Versions in this module Expand all Collapse all v1 v1.0.0 Aug 12, 2020 Changes in this version + const EvtFormatMessageChannel — windows/amd64 + const EvtFormatMessageEvent — windows/amd64 + const EvtFormatMessageId — windows/amd64 + const EvtFormatMessageKeyword — windows/amd64 + const EvtFormatMessageLevel — windows/amd64 + const EvtFormatMessageOpcode — windows/amd64 + const EvtFormatMessageProvider — windows/amd64 + const EvtFormatMessageTask — windows/amd64 + const EvtFormatMessageXml — windows/amd64 + const EvtQueryChannelPath — windows/amd64 + const EvtQueryFilePath — windows/amd64 + const EvtQueryForwardDirection — windows/amd64 + const EvtQueryReverseDirection — windows/amd64 + const EvtQueryTolerateQueryErrors — windows/amd64 + const EvtRenderBookmark — windows/amd64 + const EvtRenderContextSystem — windows/amd64 + const EvtRenderContextUser — windows/amd64 + const EvtRenderContextValues — windows/amd64 + const EvtRenderEventValues — windows/amd64 + const EvtRenderEventXml — windows/amd64 + const EvtSubscribeStartAfterBookmark — windows/amd64 + const EvtSubscribeStartAtOldestRecord — windows/amd64 + const EvtSubscribeToFutureEvents — windows/amd64 + const EvtSystemActivityID — windows/amd64 + const EvtSystemChannel — windows/amd64 + const EvtSystemComputer — windows/amd64 + const EvtSystemEventID — windows/amd64 + const EvtSystemEventRecordId — windows/amd64 + const EvtSystemKeywords — windows/amd64 + const EvtSystemLevel — windows/amd64 + const EvtSystemOpcode — windows/amd64 + const EvtSystemProcessID — windows/amd64 + const EvtSystemProviderGuid — windows/amd64 + const EvtSystemProviderName — windows/amd64 + const EvtSystemQualifiers — windows/amd64 + const EvtSystemRelatedActivityID — windows/amd64 + const EvtSystemTask — windows/amd64 + const EvtSystemThreadID — windows/amd64 + const EvtSystemTimeCreated — windows/amd64 + const EvtSystemUserID — windows/amd64 + const EvtSystemVersion — windows/amd64 + const EvtVarTypeAnsiString + const EvtVarTypeBinary + const EvtVarTypeBoolean + const EvtVarTypeByte + const EvtVarTypeDouble + const EvtVarTypeEvtHandle + const EvtVarTypeEvtXml + const EvtVarTypeFileTime + const EvtVarTypeGuid + const EvtVarTypeHexInt32 + const EvtVarTypeHexInt64 + const EvtVarTypeInt16 + const EvtVarTypeInt32 + const EvtVarTypeInt64 + const EvtVarTypeNull + const EvtVarTypeSByte + const EvtVarTypeSid + const EvtVarTypeSingle + const EvtVarTypeSizeT + const EvtVarTypeString + const EvtVarTypeSysTime + const EvtVarTypeUInt16 + const EvtVarTypeUInt32 + const EvtVarTypeUInt64 + func CancelEventHandle(handle uint64) error — windows/amd64 + func CloseEventHandle(handle uint64) error — windows/amd64 + func EvtCancel(handle syscall.Handle) error — windows/amd64 + func EvtClose(Object syscall.Handle) error — windows/amd64 + func EvtCreateBookmark(BookmarkXml *uint16) (syscall.Handle, error) — windows/amd64 + func EvtCreateRenderContext(ValuePathsCount uint32, ValuePaths uintptr, Flags uint32) (syscall.Handle, error) — windows/amd64 + func EvtFormatMessage(PublisherMetadata, Event syscall.Handle, MessageId, ValueCount uint32, ...) error — windows/amd64 + func EvtNext(ResultSet syscall.Handle, EventArraySize uint32, EventArray *syscall.Handle, ...) error — windows/amd64 + func EvtOpenPublisherMetadata(Session syscall.Handle, PublisherIdentity, LogFilePath *uint16, ...) (syscall.Handle, error) — windows/amd64 + func EvtQuery(Session syscall.Handle, Path, Query *uint16, Flags uint32) (syscall.Handle, error) — windows/amd64 + func EvtRender(Context, Fragment syscall.Handle, Flags, BufferSize uint32, Buffer *uint16, ...) error — windows/amd64 + func EvtSubscribe(Session, SignalEvent syscall.Handle, ChannelPath, Query *uint16, ...) (syscall.Handle, error) — windows/amd64 + func EvtUpdateBookmark(Bookmark, Event syscall.Handle) error — windows/amd64 + func FormatMessage(eventPublisherHandle PublisherHandle, eventHandle EventHandle, ...) (string, error) — windows/amd64 + func GetLastError() error — windows/amd64 + func RenderBookmark(bookmarkHandle BookmarkHandle) (string, error) — windows/amd64 + func RenderEventXML(eventHandle EventHandle) (string, error) — windows/amd64 + func UTF16ToString(s []uint16) string + func UpdateBookmark(bookmarkHandle BookmarkHandle, eventHandle EventHandle) error — windows/amd64 + type BookmarkHandle uint64 + func CreateBookmark() (BookmarkHandle, error) + func CreateBookmarkFromXml(xmlString string) (BookmarkHandle, error) + type EVT_FORMAT_MESSAGE_FLAGS int — windows/amd64 + type EVT_QUERY_FLAGS uint32 — windows/amd64 + type EVT_RENDER_CONTEXT_FLAGS uint32 — windows/amd64 + type EVT_RENDER_FLAGS uint32 — windows/amd64 + type EVT_SUBSCRIBE_FLAGS int — windows/amd64 + type EVT_SYSTEM_PROPERTY_ID int — windows/amd64 + type EventHandle uint64 + type EvtVariant []byte + func NewEvtVariant(buffer []byte) EvtVariant + func RenderEventValues(renderContext SysRenderContext, eventHandle EventHandle) (EvtVariant, error) + func (e EvtVariant) FileTime(index uint32) (time.Time, error) + func (e EvtVariant) Int(index uint32) (int64, error) + func (e EvtVariant) IsNull(index uint32) bool + func (e EvtVariant) String(index uint32) (string, error) + func (e EvtVariant) Uint(index uint32) (uint64, error) + type ListenerHandle uint64 + func CreateListener(channel, query string, startpos EVT_SUBSCRIBE_FLAGS, ...) (ListenerHandle, error) + func CreateListenerFromBookmark(channel, query string, watcher *LogEventCallbackWrapper, ...) (ListenerHandle, error) + type LogEventCallback interface + PublishError func(error) + PublishEvent func(EventHandle, string) + type LogEventCallbackWrapper struct + type PublisherHandle uint64 + func GetEventPublisherHandle(renderedFields EvtVariant) (PublisherHandle, error) + type SysRenderContext uint64 + func GetSystemRenderContext() (SysRenderContext, error) + type WinLogEvent struct + Bookmark string + Channel string + ChannelText string + ComputerName string + Created time.Time + EventId uint64 + IdText string + Keywords string + Level uint64 + LevelText string + Msg string + Opcode uint64 + OpcodeText string + ProcessId uint64 + ProviderName string + ProviderText string + PublisherHandleErr error + Qualifiers uint64 + RecordId uint64 + RenderedFieldsErr error + SubscribedChannel string + Task uint64 + TaskText string + ThreadId uint64 + Version uint64 + Xml string + XmlErr error + type WinLogWatcher struct + RenderChannel bool + RenderId bool + RenderKeywords bool + RenderLevel bool + RenderMessage bool + RenderOpcode bool + RenderProvider bool + RenderTask bool + func NewWinLogWatcher() (*WinLogWatcher, error) + func (self *WinLogWatcher) Error() <-chan error + func (self *WinLogWatcher) Event() <-chan *WinLogEvent + func (self *WinLogWatcher) PublishError(err error) + func (self *WinLogWatcher) PublishEvent(handle EventHandle, subscribedChannel string) + func (self *WinLogWatcher) RemoveSubscription(channel string) error + func (self *WinLogWatcher) Shutdown() + func (self *WinLogWatcher) SubscribeFromBeginning(channel, query string) error + func (self *WinLogWatcher) SubscribeFromBookmark(channel, query string, xmlString string) error + func (self *WinLogWatcher) SubscribeFromNow(channel, query string) error
Go to main page