Thursday, 19 December 2013

Cent OS Linux Releases and compatibility with SAVFL MR14

Place holder

For those that are keen to keep track of the latest releases, RH has a KB article that list out the latest kernel and release schedule.

I would potentially try to use this page to list out the testing I've done with SAVFL MR14 with these following kernels and include additional information under the SYMC Support column on the level of support and testing done when I've time.

Keys under the SYMC Supported column:
  • UO - UnOfficial Support, work out of the box
  • MRxx - Official Support by one of the Maintenance Release number denote by xx, work out of the box
  • CR - Unofficial support, Compilation Required for AP
It's a little weird that some of the SAVFL support listed when I correlate information on their System requirement is missing for a particular kernel. For example, MR12 and MR14 support RHEL 5U7 and is not listed for MR13. Probably due to documentation error.

Red Hat Enterprise Linux 6

Release/Update GA Date redhat-release Errata Date* Kernel Version SYMC Supported
RHEL 6 Update 6 TBA TBA TBA TBA
RHEL 6 Update 5 2013-11-21 2013-11-20 RHSA-2013:1645-2 2.6.32-431 TBA
RHEL 6 Update 4 2013-02-21 2013-02-21 RHSA-2013-0496 2.6.32-358 UO
RHEL 6 Update 3 2012-06-20 2012-06-19 RHSA-2012-0862 2.6.32-279 MR14
RHEL 6 Update 2 2011-12-06 2011-12-06 RHEA-2011:1743 2.6.32-220 MR14/13
RHEL 6 Update 1 2011-05-19 2011-05-19 RHEA-2011:0540 2.6.32-131.0.15 MR13/12/11
RHEL 6 GA 2010-11-09 - 2.6.32-71 MR13/11
Codename: Santiago (based on a mix of Fedora 12, Fedora 13, and several modifications)

Red Hat Enterprise Linux 5

Release/Update GA Date redhat-release Errata Date* Kernel Version SYMC Supported
RHEL 5 Update 11 TBA TBA TBA TBA
RHEL 5 Update 10 2013-10-01 2013-09-30 RHEA-2013-1311 2.6.18-371 CR
RHEL 5 Update 9 2013-01-07 2013-01-07 RHEA-2013-0021 2.6.18-348 TBA
RHEL 5 Update 8 2012-02-20 2012-02-20 RHEA-2012:0315 2.6.18-308 MR14
RHEL 5 Update 7 2011-07-21 2011-07-20 RHEA-2011:0977 2.6.18-274 MR14/12
RHEL 5 Update 6 2011-01-13 2011-01-12 RHEA-2011:0020 2.6.18-238 TBA
RHEL 5 Update 5 2010-03-30 2010-03-30 RHEA-2010:0207 2.6.18-194 MR10
RHEL 5 Update 4 2009-09-02 2009-09-02 RHEA-2009:1400 2.6.18-164 MR9
RHEL 5 Update 3 2009-01-20 2009-01-20 RHEA-2009:0133 2.6.18-128 MR8
RHEL 5 Update 2 2008-05-21 2008-05-20 RHEA-2008:0436 2.6.18-92 MR6
RHEL 5 Update 1 2007-11-07 2007-11-07 RHEA-2007:0854 2.6.18-53 MR4
RHEL 5 GA 2007-03-15 - 2.6.18-8 MR4
Codename: Tikanga (based on Fedora Core 6)
Posted @ No comments:
Labels: , , ,

Wednesday, 18 December 2013

RHEL Kernel 2.6.32-431

In my previous post, when compiling RHEL 6.5, there was a couple of warning, just realise that RHEL6.4 will also upgrade to 2.6.32-431.1.2.el6 and will need recompile the Auto Protect to work.

Just be aware.
Posted @ No comments:
Labels: , , , ,

Tuesday, 17 December 2013

How to compile Auto Protect module for Red Hat 6.5 and probably applies for others

17th Jul Update: Use SEPFL for RHEL6.5 or Kernel 2.6.431 support.

Referring to post previously on Red Hat release schedule, the following are the steps required to compile the AP module for the real time protection to work. Refer to instruction, on Symantec KB, "Guide to building AutoProtect kernel modules for Symantec AntiVirus for Linux 1.0".

 The functionality of SAVFL has not been extensively tested, use it at your own risk. I take no responsibility for shooting yourself in the foot.

Assumption

  1. SAVFL uses JAVA for LiveUpdate, the latest available JAVA is build version 7 update 45, and need to be install prior to installation of SAVFL.
  2. 32 bit libraries on x86_64 OS have to be installed for SAVFL to work, to install these libraries, execute the following command with root privileges:
    1. yum install glibc.i686 libgcc.i686 libX11.i686

Steps verified on following kernels:

  • 2.6.32-431.el6.i686 (Base)
  • 2.6.32-431.1.2.el6.i686.rpm (latest)
  • 2.6.32-431.el6.x86_64 (Base)
  • 2.6.32-431.1.2.el6. x86_64 (latest)

Building the modules

Note: The build will need to be done with root privileges and perquisite completed. This guide was created using SAVFL 1.0.14.
  1. In the same directory as ap-kernelmodule-1.0.9-13.tar.gz, uncompress the file
    tar xvzf ap-kernelmodule-1.0.14-13.tar.gz –C /tmp
  2. Change into the uncompressed directory
    cd /tmp/ap-kernelmodule-1.0.14-13/
  3. Run the build command
    ./build.sh
  4. After the build completes, you should see "Congratulations, build was successful!", if you do not see this please review the output of the build command for any error messages. If the build was successful, continue.
  5. Change into the directory with the newly built AutoProtect kernel modules
    cd bin.ira
  6. Move the newly built AutoProtect kernel modules into the autoprotect directory
    mv * /opt/Symantec/autoprotect/
  7. Restart the autoprotect and rtvscand services
    /etc/init.d/autoprotect restart
    /etc/init.d/rtvscand restart
  8. Check that AutoProtect is enabled
    /opt/Symantec/symantec_antivirus/sav info -a
  For those that are unable to compile on your own, I've made available the pre-compiled modules.

X86

x86_64 

Additional note

Need to find out if the error messages below will cause any issue.

[root@localhost ap-kernelmodule-1.0.14-13]# ./build.sh
Kernel release is not set, build the kernel modules for the current kernel release(2.6.32-431.1.2.el6.i686)
Kernel headers/makefiles directory is not set, use the default /usr/src/kernels/2.6.32-431.1.2.el6.i686
/tmp/ap-kernelmodule-1.0.14-13/symev /tmp/ap-kernelmodule-1.0.14-13
rm -f *.o *.ko *.mod.c .*.cmd modules.order Module.symvers* Module.markers Modules.symvers *.ko.unsigned Makefile.xen
rm -rf .tmp_versions* .build-*
/tmp/ap-kernelmodule-1.0.14-13
/tmp/ap-kernelmodule-1.0.14-13/symap /tmp/ap-kernelmodule-1.0.14-13
rm -f *.o *.ko *.mod.c .*.cmd modules.order Module.symvers* Module.markers Modules.symvers *.ko.unsigned Makefile.xen symap_test
rm -rf ../symev/.tmp_versions* .build-*
/tmp/ap-kernelmodule-1.0.14-13
/tmp/ap-kernelmodule-1.0.14-13/symev /tmp/ap-kernelmodule-1.0.14-13
make -C /usr/src/kernels/2.6.32-431.1.2.el6.i686 M=/tmp/ap-kernelmodule-1.0.14-13/symev MODVERDIR=/tmp/ap-kernelmodule-1.0.14-13/symev/../symev/.tmp_versions-custom-2.6.32-431.1.2.el6-i686 modules
make[1]: Entering directory `/usr/src/kernels/2.6.32-431.1.2.el6.i686'
  CC [M]  /tmp/ap-kernelmodule-1.0.14-13/symev/symev.o
/tmp/ap-kernelmodule-1.0.14-13/symev/symev.c: In function ‘symev_fname_event’:
/tmp/ap-kernelmodule-1.0.14-13/symev/symev.c:808: warning: initialization from incompatible pointer type
/tmp/ap-kernelmodule-1.0.14-13/symev/symev.c:828: warning: passing argument 1 of ‘putname’ from incompatible pointer type
include/linux/fs.h:2170: note: expected ‘struct filename *’ but argument is of type ‘char *’
/tmp/ap-kernelmodule-1.0.14-13/symev/symev.c:839: warning: passing argument 1 of ‘putname’ from incompatible pointer type
include/linux/fs.h:2170: note: expected ‘struct filename *’ but argument is of type ‘char *’
  CC [M]  /tmp/ap-kernelmodule-1.0.14-13/symev/syscalls.o
  CC [M]  /tmp/ap-kernelmodule-1.0.14-13/symev/fileops.o
  CC [M]  /tmp/ap-kernelmodule-1.0.14-13/symev/hnfs.o
  CC [M]  /tmp/ap-kernelmodule-1.0.14-13/symev/utils.o
  LD [M]  /tmp/ap-kernelmodule-1.0.14-13/symev/symev-custom-2.6.32-431.1.2.el6-i686.o
  Building modules, stage 2.
  MODPOST 1 modules
  CC      /tmp/ap-kernelmodule-1.0.14-13/symev/symev-custom-2.6.32-431.1.2.el6-i686.mod.o
  LD [M]  /tmp/ap-kernelmodule-1.0.14-13/symev/symev-custom-2.6.32-431.1.2.el6-i686.ko.unsigned
  NO SIGN [M] /tmp/ap-kernelmodule-1.0.14-13/symev/symev-custom-2.6.32-431.1.2.el6-i686.ko
make[1]: Leaving directory `/usr/src/kernels/2.6.32-431.1.2.el6.i686'
cp symev-custom-2.6.32-431.1.2.el6-i686.ko ../bin.ira/symev-custom-2.6.32-431.1.2.el6-i686.ko
cp /tmp/ap-kernelmodule-1.0.14-13/symev/Module.symvers Module.symvers-custom-2.6.32-431.1.2.el6-i686
/tmp/ap-kernelmodule-1.0.14-13
/tmp/ap-kernelmodule-1.0.14-13/symap /tmp/ap-kernelmodule-1.0.14-13
cp ../symev/Module.symvers-custom-2.6.32-431.1.2.el6-i686 Module.symvers
make -C /usr/src/kernels/2.6.32-431.1.2.el6.i686 M=/tmp/ap-kernelmodule-1.0.14-13/symap MODVERDIR=/tmp/ap-kernelmodule-1.0.14-13/symap/../symev/.tmp_versions-custom-2.6.32-431.1.2.el6-i686 modules
make[1]: Entering directory `/usr/src/kernels/2.6.32-431.1.2.el6.i686'
  CC [M]  /tmp/ap-kernelmodule-1.0.14-13/symap/linuxmod.o
  LD [M]  /tmp/ap-kernelmodule-1.0.14-13/symap/symap-custom-2.6.32-431.1.2.el6-i686.o
  Building modules, stage 2.
  MODPOST 1 modules
  CC      /tmp/ap-kernelmodule-1.0.14-13/symap/symap-custom-2.6.32-431.1.2.el6-i686.mod.o
  LD [M]  /tmp/ap-kernelmodule-1.0.14-13/symap/symap-custom-2.6.32-431.1.2.el6-i686.ko.unsigned
  NO SIGN [M] /tmp/ap-kernelmodule-1.0.14-13/symap/symap-custom-2.6.32-431.1.2.el6-i686.ko
make[1]: Leaving directory `/usr/src/kernels/2.6.32-431.1.2.el6.i686'
cp symap-custom-2.6.32-431.1.2.el6-i686.ko ../bin.ira/symap-custom-2.6.32-431.1.2.el6-i686.ko
/tmp/ap-kernelmodule-1.0.14-13

Congratulations, build was successful! 
Posted @ No comments:
Labels: , ,

Wednesday, 4 December 2013

Red Hat Enterprise Linux Releases and compatibility with SAVFL MR14

For those that are keen to keep track of the latest releases, RH has a KB article that list out the latest kernel and release schedule.

I would potentially try to use this page to list out the testing I've done with SAVFL MR14 with these following kernels and include additional information under the SYMC Support column on the level of support and testing done when I've time.

Keys under the SYMC Supported column:
  • UO - UnOfficial Support, work out of the box
  • MRxx - Official Support by one of the Maintenance Release number denote by xx, work out of the box
  • CR - Unofficial support, Compilation Required for AP
It's a little weird that some of the SAVFL support listed when I correlate information on their System requirement is missing for a particular kernel. For example, MR12 and MR14 support RHEL 5U7 and is not listed for MR13. Probably due to documentation error.

Red Hat Enterprise Linux 6

Release/Update GA Date redhat-release Errata Date* Kernel Version SYMC Supported
RHEL 6 Update 6 TBA TBA TBA TBA
RHEL 6 Update 5 2013-11-21 2013-11-20 RHSA-2013:1645-2 2.6.32-431 CR
RHEL 6 Update 4 2013-02-21 2013-02-21 RHSA-2013-0496 2.6.32-358 UO
RHEL 6 Update 3 2012-06-20 2012-06-19 RHSA-2012-0862 2.6.32-279 MR14
RHEL 6 Update 2 2011-12-06 2011-12-06 RHEA-2011:1743 2.6.32-220 MR14/13
RHEL 6 Update 1 2011-05-19 2011-05-19 RHEA-2011:0540 2.6.32-131.0.15 MR13/12/11
RHEL 6 GA 2010-11-09 - 2.6.32-71 MR13/11
Codename: Santiago (based on a mix of Fedora 12, Fedora 13, and several modifications)

Red Hat Enterprise Linux 5

Release/Update GA Date redhat-release Errata Date* Kernel Version SYMC Supported
RHEL 5 Update 11 TBA TBA TBA TBA
RHEL 5 Update 10 2013-10-01 2013-09-30 RHEA-2013-1311 2.6.18-371 UO
RHEL 5 Update 9 2013-01-07 2013-01-07 RHEA-2013-0021 2.6.18-348 TBA
RHEL 5 Update 8 2012-02-20 2012-02-20 RHEA-2012:0315 2.6.18-308 MR14
RHEL 5 Update 7 2011-07-21 2011-07-20 RHEA-2011:0977 2.6.18-274 MR14/12
RHEL 5 Update 6 2011-01-13 2011-01-12 RHEA-2011:0020 2.6.18-238 TBA
RHEL 5 Update 5 2010-03-30 2010-03-30 RHEA-2010:0207 2.6.18-194 MR10
RHEL 5 Update 4 2009-09-02 2009-09-02 RHEA-2009:1400 2.6.18-164 MR9
RHEL 5 Update 3 2009-01-20 2009-01-20 RHEA-2009:0133 2.6.18-128 MR8
RHEL 5 Update 2 2008-05-21 2008-05-20 RHEA-2008:0436 2.6.18-92 MR6
RHEL 5 Update 1 2007-11-07 2007-11-07 RHEA-2007:0854 2.6.18-53 MR4
RHEL 5 GA 2007-03-15 - 2.6.18-8 MR4
Codename: Tikanga (based on Fedora Core 6)
Posted @ No comments:
Labels: , ,

Tuesday, 3 December 2013

System Requirement for SAVFL

This is the confusing part! There's a combination of both distribution and kernel in order to get the Auto Protect (AP) portion of SAVFL to work. Even though a distribution is listed below (e.g. RH 6.0 ES), it doesn't mean that the latest kernel will work out of the box. You can refer to the list of previous maintenance release of SAVFL, http://www.symantec.com/docs/TECH101598 for the corresponding distribution and kernels.

Supported Linux distribution
Symantec AntiVirus MR14, supports the following Linux distributions:
  • Debian 6.0 Squeeze, 5.0 Lenny, 4.0 Etch
  • Fedora 17, 16, 15, 13, 12, 10
  • Novell - Linux Desktop 9 (NLD9)
  • OES2 SP1, SP2, SP3 / OES11
  • Oracle Linux 6, 5
  • Red Hat versions 6.0 ES, 5.0 ES, 4.0 ES, 3.0 ES
  • Red Hat versions 5.0 AS, 4.0 AS
  • Red Hat versions 4.0 Desktop
  • Red Hat Enterprise Linux 4.0 ES, 3.0 ES
  • Red Hat Linux AS 3
  • SuSE Linux Enterprise Desktop 11, 10
  • SuSE Linux Enterprise Server 11, 10, 9
  • Ubuntu 12.04, 11.10, 11.04, 10.04, 9.10, 8.04
Supported Linux kernel versions
In the following listings, please be aware that as kernel support is added to new versions of SAV for Linux, some kernels are moved to the "legacy" (unsupported) list. For example, all kernel versions that are supported in SAV for Linux 1.0 MR8 are not necessarily supported in MR12.

WARNING: Auto-Protect functionality is available only on supported kernels.
The Java Runtime Environment (JRE) 1.4 or higher must be installed on your Linux computers to use the user interface. JRE is also required to run Java LiveUpdate.

Symantec AntiVirus for Linux 1.0 Maintenance Release 14 provides support for these additional distributions:

Operating System Kernel Version and Configuration Update and Patch
Red Hat versions 5.0 ES 2.6.18-274.18.1.el5 RHEL5U7
Red Hat versions 5.0 ES 2.6.18-274.18.1.el5PAE RHEL5U7
Red Hat versions 5.0 ES 2.6.18-274.18.1.el5xen RHEL5U7
Red Hat versions 5.0 ES 2.6.18-308.4.1.el5 RHEL5U8
Red Hat versions 5.0 ES 2.6.18-308.4.1.el5PAE RHEL5U8
Red Hat versions 5.0 ES 2.6.18-308.4.1.el5xen RHEL5U8
Red Hat versions 5.0 ES 2.6.18-274.18.1.el5 RHEL5U7 (EM64T/AMD64)
Red Hat versions 5.0 ES 2.6.18-274.18.1.el5xen RHEL5U7 (EM64T/AMD64)
Red Hat versions 5.0 ES 2.6.18-308.4.1.el5 RHEL5U8 (EM64T/AMD64)
Red Hat versions 5.0 ES 2.6.18-308.4.1.el5xen RHEL5U8 (EM64T/AMD64)
Red Hat versions 6.0 ES 2.6.32-220.13.1.el6.i686 RHEL6U2
Red Hat versions 6.0 ES 2.6.32-279.el6.i686 RHEL6U3
Red Hat versions 6.0 ES 2.6.32-220.13.1.el6.x86_64 RHEL6U2 (EM64T/AMD64)
Red Hat versions 6.0 ES 2.6.32-279.el6.x86_64 RHEL6U3 (EM64T/AMD64)
Fedora 3.4.2-1.fc16.i686 Fedora 16
Fedora 3.4.2-1.fc16.i686.PAE Fedora 16
Fedora 3.4.4-3.fc17.i686 Fedora 17
Fedora 3.4.4-3.fc17.i686.PAE Fedora 17
Fedora 3.4.2-1.fc16.x86_64 Fedora 16 (EM64T/AMD64)
Fedora 3.4.4-3.fc17.x86_64 Fedora 17 (EM64T/AMD64)
SuSE Linux Enterprise Server 10 2.6.16.60-0.93.1-default SLES10SP4 
SuSE Linux Enterprise Server 10 2.6.16.60-0.93.1-smp SLES10SP4 
SuSE Linux Enterprise Server 10 2.6.16.60-0.93.1-bigsmp SLES10SP4 
SuSE Linux Enterprise Server 10 2.6.16.60-0.93.1-default SLES10SP4 (EM64T/AMD64)
SuSE Linux Enterprise Server 10 2.6.16.60-0.93.1-smp SLES10SP4 (EM64T/AMD64)
SuSE Linux Enterprise Server 11 2.6.32.59-0.3.1-default SLES11SP1
SuSE Linux Enterprise Server 11 2.6.32.59-0.3.1-smp SLES11SP1
SuSE Linux Enterprise Server 11 2.6.32.59-0.3.1-bigsmp SLES11SP1
SuSE Linux Enterprise Server 11 3.0.26-0.7-default SLES11SP2
SuSE Linux Enterprise Server 11 3.0.26-0.7-pae SLES11SP2
SuSE Linux Enterprise Server 11 3.0.26-0.7-xen SLES11SP2
SuSE Linux Enterprise Server 11 2.6.32.59-0.3.1-default SLES11SP1 (EM64T/AMD64)
SuSE Linux Enterprise Server 11 2.6.32.59-0.3.1-xen SLES11SP1 (EM64T/AMD64)
SuSE Linux Enterprise Server 11 3.0.26-0.7-default SLES11SP2 (EM64T/AMD64)
SuSE Linux Enterprise Server 11 3.0.26-0.7-xen SLES11SP2 (EM64T/AMD64)
SuSE Linux Enterprise Desktop 10 2.6.16.60-0.93.1-default SLED10SP4
SuSE Linux Enterprise Desktop 10 2.6.16.60-0.93.1-smp SLED10SP4
SuSE Linux Enterprise Desktop 10 2.6.16.60-0.93.1-bigsmp SLED10SP4
SuSE Linux Enterprise Desktop 10 2.6.16.60-0.93.1-default SLED10SP4 (EM64T/AMD64)
SuSE Linux Enterprise Desktop 10 2.6.16.60-0.93.1-smp SLED10SP4 (EM64T/AMD64)
SuSE Linux Enterprise Desktop 11 2.6.32.59-0.3.1-default SLED11SP1
SuSE Linux Enterprise Desktop 11 2.6.32.59-0.3.1-pae SLED11SP1
SuSE Linux Enterprise Desktop 11 2.6.32.59-0.3.1-xen SLED11SP1
SuSE Linux Enterprise Desktop 11 3.0.26-0.7-default SLED11SP2
SuSE Linux Enterprise Desktop 11 3.0.26-0.7-pae SLED11SP2
SuSE Linux Enterprise Desktop 11 3.0.26-0.7-xen SLED11SP2
SuSE Linux Enterprise Desktop 11 2.6.32.59-0.3.1-default SLED11SP1 (EM64T/AMD64)
SuSE Linux Enterprise Desktop 11 2.6.32.59-0.3.1-xen SLED11SP1 (EM64T/AMD64)
SuSE Linux Enterprise Desktop 11 3.0.26-0.7-default SLED11SP2 (EM64T/AMD64)
SuSE Linux Enterprise Desktop 11 3.0.26-0.7-xen SLED11SP2 (EM64T/AMD64)
Ubuntu 3.0.0-19-server Ubuntu11.10 Server (EM64T/AMD64)
Ubuntu 3.0.0-19-generic Ubuntu11.10 Desktop (EM64T/AMD64)
Ubuntu 3.2.0-24-generic Ubuntu12.04 Server (EM64T/AMD64)
Ubuntu 3.2.0-24-generic Ubuntu12.04 Desktop (EM64T/AMD64)
OES11 2.6.32.59-0.3.1-default OES11 + SLES11SP1 (EM64T/AMD64)
OES11 2.6.32.59-0.3.1-xen OES11 + SLES11SP1 (EM64T/AMD64)
OES11 3.0.26-0.7-default OES11SP1 + SLES11SP2 (EM64T/AMD64)
OES11 3.0.26-0.7-xen OES11SP1 + SLES11SP2 (EM64T/AMD64)
Oracle Linux 2.6.32-300.27.1.el5uek Oracle Linux 5U8 (EM64T/AMD64)
Oracle Linux 2.6.18-308.4.1.0.1.el5 Oracle Linux 5U8 (EM64T/AMD64)
Oracle Linux 2.6.39-200.24.1.el6uek.x86_64 Oracle Linux 6U2 (EM64T/AMD64)


Posted @ 1 comment:
Labels: , ,
Subscribe to: Posts (Atom)