aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
main-7.0.x
master-6.0.x
master-5.0.x
master-4.1.x
master-4.0.x
master-3.2.x
suricata-8.0.0-rc1
suricata-8.0.0-beta1
suricata-7.0.10
suricata-7.0.9
suricata-7.0.8
suricata-7.0.7
suricata-7.0.6
suricata-6.0.20
suricata-7.0.5
suricata-6.0.19
suricata-6.0.18
suricata-7.0.4
suricata-6.0.17
suricata-7.0.3
suricata-6.0.16
suricata-7.0.2
suricata-6.0.15
suricata-7.0.1
suricata-6.0.14
suricata-7.0.0
suricata-7.0.0-rc2
suricata-6.0.13
suricata-6.0.12
suricata-6.0.11
suricata-7.0.0-rc1
suricata-6.0.10
suricata-6.0.9
suricata-7.0.0-beta1
suricata-6.0.8
suricata-6.0.7
suricata-6.0.6
suricata-5.0.10
suricata-6.0.5
suricata-5.0.9
suricata-6.0.4
suricata-5.0.8
suricata-6.0.3
suricata-5.0.7
suricata-6.0.2
suricata-5.0.6
suricata-6.0.1
suricata-5.0.5
suricata-4.1.10
suricata-4.1.9
suricata-5.0.4
suricata-6.0.0
suricata-6.0.0-rc1
suricata-6.0.0-beta1
suricata-5.0.3
suricata-4.1.8
suricata-4.1.7
suricata-5.0.2
suricata-4.1.6
suricata-5.0.1
suricata-5.0.0
suricata-5.0.0-rc1
suricata-4.1.5
suricata-5.0.0-beta1
suricata-4.1.4
suricata-4.1.3
suricata-4.0.7
suricata-4.1.2
suricata-4.1.1
suricata-4.1.0
suricata-4.0.6
suricata-4.1.0-rc2
suricata-4.1.0-rc1
suricata-4.0.5
suricata-4.1.0-beta1
suricata-4.0.4
suricata-4.0.3
suricata-4.0.2
suricata-3.2.5
suricata-4.0.1
suricata-3.2.4
suricata-4.0.0
suricata-4.0.0-rc2
suricata-3.2.3
suricata-4.0.0-rc1
suricata-4.0.0-beta1
suricata-3.2.2
suricata-3.1.4
suricata-3.2.1
suricata-3.2
suricata-3.2RC1
suricata-3.1.3
suricata-3.2beta1
suricata-3.1.2
suricata-3.1.1
suricata-3.1
suricata-3.0.2
suricata-3.1RC1
suricata-3.0.1
suricata-3.0.1RC1
suricata-3.0
suricata-2.0.11
suricata-3.0RC3
suricata-3.0RC2
suricata-3.0RC1
suricata-2.0.10
suricata-2.0.9
suricata-2.1beta4
suricata-2.0.8
suricata-2.0.7
suricata-2.1beta3
suricata-2.0.6
suricata-2.0.5
suricata-2.1beta2
suricata-2.0.4
suricata-2.1beta1
suricata-2.0.3
suricata-2.0.2
suricata-2.0.1
suricata-2.0.1rc1
suricata-2.0
suricata-2.0rc3
suricata-2.0rc2
suricata-2.0rc1
suricata-2.0beta2
suricata-1.4.7
suricata-1.4.6
suricata-1.4.5
suricata-2.0beta1
suricata-1.4.4
suricata-1.4.3
suricata-1.4.2
suricata-1.4.1
suricata-1.3.6
suricata-1.4
suricata-1.3.5
suricata-1.4rc1
suricata-1.3.4
suricata-1.4beta3
suricata-1.3.3
suricata-1.4beta2
suricata-1.3.2
suricata-1.4beta1
suricata-1.3.1
suricata-1.3
suricata-1.3rc1
suricata-1.3beta2
suricata-1.3beta1
suricata-1.2.1
suricata-1.2
suricata-1.2rc1
suricata-1.2beta1
suricata-1.1.1
suricata-0.8.2
suricata-1.0.0
suricata-1.0.1
suricata-1.0.2
suricata-1.0.3
suricata-1.0.4
suricata-1.0.5
suricata-1.1
suricata-1.1beta1
suricata-1.1beta2
suricata-1.1beta3
suricata-1.1rc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'c908574545'
${ noResults }
suricata/src/runmodes.c

427 lines
13 KiB
C
Raw Normal View History Unescape Escape

Import of GPLv2 Header 050410
15 years ago
/* Copyright (C) 2007-2010 Open Information Security Foundation
*
* You can copy, redistribute or modify this Program under the terms of
* the GNU General Public License version 2 as published by the Free
* Software Foundation.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* version 2 along with this program; if not, write to the Free Software
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
* 02110-1301, USA.
*/
Put the precooked runmodes in a separate file.
16 years ago
/** \file
Import of GPLv2 Header 050410
15 years ago
*
Put the precooked runmodes in a separate file.
16 years ago
* \author Victor Julien <victor@inliniac.net>
*
* Pre-cooked threading runmodes.
*/
Rename to Suricata.
16 years ago
#include "suricata-common.h"
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
#include "detect.h"
Put the precooked runmodes in a separate file.
16 years ago
#include "detect-engine.h"
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
15 years ago
#include "detect-engine-mpm.h"
Put the precooked runmodes in a separate file.
16 years ago
#include "tm-threads.h"
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
#include "util-debug.h"
Put the precooked runmodes in a separate file.
16 years ago
#include "util-time.h"
Adding auto runmodes based on available core/cpu's. Setting thread priorities
16 years ago
#include "util-cpu.h"
#include "util-byte.h"
Include affinity in runmodes and threadvars. This small patch add inclusion of util-affinity.h in the files that will have to use affinity related features. Signed-off-by: Eric Leblond <eric@regit.org>
15 years ago
#include "util-affinity.h"
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
#include "conf.h"
#include "queue.h"
Make runmode parse affinity settings. This patch modifies runmode to parse configuration file related to affinity settings. It also prepare the export of the set_cpu_affinity which was previously local. It is now used in the affinity and tm-threads files. Signed-off-by: Eric Leblond <eric@regit.org>
15 years ago
#include "runmodes.h"
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
#include "util-unittest.h"
Put the precooked runmodes in a separate file.
16 years ago
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
#include "alert-fastlog.h"
Add Prelude output plugin Add support for reporting alerts to the Prelude SIEM system, using libprelude to send IDMEF (RFC4765) messages. Each message contains the alert description and reference (using the SID/GID), and a normalized description (assessment, impact, sources etc.) libprelude handles the connection with the manager (collecting component), spooling and sending the event asynchronously. It also offers transport security (using TLS and trusted certificates) and reliability (events are retransmitted if not sent successfully). This modules requires a Prelude profile to work (see man prelude-admin and the Prelude Handbook for help). Signed-off-by: Pierre Chifflier <chifflier@edenwall.com>
16 years ago
#include "alert-prelude.h"
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
#include "alert-unified2-alert.h"
#include "alert-debuglog.h"
#include "log-httplog.h"
Have output modules register themselves so run mode configurator becomes aware of them for purposes of being configured from the config file.
16 years ago
#include "output.h"
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
15 years ago
#include "cuda-packet-batcher.h"
Add option to PF_RING to have multiple reader threads. Improve general performance of the PF_RING module.
15 years ago
#include "source-pfring.h"
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
/**
* \brief Holds description for a runmode.
*/
typedef struct RunMode_ {
/* the runmode type */
int runmode;
const char *name;
const char *description;
/* runmode function */
int (*RunModeFunc)(DetectEngineCtx *);
} RunMode;
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
typedef struct RunModes_ {
int no_of_runmodes;
RunMode *runmodes;
} RunModes;
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
/**
Fix issue 74. separate initialization of run modes from adding them to a thread. - fixes issues with multiple output threads.
16 years ago
* A list of output modules that will be active for the run mode.
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
*/
Fix issue 74. separate initialization of run modes from adding them to a thread. - fixes issues with multiple output threads.
16 years ago
typedef struct RunModeOutput_ {
TmModule *tm_module;
Have output plugs use an OutputCtx which is a little more generic than LogFileCtx. The OutputCtx provides a place for module private data to avoi overriding the LogFileCtx.
15 years ago
OutputCtx *output_ctx;
Fix issue 74. separate initialization of run modes from adding them to a thread. - fixes issues with multiple output threads.
16 years ago
TAILQ_ENTRY(RunModeOutput_) entries;
} RunModeOutput;
TAILQ_HEAD(, RunModeOutput_) RunModeOutputs =
TAILQ_HEAD_INITIALIZER(RunModeOutputs);
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
static RunModes runmodes[RUNMODE_MAX];
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
/**
* \internal
* \brief Translate a runmode mode to a printale string.
*
* \param runmode Runmode to be converted into a printable string.
*
* \retval string Printable string.
*/
static const char *RunModeTranslateModeToName(int runmode)
{
switch (runmode) {
case RUNMODE_PCAP_DEV:
return "PCAP_DEV";
case RUNMODE_PCAP_FILE:
return "PCAP_FILE";
case RUNMODE_PFRING:
#ifdef HAVE_PFRING
return "PFRING";
#else
return "PFRING(DISABLED)";
#endif
case RUNMODE_NFQ:
return "NFQ";
case RUNMODE_IPFW:
return "IPFW";
case RUNMODE_ERF_FILE:
return "ERF_FILE";
case RUNMODE_DAG:
return "ERF_DAG";
case RUNMODE_UNITTEST:
return "UNITTEST";
af-packet: basic support for AF_PACKET socket This patch provides basic support for AF_PACKET socket. It is completed by a subsequent patches prodiding extended features and bugfixes.
14 years ago
case RUNMODE_AFP_DEV:
return "AF_PACKET_DEV";
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
default:
SCLogError(SC_ERR_UNKNOWN_RUN_MODE, "Unknown runtime mode. Aborting");
exit(EXIT_FAILURE);
}
}
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
/**
* \internal
* \brief Dispatcher function for runmodes. Calls the required runmode function
* based on runmode + runmode_custom_id.
*
* \param runmode The runmode type.
* \param runmode_customd_id The runmode custom id.
* \param de_ctx Detection Engine Context.
*/
static RunMode *RunModeGetCustomMode(int runmode, const char *custom_mode)
{
int i;
for (i = 0; i < runmodes[runmode].no_of_runmodes; i++) {
if (strcmp(runmodes[runmode].runmodes[i].name, custom_mode) == 0)
return &runmodes[runmode].runmodes[i];
}
return NULL;
}
/**
* \brief Register all runmodes in the engine.
*/
void RunModeRegisterRunModes(void)
{
memset(runmodes, 0, sizeof(runmodes));
RunModeIdsPcapRegister();
RunModeFilePcapRegister();
RunModeIdsPfringRegister();
RunModeIpsNFQRegister();
RunModeIpsIPFWRegister();
RunModeErfFileRegister();
RunModeErfDagRegister();
af-packet: basic support for AF_PACKET socket This patch provides basic support for AF_PACKET socket. It is completed by a subsequent patches prodiding extended features and bugfixes.
14 years ago
RunModeIdsAFPRegister();
Clean up for unittests code: only compile unittest api code when unittests are enabled. Fix unittest code that wasn't wrapped in the proper UNITTESTS ifdefs.
14 years ago
#ifdef UNITTESTS
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
UtRunModeRegister();
Clean up for unittests code: only compile unittest api code when unittests are enabled. Fix unittest code that wasn't wrapped in the proper UNITTESTS ifdefs.
14 years ago
#endif
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
return;
}
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
/**
* \brief Lists all registered runmodes.
*/
void RunModeListRunmodes(void)
{
Slightly clean up --list-runmodes output.
14 years ago
printf("------------------------------------- Runmodes -------------------"
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
"-----------------------\n");
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
printf("| %-17s | %-17s | %-10s \n",
Slightly clean up --list-runmodes output.
14 years ago
"RunMode Type", "Custom Mode ", "Descripition");
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
printf("|-----------------------------------------------------------------"
"-----------------------\n");
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
int i = RUNMODE_UNKNOWN + 1;
int j = 0;
for ( ; i < RUNMODE_MAX; i++) {
int mode_displayed = 0;
for (j = 0; j < runmodes[i].no_of_runmodes; j++) {
if (mode_displayed == 1) {
printf("| ----------------------------------------------"
"-----------------------\n");
RunMode *runmode = &runmodes[i].runmodes[j];
printf("| %-17s | %-17s | %-27s \n",
"",
runmode->name,
runmode->description);
} else {
RunMode *runmode = &runmodes[i].runmodes[j];
printf("| %-17s | %-17s | %-27s \n",
RunModeTranslateModeToName(runmode->runmode),
runmode->name,
runmode->description);
}
if (mode_displayed == 0)
mode_displayed = 1;
}
printf("|-----------------------------------------------------------------"
"-----------------------\n");
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
}
return;
}
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
void RunModeDispatch(int runmode, const char *custom_mode, DetectEngineCtx *de_ctx)
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
{
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
if (custom_mode == NULL) {
char *val = NULL;
if (ConfGet("runmode", &val) != 1) {
custom_mode = NULL;
} else {
custom_mode = val;
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
}
}
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
if (custom_mode == NULL) {
switch (runmode) {
case RUNMODE_PCAP_DEV:
custom_mode = RunModeIdsGetDefaultMode();
break;
case RUNMODE_PCAP_FILE:
custom_mode = RunModeFilePcapGetDefaultMode();
break;
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
#ifdef HAVE_PFRING
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
case RUNMODE_PFRING:
custom_mode = RunModeIdsPfringGetDefaultMode();
break;
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
#endif
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
case RUNMODE_NFQ:
custom_mode = RunModeIpsNFQGetDefaultMode();
break;
case RUNMODE_IPFW:
custom_mode = RunModeIpsIPFWGetDefaultMode();
break;
case RUNMODE_ERF_FILE:
custom_mode = RunModeErfFileGetDefaultMode();
break;
case RUNMODE_DAG:
custom_mode = RunModeErfDagGetDefaultMode();
break;
af-packet: basic support for AF_PACKET socket This patch provides basic support for AF_PACKET socket. It is completed by a subsequent patches prodiding extended features and bugfixes.
14 years ago
case RUNMODE_AFP_DEV:
custom_mode = RunModeAFPGetDefaultMode();
break;
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
default:
SCLogError(SC_ERR_UNKNOWN_RUN_MODE, "Unknown runtime mode. Aborting");
exit(EXIT_FAILURE);
}
} /* if (custom_mode == NULL) */
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
RunMode *mode = RunModeGetCustomMode(runmode, custom_mode);
if (mode == NULL) {
SCLogError(SC_ERR_RUNMODE, "The custom type \"%s\" doesn't exist "
"for this runmode type \"%s\". Please use --list-runmodes to "
"see available custom types for this runmode",
custom_mode, RunModeTranslateModeToName(runmode));
exit(EXIT_FAILURE);
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
}
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
mode->RunModeFunc(de_ctx);
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
return;
}
/**
* \brief Registers a new runmode.
*
* \param runmode Runmode type.
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
* \param name Custom mode for this specific runmode type. Within each
* runmode type, each custom name is a primary key.
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
* \param description Description for this runmode.
* \param RunModeFunc The function to be run for this runmode.
*/
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
void RunModeRegisterNewRunMode(int runmode, const char *name,
const char *description,
int (*RunModeFunc)(DetectEngineCtx *))
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
{
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
if (RunModeGetCustomMode(runmode, name) != NULL) {
SCLogError(SC_ERR_RUNMODE, "A runmode by this custom name has already "
"been registered. Please use an unique name");
return;
}
runmodes[runmode].runmodes =
SCRealloc(runmodes[runmode].runmodes,
(runmodes[runmode].no_of_runmodes + 1) * sizeof(RunMode));
if (runmodes[runmode].runmodes == NULL) {
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
exit(EXIT_FAILURE);
}
modify runmode api to accept conf runmode paramter as a char string, instead of an interger id
14 years ago
RunMode *mode = &runmodes[runmode].runmodes[runmodes[runmode].no_of_runmodes];
runmodes[runmode].no_of_runmodes++;
mode->runmode = runmode;
mode->name = SCStrdup(name);
mode->description = SCStrdup(description);
mode->RunModeFunc = RunModeFunc;
return;
list runmodes. Allow specification of runmode id from cof file. Also allow for command line override
14 years ago
}
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
/**
Fix issue 74. separate initialization of run modes from adding them to a thread. - fixes issues with multiple output threads.
16 years ago
* Cleanup the run mode.
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
*/
Fix issue 74. separate initialization of run modes from adding them to a thread. - fixes issues with multiple output threads.
16 years ago
void RunModeShutDown(void)
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
{
Fix issue 74. separate initialization of run modes from adding them to a thread. - fixes issues with multiple output threads.
16 years ago
/* Close any log files. */
RunModeOutput *output;
while ((output = TAILQ_FIRST(&RunModeOutputs))) {
SCLogDebug("Shutting down output %s.", output->tm_module->name);
TAILQ_REMOVE(&RunModeOutputs, output, entries);
Have output plugs use an OutputCtx which is a little more generic than LogFileCtx. The OutputCtx provides a place for module private data to avoi overriding the LogFileCtx.
15 years ago
if (output->output_ctx != NULL && output->output_ctx->DeInit != NULL)
output->output_ctx->DeInit(output->output_ctx);
Adding mem wrapper to debug runtime alloc()/free() functions. Fixing some memory leaks.
16 years ago
SCFree(output);
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
}
}
/**
Fix issue 74. separate initialization of run modes from adding them to a thread. - fixes issues with multiple output threads.
16 years ago
* Initialize the output modules.
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
*/
Fix issue 74. separate initialization of run modes from adding them to a thread. - fixes issues with multiple output threads.
16 years ago
void RunModeInitializeOutputs(void)
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
{
ConfNode *outputs = ConfGetNode("outputs");
if (outputs == NULL) {
/* No "outputs" section in the configuration. */
return;
}
ConfNode *output, *output_config;
TmModule *tm_module;
const char *enabled;
Have output modules register themselves so run mode configurator becomes aware of them for purposes of being configured from the config file.
16 years ago
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
TAILQ_FOREACH(output, &outputs->head, next) {
Have output modules register themselves so run mode configurator becomes aware of them for purposes of being configured from the config file.
16 years ago
Clean up output.
15 years ago
if (strcmp(output->val, "stats") == 0)
continue;
Don't warn about non enable non existing output module This patch modifies output module loading to only trigger alert message for non existing modules when they are loaded. It also warn about unified1 removal.
14 years ago
output_config = ConfNodeLookupChild(output, output->val);
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
if (output_config == NULL) {
/* Shouldn't happen. */
Renaming errors (naming conventions)
16 years ago
SCLogError(SC_ERR_INVALID_ARGUMENT,
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
"Failed to lookup configuration child node: fast");
exit(1);
}
enabled = ConfNodeLookupChildValue(output_config, "enabled");
Don't warn about non enable non existing output module This patch modifies output module loading to only trigger alert message for non existing modules when they are loaded. It also warn about unified1 removal.
14 years ago
if (enabled == NULL || !ConfValIsTrue(enabled)) {
continue;
}
if (strncmp(output->val, "unified-", sizeof("unified-") - 1) == 0) {
SCLogWarning(SC_ERR_INVALID_ARGUMENT,
"Unified1 is no longer supported,"
" use Unified2 instead "
"(see https://redmine.openinfosecfoundation.org/issues/353"
" for an explanation)");
continue;
}
OutputModule *module = OutputGetModuleByConfName(output->val);
if (module == NULL) {
SCLogWarning(SC_ERR_INVALID_ARGUMENT,
"No output module named %s, ignoring", output->val);
continue;
}
OutputCtx *output_ctx = NULL;
if (module->InitFunc != NULL) {
output_ctx = module->InitFunc(output_config);
if (output_ctx == NULL) {
/* In most cases the init function will have logged the
* error. Maybe we should exit on init errors? */
continue;
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
}
Don't warn about non enable non existing output module This patch modifies output module loading to only trigger alert message for non existing modules when they are loaded. It also warn about unified1 removal.
14 years ago
}
tm_module = TmModuleGetByName(module->name);
if (tm_module == NULL) {
SCLogError(SC_ERR_INVALID_ARGUMENT,
Have output modules register themselves so run mode configurator becomes aware of them for purposes of being configured from the config file.
16 years ago
"TmModuleGetByName for %s failed", module->name);
Don't warn about non enable non existing output module This patch modifies output module loading to only trigger alert message for non existing modules when they are loaded. It also warn about unified1 removal.
14 years ago
exit(EXIT_FAILURE);
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
}
Don't warn about non enable non existing output module This patch modifies output module loading to only trigger alert message for non existing modules when they are loaded. It also warn about unified1 removal.
14 years ago
RunModeOutput *runmode_output = SCCalloc(1, sizeof(RunModeOutput));
if (runmode_output == NULL)
return;
runmode_output->tm_module = tm_module;
runmode_output->output_ctx = output_ctx;
TAILQ_INSERT_TAIL(&RunModeOutputs, runmode_output, entries);
Use the configuration file to setup alert logging (and http logging). Only setup for the live pcap modes at the moment.
16 years ago
}
}
Fix issue 74. separate initialization of run modes from adding them to a thread. - fixes issues with multiple output threads.
16 years ago
/**
* Setup the outputs for this run mode.
*
* \param tv The ThreadVars for the thread the outputs will be
* appended to.
*/
move pcap live runmode into its own file runmode-pcap.[ch]
14 years ago
void SetupOutputs(ThreadVars *tv)
Fix issue 74. separate initialization of run modes from adding them to a thread. - fixes issues with multiple output threads.
16 years ago
{
RunModeOutput *output;
TAILQ_FOREACH(output, &RunModeOutputs, entries) {
Libcap-ng support by Gurvinder Singh and myself. Basic support for per thread caps is added, but not activated as it doesn't seem to work yet. Work around for incompatibility between libnet 1.1 and libcap-ng added.
15 years ago
tv->cap_flags |= output->tm_module->cap_flags;
Unify the use of slots to a single struct for threading API. Remove separate slot append functions for 1slot and varslot
14 years ago
TmSlotSetFuncAppend(tv, output->tm_module, output->output_ctx);
Fix issue 74. separate initialization of run modes from adding them to a thread. - fixes issues with multiple output threads.
16 years ago
}
}
move pcap live runmode into its own file runmode-pcap.[ch]
14 years ago
float threading_detect_ratio = 1;
Allow the user to disable setting cpu affinity and allow configuring the number of detect threads relative to the number of CPU's/CPU cores.
15 years ago
/**
* Initialize the output modules.
*/
move pcap live runmode into its own file runmode-pcap.[ch]
14 years ago
void RunModeInitialize(void)
Allow the user to disable setting cpu affinity and allow configuring the number of detect threads relative to the number of CPU's/CPU cores.
15 years ago
{
Make runmode parse affinity settings. This patch modifies runmode to parse configuration file related to affinity settings. It also prepare the export of the set_cpu_affinity which was previously local. It is now used in the affinity and tm-threads files. Signed-off-by: Eric Leblond <eric@regit.org>
15 years ago
threading_set_cpu_affinity = FALSE;
Allow the user to disable setting cpu affinity and allow configuring the number of detect threads relative to the number of CPU's/CPU cores.
15 years ago
if ((ConfGetBool("threading.set_cpu_affinity", &threading_set_cpu_affinity)) == 0) {
threading_set_cpu_affinity = FALSE;
}
Make runmode parse affinity settings. This patch modifies runmode to parse configuration file related to affinity settings. It also prepare the export of the set_cpu_affinity which was previously local. It is now used in the affinity and tm-threads files. Signed-off-by: Eric Leblond <eric@regit.org>
15 years ago
/* try to get custom cpu mask value if needed */
if (threading_set_cpu_affinity == TRUE) {
Fix some spacing. This trivial patch fixes some indentation problems. Signed-off-by: Eric Leblond <eric@regit.org>
15 years ago
AffinitySetupLoadFromConfig();
Make runmode parse affinity settings. This patch modifies runmode to parse configuration file related to affinity settings. It also prepare the export of the set_cpu_affinity which was previously local. It is now used in the affinity and tm-threads files. Signed-off-by: Eric Leblond <eric@regit.org>
15 years ago
}
Allow the user to disable setting cpu affinity and allow configuring the number of detect threads relative to the number of CPU's/CPU cores.
15 years ago
if ((ConfGetFloat("threading.detect_thread_ratio", &threading_detect_ratio)) != 1) {
threading_detect_ratio = 1;
}
Remove leftover printf.
15 years ago
SCLogDebug("threading_detect_ratio %f", threading_detect_ratio);
Allow the user to disable setting cpu affinity and allow configuring the number of detect threads relative to the number of CPU's/CPU cores.
15 years ago
}