Option to VERITAS Cluster Server (VCS) lltstat command will panic system.

Article:TECH9700  |  Created: 2001-01-05  |  Updated: 2001-01-07  |  Article URL http://www.symantec.com/docs/TECH9700
Article Type
Technical Solution


Environment

Issue



Option to VERITAS Cluster Server (VCS) lltstat command will panic system.

Solution



Dear Valued VERITAS Customer,

Because product quality and customer responsiveness are consistent VERITAS Software hallmarks, we take any and all issues very seriously and have quickly moved to address them.

This TechAlert is to inform you of a recently discovered issue, validated by Technical Support, involving VERITAS Cluster Server.  

The issue:  When using VERITAS Cluster Server (VCS), version 1.3.0 on Solaris,  issuing the lltstat command with the unsupported and undocumented '-L' option will panic that system. The '-L' option was intended to be used with a new feature in a future release and was inadvertently left enabled in the released utility. This problem will not be encountered during normal usage of VCS or the lltstat command.

The archive described in this TechAlert contains a fixed lltstat utility that has the '-L' option disabled. Since the '-L' option was not previously available there has been no loss of functionality in lltstat.  This issue only exists in the 1.3.0 release of VCS for Solaris. Do not use this lltstat-fix binary on any other VCS release. This fixed binary will be included in the upcoming patch release of VCS for Solaris, and is not an issue in VCS for HP/UX or NT. This problem has been identified as VERITAS incident #57214.

The version of LLT on a  system can be identified by checking the VERSION field of the VRTSllt package:
# pkginfo -l VRTSllt
PKGINST: VRTSllt
NAME: VERITAS Low Latency Transport
CATEGORY: optional
ARCH: sparc
VERSION: 1.3.0
...

The archive containing this fix can be downloaded from ftp://ftp.veritas.com/pub/support/i57214.lltstat-fix.tar.Z . Click on the preceding hyperlink or use the command line as follows:
1) ftp to ftp.veritas.com
2) login as "anonymous" using COMPLETE e-mail address as the password.
3) cd to /pub/support (this is a 'blind' directory so files cannot be listed)
4) set ftp mode to binary
5) get the file named "i57214.lltstat-fix.tar.Z"

Checksum and size of released lltstat that contains the problem:
# sum /sbin/lltstat
3787 52 /sbin/lltstat
# ls -l /sbin/lltstat
-rwxrwxr-x 1 root sys 26444 Sep 27 14:24 /sbin/lltstat

Checksum and size of fixed lltstat:
# sum lltstat-fix
63113 51 lltstat-fix
# ls -l lltstat-fix
-rwxrwx--- 1 root sys 25876 Jan 29 20:44 lltstat-fix

Checksum and size of archive file:
# sum i57214.lltstat-fix.tar.Z
17155 31 i57214.lltstat-fix.tar.Z
# ls -l i57214.lltstat-fix.tar.Z
-rw-r--r-- 1 root other 15802 Feb 1 10:36 i57214.lltstat-fix.tar.Z

To install the fixed lltstat perform the following steps:

1) move the released lltstat to a safe place as a backup:
    # cp /sbin/lltstat /sbin/lltstat-bad
2) Change the permissions on the bad lltstat so it may not be executed:
    # chmod 600 /sbin/lltstat-bad
3) copy the new lltstat to /sbin:
    # cp lltstat-fix /sbin/lltstat
4) Insure the correct permissions and ownership of the new lltstat utility:
    # chmod 770 /sbin/lltstat
    # chown root:sys /sbin/lltstat
It is also considered a 'best practice' to have the permissions for the LLT device file itself allow only root to have read/write access. Please be certain to issue the following command (or use whichever permissions will best reflect the particular sites security policies):
    # chmod 600 /dev/llt

Supplemental Materials

SourceDEFECT
Value57214

Legacy ID



234326


Article URL http://www.symantec.com/docs/TECH9700


Terms of use for this information are found in Legal Notices