Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 79665 - sys-apps/acct: lastcomm produces garbled output
Summary: sys-apps/acct: lastcomm produces garbled output
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: Current packages (show other bugs)
Hardware: x86 Linux
: High normal (vote)
Assignee: Gentoo's Team for Core System packages
URL:
Whiteboard:
Keywords:
: 87585 (view as bug list)
Depends on:
Blocks:
 
Reported: 2005-01-26 19:26 UTC by Josh Keegan
Modified: 2005-04-01 12:13 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Josh Keegan 2005-01-26 19:26:53 UTC 
recompiling with no optimizations did not fix the problem.

BSD style accounting and V3 are turned on in the kernel (2.6.11-rc1-mm1).

Old redhat bug (1999!) suggests this may be a problem re: sys/acct.h vs linux/acct.h, but after messing with the source to switch from one to the other the code compiled but the same problem remained.

Reproducible: Always
Steps to Reproduce:
1. Turn on BSD style accounting and V3 of that in the kernel
2. # emerge acct
3. # /etc/init.d/acct start
4. # lastcomm
Actual Results:  
??                      root     ??         0.00 secs Wed Dec 31 19:00
D?                      root     ??         0.00 secs Wed Dec 31 19:00
(?                      17523789 ??         0.00 secs Wed Dec 31 19:00
 ?                      root     ??         0.00 secs Wed Dec 31 19:00
(?                 F    17523789 ??         0.00 secs Wed Dec 31 19:00
(?                 F    17523789 ??         0.00 secs Wed Dec 31 19:00
??                      root     ??         0.00 secs Wed Dec 31 19:00
?? 

is an example output

Expected Results:  
listed process names instead of random jumble of mostly question marks.

no other programs running
Comment 1 Thierry Carrez (RETIRED) gentoo-dev 2005-01-27 03:10:43 UTC 
Looks like a bug, not a vulnerability. Reassigning...
Comment 2 Wojtek Sczygiol 2005-02-01 08:51:52 UTC 
It's not a bug. You just need a patched version of the acct utilities to read the new v3 file format. Check out:
http://www.physik3.uni-rostock.de/tim/kernel/utils/acct/

This version should be included to portage (maybe masked).  
Works for me.
Comment 3 Robin Johnson archtester Gentoo Infrastructure gentoo-dev Security 2005-03-20 19:47:49 UTC 
I've put an -r1 build into CVS, that uses the new upstream version for the v3 accounting file format.
Comment 4 Jakub Drwal 2005-04-01 12:13:20 UTC 
*** Bug 87585 has been marked as a duplicate of this bug. ***