Drop GMP scanners #1269

mattmundell · 2020-08-24T21:31:03Z

What:

Remove support for GMP scanners. This is the old "slave" feature where a gvmd controls another gvmd using GMP.

From the GMP doc compatibility change:

The scanner type "GMP" has been removed. This is the original "slave"
feature, where a gvmd (the master) controls another gvmd (the slave)
via GMP.

Existing GMP scanners are automatically migrated to type "OpenVAS".
The "OpenVAS" scanner type uses the OSP protocol, and is better suited
to the master-slave scenario.

CREATE_SCANNER and MODIFY_SCANNER no longer accept type "4".

In the report XML, as returned by GET_REPORTS, SLAVE has been removed
from REPORT/TASK.

All other scanner related commands work as before, but there are no
GMP scanners for them to work with.

Why:

The newer OSP scanners provide a better way to do this.
Reduces the amount of code to maintain.

How:

These gvmd commands should now fail:

gvmd --slave-commit-size=1000
gvmd --create-scanner=test2 --scanner-type=GMP --scanner-host=/path/to/test.sock --scanner-ca-pub=/path/to/cacert.pem --scanner-key-pub=/path/to/clientcert.pem --scanner-key-priv=/path/to/clientkey.pem
gvmd --create-scanner=test2 --scanner-type=4 --scanner-host=/path/to/test.sock --scanner-ca-pub=/path/to/cacert.pem --scanner-key-pub=/path/to/clientcert.pem --scanner-key-priv=/path/to/clientkey.pem
gvmd --modify-scanner=<UUID> --scanner-type=GMP
gvmd --modify-scanner=<UUID> --scanner-type=4

These GMP commands should fail:

<modify_scanner scanner_id="a22be4dd-17d5-44c0-9f76-92c21ecc2105"><type>gmp</type></modify_scanner>
<modify_scanner scanner_id="a22be4dd-17d5-44c0-9f76-92c21ecc2105"><type>4</type></modify_scanner>
<create_scanner><name>test</name><host>127.0.0.1</host><port>1</port><type>gmp</type></create_scanner>
<create_scanner><name>test</name><host>127.0.0.1</host><port>1</port><type>4</type></create_scanner>

Checklist:

Tests
CHANGELOG Entry

BasvanH · 2020-09-04T12:15:23Z

You cant have more than one NVT scanner and OSP does not support NVT. Whats the new way of creating more NVT scan capacity?

mattmundell · 2020-09-07T13:50:10Z

You cant have more than one NVT scanner and OSP does not support NVT. Whats the new way of creating more NVT scan capacity?

You can have more than one "NVT scanner". It's not possible to create them in GSA yet, but via GMP either copy OpenVAS Default:

<create_scanner><copy>08b69003-5fc2-4037-a479-93b440211c73</copy></create_scanner>

or create one from scratch

<create_scanner><name>osp-openvas from scratch</name><type>2</type><host>127.0.0.1</host><port>9392</port></create_scanner>
gvmd --modify-scanner UUID --scanner-host=/path/to/ospd-openvas.sock

mattmundell and others added 30 commits August 24, 2020 19:38

Remove GMP scanner from get_system_report_types

57a51b1

Remove GMP scanner from manage_system_report

910bcb1

Remove GMP scanner from run_task

4656596

Remove function that was only used by GMP scanner code

dcaa72a

Remove 'Slave Tasks' section

18a9c7e

Remove GMP scanner from relay support

1660e00

Remove GMP scanner special case from stop_task_internal

0aafa53

Remove GMP scanner from move_task

076fb6b

Remove GMP scanner from --create-scanner and --modify-scanner

6614645

Remove GMP scanner from --optimize=migrate-relay-sensors

06ee726

Remove GMP scanner case from --get-scanners

7cd9072

Remove GMP scanner from verify_scanner

c01af00

Remove GMP scanner from create_scanner

4b2a3c9

Remove GMP scanner from modify_scanner

07da55d

Remove GMP scanner from config checks

a8054ae

Rename GMP scanner type to show removal

e4bfa51

Remove unused function update_from_slave

8afcf81

Remove unused function set_report_slave_task_uuid

f402f33

Remove deletion of GMP tasks on slaves

c26a800

Remove unused function report_slave_task_uuid

75b92ca

Remove unused slave_task_uuid case from report_progress

9f71fa0

Remove init of unused column slave_task_uuid

5dd64d0

Fix section heading

09f0275

Merge branch 'master' into drop-gmp-scanners

6e00cd7

Remove unused function

b888a03

Remove unused function

b2e857f

Remove setting slave check period (63adb79a-62ae-11e9-91ba-28d24461215b)

56dbed2

Migrate away slave check period setting

f66fed8

Remove unused option --slave-commit-size

b6d60b9

Remove --slave-commit-size from man page source

0fc15e6

mattmundell and others added 14 commits August 25, 2020 18:56

Remove unused report_set_* functions

86acad9

Remove unused SCAN/TASK/SLAVE from report XML

ebf0f26

Remove SCAN/TASK/SLAVE from report XML doc

7b353ee

Remove no longer reachable state TASK_STATUS_STOP_REQUESTED_GIVEUP

e121132

Remove unused report table slave columns

982b323

Migrate away unused report table slave columns

50b5a7a

Migrate existing GMP scanners to OpenVAS scanners

8a49a2a

Specify all values of scanner_type_t, removing SCANNER_TYPE_GMP_REMOVED

98497ad

Update changelog

eb8ad08

Remove GMP from --scanner-type help

12f825d

Add GMP doc CHANGE for GMP scanner removal

d6cf2f6

Merge branch 'master' into drop-gmp-scanners

b1c7217

Merge branch 'master' into drop-gmp-scanners

52c1b47

Exclude old GMP value from scanner type checks

402aefc

mattmundell marked this pull request as ready for review September 2, 2020 13:53

mattmundell requested a review from timopollmeier as a code owner September 2, 2020 13:53

Note removed items

c8aedd5

timopollmeier approved these changes Sep 3, 2020

View reviewed changes

timopollmeier merged commit ea8242e into greenbone:master Sep 3, 2020

mattmundell deleted the drop-gmp-scanners branch September 3, 2020 11:28

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Drop GMP scanners #1269

Drop GMP scanners #1269

mattmundell commented Aug 24, 2020 •

edited

Loading

BasvanH commented Sep 4, 2020

mattmundell commented Sep 7, 2020

Drop GMP scanners #1269

Drop GMP scanners #1269

Conversation

mattmundell commented Aug 24, 2020 • edited Loading

BasvanH commented Sep 4, 2020

mattmundell commented Sep 7, 2020

mattmundell commented Aug 24, 2020 •

edited

Loading