issue w/ flrtvc download/install

ansible-aix / ansible-power-aix

Developer contributions for Ansible Automation on Power

GNU General Public License v3.0

3 stars 1 forks source link

issue w/ flrtvc download/install #5

Open robinvy opened 4 years ago

robinvy commented 4 years ago

Review flrtvc module for defects in download/install action

pbfinley1911 commented 4 years ago

Background:

At AIX level 7.2 TL3 SP2, the flrtvc module displays a list of vulnerabilities, but none of the reported fixes are downloaded or installed.

I noticed that if I update the system to 7.2 TL3 SP4, the downloads occur and emgr is able to apply the interim fixes.

robinvy commented 4 years ago

Reinstalled quimby01 to 7.2.3.2, but missing ssh and Python after installation.

robinvy commented 4 years ago

7.2.3.4 results:

Results of previous run of the playbook demo_flrtvc.yml against 7.2.3.4 are into isotopes12: /home/vrobin/ansible-power-aix/runs/flrtvc.out.1

Other issues: After reinstallation with # nim -o bos_inst -a source=mksysb -a group=basic_res_grp quimby01 I had to create /var/adm/ansible as the playbook fails. Then I got the error with missing wget, so I added a check in the module. And I installed wget with yum.
7.2.3.2 results: Results of last run of the playbook demo_flrtvc.yml against 7.2.3.2 are into isotopes12: /home/vrobin/ansible-power-aix/runs/flrtvc.out.2 and logs are in quimby01: /var/adm/ansible/flrtvc_debug.log

Need to look in detail what is happening.

pbfinley1911 commented 4 years ago

Check to make sure the module and playbook (for demo_flrtvc) are up to date with the versions in Githut (ansible-power-aix). I think the output directory creation is already in the module.

robinvy commented 4 years ago

ok, I'll check.

Note that flrtvc.ksh scipt is returning 2 in some cases: Vulnerabities with some fixes required On quimby01 (7200-03-02-1845) and quimby02 (7200-01-00-0000) when running the following command, it returns 2, on quimby03 (7200-03-04-1938) it returns 0: :>LC_ALL=C /usr/bin/flrtvc.ksh -e /usr/sys/inst.images/work/emgr.txt -l /usr/sys/inst.images/work/lslpp.txt -t sec -v > /vro_flrtvc.out.2 2> /vro_flrtvc.err.2; echo "returns $?" returns 0

In flrtvc.ksh, parseAPARFile() exits 2 with the comment: # Vulnerabities with some fixes required.

robinvy commented 4 years ago

In fact the flrtvc.ksh script has been changed, it's now at version 0.8.1. The nim_flrtvc.py (and so flrtvc.py) module was written against version 0.7.3 The main change is that it returns 2 when it succeeds with vulnerabilities found and some fixes required. I pushed a quick fix of flrtvc.py on https://github.com/ansible-aix/ansible-power-aix

I will update the nim_flrtvc.py soon.