(LOGS) add user.log.1 and variations

jtmoon79 · Jun 22, 2024 · 2d7f5e2 · 2d7f5e2
1 parent fbad9a4
commit 2d7f5e2
Show file tree

Hide file tree

Showing 43 changed files with 1,024 additions and 36 deletions.
diff --git a/logs/Debian9/user.log.1.bz2 b/logs/Debian9/user.log.1.bz2
diff --git a/logs/Debian9/user.log.1.gz b/logs/Debian9/user.log.1.gz
diff --git a/logs/Debian9/user.log.1.lz b/logs/Debian9/user.log.1.lz
diff --git a/logs/Debian9/user.log.1.lz4 b/logs/Debian9/user.log.1.lz4
diff --git a/logs/Debian9/user.log.1.lzo b/logs/Debian9/user.log.1.lzo
diff --git a/logs/Debian9/user.log.1.xz b/logs/Debian9/user.log.1.xz
diff --git a/logs/Debian9/user.log.1.zst b/logs/Debian9/user.log.1.zst
diff --git a/logs/Debian9/user.log.tar b/logs/Debian9/user.log.tar
diff --git a/logs/Debian9/user.log.tar.gz b/logs/Debian9/user.log.tar.gz
diff --git a/logs/Debian9/user.log.tar.lz b/logs/Debian9/user.log.tar.lz
diff --git a/logs/Debian9/user.log.tar.lzo b/logs/Debian9/user.log.tar.lzo
diff --git a/logs/Debian9/user.log.tar.xz b/logs/Debian9/user.log.tar.xz
diff --git a/logs/Debian9/user.log.zip b/logs/Debian9/user.log.zip
diff --git a/tools/compare-current-and-expected/expected.stderr b/tools/compare-current-and-expected/expected.stderr
diff --git a/tools/compare-current-and-expected/expected.stdout b/tools/compare-current-and-expected/expected.stdout
@@ -18950,8 +18950,20 @@
 ⇳
 ./logs/Debian9/user.log.1                                                                                            ┋20220205T191711.000000000┋Feb  6 03:17:11 host5 mtp-probe: bus: 1, device: 3 was not an MTP device
 ⇳
+./logs/Debian9/user.log.1.xz                                                                                         ┋20220205T191711.000000000┋Feb  6 03:17:11 host5 mtp-probe: checking bus 1, device 3: "/sys/devices/platform/soc/2849.usb/usb1/1-1/1-1.1"
+⇳
+./logs/Debian9/user.log.1.xz                                                                                         ┋20220205T191711.000000000┋Feb  6 03:17:11 host5 mtp-probe: bus: 1, device: 3 was not an MTP device
+⇳
+./logs/Debian9/user.log.tar|./logs/Debian9/user.log.1                                                                ┋20220205T191711.000000000┋Feb  6 03:17:11 host5 mtp-probe: checking bus 1, device 3: "/sys/devices/platform/soc/2849.usb/usb1/1-1/1-1.1"
+⇳
+./logs/Debian9/user.log.tar|./logs/Debian9/user.log.1                                                                ┋20220205T191711.000000000┋Feb  6 03:17:11 host5 mtp-probe: bus: 1, device: 3 was not an MTP device
+⇳
 ./logs/Debian9/user.log.1                                                                                            ┋20220205T191739.000000000┋Feb  6 03:17:39 host5 root[434]: mount --verbose -t cifs //host6/Vol /mnt/Vol -o ro,nodev,noexec,noiversion,nomand,_netdev,norelatime,nostrictatime,nosuid,loud -o domain=NET -o ro
 ⇳
+./logs/Debian9/user.log.1.xz                                                                                         ┋20220205T191739.000000000┋Feb  6 03:17:39 host5 root[434]: mount --verbose -t cifs //host6/Vol /mnt/Vol -o ro,nodev,noexec,noiversion,nomand,_netdev,norelatime,nostrictatime,nosuid,loud -o domain=NET -o ro
+⇳
+./logs/Debian9/user.log.tar|./logs/Debian9/user.log.1                                                                ┋20220205T191739.000000000┋Feb  6 03:17:39 host5 root[434]: mount --verbose -t cifs //host6/Vol /mnt/Vol -o ro,nodev,noexec,noiversion,nomand,_netdev,norelatime,nostrictatime,nosuid,loud -o domain=NET -o ro
+⇳
 ./logs/Windows10Pro/System32/LogFiles/setupcln/setupact.log                                                          ┋20220210T051658.000000000┋2022-02-10 13:16:58, Info                         Client Process:C:\WINDOWS\system32\cleanmgr.exe
 ⇳
 ./logs/Windows10Pro/System32/LogFiles/setupcln/setupact.log                                                          ┋20220210T051658.000000000┋2022-02-10 13:16:58, Info                         pszWellKnownDirs:ESD\Windows;$Windows.~WS;ESD\Download

diff --git a/tools/compare-current-and-expected/logs.txt b/tools/compare-current-and-expected/logs.txt
@@ -54,19 +54,19 @@
 ./logs/Debian9/samba/log.smbd.1
 ./logs/Debian9/syslog
 ./logs/Debian9/user.log.1
-#./logs/Debian9/user.log.1.bz2
-#./logs/Debian9/user.log.1.gz
-#./logs/Debian9/user.log.1.lz
-#./logs/Debian9/user.log.1.lz4
-#./logs/Debian9/user.log.1.lzo
-#./logs/Debian9/user.log.1.xz
-#./logs/Debian9/user.log.1.zst
-#./logs/Debian9/user.log.tar
-#./logs/Debian9/user.log.tar.gz
-#./logs/Debian9/user.log.tar.lz
-#./logs/Debian9/user.log.tar.lzo
-#./logs/Debian9/user.log.tar.xz
-#./logs/Debian9/user.log.zip
+./logs/Debian9/user.log.1.bz2
+./logs/Debian9/user.log.1.gz
+./logs/Debian9/user.log.1.lz
+./logs/Debian9/user.log.1.lz4
+./logs/Debian9/user.log.1.lzo
+./logs/Debian9/user.log.1.xz
+./logs/Debian9/user.log.1.zst
+./logs/Debian9/user.log.tar
+./logs/Debian9/user.log.tar.gz
+./logs/Debian9/user.log.tar.lz
+./logs/Debian9/user.log.tar.lzo
+./logs/Debian9/user.log.tar.xz
+./logs/Debian9/user.log.zip
 ./logs/Debian9/Xorg.0.log
 ./logs/Debian9/Xorg.0.log.old
 ./logs/FedoraRemix29/dnf.librepo.log

diff --git a/tools/compare-current-and-expected/logs/Debian9/user.log.1.bz2.stderr b/tools/compare-current-and-expected/logs/Debian9/user.log.1.bz2.stderr
@@ -0,0 +1,62 @@
+
+Files:
+
+File: ./logs/Debian9/user.log.1.bz2
+  About:
+      filetype       : TEXT UTF8/ASCII (BZIP2)
+      logmessagetype : syslog lines
+  Printed:
+      bytes         : 0
+      flushes       : 0
+      lines         : 0
+      syslines      : 0
+  Processed:
+      file size compressed  : 292 (0x124) (bytes)
+      file size uncompressed: 364 (0x16C) (bytes)
+      bytes         : 728 (0x2D8)
+      bytes total   : 364 (0x16C)
+      block size    : 256 (0x100)
+      blocks        : 1
+      blocks total  : 2 (512 bytes)
+      lines         : 2
+      syslines      : 3
+      syslines high : 2
+  Parsers:
+                   datetime format missing year; estimated year of last sysline 2022
+  Processing Stores:
+      storage: LineReader::find_line() lines                       : hit  0, miss  7,  0.0%
+      caching: LineReader::find_line() LRU cache                   : hit  4, miss  5, 44.4%, put  2
+      copying: SyslineReader::get_boxptrs()                        : sgl 37, dbl   0, mult  0
+      storage: SyslineReader::find_sysline() syslines              : hit  0, miss  5,  0.0%
+      caching: SyslineReader::find_sysline() syslines_by_range_map : hit  0, miss  5,  0.0%, put  3
+      caching: SyslineReader::find_sysline() LRU cache             : hit  0, miss  5,  0.0%, put  5
+      caching: SyslineReader::parse_datetime_in_line() LRU cache   : hit  1, miss  4, 20.0%, put  0
+      optimize:SyslineReader::ezcheck12                            : hit  0, miss  0,  0.0%, largest skipped 0
+      optimize:SyslineReader::ezcheckd2                            : hit  0, miss  7,  0.0%, largest skipped 0
+      optimize:SyslineReader::ezcheck12d2                          : hit  0, miss 30,  0.0%, largest skipped 0
+      process: regex captures attempted                            : 37
+  Processing Drops:
+
+Program Summary:
+
+Paths considered       : 1
+Paths not processed    : 0
+Files processed        : 1
+Files printed          : 0
+Printed bytes          : 0
+Printed flushes        : 0
+Printed lines          : 0
+Printed syslines       : 0
+Printed evtx events    : 0
+Printed fixedstruct    : 0
+Printed journal events : 0
+Regex patterns known   : 172
+Regex patterns compiled: 34
+Datetime filter -a     : 1999-03-03 00:00:00 +00:00 (1999-03-03 00:00:00 +00:00)
+Datetime filter -b     : 2023-04-10 22:10:32 +00:00 (2023-04-10 22:10:32 +00:00)
+Channel Receive ok     : 2
+Channel Receive err    : 0
+Threads Spawned        : 1
+Thread Spawn errors    : 0
+Platform               : x86_64-unknown-linux-gnu
+Allocator              : Jemalloc
diff --git a/tools/compare-current-and-expected/logs/Debian9/user.log.1.bz2.stdout b/tools/compare-current-and-expected/logs/Debian9/user.log.1.bz2.stdout
diff --git a/tools/compare-current-and-expected/logs/Debian9/user.log.1.gz.stderr b/tools/compare-current-and-expected/logs/Debian9/user.log.1.gz.stderr
@@ -0,0 +1,62 @@
+
+Files:
+
+File: ./logs/Debian9/user.log.1.gz
+  About:
+      filetype       : TEXT UTF8/ASCII (GZIP)
+      logmessagetype : syslog lines
+  Printed:
+      bytes         : 0
+      flushes       : 0
+      lines         : 0
+      syslines      : 0
+  Processed:
+      file size compressed  : 260 (0x104) (bytes)
+      file size uncompressed: 364 (0x16C) (bytes)
+      bytes         : 364 (0x16C)
+      bytes total   : 364 (0x16C)
+      block size    : 256 (0x100)
+      blocks        : 1
+      blocks total  : 2 (512 bytes)
+      lines         : 2
+      syslines      : 3
+      syslines high : 2
+  Parsers:
+                   datetime format missing year; estimated year of last sysline 2022
+  Processing Stores:
+      storage: LineReader::find_line() lines                       : hit  0, miss  7,  0.0%
+      caching: LineReader::find_line() LRU cache                   : hit  4, miss  5, 44.4%, put  2
+      copying: SyslineReader::get_boxptrs()                        : sgl 37, dbl   0, mult  0
+      storage: SyslineReader::find_sysline() syslines              : hit  0, miss  5,  0.0%
+      caching: SyslineReader::find_sysline() syslines_by_range_map : hit  0, miss  5,  0.0%, put  3
+      caching: SyslineReader::find_sysline() LRU cache             : hit  0, miss  5,  0.0%, put  5
+      caching: SyslineReader::parse_datetime_in_line() LRU cache   : hit  1, miss  4, 20.0%, put  0
+      optimize:SyslineReader::ezcheck12                            : hit  0, miss  0,  0.0%, largest skipped 0
+      optimize:SyslineReader::ezcheckd2                            : hit  0, miss  7,  0.0%, largest skipped 0
+      optimize:SyslineReader::ezcheck12d2                          : hit  0, miss 30,  0.0%, largest skipped 0
+      process: regex captures attempted                            : 37
+  Processing Drops:
+
+Program Summary:
+
+Paths considered       : 1
+Paths not processed    : 0
+Files processed        : 1
+Files printed          : 0
+Printed bytes          : 0
+Printed flushes        : 0
+Printed lines          : 0
+Printed syslines       : 0
+Printed evtx events    : 0
+Printed fixedstruct    : 0
+Printed journal events : 0
+Regex patterns known   : 172
+Regex patterns compiled: 34
+Datetime filter -a     : 1999-03-03 00:00:00 +00:00 (1999-03-03 00:00:00 +00:00)
+Datetime filter -b     : 2023-04-10 22:10:32 +00:00 (2023-04-10 22:10:32 +00:00)
+Channel Receive ok     : 2
+Channel Receive err    : 0
+Threads Spawned        : 1
+Thread Spawn errors    : 0
+Platform               : x86_64-unknown-linux-gnu
+Allocator              : Jemalloc
diff --git a/tools/compare-current-and-expected/logs/Debian9/user.log.1.gz.stdout b/tools/compare-current-and-expected/logs/Debian9/user.log.1.gz.stdout
diff --git a/tools/compare-current-and-expected/logs/Debian9/user.log.1.lz.stderr b/tools/compare-current-and-expected/logs/Debian9/user.log.1.lz.stderr
@@ -0,0 +1,59 @@
+
+Files:
+
+File: ./logs/Debian9/user.log.1.lz
+  About:
+      filetype       : TEXT UTF8/ASCII
+      logmessagetype : syslog lines
+  Printed:
+      bytes         : 0
+      flushes       : 0
+      lines         : 0
+      syslines      : 0
+  Processed:
+      file size     : 274 (0x112) (bytes)
+      bytes         : 256 (0x100)
+      bytes total   : 274 (0x112)
+      block size    : 256 (0x100)
+      blocks        : 1
+      blocks total  : 2 (512 bytes)
+      lines         : 0
+      syslines      : 0
+      syslines high : 0
+  Processing Stores:
+      storage: LineReader::find_line() lines                       : hit 0, miss 2,  0.0%
+      caching: LineReader::find_line() LRU cache                   : hit 0, miss 2,  0.0%, put 0
+      copying: SyslineReader::get_boxptrs()                        : sgl 0, dbl  0, mult 0
+      storage: SyslineReader::find_sysline() syslines              : hit 0, miss 1,  0.0%
+      caching: SyslineReader::find_sysline() syslines_by_range_map : hit 0, miss 1,  0.0%, put 0
+      caching: SyslineReader::find_sysline() LRU cache             : hit 0, miss 1,  0.0%, put 0
+      caching: SyslineReader::parse_datetime_in_line() LRU cache   : hit 0, miss 1,  0.0%, put 0
+      optimize:SyslineReader::ezcheck12                            : hit 0, miss 0,  0.0%, largest skipped 0
+      optimize:SyslineReader::ezcheckd2                            : hit 0, miss 0,  0.0%, largest skipped 0
+      optimize:SyslineReader::ezcheck12d2                          : hit 0, miss 0,  0.0%, largest skipped 0
+      process: regex captures attempted                            : 0
+  Processing Drops:
+
+Program Summary:
+
+Paths considered       : 1
+Paths not processed    : 0
+Files processed        : 1
+Files printed          : 0
+Printed bytes          : 0
+Printed flushes        : 0
+Printed lines          : 0
+Printed syslines       : 0
+Printed evtx events    : 0
+Printed fixedstruct    : 0
+Printed journal events : 0
+Regex patterns known   : 172
+Regex patterns compiled: 0
+Datetime filter -a     : 1999-03-03 00:00:00 +00:00 (1999-03-03 00:00:00 +00:00)
+Datetime filter -b     : 2023-04-10 22:10:32 +00:00 (2023-04-10 22:10:32 +00:00)
+Channel Receive ok     : 2
+Channel Receive err    : 0
+Threads Spawned        : 1
+Thread Spawn errors    : 0
+Platform               : x86_64-unknown-linux-gnu
+Allocator              : Jemalloc
diff --git a/tools/compare-current-and-expected/logs/Debian9/user.log.1.lz.stdout b/tools/compare-current-and-expected/logs/Debian9/user.log.1.lz.stdout
diff --git a/tools/compare-current-and-expected/logs/Debian9/user.log.1.lz4.stderr b/tools/compare-current-and-expected/logs/Debian9/user.log.1.lz4.stderr
@@ -0,0 +1,62 @@
+
+Files:
+
+File: ./logs/Debian9/user.log.1.lz4
+  About:
+      filetype       : TEXT UTF8/ASCII (LZMA4)
+      logmessagetype : syslog lines
+  Printed:
+      bytes         : 0
+      flushes       : 0
+      lines         : 0
+      syslines      : 0
+  Processed:
+      file size compressed  : 322 (0x142) (bytes)
+      file size uncompressed: 364 (0x16C) (bytes)
+      bytes         : 728 (0x2D8)
+      bytes total   : 364 (0x16C)
+      block size    : 256 (0x100)
+      blocks        : 1
+      blocks total  : 2 (512 bytes)
+      lines         : 2
+      syslines      : 3
+      syslines high : 2
+  Parsers:
+                   datetime format missing year; estimated year of last sysline 2022
+  Processing Stores:
+      storage: LineReader::find_line() lines                       : hit  0, miss  7,  0.0%
+      caching: LineReader::find_line() LRU cache                   : hit  4, miss  5, 44.4%, put  2
+      copying: SyslineReader::get_boxptrs()                        : sgl 37, dbl   0, mult  0
+      storage: SyslineReader::find_sysline() syslines              : hit  0, miss  5,  0.0%
+      caching: SyslineReader::find_sysline() syslines_by_range_map : hit  0, miss  5,  0.0%, put  3
+      caching: SyslineReader::find_sysline() LRU cache             : hit  0, miss  5,  0.0%, put  5
+      caching: SyslineReader::parse_datetime_in_line() LRU cache   : hit  1, miss  4, 20.0%, put  0
+      optimize:SyslineReader::ezcheck12                            : hit  0, miss  0,  0.0%, largest skipped 0
+      optimize:SyslineReader::ezcheckd2                            : hit  0, miss  7,  0.0%, largest skipped 0
+      optimize:SyslineReader::ezcheck12d2                          : hit  0, miss 30,  0.0%, largest skipped 0
+      process: regex captures attempted                            : 37
+  Processing Drops:
+
+Program Summary:
+
+Paths considered       : 1
+Paths not processed    : 0
+Files processed        : 1
+Files printed          : 0
+Printed bytes          : 0
+Printed flushes        : 0
+Printed lines          : 0
+Printed syslines       : 0
+Printed evtx events    : 0
+Printed fixedstruct    : 0
+Printed journal events : 0
+Regex patterns known   : 172
+Regex patterns compiled: 34
+Datetime filter -a     : 1999-03-03 00:00:00 +00:00 (1999-03-03 00:00:00 +00:00)
+Datetime filter -b     : 2023-04-10 22:10:32 +00:00 (2023-04-10 22:10:32 +00:00)
+Channel Receive ok     : 2
+Channel Receive err    : 0
+Threads Spawned        : 1
+Thread Spawn errors    : 0
+Platform               : x86_64-unknown-linux-gnu
+Allocator              : Jemalloc
diff --git a/tools/compare-current-and-expected/logs/Debian9/user.log.1.lz4.stdout b/tools/compare-current-and-expected/logs/Debian9/user.log.1.lz4.stdout
diff --git a/tools/compare-current-and-expected/logs/Debian9/user.log.1.lzo.stderr b/tools/compare-current-and-expected/logs/Debian9/user.log.1.lzo.stderr
@@ -0,0 +1,59 @@
+
+Files:
+
+File: ./logs/Debian9/user.log.1.lzo
+  About:
+      filetype       : TEXT UTF8/ASCII
+      logmessagetype : syslog lines
+  Printed:
+      bytes         : 0
+      flushes       : 0
+      lines         : 0
+      syslines      : 0
+  Processed:
+      file size     : 346 (0x15A) (bytes)
+      bytes         : 256 (0x100)
+      bytes total   : 346 (0x15A)
+      block size    : 256 (0x100)
+      blocks        : 1
+      blocks total  : 2 (512 bytes)
+      lines         : 5
+      syslines      : 0
+      syslines high : 0
+  Processing Stores:
+      storage: LineReader::find_line() lines                       : hit   0, miss  11,  0.0%
+      caching: LineReader::find_line() LRU cache                   : hit   1, miss   6, 14.3%, put   5
+      copying: SyslineReader::get_boxptrs()                        : sgl 516, dbl    0, mult   0
+      storage: SyslineReader::find_sysline() syslines              : hit   0, miss   1,  0.0%
+      caching: SyslineReader::find_sysline() syslines_by_range_map : hit   0, miss   1,  0.0%, put   0
+      caching: SyslineReader::find_sysline() LRU cache             : hit   0, miss   1,  0.0%, put   0
+      caching: SyslineReader::parse_datetime_in_line() LRU cache   : hit   0, miss   6,  0.0%, put   0
+      optimize:SyslineReader::ezcheck12                            : hit   0, miss   0,  0.0%, largest skipped 0
+      optimize:SyslineReader::ezcheckd2                            : hit  25, miss  11, 69.4%, largest skipped 34
+      optimize:SyslineReader::ezcheck12d2                          : hit 168, miss 312, 35.0%, largest skipped 29
+      process: regex captures attempted                            : 323
+  Processing Drops:
+
+Program Summary:
+
+Paths considered       : 1
+Paths not processed    : 0
+Files processed        : 1
+Files printed          : 0
+Printed bytes          : 0
+Printed flushes        : 0
+Printed lines          : 0
+Printed syslines       : 0
+Printed evtx events    : 0
+Printed fixedstruct    : 0
+Printed journal events : 0
+Regex patterns known   : 172
+Regex patterns compiled: 166
+Datetime filter -a     : 1999-03-03 00:00:00 +00:00 (1999-03-03 00:00:00 +00:00)
+Datetime filter -b     : 2023-04-10 22:10:32 +00:00 (2023-04-10 22:10:32 +00:00)
+Channel Receive ok     : 2
+Channel Receive err    : 0
+Threads Spawned        : 1
+Thread Spawn errors    : 0
+Platform               : x86_64-unknown-linux-gnu
+Allocator              : Jemalloc
diff --git a/tools/compare-current-and-expected/logs/Debian9/user.log.1.lzo.stdout b/tools/compare-current-and-expected/logs/Debian9/user.log.1.lzo.stdout