Re: 5.8.rc1 is available

2018-05-13 Thread Robert Story 
On Thu, 10 May 2018 08:46:17 -0700 Bart wrote:
BVA> On 05/06/18 17:32, Robert Story wrote:
BVA> > The first release candidate for the next release of Net-SNMP
BVA> > is available for testing [1]. [...]
BVA> [...]
BVA> Since we are preparing the first v5.8 release, do you think
BVA> this is a good time to review the Net-SNMP public header
BVA> files? There may be symbols in the public header files that
BVA> shouldn't be there.

Yes, that is a good idea.

BVA> Other issues I'd like to bring up are the
BVA> circular dependency between  and
BVA> 

The circular dependency is handled by each file using an ifdef to
protect against multiple included. It is possible that cleanup of
includes in the code to include the right things and in the right
order could eliminate the loop. I think 5.9 is probably the right
place to try such an undertaking.

BVA> and also that the compilation time probably can be reduced by
BVA> limiting the number of files included from .

True. Another idea for 5.9.

Robert

--
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
___
Net-snmp-coders mailing list
Net-snmp-coders@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/net-snmp-coders

Re: 5.8.rc1 is available

2018-05-10 Thread Bart Van Assche 

On 05/06/18 17:32, Robert Story wrote:

The first release candidate for the next release of Net-SNMP is
available for testing [1]. Please give it a try and file bug reports
[2] if you run into any problems.

Here is brief summary of changes for 5.8 release candidates and
pre-release:

[ ... ]


Hello Robert,

Since we are preparing the first v5.8 release, do you think this is a 
good time to review the Net-SNMP public header files? There may be 
symbols in the public header files that shouldn't be there. Other issues 
I'd like to bring up are the circular dependency between 
 and  and also that the 
compilation time probably can be reduced by limiting the number of files 
included from .


Thanks,

Bart.

--
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
___
Net-snmp-coders mailing list
Net-snmp-coders@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/net-snmp-coders

5.8.rc1 is available

2018-05-06 Thread Robert Story 
The first release candidate for the next release of Net-SNMP is
available for testing [1]. Please give it a try and file bug reports
[2] if you run into any problems.

Here is brief summary of changes for 5.8 release candidates and
pre-release:


*5.8.rc1*
snmpd:
  - BUG: 2864: use clientaddr properly
  - Add the ability to set the source address with "-s" for trapsess
  - BUG: 1366: Pass proper buffer length to netsnmp_tls_fingerprint_build()
  - Fix/enforce ipDefaultRouterLifetime value range

libsnmp:
  - Flush persistent config to persistent storage

NetBSD:
  - Support for NetBSD 8

*5.8.pre3*
snmplib:
  - Asn1: BUG: 2828: from "Google Autofuzz project": fix off-by-one
heap access for opaque types   (and an adjacent bug that was not in
5.4, noticed by code inspection)
  - Asn1: from "Google Autofuzz project": propagate error from
asn_parse_length

snmpd:
  - BUG: 2810: from "Minzhuan Gong": fix compile with
--enable-read-only
  - BUG: 2845: fix compilation error with NETSNMP_NO_WRITE_SUPPORT
  - BUG: 2846: fix agent compile when both --enable-read-only and
--disable-set-support are given.
  - Com2sec and com2sec6 SOURCE values may deny sources as well as
permit.
  - TLSTM MIB: Fix support for sha256, 384 and 512 fingerprints
  - BUG: 2830: Make the agentxperms keyword work again

agentx:
  - From "Google AutoFuzz project": account for the nul character we
will add to the string.
  - From "Google Autofuzz project": additional agentx protocol parser
bounds checking

Win32:
  - Add support for the DTLS-UDP and TLS-TCP transports
  - Win32/MSVC general cleanup

unspecified:
  - Fix bug #2832 for building new checkbandwidth script
  - Many fixes found by Coverity scans


*5.8.pre2*
snmplib:
  - TLS/DTLS fixes
  - Add more openssl error cases where we check for local cert
  - fix usm keychanges for new algorithms and longer keylengths
  - fix some memory leaks in usm processing
  - IP address formatting fixes
  - Make the source code C89 compliant

building:
  - Fix MinGW build
  - Unbreak the NetBSD build
  - Unbreak AIX support
  - RHEL 5 build fix

scripts:
  - A new 'checkbandwidth' script to check host min/max bandwidth

docs:
  - Bug 2826: from Tomasz: fix utf-8 encoding

python:
  - BUG 2824: from: Tomasz: Fix python module make install

*5.8.pre1*
snmplib:
  - Fixed reporting 'error writing to /var/xxx/snmpapp.conf'. When a
client utility, such as snmptrap, tries to write to its persistent
configuration file (/var/net-snmp/snmpapp.conf in Fedora), do not
report any error when open() fails. The tool is typically run by
non-root, who cannot write to /var and the error just confuses
users. And when doing it, make sure that "snmpapp" string is
defined only on one place, just in case.

snmp:
  - BUG: 2622: Fix excessive indents in log file

snmpd:
  - Add new snmpd.conf option 'diskio' to monitor only selected disks.
On machines with thousands of block devices, parsing
/proc/diskstats is really slow. The new option enables monitoring
of selected devices, saving lot of CPU time.

snmptranslate:
  - Introduce bulk translation mode The special argument "-" causes
snmptranslate to enter bulk translation mode, in which it expects
one OID per line.  Whitespace is treated as the end of the OID, and
only that portion of the line is replaced, meaning that this can be
used to translate, e.g., "snmpwalk" output without the proper MIBs
loaded: snmptranslate -m all -OX < numeric.txt > symbolic.txt

snmptrapd:
  - Add support for the latest libmysqlclient version
  - Correctly forward traps with Request-ID '0'. Request-ID of
forwarded traps is taken from the incoming trap and it can be zero.
We should not report error in this case.

mib2c:
  - PATCH: 1281, BUG: 2534 fixed mfd writability

python:
  - Patch from David Hankins to fix python binding error codes

unspecified:
  - Fixed crash when receiving non-standard compliant responses. Some
HW sends ifOperStatus as NULL instead of INTEGER type. We should
not try to dereference this NULL.
  - IPv6 support is now compiled by default.  If you need an IPv4-only
agent, use --disable-ipv6.
  - [BUG 2616]: Fix certain spelling errors in source code comments and
printed messages
  - [BUG 2624]: stop trying to use the deprecated perl uninstall
  - [BUG 2712]: Fix Perl module compilation 
  - [BUG ]: #2615: Don't return incompletely parsed varbinds

DISMAN EXPRESSION MIB:
  - Avoid that enabling this MIB causes snmpd to crash during startup

DISMAN MIB:
  - Avoid reading past