On 6/22/25 11:44 AM, JustCoding247 wrote:
I am writing to inquire about the proper procedure for reporting a
potential security vulnerability I have discovered in Net-SNMP.
While analyzing the Net-SNMP source code, I have identified what appears
to be a buffer overflow vulnerability in the net
On 3/14/25 3:06 PM, Bart Van Assche wrote:
The above patch has been split and has been submitted as a pull request
to the ntopng project. See also
https://github.com/ntop/ntopng/pull/9028#issuecomment-2718468627.
This pull request has been merged.
Bart.
__
On 3/10/25 4:27 AM, Stuart Henderson wrote:
gnugk:
snmp.cxx:87:11: error: expected '(' for function-style cast or type construction
trapOID[ OID_LENGTH(trapOID) - 1 ] = trapNumber;
^~~
/usr/local/include/net-snmp/library/asn1.h:65:56: note: expanded fro
On 3/10/25 5:48 PM, Bart Van Assche wrote:
diff --git a/include/SNMPSession.h b/include/SNMPSession.h
index 932b3d96ce17..e12ef0a2f893 100644
--- a/include/SNMPSession.h
+++ b/include/SNMPSession.h
@@ -32,7 +32,7 @@
class SNMPSession {
public:
struct snmp_session session;
- void *sessio
On 3/10/25 1:39 PM, Bart Van Assche wrote:
Are there any objections against removing NOAUTODEPS support? I noticed
that ./config.status is often run if no changes have been made to any
configure script. Hence this proposal to remove NOAUTODEPS support and
instead to let developers run the configu
On 3/10/25 4:27 AM, Stuart Henderson wrote:
To see how things are going with API changes, I've tested building
everything in OpenBSD ports which depends on this. (I'm not suggesting
that Net-SNMP needs to change anything unless these are unexpected, but
at least giving other package maintainers a
Hi,
Are there any objections against removing NOAUTODEPS support? I noticed
that ./config.status is often run if no changes have been made to any
configure script. Hence this proposal to remove NOAUTODEPS support and
instead to let developers run the configure script and/or autoreconf
when necess
On 3/10/25 4:27 AM, Stuart Henderson wrote:
ntopng:
various from snmp_sess_* functions taking struct session_list * rather
than void *, and also
src/SNMP.cpp:452:47: error: assigning to 'oid *' (aka 'unsigned long *') from
incompatible type 'const oid[10]' (aka 'const unsigned long[10]')
On 2/28/25 5:14 AM, Michael Schmidt via Net-snmp-coders wrote:
diff --git a/agent/snmp_agent.c b/agent/snmp_agent.c
index 9913a968e1..c728059ac8 100644
--- a/agent/snmp_agent.c
+++ b/agent/snmp_agent.c
@@ -1908,6 +1908,8 @@ netsnmp_wrap_up_request(netsnmp_agent_session *asp, int
status)
}
On 7/30/24 11:46 AM, Niels Baggesen wrote:
You probably need to rerun ldconfig after doing the install.
Since the Net-SNMP library path is passed to the linker with the
linker option -rpath, is it really necessary to run ldconfig after
having installed Net-SNMP? See also commit 3857d43233d4 fro
On 6/11/24 7:04 AM, Mark Johnston wrote:
commit 304f8cf7f176920cb689d237f612c9a25cd14e84
Author: Mark Johnston
Date: Thu Apr 4 16:34:26 2024 -0400
snmpd: Always open libkvm in "safe mode" on FreeBSD
This patch has been applied on the V5-9-patches and master branches.
Thanks for the pat
On 6/10/24 13:27, Mark Johnston wrote:
Would it be helpful for me to submit a patch? A few of us have been
testing snmpd with my original patch (to tell libkvm not to open
/dev/kmem etc.) for a while now with no issues.
A patch definitely would be welcome.
Thanks,
Bart.
_
On 5/21/24 5:14 AM, Teus Benschop wrote:
Thank you for the go-ahead.
I went ahead and created the patch for the UDP domain.
In line with the previous patch where you had added support for IPv6, I
have added that support to this patch too.
It was tested and works fine when the snmpd listens on ud
On 5/13/24 03:05, Teus Benschop wrote:
The patches work for the TCP domain, and that certainly is sufficient
for us, and we are happy.
Would it also be helpful if I would create similar patches for the
*UDP* domain?
Generalizing this work by adding UDP support for this mechanism sounds
go
On 5/8/24 1:42 AM, Teus Benschop wrote:
I have implemented the f_setup_session() callback in
the snmpTCPBaseDomain.h/.c files.
This callback obtains the port number and copies that into the session
object.
Then from the session object, the local_port is available while
processing the SNMP req
On 4/30/24 10:53 AM, Mark Johnston wrote:
Fix var_udp6 and var_tcp6 on FreeBSD
> [ ... ]
This patch has been applied on the V5-9-patches and master branches.
Thanks for the patch!
Bart.
___
Net-snmp-coders mailing list
Net-snmp-coders@lists.source
On 4/12/24 7:29 AM, Mark Johnston wrote:
Do you mean that on FreeBSD we should always perform an unprivileged
kvm_openfile() call, no matter whether --without-kmem-usage is
specified?
Yes, that's what I'm proposing. If someone disagrees, please share your
opinion now.
Thanks,
Bart.
On 4/12/24 06:44, Mark Johnston wrote:
I would like to introduce the patch below, which gets compiled when
--without-kmem-usage is specified. In this case, snmpd will still use
libkvm, but won't open /dev/(k)mem. In my testing so far, this works
perfectly. Does anyone have any thoughts on this
18 matches
Mail list logo
