hi there, i got a problem with the greenbone-feed-sync / gvmd service.
syncing the feeds works well, tried it in two different ways, and it worked without problems / errors.
greenbone-feed-sync --type GVMD_DATA
greenbone-feed-sync --type SCAP
greenbone-feed-sync --type CERT
and
greenbone-nvt-sync
greenbone-certdata-sync
greenbone-scapdata-sync
BUT after the sync i’m gettings massiv errors / warning in the gvmd log (/opt/gvm/var/log/gvm/gvmd.log) file.
md main:MESSAGE:2020-12-06 08h43.27 utc:46982: Greenbone Vulnerability Manager version 20.08.0~git-3a1f0705-gvmd-20.08 (GIT revision 3a1f0705-gvmd-20.08) (DB revision 233)
util gpgme:MESSAGE:2020-12-06 08h43.36 utc:46989: Setting GnuPG dir to '/opt/gvm/var/lib/gvm/gvmd/gnupg'
util gpgme:MESSAGE:2020-12-06 08h43.36 utc:46989: Using OpenPGP engine version '2.2.19'
md manage: INFO:2020-12-06 08h44.02 utc:47106: update_scap: Updating data from feed
md manage: INFO:2020-12-06 08h44.02 utc:47106: Updating CPEs
md manage:WARNING:2020-12-06 08h44.03 utc:47106: split_xml_file: system failed with ret 32512, 1 (127), xml_split -s40Mb split.xml && head -n 2 split-00.xml > head.xml && echo '</cpe-list>' > tail.xml && for F in split-*.xml; do awk 'NR>3 {print last} {last=$0}' $F > body.xml && cat head.xml body.xml tail.xml > $F; done
md manage:WARNING:2020-12-06 08h44.03 utc:47106: split_xml_file: and failed to chdir back
md manage:WARNING:2020-12-06 08h44.03 utc:47106: update_scap_cpes: Failed to split CPEs, attempting with full file
this goes on and on and is always showing the same error, additionaly it also fills up the /tmp directory with specific tmp files from the gvmd service. the directory getting really big >30GB and at some point the hard disk of the virtual machine is full and the gvmd logs is producing even more errors.
it looks like this:
root@scan:/tmp# du -h
230M ./systemd-private-0abe87b366e74665b9e9481a70ddd0f3-gvmd.service-jeP1Rg/tmp/gvmd-split-xml-file-tPxI8L
230M ./systemd-private-0abe87b366e74665b9e9481a70ddd0f3-gvmd.service-jeP1Rg/tmp/gvmd-split-xml-file-im9Vv3
230M ./systemd-private-0abe87b366e74665b9e9481a70ddd0f3-gvmd.service-jeP1Rg/tmp/gvmd-split-xml-file-pK8sof
230M ./systemd-private-0abe87b366e74665b9e9481a70ddd0f3-gvmd.service-jeP1Rg/tmp/gvmd-split-xml-file-lOYHQw
230M ./systemd-private-0abe87b366e74665b9e9481a70ddd0f3-gvmd.service-jeP1Rg/tmp/gvmd-split-xml-file-4mEwsZ
230M ./systemd-private-0abe87b366e74665b9e9481a70ddd0f3-gvmd.service-jeP1Rg/tmp/gvmd-split-xml-file-6o8aZH
230M ./systemd-private-0abe87b366e74665b9e9481a70ddd0f3-gvmd.service-jeP1Rg/tmp/gvmd-split-xml-file-H7r9s6
230M ./systemd-private-0abe87b366e74665b9e9481a70ddd0f3-gvmd.service-jeP1Rg/tmp/gvmd-split-xml-file-skgqvi
230M ./systemd-private-0abe87b366e74665b9e9481a70ddd0f3-gvmd.service-jeP1Rg/tmp/gvmd-split-xml-file-6bEXD7
2.1G ./systemd-private-0abe87b366e74665b9e9481a70ddd0f3-gvmd.service-jeP1Rg/tmp
2.1G ./systemd-private-0abe87b366e74665b9e9481a70ddd0f3-gvmd.service-jeP1Rg
what i tried is to restart all related services, resyncing the feeds but without success. beside the errors in the gvmd services all services running without problems / errors.
systemctl restart gvmd
systemctl restart gsad
systemctl restart ospd-openvas
systemctl restart nginx
systemctl restart postgresql
systemctl restart redis-server
- is there a method to reset the postgresql feed database?
- how i can find the cause of the problem?
GVM versions
gsad: Greenbone Security Assistant 20.08.0~git-17a736a39-gsa-20.08
gvmd: Greenbone Vulnerability Manager 20.08.0~git-3a1f0705-gvmd-20.08
GIT revision 3a1f0705-gvmd-20.08
Manager DB revision 233
openvas-scanner: OpenVAS 20.8.0 gvm-libs 20.8.0~git-3597093-gvm-libs-20.08
gvm-libs:
Environment
Operating system: Ubuntu 20.04.1 LTS
Kernel: 5.4.0-56-generic #62-Ubuntu SMP Mon Nov 23 19:20:19 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux
Installation method / source: from source