Home.... | log in.... | Pub my question! | Sign-up....
Java-index >> Administration Tools >> Sun Update Connection-System

smpatch update ALERT: Failed to install patch

I do not even know where to start. Since installing Solaris 10 0606 it

seems every time I try to patch the system I get failures of one type

or another. One problem today has to do with zones:

"To install the new instance of this package in all zones you must

first remove the existing instance of this package from the global

zone first (via pkgrm) and then install the new instance of this

package in all zones."

If sun already knows a pkgrm must be run why can't the smpatch command

just do it?

Another problem seems to be

For patch 121018-03, required patch 120759-04 does not exist

If sun knows a patch is required which is not on the system just Getit

and install it.

Also, what is up with having to reboot the box to install patches?

Why? Has this always been a required step? Do these reboots pertain only to kernel patches .etc?

I have seen other postings in this forum expressing unhappiness with

the patch system, some mentioning testing lab/group or certification

issues. I think smpatch should have an option to send smpatch results

back to sun for review. That way the Certification Group could have

real life situations to investigate. Or do they know the problems

already and just dont want to fix them? Just once I would love it if

smpatch came back with no failures and I was assured the system was

patched, up to date and secure.

Regards

# smpatch update

Update 120759-07 will not be downloaded since it already exists in the

download directory.

Update 121018-03 will not be downloaded since it already exists in the

download directory.

Update 121016-03 will not be downloaded since it already exists in the

download directory.

Update 121020-02 will not be downloaded since it already exists in the

download directory.

Update 121616-02 will not be downloaded since it already exists in the

download directory.

Update 120762-02 will not be downloaded since it already exists in the

download directory.

Installing patches from /var/sadm/spool...

Failed to install patch 120759-07.

patchadd utility failed. Reason code :0

Validating patches...Loading patches installed on the

system...Done!Loading patches requested to install.Done!Checking

patches that you specified for installation.Done!Approved patches will

be installed in this order:120759-07 Preparing checklist for

non-global zone check...Checking non-global zones...The following

requested patches rejected on non-global zone.Entire installation is

possible but those patcheswill not be installed on non-global

zone.myzone: Packages from patch 120759-07 are not installed on the

system.myzone2: Packages from patch 120759-07 are not installed on the

system.This patch passes the non-global zone check.None.Summary for

zones:Zone myzoneRejected patches:120759-07 Patches that passed the

dependency check:None.Zone myzone2Rejected patches:120759-07 Patches

that passed the dependency check:None.Patching global zoneAdding

patches...Checking installed patches...Verifying sufficient filesystem

capacity (dry run method)...Patch 120759-07 failed to install due to a

failure produced by pkgadd.See /var/sadm/patch/120759-07/log for

detailsPatchadd is terminating. WARNING: patchadd returned <5> for

global zone

ALERT: Failed to install patch 120759-07.

Failed to install patch 121018-03.

patchadd utility failed. Reason code :0

Validating patches...Loading patches installed on the

system...Done!Loading patches requested to install.Done!Checking

patches that you specified for installation.Done!The following

requested patches will not be installed becauseno patches required by

the patch are installed on this system. 0 For patch 121018-03,

required patch 120759-04 does not exist.No patches to install.

ALERT: Failed to install patch 121018-03.

Failed to install patch 121016-03.

patchadd utility failed. Reason code :0

Validating patches...Loading patches installed on the

system...Done!Loading patches requested to install.Done!Checking

patches that you specified for installation.Done!The following

requested patches will not be installed becauseno patches required by

the patch are installed on this system. 0 For patch 121016-03,

required patch 120759-06 does not exist.No patches to install.

ALERT: Failed to install patch 121016-03.

Failed to install patch 121020-02.

patchadd utility failed. Reason code :0

Validating patches...Loading patches installed on the

system...Done!Loading patches requested to install.Done!Checking

patches that you specified for installation.Done!The following

requested patches will not be installed becauseno patches required by

the patch are installed on this system. 0 For patch 121020-02,

required patch 120759-01 does not exist.No patches to install.

ALERT: Failed to install patch 121020-02.

Failed to install patch 121616-02.

patchadd utility failed. Reason code :0

Validating patches...Loading patches installed on the

system...Done!Loading patches requested to install.Done!Checking

patches that you specified for installation.Done!Approved patches will

be installed in this order:121616-02 Preparing checklist for

non-global zone check...Checking non-global zones...The following

requested patches rejected on non-global zone.Entire installation is

possible but those patcheswill not be installed on non-global

zone.myzone: Packages from patch 121616-02 are not installed on the

system.myzone2: Packages from patch 121616-02 are not installed on the

system.This patch passes the non-global zone check.None.Summary for

zones:Zone myzoneRejected patches:121616-02 Patches that passed the

dependency check:None.Zone myzone2Rejected patches:121616-02 Patches

that passed the dependency check:None.Patching global zoneAdding

patches...Checking installed patches...Verifying sufficient filesystem

capacity (dry run method)...Patch 121616-02 failed to install due to a

failure produced by pkgadd.See /var/sadm/patch/121616-02/log for

detailsPatchadd is terminating. WARNING: patchadd returned <5> for

global zone

ALERT: Failed to install patch 121616-02.

Failed to install patch 120762-02.

patchadd utility failed. Reason code :0

Validating patches...Loading patches installed on the

system...Done!Loading patches requested to install.Done!Checking

patches that you specified for installation.Done!Approved patches will

be installed in this order:120762-02 Preparing checklist for

non-global zone check...Checking non-global zones...The following

requested patches rejected on non-global zone.Entire installation is

possible but those patcheswill not be installed on non-global

zone.myzone: Packages from patch 120762-02 are not installed on the

system.myzone2: Packages from patch 120762-02 are not installed on the

system.This patch passes the non-global zone check.None.Summary for

zones:Zone myzoneRejected patches:120762-02 Patches that passed the

dependency check:None.Zone myzone2Rejected patches:120762-02 Patches

that passed the dependency check:None.Patching global zoneAdding

patches...Checking installed patches...Verifying sufficient filesystem

capacity (dry run method)...Patch 120762-02 failed to install due to a

failure produced by pkgadd.See /var/sadm/patch/120762-02/log for

detailsPatchadd is terminating. WARNING: patchadd returned <5> for

global zone

ALERT: Failed to install patch 120762-02.

/var/sadm/spool/patchpro_dnld_2006.08.22@11:16:20:EDT.txt has been

moved to

/var/sadm/spool/patchproSequester/patchpro_dnld_2006.08.22@11:16:20:EDT.txt

#

[8193 byte] By [_junkken] at [2007-11-26 9:44:32]
«« Build application succesfully but cannot view contents of the page
»» Can't Iinstall Solaris 10 on Sparc 20 Station Model: 544
# 1

Enterprise users have strict policies on change management so dependent patches are not automatically installed when using "smpatch add". Neither are packages blithly uninstalled for zones if currently only existing in the global zone.

For your needs using "smpatch update" should analyse, download and install dependant patches in order for patches specified on the command line or for a global update. Note that that is with the exception of patches not matching the currently defined patch policy such as those needing a reboot. See the smpatch man page for information on policies.

Patches requiring reboots or being installed in single user mode are primarily for kernel and driver patches.

Your problems installing the Sun Studio 11 patches have been encountered previously in regards to globally installed packages (and are covered in this forum) and is due to a combination of bug ID's 6337009, 6214678 and 6374972 for the patching utilities of which the last is still open.

You will currently have to manually install the patches using patchadd with the "-G" flag whilst in the global zone to install them in the global zone only.

ForumModerator at 2007-7-7 0:46:35 > top of Java-index,Administration Tools,Sun Update Connection-System...
# 2

I fully understand enterprise users have the resources available to pick, choose and test each patch and only apply those patches which meet change management criteria. They need the option to be able to implement each patch individually having carefully considered dependencies and implications for the applications they are running.

However, many Solaris users do not have the means or time to test, and rely on Sun to provide a tool which implements patches and security updates with out blithely leaving the system in an inconsistant state which requires manual operations rectify. Most users will probably ignore the smpatch alerts and leave their zones unpatched and in a vulnerable condition.

Are there any plans for Sun to add non-global update capability to smpatch?

Regards,

_junkken at 2007-7-7 0:46:35 > top of Java-index,Administration Tools,Sun Update Connection-System...
# 3
I appreciate the frustration this issue currently causes, but once the bug mentioned in our last response is addressed, this behaviour should no longer present itself.
ForumModerator at 2007-7-7 0:46:35 > top of Java-index,Administration Tools,Sun Update Connection-System...
# 4

Just wondering if this issue has been resolved, and how to procede. I am still getting errors when running smpatch. Will the problem go away when the fix is issued by running the smpatch command, or will extra work be required? I am worried my system is in a compromised state since it is not complelely patched.

Regards,

_junkken at 2007-7-7 0:46:35 > top of Java-index,Administration Tools,Sun Update Connection-System...
# 5
The bugs mentioned are being progressed, but fixes have not been produced yet. Once the fixes have be released, I would imagine smpatch should be able to apply the patches.
ForumModerator at 2007-7-7 0:46:35 > top of Java-index,Administration Tools,Sun Update Connection-System...
# 6
Just wondering if this issue is resolved. A lot of peoples are waiting for this one to be resolved because, as said before, they rely on SUN for the choice of patches to add. Thanks.
davidgagne at 2007-7-7 0:46:35 > top of Java-index,Administration Tools,Sun Update Connection-System...
# 7
Hi.The issue is not currently resolved, but the change request is being actively worked on - the bug ID was last modified yesterday.
ForumModerator at 2007-7-7 0:46:35 > top of Java-index,Administration Tools,Sun Update Connection-System...
# 8

Hello.

Problem still unresolved ?

Bugid 6374972 was fixed in snv_50 / 2006-11-02.

Which patch equals to sol10 ?

I have problem witch Studio11 (installed in global zone only) and patches (120759-09, 121018-07 ...), the same error in log:

pkgadd: ERROR: The package <SPROprfan> is currently installed on the system in the

global zone. To install the new instance of this package in the global

zone only, you must specify the -G option. To install the new instance

of this package in all zones you must first remove the existing instance

of this package from the global zone first (via pkgrm) and then install

the new instance of this package in all zones.

pkgadd: ERROR: package <SPROprfan> cannot be installed on this system/zone

I install patches manually with "patchadd -G" (not smpatch) with success.

M.C>

mcerveny at 2007-7-7 0:46:35 > top of Java-index,Administration Tools,Sun Update Connection-System...
# 9
Hi.I don't believe a patch has been released yet - searching the patch descriptions for this bug ID doesn't show anything yet.Mod.
ForumModerator at 2007-7-7 0:46:35 > top of Java-index,Administration Tools,Sun Update Connection-System...
Administration Tools
Sun Update Connection-System

Administration Tools New Topic

Administration Tools Hot Topic

Administration Tools

All Classified