Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Dev log api v1.2 #688

Closed
wants to merge 4 commits into from
Closed

Dev log api v1.2 #688

wants to merge 4 commits into from

Conversation

inliniac
Copy link
Contributor

@inliniac inliniac commented Dec 5, 2013

Not for merge, only review.

@victorjulien
Introduce packet logging output API
5c39626 
This patch introduces a new API for outputs that log based on the
packet, such as alert outputs. In converts fast-log to the new API.

The API gets rid of the concept of each logger being a thread module,
but instead there is one thread module that runs all packet loggers.
Through the registration function OutputRegisterPacketModule a log
module can register itself to be considered for each packet.

Each logger registers itself to this new API with 2 functions and the
OutputCtx object that was already used in the old implementation.
The function pointers are:

LogFunc:       the log function

ConditionFunc: this function is called before the LogFunc and only
               if this returns TRUE the LogFunc is called.

For a simple alert logger like fast-log, the condition function will
simply return TRUE if p->alerts.cnt > 0.
@victorjulien
Packet logging API: convert unified2
a775c7d 
Convert unified2 alert to new logging API.
@victorjulien
Introduce TX logging API
496f2b7 
This patch introduces a new API for logging transactions from
tx-aware app layer protocols. It runs all the registered loggers
from a single thread module. This thread module takes care of the
transaction handling and flow locking. The logger just gets a
transaction to log out.

All loggers for a protocol will be run at the same time, so there
will not be any timing differences.

Loggers will no longer act as Thread Modules in the strictest sense.
The Func is NULL, and SetupOuputs no longer attaches them to the
thread module chain individually. Instead, after registering through
OutputRegisterTxModule, the setup data is used in the single logging
module.

The logger (LogFunc) is called for each transaction once, at the end
of the transaction.
@victorjulien
TX logging API: convert HTTP log
cee39e2 
Convert the HTTP log to the new TX logging API.
@inliniac inliniac closed this Dec 9, 2013
@inliniac inliniac deleted the dev-log-api-v1.2 branch December 10, 2013 15:30
@regit regit mentioned this pull request Jun 16, 2014
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
2 participants
@inliniac @victorjulien