On-demand scans on Linux systems do not complete if an inaccessible NFS share is encountered.

book

Article ID: 162332

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

When running an on-demand scan using the Endpoint Protection client on Linux, the scan terminates prematurely if an inaccessible NFS volume is encountered.

VPDebug logs will show information similar to the following:

11:49:31.576586[_0xb29d3b90 (nil)_]|FINDNODE: FindFirstNode: <Path to NFS volume>
11:49:31.592078[_0xb29d3b90 (nil)_]|FINDNODE: FindFirstFile failed: 0x20000000

Shortly after they will show the following indicating RTV Scan is exiting:

11:49:32.596967[_0xb29d3b90 (nil)_]|0xb29d3b90: Thread RTV Scan 00000005 terminating

Additionally, users may note that in /var/log/messages the number of files scanned is less than expected, depending on where the scan terminated.

Cause

The scan exits prematurely because the NFS volume is not accessible.
 

Resolution

This issue is fixed in Symantec Endpoint Protection 14.0.  For information on how to obtain the latest build of Symantec Endpoint Protection, see Download the latest version of Symantec Endpoint Protection.

To workaround this issue, exclude the path to the inaccessible NFS volume from the scan.  This will allow the scan to complete successfully. For information on how to configure such exclusions, refer to the following article: http://www.symantec.com/docs/TECH95274