Other Appliance Logging

hsm information show

Output from the lunash:>hsm information show command includes additional log data as shown in the following example.

[local_host] lunash:>hsm information show
 
 
HSM Event Counters:
 
Operation Requests:                           21998
Operation Errors:                              1707
Crypto Operation Requests:                        0
Crypto Operation Errors:                          0
Critical Events:                                  0
Non-Critical Events:                             34
 
 
Command Result : 0 (Success)
 

sysstatd, snmp and ntls periodically make calls to the HSM and these calls result in incremented counters for Operation Requests and Operation Errors. luna-snmp polls the HSM every minute and increments these two counters by 49 and 1 respectively. sysstatd polls the HSM with each rotation of the LCD messages (~15 to 20 seconds) and increments these two counters by 25 and 3 respectively. ntls polls the HSM repeatedly and increments the Operation Requests counter by more than 600 per minute.

Crypto Operation Requests and Crypto Operation Errors reflect counts from client application requests to the HSM.

Critical Events are catastrophic failure of the HSM firmware as reported by the HSM itself. An increment in this counter also results in a crash log file and a syslog message (messages) similar to the following example:

2012 Feb 22 03:15:13 LunaSA5  local6 crit  oamp[2318]: CRIT: Fatal error 0x00300203
2012 Feb 22 03:15:13 LunaSA5  local6 info  oamp[2318]: info : 0 : HSM critical event detected.  Dual port dump generated : hsm_dump_20120222031513
 

Non-Critical Events are either ERR or INFO messages. A count the INFO and ERR messages in the following excerpt reflects the 34 reported in the example above.

2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: ----- HSM Logging started
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     Warm boot
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     FW Rev 6.2.1-10
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     File: SOURCE/LUNA2/MAIN_MOD/main.c
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     Date: Jul 29 2011, Time: 16:53:13
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     POWER-UP LOG DUMP START
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     Power-up log created
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     Appending power-up log...
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     HSM is powered-up
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     HSM time: 0 min (YYYY:MM:DD:hh:mm:ss = 0000:01:01:00:00:05.04)
2014 Aug 21 07:18:14 local_host  local6 err  oamp[2100]: ERR:    RTC: lost all power
2014 Aug 21 07:18:14 local_host  local6 err  oamp[2100]: ERR:    RTC: zeroized on power loss
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     RTC: re-configuring...passed. Clock restarted.
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     Zeroizing HSM after decommission...LOG(INFO):     POWER-UP LOG DUMP END
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     Erasing power-up log
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     HSM time: 0 min (YYYY:MM:DD:hh:mm:ss = 0000:01:01:00:00:53.21)
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     MM_Init OK
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     PM_Init OK
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     I2C_Init OK
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     RTC_Init OK
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     NVRAM_Init OK
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     CGX Ver: 0xC0020802 HA Mode: 0x00000000 KeyStatus: 0x10000000 0x0000006D ES Flags: 0x00000002
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     CGX_Init OK
2014 Aug 21 07:18:14 local_host  local6 err  oamp[2100]: ERR:    MTK: security function was zeroized for unknown reason
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     MTK_Init OK
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     sxl_init OK
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     PE1746_Init OK
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     RN_Init OK
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     OH_Init OK
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     CA_AlgorithmSelfTest(): HW disabled, skipping all self tests
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     CA_Init OK
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     UM_Init OK
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     SM_Init OK
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     Supported callback I/O v.1
2014 Aug 21 07:18:14 local_host  local6 info  oamp[2100]: INFO:     Supported callback protocol v.1