From ebfbb133e997f4b25e40adc18136745eaf599b8c Mon Sep 17 00:00:00 2001
From: Ilya Etingof <etingof@gmail.com>
Date: Tue, 24 Sep 2019 09:48:00 +0200
Subject: Fix broken SNMPv3 authoritative engine ID discovery

Fixed a regression in SNMPv3 `msgFlag` initialization on
authoritative SNMP engine ID discovery. This bug causes secure
communication with peer SNMP engines to stall at SNMP engine ID
discovery procedure.
---
 CHANGES.txt                            | 6 ++++--
 pysnmp/proto/mpmod/rfc3412.py          | 2 +-
 pysnmp/proto/secmod/rfc3414/service.py | 2 +-
 3 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/CHANGES.txt b/CHANGES.txt
index 9e529548..0a950869 100644
--- a/CHANGES.txt
+++ b/CHANGES.txt
@@ -99,10 +99,12 @@ Revision 5.0.0, released 2019-09-XX
   * Global constants turned UPPER_CASED
   * Long lines wrapped by more or less 80 chars
 
-Revision 4.4.12, released 2019-08-XX
+Revision 4.4.12, released 2019-09-XX
 ------------------------------------
 
-No changes yet
+- Fixed broken SNMPv3 `msgFlag` initialization on authoritative SNMP
+  engine ID discovery. This bug causes secure communication with peer
+  SNMP engines to stall at SNMP engine ID discovery procedure.
 
 Revision 4.4.11, released 2019-08-10
 ------------------------------------
diff --git a/pysnmp/proto/mpmod/rfc3412.py b/pysnmp/proto/mpmod/rfc3412.py
index 2062bf0e..ce933a30 100644
--- a/pysnmp/proto/mpmod/rfc3412.py
+++ b/pysnmp/proto/mpmod/rfc3412.py
@@ -1,7 +1,7 @@
 #
 # This file is part of pysnmp software.
 #
-# Copyright (c) 2005-2016, Ilya Etingof <ilya@glas.net>
+# Copyright (c) 2005-2019, Ilya Etingof <etingof@gmail.com>
 # License: http://snmplabs.com/pysnmp/license.html
 #
 import sys
diff --git a/pysnmp/proto/secmod/rfc3414/service.py b/pysnmp/proto/secmod/rfc3414/service.py
index de0330c9..bc28c4a1 100644
--- a/pysnmp/proto/secmod/rfc3414/service.py
+++ b/pysnmp/proto/secmod/rfc3414/service.py
@@ -482,7 +482,7 @@ class SnmpUSMSecurityModel(AbstractSecurityModel):
 
             # Clear possible auth&priv flags
             headerData.setComponentByPosition(
-                2, univ.OctetString(hexValue='00'), verifyConstraints=False,
+                2, univ.OctetString(hexValue='04'), verifyConstraints=False,
                 matchTags=False, matchConstraints=False
             )
 
-- 
cgit v1.2.1