Please unblock net-snmp-5.4.1~dfsg-9

[Jochen Friedrich <jochen@scram.de>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I'd like to request an unblock for net-snmp to include two fixes (in addition to
translation updates):

Changes:
 net-snmp (5.4.1~dfsg-9) unstable; urgency=low
 .
   * Ack NMU (Closes: #485945)
   * Updated standards version to 3.8.0 (no changes)
   * Update debconf translations:
    o sv: Martin Bagge <brother@bsnet.se> (Closes: #491778)
    o ja: Hideki Yamane (Debian-JP) <henrich@debian.or.jp> (Closes: #494118)
   * Add patch to support -g {groupname} (Closes: #441871, #468577, #485948)
   * Add official patch to suppress annoying warning in syslog (Closes: #493281)
   * Fix default stop section in LSB header of start script.

- - patch 52_suppress_registration_warnings.patch: Official Patch 1805971.
  This patch suppresses certain syslog messages upstream believes to be harmless:

Index: agent/agent_registry.c
===================================================================
- --- net-snmp-5.4.1.orig/agent/agent_registry.c	(Revision 16668)
+++ net-snmp-5.4.1/agent/agent_registry.c	(Revision 16669)
@@ -532,7 +532,8 @@
 	
 	    if (next && (next->namelen  == new_sub->namelen) &&
 		(next->priority == new_sub->priority)) {
- -                netsnmp_assert(!"registration != duplicate"); /* always false */
+                if (new_sub->namelen != 1) /* ignore root OID dups */
+                    netsnmp_assert(!"registration != duplicate"); /* always false */
 		return MIB_DUPLICATE_REGISTRATION;
 	    }

- - patch 51_allow_g_groupname.patch adds the possibility to use a group name in additon
  to a group id. As this capability has been requested three times, I'd like to add
  this patch to Lenny. The patch has been rewiewed and included by upstream:

Index: agent/snmpd.c
===================================================================
- --- net-snmp-5.4.1.orig/agent/snmpd.c	(Revision 17157)
+++ net-snmp-5.4.1/agent/snmpd.c	(Revision 17158)
@@ -574,8 +574,26 @@
 #if HAVE_UNISTD_H
         case 'g':
             if (optarg != NULL) {
+                char           *ecp;
+                int             gid;
+
+                gid = strtoul(optarg, &ecp, 10);
+                if (*ecp) {
+#if HAVE_GETPWNAM && HAVE_PWD_H
+                    struct group  *info;
+                    info = getgrnam(optarg);
+                    if (info) {
+                        gid = info->gr_gid;
+                    } else {
+#endif
+                        fprintf(stderr, "Bad group id: %s\n", optarg);
+                        exit(1);
+#if HAVE_GETPWNAM && HAVE_PWD_H
+                    }
+#endif
+                }
                 netsnmp_ds_set_int(NETSNMP_DS_APPLICATION_ID,
- -				   NETSNMP_DS_AGENT_GROUPID, atoi(optarg));
+				   NETSNMP_DS_AGENT_GROUPID, gid);
             } else {
                 usage(argv[0]);
             }


I have an additional patch pending in svn which fixes a regression introduced by a
fix for CVE-2008-2292, however I'd like to wait for the decission of these patches first.

Thanks,
Jochen

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEVAwUBSODuFcP9a9GOLSE6AQKYlAf/aXBWeU/+y/lsssmqSSunwyISH7hiIk4u
krUfmpWGjeLCJFyelFawajV9aJVi/5Zh1tggqOlD5wKMYJWITzS1vcLRJoPdBTyr
MqdWkYWEIUSbW0xmcLQCEdDnCkukpzo/7pZbnadRbGXDeRvQDXQyYS8TiKf9jmuv
kS7vJGc+sfzlCCKWjkQbit1c0TNTlwOSVfgoIosNWdJ/HgStXON+LTLL/GlapU0s
4BM2bp5fVsKASxRWdxchyj7s+jWTw2HQ5QWUr8UoMcZ5E/3Lzh4hFtqkDq420WUL
bsbicIFu5eeiYz9rtxxen90E6WZ26gCqp6cVyO+hBjRvDYJWAwcUmA==
=Pk/W
-----END PGP SIGNATURE-----