Failed to update virus definitions using offline updater on iCSP 5.4.x after OS restore
search cancel

Failed to update virus definitions using offline updater on iCSP 5.4.x after OS restore

book

Article ID: 231106

calendar_today

Updated On:

Products

Industrial Control System Protection

Issue/Introduction

OS image restore was performed on iCSP 5.4.x scanner and after Stargate virus definitions cannot be updated using USB Offline Updater tool. 

Environment

Release : 5.4.x

Component : Offline Updater

Cause

  • Stargate Engine version compatibility
  • Modification to num.sh script required 

Resolution

There are two extra steps required after performing iCSP 5.4.x scanner OS restore to be able to use USB Offline Updater

!!! This procedure is for iCSP 5.4.x scanners only !!!

Step 1 Update Stargate Client 

  1. Login to F2 terminal (Alt+Ctrl+F2) on the station using ‘root’ as user and with station password

  2. Copy the stargate_1692790907349.bz2 file (attached) to the USB drive

  3. Plugin the USB stick to the scanner station.

  4. Run the command lsblk

  5. Mount the USB drive it should be detected as sdb or sdb1 

      mount /dev/sdb /mnt

     You can execute df -h to verify

     6. Copy stargate_1692790907349.bz2 to /root

     cd /mnt 

     cp stargate_1692790907349.bz2 /root

     7. Rename stargate_1692790907349.bz2 to stargate.bz2

     mv stargate_1692790907349.bz2 stargate.bz2

     8. Create backup of existing stargate directory 

     cd /root

     mkdir stargate_backup

     mv /opt/symantec/stargate /root/stargate_backup

     9. Extract the new stargate bootsrap

     cd root

     tar xvjf stargate.bz2

     10. Move stargate folder from /root/ /opt/symantec

     cd /root

     mv stargate /opt/symantec

    11. Verify ownership and permissions for stargate folder are not changed

    12. Reboot the station

    13. Once the station is rebooted, confirm stargate client version is 8.1.10.121

 

Step 2 Apply fix for num.sh script

    1. Backup existing num.sh script located under /opt/norman/nnp/bin/ and copy in safe location

     cp num.sh /root

    2. Edit num.sh script located under /opt/norman/nnp/bin/ and navigate to section  # Handle Stargate local definition file updates

    3. Add the three lines below:

        loginfo "Updating Stargate defs..."
        rm -rf /opt/symantec/stargate/digest/symcdata
        rm -rf /opt/symantec/stargate/digest/virusdefs

Updated section should have the following content:

############################################################################

# Handle Stargate local definition file updates
function stargate_local_update {
        local unpack_path="$1"
        local fallback_path="${unpack_path}/opt/symantec/stargate/digest/fallback"
        loginfo "Updating Stargate defs..."
        rm -rf /opt/symantec/stargate/digest/symcdata
        rm -rf /opt/symantec/stargate/digest/virusdefs
        rm -f /opt/symantec/stargate/digest/fallback/*
        cp -p ${fallback_path}/* /opt/symantec/stargate/digest/fallback/
}

############################################################################
    4. Save the num.sh and reboot the scanner

    5. Download the latest 5.4.x Offline Updater and verify if deployment of virus definitions via USB works as expected. 

 

Additional Information

Additional details of stargate_1692790907349.bz2 file:

MD5sum: 7690dc544dbc1469f448e833bed214a5

File Size: 607841189  Blocks: 1188360    IO Block: 4096

Attachments

stargate_1692790907349.bz2 get_app