HP UX Patch Management manual Patch bundles, Software depots and patch depots

Page 18

Patch bundles

Patch bundles play an important role in patch management. A patch bundle is a collection of patches that have been grouped into a single software object to meet a specific need. Many HP-UX users find that acquiring and installing these bundles, as opposed to acquiring and installing patches individually, simplifies the patch management process.

Your first encounter with patch bundles might be with the standard HP-UX patch bundles. These bundles contain patches that HP has assembled to meet a specific need. For example, the basic purpose of Quality Pack patch bundles is to deliver defect-fix patches for proactive maintenance. HP releases updated versions of the bundles on a regular schedule and tests them to ensure a high level of reliability. Using standard HP-UX patch bundles can be a less error-prone and more efficient way to patch a system than acquiring and installing individual patches. For more information, see Chapter 5: “What are standard HP-UX patch bundles?” (page 52).

Each patch bundle includes all patch dependencies for the successful installation of all patches that apply to a system. Additionally, some patch bundles, such as HWEnable11i and FEATURE11i, deliver patches for the successful installation of product bundles that include I/O driver products, for example, USB-00. The selection of product bundles with patch dependencies will result in the automatic selection of required patches from the applicable patch bundle. This automatic selection of patch dependencies can simplify the management and installation of products or patches with patch dependencies.

Patch bundles also make it easier for you to determine the current level of patches on a system. For example, there could be hundreds of individual patches contained in an installed bundle, but the swlist command lists, by default, only the bundle name rather than each individual patch contained in the bundle.

For example, if you installed the December 2003 Quality Pack patch bundles on an HP-UX 11i

v1 (B.11.11) system, output for the bundles would be similar to the following:

GOLDAPPS11i B.11.11.0312.4 Gold Applications Patches for HP-UX 11i v1, December 2003

GOLDBASE11i B.11.11.0312.4 Gold Base Patches for HP-UX 11i v1, December 2003

For more information about listing the products on a system, see “Which patches are on a system?” (page 21).

You might also find yourself working with patch bundles if you use the ITRC Patch Assessment Tool, which allows you to create your own custom patch bundles. For more information, see Chapter 10: “The Patch Assessment Tool” (page 88).

Software depots and patch depots

Software depots, or simply depots, are an integral part of patch management. A depot is a special type of file or directory that has been formatted for use by SD-UX as a software repository. In the general case, depots contain a diverse array of software products. A depot can exist as a directory tree on a SD-UX file system or on CD or DVD media, and it can exist as a tape archive (tar) archive on serial media (tape). All depots share a single logical format, independent of the type of media on which the depot resides. Depots can reside on a local or remote system. You can package software directly into a depot or copy packaged software into the depot from elsewhere. This guide focuses on depots as repositories for patches and patch bundles. Such depots can be referred to as patch depots.

Patch depots are a very effective mechanism for managing patches. You can create your own custom patch depots to meet various patch management needs. You can also create special depots to be located on a patch server that acts as a source for patch or bundle installations on other systems.

HP uses patch depots to deliver patches and patch bundles. For more information about depots, see Chapter 7: “Using software depots for patch management” (page 64).

18 HP-UX patch overview

Page 17 Page 19
Image 18
Page 17 Page 19
Contents Patch Management User Guide for HP-UX 11.x Systems Revision history Table of Contents What are standard HP-UX patch bundles? Using Dynamic Root Disk for patch management 104 107HP-UX patches and patch management Patch management strategiesHow to get patches Where to startBefore you begin Quick start guide for patching HP-UX systemsOverview Should you use standard HP-UX patch bundles?Acquiring and installing standard HP-UX patch bundles Standard HP-UX patch bundlesAcquiring the bundles Installing the bundles As root, run the createdepothp-ux11scriptAdvanced topic using Dynamic Root Disk DRD SwlistAcquiring and installing individual patches Acquiring the patchesQuick start guide for patching HP-UX systems Installing the patches Swverify -d \* @ /tmp/somepatchdirectory/depotAdvanced topic using Dynamic Root Disk DRD Patch identification HP-UX patch overviewPatch-related concepts HP-UX software structurePatch bundles Software depots and patch depotsPatch status Patch stateState Category tagsSwlist -l fileset -a state grep patchid Which patches are on a system? Swlist -l product -a categorytag patchidExamples of the swlist command For example$ swlist -l product *,c=patch $ swlist -l product *,c=manualdependencies $ swlist -l bundle @ somesystemAncestors and supersession Ancestors$ swlist -l fileset -a ancestor PHSS29183 Supersession Swlist -a appliedpatches filesetname$ swlist -a appliedpatches Xserver.AGRM Swlist -l patch -x showsupersededpatches=true Showpatches -s$ swlist -l fileset -a supersedes PHSS28681 Swlist -a patchstate -x showsupersededpatches=true patchidPatch-related attributes HP-UX Patch Supersession ChainSee Category tags Patch dependencies Types of dependenciesCorequisites and prerequisites Enforced and unenforced manual dependencies Impact of dependencies on acquiring patchesSwlist -vl fileset -a dependencytype fileset Patch rollback and commitment Patch rollbackPatch commitment Advanced topic patch cleanup utility Cleanup -p -c numberHP-UX patch ratings HP patch rating Rating detailsPatch documentation Critical and noncritical patchesFinding information for a specific patch $ swlist -l product -a categorytag PHSS30011Subset of fields in patch text file and patch details Advanced topic the readme attribute Obtaining information using the ItrcPatch warnings Swlist -l product -a readme patchid moreCritical and noncritical warnings How to handle patch warnings Questions to askAdvanced topic finding patches with warnings Backup and recovery ConsiderationsPatch management overview Patch management life cyclePatch management life cycle Patch management overview Establishing a software change management strategy Restrictive Conservative InnovativeRecommendations for software change management Operational factor and patch management strategy matrixConsideration of HP patch rating Patch management and software depotsProactive patching strategy Acquiring patches for proactive patchingReactive patching strategy Advanced topic HP-UX Software AssistantAdvanced topic security patching strategy Acquiring patches for reactive patchingTesting the patches to be installed Advanced topic scanning for security patchesKey features What are standard HP-UX patch bundles?Standard HP-UX patch bundles Obtaining standard HP-UX patch bundles Standard HP-UX patch bundle use and release datesQuick start guide for patching HP-UX systems Useful pages on the Itrc Using the IT Resource CenterObtaining an Itrc user account Find individual patchesKey features Accessing the patch database and finding an individual patchClick the add to selected patch list button Using the IT Resource Center Advanced topic checking for all patch dependencies Check for patches with dependenciesUsing the IT Resource Center Click the add to selected patch list button Support information digests Standard patch bundlesCustom patch bundles run a patch assessment Ask your peers in the forumsSearch knowledge base Using software depots for patch management Common software distributor commands for patchingDepot types Directory depotsUsing depots Tape depotsViewing depots Choosing depot type and depot locationSwlist -l depot $ swlist -l depot Swlist -l depot @ remotesystem$ swlist -l depot @ swdepot.xyz.com Creating and adding to a directory depot Copying patches to depots Depot/patches/11.11Registering and unregistering directory depots Advanced topic HP-UX Software AssistantCopying products with patch dependencies to depots $ swreg -l depot /depot/patches/2003-07periodicdepot Advanced topic access control listsExamples of registering and unregistering depots $ swreg -u -l depot /depot/patches/2003-07periodicdepotVerifying directory depots Examples of verifying directory depots$ swverify -d \* @ /mydepots/newdirectorydepot Verification succeeded Verification had errorsRemoving software from a directory depot $ swverify -d \* @ /mydepots/PHSS30278depotExecution succeeded $ /usr/sbin/cleanup -d /mydepots/patchdepot Advanced topic removing superseded patches from a depot$ swlist -l product -d @ /mydepots/patchdepot $ swlist -l product @ /mydepots/patchdepot Installing patches from a depotRemoving a directory depot $ swreg -u -l depot /mydepots/PHCO27780depotReboots the system when required Examples of installing patches from a depot Analysis succeededInstalling products with patch dependencies from a depot Custom patch bundlesAnalysis and Execution succeeded Examples of listing patches and bundles Rev Patch descriptionRev Bundle Description Creating a custom bundle $ swlist -d @ /mydepots/temporarydepotAnalysis succeeded Finally, remove the temporary depot Using HP-UX Software Assistant for patch management For more informationUsing Dynamic Root Disk for patch management Drd1m Using the Patch Assessment Tool Patch Assessment ToolBenefits of the Patch Assessment Tool Example of running the Patch Assessment Tool Select upload new system information Support and other resources Contacting HPRelated information Typographic conventions HP websitesNon-HP websites Times Patch usage models Patch usage model 1 hardware/application software change Components in test Image Then productionDRD Begi n Product needs to be certified on HP-UX 11i v2/v3 Patch usage model 3 operating environment cold install Patch usage model 3 operating environment cold install Patch usage model 4 operating environment update Patch usage model 4 operating environment update Patch usage model 5 proactive patch Create clonePatch usage model 6 reactive patch Passed? SystemGlossary AncestorIPD SWA Index Index See also HWE Index
Top Page Image Contents