2 Bacula(R) - The Network Backup Solution
4 Copyright (C) 2000-2016 Kern Sibbald
6 The original author of Bacula is Kern Sibbald, with contributions
7 from many others, a complete list can be found in the file AUTHORS.
9 You may use this file and others of this release according to the
10 license defined in the LICENSE file, which includes the Affero General
11 Public License, v3.0 ("AGPLv3") and some additional permissions and
12 terms pursuant to its AGPLv3 Section 7.
14 This notice must be preserved when any source code is
15 conveyed and/or propagated.
17 Bacula(R) is a registered trademark of Kern Sibbald.
20 * Bacula File Daemon specific configuration
22 * Kern Sibbald, Sep MM
26 * Resource codes -- they must be sequential for indexing
30 #define R_DIRECTOR 1001
33 #define R_CONSOLE 1004
35 #define R_LAST R_CONSOLE
38 * Some resource attributes
41 #define R_ADDRESS 1021
42 #define R_PASSWORD 1022
46 /* Definition of the contents of each Resource */
49 char *password; /* Director password */
50 char *address; /* Director address or zero */
51 int heartbeat_interval;
54 bool tls_authenticate; /* Authenticate with TSL */
55 bool tls_enable; /* Enable TLS */
56 bool tls_require; /* Require TLS */
57 bool tls_verify_peer; /* TLS Verify Client Certificate */
58 char *tls_ca_certfile; /* TLS CA Certificate File */
59 char *tls_ca_certdir; /* TLS CA Certificate Directory */
60 char *tls_certfile; /* TLS Server Certificate File */
61 char *tls_keyfile; /* TLS Server Key File */
62 char *tls_dhfile; /* TLS Diffie-Hellman Parameters */
63 alist *tls_allowed_cns; /* TLS Allowed Clients */
64 TLS_CONTEXT *tls_ctx; /* Shared TLS Context */
67 /* Definition of the contents of each Resource */
70 char *password; /* Director password */
71 char *address; /* Director address or zero */
72 bool monitor; /* Have only access to status and .status functions */
73 bool remote; /* Remote console, can run and control jobs */
74 bool tls_authenticate; /* Authenticate with TSL */
75 bool tls_enable; /* Enable TLS */
76 bool tls_require; /* Require TLS */
77 bool tls_verify_peer; /* TLS Verify Client Certificate */
78 char *tls_ca_certfile; /* TLS CA Certificate File */
79 char *tls_ca_certdir; /* TLS CA Certificate Directory */
80 char *tls_certfile; /* TLS Server Certificate File */
81 char *tls_keyfile; /* TLS Server Key File */
82 char *tls_dhfile; /* TLS Diffie-Hellman Parameters */
83 alist *tls_allowed_cns; /* TLS Allowed Clients */
84 uint64_t max_bandwidth_per_job; /* Bandwidth limitation (per director) */
85 TLS_CONTEXT *tls_ctx; /* Shared TLS Context */
86 alist *disable_cmds; /* Commands to disable */
87 bool *disabled_cmds_array; /* Disabled commands array */
94 dlist *FDsrc_addr; /* address to source connections from */
95 char *working_directory;
97 char *subsys_directory;
98 char *plugin_directory; /* Plugin directory */
99 char *scripts_directory;
100 char *snapshot_command;
101 MSGS *messages; /* daemon message handler */
102 uint32_t MaxConcurrentJobs;
103 utime_t SDConnectTimeout; /* timeout in seconds */
104 utime_t heartbeat_interval; /* Interval to send heartbeats */
105 uint32_t max_network_buffer_size; /* max network buf size */
106 bool comm_compression; /* Enable comm line compression */
107 bool pki_sign; /* Enable Data Integrity Verification via Digital Signatures */
108 bool pki_encrypt; /* Enable Data Encryption */
109 char *pki_keypair_file; /* PKI Key Pair File */
110 alist *pki_signing_key_files; /* PKI Signing Key Files */
111 alist *pki_master_key_files; /* PKI Master Key Files */
112 uint32_t pki_cipher; /* PKI Cipher type */
113 uint32_t pki_digest; /* PKI Digest type */
114 bool tls_authenticate; /* Authenticate with TLS */
115 bool tls_enable; /* Enable TLS */
116 bool tls_require; /* Require TLS */
117 char *tls_ca_certfile; /* TLS CA Certificate File */
118 char *tls_ca_certdir; /* TLS CA Certificate Directory */
119 char *tls_certfile; /* TLS Client Certificate File */
120 char *tls_keyfile; /* TLS Client Key File */
122 X509_KEYPAIR *pki_keypair; /* Shared PKI Public/Private Keypair */
123 alist *pki_signers; /* Shared PKI Trusted Signers */
124 alist *pki_recipients; /* Shared PKI Recipients */
125 TLS_CONTEXT *tls_ctx; /* Shared TLS Context */
126 char *verid; /* Custom Id to print in version command */
127 uint64_t max_bandwidth_per_job; /* Bandwidth limitation (global) */
128 alist *disable_cmds; /* Commands to disable */
129 bool *disabled_cmds_array; /* Disabled commands array */
134 /* Define the Union of all the above
135 * resource structure definitions.