Bug 57444 - SNMP agent does not return host.hrSWInstalled
Summary: SNMP agent does not return host.hrSWInstalled
Alias: None
Product: Red Hat Linux
Classification: Retired
Component: ucd-snmp (Show other bugs)
(Show other bugs)
Version: 7.2
Hardware: All Linux
Target Milestone: ---
Assignee: Phil Knirsch
QA Contact: Brock Organ
Depends On:
TreeView+ depends on / blocked
Reported: 2001-12-12 17:57 UTC by Need Real Name
Modified: 2015-03-05 01:09 UTC (History)
2 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2001-12-14 16:55:31 UTC
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

Description Need Real Name 2001-12-12 17:57:44 UTC
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux alpha; en-US; rv:0.9.6) Gecko/20011120

Description of problem:
The SNMP agent does not return the list of installed software.

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
1. On a machine running snmpd issue the command:

snmpwalk localhost public host.hrSWInstalled

Actual Results:  No data is returned.

Expected Results:  The installed software list should be returned.

Additional info:

I looked over the code. It appears to me the patch to list the installed
packages fails because HAVE_LIBRPM and HAVE_RPMGETPATH are not defined. 

I made my own patch to 4.2.3 using the rpm40 patch, and added HAVE_LIBRPM
and HAVE_RPMGETPATH to config.h.in and compiled it and it worked.

Comment 1 Need Real Name 2001-12-14 16:55:26 UTC
Another problem of the "security" patch that the patch is absolutely not 
thread safe. The library itself mainly works with threads (also stated in the 
documentation). But the patches breaks this. IMHO the look like a really ugly 
workaround for the security problems. The old interfaces should never be 
changed to the new format since it breaks every program using the API. Instead 
new more secure interfaces should be added with different names and via the 
documentation or warnings all the other programs using the API could be asked 
to change to the new version. 
On other problem is that a program cannot detect if the library is patched or 
not since the version number is not changed! If the version was increased you 
can easily make programs work with the old API and a new one.

Comment 2 Phil Knirsch 2002-01-29 15:35:54 UTC
The latest version (4.2.3) is available via rawhide now. This should fix this
problem. It does not contain the big security patch anymore as the buffer
overflow bugs have been fixed upstream.

I've also fixed the rpm thing again, this time in the configure script directly.


Read ya, Phil

Comment 3 Need Real Name 2002-01-30 18:18:50 UTC
The RPM Spec needs an additional dependency of bzip2-devel.

Note You need to log in before you can comment on or make changes to this bug.