1. Introduction 1.1. Project/Component Working Name: snmp-notify: SNMP Notification Daemon for Software Events 1.2. Name of Document Author/Supplier: Author: Robert Johnston 1.3. Date of This Document: 11/18/2009 1.5. Email Aliases: 1.5.1. Responsible Manager: sridhar.yedunuthula@sun.com 1.5.2. Responsible Engineer: robert.johnston@sun.com 1.5.4. Interest List: swfma@sun.com 4. Technical Description: 4.1. Details: This case introduces a new system daemon (snmp-notify) and a new SNMP MIB (SUN-SWEVENT-MIB.mib) snmp-notify is a small, lightweight daemon that is fully managed by the Service Management Facility (SMF). It uses the interfaces delivered in libfmevent to subscribe to both software and FMA problem lifecycle events. Upon receipt of an event, it produces an SNMP trap notification based on a set of notification preferences which are stored in the SMF service configuration repository. snmp-notify supports a single notification preference, which can be set per event class (and per service for SMF service transition (STN) events): name type descr ---- ---- ---- active boolean toggles SNMP notifications on/off For STN events, the preference is attached to the individual service instance. For all other software events and FMA events, the preferences are attached to the instance svc:/system/notify-params:default. A set of default notification preferences for FMA events will be delivered in the manifest for the notify-params service. Users will be able to set and query notification preferences using svccfg(1M). snmp-notify will generate one of two types of SNMP traps, based on the event class. For FMA events (list.* events), snmp-notify will generate the existing sunFmProblemTrap trap as defined in /etc/net-snmp/snmp/mibs/SUN-FM-MIB.mib. For software events (swevent.*), snmp-notify will generate a sunSweventTrap trap as defined in /etc/net-snmp/snmp/mibs/SUN-SWEVENT-MIB.mib. snmp-notify provides a superset of the functionality currently provded by the snmp-trapgen FM module (PSARC 2005/754) Thus this case also includes the removal of the snmp-trapgen module. SUN-SWEVENT-MIB.mib contains the definition of the SNMP trap that snmp-notify will generate in response to software events. The snmp-notify daemon and MIB will be delivered in the SUNWfmd and SUNWfmdr packages. This case has been approved by the FMA Portfolio committee. This case seeks a patch binding. 4.5. Interfaces: Interface Stability Binding --------------------------------------------------------------- service FMRI name Committed Patch SUN-SWEVENT-MIB Committed Patch 4.11. Security Impact: The daemon initially starts as uid/gid 0/0 in order to bind/create sysevent channels during initialization. After daemon initialization, the smtp-notify daemon will change its uid/gid to noaccess/noaccess. It will also reduce its privileges to the following minimal set: afsr# ppriv 103247 103247: /usr/lib/fm/notify/snmp-notify flags = PRIV_AWARE E: basic,file_dac_read I: basic,file_dac_read P: basic,file_dac_read L: basic,file_dac_read The case will introduce the following new authorization for management of the smtp-notify service: solaris.smf.manage.snmp-notify solaris.smf.value.snmp-notify This case also introduces the "Event Notification Agent Management" profile which will include the above authorizations as well as the new authorizations being added for the smtp-notify service. 5. Reference Documents: snmp-notify(1M) man page and SUN-SMF-MIB definition are available in the case directory. libfmevent PSARC case (2009/573) http://arc.opensolaris.org/caselog/PSARC/2009/573/ Software Events Notification Parameters CLI (2009/617) http://arc.opensolaris.org/caselog/PSARC/2009/617/ 6. Resources and Schedule: 6.4. Product Approval Committee requested information: 6.4.1. Consolidation or Component Name: OS/Net 6.5. ARC review type: Fasttrack 6.6. ARC Exposure: open