Refactor user parameter handling in CommandCollector and update DB2 user references in configuration checks; enhance network checks for clarity and accuracy.

Author: devanshjainms

src/module_utils/collector.py

@@ -130,7 +130,7 @@ def collect(self, check, context) -> str:
                     return f"ERROR: Invalid user parameter: {user}"
 
                 if user == "db2sid":
-                    user = f"db2{context.get('database_sid', '')}"
+                    user = f"db2{context.get('database_sid', '').lower()}"
 
                 command = f"sudo -u {shlex.quote(user)} {command}"
 

src/roles/configuration_checks/tasks/files/db2.yml

@@ -536,3 +536,106 @@ checks:
     report:                             *check
     references:
       sap:                              "2751102"
+
+  - id:                                 "DB-Db2-0020"
+    name:                               "Filesystem Mount Points"
+    description:                        "Displays all filesystem mount points on the Db2 system"
+    category:                           *sap_check
+    severity:                           *info
+    workload:                           *sap
+    applicability:
+      os_type:                          [*suse, *redhat]
+      os_version:                       *all_versions
+      hardware_type:                    *vm
+      storage_type:                     *all_storage
+      role:                             [*db_role]
+      database_type:                    [*db2]
+    collector_type:                     *azure
+    collector_args:
+      resource_type:                    "filesystem"
+    report:                             *table
+    references:
+      microsoft:                        "https://learn.microsoft.com/azure/virtual-machines/workloads/sap/dbms-guide-ibm"
+
+  - id:                                 "DB-Db2-0021"
+    name:                               "Azure Disks"
+    description:                        "Displays Azure disk configuration for the Db2 system"
+    category:                           *sap_check
+    severity:                           *info
+    workload:                           *sap
+    applicability:
+      os_type:                          [*suse, *redhat]
+      os_version:                       *all_versions
+      hardware_type:                    *vm
+      storage_type:                     *all_storage
+      role:                             [*db_role]
+      database_type:                    [*db2]
+    collector_type:                     *azure
+    collector_args:
+      resource_type:                    "disk"
+    report:                             *table
+    references:
+      microsoft:                        "https://learn.microsoft.com/azure/virtual-machines/workloads/sap/dbms-guide-ibm"
+
+  - id:                                 "DB-Db2-0022"
+    name:                               "LVM Groups"
+    description:                        "Lists all LVM groups to ensure SAP HANA directories are configured with supported LVM configurations."
+    category:                           *sap_check
+    severity:                           *info
+    workload:                           *sap
+    applicability:
+      os_type:                          [*suse, *redhat]
+      os_version:                       *all_versions
+      hardware_type:                    *vm
+      storage_type:                     *all_storage
+      role:                             [*db_role]
+      database_type:                    [*hana]
+    collector_type:                     *azure
+    collector_args:
+      resource_type:                    "lvm_groups"
+    report:                             *table
+    references:
+      sap:                              "2972496"
+      microsoft:                        "https://docs.microsoft.com/en-us/azure/virtual-machines/workloads/sap/hana-vm-operations-storage"
+
+  - id:                                 "DB-Db2-0023"
+    name:                               "LVM Volumes"
+    description:                        "Lists all LVM volumes to ensure SAP HANA directories are configured with supported LVM configurations."
+    category:                           *sap_check
+    severity:                           *info
+    workload:                           *sap
+    applicability:
+      os_type:                          [*suse, *redhat]
+      os_version:                       *all_versions
+      hardware_type:                    *vm
+      storage_type:                     *all_storage
+      role:                             [*db_role]
+      database_type:                    [*hana]
+    collector_type:                     *azure
+    collector_args:
+      resource_type:                    "lvm_volumes"
+    report:                             *table
+    references:
+      sap:                              "2972496"
+      microsoft:                        "https://docs.microsoft.com/en-us/azure/virtual-machines/workloads/sap/hana-vm-operations-storage"
+
+  - id:                                 "DB-Db2-0024"
+    name:                               "ANF Volumes"
+    description:                        "Lists all ANF volumes to ensure SAP HANA directories are configured with supported ANF configurations."
+    category:                           *sap_check
+    severity:                           *info
+    workload:                           *sap
+    applicability:
+      os_type:                          [*suse, *redhat]
+      os_version:                       *all_versions
+      hardware_type:                    *vm
+      storage_type:                     *all_storage
+      role:                             [*db_role]
+      database_type:                    [*hana]
+    collector_type:                     *azure
+    collector_args:
+      resource_type:                    "anf_volumes"
+    report:                             *table
+    references:
+      sap:                              "2972496"
+      microsoft:                        "https://docs.microsoft.com/en-us/azure/virtual-machines/workloads/sap/hana-vm-operations-storage"

src/roles/configuration_checks/tasks/files/network.yml

@@ -90,8 +90,8 @@ enums:
 
 checks:
   - id:                               "NET-0001"
-    name:                             "No of network interface"
-    description:                      "Checks the number of network interfaces on the VM"
+    name:                             "Virtual Network"
+    description:                      "Retrieves the virtual network(s) associated with the VM's network interface(s)"
     category:                         *network_check
     severity:                         *info
     workload:                         *workload
@@ -103,12 +103,16 @@ checks:
                                         az vm nic list --resource-group {{ CONTEXT.resource_group_name }} \
                                         --vm-name {{ CONTEXT.vm_name }} \
                                         --subscription {{ CONTEXT.subscription_id }} \
-                                        --query "[].{Name:id}" -o tsv | wc -l
+                                        --query "[].id" -o tsv | while read nic_id; do \
+                                          nic=$(basename "$nic_id"); \
+                                          az network nic show --resource-group {{ CONTEXT.resource_group_name }} --name "$nic" \
+                                          --query "ipConfigurations[].subnet.id" -o tsv | awk -F'/' '{print $(NF-2)}'; \
+                                        done
     report:                           *check
 
   - id:                               "NET-0002"
-    name:                             "Network Interface Name"
-    description:                      "Retrieves the name of the network interface(s) attached to the VM"
+    name:                             "Subnet"
+    description:                      "Retrieves the subnet(s) associated with the VM's network interface(s)"
     category:                         *network_check
     severity:                         *info
     workload:                         *workload
@@ -120,12 +124,16 @@ checks:
                                         az vm nic list --resource-group {{ CONTEXT.resource_group_name }} \
                                         --vm-name {{ CONTEXT.vm_name }} \
                                         --subscription {{ CONTEXT.subscription_id }} \
-                                        --query "[].id" -o tsv | xargs -I {} basename {}
+                                        --query "[].id" -o tsv | while read nic_id; do \
+                                          nic=$(basename "$nic_id"); \
+                                          az network nic show --resource-group {{ CONTEXT.resource_group_name }} --name "$nic" \
+                                          --query "ipConfigurations[].subnet.id" -o tsv | xargs -I {} basename {}; \
+                                        done
     report:                           *check
 
   - id:                               "NET-0003"
-    name:                             "Subnet"
-    description:                      "Retrieves the subnet(s) associated with the VM's network interface(s)"
+    name:                             "No of network interface"
+    description:                      "Checks the number of network interfaces on the VM"
     category:                         *network_check
     severity:                         *info
     workload:                         *workload
@@ -137,14 +145,29 @@ checks:
                                         az vm nic list --resource-group {{ CONTEXT.resource_group_name }} \
                                         --vm-name {{ CONTEXT.vm_name }} \
                                         --subscription {{ CONTEXT.subscription_id }} \
-                                        --query "[].id" -o tsv | while read nic_id; do \
-                                          nic=$(basename "$nic_id"); \
-                                          az network nic show --resource-group {{ CONTEXT.resource_group_name }} --name "$nic" \
-                                          --query "ipConfigurations[].subnet.id" -o tsv | xargs -I {} basename {}; \
-                                        done
+                                        --query "[].{Name:id}" -o tsv | wc -l
     report:                           *check
 
   - id:                               "NET-0004"
+    name:                             "Network Interface Name"
+    description:                      "Retrieves the name of the network interface(s) attached to the VM"
+    category:                         *network_check
+    severity:                         *info
+    workload:                         *workload
+    applicability:
+      hardware_type:                  *vm
+    collector_type:                   *azure
+    collector_args:
+      command:                        |-
+                                        az vm nic list --resource-group {{ CONTEXT.resource_group_name }} \
+                                        --vm-name {{ CONTEXT.vm_name }} \
+                                        --subscription {{ CONTEXT.subscription_id }} \
+                                        --query "[].id" -o tsv | xargs -I {} basename {}
+    report:                           *check
+
+
+
+  - id:                               "NET-0005"
     name:                             "Accelerated Networking"
     description:                      "Checks if Accelerated Networking is enabled on the VM's network interface(s)"
     category:                         *network_check
@@ -169,7 +192,7 @@ checks:
       expected_output:                "true"
     report:                           *check
 
-  - id:                               "NET-0005"
+  - id:                               "NET-0006"
     name:                             "No of IP configurations"
     description:                      "Checks the number of IP configurations on each network interface"
     category:                         *network_check
@@ -191,7 +214,7 @@ checks:
                                         done
     report:                           *check
 
-  - id:                               "NET-0006"
+  - id:                               "NET-0007"
     name:                             "IP Details"
     description:                      "Retrieves all IP addresses configured on the VM's network interface(s)"
     category:                         *network_check

src/roles/configuration_checks/tasks/files/virtual_machine.yml

@@ -72,7 +72,8 @@ enums:
   user:
     - root:                           &root "root"
     - sidadm:                         &sidadm "sidadm"
-    - all_users:                      &user [*root, *sidadm]
+    - db2sid:                         &db2sid "db2sid"
+    - all_users:                      &user [*root, *sidadm, *db2sid]
 
   validator_type:
     - string:                         &string "string"
@@ -564,7 +565,7 @@ checks:
     collector_type:                   *command
     collector_args:
       command:                        "db2pd -alldbs -hadr"
-      user:                           *sidadm
+      user:                           *db2sid
     report:                           *section
 
   - id:                               "IC-0029"