[Openvas-discuss] OpenVAS 5 / GSA on Fedora 16

Reindl Harald h.reindl at thelounge.net
Mon Apr 2 15:54:00 UTC 2012 

may "Failed to gnutls_bye: Error in the push function" be the
root cause of the problem?

something seems borked in gnutls of Fedora 16, libmicrohttpd is even
built without tests since a long time and not rebuilt for the
last year caused by failing build with autotests, the openvas
packages itself under Fedora seems to be rebuilt several times
with and without gnutls patches - that all is frustrating

that is why i start GSA without currently

is there any way to let the services on the machine communicate without
gnutls? all is running on localhost, there is no need for encryption
while i generally do not understand what gnutls is supposed to do
the well tested openssl can not

[root at openvas:/var/log/openvas]$ cat openvasmd.log
lib  serv:WARNING:2012-04-02 15h45.58 utc:3504: openvas_server_new: failed to set credentials key file
lib  serv:WARNING:2012-04-02 15h45.58 utc:3504: openvas_server_new:   cert file: /var/lib/openvas/CA/clientcert.pem
lib  serv:WARNING:2012-04-02 15h45.58 utc:3504: openvas_server_new:   key file :
/var/lib/openvas/private/CA/clientkey.pem
lib  serv:WARNING:2012-04-02 15h45.58 utc:3504:    Failed to gnutls_bye: Error in the push function.

http://lists.wald.intevation.org/pipermail/openvas-discuss/2011-November/003613.html
https://gnunet.org/bugs/view.php?id=1619
http://www.linux-archive.org/development-discussions-related-fedora-devel-lists-fedoraproject-org/649903-libmicrohttpd-gnutls-openvas.html

Am 02.04.2012 17:00, schrieb Reindl Harald:
> OK, i was able to patch "CMakeLists.txt" by remove "-Werror"
> 
> but GSA says now "Login failed. OMP service is down"
> which i do not understand because AFAIk all services
> are running with proper parameters
> 
> what is going on here?
> __________________________
> 
> greenbone-security-assistant.service - Greenbone Security Assistant
>           Loaded: loaded (/etc/systemd/system/greenbone-security-assistant.service; enabled)
>           Active: active (running) since Mon, 02 Apr 2012 16:55:30 +0200; 51s ago
>          Process: 829 ExecStart=/usr/sbin/gsad --port=80 --http-only --alisten=127.0.0.1 --aport=9393
> --mlisten=127.0.0.1 --mport=9390 --timeout=180 (code=exited, status=0/SUCCESS)
>         Main PID: 830 (gsad)
>           CGroup: name=systemd:/system/greenbone-security-assistant.service
>                   └ 830 /usr/sbin/gsad --port=80 --http-only --alisten=127.0.0.1 --aport=9393 --mlisten=127.0.0.1
> --mport=9390 --timeout=180
> 
> openvas-administrator.service - OpenVAS Administrator
>           Loaded: loaded (/etc/systemd/system/openvas-administrator.service; enabled)
>           Active: active (running) since Mon, 02 Apr 2012 16:55:30 +0200; 52s ago
>          Process: 827 ExecStart=/usr/sbin/openvasad --port=9393 --users-dir=/var/lib/openvas/users
> --scanner-config-file=/etc/openvas/openvassd.conf --sync-script=/usr/sbin/openvas-nvt-sync (code=exited,
> status=0/SUCCESS)
>         Main PID: 828 (openvasad)
>           CGroup: name=systemd:/system/openvas-administrator.service
>                   └ 828 /usr/sbin/openvasad --port=9393 --users-dir=/var/lib/openvas/users
> --scanner-config-file=/etc/openvas/openvassd.conf --sync-script=/usr/sbin/openvas-nvt-sync
> 
> openvas-manager.service - OpenVAS Manager
>           Loaded: loaded (/etc/systemd/system/openvas-manager.service; enabled)
>           Active: active (running) since Mon, 02 Apr 2012 16:55:30 +0200; 52s ago
>          Process: 825 ExecStart=/usr/sbin/openvasmd --port=9390 --slisten=127.0.0.1 --sport=9391 (code=exited,
> status=0/SUCCESS)
>         Main PID: 826 (openvasmd)
>           CGroup: name=systemd:/system/openvas-manager.service
>                   └ 826 /usr/sbin/openvasmd --port=9390 --slisten=127.0.0.1 --sport=9391
> 
> openvas-scanner.service - OpenVAS Scanner
>           Loaded: loaded (/etc/systemd/system/openvas-scanner.service; enabled)
>           Active: active (running) since Mon, 02 Apr 2012 16:55:30 +0200; 52s ago
>          Process: 734 ExecStart=/usr/sbin/openvassd --port=9391 --config-file=/etc/openvas/openvassd.conf
> (code=exited, status=0/SUCCESS)
>         Main PID: 824 (openvassd)
>           CGroup: name=systemd:/system/openvas-scanner.service
>                   └ 824 openvassd: waiting for incoming connections
> 
> 
> Am 02.04.2012 16:20, schrieb Reindl Harald:
>> i try to build openvas5 packages on Fedora 16
>> since OpenVAS4 / GSA does not work after dist-upgrade
>>
>> who in the world does set "-Werror=unused-but-set-variable" and
>> how can i get rid of this?
>>
>> Building C object src/CMakeFiles/manage.dir/lsc_user.c.o
>> cd /home/builduser/rpmbuild/BUILD/openvas-manager-3.0.0/src && /usr/bin/gcc  -DOPENVASMD_DATABASE_VERSION=56 -m64
>> -O3 -g -march=core2 -mtune=core2 -fopenmp -mmmx -msse2 -msse3 -msse4.1 -pipe -fno-delete-null-pointer-checks
>> -fstack-protector --param=ssp-buffer-size=4 -mfpmath=sse -D_FORTIFY_SOURCE=2 -fexceptions  -Wformat
>> -Wformat-security -O2 -D_FORTIFY_SOURCE=2 -fstack-protector -Wl,-z,relro -Wl,-z,now -Wall -Werror -D_BSD_SOURCE
>> -D_ISOC99_SOURCE -D_SVID_SOURCE -D_FILE_OFFSET_BITS=64 -g   -DOPENVASMD_VERSION=\"3.0.0\"
>> -DOPENVAS_OS_NAME=\"Linux-3.2.10-3.fc16.x86_64\" -DPREFIX=\"/usr\" -DSCAP_RES_DIR=\"/usr/share/openvas/scap\"
>> -DSCAP_DATA_DIR=\"/var/lib/openvas/scap-data\" -DOPENVAS_USERS_DIR=\"/var/lib/openvas/users/\"
>> -DSCANNERCERT=\"/var/lib/openvas/CA/servercert.pem\" -DSCANNERKEY=\"/var/lib/openvas/private/CA/serverkey.pem\"
>> -DCLIENTCERT=\"/var/lib/openvas/CA/clientcert.pem\" -DCLIENTKEY=\"/var/lib/openvas/private/CA/clientkey.pem\"
>> -DCACERT=\"/var/lib/openvas/CA/cacert.pem\" -DOPENVAS_LOG_DIR=\"/var/log/openvas\"
>> -DOPENVAS_STATE_DIR=\"/var/lib/openvas\" -DOPENVAS_PID_DIR=\"/var/run\" -DOPENVAS_SYSCONF_DIR=\"/etc/openvas\"
>> -DOPENVAS_DATA_DIR=\"/usr/share/openvas\" -DOPENVAS_NVT_DIR=\"/var/lib/openvas/plugins/\" -I/usr/include/openvas
>> -I/usr/include/glib-2.0 -I/usr/lib64/glib-2.0/include -I/usr/include/p11-kit-1 -I/usr/include/glib-2.0
>> -I/usr/lib64/glib-2.0/include -o CMakeFiles/manage.dir/lsc_user.c.o   -c
>> /home/builduser/rpmbuild/BUILD/openvas-manager-3.0.0/src/lsc_user.c
>> /home/builduser/rpmbuild/BUILD/openvas-manager-3.0.0/src/manage_sql.c: In function 'print_report_xml':
>> /home/builduser/rpmbuild/BUILD/openvas-manager-3.0.0/src/manage_sql.c:17762:28: error: variable 'report' set but
>> not used [-Werror=unused-but-set-variable]
>> cc1: all warnings being treated as errors
>> make[2]: *** [src/CMakeFiles/manage.dir/manage_sql.c.o] Error 1
>> make[2]: Leaving directory `/home/builduser/rpmbuild/BUILD/openvas-manager-3.0.0'
>> make[1]: *** [src/CMakeFiles/manage.dir/all] Error 2
>> make[1]: *** Waiting for unfinished jobs....

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 262 bytes
Desc: OpenPGP digital signature
URL: <http://lists.fedoraproject.org/pipermail/devel/attachments/20120402/c40be3e8/attachment.sig>

More information about the devel mailing list