[Pkg-net-snmp-devel] Bug#765873: ignores configured engineID for USM, always probes

Steinar H. Gunderson sgunderson at bigfoot.com
Sat Oct 18 20:28:16 UTC 2014

Package: libsnmp30
Severity: normal
Tags: upstream patch


When using SNMPv3 with USM, libsnmp30 ignores the given securityEngineID,
and always probes (unless myabe if you set the seemingly internal flag
SNMP_DONT_PROBE at a strategic point in time). Worse, this is done
synchronously even if the client asked for asynchronous operation

This used to work in the version in wheezy (5.4.3), but seemingly got broken
in some refactoring to support multiple security models. The patch is simple:

--- net-snmp-
+++ net-snmp-
@@ -3126,6 +3126,11 @@ int usm_discover_engineid(void *slpv, ne
     int status, i;
     struct session_list *slp = (struct session_list *) slpv;
+    if (slp->session->securityEngineIDLen != 0) {
+        DEBUGMSGTL(("snmp_api", "engineID already known, skipping probe\n"));
+        return SNMPERR_SUCCESS;
+    }
     if (usm_build_probe_pdu(&pdu) != 0) {
         DEBUGMSGTL(("snmp_api", "unable to create probe PDU\n"));
         return SNMP_ERR_GENERR;

-- System Information:
Debian Release: 7.6
  APT prefers stable
  APT policy: (750, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16.3 (SMP w/40 CPU cores)
Locale: LANG=en_DK.UTF-8, LC_CTYPE=en_DK.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages libsnmp30 depends on:
ii  libc6              2.13-38+deb7u4
ii  libpci3            1:3.1.9-6
ii  libperl5.14        5.14.2-21+deb7u1
ii  libsensors4        1:3.3.2-2+deb7u1
ii  libsnmp-base
ii  libssl1.0.0        1.0.1e-2+deb7u13
ii  libwrap0           7.6.q-24
ii  multiarch-support  2.13-38+deb7u4

libsnmp30 recommends no packages.

libsnmp30 suggests no packages.

-- no debconf information

More information about the Pkg-net-snmp-devel mailing list