fluentdsyslogs

package

v1.14.3 Latest Latest Go to latest Published: Dec 19, 2020 License: AGPL-3.0 Imports: 5 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/panther-labs/panther

Documentation ¶

Index ¶

Constants
func LogTypes() logtypes.Group
type RFC3164
type RFC3164Parser
type RFC5424
type RFC5424Parser

Constants ¶

View Source

const (
	TypeRFC3164 = "Fluentd.Syslog3164"
	TypeRFC5424 = "Fluentd.Syslog5424"
)

Variables ¶

This section is empty.

Functions ¶

func LogTypes ¶ added in v1.12.0

func LogTypes() logtypes.Group

LogTypes exports the available log type entries

Types ¶

type RFC3164 ¶

type RFC3164 struct {
	Priority  *uint8                      `` /* 141-byte string literal not displayed */
	Hostname  *string                     `` /* 128-byte string literal not displayed */
	Ident     *string                     `` /* 137-byte string literal not displayed */
	ProcID    *numerics.Integer           `` /* 163-byte string literal not displayed */
	Message   *string                     `` /* 133-byte string literal not displayed */
	Timestamp *timestamp.FluentdTimestamp `json:"time,omitempty" validate:"required" description:"Timestamp of the syslog message in UTC."`
	Tag       *string                     `json:"tag,omitempty" validate:"required" description:"Tag of the syslog message"`
	// NOTE: added to end of struct to allow expansion later
	parsers.PantherLog
}

nolint:lll

type RFC3164Parser ¶

type RFC3164Parser struct{}

RFC3164Parser parses Fluentd syslog logs in the RFC3164 format

func (*RFC3164Parser) LogType ¶

func (p *RFC3164Parser) LogType() string

LogType returns the log type supported by this parser

func (*RFC3164Parser) New ¶

func (p *RFC3164Parser) New() parsers.LogParser

func (*RFC3164Parser) Parse ¶

func (p *RFC3164Parser) Parse(log string) ([]*parsers.PantherLog, error)

Parse returns the parsed events or nil if parsing failed

type RFC5424 ¶

type RFC5424 struct {
	Priority  *uint8                      `` /* 151-byte string literal not displayed */
	Hostname  *string                     `` /* 128-byte string literal not displayed */
	Ident     *string                     `` /* 137-byte string literal not displayed */
	ProcID    *numerics.Integer           `` /* 183-byte string literal not displayed */
	MsgID     *string                     `` /* 172-byte string literal not displayed */
	ExtraData *string                     `json:"extradata,omitempty" validate:"required" description:"ExtraData contains syslog strucured data as string"`
	Message   *string                     `` /* 133-byte string literal not displayed */
	Timestamp *timestamp.FluentdTimestamp `json:"time,omitempty" validate:"required" description:"Timestamp of the syslog message in UTC."`
	Tag       *string                     `json:"tag,omitempty" validate:"required" description:"Tag of the syslog message"`
	// NOTE: added to end of struct to allow expansion later
	parsers.PantherLog
}

nolint:lll

type RFC5424Parser ¶

type RFC5424Parser struct{}

RFC5424Parser parses fluentd syslog logs in the RFC5424 format

func (*RFC5424Parser) LogType ¶

func (p *RFC5424Parser) LogType() string

LogType returns the log type supported by this parser

func (*RFC5424Parser) New ¶

func (p *RFC5424Parser) New() parsers.LogParser

func (*RFC5424Parser) Parse ¶

func (p *RFC5424Parser) Parse(log string) ([]*parsers.PantherLog, error)

Parse returns the parsed events or nil if parsing failed

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL