Versions in this module Expand all Collapse all v1 v1.1.1 Feb 11, 2016 v1.1.0 Feb 2, 2016 Changes in this version + const ERROR_EVT_MESSAGE_ID_NOT_FOUND — windows/amd64 + const ERROR_EVT_MESSAGE_NOT_FOUND — windows/amd64 + const ERROR_EVT_UNRESOLVED_PARAMETER_INSERT — windows/amd64 + const ERROR_EVT_UNRESOLVED_VALUE_INSERT — windows/amd64 + const ERROR_INSUFFICIENT_BUFFER — windows/amd64 + const ERROR_INVALID_OPERATION — windows/amd64 + const ERROR_NONE_MAPPED — windows/amd64 + const ERROR_NO_MORE_ITEMS — windows/amd64 + var ErrorEvtVarTypeNull = errors.New("Null EVT_VARIANT data") — windows/amd64 + func Channels() ([]string, error) — windows/amd64 + func Close(h EvtHandle) error — windows/amd64 + func FormatEventString(messageFlag EvtFormatMessageFlag, eventHandle EvtHandle, publisher string, ...) ([]string, error) — windows/amd64 + func IsAvailable() (bool, error) — windows/amd64 + func StringFromGUID(guid *syscall.GUID) (string, error) — windows/amd64 + type Event struct + ActivityID string + Channel string + Computer string + EventID uint16 + Keywords []string + KeywordsError error + Level string + LevelErr error + Message string + MessageErr error + Opcode string + OpcodeErr error + ProcessID uint32 + ProviderGUID string + ProviderName string + Qualifiers uint16 + RecordID uint64 + RelatedActivityID string + Task string + TaskErr error + ThreadID uint32 + TimeCreated *time.Time + UserSID *eventlogging.SID + Version uint8 + func RenderEvent(eventHandle EvtHandle, systemContext EvtHandle, lang uint32, renderBuf []byte, ...) (Event, error) + type EvtFormatMessageFlag uint32 — windows/amd64 + const EvtFormatMessageChannel + const EvtFormatMessageEvent + const EvtFormatMessageId + const EvtFormatMessageKeyword + const EvtFormatMessageLevel + const EvtFormatMessageOpcode + const EvtFormatMessageProvider + const EvtFormatMessageTask + const EvtFormatMessageXml + type EvtHandle uintptr — windows/amd64 + func CreateBookmark(channel string, recordID uint64) (EvtHandle, error) + func EventHandles(subscription EvtHandle, maxHandles int) ([]EvtHandle, error) + func OpenPublisherMetadata(session EvtHandle, publisherName string, lang uint32) (EvtHandle, error) + func Subscribe(session EvtHandle, event windows.Handle, channelPath string, query string, ...) (EvtHandle, error) + type EvtRenderContextFlag uint32 — windows/amd64 + const EvtRenderContextSystem + const EvtRenderContextUser + const EvtRenderContextValues + type EvtRenderFlag uint32 — windows/amd64 + const EvtRenderBookmark + const EvtRenderEventValues + const EvtRenderEventXml + type EvtSubscribeFlag uint32 — windows/amd64 + const EvtSubscribeOriginMask + const EvtSubscribeStartAfterBookmark + const EvtSubscribeStartAtOldestRecord + const EvtSubscribeStrict + const EvtSubscribeToFutureEvents + const EvtSubscribeTolerateQueryErrors + type EvtSystemPropertyID uint32 — windows/amd64 + const EvtSystemActivityID + const EvtSystemChannel + const EvtSystemComputer + const EvtSystemEventID + const EvtSystemEventRecordId + const EvtSystemKeywords + const EvtSystemLevel + const EvtSystemOpcode + const EvtSystemProcessID + const EvtSystemPropertyIdEND + const EvtSystemProviderGuid + const EvtSystemProviderName + const EvtSystemQualifiers + const EvtSystemRelatedActivityID + const EvtSystemTask + const EvtSystemThreadID + const EvtSystemTimeCreated + const EvtSystemUserID + const EvtSystemVersion + func (e EvtSystemPropertyID) String() string
Go to main page