looks like there is an updates in the updates_testing repository.

cc oden which packaged it (and as there is no QA request)

CC: (none) => oe

ping

A new clamav version usually indicates a security flaw has been fixed. In this case it's unclear.

However, there's some changes that needs to be tested for any package that may link to the clamav libraries. So, someone has to test this and validate the proposed clamav 0.98 update.

Thanks for the explanation but it's still unclear to me if this proposed update is ready for QA testing or not. Your reply suggests it is waiting for testing but it is not yet assigned to QA so it does not show up in the list of updates waiting for testing by the QA team.

qateam, please validate the clamav 0.98 update candidate packages.

Deps on tommath is gone, it uses bundled code instead.

In mga3 it seems like only "c-icap-modules-extra" requires the libclamav.so.6 library which limits the testing procedure compared to like it was in Mandriva.

Proposed advisory text:

This is a maintenance and bugfix release that upgrades clamav to the latest 0.98 version which resolves various upstream bugs.

Package list:

clamav-milter-0.98-1.mga2.x86_64.rpm
lib64clamav-devel-0.98-1.mga2.x86_64.rpm
clamav-0.98-1.mga2.x86_64.rpm
clamav-db-0.98-1.mga2.noarch.rpm
lib64clamav6-0.98-1.mga2.x86_64.rpm
clamd-0.98-1.mga2.x86_64.rpm
clamav-0.98-1.mga2.i586.rpm
clamd-0.98-1.mga2.i586.rpm
clamav-milter-0.98-1.mga2.i586.rpm
libclamav6-0.98-1.mga2.i586.rpm
clamav-db-0.98-1.mga2.noarch.rpm
libclamav-devel-0.98-1.mga2.i586.rpm
clamav-0.98-1.mga2.src.rpm

clamav-milter-0.98-1.mga3.x86_64.rpm
clamav-0.98-1.mga3.x86_64.rpm
lib64clamav-devel-0.98-1.mga3.x86_64.rpm
lib64clamav6-0.98-1.mga3.x86_64.rpm
clamav-db-0.98-1.mga3.noarch.rpm
clamd-0.98-1.mga3.x86_64.rpm
clamav-milter-0.98-1.mga3.i586.rpm
clamd-0.98-1.mga3.i586.rpm
libclamav6-0.98-1.mga3.i586.rpm
clamav-0.98-1.mga3.i586.rpm
clamav-db-0.98-1.mga3.noarch.rpm
libclamav-devel-0.98-1.mga3.i586.rpm
clamav-0.98-1.mga3.src.rpm

Assignee: bugsquad => qa-bugs

Tried to update on mga2 i586 but failed. Here are the symptoms:

urpmi: called with: --searchmedia Testing clamav
urpmi: transaction on / (remove=0, install=0, upgrade=4)
perl: [RPM] libclamav6-0.98-1.mga2.i586 installed
perl: [RPM] clamav-db-0.98-1.mga2.noarch installed
perl: [RPM] clamav-0.98-1.mga2.i586 installed
systemd[1]: Reloading.
systemd[1]: freshclam.service: main process exited, code=exited, status=2
freshclam[9694]: Stopping Clam AntiVirus Update Daemon: [  OK  ]
systemd[1]: Unit freshclam.service entered failed state.
freshclam[9721]: Starting Clam AntiVirus Update Daemon: [  OK  ]
perl: [RPM] clamd-0.98-1.mga2.i586 installed
systemd[1]: Reloading.
systemd[1]: clamd.service: main process exited, code=killed, status=9
clamd[9766]: Stopping Clam AntiVirus Daemon: [FAILED]
systemd[1]: clamd.service: control process exited, code=exited status=1
systemd[1]: Unit clamd.service entered failed state.
clamd[9796]: Starting Clam AntiVirus Daemon: LibClamAV Warning: Detected duplicate databases /var/lib/clamav/main.cvd and /var/lib/clamav/main.cld, please manually remove one of them
clamd[9796]: [  OK  ]
systemd[1]: PID file /run/clamav/clamd.pid not readable (yet?) after start.
systemd[1]: clamd.service operation timed out. Terminating.
systemd[1]: Unit clamd.service entered failed state.

Apart from the main.{cvd,cld} problem it seems a /var is missing in /etc/rc.d/init.d/clamd and /etc/logrotate.d/clamd from the references to pidfile which causes problems. Could you please check this?

By the way, shouldn't this update be done for MGA3 too? I'm setting the version accordingly.

Version: 2 => 3
Whiteboard: (none) => MGA2TOO

Please try clamav-0.98-1.1.mga2 that was just submitted.

Testing complete mga3 64

Tested freshclam after starting clamd service and that clamscan found the eicar test file and clamav-milter service started ok.

Whiteboard: MGA2TOO => MGA2TOO mga3-64-ok

Testing complete mga3 32

Whiteboard: MGA2TOO mga3-64-ok => MGA2TOO mga3-64-ok mga3-32-ok

Testing mga2 64

It still times out restarting the services in %post.

systemd[1]: PID file /run/clamav/clamd.pid not readable (yet?) after start.

Ended up stopping it with ctrl-c

^Cwarning: %post(clamd-0.98-1.mga2.x86_64) scriptlet failed, signal 2

I see this in syslog
systemd[1]: PID file /run/clamav/clamd.pid not readable (yet?) after start.

the pid is not being created. Trying again and same with milter

^Cwarning: %post(clamav-milter-0.98-1.mga2.x86_64) scriptlet failed, signal 2

Nothing in syslog for this one

Probably ought to test for this in the mga3 one too, the services were stopped when I updated.

Whiteboard: MGA2TOO mga3-64-ok mga3-32-ok => MGA2TOO mga3-64-ok mga3-32-ok feedback

The above warning says clamd-0.98-1.mga2.x86_64. Shouldn't it be clamd-0.98-1.1.mga2? (Note 1.1.mga2 vs. 1.mga2) Are you sure you've used the latest packages?

Pretty sure, I'm tired though, please check to see if it happens for you too.

The mirror I use still has the 0.98-1 version, dated Sept 22 for both mga2 and mga3. Could it be that the submitted package has not reached the mirrors yet or have there been a mistake during submitting it to the Testing repos?

http://pkgsubmit.mageia.org/ shows
clamav-0.98-1.1.mga2	oden 
14 hours ago	2 
core/updates_testing	 uploaded 
6 minutes

Looks like it was only submitted to Mageia 2, not 3.

CC: (none) => davidwhodgins

Testing mga2 32

The 1.1.mga2 version reached my mirror so I tried to update again. This time it seems to be working, the only warning was about the main.cvd file coexisting with the main.cld. No such warning was issued for the daily.cvd file though as that is not created, only daily.cld exists after the update. Is it an error in the script of clamav-db? To make sure everything works correctly I'm waiting for a freshclam run and will start a scan but added mga2-32-ok flag now anyway. However, I removed other ok flags as those need to be re-tested according to the previous comment. Oden, please check the mga3 Testing repo.

Whiteboard: MGA2TOO mga3-64-ok mga3-32-ok feedback => MGA2TOO mga2-32-ok feedback

Problem solved, the hdd my local mirror uses had become full so it hadn't synced the newer build.

Re-testing.

Testing mga2 64

Started clamd, clamav-milter and freshclam services before updating.

Noticed this in syslog as the services are restarted during the update,as Zoltan mentioned

clamd[3683]: Stopping Clam AntiVirus Daemon: [  OK  ]
clamd[3712]: Starting Clam AntiVirus Daemon: LibClamAV Warning: Detected duplicate databases /var/lib/clamav/main.cvd and /var/lib/clamav/main.cld, please manually remove one of them
clamd[3712]: [  OK  ]


Also the same from freshclam

# freshclam
ClamAV update process started at Mon Oct  7 07:47:18 2013
main.cvd is up to date (version: 55, sigs: 2424225, f-level: 60, builder: neo)
daily.cvd is up to date (version: 17946, sigs: 406328, f-level: 63, builder: neo)
bytecode.cvd is up to date (version: 228, sigs: 43, f-level: 63, builder: neo)
[LibClamAV] Detected duplicate databases /var/lib/clamav/main.cvd and /var/lib/clamav/main.cld, please manually remove one of them

I've fixed the warning by manually moving main.cvd over main.cld. The postinstall script of clamav-db tries to keep the newest file but it only cares about cvd files ignoring cld files. Maybe it should also check cld files as suggested here:
http://lurker.clamav.net/message/20080708.170826.93792aff.en.html
Is this possible?

During the scan I started I've seen some errors like this:
LibClamAV Warning: fmap: map allocation failed
LibClamAV Error: CRITICAL: fmap() failed
that was not happening before but I don't know if this is caused by the updated clamav or by other packages that were updated before. Nevertheless, the scan finished correctly.

Awaiting your feedback on this still Oden please.

i586 Mageia3

Installed clamav from core; installed the eicar test file; ran freshclam, then clamscan which passed all files in home directory *except* eicar.

Updated all 5 relevant clam pkgs to 0.98-1.mga3; re-started the system.

# systemctl list-units | grep clam
clamav-milter.service     loaded active running       LSB: Startup script for the Clamav Milter Daemon
clamd.service             loaded active running       LSB: An AntiVirus Server
freshclam.service         loaded active running       LSB: Clam AntiVirus Database Update Daemon

# freshclam
ClamAV update process started at Mon Oct 14 13:19:50 2013
main.cvd is up to date (version: 55, sigs: 2424225, f-level: 60, builder: neo)
daily.cvd is up to date (version: 17960, sigs: 407057, f-level: 63, builder: guitar)
bytecode.cvd is up to date (version: 228, sigs: 43, f-level: 63, builder: neo)
[LibClamAV] Detected duplicate databases /var/lib/clamav/main.cvd and /var/lib/clamav/main.cld, please manually remove one of them

# clamscan
LibClamAV Warning: Detected duplicate databases /var/lib/clamav/main.cvd and /var/lib/clamav/main.cld, please manually remove one of them
OK'd all files except
/home/lewis/eicartest.txt: Eicar-Test-Signature FOUND

So this looks OK for i586 Mag3 *except* the problem of duplicate databases reported already by others. I suppose this should be sorted before releasing this update.

CC: (none) => lewyssmith

What happened to this update? It seems to have fallen through the cracks and forgotten. It does not show up in the QA page either as requested to be validated nor as waiting for feedback from the developer.

Mga3 Release still has 0.97.8-1.mga3 which is outdated and Testing has 0.98-1.mga3 which is older than the last Testing package from mga2 which was 0.98-1.1.mga2. Will this update be ever finished?

It has got a bit lost hasn't it. Mga2 is no longer maintained so issues there are irrelevant now. There is still the problem with duplicate databases in mga3 waiting input from Oden though.

Please try clamav-0.98-1.1.mga3

Further to comment 21 & comment 24.

Installed...
# rpm -qa | grep clamav
clamav-milter-0.98-1.1.mga3
clamav-db-0.98-1.1.mga3
libclamav6-0.98-1.1.mga3
clamav-0.98-1.1.mga3

Ran...
# freshclam
ClamAV update process started at Thu Dec 19 09:38:47 2013
Downloading main.cvd [100%]
main.cvd updated (version: 55, sigs: 2424225, f-level: 60, builder: neo)
daily.cld is up to date (version: 18259, sigs: 611289, f-level: 63, builder: neo)
bytecode.cld is up to date (version: 235, sigs: 44, f-level: 63, builder: dgoddard)
Database updated (3035558 signatures) from database.clamav.net (IP: 193.43.215.41)
WARNING: Clamd was NOT notified: Can't connect to clamd through /var/lib/clamav/clamd.socket
connect(): No such file or directory
[root@localhost lewis]#
i.e. *no* complaint about duplicate database.

Ran...
# clamscan...
which reported all files in home directory OK except:
/home/lewis/eicartest.txt: Eicar-Test-Signature FOUND
----------- SCAN SUMMARY -----------
Known viruses: 3030206
Engine version: 0.98
Scanned directories: 1
Scanned files: 18
Infected files: 1
Data scanned: 0.21 MB
Data read: 0.11 MB (ratio 1.93:1)
Time: 25.642 sec (0 m 25 s)
[root@localhost lewis]#
with *no* complaint about duplicate database.

For the clamd failure above (even though I had re-started the system):
# systemctl list-units | grep clam
clamav-milter.service     loaded active running       LSB: Startup script for the Clamav Milter Daemon
clamd.service             loaded failed failed        LSB: An AntiVirus Server
freshclam.service         loaded active running       LSB: Clam AntiVirus Database Update Daemon.
# systemctl start clamd
# systemctl list-units | grep clam
clamav-milter.service     loaded active running       LSB: Startup script for the Clamav Milter Daemon
clamd.service             loaded active running       LSB: An AntiVirus Server
freshclam.service         loaded active running       LSB: Clam AntiVirus Database Update Daemon.

So this seems sorted for 32-bit.

Whiteboard: (none) => MGA3-32-OK

In VirtualBox, M3, KDE, 32-bit

Package(s) under test:
clamav

install clamav

[root@localhost wilcal]# urpmi clamav
Package clamav-0.97.8-1.mga3.i586 is already installed

creates:
/var/lib/clamav/daily.cvd	 22.3MB 03/15/13
/var/lib/clamav/main.cvd	 29.3MB 12/30/12

run clamscan

[wilcal@localhost ~]$ clamscan -r -i
LibClamAV Warning: **************************************************
LibClamAV Warning: ***  The virus database is older than 7 days!  ***
LibClamAV Warning: ***   Please update it as soon as possible.    ***
LibClamAV Warning: **************************************************

----------- SCAN SUMMARY -----------
Known viruses: 1990521
Engine version: 0.97.8
Scanned directories: 425
Scanned files: 785
Infected files: 0
Data scanned: 206.05 MB
Data read: 281.91 MB (ratio 0.73:1)
Time: 18.663 sec (0 m 18 s)


run freshclam as root
Creates:
/var/lib/clamav/bytecode.cvd	 69.4KiB 12/19/13
/var/lib/clamav/daily.cvd	 14.8MiB 12/19/13
/var/lib/clamav/main.cvd	155.9MiB 12/19/13
/var/lib/clamav/mirros.dat	   312 B 12/19/13

run clamscan
[wilcal@localhost ~]$ clamscan -r -i

----------- SCAN SUMMARY -----------
Known viruses: 3030804
Engine version: 0.97.8
Scanned directories: 426
Scanned files: 780
Infected files: 0
Data scanned: 206.08 MB
Data read: 282.55 MB (ratio 0.73:1)
Time: 19.970 sec (0 m 19 s)

Running freshclam again does not change anything
clamscan runs fine 


install clamav from updates_testing

[root@localhost wilcal]# urpmi clamav
Package clamav-0.98-1.mga3.i586 is already installed

That creates:
/var/lib/clamav/bytecode.cvd	 69.4KiB 12/19/13
/var/lib/clamav/daily.cvd	 14.8MiB 12/19/13
/var/lib/clamav/main.cld	155.9MiB 12/19/13
/var/lib/clamav/main.cvd	 61.7MiB 09/20/13
/var/lib/clamav/mirros.dat	   312 B 12/19/13

run clamscan
[wilcal@localhost ~]$ clamscan -r -i
LibClamAV Warning: Detected duplicate databases /var/lib/clamav/main.cvd and /var/lib/clamav/main.cld,
please manually remove one of them
clamscan continued on and ran successfully.

I removed /var/lib/clamav/main.cvd

And ran clamscan again

[wilcal@localhost ~]$ clamscan -r -i

----------- SCAN SUMMARY -----------
Known viruses: 3030806
Engine version: 0.98
Scanned directories: 427
Scanned files: 781
Infected files: 0
Data scanned: 208.87 MB
Data read: 282.59 MB (ratio 0.74:1)
Time: 16.119 sec (0 m 16 s)

No duplicate databases reported


Test platform:
Intel Core i7-2600K Sandy Bridge 3.4GHz
GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo
GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB
RTL8111/8168B PCI Express 1Gbit Ethernet
DRAM 16GB (4 x 4GB)
VirtualBox 4.2.16-1.mga3.x86_64.rpm

CC: (none) => wilcal.int

Advisory uploaded.

Whiteboard: MGA3-32-OK => has_procedure advisory MGA3-32-OK

Having strange database issues with this mga3 64, sorry Oden.

Installed the release version and updated with freshclam. Tested with eicar file.

Updated with the clamd & clamav-milter services running. Restarted the services after updating but clamd will no longer start.

Noticed during the update too..
'Adding user clamav to group amavis'

installing clamav-db-0.98-1.1.mga3.noarch.rpm clamav-milter-0.98-1.1.mga3.x86_64.rpm lib64clamav6-0.98-1.1.mga3.x86_64.rpm clamav-0.98-1.1.mga3.x86_64.rpm clamd-0.98-1.1.mga3.x86_64.rpm from /var/cache/urpmi/rpms
Preparing...                     ###############################################
      1/5: lib64clamav6          ###############################################
      2/5: clamav-db             #########warning: /var/lib/clamav/daily.cvd created as /var/lib/clamav/daily.cvd.rpmnew
######################################
Adding user clamav to group amavis
      3/5: clamav                ###############################################
      4/5: clamd                 ###############################################
      5/5: clamav-milter         ###############################################

# service clamd restart
Restarting clamd (via systemctl):  Job for clamd.service failed. See 'systemctl status clamd.service' and 'journalctl -n' for details.
                                                                  [FAILED]
# systemctl -a status clamd.service
clamd.service - LSB: An AntiVirus Server
          Loaded: loaded (/etc/rc.d/init.d/clamd)
          Active: failed (Result: exit-code) since Fri, 2013-12-20 10:36:08 GMT; 14s ago
         Process: 13849 ExecStart=/etc/rc.d/init.d/clamd start (code=exited, status=1/FAILURE)
        Main PID: 13314 (code=exited, status=0/SUCCESS)
          CGroup: name=systemd:/system/clamd.service

/var/log/clamav/clamd.log shows..

+++ Started at Fri Dec 20 10:38:57 2013
clamd daemon 0.98 (OS: linux-gnu, ARCH: x86_64, CPU: x86_64)
Running as user clamav (UID 467, GID 467)
Log file size limited to 1048576 bytes.
Reading databases from /var/lib/clamav
Not loading PUA signatures.
Bytecode: Security mode set to "TrustSigned".
ERROR: Can't verify database integrity
Closing the main socket.


Freshclam also complains of duplicates again and a corrupted database..

# freshclam
ClamAV update process started at Fri Dec 20 10:41:00 2013
main.cvd is up to date (version: 55, sigs: 2424225, f-level: 60, builder: neo)
daily.cvd is up to date (version: 18263, sigs: 613212, f-level: 63, builder: neo)
bytecode.cld is up to date (version: 235, sigs: 44, f-level: 63, builder: dgoddard)
[LibClamAV] Detected duplicate databases /var/lib/clamav/daily.cld and /var/lib/clamav/daily.cvd. The /var/lib/clamav/daily.cld database is older and will not be loaded, you should manually remove it from the database directory.
ERROR: Corrupted database file /var/lib/clamav/main.cvd: Can't verify database integrity
Corrupted database file renamed to /var/lib/clamav/main.cvd.broken
Trying again in 5 secs...
ClamAV update process started at Fri Dec 20 10:41:06 2013
Downloading main.cvd [100%]
main.cvd updated (version: 55, sigs: 2424225, f-level: 60, builder: neo)
daily.cvd is up to date (version: 18263, sigs: 613212, f-level: 63, builder: neo)
bytecode.cld is up to date (version: 235, sigs: 44, f-level: 63, builder: dgoddard)
[LibClamAV] Detected duplicate databases /var/lib/clamav/daily.cld and /var/lib/clamav/daily.cvd. The /var/lib/clamav/daily.cld database is older and will not be loaded, you should manually remove it from the database directory.
Database updated (3037481 signatures) from database.clamav.net (IP: 81.91.100.173)
WARNING: Clamd was NOT notified: Can't connect to clamd through /var/lib/clamav/clamd.socket
connect(): No such file or directory


After running freshclam, which seems to straighten out the database, clamd starts..

# service clamd start
Starting clamd (via systemctl):                                   [  OK  ]

Whiteboard: has_procedure advisory MGA3-32-OK => feedback has_procedure advisory MGA3-32-OK

Package(s) under test:
clamav

install clamav

[root@localhost wilcal]# urpmi clamav
Package clamav-0.97.8-1.mga3.x86_64 is already installed

creates:
/var/lib/clamav/daily.cvd	 22.3MB 03/15/13
/var/lib/clamav/main.cvd	 29.3MB 12/30/12

run clamscan

[wilcal@localhost ~]$ clamscan -r -i
LibClamAV Warning: **************************************************
LibClamAV Warning: ***  The virus database is older than 7 days!  ***
LibClamAV Warning: ***   Please update it as soon as possible.    ***
LibClamAV Warning: **************************************************

----------- SCAN SUMMARY -----------
Known viruses: 1990521
Engine version: 0.97.8
Scanned directories: 419
Scanned files: 777
Infected files: 0
Data scanned: 254.31 MB
Data read: 280.14 MB (ratio 0.91:1)
Time: 22.708 sec (0 m 22 s)

run freshclam as root
Creates:
/var/lib/clamav/bytecode.cvd	 69.4KiB 12/20/13
/var/lib/clamav/daily.cvd	 14.8MiB 12/20/13
/var/lib/clamav/main.cvd	155.9MiB 12/20/13
/var/lib/clamav/mirros.dat	   312 B 12/20/13

run clamscan:

[wilcal@localhost ~]$ clamscan -r -i

----------- SCAN SUMMARY -----------
Known viruses: 3032484
Engine version: 0.97.8
Scanned directories: 419
Scanned files: 777
Infected files: 0
Data scanned: 254.29 MB
Data read: 280.59 MB (ratio 0.91:1)
Time: 21.715 sec (0 m 21 s)


install clamav from updates_testing


[root@localhost wilcal]# urpmi clamav
Package clamav-0.98-1.1.mga3.x86_64 is already installed

Running clamscan returned a main.cvd database corrupted message.

Rerunning freshclam created:

Creates:
/var/lib/clamav/bytecode.cvd	 69.4KiB 12/20/13
/var/lib/clamav/daily.cvd	 14.8MiB 12/20/13
/var/lib/clamav/main.cvd	 61.7MiB 12/20/13
/var/lib/clamav/main.cvd.broken	155.9MiB 12/20/13
/var/lib/clamav/mirros.dat	   312 B 12/20/13

run clamscan:

[wilcal@localhost ~]$ clamscan -r -i

----------- SCAN SUMMARY -----------
Known viruses: 3032486
Engine version: 0.98
Scanned directories: 419
Scanned files: 777
Infected files: 0
Data scanned: 257.77 MB
Data read: 280.17 MB (ratio 0.92:1)
Time: 20.183 sec (0 m 20 s)


Test platform:
Intel Core i7-2600K Sandy Bridge 3.4GHz
GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo
GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB
RTL8111/8168B PCI Express 1Gbit Ethernet
DRAM 16GB (4 x 4GB)
VirtualBox 4.2.16-1.mga3.x86_64.rpm

BTW, I filed another bug, bug #12085 and put an update into testing.
This should help to do both in one test run.

CC: (none) => thomas

Will this ever be fixed? Meanwhile 0.98.1 is out so I request an update of the update now...

The updates are in testing.
The QA folks are very busy working on the RC for mga4. They have been asking for help.
I wonder who changed the status to new.

Status: NEW => ASSIGNED

Thomas I've assigned the other bug back to you, please don't assign multiple bugs to us for one update, it becomes impossible to keep track. Could you please add the advisory/srpms/rpms from that bug to the update already being requested here.

This one is waiting on feedback to comment 28.

Zoltan this package obviously needs a maintainer, you could do that..
https://wiki.mageia.org/en/Becoming_a_Mageia_Packager

I installed the latest versions of the packages, 0.98-1.2. (x86_64)

The only error that I saw was the duplicate database error, but that is not new:

https://bugs.mageia.org/show_bug.cgi?id=3105#c18

http://lurker.clamav.net/message/20101007.202024.06ac06db.en.html

There is actaully a maintainer of this package

(In reply to claire robinson from comment #28)
> Having strange database issues with this mga3 64, sorry Oden.
> 
> Installed the release version and updated with freshclam. Tested with eicar
> file.
> 
> Updated with the clamd & clamav-milter services running. Restarted the
> services after updating but clamd will no longer start.
> 
> Noticed during the update too..
> 'Adding user clamav to group amavis'
> 
> installing clamav-db-0.98-1.1.mga3.noarch.rpm
> clamav-milter-0.98-1.1.mga3.x86_64.rpm lib64clamav6-0.98-1.1.mga3.x86_64.rpm
> clamav-0.98-1.1.mga3.x86_64.rpm clamd-0.98-1.1.mga3.x86_64.rpm from
> /var/cache/urpmi/rpms
> Preparing...                    
> ###############################################
>       1/5: lib64clamav6         
> ###############################################
>       2/5: clamav-db             #########warning: /var/lib/clamav/daily.cvd
> created as /var/lib/clamav/daily.cvd.rpmnew
> ######################################
> Adding user clamav to group amavis
>       3/5: clamav               
> ###############################################
>       4/5: clamd                
> ###############################################
>       5/5: clamav-milter        
> ###############################################
> 
> # service clamd restart
> Restarting clamd (via systemctl):  Job for clamd.service failed. See
> 'systemctl status clamd.service' and 'journalctl -n' for details.
>                                                                   [FAILED]
> # systemctl -a status clamd.service
> clamd.service - LSB: An AntiVirus Server
>           Loaded: loaded (/etc/rc.d/init.d/clamd)
>           Active: failed (Result: exit-code) since Fri, 2013-12-20 10:36:08
> GMT; 14s ago
>          Process: 13849 ExecStart=/etc/rc.d/init.d/clamd start (code=exited,
> status=1/FAILURE)
>         Main PID: 13314 (code=exited, status=0/SUCCESS)
>           CGroup: name=systemd:/system/clamd.service
> 
> /var/log/clamav/clamd.log shows..
> 
> +++ Started at Fri Dec 20 10:38:57 2013
> clamd daemon 0.98 (OS: linux-gnu, ARCH: x86_64, CPU: x86_64)
> Running as user clamav (UID 467, GID 467)
> Log file size limited to 1048576 bytes.
> Reading databases from /var/lib/clamav
> Not loading PUA signatures.
> Bytecode: Security mode set to "TrustSigned".
> ERROR: Can't verify database integrity
> Closing the main socket.
> 
> 
> Freshclam also complains of duplicates again and a corrupted database..
> 
> # freshclam
> ClamAV update process started at Fri Dec 20 10:41:00 2013
> main.cvd is up to date (version: 55, sigs: 2424225, f-level: 60, builder:
> neo)
> daily.cvd is up to date (version: 18263, sigs: 613212, f-level: 63, builder:
> neo)
> bytecode.cld is up to date (version: 235, sigs: 44, f-level: 63, builder:
> dgoddard)
> [LibClamAV] Detected duplicate databases /var/lib/clamav/daily.cld and
> /var/lib/clamav/daily.cvd. The /var/lib/clamav/daily.cld database is older
> and will not be loaded, you should manually remove it from the database
> directory.
> ERROR: Corrupted database file /var/lib/clamav/main.cvd: Can't verify
> database integrity
> Corrupted database file renamed to /var/lib/clamav/main.cvd.broken
> Trying again in 5 secs...
> ClamAV update process started at Fri Dec 20 10:41:06 2013
> Downloading main.cvd [100%]
> main.cvd updated (version: 55, sigs: 2424225, f-level: 60, builder: neo)
> daily.cvd is up to date (version: 18263, sigs: 613212, f-level: 63, builder:
> neo)
> bytecode.cld is up to date (version: 235, sigs: 44, f-level: 63, builder:
> dgoddard)
> [LibClamAV] Detected duplicate databases /var/lib/clamav/daily.cld and
> /var/lib/clamav/daily.cvd. The /var/lib/clamav/daily.cld database is older
> and will not be loaded, you should manually remove it from the database
> directory.
> Database updated (3037481 signatures) from database.clamav.net (IP:
> 81.91.100.173)
> WARNING: Clamd was NOT notified: Can't connect to clamd through
> /var/lib/clamav/clamd.socket
> connect(): No such file or directory
> 
> 
> After running freshclam, which seems to straighten out the database, clamd
> starts..
> 
> # service clamd start
> Starting clamd (via systemctl):                                   [  OK  ]

I don't see these problems:

# rpm -qa |grep clam
lib64clamav6-0.98-1.2.mga3
clamd-0.98-1.2.mga3
clamav-db-0.98-1.2.mga3
clamav-0.98-1.2.mga3

[root@vbox ~]# systemctl restart clamd.service
[root@vbox ~]# systemctl status clamd.service
clamd.service - LSB: An AntiVirus Server
          Loaded: loaded (/etc/rc.d/init.d/clamd)
          Active: active (running) since Thu, 2014-01-16 10:07:11 MST; 30s ago
         Process: 31303 ExecStop=/etc/rc.d/init.d/clamd stop (code=exited, status=0/SUCCESS)
         Process: 31402 ExecStart=/etc/rc.d/init.d/clamd start (code=exited, status=0/SUCCESS)
        Main PID: 31813 (clamd)
          CGroup: name=systemd:/system/clamd.service
                  â 31813 clamd

Jan 16 10:07:11 vbox.btspuhler.com clamd[31402]: Starting Clam AntiVirus Daemon: [  OK  ]
Jan 16 10:07:11 vbox.btspuhler.com systemd[1]: Started LSB: An AntiVirus Server.

(In reply to claire robinson from comment #33)
> Thomas I've assigned the other bug back to you, please don't assign multiple
> bugs to us for one update, it becomes impossible to keep track. Could you
> please add the advisory/srpms/rpms from that bug to the update already being
> requested here.
> 
> This one is waiting on feedback to comment 28.

advisory done on #12085
Let me know if there is still anything missing on #12085

Thanks Thomas but I was meaning to use this bug rather than that one, as this is already assigned for the update. I've copied your comment across to here. Clam doesn't have a tainted build so removed that part though.

I'm not sure about the testing procedure though as it looks like it would create premature logs for other things too which could cause issues when the month does actually change.

------------
version clamav-0.98-1.2 is in updates_testing.
you can test this by changing the date of the system into the next month and run 
/usr/sbin/logrotate -v /etc/logrotate.conf as root
There shouldn't be any error in the clamd/clamav section( the first logrotate section)

Updated packages in core/updates_testing:
========================
clamav-0.98-1.2.mga3.src.rpm
lib64clamav6-0.98-1.2.mga3
clamd-0.98-1.2.mga3
clamav-db-0.98-1.2.mga3
clamav-0.98-1.2.mga3
clamav-milter-0.98-1.2.mga3
lib64clamav-devel-0.98-1.2.mga3
clamav-debuginfo-0.98-1.2.mga3
-------------

Zoltan, could you test the updated packages please.

Oden has now packaged version 0.98.1. It's now appearing on the mirrors.

https://ml.mageia.org/l/arc/changelog/2014-01/msg00575.html

I know. I appreciate Oden's work, but this creates another delay.

I updated to version 0.98.1 (64 bit). No errors reported; frehclam and clamscan seem to be functioning correctly.

> Zoltan, could you test the updated packages please.

I'm currently running the previous version from testing (0.98-1.1). I could test updating that to 0.98-1.2 but it would not be a useful test as that's not what others running the release version would see. I don't want to downgrade and then try to update on a production machine and I have no other test machines available so I'm afraid I can't help testing this now.

On the other hand, if the 0.98.1 package will be available shortly (in a few days) it may make more sense to test upgrading the current relese packege to that one straight away and just drop this update now, because even if it will be pushed there should be another update shortly so I don't know how useful is to put more work in this version at this point.

(In reply to Zoltan Balaton from comment #43)
> > Zoltan, could you test the updated packages please.
> 
> I'm currently running the previous version from testing (0.98-1.1). I could
> test updating that to 0.98-1.2 but it would not be a useful test as that's
> not what others running the release version would see. I don't want to
> downgrade and then try to update on a production machine and I have no other
> test machines available so I'm afraid I can't help testing this now.
> 
> On the other hand, if the 0.98.1 package will be available shortly (in a few
> days) it may make more sense to test upgrading the current relese packege to
> that one straight away and just drop this update now, because even if it
> will be pushed there should be another update shortly so I don't know how
> useful is to put more work in this version at this point.

I have a VM I could easily downgrade to the released version and then see if it upgrades to 0.98.1. I'll do it this afternoon. Let's get this out.
I agree with Zoltan, we should directly go to 0.98.1

Thanks for testing. Please make sure that you run freshclam after installing the release version but before upgrading to the new version,
because I think that's what changes main.cvd to main.cld (or the other way around) which causes the problems we saw. It may work if the package
is just updated right after it's installed without refreshing the database but that's not what people already running the old package will have
as freshclam will have been run by the time they install the upgrade.

Thomas, 740 is a strange permission to set, shouldn't it be 750?

Thomas or Oden, this will need to be submitted in Cauldron before it's pushed as an update for Mageia 3, and I don't recall seeing a freeze push request for it.

Also, I'm not familiar with this, so how important is updating the "daily" virus database, and how often does upstream update it (maybe daily?)?  I see Oden updated it to 18358 this morning, but on the upstream page I see they have 18360 as the newest.

As for an advisory, it could just say something like:

----------------------------------------

This update provides the newest current version of ClamAV, 0.98.1.

Also, an issue with ClamAV log rotation due to insecure permissions on its log
directory has been corrected (mga#12085).

References:
http://www.clamav.net/lang/en/2013/09/19/clamav-0-98-has-been-released
http://www.clamav.net/lang/en/2014/01/14/clamav-0-98-1-has-been-released
https://bugs.mageia.org/show_bug.cgi?id=12085
https://bugs.mageia.org/show_bug.cgi?id=11288
----------------------------------------
Updated packages in core/updates_testing:
----------------------------------------
clamav-0.98.1-1.mga3
clamd-0.98.1-1.mga3
clamav-milter-0.98.1-1.mga3
clamav-db-0.98.1-1.mga3
libclamav6-0.98.1-1.mga3
libclamav-devel-0.98.1-1.mga3

from clamav-0.98.1-1.mga3.src.rpm

Whiteboard: feedback has_procedure advisory MGA3-32-OK => feedback has_procedure

(In reply to David Walser from comment #46)
> Thomas or Oden, this will need to be submitted in Cauldron before it's
> pushed as an update for Mageia 3, and I don't recall seeing a freeze push
> request for it.

Nevermind on that bit, Oden did request it:
http://article.gmane.org/gmane.linux.mageia.devel/32766

OK, the upgrade succeeded. I did run a freshclam before upgrading with this result:
# freshclam                                                                                                                   
ClamAV update process started at Thu Jan 16 15:05:51 2014
WARNING: Your ClamAV installation is OUTDATED!
WARNING: Local version: 0.97.8 Recommended version: 0.98.1
DON'T PANIC! Read http://www.clamav.net/support/faq
main.cld is up to date (version: 55, sigs: 2424225, f-level: 60, builder: neo)
daily.cvd is up to date (version: 18360, sigs: 654240, f-level: 63, builder: neo)
bytecode.cld is up to date (version: 235, sigs: 44, f-level: 63, builder: dgoddard)
I then did an upgrade to 0.98-1
# urpmi clamav
Marking clamav as manually installed, it won't be auto-orphaned
writing /var/lib/rpm/installed-through-deps.list
To satisfy dependencies, the following packages are going to be installed:
  Package                        Version      Release       Arch    
(medium "Core Updates Testing (distrib5)")
  clamav                         0.98.1       1.mga3        x86_64  
  clamav-db                      0.98.1       1.mga3        noarch  
  clamd                          0.98.1       1.mga3        x86_64  
  lib64clamav6                   0.98.1       1.mga3        x86_64  
27MB of additional disk space will be used.
84MB of packages will be retrieved.
Preparing...                     #################
      1/4: lib64clamav6          #################
      2/4: clamav-db ##################warning: /var/lib/clamav/daily.cvd created as /var/lib/clamav/daily.cvd.rpmnew
#####
Adding user clamav to group amavis
      3/4: clamav                ###############
      4/4: clamd                 ###############
      1/4: removing clamd-0.97.8-1.mga3.x86_64
                                 ###############
      2/4: removing clamav-0.97.8-1.mga3.x86_64  ####################
      3/4: removing clamav-db-0.97.8-1.mga3.noarch ####################
      4/4: removing lib64clamav6-0.97.8-1.mga3.x86_64 #####################
# freshclam
ClamAV update process started at Thu Jan 16 15:14:13 2014
Downloading main.cvd [100%]
main.cvd updated (version: 55, sigs: 2424225, f-level: 60, builder: neo)
daily.cvd is up to date (version: 18360, sigs: 654240, f-level: 63, builder: neo)
bytecode.cld is up to date (version: 235, sigs: 44, f-level: 63, builder: dgoddard)
Database updated (3078509 signatures) from database.clamav.net (IP: 194.186.47.19)
Clamd successfully notified about the update.
[root@vbox ~]# # systemctl status clamd
clamd.service - LSB: An AntiVirus Server
          Loaded: loaded (/etc/rc.d/init.d/clamd)
          Active: active (running) since Thu, 2014-01-16 15:10:54 MST; 5min ago
         Process: 22916 ExecStop=/etc/rc.d/init.d/clamd stop (code=exited, status=0/SUCCESS)
         Process: 22943 ExecStart=/etc/rc.d/init.d/clamd start (code=exited, status=0/SUCCESS)
        Main PID: 22960 (clamd)
          CGroup: name=systemd:/system/clamd.service
                  â 22960 clamd

Jan 16 15:10:54 vbox.btspuhler.com clamd[22943]: Starting Clam AntiVirus Daemon: [  OK  ]
Jan 16 15:10:54 vbox.btspuhler.com systemd[1]: Started LSB: An AntiVirus Server.
[root@vbox ~]# 

clamscan -v /home/user worked as expected

Mail passed through using amavis/clamd

This package is ready to be released

(In reply to David Walser from comment #46)
> Thomas, 740 is a strange permission to set, shouldn't it be 750?
> 
> Thomas or Oden, this will need to be submitted in Cauldron before it's
> pushed as an update for Mageia 3, and I don't recall seeing a freeze push
> request for it.
> 
> Also, I'm not familiar with this, so how important is updating the "daily"
> virus database, and how often does upstream update it (maybe daily?)?  I see
> Oden updated it to 18358 this morning, but on the upstream page I see they
> have 18360 as the newest.
> 
> As for an advisory, it could just say something like:
> 
> ----------------------------------------
> 
> This update provides the newest current version of ClamAV, 0.98.1.
> 
> Also, an issue with ClamAV log rotation due to insecure permissions on its
> log
> directory has been corrected (mga#12085).
> 
> References:
> http://www.clamav.net/lang/en/2013/09/19/clamav-0-98-has-been-released
> http://www.clamav.net/lang/en/2014/01/14/clamav-0-98-1-has-been-released
> https://bugs.mageia.org/show_bug.cgi?id=12085
> https://bugs.mageia.org/show_bug.cgi?id=11288
> ----------------------------------------
> Updated packages in core/updates_testing:
> ----------------------------------------
> clamav-0.98.1-1.mga3
> clamd-0.98.1-1.mga3
> clamav-milter-0.98.1-1.mga3
> clamav-db-0.98.1-1.mga3
> libclamav6-0.98.1-1.mga3
> libclamav-devel-0.98.1-1.mga3
> 
> from clamav-0.98.1-1.mga3.src.rpm
 
updating the "daily"  virus database is done through fresclam which is being run as a deamon:
freshclam.service loaded active runningLSB: Clam AntiVirus Database Update Daemon.
What Oden provided comes with the package and is updated with the package.
It's not used when upgrading only when installing it, but it makes the installation faster as there won't be as many upgrades be needed

(In reply to David Walser from comment #46)
> Thomas, 740 is a strange permission to set, shouldn't it be 750?

Thomas noted on IRC that 740 is used by some other packages...giving read but not execute permissions on a directory is strange, but the group permissions in this case are not really important anyway, so it's OK.

I'm removing the feedback marker as this really should be ready for QA now.  Hopefully it gets pushed in Cauldron soon.  Suggested advisory in Comment 46.

Whiteboard: feedback has_procedure => has_procedure

Testing on 32-bit:

Used clamtk to scan home directory recursively and then to scan an individual file from a different partition.  Checked history and last scan information.

Used clamscan -v in terminal to scan my Documents directory.

All fine before and after update.

Will try and do 64-bit this weekend.


Carolyn

CC: (none) => isolde
Whiteboard: has_procedure => has_procedure MGA3-32-OK

64-bit testing successful after an initial glitch which turned out to be due to a corrupted database file which freshclam sorted for me!

Similar tests as for 32-bit, worked OK after update.

Update validated.

See comment 49 for suggested advisory and SRPM.

Could sysadmin please push from core/updates_testing to core/updates.

Thank you.

Carolyn

Keywords: (none) => validated_update
CC: (none) => sysadmin-bugs
Whiteboard: has_procedure MGA3-32-OK => has_procedure MGA3-32-OK MGA3-64-OK

clamav-0.98.1-1.mga4 uploaded for Cauldron.

Update pushed:
http://advisories.mageia.org/MGAA-2014-0005.html

Status: ASSIGNED => RESOLVED
Resolution: (none) => FIXED