1 /*
2 * General logging functions.
3 *
4 * Copyright 2000-2008 Willy Tarreau <w@1wt.eu>
5 *
6 * This program is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU General Public License
8 * as published by the Free Software Foundation; either version
9 * 2 of the License, or (at your option) any later version.
10 *
11 */
12
13 #include <ctype.h>
14 #include <fcntl.h>
15 #include <stdarg.h>
16 #include <stdio.h>
17 #include <stdlib.h>
18 #include <string.h>
19 #include <syslog.h>
20 #include <time.h>
21 #include <unistd.h>
22 #include <errno.h>
23
24 #include <sys/time.h>
25 #include <sys/uio.h>
26
27 #include <haproxy/api.h>
28 #include <haproxy/applet-t.h>
29 #include <haproxy/cfgparse.h>
30 #include <haproxy/cli.h>
31 #include <haproxy/fd.h>
32 #include <haproxy/frontend.h>
33 #include <haproxy/global.h>
34 #include <haproxy/http.h>
35 #include <haproxy/listener.h>
36 #include <haproxy/log.h>
37 #include <haproxy/proxy.h>
38 #include <haproxy/ring.h>
39 #include <haproxy/sample.h>
40 #include <haproxy/sink.h>
41 #include <haproxy/ssl_sock.h>
42 #include <haproxy/stream.h>
43 #include <haproxy/stream_interface.h>
44 #include <haproxy/time.h>
45 #include <haproxy/tools.h>
46 #include <haproxy/version.h>
47
48 /* global recv logs counter */
49 int cum_log_messages;
50
51 /* log forward proxy list */
52 struct proxy *cfg_log_forward;
53
54 struct log_fmt_st {
55 char *name;
56 };
57
58 static const struct log_fmt_st log_formats[LOG_FORMATS] = {
59 [LOG_FORMAT_LOCAL] = {
60 .name = "local",
61 },
62 [LOG_FORMAT_RFC3164] = {
63 .name = "rfc3164",
64 },
65 [LOG_FORMAT_RFC5424] = {
66 .name = "rfc5424",
67 },
68 [LOG_FORMAT_PRIO] = {
69 .name = "priority",
70 },
71 [LOG_FORMAT_SHORT] = {
72 .name = "short",
73 },
74 [LOG_FORMAT_TIMED] = {
75 .name = "timed",
76 },
77 [LOG_FORMAT_ISO] = {
78 .name = "iso",
79 },
80 [LOG_FORMAT_RAW] = {
81 .name = "raw",
82 },
83 };
84
85 /*
86 * This map is used with all the FD_* macros to check whether a particular bit
87 * is set or not. Each bit represents an ACSII code. ha_bit_set() sets those
88 * bytes which should be escaped. When ha_bit_test() returns non-zero, it means
89 * that the byte should be escaped. Be careful to always pass bytes from 0 to
90 * 255 exclusively to the macros.
91 */
92 long rfc5424_escape_map[(256/8) / sizeof(long)];
93 long hdr_encode_map[(256/8) / sizeof(long)];
94 long url_encode_map[(256/8) / sizeof(long)];
95 long http_encode_map[(256/8) / sizeof(long)];
96
97
98 const char *log_facilities[NB_LOG_FACILITIES] = {
99 "kern", "user", "mail", "daemon",
100 "auth", "syslog", "lpr", "news",
101 "uucp", "cron", "auth2", "ftp",
102 "ntp", "audit", "alert", "cron2",
103 "local0", "local1", "local2", "local3",
104 "local4", "local5", "local6", "local7"
105 };
106
107 const char *log_levels[NB_LOG_LEVELS] = {
108 "emerg", "alert", "crit", "err",
109 "warning", "notice", "info", "debug"
110 };
111
112 const char sess_term_cond[16] = "-LcCsSPRIDKUIIII"; /* normal, Local, CliTo, CliErr, SrvTo, SrvErr, PxErr, Resource, Internal, Down, Killed, Up, -- */
113 const char sess_fin_state[8] = "-RCHDLQT"; /* cliRequest, srvConnect, srvHeader, Data, Last, Queue, Tarpit */
114
115
116 /* log_format */
117 struct logformat_type {
118 char *name;
119 int type;
120 int mode;
121 int lw; /* logwait bitsfield */
122 int (*config_callback)(struct logformat_node *node, struct proxy *curproxy);
123 const char *replace_by; /* new option to use instead of old one */
124 };
125
126 int prepare_addrsource(struct logformat_node *node, struct proxy *curproxy);
127
128 /* log_format variable names */
129 static const struct logformat_type logformat_keywords[] = {
130 { "o", LOG_FMT_GLOBAL, PR_MODE_TCP, 0, NULL }, /* global option */
131
132 /* please keep these lines sorted ! */
133 { "B", LOG_FMT_BYTES, PR_MODE_TCP, LW_BYTES, NULL }, /* bytes from server to client */
134 { "CC", LOG_FMT_CCLIENT, PR_MODE_HTTP, LW_REQHDR, NULL }, /* client cookie */
135 { "CS", LOG_FMT_CSERVER, PR_MODE_HTTP, LW_RSPHDR, NULL }, /* server cookie */
136 { "H", LOG_FMT_HOSTNAME, PR_MODE_TCP, LW_INIT, NULL }, /* Hostname */
137 { "ID", LOG_FMT_UNIQUEID, PR_MODE_TCP, LW_BYTES, NULL }, /* Unique ID */
138 { "ST", LOG_FMT_STATUS, PR_MODE_TCP, LW_RESP, NULL }, /* status code */
139 { "T", LOG_FMT_DATEGMT, PR_MODE_TCP, LW_INIT, NULL }, /* date GMT */
140 { "Ta", LOG_FMT_Ta, PR_MODE_HTTP, LW_BYTES, NULL }, /* Time active (tr to end) */
141 { "Tc", LOG_FMT_TC, PR_MODE_TCP, LW_BYTES, NULL }, /* Tc */
142 { "Th", LOG_FMT_Th, PR_MODE_TCP, LW_BYTES, NULL }, /* Time handshake */
143 { "Ti", LOG_FMT_Ti, PR_MODE_HTTP, LW_BYTES, NULL }, /* Time idle */
144 { "Tl", LOG_FMT_DATELOCAL, PR_MODE_TCP, LW_INIT, NULL }, /* date local timezone */
145 { "Tq", LOG_FMT_TQ, PR_MODE_HTTP, LW_BYTES, NULL }, /* Tq=Th+Ti+TR */
146 { "Tr", LOG_FMT_Tr, PR_MODE_HTTP, LW_BYTES, NULL }, /* Tr */
147 { "TR", LOG_FMT_TR, PR_MODE_HTTP, LW_BYTES, NULL }, /* Time to receive a valid request */
148 { "Td", LOG_FMT_TD, PR_MODE_TCP, LW_BYTES, NULL }, /* Td = Tt - (Tq + Tw + Tc + Tr) */
149 { "Ts", LOG_FMT_TS, PR_MODE_TCP, LW_INIT, NULL }, /* timestamp GMT */
150 { "Tt", LOG_FMT_TT, PR_MODE_TCP, LW_BYTES, NULL }, /* Tt */
151 { "Tu", LOG_FMT_TU, PR_MODE_TCP, LW_BYTES, NULL }, /* Tu = Tt -Ti */
152 { "Tw", LOG_FMT_TW, PR_MODE_TCP, LW_BYTES, NULL }, /* Tw */
153 { "U", LOG_FMT_BYTES_UP, PR_MODE_TCP, LW_BYTES, NULL }, /* bytes from client to server */
154 { "ac", LOG_FMT_ACTCONN, PR_MODE_TCP, LW_BYTES, NULL }, /* actconn */
155 { "b", LOG_FMT_BACKEND, PR_MODE_TCP, LW_INIT, NULL }, /* backend */
156 { "bc", LOG_FMT_BECONN, PR_MODE_TCP, LW_BYTES, NULL }, /* beconn */
157 { "bi", LOG_FMT_BACKENDIP, PR_MODE_TCP, LW_BCKIP, prepare_addrsource }, /* backend source ip */
158 { "bp", LOG_FMT_BACKENDPORT, PR_MODE_TCP, LW_BCKIP, prepare_addrsource }, /* backend source port */
159 { "bq", LOG_FMT_BCKQUEUE, PR_MODE_TCP, LW_BYTES, NULL }, /* backend_queue */
160 { "ci", LOG_FMT_CLIENTIP, PR_MODE_TCP, LW_CLIP | LW_XPRT, NULL }, /* client ip */
161 { "cp", LOG_FMT_CLIENTPORT, PR_MODE_TCP, LW_CLIP | LW_XPRT, NULL }, /* client port */
162 { "f", LOG_FMT_FRONTEND, PR_MODE_TCP, LW_INIT, NULL }, /* frontend */
163 { "fc", LOG_FMT_FECONN, PR_MODE_TCP, LW_BYTES, NULL }, /* feconn */
164 { "fi", LOG_FMT_FRONTENDIP, PR_MODE_TCP, LW_FRTIP | LW_XPRT, NULL }, /* frontend ip */
165 { "fp", LOG_FMT_FRONTENDPORT, PR_MODE_TCP, LW_FRTIP | LW_XPRT, NULL }, /* frontend port */
166 { "ft", LOG_FMT_FRONTEND_XPRT, PR_MODE_TCP, LW_INIT, NULL }, /* frontend with transport mode */
167 { "hr", LOG_FMT_HDRREQUEST, PR_MODE_TCP, LW_REQHDR, NULL }, /* header request */
168 { "hrl", LOG_FMT_HDRREQUESTLIST, PR_MODE_TCP, LW_REQHDR, NULL }, /* header request list */
169 { "hs", LOG_FMT_HDRRESPONS, PR_MODE_TCP, LW_RSPHDR, NULL }, /* header response */
170 { "hsl", LOG_FMT_HDRRESPONSLIST, PR_MODE_TCP, LW_RSPHDR, NULL }, /* header response list */
171 { "HM", LOG_FMT_HTTP_METHOD, PR_MODE_HTTP, LW_REQ, NULL }, /* HTTP method */
172 { "HP", LOG_FMT_HTTP_PATH, PR_MODE_HTTP, LW_REQ, NULL }, /* HTTP path */
173 { "HQ", LOG_FMT_HTTP_QUERY, PR_MODE_HTTP, LW_REQ, NULL }, /* HTTP query */
174 { "HU", LOG_FMT_HTTP_URI, PR_MODE_HTTP, LW_REQ, NULL }, /* HTTP full URI */
175 { "HV", LOG_FMT_HTTP_VERSION, PR_MODE_HTTP, LW_REQ, NULL }, /* HTTP version */
176 { "lc", LOG_FMT_LOGCNT, PR_MODE_TCP, LW_INIT, NULL }, /* log counter */
177 { "ms", LOG_FMT_MS, PR_MODE_TCP, LW_INIT, NULL }, /* accept date millisecond */
178 { "pid", LOG_FMT_PID, PR_MODE_TCP, LW_INIT, NULL }, /* log pid */
179 { "r", LOG_FMT_REQ, PR_MODE_HTTP, LW_REQ, NULL }, /* request */
180 { "rc", LOG_FMT_RETRIES, PR_MODE_TCP, LW_BYTES, NULL }, /* retries */
181 { "rt", LOG_FMT_COUNTER, PR_MODE_TCP, LW_REQ, NULL }, /* request counter (HTTP or TCP session) */
182 { "s", LOG_FMT_SERVER, PR_MODE_TCP, LW_SVID, NULL }, /* server */
183 { "sc", LOG_FMT_SRVCONN, PR_MODE_TCP, LW_BYTES, NULL }, /* srv_conn */
184 { "si", LOG_FMT_SERVERIP, PR_MODE_TCP, LW_SVIP, NULL }, /* server destination ip */
185 { "sp", LOG_FMT_SERVERPORT, PR_MODE_TCP, LW_SVIP, NULL }, /* server destination port */
186 { "sq", LOG_FMT_SRVQUEUE, PR_MODE_TCP, LW_BYTES, NULL }, /* srv_queue */
187 { "sslc", LOG_FMT_SSL_CIPHER, PR_MODE_TCP, LW_XPRT, NULL }, /* client-side SSL ciphers */
188 { "sslv", LOG_FMT_SSL_VERSION, PR_MODE_TCP, LW_XPRT, NULL }, /* client-side SSL protocol version */
189 { "t", LOG_FMT_DATE, PR_MODE_TCP, LW_INIT, NULL }, /* date */
190 { "tr", LOG_FMT_tr, PR_MODE_HTTP, LW_INIT, NULL }, /* date of start of request */
191 { "trg",LOG_FMT_trg, PR_MODE_HTTP, LW_INIT, NULL }, /* date of start of request, GMT */
192 { "trl",LOG_FMT_trl, PR_MODE_HTTP, LW_INIT, NULL }, /* date of start of request, local */
193 { "ts", LOG_FMT_TERMSTATE, PR_MODE_TCP, LW_BYTES, NULL },/* termination state */
194 { "tsc", LOG_FMT_TERMSTATE_CK, PR_MODE_TCP, LW_INIT, NULL },/* termination state */
195
196 /* The following tags are deprecated and will be removed soon */
197 { "Bi", LOG_FMT_BACKENDIP, PR_MODE_TCP, LW_BCKIP, prepare_addrsource, "bi" }, /* backend source ip */
198 { "Bp", LOG_FMT_BACKENDPORT, PR_MODE_TCP, LW_BCKIP, prepare_addrsource, "bp" }, /* backend source port */
199 { "Ci", LOG_FMT_CLIENTIP, PR_MODE_TCP, LW_CLIP | LW_XPRT, NULL, "ci" }, /* client ip */
200 { "Cp", LOG_FMT_CLIENTPORT, PR_MODE_TCP, LW_CLIP | LW_XPRT, NULL, "cp" }, /* client port */
201 { "Fi", LOG_FMT_FRONTENDIP, PR_MODE_TCP, LW_FRTIP | LW_XPRT, NULL, "fi" }, /* frontend ip */
202 { "Fp", LOG_FMT_FRONTENDPORT, PR_MODE_TCP, LW_FRTIP | LW_XPRT, NULL, "fp" }, /* frontend port */
203 { "Si", LOG_FMT_SERVERIP, PR_MODE_TCP, LW_SVIP, NULL, "si" }, /* server destination ip */
204 { "Sp", LOG_FMT_SERVERPORT, PR_MODE_TCP, LW_SVIP, NULL, "sp" }, /* server destination port */
205 { "cc", LOG_FMT_CCLIENT, PR_MODE_HTTP, LW_REQHDR, NULL, "CC" }, /* client cookie */
206 { "cs", LOG_FMT_CSERVER, PR_MODE_HTTP, LW_RSPHDR, NULL, "CS" }, /* server cookie */
207 { "st", LOG_FMT_STATUS, PR_MODE_HTTP, LW_RESP, NULL, "ST" }, /* status code */
208 { 0, 0, 0, 0, NULL }
209 };
210
211 char default_http_log_format[] = "%ci:%cp [%tr] %ft %b/%s %TR/%Tw/%Tc/%Tr/%Ta %ST %B %CC %CS %tsc %ac/%fc/%bc/%sc/%rc %sq/%bq %hr %hs %{+Q}r"; // default format
212 char clf_http_log_format[] = "%{+Q}o %{-Q}ci - - [%trg] %r %ST %B \"\" \"\" %cp %ms %ft %b %s %TR %Tw %Tc %Tr %Ta %tsc %ac %fc %bc %sc %rc %sq %bq %CC %CS %hrl %hsl";
213 char default_tcp_log_format[] = "%ci:%cp [%t] %ft %b/%s %Tw/%Tc/%Tt %B %ts %ac/%fc/%bc/%sc/%rc %sq/%bq";
214 char *log_format = NULL;
215
216 /* Default string used for structured-data part in RFC5424 formatted
217 * syslog messages.
218 */
219 char default_rfc5424_sd_log_format[] = "- ";
220
221 /* total number of dropped logs */
222 unsigned int dropped_logs = 0;
223
224 /* This is a global syslog message buffer, common to all outgoing
225 * messages. It contains only the data part.
226 */
227 THREAD_LOCAL char *logline = NULL;
228
229 /* A global syslog message buffer, common to all RFC5424 syslog messages.
230 * Currently, it is used for generating the structured-data part.
231 */
232 THREAD_LOCAL char *logline_rfc5424 = NULL;
233
234 /* A global buffer used to store all startup alerts/warnings. It will then be
235 * retrieve on the CLI. */
236 static struct ring *startup_logs = NULL;
237
238 struct logformat_var_args {
239 char *name;
240 int mask;
241 };
242
243 struct logformat_var_args var_args_list[] = {
244 // global
245 { "M", LOG_OPT_MANDATORY },
246 { "Q", LOG_OPT_QUOTE },
247 { "X", LOG_OPT_HEXA },
248 { "E", LOG_OPT_ESC },
249 { 0, 0 }
250 };
251
252 /* return the name of the directive used in the current proxy for which we're
253 * currently parsing a header, when it is known.
254 */
fmt_directive(const struct proxy * curproxy)255 static inline const char *fmt_directive(const struct proxy *curproxy)
256 {
257 switch (curproxy->conf.args.ctx) {
258 case ARGC_ACL:
259 return "acl";
260 case ARGC_STK:
261 return "stick";
262 case ARGC_TRK:
263 return "track-sc";
264 case ARGC_LOG:
265 return "log-format";
266 case ARGC_LOGSD:
267 return "log-format-sd";
268 case ARGC_HRQ:
269 return "http-request";
270 case ARGC_HRS:
271 return "http-response";
272 case ARGC_UIF:
273 return "unique-id-format";
274 case ARGC_RDR:
275 return "redirect";
276 case ARGC_CAP:
277 return "capture";
278 case ARGC_SRV:
279 return "server";
280 case ARGC_SPOE:
281 return "spoe-message";
282 case ARGC_UBK:
283 return "use_backend";
284 case ARGC_HERR:
285 return "http-error";
286 default:
287 return "undefined(please report this bug)"; /* must never happen */
288 }
289 }
290
291 /*
292 * callback used to configure addr source retrieval
293 */
prepare_addrsource(struct logformat_node * node,struct proxy * curproxy)294 int prepare_addrsource(struct logformat_node *node, struct proxy *curproxy)
295 {
296 curproxy->options2 |= PR_O2_SRC_ADDR;
297
298 return 0;
299 }
300
301
302 /*
303 * Parse args in a logformat_var. Returns 0 in error
304 * case, otherwise, it returns 1.
305 */
parse_logformat_var_args(char * args,struct logformat_node * node,char ** err)306 int parse_logformat_var_args(char *args, struct logformat_node *node, char **err)
307 {
308 int i = 0;
309 int end = 0;
310 int flags = 0; // 1 = + 2 = -
311 char *sp = NULL; // start pointer
312
313 if (args == NULL) {
314 memprintf(err, "internal error: parse_logformat_var_args() expects non null 'args'");
315 return 0;
316 }
317
318 while (1) {
319 if (*args == '\0')
320 end = 1;
321
322 if (*args == '+') {
323 // add flag
324 sp = args + 1;
325 flags = 1;
326 }
327 if (*args == '-') {
328 // delete flag
329 sp = args + 1;
330 flags = 2;
331 }
332
333 if (*args == '\0' || *args == ',') {
334 *args = '\0';
335 for (i = 0; sp && var_args_list[i].name; i++) {
336 if (strcmp(sp, var_args_list[i].name) == 0) {
337 if (flags == 1) {
338 node->options |= var_args_list[i].mask;
339 break;
340 } else if (flags == 2) {
341 node->options &= ~var_args_list[i].mask;
342 break;
343 }
344 }
345 }
346 sp = NULL;
347 if (end)
348 break;
349 }
350 args++;
351 }
352 return 1;
353 }
354
355 /*
356 * Parse a variable '%varname' or '%{args}varname' in log-format. The caller
357 * must pass the args part in the <arg> pointer with its length in <arg_len>,
358 * and varname with its length in <var> and <var_len> respectively. <arg> is
359 * ignored when arg_len is 0. Neither <var> nor <var_len> may be null.
360 * Returns false in error case and err is filled, otherwise returns true.
361 */
parse_logformat_var(char * arg,int arg_len,char * var,int var_len,struct proxy * curproxy,struct list * list_format,int * defoptions,char ** err)362 int parse_logformat_var(char *arg, int arg_len, char *var, int var_len, struct proxy *curproxy, struct list *list_format, int *defoptions, char **err)
363 {
364 int j;
365 struct logformat_node *node = NULL;
366
367 for (j = 0; logformat_keywords[j].name; j++) { // search a log type
368 if (strlen(logformat_keywords[j].name) == var_len &&
369 strncmp(var, logformat_keywords[j].name, var_len) == 0) {
370 if (logformat_keywords[j].mode != PR_MODE_HTTP || curproxy->mode == PR_MODE_HTTP) {
371 node = calloc(1, sizeof(*node));
372 if (!node) {
373 memprintf(err, "out of memory error");
374 goto error_free;
375 }
376 node->type = logformat_keywords[j].type;
377 node->options = *defoptions;
378 if (arg_len) {
379 node->arg = my_strndup(arg, arg_len);
380 if (!parse_logformat_var_args(node->arg, node, err))
381 goto error_free;
382 }
383 if (node->type == LOG_FMT_GLOBAL) {
384 *defoptions = node->options;
385 free(node->arg);
386 free(node);
387 } else {
388 if (logformat_keywords[j].config_callback &&
389 logformat_keywords[j].config_callback(node, curproxy) != 0) {
390 goto error_free;
391 }
392 curproxy->to_log |= logformat_keywords[j].lw;
393 LIST_ADDQ(list_format, &node->list);
394 }
395 if (logformat_keywords[j].replace_by)
396 ha_warning("parsing [%s:%d] : deprecated variable '%s' in '%s', please replace it with '%s'.\n",
397 curproxy->conf.args.file, curproxy->conf.args.line,
398 logformat_keywords[j].name, fmt_directive(curproxy), logformat_keywords[j].replace_by);
399 return 1;
400 } else {
401 memprintf(err, "format variable '%s' is reserved for HTTP mode",
402 logformat_keywords[j].name);
403 goto error_free;
404 }
405 }
406 }
407
408 j = var[var_len];
409 var[var_len] = 0;
410 memprintf(err, "no such format variable '%s'. If you wanted to emit the '%%' character verbatim, you need to use '%%%%'", var);
411 var[var_len] = j;
412
413 error_free:
414 if (node) {
415 free(node->arg);
416 free(node);
417 }
418 return 0;
419 }
420
421 /*
422 * push to the logformat linked list
423 *
424 * start: start pointer
425 * end: end text pointer
426 * type: string type
427 * list_format: destination list
428 *
429 * LOG_TEXT: copy chars from start to end excluding end.
430 *
431 */
add_to_logformat_list(char * start,char * end,int type,struct list * list_format,char ** err)432 int add_to_logformat_list(char *start, char *end, int type, struct list *list_format, char **err)
433 {
434 char *str;
435
436 if (type == LF_TEXT) { /* type text */
437 struct logformat_node *node = calloc(1, sizeof(*node));
438 if (!node) {
439 memprintf(err, "out of memory error");
440 return 0;
441 }
442 str = calloc(1, end - start + 1);
443 strncpy(str, start, end - start);
444 str[end - start] = '\0';
445 node->arg = str;
446 node->type = LOG_FMT_TEXT; // type string
447 LIST_ADDQ(list_format, &node->list);
448 } else if (type == LF_SEPARATOR) {
449 struct logformat_node *node = calloc(1, sizeof(*node));
450 if (!node) {
451 memprintf(err, "out of memory error");
452 return 0;
453 }
454 node->type = LOG_FMT_SEPARATOR;
455 LIST_ADDQ(list_format, &node->list);
456 }
457 return 1;
458 }
459
460 /*
461 * Parse the sample fetch expression <text> and add a node to <list_format> upon
462 * success. At the moment, sample converters are not yet supported but fetch arguments
463 * should work. The curpx->conf.args.ctx must be set by the caller. If an end pointer
464 * is passed in <endptr>, it will be updated with the pointer to the first character
465 * not part of the sample expression.
466 *
467 * In error case, the function returns 0, otherwise it returns 1.
468 */
add_sample_to_logformat_list(char * text,char * arg,int arg_len,struct proxy * curpx,struct list * list_format,int options,int cap,char ** err,char ** endptr)469 int add_sample_to_logformat_list(char *text, char *arg, int arg_len, struct proxy *curpx, struct list *list_format, int options, int cap, char **err, char **endptr)
470 {
471 char *cmd[2];
472 struct sample_expr *expr = NULL;
473 struct logformat_node *node = NULL;
474 int cmd_arg;
475
476 cmd[0] = text;
477 cmd[1] = "";
478 cmd_arg = 0;
479
480 expr = sample_parse_expr(cmd, &cmd_arg, curpx->conf.args.file, curpx->conf.args.line, err,
481 (curpx->id == NULL) ? NULL: &curpx->conf.args, endptr);
482 if (!expr) {
483 memprintf(err, "failed to parse sample expression <%s> : %s", text, *err);
484 goto error_free;
485 }
486
487 node = calloc(1, sizeof(*node));
488 if (!node) {
489 memprintf(err, "out of memory error");
490 goto error_free;
491 }
492 node->type = LOG_FMT_EXPR;
493 node->expr = expr;
494 node->options = options;
495
496 if (arg_len) {
497 node->arg = my_strndup(arg, arg_len);
498 if (!parse_logformat_var_args(node->arg, node, err))
499 goto error_free;
500 }
501 if (expr->fetch->val & cap & SMP_VAL_REQUEST)
502 node->options |= LOG_OPT_REQ_CAP; /* fetch method is request-compatible */
503
504 if (expr->fetch->val & cap & SMP_VAL_RESPONSE)
505 node->options |= LOG_OPT_RES_CAP; /* fetch method is response-compatible */
506
507 if (!(expr->fetch->val & cap)) {
508 memprintf(err, "sample fetch <%s> may not be reliably used here because it needs '%s' which is not available here",
509 text, sample_src_names(expr->fetch->use));
510 goto error_free;
511 }
512
513 /* check if we need to allocate an http_txn struct for HTTP parsing */
514 /* Note, we may also need to set curpx->to_log with certain fetches */
515 curpx->http_needed |= !!(expr->fetch->use & SMP_USE_HTTP_ANY);
516
517 /* FIXME: temporary workaround for missing LW_XPRT and LW_REQ flags
518 * needed with some sample fetches (eg: ssl*). We always set it for
519 * now on, but this will leave with sample capabilities soon.
520 */
521 curpx->to_log |= LW_XPRT;
522 if (curpx->http_needed)
523 curpx->to_log |= LW_REQ;
524 LIST_ADDQ(list_format, &node->list);
525 return 1;
526
527 error_free:
528 release_sample_expr(expr);
529 if (node) {
530 free(node->arg);
531 free(node);
532 }
533 return 0;
534 }
535
536 /*
537 * Parse the log_format string and fill a linked list.
538 * Variable name are preceded by % and composed by characters [a-zA-Z0-9]* : %varname
539 * You can set arguments using { } : %{many arguments}varname.
540 * The curproxy->conf.args.ctx must be set by the caller.
541 *
542 * fmt: the string to parse
543 * curproxy: the proxy affected
544 * list_format: the destination list
545 * options: LOG_OPT_* to force on every node
546 * cap: all SMP_VAL_* flags supported by the consumer
547 *
548 * The function returns 1 in success case, otherwise, it returns 0 and err is filled.
549 */
parse_logformat_string(const char * fmt,struct proxy * curproxy,struct list * list_format,int options,int cap,char ** err)550 int parse_logformat_string(const char *fmt, struct proxy *curproxy, struct list *list_format, int options, int cap, char **err)
551 {
552 char *sp, *str, *backfmt; /* start pointer for text parts */
553 char *arg = NULL; /* start pointer for args */
554 char *var = NULL; /* start pointer for vars */
555 int arg_len = 0;
556 int var_len = 0;
557 int cformat; /* current token format */
558 int pformat; /* previous token format */
559 struct logformat_node *tmplf, *back;
560
561 sp = str = backfmt = strdup(fmt);
562 if (!str) {
563 memprintf(err, "out of memory error");
564 return 0;
565 }
566 curproxy->to_log |= LW_INIT;
567
568 /* flush the list first. */
569 list_for_each_entry_safe(tmplf, back, list_format, list) {
570 LIST_DEL(&tmplf->list);
571 release_sample_expr(tmplf->expr);
572 free(tmplf->arg);
573 free(tmplf);
574 }
575
576 for (cformat = LF_INIT; cformat != LF_END; str++) {
577 pformat = cformat;
578
579 if (!*str)
580 cformat = LF_END; // preset it to save all states from doing this
581
582 /* The principle of the two-step state machine below is to first detect a change, and
583 * second have all common paths processed at one place. The common paths are the ones
584 * encountered in text areas (LF_INIT, LF_TEXT, LF_SEPARATOR) and at the end (LF_END).
585 * We use the common LF_INIT state to dispatch to the different final states.
586 */
587 switch (pformat) {
588 case LF_STARTVAR: // text immediately following a '%'
589 arg = NULL; var = NULL;
590 arg_len = var_len = 0;
591 if (*str == '{') { // optional argument
592 cformat = LF_STARG;
593 arg = str + 1;
594 }
595 else if (*str == '[') {
596 cformat = LF_STEXPR;
597 var = str + 1; // store expr in variable name
598 }
599 else if (isalpha((unsigned char)*str)) { // variable name
600 cformat = LF_VAR;
601 var = str;
602 }
603 else if (*str == '%')
604 cformat = LF_TEXT; // convert this character to a literal (useful for '%')
605 else if (isdigit((unsigned char)*str) || *str == ' ' || *str == '\t') {
606 /* single '%' followed by blank or digit, send them both */
607 cformat = LF_TEXT;
608 pformat = LF_TEXT; /* finally we include the previous char as well */
609 sp = str - 1; /* send both the '%' and the current char */
610 memprintf(err, "unexpected variable name near '%c' at position %d line : '%s'. Maybe you want to write a single '%%', use the syntax '%%%%'",
611 *str, (int)(str - backfmt), fmt);
612 goto fail;
613
614 }
615 else
616 cformat = LF_INIT; // handle other cases of literals
617 break;
618
619 case LF_STARG: // text immediately following '%{'
620 if (*str == '}') { // end of arg
621 cformat = LF_EDARG;
622 arg_len = str - arg;
623 *str = 0; // used for reporting errors
624 }
625 break;
626
627 case LF_EDARG: // text immediately following '%{arg}'
628 if (*str == '[') {
629 cformat = LF_STEXPR;
630 var = str + 1; // store expr in variable name
631 break;
632 }
633 else if (isalnum((unsigned char)*str)) { // variable name
634 cformat = LF_VAR;
635 var = str;
636 break;
637 }
638 memprintf(err, "parse argument modifier without variable name near '%%{%s}'", arg);
639 goto fail;
640
641 case LF_STEXPR: // text immediately following '%['
642 /* the whole sample expression is parsed at once,
643 * returning the pointer to the first character not
644 * part of the expression, which MUST be the trailing
645 * angle bracket.
646 */
647 if (!add_sample_to_logformat_list(var, arg, arg_len, curproxy, list_format, options, cap, err, &str))
648 goto fail;
649
650 if (*str == ']') {
651 // end of arg, go on with next state
652 cformat = pformat = LF_EDEXPR;
653 sp = str;
654 }
655 else {
656 char c = *str;
657 *str = 0;
658 if (isprint((unsigned char)c))
659 memprintf(err, "expected ']' after '%s', but found '%c'", var, c);
660 else
661 memprintf(err, "missing ']' after '%s'", var);
662 goto fail;
663 }
664 break;
665
666 case LF_VAR: // text part of a variable name
667 var_len = str - var;
668 if (!isalnum((unsigned char)*str))
669 cformat = LF_INIT; // not variable name anymore
670 break;
671
672 default: // LF_INIT, LF_TEXT, LF_SEPARATOR, LF_END, LF_EDEXPR
673 cformat = LF_INIT;
674 }
675
676 if (cformat == LF_INIT) { /* resynchronize state to text/sep/startvar */
677 switch (*str) {
678 case '%': cformat = LF_STARTVAR; break;
679 case 0 : cformat = LF_END; break;
680 case ' ':
681 if (options & LOG_OPT_MERGE_SPACES) {
682 cformat = LF_SEPARATOR;
683 break;
684 }
685 /* fall through */
686 default : cformat = LF_TEXT; break;
687 }
688 }
689
690 if (cformat != pformat || pformat == LF_SEPARATOR) {
691 switch (pformat) {
692 case LF_VAR:
693 if (!parse_logformat_var(arg, arg_len, var, var_len, curproxy, list_format, &options, err))
694 goto fail;
695 break;
696 case LF_TEXT:
697 case LF_SEPARATOR:
698 if (!add_to_logformat_list(sp, str, pformat, list_format, err))
699 goto fail;
700 break;
701 }
702 sp = str; /* new start of text at every state switch and at every separator */
703 }
704 }
705
706 if (pformat == LF_STARTVAR || pformat == LF_STARG || pformat == LF_STEXPR) {
707 memprintf(err, "truncated line after '%s'", var ? var : arg ? arg : "%");
708 goto fail;
709 }
710 free(backfmt);
711
712 return 1;
713 fail:
714 free(backfmt);
715 return 0;
716 }
717
718 /*
719 * Parse the first range of indexes from a string made of a list of comma separated
720 * ranges of indexes. Note that an index may be considered as a particular range
721 * with a high limit to the low limit.
722 */
get_logsrv_smp_range(unsigned int * low,unsigned int * high,char ** arg,char ** err)723 int get_logsrv_smp_range(unsigned int *low, unsigned int *high, char **arg, char **err)
724 {
725 char *end, *p;
726
727 *low = *high = 0;
728
729 p = *arg;
730 end = strchr(p, ',');
731 if (!end)
732 end = p + strlen(p);
733
734 *high = *low = read_uint((const char **)&p, end);
735 if (!*low || (p != end && *p != '-'))
736 goto err;
737
738 if (p == end)
739 goto done;
740
741 p++;
742 *high = read_uint((const char **)&p, end);
743 if (!*high || *high <= *low || p != end)
744 goto err;
745
746 done:
747 if (*end == ',')
748 end++;
749 *arg = end;
750 return 1;
751
752 err:
753 memprintf(err, "wrong sample range '%s'", *arg);
754 return 0;
755 }
756
757 /*
758 * Returns 1 if the range defined by <low> and <high> overlaps
759 * one of them in <rgs> array of ranges with <sz> the size of this
760 * array, 0 if not.
761 */
smp_log_ranges_overlap(struct smp_log_range * rgs,size_t sz,unsigned int low,unsigned int high,char ** err)762 int smp_log_ranges_overlap(struct smp_log_range *rgs, size_t sz,
763 unsigned int low, unsigned int high, char **err)
764 {
765 size_t i;
766
767 for (i = 0; i < sz; i++) {
768 if ((low >= rgs[i].low && low <= rgs[i].high) ||
769 (high >= rgs[i].low && high <= rgs[i].high)) {
770 memprintf(err, "ranges are overlapping");
771 return 1;
772 }
773 }
774
775 return 0;
776 }
777
smp_log_range_cmp(const void * a,const void * b)778 int smp_log_range_cmp(const void *a, const void *b)
779 {
780 const struct smp_log_range *rg_a = a;
781 const struct smp_log_range *rg_b = b;
782
783 if (rg_a->high < rg_b->low)
784 return -1;
785 else if (rg_a->low > rg_b->high)
786 return 1;
787
788 return 0;
789 }
790
791 /*
792 * Parse "log" keyword and update <logsrvs> list accordingly.
793 *
794 * When <do_del> is set, it means the "no log" line was parsed, so all log
795 * servers in <logsrvs> are released.
796 *
797 * Otherwise, we try to parse the "log" line. First of all, when the list is not
798 * the global one, we look for the parameter "global". If we find it,
799 * global.logsrvs is copied. Else we parse each arguments.
800 *
801 * The function returns 1 in success case, otherwise, it returns 0 and err is
802 * filled.
803 */
parse_logsrv(char ** args,struct list * logsrvs,int do_del,char ** err)804 int parse_logsrv(char **args, struct list *logsrvs, int do_del, char **err)
805 {
806 struct smp_log_range *smp_rgs = NULL;
807 struct sockaddr_storage *sk;
808 struct logsrv *logsrv = NULL;
809 int port1, port2;
810 int cur_arg;
811 int fd;
812
813 /*
814 * "no log": delete previous herited or defined syslog
815 * servers.
816 */
817 if (do_del) {
818 struct logsrv *back;
819
820 if (*(args[1]) != 0) {
821 memprintf(err, "'no log' does not expect arguments");
822 goto error;
823 }
824
825 list_for_each_entry_safe(logsrv, back, logsrvs, list) {
826 LIST_DEL(&logsrv->list);
827 free(logsrv);
828 }
829 return 1;
830 }
831
832 /*
833 * "log global": copy global.logrsvs linked list to the end of logsrvs
834 * list. But first, we check (logsrvs != global.logsrvs).
835 */
836 if (*(args[1]) && *(args[2]) == 0 && !strcmp(args[1], "global")) {
837 if (logsrvs == &global.logsrvs) {
838 memprintf(err, "'global' is not supported for a global syslog server");
839 goto error;
840 }
841 list_for_each_entry(logsrv, &global.logsrvs, list) {
842 struct logsrv *node;
843
844 list_for_each_entry(node, logsrvs, list) {
845 if (node->ref == logsrv)
846 goto skip_logsrv;
847 }
848
849 node = malloc(sizeof(*node));
850 memcpy(node, logsrv, sizeof(struct logsrv));
851 node->ref = logsrv;
852 LIST_INIT(&node->list);
853 LIST_ADDQ(logsrvs, &node->list);
854
855 skip_logsrv:
856 continue;
857 }
858 return 1;
859 }
860
861 /*
862 * "log <address> ...: parse a syslog server line
863 */
864 if (*(args[1]) == 0 || *(args[2]) == 0) {
865 memprintf(err, "expects <address> and <facility> %s as arguments",
866 ((logsrvs == &global.logsrvs) ? "" : "or global"));
867 goto error;
868 }
869
870 /* take care of "stdout" and "stderr" as regular aliases for fd@1 / fd@2 */
871 if (strcmp(args[1], "stdout") == 0)
872 args[1] = "fd@1";
873 else if (strcmp(args[1], "stderr") == 0)
874 args[1] = "fd@2";
875
876 logsrv = calloc(1, sizeof(*logsrv));
877 if (!logsrv) {
878 memprintf(err, "out of memory");
879 goto error;
880 }
881
882 /* skip address for now, it will be parsed at the end */
883 cur_arg = 2;
884
885 /* just after the address, a length may be specified */
886 logsrv->maxlen = MAX_SYSLOG_LEN;
887 if (strcmp(args[cur_arg], "len") == 0) {
888 int len = atoi(args[cur_arg+1]);
889 if (len < 80 || len > 65535) {
890 memprintf(err, "invalid log length '%s', must be between 80 and 65535",
891 args[cur_arg+1]);
892 goto error;
893 }
894 logsrv->maxlen = len;
895 cur_arg += 2;
896 }
897 if (logsrv->maxlen > global.max_syslog_len)
898 global.max_syslog_len = logsrv->maxlen;
899
900 /* after the length, a format may be specified */
901 if (strcmp(args[cur_arg], "format") == 0) {
902 logsrv->format = get_log_format(args[cur_arg+1]);
903 if (logsrv->format == LOG_FORMAT_UNSPEC) {
904 memprintf(err, "unknown log format '%s'", args[cur_arg+1]);
905 goto error;
906 }
907 cur_arg += 2;
908 }
909
910 if (strcmp(args[cur_arg], "sample") == 0) {
911 unsigned low, high;
912 char *p, *beg, *end, *smp_sz_str;
913 size_t smp_rgs_sz = 0, smp_sz = 0, new_smp_sz;
914
915 p = args[cur_arg+1];
916 smp_sz_str = strchr(p, ':');
917 if (!smp_sz_str) {
918 memprintf(err, "Missing sample size");
919 goto error;
920 }
921
922 *smp_sz_str++ = '\0';
923
924 end = p + strlen(p);
925
926 while (p != end) {
927 if (!get_logsrv_smp_range(&low, &high, &p, err))
928 goto error;
929
930 if (smp_rgs && smp_log_ranges_overlap(smp_rgs, smp_rgs_sz, low, high, err))
931 goto error;
932
933 smp_rgs = my_realloc2(smp_rgs, (smp_rgs_sz + 1) * sizeof *smp_rgs);
934 if (!smp_rgs) {
935 memprintf(err, "out of memory error");
936 goto error;
937 }
938
939 smp_rgs[smp_rgs_sz].low = low;
940 smp_rgs[smp_rgs_sz].high = high;
941 smp_rgs[smp_rgs_sz].sz = high - low + 1;
942 smp_rgs[smp_rgs_sz].curr_idx = 0;
943 if (smp_rgs[smp_rgs_sz].high > smp_sz)
944 smp_sz = smp_rgs[smp_rgs_sz].high;
945 smp_rgs_sz++;
946 }
947
948 if (smp_rgs == NULL) {
949 memprintf(err, "no sampling ranges given");
950 goto error;
951 }
952
953 beg = smp_sz_str;
954 end = beg + strlen(beg);
955 new_smp_sz = read_uint((const char **)&beg, end);
956 if (!new_smp_sz || beg != end) {
957 memprintf(err, "wrong sample size '%s' for sample range '%s'",
958 smp_sz_str, args[cur_arg+1]);
959 goto error;
960 }
961
962 if (new_smp_sz < smp_sz) {
963 memprintf(err, "sample size %zu should be greater or equal to "
964 "%zu the maximum of the high ranges limits",
965 new_smp_sz, smp_sz);
966 goto error;
967 }
968 smp_sz = new_smp_sz;
969
970 /* Let's order <smp_rgs> array. */
971 qsort(smp_rgs, smp_rgs_sz, sizeof(struct smp_log_range), smp_log_range_cmp);
972
973 logsrv->lb.smp_rgs = smp_rgs;
974 logsrv->lb.smp_rgs_sz = smp_rgs_sz;
975 logsrv->lb.smp_sz = smp_sz;
976
977 cur_arg += 2;
978 }
979 HA_SPIN_INIT(&logsrv->lock);
980 /* parse the facility */
981 logsrv->facility = get_log_facility(args[cur_arg]);
982 if (logsrv->facility < 0) {
983 memprintf(err, "unknown log facility '%s'", args[cur_arg]);
984 goto error;
985 }
986 cur_arg++;
987
988 /* parse the max syslog level (default: debug) */
989 logsrv->level = 7;
990 if (*(args[cur_arg])) {
991 logsrv->level = get_log_level(args[cur_arg]);
992 if (logsrv->level < 0) {
993 memprintf(err, "unknown optional log level '%s'", args[cur_arg]);
994 goto error;
995 }
996 cur_arg++;
997 }
998
999 /* parse the limit syslog level (default: emerg) */
1000 logsrv->minlvl = 0;
1001 if (*(args[cur_arg])) {
1002 logsrv->minlvl = get_log_level(args[cur_arg]);
1003 if (logsrv->minlvl < 0) {
1004 memprintf(err, "unknown optional minimum log level '%s'", args[cur_arg]);
1005 goto error;
1006 }
1007 cur_arg++;
1008 }
1009
1010 /* Too many args */
1011 if (*(args[cur_arg])) {
1012 memprintf(err, "cannot handle unexpected argument '%s'", args[cur_arg]);
1013 goto error;
1014 }
1015
1016 /* now, back to the address */
1017 logsrv->type = LOG_TARGET_DGRAM;
1018 if (strncmp(args[1], "ring@", 5) == 0) {
1019 logsrv->addr.ss_family = AF_UNSPEC;
1020 logsrv->type = LOG_TARGET_BUFFER;
1021 logsrv->sink = NULL;
1022 logsrv->ring_name = strdup(args[1] + 5);
1023 goto done;
1024 }
1025
1026 sk = str2sa_range(args[1], NULL, &port1, &port2, &fd, NULL,
1027 err, NULL, NULL, PA_O_RESOLVE | PA_O_PORT_OK | PA_O_RAW_FD | PA_O_DGRAM);
1028 if (!sk)
1029 goto error;
1030
1031 if (fd != -1)
1032 logsrv->type = LOG_TARGET_FD;
1033 logsrv->addr = *sk;
1034
1035 if (sk->ss_family == AF_INET || sk->ss_family == AF_INET6) {
1036 logsrv->addr = *sk;
1037 if (!port1)
1038 set_host_port(&logsrv->addr, SYSLOG_PORT);
1039 }
1040 done:
1041 LIST_ADDQ(logsrvs, &logsrv->list);
1042 return 1;
1043
1044 error:
1045 free(smp_rgs);
1046 if (logsrv)
1047 free(logsrv->ring_name);
1048 free(logsrv);
1049 return 0;
1050 }
1051
1052
1053 /* Generic function to display messages prefixed by a label */
print_message(const char * label,const char * fmt,va_list argp)1054 static void print_message(const char *label, const char *fmt, va_list argp)
1055 {
1056 struct tm tm;
1057 char *head, *msg;
1058
1059 head = msg = NULL;
1060
1061 get_localtime(date.tv_sec, &tm);
1062 memprintf(&head, "[%s] %03d/%02d%02d%02d (%d) : ",
1063 label, tm.tm_yday, tm.tm_hour, tm.tm_min, tm.tm_sec, (int)getpid());
1064 memvprintf(&msg, fmt, argp);
1065
1066 if (global.mode & MODE_STARTING) {
1067 if (unlikely(!startup_logs))
1068 startup_logs = ring_new(STARTUP_LOG_SIZE);
1069
1070 if (likely(startup_logs)) {
1071 struct ist m[2];
1072
1073 m[0] = ist(head);
1074 m[1] = ist(msg);
1075 /* trim the trailing '\n' */
1076 if (m[1].len > 0 && m[1].ptr[m[1].len - 1] == '\n')
1077 m[1].len--;
1078 ring_write(startup_logs, ~0, 0, 0, m, 2);
1079 }
1080 }
1081
1082 fprintf(stderr, "%s%s", head, msg);
1083 fflush(stderr);
1084
1085 free(head);
1086 free(msg);
1087 }
1088
1089 /*
1090 * Displays the message on stderr with the date and pid. Overrides the quiet
1091 * mode during startup.
1092 */
ha_alert(const char * fmt,...)1093 void ha_alert(const char *fmt, ...)
1094 {
1095 va_list argp;
1096
1097 if (!(global.mode & MODE_QUIET) || (global.mode & (MODE_VERBOSE | MODE_STARTING))) {
1098 if (!(warned & WARN_EXEC_PATH)) {
1099 const char *path = get_exec_path();
1100
1101 warned |= WARN_EXEC_PATH;
1102 ha_notice("haproxy version is %s\n", haproxy_version);
1103 if (path)
1104 ha_notice("path to executable is %s\n", path);
1105 }
1106 va_start(argp, fmt);
1107 print_message("ALERT", fmt, argp);
1108 va_end(argp);
1109 }
1110 }
1111
1112
1113 /*
1114 * Displays the message on stderr with the date and pid.
1115 */
ha_warning(const char * fmt,...)1116 void ha_warning(const char *fmt, ...)
1117 {
1118 va_list argp;
1119
1120 warned |= WARN_ANY;
1121
1122 if (!(global.mode & MODE_QUIET) || (global.mode & MODE_VERBOSE)) {
1123 va_start(argp, fmt);
1124 print_message("WARNING", fmt, argp);
1125 va_end(argp);
1126 }
1127 }
1128
1129 /*
1130 * Displays the message on stderr with the date and pid.
1131 */
ha_notice(const char * fmt,...)1132 void ha_notice(const char *fmt, ...)
1133 {
1134 va_list argp;
1135
1136 if (!(global.mode & MODE_QUIET) || (global.mode & MODE_VERBOSE)) {
1137 va_start(argp, fmt);
1138 print_message("NOTICE", fmt, argp);
1139 va_end(argp);
1140 }
1141 }
1142
1143 /*
1144 * Displays the message on <out> only if quiet mode is not set.
1145 */
qfprintf(FILE * out,const char * fmt,...)1146 void qfprintf(FILE *out, const char *fmt, ...)
1147 {
1148 va_list argp;
1149
1150 if (!(global.mode & MODE_QUIET) || (global.mode & MODE_VERBOSE)) {
1151 va_start(argp, fmt);
1152 vfprintf(out, fmt, argp);
1153 fflush(out);
1154 va_end(argp);
1155 }
1156 }
1157
1158 /*
1159 * returns log format, LOG_FORMAT_UNSPEC is return if not found.
1160 */
get_log_format(const char * fmt)1161 enum log_fmt get_log_format(const char *fmt)
1162 {
1163 enum log_fmt format;
1164
1165 format = LOG_FORMATS - 1;
1166 while (format > 0 && log_formats[format].name
1167 && strcmp(log_formats[format].name, fmt))
1168 format--;
1169
1170 /* Note: 0 is LOG_FORMAT_UNSPEC */
1171 return format;
1172 }
1173
1174 /*
1175 * returns log level for <lev> or -1 if not found.
1176 */
get_log_level(const char * lev)1177 int get_log_level(const char *lev)
1178 {
1179 int level;
1180
1181 level = NB_LOG_LEVELS - 1;
1182 while (level >= 0 && strcmp(log_levels[level], lev))
1183 level--;
1184
1185 return level;
1186 }
1187
1188 /*
1189 * returns log facility for <fac> or -1 if not found.
1190 */
get_log_facility(const char * fac)1191 int get_log_facility(const char *fac)
1192 {
1193 int facility;
1194
1195 facility = NB_LOG_FACILITIES - 1;
1196 while (facility >= 0 && strcmp(log_facilities[facility], fac))
1197 facility--;
1198
1199 return facility;
1200 }
1201
1202 /*
1203 * Encode the string.
1204 *
1205 * When using the +E log format option, it will try to escape '"\]'
1206 * characters with '\' as prefix. The same prefix should not be used as
1207 * <escape>.
1208 */
lf_encode_string(char * start,char * stop,const char escape,const long * map,const char * string,struct logformat_node * node)1209 static char *lf_encode_string(char *start, char *stop,
1210 const char escape, const long *map,
1211 const char *string,
1212 struct logformat_node *node)
1213 {
1214 if (node->options & LOG_OPT_ESC) {
1215 if (start < stop) {
1216 stop--; /* reserve one byte for the final '\0' */
1217 while (start < stop && *string != '\0') {
1218 if (!ha_bit_test((unsigned char)(*string), map)) {
1219 if (!ha_bit_test((unsigned char)(*string), rfc5424_escape_map))
1220 *start++ = *string;
1221 else {
1222 if (start + 2 >= stop)
1223 break;
1224 *start++ = '\\';
1225 *start++ = *string;
1226 }
1227 }
1228 else {
1229 if (start + 3 >= stop)
1230 break;
1231 *start++ = escape;
1232 *start++ = hextab[(*string >> 4) & 15];
1233 *start++ = hextab[*string & 15];
1234 }
1235 string++;
1236 }
1237 *start = '\0';
1238 }
1239 }
1240 else {
1241 return encode_string(start, stop, escape, map, string);
1242 }
1243
1244 return start;
1245 }
1246
1247 /*
1248 * Encode the chunk.
1249 *
1250 * When using the +E log format option, it will try to escape '"\]'
1251 * characters with '\' as prefix. The same prefix should not be used as
1252 * <escape>.
1253 */
lf_encode_chunk(char * start,char * stop,const char escape,const long * map,const struct buffer * chunk,struct logformat_node * node)1254 static char *lf_encode_chunk(char *start, char *stop,
1255 const char escape, const long *map,
1256 const struct buffer *chunk,
1257 struct logformat_node *node)
1258 {
1259 char *str, *end;
1260
1261 if (node->options & LOG_OPT_ESC) {
1262 if (start < stop) {
1263 str = chunk->area;
1264 end = chunk->area + chunk->data;
1265
1266 stop--; /* reserve one byte for the final '\0' */
1267 while (start < stop && str < end) {
1268 if (!ha_bit_test((unsigned char)(*str), map)) {
1269 if (!ha_bit_test((unsigned char)(*str), rfc5424_escape_map))
1270 *start++ = *str;
1271 else {
1272 if (start + 2 >= stop)
1273 break;
1274 *start++ = '\\';
1275 *start++ = *str;
1276 }
1277 }
1278 else {
1279 if (start + 3 >= stop)
1280 break;
1281 *start++ = escape;
1282 *start++ = hextab[(*str >> 4) & 15];
1283 *start++ = hextab[*str & 15];
1284 }
1285 str++;
1286 }
1287 *start = '\0';
1288 }
1289 }
1290 else {
1291 return encode_chunk(start, stop, escape, map, chunk);
1292 }
1293
1294 return start;
1295 }
1296
1297 /*
1298 * Write a string in the log string
1299 * Take cares of quote and escape options
1300 *
1301 * Return the address of the \0 character, or NULL on error
1302 */
lf_text_len(char * dst,const char * src,size_t len,size_t size,const struct logformat_node * node)1303 char *lf_text_len(char *dst, const char *src, size_t len, size_t size, const struct logformat_node *node)
1304 {
1305 if (size < 2)
1306 return NULL;
1307
1308 if (node->options & LOG_OPT_QUOTE) {
1309 *(dst++) = '"';
1310 size--;
1311 }
1312
1313 if (src && len) {
1314 if (++len > size)
1315 len = size;
1316 if (node->options & LOG_OPT_ESC) {
1317 char *ret;
1318
1319 ret = escape_string(dst, dst + len, '\\', rfc5424_escape_map, src);
1320 if (ret == NULL || *ret != '\0')
1321 return NULL;
1322 len = ret - dst;
1323 }
1324 else {
1325 len = strlcpy2(dst, src, len);
1326 }
1327
1328 size -= len;
1329 dst += len;
1330 }
1331 else if ((node->options & (LOG_OPT_QUOTE|LOG_OPT_MANDATORY)) == LOG_OPT_MANDATORY) {
1332 if (size < 2)
1333 return NULL;
1334 *(dst++) = '-';
1335 }
1336
1337 if (node->options & LOG_OPT_QUOTE) {
1338 if (size < 2)
1339 return NULL;
1340 *(dst++) = '"';
1341 }
1342
1343 *dst = '\0';
1344 return dst;
1345 }
1346
lf_text(char * dst,const char * src,size_t size,const struct logformat_node * node)1347 static inline char *lf_text(char *dst, const char *src, size_t size, const struct logformat_node *node)
1348 {
1349 return lf_text_len(dst, src, size, size, node);
1350 }
1351
1352 /*
1353 * Write a IP address to the log string
1354 * +X option write in hexadecimal notation, most significant byte on the left
1355 */
lf_ip(char * dst,const struct sockaddr * sockaddr,size_t size,const struct logformat_node * node)1356 char *lf_ip(char *dst, const struct sockaddr *sockaddr, size_t size, const struct logformat_node *node)
1357 {
1358 char *ret = dst;
1359 int iret;
1360 char pn[INET6_ADDRSTRLEN];
1361
1362 if (node->options & LOG_OPT_HEXA) {
1363 unsigned char *addr = NULL;
1364 switch (sockaddr->sa_family) {
1365 case AF_INET:
1366 addr = (unsigned char *)&((struct sockaddr_in *)sockaddr)->sin_addr.s_addr;
1367 iret = snprintf(dst, size, "%02X%02X%02X%02X", addr[0], addr[1], addr[2], addr[3]);
1368 break;
1369 case AF_INET6:
1370 addr = (unsigned char *)&((struct sockaddr_in6 *)sockaddr)->sin6_addr.s6_addr;
1371 iret = snprintf(dst, size, "%02X%02X%02X%02X%02X%02X%02X%02X%02X%02X%02X%02X%02X%02X%02X%02X",
1372 addr[0], addr[1], addr[2], addr[3], addr[4], addr[5], addr[6], addr[7],
1373 addr[8], addr[9], addr[10], addr[11], addr[12], addr[13], addr[14], addr[15]);
1374 break;
1375 default:
1376 return NULL;
1377 }
1378 if (iret < 0 || iret > size)
1379 return NULL;
1380 ret += iret;
1381 } else {
1382 addr_to_str((struct sockaddr_storage *)sockaddr, pn, sizeof(pn));
1383 ret = lf_text(dst, pn, size, node);
1384 if (ret == NULL)
1385 return NULL;
1386 }
1387 return ret;
1388 }
1389
1390 /*
1391 * Write a port to the log
1392 * +X option write in hexadecimal notation, most significant byte on the left
1393 */
lf_port(char * dst,const struct sockaddr * sockaddr,size_t size,const struct logformat_node * node)1394 char *lf_port(char *dst, const struct sockaddr *sockaddr, size_t size, const struct logformat_node *node)
1395 {
1396 char *ret = dst;
1397 int iret;
1398
1399 if (node->options & LOG_OPT_HEXA) {
1400 const unsigned char *port = (const unsigned char *)&((struct sockaddr_in *)sockaddr)->sin_port;
1401 iret = snprintf(dst, size, "%02X%02X", port[0], port[1]);
1402 if (iret < 0 || iret > size)
1403 return NULL;
1404 ret += iret;
1405 } else {
1406 ret = ltoa_o(get_host_port((struct sockaddr_storage *)sockaddr), dst, size);
1407 if (ret == NULL)
1408 return NULL;
1409 }
1410 return ret;
1411 }
1412
1413
1414 /*
1415 * This function sends the syslog message using a printf format string. It
1416 * expects an LF-terminated message.
1417 */
send_log(struct proxy * p,int level,const char * format,...)1418 void send_log(struct proxy *p, int level, const char *format, ...)
1419 {
1420 va_list argp;
1421 int data_len;
1422
1423 if (level < 0 || format == NULL || logline == NULL)
1424 return;
1425
1426 va_start(argp, format);
1427 data_len = vsnprintf(logline, global.max_syslog_len, format, argp);
1428 if (data_len < 0 || data_len > global.max_syslog_len)
1429 data_len = global.max_syslog_len;
1430 va_end(argp);
1431
1432 __send_log((p ? &p->logsrvs : NULL), (p ? &p->log_tag : NULL), level,
1433 logline, data_len, default_rfc5424_sd_log_format, 2);
1434 }
1435 /*
1436 * This function builds a log header of given format using given
1437 * metadata, if format is set to LOF_FORMAT_UNSPEC, it tries
1438 * to determine format based on given metadas. It is useful
1439 * for log-forwarding to be able to forward any format without
1440 * settings.
1441 * This function returns a struct ist array of elements of the header
1442 * nbelem is set to the number of available elements.
1443 * This function returns currently a maximum of NB_LOG_HDR_IST_ELEMENTS
1444 * elements.
1445 */
build_log_header(enum log_fmt format,int level,int facility,struct ist * metadata,size_t * nbelem)1446 struct ist *build_log_header(enum log_fmt format, int level, int facility,
1447 struct ist *metadata, size_t *nbelem)
1448 {
1449 static THREAD_LOCAL struct {
1450 struct ist ist_vector[NB_LOG_HDR_MAX_ELEMENTS];
1451 char timestamp_buffer[LOG_LEGACYTIME_LEN+1+1];
1452 time_t cur_legacy_time;
1453 char priority_buffer[6];
1454 } hdr_ctx = { .priority_buffer = "<<<<>" };
1455
1456 struct tm logtime;
1457 int len;
1458 int fac_level = 0;
1459 time_t time = date.tv_sec;
1460
1461 *nbelem = 0;
1462
1463
1464 if (format == LOG_FORMAT_UNSPEC) {
1465 format = LOG_FORMAT_RAW;
1466 if (metadata) {
1467 /* If a hostname is set, it appears we want to perform syslog
1468 * because only rfc5427 or rfc3164 support an hostname.
1469 */
1470 if (metadata[LOG_META_HOST].len) {
1471 /* If a rfc5424 compliant timestamp is used we consider
1472 * that output format is rfc5424, else legacy format
1473 * is used as specified default for local logs
1474 * in documentation.
1475 */
1476 if ((metadata[LOG_META_TIME].len == 1 && metadata[LOG_META_TIME].ptr[0] == '-')
1477 || (metadata[LOG_META_TIME].len >= LOG_ISOTIME_MINLEN))
1478 format = LOG_FORMAT_RFC5424;
1479 else
1480 format = LOG_FORMAT_RFC3164;
1481 }
1482 else if (metadata[LOG_META_TAG].len) {
1483 /* Tag is present but no hostname, we should
1484 * consider we try to emmit a local log
1485 * in legacy format (analog to RFC3164 but
1486 * with stripped hostname).
1487 */
1488 format = LOG_FORMAT_LOCAL;
1489 }
1490 else if (metadata[LOG_META_PRIO].len) {
1491 /* the source seems a parsed message
1492 * offering a valid level/prio prefix
1493 * so we consider this format.
1494 */
1495 format = LOG_FORMAT_PRIO;
1496 }
1497 }
1498 }
1499
1500 /* prepare priority, stored into 1 single elem */
1501 switch (format) {
1502 case LOG_FORMAT_LOCAL:
1503 case LOG_FORMAT_RFC3164:
1504 case LOG_FORMAT_RFC5424:
1505 case LOG_FORMAT_PRIO:
1506 fac_level = facility << 3;
1507 /* further format ignore the facility */
1508 /* fall through */
1509 case LOG_FORMAT_TIMED:
1510 case LOG_FORMAT_SHORT:
1511 fac_level += level;
1512 hdr_ctx.ist_vector[*nbelem].ptr = &hdr_ctx.priority_buffer[3]; /* last digit of the log level */
1513 do {
1514 *hdr_ctx.ist_vector[*nbelem].ptr = '0' + fac_level % 10;
1515 fac_level /= 10;
1516 hdr_ctx.ist_vector[*nbelem].ptr--;
1517 } while (fac_level && hdr_ctx.ist_vector[*nbelem].ptr > &hdr_ctx.priority_buffer[0]);
1518 *hdr_ctx.ist_vector[*nbelem].ptr = '<';
1519 hdr_ctx.ist_vector[(*nbelem)++].len = &hdr_ctx.priority_buffer[5] - hdr_ctx.ist_vector[0].ptr;
1520 break;
1521 case LOG_FORMAT_ISO:
1522 case LOG_FORMAT_RAW:
1523 break;
1524 case LOG_FORMAT_UNSPEC:
1525 case LOG_FORMATS:
1526 ABORT_NOW();
1527 }
1528
1529
1530 /* prepare timestamp, stored into a max of 4 elems */
1531 switch (format) {
1532 case LOG_FORMAT_LOCAL:
1533 case LOG_FORMAT_RFC3164:
1534 /* rfc3164 ex: 'Jan 1 00:00:00 ' */
1535 if (metadata && metadata[LOG_META_TIME].len == LOG_LEGACYTIME_LEN) {
1536 hdr_ctx.ist_vector[(*nbelem)++] = metadata[LOG_META_TIME];
1537 hdr_ctx.ist_vector[(*nbelem)++] = ist2(" ", 1);
1538 /* time is set, break immediately */
1539 break;
1540 }
1541 else if (metadata && metadata[LOG_META_TIME].len >= LOG_ISOTIME_MINLEN) {
1542 int month;
1543 char *timestamp = metadata[LOG_META_TIME].ptr;
1544
1545 /* iso time always begins like this: '1970-01-01T00:00:00' */
1546
1547 /* compute month */
1548 month = 10*(timestamp[5] - '0') + (timestamp[6] - '0');
1549 if (month)
1550 month--;
1551 if (month <= 11) {
1552 /* builds log prefix ex: 'Jan 1 ' */
1553 len = snprintf(hdr_ctx.timestamp_buffer, sizeof(hdr_ctx.timestamp_buffer),
1554 "%s %c%c ", monthname[month],
1555 timestamp[8] != '0' ? timestamp[8] : ' ',
1556 timestamp[9]);
1557 /* we reused the timestamp_buffer, signal that it does not
1558 * contain local time anymore
1559 */
1560 hdr_ctx.cur_legacy_time = 0;
1561 if (len == 7) {
1562 hdr_ctx.ist_vector[(*nbelem)++] = ist2(&hdr_ctx.timestamp_buffer[0], len);
1563 /* adds 'HH:MM:SS' from iso time */
1564 hdr_ctx.ist_vector[(*nbelem)++] = ist2(×tamp[11], 8);
1565 hdr_ctx.ist_vector[(*nbelem)++] = ist2(" ", 1);
1566 /* we successfully reuse iso time, we can break */
1567 break;
1568 }
1569 }
1570 /* Failed to reuse isotime time, fallback to local legacy time */
1571 }
1572
1573 if (unlikely(time != hdr_ctx.cur_legacy_time)) {
1574 /* re-builds timestamp from the current local time */
1575 get_localtime(time, &logtime);
1576
1577 len = snprintf(hdr_ctx.timestamp_buffer, sizeof(hdr_ctx.timestamp_buffer),
1578 "%s %2d %02d:%02d:%02d ",
1579 monthname[logtime.tm_mon],
1580 logtime.tm_mday, logtime.tm_hour, logtime.tm_min, logtime.tm_sec);
1581 if (len != LOG_LEGACYTIME_LEN+1)
1582 hdr_ctx.cur_legacy_time = 0;
1583 else
1584 hdr_ctx.cur_legacy_time = time;
1585 }
1586 if (likely(hdr_ctx.cur_legacy_time))
1587 hdr_ctx.ist_vector[(*nbelem)++] = ist2(&hdr_ctx.timestamp_buffer[0], LOG_LEGACYTIME_LEN+1);
1588 else
1589 hdr_ctx.ist_vector[(*nbelem)++] = ist2("Jan 1 00:00:00 ", LOG_LEGACYTIME_LEN+1);
1590 break;
1591 case LOG_FORMAT_RFC5424:
1592 /* adds rfc5425 version prefix */
1593 hdr_ctx.ist_vector[(*nbelem)++] = ist2("1 ", 2);
1594 if (metadata && metadata[LOG_META_TIME].len == 1 && metadata[LOG_META_TIME].ptr[0] == '-') {
1595 /* submitted len is NILVALUE, it is a valid timestamp for rfc5425 */
1596 hdr_ctx.ist_vector[(*nbelem)++] = metadata[LOG_META_TIME];
1597 hdr_ctx.ist_vector[(*nbelem)++] = ist2(" ", 1);
1598 break;
1599 }
1600 /* let continue as 'timed' and 'iso' format for usual timestamp */
1601 /* fall through */
1602 case LOG_FORMAT_TIMED:
1603 case LOG_FORMAT_ISO:
1604 /* ISO format ex: '1900:01:01T12:00:00.123456Z'
1605 * '1900:01:01T14:00:00+02:00'
1606 * '1900:01:01T10:00:00.123456-02:00'
1607 */
1608 if (metadata && metadata[LOG_META_TIME].len >= LOG_ISOTIME_MINLEN) {
1609 hdr_ctx.ist_vector[(*nbelem)++] = metadata[LOG_META_TIME];
1610 hdr_ctx.ist_vector[(*nbelem)++] = ist2(" ", 1);
1611 /* time is set, break immediately */
1612 break;
1613 }
1614 else if (metadata && metadata[LOG_META_TIME].len == LOG_LEGACYTIME_LEN) {
1615 int month;
1616 char *timestamp = metadata[LOG_META_TIME].ptr;
1617
1618 for (month = 0; month < 12; month++)
1619 if (!memcmp(monthname[month], timestamp, 3))
1620 break;
1621
1622 if (month < 12) {
1623
1624 /* get local time to retrieve year */
1625 get_localtime(time, &logtime);
1626
1627 /* year seems changed since log */
1628 if (logtime.tm_mon < month)
1629 logtime.tm_year--;
1630
1631 /* builds rfc5424 prefix ex: '1900-01-01T' */
1632 len = snprintf(hdr_ctx.timestamp_buffer, sizeof(hdr_ctx.timestamp_buffer),
1633 "%4d-%02d-%c%cT",
1634 logtime.tm_year+1900, month+1,
1635 timestamp[4] != ' ' ? timestamp[4] : '0',
1636 timestamp[5]);
1637
1638 /* we reused the timestamp_buffer, signal that it does not
1639 * contain local time anymore
1640 */
1641 hdr_ctx.cur_legacy_time = 0;
1642 if (len == 11) {
1643 hdr_ctx.ist_vector[(*nbelem)++] = ist2(&hdr_ctx.timestamp_buffer[0], len);
1644 /* adds HH:MM:SS from legacy timestamp */
1645 hdr_ctx.ist_vector[(*nbelem)++] = ist2(×tamp[7], 8);
1646 /* skip secfraq because it is optional */
1647 /* according to rfc: -00:00 means we don't know the timezone */
1648 hdr_ctx.ist_vector[(*nbelem)++] = ist2("-00:00 ", 7);
1649 /* we successfully reuse legacy time, we can break */
1650 break;
1651 }
1652 }
1653 /* Failed to reuse legacy time, fallback to local iso time */
1654 }
1655 hdr_ctx.ist_vector[(*nbelem)++] = ist2(timeofday_as_iso_us(1), LOG_ISOTIME_MAXLEN + 1);
1656 break;
1657 case LOG_FORMAT_PRIO:
1658 case LOG_FORMAT_SHORT:
1659 case LOG_FORMAT_RAW:
1660 break;
1661 case LOG_FORMAT_UNSPEC:
1662 case LOG_FORMATS:
1663 ABORT_NOW();
1664 }
1665
1666 /* prepare other meta data, stored into a max of 10 elems */
1667 switch (format) {
1668 case LOG_FORMAT_RFC3164:
1669 if (metadata && metadata[LOG_META_HOST].len) {
1670 hdr_ctx.ist_vector[(*nbelem)++] = metadata[LOG_META_HOST];
1671 hdr_ctx.ist_vector[(*nbelem)++] = ist2(" ", 1);
1672 }
1673 else /* the caller MUST fill the hostname, this field is mandatory */
1674 hdr_ctx.ist_vector[(*nbelem)++] = ist2("localhost ", 10);
1675 /* fall through */
1676 case LOG_FORMAT_LOCAL:
1677 if (!metadata || !metadata[LOG_META_TAG].len)
1678 break;
1679
1680 hdr_ctx.ist_vector[(*nbelem)++] = metadata[LOG_META_TAG];
1681 if (metadata[LOG_META_PID].len) {
1682 hdr_ctx.ist_vector[(*nbelem)++] = ist2("[", 1);
1683 hdr_ctx.ist_vector[(*nbelem)++] = metadata[LOG_META_PID];
1684 hdr_ctx.ist_vector[(*nbelem)++] = ist2("]", 1);
1685 }
1686 hdr_ctx.ist_vector[(*nbelem)++] = ist2(": ", 2);
1687 break;
1688 case LOG_FORMAT_RFC5424:
1689 if (metadata && metadata[LOG_META_HOST].len) {
1690 hdr_ctx.ist_vector[(*nbelem)++] = metadata[LOG_META_HOST];
1691 hdr_ctx.ist_vector[(*nbelem)++] = ist2(" ", 1);
1692 }
1693 else
1694 hdr_ctx.ist_vector[(*nbelem)++] = ist2("- ", 2);
1695
1696 if (metadata && metadata[LOG_META_TAG].len) {
1697 hdr_ctx.ist_vector[(*nbelem)++] = metadata[LOG_META_TAG];
1698 hdr_ctx.ist_vector[(*nbelem)++] = ist2(" ", 1);
1699 }
1700 else
1701 hdr_ctx.ist_vector[(*nbelem)++] = ist2("- ", 2);
1702
1703 if (metadata && metadata[LOG_META_PID].len) {
1704 hdr_ctx.ist_vector[(*nbelem)++] = metadata[LOG_META_PID];
1705 hdr_ctx.ist_vector[(*nbelem)++] = ist2(" ", 1);
1706 }
1707 else
1708 hdr_ctx.ist_vector[(*nbelem)++] = ist2("- ", 2);
1709
1710 if (metadata && metadata[LOG_META_MSGID].len) {
1711 hdr_ctx.ist_vector[(*nbelem)++] = metadata[LOG_META_MSGID];
1712 hdr_ctx.ist_vector[(*nbelem)++] = ist2(" ", 1);
1713 }
1714 else
1715 hdr_ctx.ist_vector[(*nbelem)++] = ist2("- ", 2);
1716
1717 if (metadata && metadata[LOG_META_STDATA].len) {
1718 hdr_ctx.ist_vector[(*nbelem)++] = metadata[LOG_META_STDATA];
1719 hdr_ctx.ist_vector[(*nbelem)++] = ist2(" ", 1);
1720 }
1721 else
1722 hdr_ctx.ist_vector[(*nbelem)++] = ist2("- ", 2);
1723 break;
1724 case LOG_FORMAT_PRIO:
1725 case LOG_FORMAT_SHORT:
1726 case LOG_FORMAT_TIMED:
1727 case LOG_FORMAT_ISO:
1728 case LOG_FORMAT_RAW:
1729 break;
1730 case LOG_FORMAT_UNSPEC:
1731 case LOG_FORMATS:
1732 ABORT_NOW();
1733 }
1734
1735 return hdr_ctx.ist_vector;
1736 }
1737
1738 /*
1739 * This function sends a syslog message to <logsrv>.
1740 * The argument <metadata> MUST be an array of size
1741 * LOG_META_FIELDS*sizeof(struct ist) containing data to build the header.
1742 * It overrides the last byte of the message vector with an LF character.
1743 * Does not return any error,
1744 */
__do_send_log(struct logsrv * logsrv,int nblogger,int level,int facility,struct ist * metadata,char * message,size_t size)1745 static inline void __do_send_log(struct logsrv *logsrv, int nblogger, int level, int facility, struct ist *metadata, char *message, size_t size)
1746 {
1747 static THREAD_LOCAL struct iovec iovec[NB_LOG_HDR_MAX_ELEMENTS+1+1] = { }; /* header elements + message + LF */
1748 static THREAD_LOCAL struct msghdr msghdr = {
1749 //.msg_iov = iovec,
1750 .msg_iovlen = NB_LOG_HDR_MAX_ELEMENTS+2
1751 };
1752 static THREAD_LOCAL int logfdunix = -1; /* syslog to AF_UNIX socket */
1753 static THREAD_LOCAL int logfdinet = -1; /* syslog to AF_INET socket */
1754 int *plogfd;
1755 int sent;
1756 size_t nbelem;
1757 struct ist *msg_header = NULL;
1758
1759 msghdr.msg_iov = iovec;
1760
1761 /* historically some messages used to already contain the trailing LF
1762 * or Zero. Let's remove all trailing LF or Zero
1763 */
1764 while (size && (message[size-1] == '\n' || (message[size-1] == 0)))
1765 size--;
1766
1767 if (logsrv->type == LOG_TARGET_BUFFER) {
1768 plogfd = NULL;
1769 goto send;
1770 }
1771 else if (logsrv->addr.ss_family == AF_CUST_EXISTING_FD) {
1772 /* the socket's address is a file descriptor */
1773 plogfd = (int *)&((struct sockaddr_in *)&logsrv->addr)->sin_addr.s_addr;
1774 }
1775 else if (logsrv->addr.ss_family == AF_UNIX)
1776 plogfd = &logfdunix;
1777 else
1778 plogfd = &logfdinet;
1779
1780 if (plogfd && unlikely(*plogfd < 0)) {
1781 /* socket not successfully initialized yet */
1782 if ((*plogfd = socket(logsrv->addr.ss_family, SOCK_DGRAM,
1783 (logsrv->addr.ss_family == AF_UNIX) ? 0 : IPPROTO_UDP)) < 0) {
1784 static char once;
1785
1786 if (!once) {
1787 once = 1; /* note: no need for atomic ops here */
1788 ha_alert("socket() failed in logger #%d: %s (errno=%d)\n",
1789 nblogger, strerror(errno), errno);
1790 }
1791 return;
1792 } else {
1793 /* we don't want to receive anything on this socket */
1794 setsockopt(*plogfd, SOL_SOCKET, SO_RCVBUF, &zero, sizeof(zero));
1795 /* does nothing under Linux, maybe needed for others */
1796 shutdown(*plogfd, SHUT_RD);
1797 fcntl(*plogfd, F_SETFD, fcntl(*plogfd, F_GETFD, FD_CLOEXEC) | FD_CLOEXEC);
1798 }
1799 }
1800
1801 msg_header = build_log_header(logsrv->format, level, facility, metadata, &nbelem);
1802 send:
1803 if (logsrv->type == LOG_TARGET_BUFFER) {
1804 struct ist msg;
1805
1806 msg = ist2(message, size);
1807 if (msg.len > logsrv->maxlen)
1808 msg.len = logsrv->maxlen;
1809
1810 sent = sink_write(logsrv->sink, &msg, 1, level, logsrv->facility, metadata);
1811 }
1812 else if (logsrv->addr.ss_family == AF_CUST_EXISTING_FD) {
1813 struct ist msg;
1814
1815 msg = ist2(message, size);
1816 if (msg.len > logsrv->maxlen)
1817 msg.len = logsrv->maxlen;
1818
1819 sent = fd_write_frag_line(*plogfd, logsrv->maxlen, msg_header, nbelem, &msg, 1, 1);
1820 }
1821 else {
1822 int i = 0;
1823 int totlen = logsrv->maxlen;
1824
1825 for (i = 0 ; i < nbelem ; i++ ) {
1826 iovec[i].iov_base = msg_header[i].ptr;
1827 iovec[i].iov_len = msg_header[i].len;
1828 if (totlen <= iovec[i].iov_len) {
1829 iovec[i].iov_len = totlen;
1830 totlen = 0;
1831 break;
1832 }
1833 totlen -= iovec[i].iov_len;
1834 }
1835 if (totlen) {
1836 iovec[i].iov_base = message;
1837 iovec[i].iov_len = size;
1838 if (totlen <= iovec[i].iov_len)
1839 iovec[i].iov_len = totlen;
1840 i++;
1841 }
1842 iovec[i].iov_base = "\n"; /* insert a \n at the end of the message */
1843 iovec[i].iov_len = 1;
1844 i++;
1845
1846 msghdr.msg_iovlen = i;
1847 msghdr.msg_name = (struct sockaddr *)&logsrv->addr;
1848 msghdr.msg_namelen = get_addr_len(&logsrv->addr);
1849
1850 sent = sendmsg(*plogfd, &msghdr, MSG_DONTWAIT | MSG_NOSIGNAL);
1851 }
1852
1853 if (sent < 0) {
1854 static char once;
1855
1856 if (errno == EAGAIN)
1857 _HA_ATOMIC_ADD(&dropped_logs, 1);
1858 else if (!once) {
1859 once = 1; /* note: no need for atomic ops here */
1860 ha_alert("sendmsg()/writev() failed in logger #%d: %s (errno=%d)\n",
1861 nblogger, strerror(errno), errno);
1862 }
1863 }
1864 }
1865
1866 /*
1867 * This function sends a syslog message.
1868 * It doesn't care about errors nor does it report them.
1869 * The argument <metadata> MUST be an array of size
1870 * LOG_META_FIELDS*sizeof(struct ist) containing
1871 * data to build the header.
1872 */
process_send_log(struct list * logsrvs,int level,int facility,struct ist * metadata,char * message,size_t size)1873 void process_send_log(struct list *logsrvs, int level, int facility,
1874 struct ist *metadata, char *message, size_t size)
1875 {
1876 struct logsrv *logsrv;
1877 int nblogger;
1878
1879 /* Send log messages to syslog server. */
1880 nblogger = 0;
1881 list_for_each_entry(logsrv, logsrvs, list) {
1882 int in_range = 1;
1883
1884 /* we can filter the level of the messages that are sent to each logger */
1885 if (level > logsrv->level)
1886 continue;
1887
1888 if (logsrv->lb.smp_rgs) {
1889 struct smp_log_range *curr_rg;
1890
1891 HA_SPIN_LOCK(LOGSRV_LOCK, &logsrv->lock);
1892 curr_rg = &logsrv->lb.smp_rgs[logsrv->lb.curr_rg];
1893 in_range = in_smp_log_range(curr_rg, logsrv->lb.curr_idx);
1894 if (in_range) {
1895 /* Let's consume this range. */
1896 curr_rg->curr_idx = (curr_rg->curr_idx + 1) % curr_rg->sz;
1897 if (!curr_rg->curr_idx) {
1898 /* If consumed, let's select the next range. */
1899 logsrv->lb.curr_rg = (logsrv->lb.curr_rg + 1) % logsrv->lb.smp_rgs_sz;
1900 }
1901 }
1902 logsrv->lb.curr_idx = (logsrv->lb.curr_idx + 1) % logsrv->lb.smp_sz;
1903 HA_SPIN_UNLOCK(LOGSRV_LOCK, &logsrv->lock);
1904 }
1905 if (in_range)
1906 __do_send_log(logsrv, ++nblogger, MAX(level, logsrv->minlvl),
1907 (facility == -1) ? logsrv->facility : facility,
1908 metadata, message, size);
1909 }
1910 }
1911
1912 /*
1913 * This function sends a syslog message.
1914 * It doesn't care about errors nor does it report them.
1915 * The arguments <sd> and <sd_size> are used for the structured-data part
1916 * in RFC5424 formatted syslog messages.
1917 */
__send_log(struct list * logsrvs,struct buffer * tagb,int level,char * message,size_t size,char * sd,size_t sd_size)1918 void __send_log(struct list *logsrvs, struct buffer *tagb, int level,
1919 char *message, size_t size, char *sd, size_t sd_size)
1920 {
1921 static THREAD_LOCAL pid_t curr_pid;
1922 static THREAD_LOCAL char pidstr[16];
1923 static THREAD_LOCAL struct ist metadata[LOG_META_FIELDS];
1924
1925 if (logsrvs == NULL) {
1926 if (!LIST_ISEMPTY(&global.logsrvs)) {
1927 logsrvs = &global.logsrvs;
1928 }
1929 }
1930 if (!logsrvs || LIST_ISEMPTY(logsrvs))
1931 return;
1932
1933 if (!metadata[LOG_META_HOST].len) {
1934 if (global.log_send_hostname)
1935 metadata[LOG_META_HOST] = ist2(global.log_send_hostname, strlen(global.log_send_hostname));
1936 }
1937
1938 if (!tagb || !tagb->area)
1939 tagb = &global.log_tag;
1940
1941 if (tagb)
1942 metadata[LOG_META_TAG] = ist2(tagb->area, tagb->data);
1943
1944 if (unlikely(curr_pid != getpid()))
1945 metadata[LOG_META_PID].len = 0;
1946
1947 if (!metadata[LOG_META_PID].len) {
1948 curr_pid = getpid();
1949 ltoa_o(curr_pid, pidstr, sizeof(pidstr));
1950 metadata[LOG_META_PID] = ist2(pidstr, strlen(pidstr));
1951 }
1952
1953 metadata[LOG_META_STDATA] = ist2(sd, sd_size);
1954
1955 /* Remove trailing space of structured data */
1956 while (metadata[LOG_META_STDATA].len && metadata[LOG_META_STDATA].ptr[metadata[LOG_META_STDATA].len-1] == ' ')
1957 metadata[LOG_META_STDATA].len--;
1958
1959 return process_send_log(logsrvs, level, -1, metadata, message, size);
1960 }
1961
1962 const char sess_cookie[8] = "NIDVEOU7"; /* No cookie, Invalid cookie, cookie for a Down server, Valid cookie, Expired cookie, Old cookie, Unused, unknown */
1963 const char sess_set_cookie[8] = "NPDIRU67"; /* No set-cookie, Set-cookie found and left unchanged (passive),
1964 Set-cookie Deleted, Set-Cookie Inserted, Set-cookie Rewritten,
1965 Set-cookie Updated, unknown, unknown */
1966
1967 /*
1968 * try to write a character if there is enough space, or goto out
1969 */
1970 #define LOGCHAR(x) do { \
1971 if (tmplog < dst + maxsize - 1) { \
1972 *(tmplog++) = (x); \
1973 } else { \
1974 goto out; \
1975 } \
1976 } while(0)
1977
1978
1979 /* Initializes some log data at boot */
init_log()1980 static void init_log()
1981 {
1982 char *tmp;
1983 int i;
1984
1985 /* Initialize the escape map for the RFC5424 structured-data : '"\]'
1986 * inside PARAM-VALUE should be escaped with '\' as prefix.
1987 * See https://tools.ietf.org/html/rfc5424#section-6.3.3 for more
1988 * details.
1989 */
1990 memset(rfc5424_escape_map, 0, sizeof(rfc5424_escape_map));
1991
1992 tmp = "\"\\]";
1993 while (*tmp) {
1994 ha_bit_set(*tmp, rfc5424_escape_map);
1995 tmp++;
1996 }
1997
1998 /* initialize the log header encoding map : '{|}"#' should be encoded with
1999 * '#' as prefix, as well as non-printable characters ( <32 or >= 127 ).
2000 * URL encoding only requires '"', '#' to be encoded as well as non-
2001 * printable characters above.
2002 */
2003 memset(hdr_encode_map, 0, sizeof(hdr_encode_map));
2004 memset(url_encode_map, 0, sizeof(url_encode_map));
2005 for (i = 0; i < 32; i++) {
2006 ha_bit_set(i, hdr_encode_map);
2007 ha_bit_set(i, url_encode_map);
2008 }
2009 for (i = 127; i < 256; i++) {
2010 ha_bit_set(i, hdr_encode_map);
2011 ha_bit_set(i, url_encode_map);
2012 }
2013
2014 tmp = "\"#{|}";
2015 while (*tmp) {
2016 ha_bit_set(*tmp, hdr_encode_map);
2017 tmp++;
2018 }
2019
2020 tmp = "\"#";
2021 while (*tmp) {
2022 ha_bit_set(*tmp, url_encode_map);
2023 tmp++;
2024 }
2025
2026 /* initialize the http header encoding map. The draft httpbis define the
2027 * header content as:
2028 *
2029 * HTTP-message = start-line
2030 * *( header-field CRLF )
2031 * CRLF
2032 * [ message-body ]
2033 * header-field = field-name ":" OWS field-value OWS
2034 * field-value = *( field-content / obs-fold )
2035 * field-content = field-vchar [ 1*( SP / HTAB ) field-vchar ]
2036 * obs-fold = CRLF 1*( SP / HTAB )
2037 * field-vchar = VCHAR / obs-text
2038 * VCHAR = %x21-7E
2039 * obs-text = %x80-FF
2040 *
2041 * All the chars are encoded except "VCHAR", "obs-text", SP and HTAB.
2042 * The encoded chars are form 0x00 to 0x08, 0x0a to 0x1f and 0x7f. The
2043 * "obs-fold" is voluntarily forgotten because haproxy remove this.
2044 */
2045 memset(http_encode_map, 0, sizeof(http_encode_map));
2046 for (i = 0x00; i <= 0x08; i++)
2047 ha_bit_set(i, http_encode_map);
2048 for (i = 0x0a; i <= 0x1f; i++)
2049 ha_bit_set(i, http_encode_map);
2050 ha_bit_set(0x7f, http_encode_map);
2051 }
2052
2053 INITCALL0(STG_PREPARE, init_log);
2054
2055 /* Initialize log buffers used for syslog messages */
init_log_buffers()2056 int init_log_buffers()
2057 {
2058 logline = my_realloc2(logline, global.max_syslog_len + 1);
2059 logline_rfc5424 = my_realloc2(logline_rfc5424, global.max_syslog_len + 1);
2060 if (!logline || !logline_rfc5424)
2061 return 0;
2062 return 1;
2063 }
2064
2065 /* Deinitialize log buffers used for syslog messages */
deinit_log_buffers()2066 void deinit_log_buffers()
2067 {
2068 free(logline);
2069 free(logline_rfc5424);
2070 ring_free(_HA_ATOMIC_XCHG(&startup_logs, NULL));
2071 logline = NULL;
2072 logline_rfc5424 = NULL;
2073 }
2074
2075 /* Builds a log line in <dst> based on <list_format>, and stops before reaching
2076 * <maxsize> characters. Returns the size of the output string in characters,
2077 * not counting the trailing zero which is always added if the resulting size
2078 * is not zero. It requires a valid session and optionally a stream. If the
2079 * stream is NULL, default values will be assumed for the stream part.
2080 */
sess_build_logline(struct session * sess,struct stream * s,char * dst,size_t maxsize,struct list * list_format)2081 int sess_build_logline(struct session *sess, struct stream *s, char *dst, size_t maxsize, struct list *list_format)
2082 {
2083 struct proxy *fe = sess->fe;
2084 struct proxy *be;
2085 struct http_txn *txn;
2086 const struct strm_logs *logs;
2087 struct connection *be_conn;
2088 unsigned int s_flags;
2089 unsigned int uniq_id;
2090 struct buffer chunk;
2091 char *uri;
2092 char *spc;
2093 char *qmark;
2094 char *end;
2095 struct tm tm;
2096 int t_request;
2097 int hdr;
2098 int last_isspace = 1;
2099 int nspaces = 0;
2100 char *tmplog;
2101 char *ret;
2102 int iret;
2103 struct logformat_node *tmp;
2104 struct timeval tv;
2105 struct strm_logs tmp_strm_log;
2106
2107 /* FIXME: let's limit ourselves to frontend logging for now. */
2108
2109 if (likely(s)) {
2110 be = s->be;
2111 txn = s->txn;
2112 be_conn = cs_conn(objt_cs(s->si[1].end));
2113 s_flags = s->flags;
2114 uniq_id = s->uniq_id;
2115 logs = &s->logs;
2116 } else {
2117 /* we have no stream so we first need to initialize a few
2118 * things that are needed later. We do increment the request
2119 * ID so that it's uniquely assigned to this request just as
2120 * if the request had reached the point of being processed.
2121 * A request error is reported as it's the only element we have
2122 * here and which justifies emitting such a log.
2123 */
2124 be = ((obj_type(sess->origin) == OBJ_TYPE_CHECK) ? __objt_check(sess->origin)->proxy : fe);
2125 txn = NULL;
2126 be_conn = ((obj_type(sess->origin) == OBJ_TYPE_CHECK) ? cs_conn(__objt_check(sess->origin)->cs) : NULL);
2127 s_flags = SF_ERR_PRXCOND | SF_FINST_R;
2128 uniq_id = _HA_ATOMIC_XADD(&global.req_count, 1);
2129
2130 /* prepare a valid log structure */
2131 tmp_strm_log.tv_accept = sess->tv_accept;
2132 tmp_strm_log.accept_date = sess->accept_date;
2133 tmp_strm_log.t_handshake = sess->t_handshake;
2134 tmp_strm_log.t_idle = tv_ms_elapsed(&sess->tv_accept, &now) - sess->t_handshake;
2135 tv_zero(&tmp_strm_log.tv_request);
2136 tmp_strm_log.t_queue = -1;
2137 tmp_strm_log.t_connect = -1;
2138 tmp_strm_log.t_data = -1;
2139 tmp_strm_log.t_close = tv_ms_elapsed(&sess->tv_accept, &now);
2140 tmp_strm_log.bytes_in = 0;
2141 tmp_strm_log.bytes_out = 0;
2142 tmp_strm_log.prx_queue_pos = 0;
2143 tmp_strm_log.srv_queue_pos = 0;
2144
2145 logs = &tmp_strm_log;
2146 }
2147
2148 t_request = -1;
2149 if (tv_isge(&logs->tv_request, &logs->tv_accept))
2150 t_request = tv_ms_elapsed(&logs->tv_accept, &logs->tv_request);
2151
2152 tmplog = dst;
2153
2154 /* fill logbuffer */
2155 if (LIST_ISEMPTY(list_format))
2156 return 0;
2157
2158 list_for_each_entry(tmp, list_format, list) {
2159 struct connection *conn;
2160 const char *src = NULL;
2161 struct sample *key;
2162 const struct buffer empty = { };
2163
2164 switch (tmp->type) {
2165 case LOG_FMT_SEPARATOR:
2166 if (!last_isspace) {
2167 LOGCHAR(' ');
2168 last_isspace = 1;
2169 }
2170 break;
2171
2172 case LOG_FMT_TEXT: // text
2173 src = tmp->arg;
2174 iret = strlcpy2(tmplog, src, dst + maxsize - tmplog);
2175 if (iret == 0)
2176 goto out;
2177 tmplog += iret;
2178 last_isspace = 0;
2179 break;
2180
2181 case LOG_FMT_EXPR: // sample expression, may be request or response
2182 key = NULL;
2183 if (tmp->options & LOG_OPT_REQ_CAP)
2184 key = sample_fetch_as_type(be, sess, s, SMP_OPT_DIR_REQ|SMP_OPT_FINAL, tmp->expr, SMP_T_STR);
2185 if (!key && (tmp->options & LOG_OPT_RES_CAP))
2186 key = sample_fetch_as_type(be, sess, s, SMP_OPT_DIR_RES|SMP_OPT_FINAL, tmp->expr, SMP_T_STR);
2187 if (tmp->options & LOG_OPT_HTTP)
2188 ret = lf_encode_chunk(tmplog, dst + maxsize,
2189 '%', http_encode_map, key ? &key->data.u.str : &empty, tmp);
2190 else
2191 ret = lf_text_len(tmplog,
2192 key ? key->data.u.str.area : NULL,
2193 key ? key->data.u.str.data : 0,
2194 dst + maxsize - tmplog,
2195 tmp);
2196 if (ret == 0)
2197 goto out;
2198 tmplog = ret;
2199 last_isspace = 0;
2200 break;
2201
2202 case LOG_FMT_CLIENTIP: // %ci
2203 conn = objt_conn(sess->origin);
2204 if (conn && conn_get_src(conn))
2205 ret = lf_ip(tmplog, (struct sockaddr *)conn->src, dst + maxsize - tmplog, tmp);
2206 else
2207 ret = lf_text_len(tmplog, NULL, 0, dst + maxsize - tmplog, tmp);
2208 if (ret == NULL)
2209 goto out;
2210 tmplog = ret;
2211 last_isspace = 0;
2212 break;
2213
2214 case LOG_FMT_CLIENTPORT: // %cp
2215 conn = objt_conn(sess->origin);
2216 if (conn && conn_get_src(conn)) {
2217 if (conn->src->ss_family == AF_UNIX) {
2218 ret = ltoa_o(sess->listener->luid, tmplog, dst + maxsize - tmplog);
2219 } else {
2220 ret = lf_port(tmplog, (struct sockaddr *)conn->src,
2221 dst + maxsize - tmplog, tmp);
2222 }
2223 }
2224 else
2225 ret = lf_text_len(tmplog, NULL, 0, dst + maxsize - tmplog, tmp);
2226
2227 if (ret == NULL)
2228 goto out;
2229 tmplog = ret;
2230 last_isspace = 0;
2231 break;
2232
2233 case LOG_FMT_FRONTENDIP: // %fi
2234 conn = objt_conn(sess->origin);
2235 if (conn && conn_get_dst(conn)) {
2236 ret = lf_ip(tmplog, (struct sockaddr *)conn->dst, dst + maxsize - tmplog, tmp);
2237 }
2238 else
2239 ret = lf_text_len(tmplog, NULL, 0, dst + maxsize - tmplog, tmp);
2240
2241 if (ret == NULL)
2242 goto out;
2243 tmplog = ret;
2244 last_isspace = 0;
2245 break;
2246
2247 case LOG_FMT_FRONTENDPORT: // %fp
2248 conn = objt_conn(sess->origin);
2249 if (conn && conn_get_dst(conn)) {
2250 if (conn->dst->ss_family == AF_UNIX)
2251 ret = ltoa_o(sess->listener->luid, tmplog, dst + maxsize - tmplog);
2252 else
2253 ret = lf_port(tmplog, (struct sockaddr *)conn->dst, dst + maxsize - tmplog, tmp);
2254 }
2255 else
2256 ret = lf_text_len(tmplog, NULL, 0, dst + maxsize - tmplog, tmp);
2257
2258 if (ret == NULL)
2259 goto out;
2260 tmplog = ret;
2261 last_isspace = 0;
2262 break;
2263
2264 case LOG_FMT_BACKENDIP: // %bi
2265 if (be_conn && conn_get_src(be_conn))
2266 ret = lf_ip(tmplog, (const struct sockaddr *)be_conn->src, dst + maxsize - tmplog, tmp);
2267 else
2268 ret = lf_text_len(tmplog, NULL, 0, dst + maxsize - tmplog, tmp);
2269
2270 if (ret == NULL)
2271 goto out;
2272 tmplog = ret;
2273 last_isspace = 0;
2274 break;
2275
2276 case LOG_FMT_BACKENDPORT: // %bp
2277 if (be_conn && conn_get_src(be_conn))
2278 ret = lf_port(tmplog, (struct sockaddr *)be_conn->src, dst + maxsize - tmplog, tmp);
2279 else
2280 ret = lf_text_len(tmplog, NULL, 0, dst + maxsize - tmplog, tmp);
2281
2282 if (ret == NULL)
2283 goto out;
2284 tmplog = ret;
2285 last_isspace = 0;
2286 break;
2287
2288 case LOG_FMT_SERVERIP: // %si
2289 if (be_conn && conn_get_dst(be_conn))
2290 ret = lf_ip(tmplog, (struct sockaddr *)be_conn->dst, dst + maxsize - tmplog, tmp);
2291 else
2292 ret = lf_text_len(tmplog, NULL, 0, dst + maxsize - tmplog, tmp);
2293
2294 if (ret == NULL)
2295 goto out;
2296 tmplog = ret;
2297 last_isspace = 0;
2298 break;
2299
2300 case LOG_FMT_SERVERPORT: // %sp
2301 if (be_conn && conn_get_dst(be_conn))
2302 ret = lf_port(tmplog, (struct sockaddr *)be_conn->dst, dst + maxsize - tmplog, tmp);
2303 else
2304 ret = lf_text_len(tmplog, NULL, 0, dst + maxsize - tmplog, tmp);
2305
2306 if (ret == NULL)
2307 goto out;
2308 tmplog = ret;
2309 last_isspace = 0;
2310 break;
2311
2312 case LOG_FMT_DATE: // %t = accept date
2313 get_localtime(logs->accept_date.tv_sec, &tm);
2314 ret = date2str_log(tmplog, &tm, &logs->accept_date, dst + maxsize - tmplog);
2315 if (ret == NULL)
2316 goto out;
2317 tmplog = ret;
2318 last_isspace = 0;
2319 break;
2320
2321 case LOG_FMT_tr: // %tr = start of request date
2322 /* Note that the timers are valid if we get here */
2323 tv_ms_add(&tv, &logs->accept_date, logs->t_idle >= 0 ? logs->t_idle + logs->t_handshake : 0);
2324 get_localtime(tv.tv_sec, &tm);
2325 ret = date2str_log(tmplog, &tm, &tv, dst + maxsize - tmplog);
2326 if (ret == NULL)
2327 goto out;
2328 tmplog = ret;
2329 last_isspace = 0;
2330 break;
2331
2332 case LOG_FMT_DATEGMT: // %T = accept date, GMT
2333 get_gmtime(logs->accept_date.tv_sec, &tm);
2334 ret = gmt2str_log(tmplog, &tm, dst + maxsize - tmplog);
2335 if (ret == NULL)
2336 goto out;
2337 tmplog = ret;
2338 last_isspace = 0;
2339 break;
2340
2341 case LOG_FMT_trg: // %trg = start of request date, GMT
2342 tv_ms_add(&tv, &logs->accept_date, logs->t_idle >= 0 ? logs->t_idle + logs->t_handshake : 0);
2343 get_gmtime(tv.tv_sec, &tm);
2344 ret = gmt2str_log(tmplog, &tm, dst + maxsize - tmplog);
2345 if (ret == NULL)
2346 goto out;
2347 tmplog = ret;
2348 last_isspace = 0;
2349 break;
2350
2351 case LOG_FMT_DATELOCAL: // %Tl = accept date, local
2352 get_localtime(logs->accept_date.tv_sec, &tm);
2353 ret = localdate2str_log(tmplog, logs->accept_date.tv_sec, &tm, dst + maxsize - tmplog);
2354 if (ret == NULL)
2355 goto out;
2356 tmplog = ret;
2357 last_isspace = 0;
2358 break;
2359
2360 case LOG_FMT_trl: // %trl = start of request date, local
2361 tv_ms_add(&tv, &logs->accept_date, logs->t_idle >= 0 ? logs->t_idle + logs->t_handshake : 0);
2362 get_localtime(tv.tv_sec, &tm);
2363 ret = localdate2str_log(tmplog, tv.tv_sec, &tm, dst + maxsize - tmplog);
2364 if (ret == NULL)
2365 goto out;
2366 tmplog = ret;
2367 last_isspace = 0;
2368 break;
2369
2370 case LOG_FMT_TS: // %Ts
2371 if (tmp->options & LOG_OPT_HEXA) {
2372 iret = snprintf(tmplog, dst + maxsize - tmplog, "%04X", (unsigned int)logs->accept_date.tv_sec);
2373 if (iret < 0 || iret > dst + maxsize - tmplog)
2374 goto out;
2375 last_isspace = 0;
2376 tmplog += iret;
2377 } else {
2378 ret = ltoa_o(logs->accept_date.tv_sec, tmplog, dst + maxsize - tmplog);
2379 if (ret == NULL)
2380 goto out;
2381 tmplog = ret;
2382 last_isspace = 0;
2383 }
2384 break;
2385
2386 case LOG_FMT_MS: // %ms
2387 if (tmp->options & LOG_OPT_HEXA) {
2388 iret = snprintf(tmplog, dst + maxsize - tmplog, "%02X",(unsigned int)logs->accept_date.tv_usec/1000);
2389 if (iret < 0 || iret > dst + maxsize - tmplog)
2390 goto out;
2391 last_isspace = 0;
2392 tmplog += iret;
2393 } else {
2394 if ((dst + maxsize - tmplog) < 4)
2395 goto out;
2396 ret = utoa_pad((unsigned int)logs->accept_date.tv_usec/1000,
2397 tmplog, 4);
2398 if (ret == NULL)
2399 goto out;
2400 tmplog = ret;
2401 last_isspace = 0;
2402 }
2403 break;
2404
2405 case LOG_FMT_FRONTEND: // %f
2406 src = fe->id;
2407 ret = lf_text(tmplog, src, dst + maxsize - tmplog, tmp);
2408 if (ret == NULL)
2409 goto out;
2410 tmplog = ret;
2411 last_isspace = 0;
2412 break;
2413
2414 case LOG_FMT_FRONTEND_XPRT: // %ft
2415 src = fe->id;
2416 if (tmp->options & LOG_OPT_QUOTE)
2417 LOGCHAR('"');
2418 iret = strlcpy2(tmplog, src, dst + maxsize - tmplog);
2419 if (iret == 0)
2420 goto out;
2421 tmplog += iret;
2422 if (sess->listener && sess->listener->bind_conf->xprt == xprt_get(XPRT_SSL))
2423 LOGCHAR('~');
2424 if (tmp->options & LOG_OPT_QUOTE)
2425 LOGCHAR('"');
2426 last_isspace = 0;
2427 break;
2428 #ifdef USE_OPENSSL
2429 case LOG_FMT_SSL_CIPHER: // %sslc
2430 src = NULL;
2431 conn = objt_conn(sess->origin);
2432 if (conn) {
2433 src = ssl_sock_get_cipher_name(conn);
2434 }
2435 ret = lf_text(tmplog, src, dst + maxsize - tmplog, tmp);
2436 if (ret == NULL)
2437 goto out;
2438 tmplog = ret;
2439 last_isspace = 0;
2440 break;
2441
2442 case LOG_FMT_SSL_VERSION: // %sslv
2443 src = NULL;
2444 conn = objt_conn(sess->origin);
2445 if (conn) {
2446 src = ssl_sock_get_proto_version(conn);
2447 }
2448 ret = lf_text(tmplog, src, dst + maxsize - tmplog, tmp);
2449 if (ret == NULL)
2450 goto out;
2451 tmplog = ret;
2452 last_isspace = 0;
2453 break;
2454 #endif
2455 case LOG_FMT_BACKEND: // %b
2456 src = be->id;
2457 ret = lf_text(tmplog, src, dst + maxsize - tmplog, tmp);
2458 if (ret == NULL)
2459 goto out;
2460 tmplog = ret;
2461 last_isspace = 0;
2462 break;
2463
2464 case LOG_FMT_SERVER: // %s
2465 switch (obj_type(s ? s->target : sess->origin)) {
2466 case OBJ_TYPE_SERVER:
2467 src = __objt_server(s->target)->id;
2468 break;
2469 case OBJ_TYPE_APPLET:
2470 src = __objt_applet(s->target)->name;
2471 break;
2472 case OBJ_TYPE_CHECK:
2473 src = (__objt_check(sess->origin)->server
2474 ? __objt_check(sess->origin)->server->id
2475 : "<NOSRV>");
2476 break;
2477 default:
2478 src = "<NOSRV>";
2479 break;
2480 }
2481 ret = lf_text(tmplog, src, dst + maxsize - tmplog, tmp);
2482 if (ret == NULL)
2483 goto out;
2484 tmplog = ret;
2485 last_isspace = 0;
2486 break;
2487
2488 case LOG_FMT_Th: // %Th = handshake time
2489 ret = ltoa_o(logs->t_handshake, tmplog, dst + maxsize - tmplog);
2490 if (ret == NULL)
2491 goto out;
2492 tmplog = ret;
2493 last_isspace = 0;
2494 break;
2495
2496 case LOG_FMT_Ti: // %Ti = HTTP idle time
2497 ret = ltoa_o(logs->t_idle, tmplog, dst + maxsize - tmplog);
2498 if (ret == NULL)
2499 goto out;
2500 tmplog = ret;
2501 last_isspace = 0;
2502 break;
2503
2504 case LOG_FMT_TR: // %TR = HTTP request time
2505 ret = ltoa_o((t_request >= 0) ? t_request - logs->t_idle - logs->t_handshake : -1,
2506 tmplog, dst + maxsize - tmplog);
2507 if (ret == NULL)
2508 goto out;
2509 tmplog = ret;
2510 last_isspace = 0;
2511 break;
2512
2513 case LOG_FMT_TQ: // %Tq = Th + Ti + TR
2514 ret = ltoa_o(t_request, tmplog, dst + maxsize - tmplog);
2515 if (ret == NULL)
2516 goto out;
2517 tmplog = ret;
2518 last_isspace = 0;
2519 break;
2520
2521 case LOG_FMT_TW: // %Tw
2522 ret = ltoa_o((logs->t_queue >= 0) ? logs->t_queue - t_request : -1,
2523 tmplog, dst + maxsize - tmplog);
2524 if (ret == NULL)
2525 goto out;
2526 tmplog = ret;
2527 last_isspace = 0;
2528 break;
2529
2530 case LOG_FMT_TC: // %Tc
2531 ret = ltoa_o((logs->t_connect >= 0) ? logs->t_connect - logs->t_queue : -1,
2532 tmplog, dst + maxsize - tmplog);
2533 if (ret == NULL)
2534 goto out;
2535 tmplog = ret;
2536 last_isspace = 0;
2537 break;
2538
2539 case LOG_FMT_Tr: // %Tr
2540 ret = ltoa_o((logs->t_data >= 0) ? logs->t_data - logs->t_connect : -1,
2541 tmplog, dst + maxsize - tmplog);
2542 if (ret == NULL)
2543 goto out;
2544 tmplog = ret;
2545 last_isspace = 0;
2546 break;
2547
2548 case LOG_FMT_TD: // %Td
2549 if (be->mode == PR_MODE_HTTP)
2550 ret = ltoa_o((logs->t_data >= 0) ? logs->t_close - logs->t_data : -1,
2551 tmplog, dst + maxsize - tmplog);
2552 else
2553 ret = ltoa_o((logs->t_connect >= 0) ? logs->t_close - logs->t_connect : -1,
2554 tmplog, dst + maxsize - tmplog);
2555 if (ret == NULL)
2556 goto out;
2557 tmplog = ret;
2558 last_isspace = 0;
2559 break;
2560
2561 case LOG_FMT_Ta: // %Ta = active time = Tt - Th - Ti
2562 if (!(fe->to_log & LW_BYTES))
2563 LOGCHAR('+');
2564 ret = ltoa_o(logs->t_close - (logs->t_idle >= 0 ? logs->t_idle + logs->t_handshake : 0),
2565 tmplog, dst + maxsize - tmplog);
2566 if (ret == NULL)
2567 goto out;
2568 tmplog = ret;
2569 last_isspace = 0;
2570 break;
2571
2572 case LOG_FMT_TT: // %Tt = total time
2573 if (!(fe->to_log & LW_BYTES))
2574 LOGCHAR('+');
2575 ret = ltoa_o(logs->t_close, tmplog, dst + maxsize - tmplog);
2576 if (ret == NULL)
2577 goto out;
2578 tmplog = ret;
2579 last_isspace = 0;
2580 break;
2581
2582 case LOG_FMT_TU: // %Tu = total time seen by user = Tt - Ti
2583 if (!(fe->to_log & LW_BYTES))
2584 LOGCHAR('+');
2585 ret = ltoa_o(logs->t_close - (logs->t_idle >= 0 ? logs->t_idle : 0),
2586 tmplog, dst + maxsize - tmplog);
2587 if (ret == NULL)
2588 goto out;
2589 tmplog = ret;
2590 last_isspace = 0;
2591 break;
2592
2593 case LOG_FMT_STATUS: // %ST
2594 ret = ltoa_o(txn ? txn->status : 0, tmplog, dst + maxsize - tmplog);
2595 if (ret == NULL)
2596 goto out;
2597 tmplog = ret;
2598 last_isspace = 0;
2599 break;
2600
2601 case LOG_FMT_BYTES: // %B
2602 if (!(fe->to_log & LW_BYTES))
2603 LOGCHAR('+');
2604 ret = lltoa(logs->bytes_out, tmplog, dst + maxsize - tmplog);
2605 if (ret == NULL)
2606 goto out;
2607 tmplog = ret;
2608 last_isspace = 0;
2609 break;
2610
2611 case LOG_FMT_BYTES_UP: // %U
2612 ret = lltoa(logs->bytes_in, tmplog, dst + maxsize - tmplog);
2613 if (ret == NULL)
2614 goto out;
2615 tmplog = ret;
2616 last_isspace = 0;
2617 break;
2618
2619 case LOG_FMT_CCLIENT: // %CC
2620 src = txn ? txn->cli_cookie : NULL;
2621 ret = lf_text(tmplog, src, dst + maxsize - tmplog, tmp);
2622 if (ret == NULL)
2623 goto out;
2624 tmplog = ret;
2625 last_isspace = 0;
2626 break;
2627
2628 case LOG_FMT_CSERVER: // %CS
2629 src = txn ? txn->srv_cookie : NULL;
2630 ret = lf_text(tmplog, src, dst + maxsize - tmplog, tmp);
2631 if (ret == NULL)
2632 goto out;
2633 tmplog = ret;
2634 last_isspace = 0;
2635 break;
2636
2637 case LOG_FMT_TERMSTATE: // %ts
2638 LOGCHAR(sess_term_cond[(s_flags & SF_ERR_MASK) >> SF_ERR_SHIFT]);
2639 LOGCHAR(sess_fin_state[(s_flags & SF_FINST_MASK) >> SF_FINST_SHIFT]);
2640 *tmplog = '\0';
2641 last_isspace = 0;
2642 break;
2643
2644 case LOG_FMT_TERMSTATE_CK: // %tsc, same as TS with cookie state (for mode HTTP)
2645 LOGCHAR(sess_term_cond[(s_flags & SF_ERR_MASK) >> SF_ERR_SHIFT]);
2646 LOGCHAR(sess_fin_state[(s_flags & SF_FINST_MASK) >> SF_FINST_SHIFT]);
2647 LOGCHAR((txn && (be->ck_opts & PR_CK_ANY)) ? sess_cookie[(txn->flags & TX_CK_MASK) >> TX_CK_SHIFT] : '-');
2648 LOGCHAR((txn && (be->ck_opts & PR_CK_ANY)) ? sess_set_cookie[(txn->flags & TX_SCK_MASK) >> TX_SCK_SHIFT] : '-');
2649 last_isspace = 0;
2650 break;
2651
2652 case LOG_FMT_ACTCONN: // %ac
2653 ret = ltoa_o(actconn, tmplog, dst + maxsize - tmplog);
2654 if (ret == NULL)
2655 goto out;
2656 tmplog = ret;
2657 last_isspace = 0;
2658 break;
2659
2660 case LOG_FMT_FECONN: // %fc
2661 ret = ltoa_o(fe->feconn, tmplog, dst + maxsize - tmplog);
2662 if (ret == NULL)
2663 goto out;
2664 tmplog = ret;
2665 last_isspace = 0;
2666 break;
2667
2668 case LOG_FMT_BECONN: // %bc
2669 ret = ltoa_o(be->beconn, tmplog, dst + maxsize - tmplog);
2670 if (ret == NULL)
2671 goto out;
2672 tmplog = ret;
2673 last_isspace = 0;
2674 break;
2675
2676 case LOG_FMT_SRVCONN: // %sc
2677 switch (obj_type(s ? s->target : sess->origin)) {
2678 case OBJ_TYPE_SERVER:
2679 ret = ultoa_o(__objt_server(s->target)->cur_sess,
2680 tmplog, dst + maxsize - tmplog);
2681 break;
2682 case OBJ_TYPE_CHECK:
2683 ret = ultoa_o(__objt_check(sess->origin)->server
2684 ? __objt_check(sess->origin)->server->cur_sess
2685 : 0, tmplog, dst + maxsize - tmplog);
2686 break;
2687 default:
2688 ret = ultoa_o(0, tmplog, dst + maxsize - tmplog);
2689 break;
2690 }
2691
2692 if (ret == NULL)
2693 goto out;
2694 tmplog = ret;
2695 last_isspace = 0;
2696 break;
2697
2698 case LOG_FMT_RETRIES: // %rq
2699 if (s_flags & SF_REDISP)
2700 LOGCHAR('+');
2701 ret = ltoa_o(((s && s->si[1].conn_retries > 0)
2702 ? (be->conn_retries - s->si[1].conn_retries)
2703 : ((s && s->si[1].state != SI_ST_INI) ? be->conn_retries : 0)),
2704 tmplog, dst + maxsize - tmplog);
2705 if (ret == NULL)
2706 goto out;
2707 tmplog = ret;
2708 last_isspace = 0;
2709 break;
2710
2711 case LOG_FMT_SRVQUEUE: // %sq
2712 ret = ltoa_o(logs->srv_queue_pos, tmplog, dst + maxsize - tmplog);
2713 if (ret == NULL)
2714 goto out;
2715 tmplog = ret;
2716 last_isspace = 0;
2717 break;
2718
2719 case LOG_FMT_BCKQUEUE: // %bq
2720 ret = ltoa_o(logs->prx_queue_pos, tmplog, dst + maxsize - tmplog);
2721 if (ret == NULL)
2722 goto out;
2723 tmplog = ret;
2724 last_isspace = 0;
2725 break;
2726
2727 case LOG_FMT_HDRREQUEST: // %hr
2728 /* request header */
2729 if (fe->nb_req_cap && s && s->req_cap) {
2730 if (tmp->options & LOG_OPT_QUOTE)
2731 LOGCHAR('"');
2732 LOGCHAR('{');
2733 for (hdr = 0; hdr < fe->nb_req_cap; hdr++) {
2734 if (hdr)
2735 LOGCHAR('|');
2736 if (s->req_cap[hdr] != NULL) {
2737 ret = lf_encode_string(tmplog, dst + maxsize,
2738 '#', hdr_encode_map, s->req_cap[hdr], tmp);
2739 if (ret == NULL || *ret != '\0')
2740 goto out;
2741 tmplog = ret;
2742 }
2743 }
2744 LOGCHAR('}');
2745 if (tmp->options & LOG_OPT_QUOTE)
2746 LOGCHAR('"');
2747 last_isspace = 0;
2748 }
2749 break;
2750
2751 case LOG_FMT_HDRREQUESTLIST: // %hrl
2752 /* request header list */
2753 if (fe->nb_req_cap && s && s->req_cap) {
2754 for (hdr = 0; hdr < fe->nb_req_cap; hdr++) {
2755 if (hdr > 0)
2756 LOGCHAR(' ');
2757 if (tmp->options & LOG_OPT_QUOTE)
2758 LOGCHAR('"');
2759 if (s->req_cap[hdr] != NULL) {
2760 ret = lf_encode_string(tmplog, dst + maxsize,
2761 '#', hdr_encode_map, s->req_cap[hdr], tmp);
2762 if (ret == NULL || *ret != '\0')
2763 goto out;
2764 tmplog = ret;
2765 } else if (!(tmp->options & LOG_OPT_QUOTE))
2766 LOGCHAR('-');
2767 if (tmp->options & LOG_OPT_QUOTE)
2768 LOGCHAR('"');
2769 last_isspace = 0;
2770 }
2771 }
2772 break;
2773
2774
2775 case LOG_FMT_HDRRESPONS: // %hs
2776 /* response header */
2777 if (fe->nb_rsp_cap && s && s->res_cap) {
2778 if (tmp->options & LOG_OPT_QUOTE)
2779 LOGCHAR('"');
2780 LOGCHAR('{');
2781 for (hdr = 0; hdr < fe->nb_rsp_cap; hdr++) {
2782 if (hdr)
2783 LOGCHAR('|');
2784 if (s->res_cap[hdr] != NULL) {
2785 ret = lf_encode_string(tmplog, dst + maxsize,
2786 '#', hdr_encode_map, s->res_cap[hdr], tmp);
2787 if (ret == NULL || *ret != '\0')
2788 goto out;
2789 tmplog = ret;
2790 }
2791 }
2792 LOGCHAR('}');
2793 last_isspace = 0;
2794 if (tmp->options & LOG_OPT_QUOTE)
2795 LOGCHAR('"');
2796 }
2797 break;
2798
2799 case LOG_FMT_HDRRESPONSLIST: // %hsl
2800 /* response header list */
2801 if (fe->nb_rsp_cap && s && s->res_cap) {
2802 for (hdr = 0; hdr < fe->nb_rsp_cap; hdr++) {
2803 if (hdr > 0)
2804 LOGCHAR(' ');
2805 if (tmp->options & LOG_OPT_QUOTE)
2806 LOGCHAR('"');
2807 if (s->res_cap[hdr] != NULL) {
2808 ret = lf_encode_string(tmplog, dst + maxsize,
2809 '#', hdr_encode_map, s->res_cap[hdr], tmp);
2810 if (ret == NULL || *ret != '\0')
2811 goto out;
2812 tmplog = ret;
2813 } else if (!(tmp->options & LOG_OPT_QUOTE))
2814 LOGCHAR('-');
2815 if (tmp->options & LOG_OPT_QUOTE)
2816 LOGCHAR('"');
2817 last_isspace = 0;
2818 }
2819 }
2820 break;
2821
2822 case LOG_FMT_REQ: // %r
2823 /* Request */
2824 if (tmp->options & LOG_OPT_QUOTE)
2825 LOGCHAR('"');
2826 uri = txn && txn->uri ? txn->uri : "<BADREQ>";
2827 ret = lf_encode_string(tmplog, dst + maxsize,
2828 '#', url_encode_map, uri, tmp);
2829 if (ret == NULL || *ret != '\0')
2830 goto out;
2831 tmplog = ret;
2832 if (tmp->options & LOG_OPT_QUOTE)
2833 LOGCHAR('"');
2834 last_isspace = 0;
2835 break;
2836
2837 case LOG_FMT_HTTP_PATH: // %HP
2838 uri = txn && txn->uri ? txn->uri : "<BADREQ>";
2839
2840 if (tmp->options & LOG_OPT_QUOTE)
2841 LOGCHAR('"');
2842
2843 end = uri + strlen(uri);
2844 // look for the first whitespace character
2845 while (uri < end && !HTTP_IS_SPHT(*uri))
2846 uri++;
2847
2848 // keep advancing past multiple spaces
2849 while (uri < end && HTTP_IS_SPHT(*uri)) {
2850 uri++; nspaces++;
2851 }
2852
2853 // look for first space or question mark after url
2854 spc = uri;
2855 while (spc < end && *spc != '?' && !HTTP_IS_SPHT(*spc))
2856 spc++;
2857
2858 if (!txn || !txn->uri || nspaces == 0) {
2859 chunk.area = "<BADREQ>";
2860 chunk.data = strlen("<BADREQ>");
2861 } else {
2862 chunk.area = uri;
2863 chunk.data = spc - uri;
2864 }
2865
2866 ret = lf_encode_chunk(tmplog, dst + maxsize, '#', url_encode_map, &chunk, tmp);
2867 if (ret == NULL || *ret != '\0')
2868 goto out;
2869
2870 tmplog = ret;
2871 if (tmp->options & LOG_OPT_QUOTE)
2872 LOGCHAR('"');
2873
2874 last_isspace = 0;
2875 break;
2876
2877 case LOG_FMT_HTTP_QUERY: // %HQ
2878 if (tmp->options & LOG_OPT_QUOTE)
2879 LOGCHAR('"');
2880
2881 if (!txn || !txn->uri) {
2882 chunk.area = "<BADREQ>";
2883 chunk.data = strlen("<BADREQ>");
2884 } else {
2885 uri = txn->uri;
2886 end = uri + strlen(uri);
2887 // look for the first question mark
2888 while (uri < end && *uri != '?')
2889 uri++;
2890
2891 qmark = uri;
2892 // look for first space or question mark after url
2893 while (uri < end && !HTTP_IS_SPHT(*uri))
2894 uri++;
2895
2896 chunk.area = qmark;
2897 chunk.data = uri - qmark;
2898 }
2899
2900 ret = lf_encode_chunk(tmplog, dst + maxsize, '#', url_encode_map, &chunk, tmp);
2901 if (ret == NULL || *ret != '\0')
2902 goto out;
2903
2904 tmplog = ret;
2905 if (tmp->options & LOG_OPT_QUOTE)
2906 LOGCHAR('"');
2907
2908 last_isspace = 0;
2909 break;
2910
2911 case LOG_FMT_HTTP_URI: // %HU
2912 uri = txn && txn->uri ? txn->uri : "<BADREQ>";
2913
2914 if (tmp->options & LOG_OPT_QUOTE)
2915 LOGCHAR('"');
2916
2917 end = uri + strlen(uri);
2918 // look for the first whitespace character
2919 while (uri < end && !HTTP_IS_SPHT(*uri))
2920 uri++;
2921
2922 // keep advancing past multiple spaces
2923 while (uri < end && HTTP_IS_SPHT(*uri)) {
2924 uri++; nspaces++;
2925 }
2926
2927 // look for first space after url
2928 spc = uri;
2929 while (spc < end && !HTTP_IS_SPHT(*spc))
2930 spc++;
2931
2932 if (!txn || !txn->uri || nspaces == 0) {
2933 chunk.area = "<BADREQ>";
2934 chunk.data = strlen("<BADREQ>");
2935 } else {
2936 chunk.area = uri;
2937 chunk.data = spc - uri;
2938 }
2939
2940 ret = lf_encode_chunk(tmplog, dst + maxsize, '#', url_encode_map, &chunk, tmp);
2941 if (ret == NULL || *ret != '\0')
2942 goto out;
2943
2944 tmplog = ret;
2945 if (tmp->options & LOG_OPT_QUOTE)
2946 LOGCHAR('"');
2947
2948 last_isspace = 0;
2949 break;
2950
2951 case LOG_FMT_HTTP_METHOD: // %HM
2952 uri = txn && txn->uri ? txn->uri : "<BADREQ>";
2953 if (tmp->options & LOG_OPT_QUOTE)
2954 LOGCHAR('"');
2955
2956 end = uri + strlen(uri);
2957 // look for the first whitespace character
2958 spc = uri;
2959 while (spc < end && !HTTP_IS_SPHT(*spc))
2960 spc++;
2961
2962 if (spc == end) { // odd case, we have txn->uri, but we only got a verb
2963 chunk.area = "<BADREQ>";
2964 chunk.data = strlen("<BADREQ>");
2965 } else {
2966 chunk.area = uri;
2967 chunk.data = spc - uri;
2968 }
2969
2970 ret = lf_encode_chunk(tmplog, dst + maxsize, '#', url_encode_map, &chunk, tmp);
2971 if (ret == NULL || *ret != '\0')
2972 goto out;
2973
2974 tmplog = ret;
2975 if (tmp->options & LOG_OPT_QUOTE)
2976 LOGCHAR('"');
2977
2978 last_isspace = 0;
2979 break;
2980
2981 case LOG_FMT_HTTP_VERSION: // %HV
2982 uri = txn && txn->uri ? txn->uri : "<BADREQ>";
2983 if (tmp->options & LOG_OPT_QUOTE)
2984 LOGCHAR('"');
2985
2986 end = uri + strlen(uri);
2987 // look for the first whitespace character
2988 while (uri < end && !HTTP_IS_SPHT(*uri))
2989 uri++;
2990
2991 // keep advancing past multiple spaces
2992 while (uri < end && HTTP_IS_SPHT(*uri)) {
2993 uri++; nspaces++;
2994 }
2995
2996 // look for the next whitespace character
2997 while (uri < end && !HTTP_IS_SPHT(*uri))
2998 uri++;
2999
3000 // keep advancing past multiple spaces
3001 while (uri < end && HTTP_IS_SPHT(*uri))
3002 uri++;
3003
3004 if (!txn || !txn->uri || nspaces == 0) {
3005 chunk.area = "<BADREQ>";
3006 chunk.data = strlen("<BADREQ>");
3007 } else if (uri == end) {
3008 chunk.area = "HTTP/0.9";
3009 chunk.data = strlen("HTTP/0.9");
3010 } else {
3011 chunk.area = uri;
3012 chunk.data = end - uri;
3013 }
3014
3015 ret = lf_encode_chunk(tmplog, dst + maxsize, '#', url_encode_map, &chunk, tmp);
3016 if (ret == NULL || *ret != '\0')
3017 goto out;
3018
3019 tmplog = ret;
3020 if (tmp->options & LOG_OPT_QUOTE)
3021 LOGCHAR('"');
3022
3023 last_isspace = 0;
3024 break;
3025
3026 case LOG_FMT_COUNTER: // %rt
3027 if (tmp->options & LOG_OPT_HEXA) {
3028 iret = snprintf(tmplog, dst + maxsize - tmplog, "%04X", uniq_id);
3029 if (iret < 0 || iret > dst + maxsize - tmplog)
3030 goto out;
3031 last_isspace = 0;
3032 tmplog += iret;
3033 } else {
3034 ret = ltoa_o(uniq_id, tmplog, dst + maxsize - tmplog);
3035 if (ret == NULL)
3036 goto out;
3037 tmplog = ret;
3038 last_isspace = 0;
3039 }
3040 break;
3041
3042 case LOG_FMT_LOGCNT: // %lc
3043 if (tmp->options & LOG_OPT_HEXA) {
3044 iret = snprintf(tmplog, dst + maxsize - tmplog, "%04X", fe->log_count);
3045 if (iret < 0 || iret > dst + maxsize - tmplog)
3046 goto out;
3047 last_isspace = 0;
3048 tmplog += iret;
3049 } else {
3050 ret = ultoa_o(fe->log_count, tmplog, dst + maxsize - tmplog);
3051 if (ret == NULL)
3052 goto out;
3053 tmplog = ret;
3054 last_isspace = 0;
3055 }
3056 break;
3057
3058 case LOG_FMT_HOSTNAME: // %H
3059 src = hostname;
3060 ret = lf_text(tmplog, src, dst + maxsize - tmplog, tmp);
3061 if (ret == NULL)
3062 goto out;
3063 tmplog = ret;
3064 last_isspace = 0;
3065 break;
3066
3067 case LOG_FMT_PID: // %pid
3068 if (tmp->options & LOG_OPT_HEXA) {
3069 iret = snprintf(tmplog, dst + maxsize - tmplog, "%04X", pid);
3070 if (iret < 0 || iret > dst + maxsize - tmplog)
3071 goto out;
3072 last_isspace = 0;
3073 tmplog += iret;
3074 } else {
3075 ret = ltoa_o(pid, tmplog, dst + maxsize - tmplog);
3076 if (ret == NULL)
3077 goto out;
3078 tmplog = ret;
3079 last_isspace = 0;
3080 }
3081 break;
3082
3083 case LOG_FMT_UNIQUEID: // %ID
3084 ret = NULL;
3085 if (s)
3086 ret = lf_text_len(tmplog, s->unique_id.ptr, s->unique_id.len, maxsize - (tmplog - dst), tmp);
3087 else
3088 ret = lf_text_len(tmplog, NULL, 0, maxsize - (tmplog - dst), tmp);
3089 if (ret == NULL)
3090 goto out;
3091 tmplog = ret;
3092 last_isspace = 0;
3093 break;
3094
3095 }
3096 }
3097
3098 out:
3099 /* *tmplog is a unused character */
3100 *tmplog = '\0';
3101 return tmplog - dst;
3102
3103 }
3104
3105 /*
3106 * send a log for the stream when we have enough info about it.
3107 * Will not log if the frontend has no log defined.
3108 */
strm_log(struct stream * s)3109 void strm_log(struct stream *s)
3110 {
3111 struct session *sess = s->sess;
3112 int size, err, level;
3113 int sd_size = 0;
3114
3115 /* if we don't want to log normal traffic, return now */
3116 err = (s->flags & SF_REDISP) ||
3117 ((s->flags & SF_ERR_MASK) > SF_ERR_LOCAL) ||
3118 (((s->flags & SF_ERR_MASK) == SF_ERR_NONE) &&
3119 (s->si[1].conn_retries != s->be->conn_retries)) ||
3120 ((sess->fe->mode == PR_MODE_HTTP) && s->txn && s->txn->status >= 500);
3121
3122 if (!err && (sess->fe->options2 & PR_O2_NOLOGNORM))
3123 return;
3124
3125 if (LIST_ISEMPTY(&sess->fe->logsrvs))
3126 return;
3127
3128 if (s->logs.level) { /* loglevel was overridden */
3129 if (s->logs.level == -1) {
3130 s->logs.logwait = 0; /* logs disabled */
3131 return;
3132 }
3133 level = s->logs.level - 1;
3134 }
3135 else {
3136 level = LOG_INFO;
3137 if (err && (sess->fe->options2 & PR_O2_LOGERRORS))
3138 level = LOG_ERR;
3139 }
3140
3141 /* if unique-id was not generated */
3142 if (!isttest(s->unique_id) && !LIST_ISEMPTY(&sess->fe->format_unique_id)) {
3143 stream_generate_unique_id(s, &sess->fe->format_unique_id);
3144 }
3145
3146 if (!LIST_ISEMPTY(&sess->fe->logformat_sd)) {
3147 sd_size = build_logline(s, logline_rfc5424, global.max_syslog_len,
3148 &sess->fe->logformat_sd);
3149 }
3150
3151 size = build_logline(s, logline, global.max_syslog_len, &sess->fe->logformat);
3152 if (size > 0) {
3153 _HA_ATOMIC_ADD(&sess->fe->log_count, 1);
3154 __send_log(&sess->fe->logsrvs, &sess->fe->log_tag, level,
3155 logline, size + 1, logline_rfc5424, sd_size);
3156 s->logs.logwait = 0;
3157 }
3158 }
3159
3160 /*
3161 * send a minimalist log for the session. Will not log if the frontend has no
3162 * log defined. It is assumed that this is only used to report anomalies that
3163 * cannot lead to the creation of a regular stream. Because of this the log
3164 * level is LOG_INFO or LOG_ERR depending on the "log-separate-error" setting
3165 * in the frontend. The caller must simply know that it should not call this
3166 * function to report unimportant events. It is safe to call this function with
3167 * sess==NULL (will not do anything).
3168 */
sess_log(struct session * sess)3169 void sess_log(struct session *sess)
3170 {
3171 int size, level;
3172 int sd_size = 0;
3173
3174 if (!sess)
3175 return;
3176
3177 if (LIST_ISEMPTY(&sess->fe->logsrvs))
3178 return;
3179
3180 level = LOG_INFO;
3181 if (sess->fe->options2 & PR_O2_LOGERRORS)
3182 level = LOG_ERR;
3183
3184 if (!LIST_ISEMPTY(&sess->fe->logformat_sd)) {
3185 sd_size = sess_build_logline(sess, NULL,
3186 logline_rfc5424, global.max_syslog_len,
3187 &sess->fe->logformat_sd);
3188 }
3189
3190 size = sess_build_logline(sess, NULL, logline, global.max_syslog_len, &sess->fe->logformat);
3191 if (size > 0) {
3192 _HA_ATOMIC_ADD(&sess->fe->log_count, 1);
3193 __send_log(&sess->fe->logsrvs, &sess->fe->log_tag, level,
3194 logline, size + 1, logline_rfc5424, sd_size);
3195 }
3196 }
3197
app_log(struct list * logsrvs,struct buffer * tag,int level,const char * format,...)3198 void app_log(struct list *logsrvs, struct buffer *tag, int level, const char *format, ...)
3199 {
3200 va_list argp;
3201 int data_len;
3202
3203 if (level < 0 || format == NULL || logline == NULL)
3204 return;
3205
3206 va_start(argp, format);
3207 data_len = vsnprintf(logline, global.max_syslog_len, format, argp);
3208 if (data_len < 0 || data_len > global.max_syslog_len)
3209 data_len = global.max_syslog_len;
3210 va_end(argp);
3211
3212 __send_log(logsrvs, tag, level, logline, data_len, default_rfc5424_sd_log_format, 2);
3213 }
3214 /*
3215 * This function parse a received log message <buf>, of size <buflen>
3216 * it fills <level>, <facility> and <metadata> depending of the detected
3217 * header format and message will point on remaining payload of <size>
3218 *
3219 * <metadata> must point on a preallocated array of LOG_META_FIELDS*sizeof(struct ist)
3220 * struct ist len will be set to 0 if field is not found
3221 * <level> and <facility> will be set to -1 if not found.
3222 */
parse_log_message(char * buf,size_t buflen,int * level,int * facility,struct ist * metadata,char ** message,size_t * size)3223 void parse_log_message(char *buf, size_t buflen, int *level, int *facility,
3224 struct ist *metadata, char **message, size_t *size)
3225 {
3226
3227 char *p;
3228 int fac_level = 0;
3229
3230 *level = *facility = -1;
3231
3232 *message = buf;
3233 *size = buflen;
3234
3235 memset(metadata, 0, LOG_META_FIELDS*sizeof(struct ist));
3236
3237 p = buf;
3238 if (*size < 2 || *p != '<')
3239 return;
3240
3241 p++;
3242 while (*p != '>') {
3243 if (*p > '9' || *p < '0')
3244 return;
3245 fac_level = 10*fac_level + (*p - '0');
3246 p++;
3247 if ((p - buf) > buflen)
3248 return;
3249 }
3250
3251 *facility = fac_level >> 3;
3252 *level = fac_level & 0x7;
3253 p++;
3254
3255 metadata[LOG_META_PRIO] = ist2(buf, p - buf);
3256
3257 buflen -= p - buf;
3258 buf = p;
3259
3260 *size = buflen;
3261 *message = buf;
3262
3263 /* for rfc5424, prio is always followed by '1' and ' ' */
3264 if ((*size > 2) && (p[0] == '1') && (p[1] == ' ')) {
3265 /* format is always '1 TIMESTAMP HOSTNAME TAG PID MSGID STDATA '
3266 * followed by message.
3267 * Each header field can present NILVALUE: '-'
3268 */
3269
3270 p += 2;
3271 /* timestamp is NILVALUE '-' */
3272 if (*size > 2 && (p[0] == '-') && p[1] == ' ') {
3273 metadata[LOG_META_TIME] = ist2(p, 1);
3274 p++;
3275 }
3276 else if (*size > LOG_ISOTIME_MINLEN) {
3277 metadata[LOG_META_TIME].ptr = p;
3278
3279 /* check if optional secfrac is present
3280 * in timestamp.
3281 * possible format are:
3282 * ex: '1970-01-01T00:00:00.000000Z'
3283 * '1970-01-01T00:00:00.000000+00:00'
3284 * '1970-01-01T00:00:00.000000-00:00'
3285 * '1970-01-01T00:00:00Z'
3286 * '1970-01-01T00:00:00+00:00'
3287 * '1970-01-01T00:00:00-00:00'
3288 */
3289 p += 19;
3290 if (*p == '.') {
3291 p++;
3292 if ((p - buf) >= buflen)
3293 goto bad_format;
3294 while (*p != 'Z' && *p != '+' && *p != '-') {
3295 if ((unsigned char)(*p - '0') > 9)
3296 goto bad_format;
3297
3298 p++;
3299 if ((p - buf) >= buflen)
3300 goto bad_format;
3301 }
3302 }
3303
3304 if (*p == 'Z')
3305 p++;
3306 else
3307 p += 6; /* case of '+00:00 or '-00:00' */
3308
3309 if ((p - buf) >= buflen || *p != ' ')
3310 goto bad_format;
3311 metadata[LOG_META_TIME].len = p - metadata[LOG_META_TIME].ptr;
3312 }
3313 else
3314 goto bad_format;
3315
3316
3317 p++;
3318 if ((p - buf) >= buflen || *p == ' ')
3319 goto bad_format;
3320
3321 metadata[LOG_META_HOST].ptr = p;
3322 while (*p != ' ') {
3323 p++;
3324 if ((p - buf) >= buflen)
3325 goto bad_format;
3326 }
3327 metadata[LOG_META_HOST].len = p - metadata[LOG_META_HOST].ptr;
3328 if (metadata[LOG_META_HOST].len == 1 && metadata[LOG_META_HOST].ptr[0] == '-')
3329 metadata[LOG_META_HOST].len = 0;
3330
3331 p++;
3332 if ((p - buf) >= buflen || *p == ' ')
3333 goto bad_format;
3334
3335 metadata[LOG_META_TAG].ptr = p;
3336 while (*p != ' ') {
3337 p++;
3338 if ((p - buf) >= buflen)
3339 goto bad_format;
3340 }
3341 metadata[LOG_META_TAG].len = p - metadata[LOG_META_TAG].ptr;
3342 if (metadata[LOG_META_TAG].len == 1 && metadata[LOG_META_TAG].ptr[0] == '-')
3343 metadata[LOG_META_TAG].len = 0;
3344
3345 p++;
3346 if ((p - buf) >= buflen || *p == ' ')
3347 goto bad_format;
3348
3349 metadata[LOG_META_PID].ptr = p;
3350 while (*p != ' ') {
3351 p++;
3352 if ((p - buf) >= buflen)
3353 goto bad_format;
3354 }
3355 metadata[LOG_META_PID].len = p - metadata[LOG_META_PID].ptr;
3356 if (metadata[LOG_META_PID].len == 1 && metadata[LOG_META_PID].ptr[0] == '-')
3357 metadata[LOG_META_PID].len = 0;
3358
3359 p++;
3360 if ((p - buf) >= buflen || *p == ' ')
3361 goto bad_format;
3362
3363 metadata[LOG_META_MSGID].ptr = p;
3364 while (*p != ' ') {
3365 p++;
3366 if ((p - buf) >= buflen)
3367 goto bad_format;
3368 }
3369 metadata[LOG_META_MSGID].len = p - metadata[LOG_META_MSGID].ptr;
3370 if (metadata[LOG_META_MSGID].len == 1 && metadata[LOG_META_MSGID].ptr[0] == '-')
3371 metadata[LOG_META_MSGID].len = 0;
3372
3373 p++;
3374 if ((p - buf) >= buflen || *p == ' ')
3375 goto bad_format;
3376
3377 /* structured data format is:
3378 * ex:
3379 * '[key1=value1 key2=value2][key3=value3]'
3380 *
3381 * space is invalid outside [] because
3382 * considered as the end of structured data field
3383 */
3384 metadata[LOG_META_STDATA].ptr = p;
3385 if (*p == '[') {
3386 int elem = 0;
3387
3388 while (1) {
3389 if (elem) {
3390 /* according to rfc this char is escaped in param values */
3391 if (*p == ']' && *(p-1) != '\\')
3392 elem = 0;
3393 }
3394 else {
3395 if (*p == '[')
3396 elem = 1;
3397 else if (*p == ' ')
3398 break;
3399 else
3400 goto bad_format;
3401 }
3402 p++;
3403 if ((p - buf) >= buflen)
3404 goto bad_format;
3405 }
3406 }
3407 else if (*p == '-') {
3408 /* case of NILVALUE */
3409 p++;
3410 if ((p - buf) >= buflen || *p != ' ')
3411 goto bad_format;
3412 }
3413 else
3414 goto bad_format;
3415
3416 metadata[LOG_META_STDATA].len = p - metadata[LOG_META_STDATA].ptr;
3417 if (metadata[LOG_META_STDATA].len == 1 && metadata[LOG_META_STDATA].ptr[0] == '-')
3418 metadata[LOG_META_STDATA].len = 0;
3419
3420 p++;
3421
3422 buflen -= p - buf;
3423 buf = p;
3424
3425 *size = buflen;
3426 *message = p;
3427 }
3428 else if (*size > LOG_LEGACYTIME_LEN) {
3429 int m;
3430
3431 /* supported header format according to rfc3164.
3432 * ex:
3433 * 'Jan 1 00:00:00 HOSTNAME TAG[PID]: '
3434 * or 'Jan 1 00:00:00 HOSTNAME TAG: '
3435 * or 'Jan 1 00:00:00 HOSTNAME '
3436 * Note: HOSTNAME is mandatory, and day
3437 * of month uses a single space prefix if
3438 * less than 10 to ensure hour offset is
3439 * always the same.
3440 */
3441
3442 /* Check month to see if it correspond to a rfc3164
3443 * header ex 'Jan 1 00:00:00' */
3444 for (m = 0; m < 12; m++)
3445 if (!memcmp(monthname[m], p, 3))
3446 break;
3447 /* Month not found */
3448 if (m == 12)
3449 goto bad_format;
3450
3451 metadata[LOG_META_TIME] = ist2(p, LOG_LEGACYTIME_LEN);
3452
3453 p += LOG_LEGACYTIME_LEN;
3454 if ((p - buf) >= buflen || *p != ' ')
3455 goto bad_format;
3456
3457 p++;
3458 if ((p - buf) >= buflen || *p == ' ')
3459 goto bad_format;
3460
3461 metadata[LOG_META_HOST].ptr = p;
3462 while (*p != ' ') {
3463 p++;
3464 if ((p - buf) >= buflen)
3465 goto bad_format;
3466 }
3467 metadata[LOG_META_HOST].len = p - metadata[LOG_META_HOST].ptr;
3468
3469 /* TAG seems to no be mandatory */
3470 p++;
3471
3472 buflen -= p - buf;
3473 buf = p;
3474
3475 *size = buflen;
3476 *message = buf;
3477
3478 if (!buflen)
3479 return;
3480
3481 while (((p - buf) < buflen) && *p != ' ' && *p != ':')
3482 p++;
3483
3484 /* a tag must present a trailing ':' */
3485 if (((p - buf) >= buflen) || *p != ':')
3486 return;
3487 p++;
3488 /* followed by a space */
3489 if (((p - buf) >= buflen) || *p != ' ')
3490 return;
3491
3492 /* rewind to parse tag and pid */
3493 p = buf;
3494 metadata[LOG_META_TAG].ptr = p;
3495 /* we have the guarantee that ':' will be reach before size limit */
3496 while (*p != ':') {
3497 if (*p == '[') {
3498 metadata[LOG_META_TAG].len = p - metadata[LOG_META_TAG].ptr;
3499 metadata[LOG_META_PID].ptr = p + 1;
3500 }
3501 else if (*p == ']' && metadata[LOG_META_PID].ptr) {
3502 if (p[1] != ':')
3503 return;
3504 metadata[LOG_META_PID].len = p - metadata[LOG_META_PID].ptr;
3505 }
3506 p++;
3507 }
3508 if (!metadata[LOG_META_TAG].len)
3509 metadata[LOG_META_TAG].len = p - metadata[LOG_META_TAG].ptr;
3510
3511 /* let pass ':' and ' ', we still have warranty size is large enough */
3512 p += 2;
3513
3514 buflen -= p - buf;
3515 buf = p;
3516
3517 *size = buflen;
3518 *message = buf;
3519 }
3520
3521 return;
3522
3523 bad_format:
3524 /* bad syslog format, we reset all parsed syslog fields
3525 * but priority is kept because we are able to re-build
3526 * this message using LOF_FORMAT_PRIO.
3527 */
3528 metadata[LOG_META_TIME].len = 0;
3529 metadata[LOG_META_HOST].len = 0;
3530 metadata[LOG_META_TAG].len = 0;
3531 metadata[LOG_META_PID].len = 0;
3532 metadata[LOG_META_MSGID].len = 0;
3533 metadata[LOG_META_STDATA].len = 0;
3534
3535 return;
3536 }
3537
3538 /*
3539 * UDP syslog fd handler
3540 */
syslog_fd_handler(int fd)3541 void syslog_fd_handler(int fd)
3542 {
3543 static THREAD_LOCAL struct ist metadata[LOG_META_FIELDS];
3544 ssize_t ret = 0;
3545 struct buffer *buf = get_trash_chunk();
3546 size_t size;
3547 char *message;
3548 int level;
3549 int facility;
3550 struct listener *l = objt_listener(fdtab[fd].owner);
3551 int max_accept;
3552
3553 if(!l)
3554 ABORT_NOW();
3555
3556 if (fdtab[fd].ev & FD_POLL_IN) {
3557
3558 if (!fd_recv_ready(fd))
3559 return;
3560
3561 max_accept = l->maxaccept ? l->maxaccept : 1;
3562
3563 do {
3564 /* Source address */
3565 struct sockaddr_storage saddr = {0};
3566 socklen_t saddrlen;
3567
3568 saddrlen = sizeof(saddr);
3569
3570 ret = recvfrom(fd, buf->area, buf->size, 0, (struct sockaddr *)&saddr, &saddrlen);
3571 if (ret < 0) {
3572 if (errno == EINTR)
3573 continue;
3574 if (errno == EAGAIN)
3575 fd_cant_recv(fd);
3576 goto out;
3577 }
3578 buf->data = ret;
3579
3580 /* update counters */
3581 _HA_ATOMIC_ADD(&cum_log_messages, 1);
3582 proxy_inc_fe_req_ctr(l, l->bind_conf->frontend);
3583
3584 parse_log_message(buf->area, buf->data, &level, &facility, metadata, &message, &size);
3585
3586 process_send_log(&l->bind_conf->frontend->logsrvs, level, facility, metadata, message, size);
3587
3588 } while (--max_accept);
3589 }
3590
3591 out:
3592 return;
3593 }
3594
3595 /*
3596 * IO Handler to handle message exchange with a syslog tcp client
3597 */
syslog_io_handler(struct appctx * appctx)3598 static void syslog_io_handler(struct appctx *appctx)
3599 {
3600 static THREAD_LOCAL struct ist metadata[LOG_META_FIELDS];
3601 struct stream_interface *si = appctx->owner;
3602 struct stream *s = si_strm(si);
3603 struct proxy *frontend = strm_fe(s);
3604 struct listener *l = strm_li(s);
3605 struct buffer *buf = get_trash_chunk();
3606 int max_accept;
3607 int to_skip;
3608 int facility;
3609 int level;
3610 char *message;
3611 size_t size;
3612
3613 max_accept = l->maxaccept ? l->maxaccept : 1;
3614 while (co_data(si_oc(si))) {
3615 char c;
3616
3617 if (max_accept <= 0)
3618 goto missing_budget;
3619 max_accept--;
3620
3621 to_skip = co_getchar(si_oc(si), &c);
3622 if (!to_skip)
3623 goto missing_data;
3624 else if (to_skip < 0)
3625 goto cli_abort;
3626
3627 if (c == '<') {
3628 /* rfc-6587, Non-Transparent-Framing: messages separated by
3629 * a trailing LF or CR LF
3630 */
3631 to_skip = co_getline(si_oc(si), buf->area, buf->size);
3632 if (!to_skip)
3633 goto missing_data;
3634 else if (to_skip < 0)
3635 goto cli_abort;
3636
3637 if (buf->area[to_skip - 1] != '\n')
3638 goto parse_error;
3639
3640 buf->data = to_skip - 1;
3641
3642 /* according to rfc-6587, some devices adds CR before LF */
3643 if (buf->data && buf->area[buf->data - 1] == '\r')
3644 buf->data--;
3645
3646 }
3647 else if ((unsigned char)(c - '1') <= 8) {
3648 /* rfc-6587, Octet-Counting: message length in ASCII
3649 * (first digit can not be ZERO), followed by a space
3650 * and message length
3651 */
3652 char *p = NULL;
3653 int msglen;
3654
3655 to_skip = co_getword(si_oc(si), buf->area, buf->size, ' ');
3656 if (!to_skip)
3657 goto missing_data;
3658 else if (to_skip < 0)
3659 goto cli_abort;
3660
3661 if (buf->area[to_skip - 1] != ' ')
3662 goto parse_error;
3663
3664 msglen = strtol(trash.area, &p, 10);
3665 if (!msglen || p != &buf->area[to_skip - 1])
3666 goto parse_error;
3667
3668 /* message seems too large */
3669 if (msglen > buf->size)
3670 goto parse_error;
3671
3672 msglen = co_getblk(si_oc(si), buf->area, msglen, to_skip);
3673 if (!msglen)
3674 goto missing_data;
3675 else if (msglen < 0)
3676 goto cli_abort;
3677
3678
3679 buf->data = msglen;
3680 to_skip += msglen;
3681 }
3682 else
3683 goto parse_error;
3684
3685 co_skip(si_oc(si), to_skip);
3686
3687 /* update counters */
3688 _HA_ATOMIC_ADD(&cum_log_messages, 1);
3689 proxy_inc_fe_req_ctr(l, frontend);
3690
3691 parse_log_message(buf->area, buf->data, &level, &facility, metadata, &message, &size);
3692
3693 process_send_log(&frontend->logsrvs, level, facility, metadata, message, size);
3694
3695 }
3696
3697 missing_data:
3698 /* we need more data to read */
3699 si_oc(si)->flags |= CF_READ_DONTWAIT;
3700
3701 return;
3702
3703 missing_budget:
3704 /* it may remain some stuff to do, let's retry later */
3705 appctx_wakeup(appctx);
3706
3707 return;
3708
3709 parse_error:
3710 if (l->counters)
3711 _HA_ATOMIC_ADD(&l->counters->failed_req, 1);
3712 _HA_ATOMIC_ADD(&frontend->fe_counters.failed_req, 1);
3713
3714 goto close;
3715
3716 cli_abort:
3717 if (l->counters)
3718 _HA_ATOMIC_ADD(&l->counters->cli_aborts, 1);
3719 _HA_ATOMIC_ADD(&frontend->fe_counters.cli_aborts, 1);
3720
3721 close:
3722 si_shutw(si);
3723 si_shutr(si);
3724
3725 si_ic(si)->flags |= CF_READ_NULL;
3726
3727 return;
3728 }
3729
3730 static struct applet syslog_applet = {
3731 .obj_type = OBJ_TYPE_APPLET,
3732 .name = "<SYSLOG>", /* used for logging */
3733 .fct = syslog_io_handler,
3734 .release = NULL,
3735 };
3736
3737 /*
3738 * Parse "log-forward" section and create corresponding sink buffer.
3739 *
3740 * The function returns 0 in success case, otherwise, it returns error
3741 * flags.
3742 */
cfg_parse_log_forward(const char * file,int linenum,char ** args,int kwm)3743 int cfg_parse_log_forward(const char *file, int linenum, char **args, int kwm)
3744 {
3745 int err_code = 0;
3746 struct proxy *px;
3747 char *errmsg = NULL;
3748 const char *err = NULL;
3749
3750 if (strcmp(args[0], "log-forward") == 0) {
3751 if (!*args[1]) {
3752 ha_alert("parsing [%s:%d] : missing name for ip-forward section.\n", file, linenum);
3753 err_code |= ERR_ALERT | ERR_ABORT;
3754 goto out;
3755 }
3756
3757 if (alertif_too_many_args(1, file, linenum, args, &err_code))
3758 goto out;
3759
3760 err = invalid_char(args[1]);
3761 if (err) {
3762 ha_alert("parsing [%s:%d] : character '%c' is not permitted in '%s' name '%s'.\n",
3763 file, linenum, *err, args[0], args[1]);
3764 err_code |= ERR_ALERT | ERR_ABORT;
3765 goto out;
3766 }
3767
3768 px = log_forward_by_name(args[1]);
3769 if (px) {
3770 ha_alert("Parsing [%s:%d]: log-forward section '%s' has the same name as another log-forward section declared at %s:%d.\n",
3771 file, linenum, args[1], px->conf.file, px->conf.line);
3772 err_code |= ERR_ALERT | ERR_FATAL;
3773 }
3774
3775 px = proxy_find_by_name(args[1], 0, 0);
3776 if (px) {
3777 ha_alert("Parsing [%s:%d]: log forward section '%s' has the same name as %s '%s' declared at %s:%d.\n",
3778 file, linenum, args[1], proxy_type_str(px),
3779 px->id, px->conf.file, px->conf.line);
3780 err_code |= ERR_ALERT | ERR_FATAL;
3781 }
3782
3783 px = calloc(1, sizeof *px);
3784 if (!px) {
3785 err_code |= ERR_ALERT | ERR_FATAL;
3786 goto out;
3787 }
3788
3789 px->next = cfg_log_forward;
3790 cfg_log_forward = px;
3791
3792 init_new_proxy(px);
3793 px->conf.file = strdup(file);
3794 px->conf.line = linenum;
3795 px->mode = PR_MODE_SYSLOG;
3796 px->last_change = now.tv_sec;
3797 px->cap = PR_CAP_FE;
3798 px->maxconn = 10;
3799 px->timeout.client = TICK_ETERNITY;
3800 px->accept = frontend_accept;
3801 px->default_target = &syslog_applet.obj_type;
3802 px->id = strdup(args[1]);
3803
3804 }
3805 else if (!strcmp(args[0], "maxconn")) { /* maxconn */
3806 if (warnifnotcap(cfg_log_forward, PR_CAP_FE, file, linenum, args[0], " Maybe you want 'fullconn' instead ?"))
3807 err_code |= ERR_WARN;
3808
3809 if (*(args[1]) == 0) {
3810 ha_alert("parsing [%s:%d] : '%s' expects an integer argument.\n", file, linenum, args[0]);
3811 err_code |= ERR_ALERT | ERR_FATAL;
3812 goto out;
3813 }
3814 cfg_log_forward->maxconn = atol(args[1]);
3815 if (alertif_too_many_args(1, file, linenum, args, &err_code))
3816 goto out;
3817 }
3818 else if (!strcmp(args[0], "backlog")) { /* backlog */
3819 if (warnifnotcap(cfg_log_forward, PR_CAP_FE, file, linenum, args[0], NULL))
3820 err_code |= ERR_WARN;
3821
3822 if (*(args[1]) == 0) {
3823 ha_alert("parsing [%s:%d] : '%s' expects an integer argument.\n", file, linenum, args[0]);
3824 err_code |= ERR_ALERT | ERR_FATAL;
3825 goto out;
3826 }
3827 cfg_log_forward->backlog = atol(args[1]);
3828 if (alertif_too_many_args(1, file, linenum, args, &err_code))
3829 goto out;
3830 }
3831 else if (strcmp(args[0], "bind") == 0) {
3832 int cur_arg;
3833 static int kws_dumped;
3834 struct bind_conf *bind_conf;
3835 struct bind_kw *kw;
3836 struct listener *l;
3837
3838 cur_arg = 1;
3839
3840 bind_conf = bind_conf_alloc(cfg_log_forward, file, linenum,
3841 NULL, xprt_get(XPRT_RAW));
3842 if (!bind_conf) {
3843 ha_alert("parsing [%s:%d] : out of memory error.", file, linenum);
3844 err_code |= ERR_ALERT | ERR_FATAL;
3845 goto out;
3846 }
3847
3848 if (!str2listener(args[1], cfg_log_forward, bind_conf, file, linenum, &errmsg)) {
3849 if (errmsg && *errmsg) {
3850 indent_msg(&errmsg, 2);
3851 ha_alert("parsing [%s:%d] : '%s %s' : %s\n", file, linenum, args[0], args[1], errmsg);
3852 }
3853 else {
3854 ha_alert("parsing [%s:%d] : '%s %s' : error encountered while parsing listening address %s.\n",
3855 file, linenum, args[0], args[1], args[2]);
3856 err_code |= ERR_ALERT | ERR_FATAL;
3857 goto out;
3858 }
3859 }
3860 list_for_each_entry(l, &bind_conf->listeners, by_bind) {
3861 l->maxaccept = global.tune.maxaccept ? global.tune.maxaccept : MAX_ACCEPT;
3862 l->accept = session_accept_fd;
3863 l->analysers |= cfg_log_forward->fe_req_ana;
3864 l->default_target = cfg_log_forward->default_target;
3865 global.maxsock++;
3866 }
3867 cur_arg++;
3868
3869 while (*args[cur_arg] && (kw = bind_find_kw(args[cur_arg]))) {
3870 int ret;
3871
3872 ret = kw->parse(args, cur_arg, cfg_log_forward, bind_conf, &errmsg);
3873 err_code |= ret;
3874 if (ret) {
3875 if (errmsg && *errmsg) {
3876 indent_msg(&errmsg, 2);
3877 ha_alert("parsing [%s:%d] : %s\n", file, linenum, errmsg);
3878 }
3879 else
3880 ha_alert("parsing [%s:%d]: error encountered while processing '%s'\n",
3881 file, linenum, args[cur_arg]);
3882 if (ret & ERR_FATAL)
3883 goto out;
3884 }
3885 cur_arg += 1 + kw->skip;
3886 }
3887 if (*args[cur_arg] != 0) {
3888 char *kws = NULL;
3889
3890 if (!kws_dumped) {
3891 kws_dumped = 1;
3892 bind_dump_kws(&kws);
3893 indent_msg(&kws, 4);
3894 }
3895 ha_alert("parsing [%s:%d] : unknown keyword '%s' in '%s' section.%s%s\n",
3896 file, linenum, args[cur_arg], cursection,
3897 kws ? " Registered keywords :" : "", kws ? kws: "");
3898 free(kws);
3899 err_code |= ERR_ALERT | ERR_FATAL;
3900 goto out;
3901 }
3902 }
3903 else if (strcmp(args[0], "dgram-bind") == 0) {
3904 int cur_arg;
3905 static int kws_dumped;
3906 struct bind_conf *bind_conf;
3907 struct bind_kw *kw;
3908 struct listener *l;
3909
3910 cur_arg = 1;
3911
3912 bind_conf = bind_conf_alloc(cfg_log_forward, file, linenum,
3913 NULL, xprt_get(XPRT_RAW));
3914
3915 if (!str2receiver(args[1], cfg_log_forward, bind_conf, file, linenum, &errmsg)) {
3916 if (errmsg && *errmsg) {
3917 indent_msg(&errmsg, 2);
3918 ha_alert("parsing [%s:%d] : '%s %s' : %s\n", file, linenum, args[0], args[1], errmsg);
3919 }
3920 else {
3921 ha_alert("parsing [%s:%d] : '%s %s' : error encountered while parsing listening address %s.\n",
3922 file, linenum, args[0], args[1], args[2]);
3923 }
3924 err_code |= ERR_ALERT | ERR_FATAL;
3925 goto out;
3926 }
3927 list_for_each_entry(l, &bind_conf->listeners, by_bind) {
3928 /* the fact that the sockets are of type dgram is guaranteed by str2receiver() */
3929 l->maxaccept = global.tune.maxaccept ? global.tune.maxaccept : MAX_ACCEPT;
3930 l->rx.iocb = syslog_fd_handler;
3931 global.maxsock++;
3932 }
3933 cur_arg++;
3934
3935 while (*args[cur_arg] && (kw = bind_find_kw(args[cur_arg]))) {
3936 int ret;
3937
3938 ret = kw->parse(args, cur_arg, cfg_log_forward, bind_conf, &errmsg);
3939 err_code |= ret;
3940 if (ret) {
3941 if (errmsg && *errmsg) {
3942 indent_msg(&errmsg, 2);
3943 ha_alert("parsing [%s:%d] : %s\n", file, linenum, errmsg);
3944 }
3945 else
3946 ha_alert("parsing [%s:%d]: error encountered while processing '%s'\n",
3947 file, linenum, args[cur_arg]);
3948 if (ret & ERR_FATAL)
3949 goto out;
3950 }
3951 cur_arg += 1 + kw->skip;
3952 }
3953 if (*args[cur_arg] != 0) {
3954 char *kws = NULL;
3955
3956 if (!kws_dumped) {
3957 kws_dumped = 1;
3958 bind_dump_kws(&kws);
3959 indent_msg(&kws, 4);
3960 }
3961 ha_alert("parsing [%s:%d] : unknown keyword '%s' in '%s' section.%s%s\n",
3962 file, linenum, args[cur_arg], cursection,
3963 kws ? " Registered keywords :" : "", kws ? kws: "");
3964 free(kws);
3965 err_code |= ERR_ALERT | ERR_FATAL;
3966 goto out;
3967 }
3968 }
3969 else if (strcmp(args[0], "log") == 0) {
3970 if (!parse_logsrv(args, &cfg_log_forward->logsrvs, (kwm == KWM_NO), &errmsg)) {
3971 ha_alert("parsing [%s:%d] : %s : %s\n", file, linenum, args[0], errmsg);
3972 err_code |= ERR_ALERT | ERR_FATAL;
3973 goto out;
3974 }
3975 }
3976 else if (strcmp(args[0], "timeout") == 0) {
3977 const char *res;
3978 unsigned timeout;
3979
3980 if (strcmp(args[1], "client") != 0) {
3981 ha_alert("parsing [%s:%d] : unknown keyword '%s %s' in log-forward section.\n", file, linenum, args[0], args[1]);
3982 err_code |= ERR_ALERT | ERR_FATAL;
3983 goto out;
3984 }
3985
3986 if (*args[2] == 0) {
3987 ha_alert("parsing [%s:%d] : missing timeout client value.\n", file, linenum);
3988 err_code |= ERR_ALERT | ERR_FATAL;
3989 goto out;
3990 }
3991 res = parse_time_err(args[2], &timeout, TIME_UNIT_MS);
3992 if (res == PARSE_TIME_OVER) {
3993 memprintf(&errmsg, "timer overflow in argument '%s' to 'timeout client' (maximum value is 2147483647 ms or ~24.8 days)", args[2]);
3994 }
3995 else if (res == PARSE_TIME_UNDER) {
3996 memprintf(&errmsg, "timer underflow in argument '%s' to 'timeout client' (minimum non-null value is 1 ms)", args[2]);
3997 }
3998 else if (res) {
3999 memprintf(&errmsg, "unexpected character '%c' in 'timeout client'", *res);
4000 return -1;
4001 }
4002
4003 if (res) {
4004 ha_alert("parsing [%s:%d] : %s : %s\n", file, linenum, args[0], errmsg);
4005 err_code |= ERR_ALERT | ERR_FATAL;
4006 goto out;
4007 }
4008 cfg_log_forward->timeout.client = MS_TO_TICKS(timeout);
4009 }
4010 else {
4011 ha_alert("parsing [%s:%d] : unknown keyword '%s' in log-forward section.\n", file, linenum, args[0]);
4012 err_code |= ERR_ALERT | ERR_ABORT;
4013 goto out;
4014 }
4015 out:
4016 return err_code;
4017 }
4018
4019
4020 /* parse the "show startup-logs" command, returns 1 if a message is returned, otherwise zero */
cli_parse_show_startup_logs(char ** args,char * payload,struct appctx * appctx,void * private)4021 static int cli_parse_show_startup_logs(char **args, char *payload, struct appctx *appctx, void *private)
4022 {
4023 if (!cli_has_level(appctx, ACCESS_LVL_OPER))
4024 return 1;
4025
4026 if (!startup_logs)
4027 return cli_msg(appctx, LOG_INFO, "\n"); // nothing to print
4028
4029 return ring_attach_cli(startup_logs, appctx);
4030 }
4031
4032 /* register cli keywords */
4033 static struct cli_kw_list cli_kws = {{ },{
4034 { { "show", "startup-logs", NULL },
4035 "show startup-logs : report logs emitted during HAProxy startup", cli_parse_show_startup_logs, NULL, NULL },
4036 {{},}
4037 }};
4038
4039 INITCALL1(STG_REGISTER, cli_register_kw, &cli_kws);
4040
4041 /* config parsers for this section */
4042 REGISTER_CONFIG_SECTION("log-forward", cfg_parse_log_forward, NULL);
4043
4044 REGISTER_PER_THREAD_ALLOC(init_log_buffers);
4045 REGISTER_PER_THREAD_FREE(deinit_log_buffers);
4046
4047 /*
4048 * Local variables:
4049 * c-indent-level: 8
4050 * c-basic-offset: 8
4051 * End:
4052 */
4053