I'm happy to announce that we've begun the process for releasing the
next major version of Net-SNMP. Net-SNMP 5.6 will have a number of
important changes in it, which are outlined below. The following new
features are the ones we'd most like feedback and testing on:
* SNMP over TLS/DTLS Support:
See http://www.net-snmp.org/wiki/index.php/TUT:Using_TLS for how to
talk to the test server using TLS/DTLS
* New configuration mechanisms:
http://www.net-snmp.org/wiki/index.php/Configuration
- "include" support
- Host-specific configuration files:
* The new testing suite that provides new capabilities for extensive
unit testing of the APIs and tools. (run "perldoc
testing/RUNFULLTESTS" for details)
* The new agentxtrap command for sending traps from the command line
to all the registered snmpd notification receivers:
http://www.net-snmp.org/wiki/index.php/TUT:agentxtrap
The complete list of NEWS-worth changes in the 5.6 line:
*5.6.pre1*
all:
- Implemented the SNMP over TLS and SNMP over DTLS protocols [RFC-to-be]
See http://www.net-snmp.org/wiki/index.php/TUT:Using_TLS
- Implemented the "Transport Security Model" [RFC5591]
- Generic host-specific configuration .conf files are now read.
See the HOST-SPECIFIC FILES section of the snmp.conf manual page
and http://www.net-snmp.org/wiki/index.php/Configuration
- Include statements can now be used in .conf files.
See http://www.net-snmp.org/wiki/index.php/Configuration
snmpd:
- Fix handling of multiple matching VACM entries. (Use the "best"
match, rather than the first one). Reported by Adam Lewis. Note
that this could potentially affect the behaviour of existing access
control configurations.
- Agent will no longer call table handlers if a set request for the
handler has invalid indexes
- table_data/tdata next handler will not be called during get
processing if no valid rows are found for the handler
- [PATCH 2952708]: Added Perl implementation of BRIDGE-MIB
- moved all functions defined in libnetsnmphelpers to
libnetsnmpagent. libnetsnmphelpers is now an empty library.
- Implemented the TSM-MIB and the TLSTM-MIB
apps:
- A new tool 'net-snmp-cert' that easily creates and manages
X.509 certificates for use with the SNMP over (D)TLS protocols.
- Added an 'agentxtrap' command to send notifications via AgentX
(See http://www.net-snmp.org/wiki/index.php/TUT:agentxtrap for details)
- -T command line flag can be used to pass configuration
directly to transports that can accept configuration tokens
snmplib:
- A more modular transport subsystem that allows third party
extensions and dependencies for code reuse.
- New transport functions: f_config, f_open, f_copy and f_setup_session
- Transports can now specify session defaults
- E.G. dtlsudp: auto-sets the SNMP version and the security model.
- [PATCH 2942940]: Add a new function, netsnmp_parse_args, that is
like snmp_parse_args but takes an additional bitmask, flags, to
affect the behaviour. Also remove the magic handling of some
application names.
- A new X.509 certificate API for indexing and reading certificates
- netsnmp_container enhancements:
- added a free_item function
- added a CONTAINER_FREE_ALL macro/function
- added an interface for duplicating a container (CONTAINER_DUP)
- added a remove function to container_iterators
- added an ability to set options on binary_array containers
- new snmp token logOption allows specifying log destinations
via configuration conf files
- A very significant reduction in compiler warning output
building:
- Support for a stream-line stripped down version of internal
OpenSSL support using --with-openssl=internal.
- Do not require that the UDP transport is included.
- Building Net-SNMP with dmalloc support enabled is again possible.
mib2c:
- mib2c can now optionally run sed on generated code
testing:
- A brand new test infrastructure supporting multiple test suites
See perldoc testing/RUNFULLTESTS for details
python:
- walking broken agents won't cause an infinite loop
win32:
- IPv6 is only supported under Cygwin 1.7 or later.
- [BUG 2939168]: byte order of udpLocalPort is now correct.
- [BUG 2939168]: fixed test infrastructure ("make test"). This has
been fixed by using the proper environment separator character and
by adding the path of the netstat executable for Cygwin in
testing/TESTCONF.sh.
- building with another OpenSSL package than the Cygwin-provided
packages openssl and openssl-devel is again possible.
- running the regression test suite is again possible ('make test').
- winExtDLL compiles now under MinGW.
--
Wes Hardaker
Please mail all replies to [email protected]
------------------------------------------------------------------------------
ThinkGeek and WIRED's GeekDad team up for the Ultimate
GeekDad Father's Day Giveaway. ONE MASSIVE PRIZE to the
lucky parental unit. See the prize list and enter to win:
http://p.sf.net/sfu/thinkgeek-promo
_______________________________________________
Net-snmp-coders mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/net-snmp-coders
