Enhancement#452 oracle script env #453
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Contributor
ThiloSolbrig
commented
Apr 26, 2024
ThiloSolbrig
commented
- Setting CV_ASSUME_DISTID enables forward compatibility for cluvfy, gridSetup etc to run on Linux 8 and 9, also with 19.3 base release. This might obsolete the need for Gold Images here.
- On hardened systems, the system's default tempdir (e.g. /tmp) usually is noexec flagged, which denies execution of java or shell code. To make GI setup more hardening-proof, temporary directory will be changed to /u01/stage/tmp.
added 2 commits
April 19, 2024 15:44
…ble to Linux 8/9, oracle_tmp_stage: default temporary dir usualy is noexec flagged on hardened systems
Rendanic
added a commit
to Rendanic/ansible-oracle
that referenced
this pull request
Apr 30, 2024
bugfix set custom environment for executables with oracle_script_env
`_JAVA_OPTIONS` is only set when `oracle_tmp_stage` != /tmp due to issues
with `GridSetup.sh -applyRU` for 21c.
The default for `oracle_tmp_stage` is /tmp when `ansible-fips` is disabled
or `{{ oracle_stage }}/tmp` when enabled.
The owner, group and priviledges for `oracle_tmp_stage` are set to same
values as `/tmp` on normal linux servers.
The `CV_ASSUME_DISTID` is set to `OL{{ ansible_distribution_major_version }}` for RHEL/OL
when not RHEL9/OL9 and set to `OL8` when RHEL9/OL9.
`SLES15` is default for SuSE at the moment. This could be changed in next PRs.
`cluvfy` is always executed without `CV_ASSUME_DISTID`, because the tool is
compatible for all supported plattforms when most current version is used.
Rendanic
added a commit
to Rendanic/ansible-oracle
that referenced
this pull request
Apr 30, 2024
bugfix set custom environment for executables with oracle_script_env
`_JAVA_OPTIONS` is only set when `oracle_tmp_stage` != /tmp due to issues
with `GridSetup.sh -applyRU` for 21c.
The default for `oracle_tmp_stage` is /tmp when `ansible-fips` is disabled
or `{{ oracle_stage }}/tmp` when enabled.
The owner, group and priviledges for `oracle_tmp_stage` are set to same
values as `/tmp` on normal linux servers.
The `CV_ASSUME_DISTID` is set to `OL{{ ansible_distribution_major_version }}` for RHEL/OL
when not RHEL9/OL9 and set to `OL8` when RHEL9/OL9.
`SLES15` is default for SuSE at the moment. This could be changed in next PRs.
`cluvfy` is always executed without `CV_ASSUME_DISTID`, because the tool is
compatible for all supported plattforms when most current version is used.
Rendanic
added a commit
to Rendanic/ansible-oracle
that referenced
this pull request
Apr 30, 2024
bugfix set custom environment for executables with oracle_script_env
`_JAVA_OPTIONS` is only set when `oracle_tmp_stage` != /tmp due to issues
with `GridSetup.sh -applyRU` for 21c.
The default for `oracle_tmp_stage` is /tmp when `ansible-fips` is disabled
or `{{ oracle_stage }}/tmp` when enabled.
The owner, group and priviledges for `oracle_tmp_stage` are set to same
values as `/tmp` on normal linux servers.
The `CV_ASSUME_DISTID` is set to `OL{{ ansible_distribution_major_version }}` for RHEL/OL
when not RHEL9/OL9 and set to `OL8` when RHEL9/OL9.
`SLES15` is default for SuSE at the moment. This could be changed in next PRs.
`cluvfy` is always executed without `CV_ASSUME_DISTID`, because the tool is
compatible for all supported plattforms when most current version is used.
Rendanic
added a commit
to Rendanic/ansible-oracle
that referenced
this pull request
Apr 30, 2024
bugfix set custom environment for executables with oracle_script_env
`_JAVA_OPTIONS` is only set when `oracle_tmp_stage` != /tmp due to issues
with `GridSetup.sh -applyRU` for 21c.
The default for `oracle_tmp_stage` is /tmp when `ansible-fips` is disabled
or `{{ oracle_stage }}/tmp` when enabled.
The owner, group and priviledges for `oracle_tmp_stage` are set to same
values as `/tmp` on normal linux servers.
The `CV_ASSUME_DISTID` is set to `OL{{ ansible_distribution_major_version }}` for RHEL/OL
when not RHEL9/OL9 and set to `OL8` when RHEL9/OL9.
`SLES15` is default for SuSE at the moment. This could be changed in next PRs.
`cluvfy` is always executed without `CV_ASSUME_DISTID`, because the tool is
compatible for all supported plattforms when most current version is used.
Rendanic
added a commit
to Rendanic/ansible-oracle
that referenced
this pull request
May 1, 2024
bugfix set custom environment for executables with oracle_script_env
`_JAVA_OPTIONS` is only set when `oracle_tmp_stage` != /tmp due to issues
with `GridSetup.sh -applyRU` for 21c.
The default for `oracle_tmp_stage` is /tmp when `ansible-fips` is disabled
or `{{ oracle_stage }}/tmp` when enabled.
The owner, group and priviledges for `oracle_tmp_stage` are set to same
values as `/tmp` on normal linux servers.
The `CV_ASSUME_DISTID` is set to `OL{{ ansible_distribution_major_version }}` for RHEL/OL
when not RHEL9/OL9 and set to `OL8` when RHEL9/OL9.
`SLES15` is default for SuSE at the moment. This could be changed in next PRs.
`cluvfy` is always executed without `CV_ASSUME_DISTID`, because the tool is
compatible for all supported plattforms when most current version is used.
Rendanic
added a commit
that referenced
this pull request
May 1, 2024
bugfix set custom environment for executables with oracle_script_env
`_JAVA_OPTIONS` is only set when `oracle_tmp_stage` != /tmp due to issues
with `GridSetup.sh -applyRU` for 21c.
The default for `oracle_tmp_stage` is /tmp when `ansible-fips` is disabled
or `{{ oracle_stage }}/tmp` when enabled.
The owner, group and priviledges for `oracle_tmp_stage` are set to same
values as `/tmp` on normal linux servers.
The `CV_ASSUME_DISTID` is set to `OL{{ ansible_distribution_major_version }}` for RHEL/OL
when not RHEL9/OL9 and set to `OL8` when RHEL9/OL9.
`SLES15` is default for SuSE at the moment. This could be changed in next PRs.
`cluvfy` is always executed without `CV_ASSUME_DISTID`, because the tool is
compatible for all supported plattforms when most current version is used.
Rendanic
added a commit
to Rendanic/ansible-oracle
that referenced
this pull request
Jul 22, 2024
v4.9.0 ====== Release Summary --------------- This is the 1st production release of ansible-oracle 4.x. The RAC support was the last missing option in 4.x compared to 3.12.0. A documentation for migration from 3.12.0 to 4.x is work in progress. Minor Changes ------------- - added option to disable transparent hugepages in grub (oravirt#460) - bugfix set custom environment for executables with oracle_script_env (oravirt#458) - global_handlers: Introduce a global handlers role (oravirt#455) - global_handlers: Reboot handler improvements, restart_on_requirement=false, ansible-lint (oravirt#457) - molecule: added MOLECULE_IMAGE for custom images and support for SuSE (oravirt#458) - oracle_opatch.py needs to support configurable temp directory (oravirt#462) - orahost: Add a list of additional hosts to /etc/hosts (oravirt#447) - orahost: add oracle_sysctl_file and oracle_hugepages_sysctl_file variables (oravirt#432) - orahost: set vm.hugetlb_shm_group to oracle user GID (oravirt#461) - orahost_logrotate: logrotate setup for oracle files should be optional (oravirt#449) - orahost_meta: Enable calculation of several kernel parameters (oravirt#451) - orahost_meta: added oracle_tmp_stage for hardened systems (oravirt#453) - oraswdb_manage_patches: make role compatible with oraswgi_manage_patches (oravirt#464) - oraswgi_install: Next refactoring of role for RAC (oravirt#464) - set custom environment for executables with oracle_script_env (oravirt#453) Breaking Changes / Porting Guide -------------------------------- - CV_ASSUME_DISTID: SLES15 when ansible_os_family == 'SuSE' (oravirt#458) - oraswgi_manage_patches: python-module xmltodict needed on ansible-controller (oravirt#464) Bugfixes -------- - Consider home was removed earlier, leaving REMOVED=T (oravirt#437) - bugfix: added apply_patches_gi to some tasks with patch_before_rootsh (oravirt#464) - default_gipass is not required if sysasmpassword and asmmonitorpassword are set (oravirt#433) - fixed jinja spacing warning (oravirt#463) - oracluvfy did not fail when error was detected (oravirt#464) - orasw_meta: grid_base != oracle_base only required if role_separation=true (oravirt#439) - oraswdb_install: Configure systemd only for Single Instance without GI/Restart (oravirt#431) - oraswgi_install: honour deploy_ocenv setting (oravirt#443)
Rendanic
added a commit
that referenced
this pull request
Aug 10, 2024
v4.9.0 ====== Release Summary --------------- This is the 1st production release of ansible-oracle 4.x. The RAC support was the last missing option in 4.x compared to 3.12.0. A documentation for migration from 3.12.0 to 4.x is work in progress. Minor Changes ------------- - added option to disable transparent hugepages in grub (#460) - bugfix set custom environment for executables with oracle_script_env (#458) - global_handlers: Introduce a global handlers role (#455) - global_handlers: Reboot handler improvements, restart_on_requirement=false, ansible-lint (#457) - molecule: added MOLECULE_IMAGE for custom images and support for SuSE (#458) - oracle_opatch.py needs to support configurable temp directory (#462) - orahost: Add a list of additional hosts to /etc/hosts (#447) - orahost: add oracle_sysctl_file and oracle_hugepages_sysctl_file variables (#432) - orahost: set vm.hugetlb_shm_group to oracle user GID (#461) - orahost_logrotate: logrotate setup for oracle files should be optional (#449) - orahost_meta: Enable calculation of several kernel parameters (#451) - orahost_meta: added oracle_tmp_stage for hardened systems (#453) - oraswdb_manage_patches: make role compatible with oraswgi_manage_patches (#464) - oraswgi_install: Next refactoring of role for RAC (#464) - set custom environment for executables with oracle_script_env (#453) Breaking Changes / Porting Guide -------------------------------- - CV_ASSUME_DISTID: SLES15 when ansible_os_family == 'SuSE' (#458) - oraswgi_manage_patches: python-module xmltodict needed on ansible-controller (#464) Bugfixes -------- - Consider home was removed earlier, leaving REMOVED=T (#437) - bugfix: added apply_patches_gi to some tasks with patch_before_rootsh (#464) - default_gipass is not required if sysasmpassword and asmmonitorpassword are set (#433) - fixed jinja spacing warning (#463) - oracluvfy did not fail when error was detected (#464) - orasw_meta: grid_base != oracle_base only required if role_separation=true (#439) - oraswdb_install: Configure systemd only for Single Instance without GI/Restart (#431) - oraswgi_install: honour deploy_ocenv setting (#443)
Rendanic
added a commit
to Rendanic/ansible-oracle
that referenced
this pull request
Aug 11, 2024
v4.9.0 ====== Release Summary --------------- This is the 1st production release of ansible-oracle 4.x. The RAC support was the last missing option in 4.x compared to 3.12.0. A documentation for migration from 3.12.0 to 4.x is work in progress. Minor Changes ------------- - added option to disable transparent hugepages in grub (oravirt#460) - bugfix set custom environment for executables with oracle_script_env (oravirt#458) - global_handlers: Introduce a global handlers role (oravirt#455) - global_handlers: Reboot handler improvements, restart_on_requirement=false, ansible-lint (oravirt#457) - molecule: added MOLECULE_IMAGE for custom images and support for SuSE (oravirt#458) - oracle_opatch.py needs to support configurable temp directory (oravirt#462) - orahost: Add a list of additional hosts to /etc/hosts (oravirt#447) - orahost: add oracle_sysctl_file and oracle_hugepages_sysctl_file variables (oravirt#432) - orahost: set vm.hugetlb_shm_group to oracle user GID (oravirt#461) - orahost_logrotate: logrotate setup for oracle files should be optional (oravirt#449) - orahost_meta: Enable calculation of several kernel parameters (oravirt#451) - orahost_meta: added oracle_tmp_stage for hardened systems (oravirt#453) - oraswdb_manage_patches: make role compatible with oraswgi_manage_patches (oravirt#464) - oraswgi_install: Next refactoring of role for RAC (oravirt#464) - set custom environment for executables with oracle_script_env (oravirt#453) Breaking Changes / Porting Guide -------------------------------- - CV_ASSUME_DISTID: SLES15 when ansible_os_family == 'SuSE' (oravirt#458) - oraswgi_manage_patches: python-module xmltodict needed on ansible-controller (oravirt#464) Bugfixes -------- - Consider home was removed earlier, leaving REMOVED=T (oravirt#437) - bugfix: added apply_patches_gi to some tasks with patch_before_rootsh (oravirt#464) - default_gipass is not required if sysasmpassword and asmmonitorpassword are set (oravirt#433) - fixed jinja spacing warning (oravirt#463) - oracluvfy did not fail when error was detected (oravirt#464) - orasw_meta: grid_base != oracle_base only required if role_separation=true (oravirt#439) - oraswdb_install: Configure systemd only for Single Instance without GI/Restart (oravirt#431) - oraswgi_install: honour deploy_ocenv setting (oravirt#443)
Rendanic
added a commit
to Rendanic/ansible-oracle
that referenced
this pull request
Aug 11, 2024
v4.9.0 ====== Release Summary --------------- This is the 1st production release of ansible-oracle 4.x. The RAC support was the last missing option in 4.x compared to 3.12.0. A documentation for migration from 3.12.0 to 4.x is work in progress. Minor Changes ------------- - added option to disable transparent hugepages in grub (oravirt#460) - bugfix set custom environment for executables with oracle_script_env (oravirt#458) - global_handlers: Introduce a global handlers role (oravirt#455) - global_handlers: Reboot handler improvements, restart_on_requirement=false, ansible-lint (oravirt#457) - molecule: added MOLECULE_IMAGE for custom images and support for SuSE (oravirt#458) - oracle_opatch.py needs to support configurable temp directory (oravirt#462) - orahost: Add a list of additional hosts to /etc/hosts (oravirt#447) - orahost: add oracle_sysctl_file and oracle_hugepages_sysctl_file variables (oravirt#432) - orahost: set vm.hugetlb_shm_group to oracle user GID (oravirt#461) - orahost_logrotate: logrotate setup for oracle files should be optional (oravirt#449) - orahost_meta: Enable calculation of several kernel parameters (oravirt#451) - orahost_meta: added oracle_tmp_stage for hardened systems (oravirt#453) - oraswdb_manage_patches: make role compatible with oraswgi_manage_patches (oravirt#464) - oraswgi_install: Next refactoring of role for RAC (oravirt#464) - set custom environment for executables with oracle_script_env (oravirt#453) Breaking Changes / Porting Guide -------------------------------- - CV_ASSUME_DISTID: SLES15 when ansible_os_family == 'SuSE' (oravirt#458) - oraswgi_manage_patches: python-module xmltodict needed on ansible-controller (oravirt#464) Bugfixes -------- - Consider home was removed earlier, leaving REMOVED=T (oravirt#437) - bugfix: added apply_patches_gi to some tasks with patch_before_rootsh (oravirt#464) - default_gipass is not required if sysasmpassword and asmmonitorpassword are set (oravirt#433) - fixed jinja spacing warning (oravirt#463) - oracluvfy did not fail when error was detected (oravirt#464) - orasw_meta: grid_base != oracle_base only required if role_separation=true (oravirt#439) - oraswdb_install: Configure systemd only for Single Instance without GI/Restart (oravirt#431) - oraswgi_install: honour deploy_ocenv setting (oravirt#443)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.