You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
SNMP is based on BER (Basic Encoding Rules - reference) of ASN.1 (Abstract Syntax Notation One).
According to the specific of BER, differences of VarBindList packets with the former and the latter example BER format are follows.
a b b' b'
reproducer: 0x30 0x82 0x00 0x00
snmptrap: 0x30 0x00
a) identifier octets
b) length octets
b') subsequent octets of b).
c) contents octets
*In this case, it doesn't exist because VarBindList is "0".
d) end-of-contents octets
*In this case, it doesn't exist because it is only used in indefinite-length method.
In this case, the assumption is that snmptrapd failed to parse the header
because snmptrapd thinks that there was no contents octets before
it determined the value of subsequent octets(0) when it parsed the
long form VarBindList packet.
The text was updated successfully, but these errors were encountered:
Description of problem:
snmptrap which is send from specific equipment isn't logged.
According to the snmptrapd debug log, snmptrapd failed to parse snmptrap header.
Steps to Reproduce:
Actual results:
snmptrap is not logged by parse error.
Expected results:
snmptrap is logged
Original bug report with reproducer
https://bugzilla.redhat.com/show_bug.cgi?id=1912242
Code reference
net-snmp/snmplib/asn1.c
Line 329 in 83eb660
Investigation background:
According to the packet from reproducer, VarBindList contains following data(*1).
Snmptrapd equivalent to compare output from reproducer.
According to the packet, VarBindList has the following data(*2).
SNMP is based on BER (Basic Encoding Rules - reference) of ASN.1 (Abstract Syntax Notation One).
According to the specific of BER, differences of VarBindList packets with the former and the latter example BER format are follows.
In this case, the assumption is that snmptrapd failed to parse the header
because snmptrapd thinks that there was no contents octets before
it determined the value of subsequent octets(0) when it parsed the
long form VarBindList packet.
The text was updated successfully, but these errors were encountered: