
66cbbceb 471
718e3744 472 time_start = key_str2time (stime_str, sday_str, smonth_str, syear_str);
473 if (time_start < 0)
474 {
475 vty_out (vty, "Malformed time value%s", VTY_NEWLINE);
476 return CMD_WARNING;
477 }
478 time_end = key_str2time (etime_str, eday_str, emonth_str, eyear_str);
479
480 if (time_end < 0)
481 {
482 vty_out (vty, "Malformed time value%s", VTY_NEWLINE);
483 return CMD_WARNING;
484 }
485
486 if (time_end <= time_start)
487 {
488 vty_out (vty, "Expire time is not later than start time%s", VTY_NEWLINE);
489 return CMD_WARNING;
490 }
491
492 krange->start = time_start;
493 krange->end = time_end;
494
495 return CMD_SUCCESS;
496}
497
8cc4198f 498static int
718e3744 499key_lifetime_duration_set (struct vty *vty, struct key_range *krange,
8c328f11 500 const char *stime_str, const char *sday_str,
501 const char *smonth_str, const char *syear_str,
502 const char *duration_str)
718e3744 503{
504 time_t time_start;
505 u_int32_t duration;
718e3744 506
507 time_start = key_str2time (stime_str, sday_str, smonth_str, syear_str);
508 if (time_start < 0)
509 {
510 vty_out (vty, "Malformed time value%s", VTY_NEWLINE);
511 return CMD_WARNING;
512 }
513 krange->start = time_start;
514
66cbbceb 515 VTY_GET_INTEGER ("duration", duration, duration_str);
718e3744 516 krange->duration = 1;
517 krange->end = time_start + duration;
518
519 return CMD_SUCCESS;
520}
521
8cc4198f 522static int
718e3744 523key_lifetime_infinite_set (struct vty *vty, struct key_range *krange,
8c328f11 524 const char *stime_str, const char *sday_str,
525 const char *smonth_str, const char *syear_str)
718e3744 526{
527 time_t time_start;
528
529 time_start = key_str2time (stime_str, sday_str, smonth_str, syear_str);
530 if (time_start < 0)
531 {
532 vty_out (vty, "Malformed time value%s", VTY_NEWLINE);
533 return CMD_WARNING;
534 }
535 krange->start = time_start;
536
537 krange->end = -1;
538
539 return CMD_SUCCESS;
540}
6b0655a2 541
718e3744 542DEFUN (accept_lifetime_day_month_day_month,
543 accept_lifetime_day_month_day_month_cmd,
544 "accept-lifetime HH:MM:SS <1-31> MONTH <1993-2035> HH:MM:SS <1-31> MONTH <1993-2035>",
545 "Set accept lifetime of the key\n"
546 "Time to start\n"
547 "Day of th month to start\n"
548 "Month of the year to start\n"
549 "Year to start\n"
550 "Time to expire\n"
551 "Day of th month to expire\n"
552 "Month of the year to expire\n"
553 "Year to expire\n")
554{
6a098b3a 555 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 556
557 return key_lifetime_set (vty, &key->accept, argv[0], argv[1], argv[2],
558 argv[3], argv[4], argv[5], argv[6], argv[7]);
559}
560
561DEFUN (accept_lifetime_day_month_month_day,
562 accept_lifetime_day_month_month_day_cmd,
563 "accept-lifetime HH:MM:SS <1-31> MONTH <1993-2035> HH:MM:SS MONTH <1-31> <1993-2035>",
564 "Set accept lifetime of the key\n"
565 "Time to start\n"
566 "Day of th month to start\n"
567 "Month of the year to start\n"
568 "Year to start\n"
569 "Time to expire\n"
570 "Month of the year to expire\n"
571 "Day of th month to expire\n"
572 "Year to expire\n")
573{
6a098b3a 574 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 575
576 return key_lifetime_set (vty, &key->accept, argv[0], argv[1], argv[2],
577 argv[3], argv[4], argv[6], argv[5], argv[7]);
578}
579
580DEFUN (accept_lifetime_month_day_day_month,
581 accept_lifetime_month_day_day_month_cmd,
582 "accept-lifetime HH:MM:SS MONTH <1-31> <1993-2035> HH:MM:SS <1-31> MONTH <1993-2035>",
583 "Set accept lifetime of the key\n"
584 "Time to start\n"
585 "Month of the year to start\n"
586 "Day of th month to start\n"
587 "Year to start\n"
588 "Time to expire\n"
589 "Day of th month to expire\n"
590 "Month of the year to expire\n"
591 "Year to expire\n")
592{
6a098b3a 593 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 594
595 return key_lifetime_set (vty, &key->accept, argv[0], argv[2], argv[1],
596 argv[3], argv[4], argv[5], argv[6], argv[7]);
597}
598
599DEFUN (accept_lifetime_month_day_month_day,
600 accept_lifetime_month_day_month_day_cmd,
601 "accept-lifetime HH:MM:SS MONTH <1-31> <1993-2035> HH:MM:SS MONTH <1-31> <1993-2035>",
602 "Set accept lifetime of the key\n"
603 "Time to start\n"
604 "Month of the year to start\n"
605 "Day of th month to start\n"
606 "Year to start\n"
607 "Time to expire\n"
608 "Month of the year to expire\n"
609 "Day of th month to expire\n"
610 "Year to expire\n")
611{
6a098b3a 612 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 613
614 return key_lifetime_set (vty, &key->accept, argv[0], argv[2], argv[1],
615 argv[3], argv[4], argv[6], argv[5], argv[7]);
616}
617
618DEFUN (accept_lifetime_infinite_day_month,
619 accept_lifetime_infinite_day_month_cmd,
620 "accept-lifetime HH:MM:SS <1-31> MONTH <1993-2035> infinite",
621 "Set accept lifetime of the key\n"
622 "Time to start\n"
623 "Day of th month to start\n"
624 "Month of the year to start\n"
625 "Year to start\n"
626 "Never expires")
627{
6a098b3a 628 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 629
630 return key_lifetime_infinite_set (vty, &key->accept, argv[0], argv[1],
631 argv[2], argv[3]);
632}
633
634DEFUN (accept_lifetime_infinite_month_day,
635 accept_lifetime_infinite_month_day_cmd,
636 "accept-lifetime HH:MM:SS MONTH <1-31> <1993-2035> infinite",
637 "Set accept lifetime of the key\n"
638 "Time to start\n"
639 "Month of the year to start\n"
640 "Day of th month to start\n"
641 "Year to start\n"
642 "Never expires")
643{
6a098b3a 644 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 645
646 return key_lifetime_infinite_set (vty, &key->accept, argv[0], argv[2],
647 argv[1], argv[3]);
648}
649
650DEFUN (accept_lifetime_duration_day_month,
651 accept_lifetime_duration_day_month_cmd,
652 "accept-lifetime HH:MM:SS <1-31> MONTH <1993-2035> duration <1-2147483646>",
653 "Set accept lifetime of the key\n"
654 "Time to start\n"
655 "Day of th month to start\n"
656 "Month of the year to start\n"
657 "Year to start\n"
658 "Duration of the key\n"
659 "Duration seconds\n")
660{
6a098b3a 661 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 662
663 return key_lifetime_duration_set (vty, &key->accept, argv[0], argv[1],
664 argv[2], argv[3], argv[4]);
665}
666
667DEFUN (accept_lifetime_duration_month_day,
668 accept_lifetime_duration_month_day_cmd,
669 "accept-lifetime HH:MM:SS MONTH <1-31> <1993-2035> duration <1-2147483646>",
670 "Set accept lifetime of the key\n"
671 "Time to start\n"
672 "Month of the year to start\n"
673 "Day of th month to start\n"
674 "Year to start\n"
675 "Duration of the key\n"
676 "Duration seconds\n")
677{
6a098b3a 678 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 679
680 return key_lifetime_duration_set (vty, &key->accept, argv[0], argv[2],
681 argv[1], argv[3], argv[4]);
682}
6b0655a2 683
718e3744 684DEFUN (send_lifetime_day_month_day_month,
685 send_lifetime_day_month_day_month_cmd,
686 "send-lifetime HH:MM:SS <1-31> MONTH <1993-2035> HH:MM:SS <1-31> MONTH <1993-2035>",
687 "Set send lifetime of the key\n"
688 "Time to start\n"
689 "Day of th month to start\n"
690 "Month of the year to start\n"
691 "Year to start\n"
692 "Time to expire\n"
693 "Day of th month to expire\n"
694 "Month of the year to expire\n"
695 "Year to expire\n")
696{
6a098b3a 697 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 698
699 return key_lifetime_set (vty, &key->send, argv[0], argv[1], argv[2], argv[3],
700 argv[4], argv[5], argv[6], argv[7]);
701}
702
703DEFUN (send_lifetime_day_month_month_day,
704 send_lifetime_day_month_month_day_cmd,
705 "send-lifetime HH:MM:SS <1-31> MONTH <1993-2035> HH:MM:SS MONTH <1-31> <1993-2035>",
706 "Set send lifetime of the key\n"
707 "Time to start\n"
708 "Day of th month to start\n"
709 "Month of the year to start\n"
710 "Year to start\n"
711 "Time to expire\n"
712 "Month of the year to expire\n"
713 "Day of th month to expire\n"
714 "Year to expire\n")
715{
6a098b3a 716 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 717
718 return key_lifetime_set (vty, &key->send, argv[0], argv[1], argv[2], argv[3],
719 argv[4], argv[6], argv[5], argv[7]);
720}
721
722DEFUN (send_lifetime_month_day_day_month,
723 send_lifetime_month_day_day_month_cmd,
724 "send-lifetime HH:MM:SS MONTH <1-31> <1993-2035> HH:MM:SS <1-31> MONTH <1993-2035>",
725 "Set send lifetime of the key\n"
726 "Time to start\n"
727 "Month of the year to start\n"
728 "Day of th month to start\n"
729 "Year to start\n"
730 "Time to expire\n"
731 "Day of th month to expire\n"
732 "Month of the year to expire\n"
733 "Year to expire\n")
734{
6a098b3a 735 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 736
737 return key_lifetime_set (vty, &key->send, argv[0], argv[2], argv[1], argv[3],
738 argv[4], argv[5], argv[6], argv[7]);
739}
740
741DEFUN (send_lifetime_month_day_month_day,
742 send_lifetime_month_day_month_day_cmd,
743 "send-lifetime HH:MM:SS MONTH <1-31> <1993-2035> HH:MM:SS MONTH <1-31> <1993-2035>",
744 "Set send lifetime of the key\n"
745 "Time to start\n"
746 "Month of the year to start\n"
747 "Day of th month to start\n"
748 "Year to start\n"
749 "Time to expire\n"
750 "Month of the year to expire\n"
751 "Day of th month to expire\n"
752 "Year to expire\n")
753{
6a098b3a 754 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 755
756 return key_lifetime_set (vty, &key->send, argv[0], argv[2], argv[1], argv[3],
757 argv[4], argv[6], argv[5], argv[7]);
758}
759
760DEFUN (send_lifetime_infinite_day_month,
761 send_lifetime_infinite_day_month_cmd,
762 "send-lifetime HH:MM:SS <1-31> MONTH <1993-2035> infinite",
763 "Set send lifetime of the key\n"
764 "Time to start\n"
765 "Day of th month to start\n"
766 "Month of the year to start\n"
767 "Year to start\n"
768 "Never expires")
769{
6a098b3a 770 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 771
772 return key_lifetime_infinite_set (vty, &key->send, argv[0], argv[1], argv[2],
773 argv[3]);
774}
775
776DEFUN (send_lifetime_infinite_month_day,
777 send_lifetime_infinite_month_day_cmd,
778 "send-lifetime HH:MM:SS MONTH <1-31> <1993-2035> infinite",
779 "Set send lifetime of the key\n"
780 "Time to start\n"
781 "Month of the year to start\n"
782 "Day of th month to start\n"
783 "Year to start\n"
784 "Never expires")
785{
6a098b3a 786 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 787
788 return key_lifetime_infinite_set (vty, &key->send, argv[0], argv[2], argv[1],
789 argv[3]);
790}
791
792DEFUN (send_lifetime_duration_day_month,
793 send_lifetime_duration_day_month_cmd,
794 "send-lifetime HH:MM:SS <1-31> MONTH <1993-2035> duration <1-2147483646>",
795 "Set send lifetime of the key\n"
796 "Time to start\n"
797 "Day of th month to start\n"
798 "Month of the year to start\n"
799 "Year to start\n"
800 "Duration of the key\n"
801 "Duration seconds\n")
802{
6a098b3a 803 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 804
805 return key_lifetime_duration_set (vty, &key->send, argv[0], argv[1], argv[2],
806 argv[3], argv[4]);
807}
808
809DEFUN (send_lifetime_duration_month_day,
810 send_lifetime_duration_month_day_cmd,
811 "send-lifetime HH:MM:SS MONTH <1-31> <1993-2035> duration <1-2147483646>",
812 "Set send lifetime of the key\n"
813 "Time to start\n"
814 "Month of the year to start\n"
815 "Day of th month to start\n"
816 "Year to start\n"
817 "Duration of the key\n"
818 "Duration seconds\n")
819{
6a098b3a 820 VTY_DECLVAR_CONTEXT_SUB (key, key);
718e3744 821
822 return key_lifetime_duration_set (vty, &key->send, argv[0], argv[2], argv[1],
823 argv[3], argv[4]);
824}
6b0655a2 825
7fc626de 826static struct cmd_node keychain_node =
718e3744 827{
828 KEYCHAIN_NODE,
829 "%s(config-keychain)# ",
830 1
831};
832
7fc626de 833static struct cmd_node keychain_key_node =
718e3744 834{
835 KEYCHAIN_KEY_NODE,
836 "%s(config-keychain-key)# ",
837 1
838};
839
8cc4198f 840static int
718e3744 841keychain_strftime (char *buf, int bufsiz, time_t *time)
842{
843 struct tm *tm;
844 size_t len;
845
846 tm = localtime (time);
847
848 len = strftime (buf, bufsiz, "%T %b %d %Y", tm);
849
850 return len;
851}
852
8cc4198f 853static int
718e3744 854keychain_config_write (struct vty *vty)
855{
856 struct keychain *keychain;
857 struct key *key;
1eb8ef25 858 struct listnode *node;
859 struct listnode *knode;
718e3744 860 char buf[BUFSIZ];
861
1eb8ef25 862 for (ALL_LIST_ELEMENTS_RO (keychain_list, node, keychain))
718e3744 863 {
864 vty_out (vty, "key chain %s%s", keychain->name, VTY_NEWLINE);
865
1eb8ef25 866 for (ALL_LIST_ELEMENTS_RO (keychain->key, knode, key))
718e3744 867 {
868 vty_out (vty, " key %d%s", key->index, VTY_NEWLINE);
869
870 if (key->string)
871 vty_out (vty, " key-string %s%s", key->string, VTY_NEWLINE);
872
873 if (key->accept.start)
874 {
875 keychain_strftime (buf, BUFSIZ, &key->accept.start);
876 vty_out (vty, " accept-lifetime %s", buf);
877
878 if (key->accept.end == -1)
879 vty_out (vty, " infinite");
880 else if (key->accept.duration)
881 vty_out (vty, " duration %ld",
fa2b17e3 882 (long)(key->accept.end - key->accept.start));
718e3744 883 else
884 {
885 keychain_strftime (buf, BUFSIZ, &key->accept.end);
886 vty_out (vty, " %s", buf);
887 }
888 vty_out (vty, "%s", VTY_NEWLINE);
889 }
890
891 if (key->send.start)
892 {
893 keychain_strftime (buf, BUFSIZ, &key->send.start);
894 vty_out (vty, " send-lifetime %s", buf);
895
896 if (key->send.end == -1)
897 vty_out (vty, " infinite");
898 else if (key->send.duration)
fa2b17e3 899 vty_out (vty, " duration %ld", (long)(key->send.end - key->send.start));
718e3744 900 else
901 {
902 keychain_strftime (buf, BUFSIZ, &key->send.end);
903 vty_out (vty, " %s", buf);
904 }
905 vty_out (vty, "%s", VTY_NEWLINE);
906 }
907 }
908 vty_out (vty, "!%s", VTY_NEWLINE);
909 }
910
911 return 0;
912}
913
914void
915keychain_init ()
916{
917 keychain_list = list_new ();
918
919 install_node (&keychain_node, keychain_config_write);
920 install_node (&keychain_key_node, NULL);
921
922 install_default (KEYCHAIN_NODE);
923 install_default (KEYCHAIN_KEY_NODE);
924
925 install_element (CONFIG_NODE, &key_chain_cmd);
926 install_element (CONFIG_NODE, &no_key_chain_cmd);
927 install_element (KEYCHAIN_NODE, &key_cmd);
928 install_element (KEYCHAIN_NODE, &no_key_cmd);
929
930 install_element (KEYCHAIN_NODE, &key_chain_cmd);
931 install_element (KEYCHAIN_NODE, &no_key_chain_cmd);
932
933 install_element (KEYCHAIN_KEY_NODE, &key_string_cmd);
934 install_element (KEYCHAIN_KEY_NODE, &no_key_string_cmd);
935
936 install_element (KEYCHAIN_KEY_NODE, &key_chain_cmd);
937 install_element (KEYCHAIN_KEY_NODE, &no_key_chain_cmd);
938
939 install_element (KEYCHAIN_KEY_NODE, &key_cmd);
940 install_element (KEYCHAIN_KEY_NODE, &no_key_cmd);
941
942 install_element (KEYCHAIN_KEY_NODE, &accept_lifetime_day_month_day_month_cmd);
943 install_element (KEYCHAIN_KEY_NODE, &accept_lifetime_day_month_month_day_cmd);
944 install_element (KEYCHAIN_KEY_NODE, &accept_lifetime_month_day_day_month_cmd);
945 install_element (KEYCHAIN_KEY_NODE, &accept_lifetime_month_day_month_day_cmd);
946 install_element (KEYCHAIN_KEY_NODE, &accept_lifetime_infinite_day_month_cmd);
947 install_element (KEYCHAIN_KEY_NODE, &accept_lifetime_infinite_month_day_cmd);
948 install_element (KEYCHAIN_KEY_NODE, &accept_lifetime_duration_day_month_cmd);
949 install_element (KEYCHAIN_KEY_NODE, &accept_lifetime_duration_month_day_cmd);
950
951 install_element (KEYCHAIN_KEY_NODE, &send_lifetime_day_month_day_month_cmd);
952 install_element (KEYCHAIN_KEY_NODE, &send_lifetime_day_month_month_day_cmd);
953 install_element (KEYCHAIN_KEY_NODE, &send_lifetime_month_day_day_month_cmd);
954 install_element (KEYCHAIN_KEY_NODE, &send_lifetime_month_day_month_day_cmd);
955 install_element (KEYCHAIN_KEY_NODE, &send_lifetime_infinite_day_month_cmd);
956 install_element (KEYCHAIN_KEY_NODE, &send_lifetime_infinite_month_day_cmd);
957 install_element (KEYCHAIN_KEY_NODE, &send_lifetime_duration_day_month_cmd);
958 install_element (KEYCHAIN_KEY_NODE, &send_lifetime_duration_month_day_cmd);
959}
FRRouting mirror