Rudder

Rudder server says this agent is connected, has sent an inventory and everything is recognized but I find that some installed packages don't get shown on the web interface (I was searching to ensure ClamAV is installed on all endpoints).
The server is a normal Rudder server on CentoS 7 and the agent is working happily on Fedora 30 with the package built in this ticket - https://issues.rudder.io/issues/15454

Here's logs (from server) - https://pastebin.com/SsMzPunK

Running

rudder agent inventory
rudder agent run -i

on the endpoint both show maximum compliance and don't give any warnings or errors. Agent logs don't give much other useful info but I can provide them if need be. :)

The image attachment seems to have failed. Could you give an example of a missing package (appearing in rpm -qa output but not in the inventory)?

What does grep clamav /var/rudder/tmp/inventory/*.ocs give on the node?

Alexis MOUSSET wrote:

What does grep clamav /var/rudder/tmp/inventory/*.ocs give on the node?

It returns nothing.

It means the inventory does not contain them, so the problem is on the agent. The command used by the inventory is:

rpm -qa --queryformat '%{NAME}\t%{ARCH}\t%{VERSION}-%{RELEASE}\t%{INSTALLTIME}\t%{SIZE}\t%{VENDOR}\t%{SUMMARY}\n' | grep clamav

What does it give?

Alexis MOUSSET wrote:

It means the inventory does not contain them, so the problem is on the agent. The command used by the inventory is:

[...]

What does it give?

Shows the packages and versions - https://imgur.com/UIyfnxx

We are really not sure about the root cause of that one, and we are out of luck for reproducing it.

Edmond: do you noticed something special on the nodes where the clamav is missing? Perhaps a different locale?