[syslog-ng]'debug' priority?
Pavel Urban
syslog-ng@lists.balabit.hu
Mon, 08 Mar 2004 15:41:52 +0100
I cannot confirm this. Here is an output from truss utility (only
relevant part):
16989: Received signal #1, SIGHUP, in poll() [caught]
16989: siginfo: SIGHUP pid=16972 uid=0
16989: lwp_sigredirect(1, SIGHUP, 0xFF00FC44) = 0
16989: poll(0xFFBEFA90, 1, 530000) Err#4 EINTR
16989: sigaction(SIGHUP, 0xFFBEF520, 0x00000000) = 0
16989: sigprocmask(SIG_SETMASK, 0xFF0DEFE8, 0x00000000) = 0
16989: sigaction(SIGHUP, 0xFFBEF420, 0xFFBEF520) = 0
16989: sigprocmask(SIG_SETMASK, 0xFF0EAD68, 0x00000000) = 0
16989: setcontext(0xFFBEF400)
16989: so_socket(2, 1, 0, "", 1) = 3
16989: ioctl(3, 0x40046957, 0xFFBEFAA4) = 0
16989: ioctl(3, 0xC0086914, 0xFFBEFA9C) = 0
16989: ioctl(3, 0xC0206911, 0xFFBEFA7C) = 0
16989: ioctl(3, 0xC0206911, 0xFFBEFA7C) = 0
16989: close(3) = 0
16989: sysinfo(SI_SRPC_DOMAIN, "iol.cz", 256) = 7
16989: open("/etc/resolv.conf", O_RDONLY) Err#2 ENOENT
16989: getpid() = 16989 [1]
16989: time() = 1078752369
16989: time() = 1078752369
16989: time() = 1078752369
16989: poll(0x00000000, 0, 1000) (sleeping...)
16989: signotifywait() (sleeping...)
16989: lwp_sema_wait(0xFEF0DE30) (sleeping...)
16989: lwp_cond_wait(0xFF0E5548, 0xFF0E5558, 0xFF0DEDB0) (sleeping...)
16989: door_return(0x00000000, 0, 0x00000000, 0) (sleeping...)
16989: poll(0x00000000, 0, 1000) = 0
16989: open("/etc/syslog-ng.conf", O_RDONLY) = 3
16989: ioctl(3, TCGETA, 0xFFBEF8D4) Err#25 ENOTTY
16989: fstat64(3, 0xFFBEF2D0) = 0
16989: ioctl(3, TCGETA, 0xFFBEF25C) Err#25 ENOTTY
16989: read(3, " # s y s l o g - n g ".., 8192) = 2859
16989: read(3, 0x00049E24, 8192) = 0
16989: ioctl(3, TCGETA, 0xFFBEF334) Err#25 ENOTTY
16989: llseek(3, 0, SEEK_CUR) = 2859
16989: close(3) = 0
16989: time() = 1078752370
16989: time() = 1078752370
16989: time() = 1078752370
16989: poll(0x00000000, 0, 0) = 0
16989: door_revoke(5) = 0
16989: close(5) Err#9 EBADF
16989: time() = 1078752370
16989: time() = 1078752370
16989: poll(0x00000000, 0, 0) = 0
16989: open("/dev/log", O_RDONLY|O_NONBLOCK|O_NOCTTY) = 3
16989: ioctl(3, I_STR, 0xFFBEF8C8) = 0
16989: stat("/etc/.syslog_door", 0xFFBEF840) = 0
16989: umount2("/etc/.syslog_door", 0x00000000) = 0
16989: door_create(0x0001DCD0, 0x00000000, 0x00000000) = 5
16989: getpid() = 16989 [1]
16989: ioctl(5, I_CANPUT, 0x00000000) Err#89 ENOSYS
16989: door_info(5, 0xFFBEF7A8) = 0
16989: mount("", "/etc/.syslog_door", 0x00000804, "namefs", 0xFFBEF7A4,
4) = 0
16989: getpid() = 16989 [1]
16989: time() = 1078752370
16989: open("/var/log/testlog",
O_WRONLY|O_APPEND|O_NONBLOCK|O_CREAT|O_NOCTTY|O_LARGEFILE, 0600) = 6
16989: chown("/var/log/testlog", 0, 0) = 0
16989: chmod("/var/log/testlog", 0600) = 0
16989: fcntl(6, F_GETFL, 0xFFFFFFFF) = 8329
16989: fstat64(6, 0xFFBEF330) = 0
16989: fstat64(6, 0xFFBEF330) = 0
16989: fcntl(6, F_SETFL, 0x00002089) = 0
16989: fcntl(6, F_SETFD, 0x00000001) = 0
16989: time() = 1078752370
16989: close(4) = 0
16989: poll(0xFFBEFA88, 2, 100) = 0
16989: getpid() = 16989 [1]
16989: time() = 1078752370
16989: getpid() = 16989 [1]
16989: time() = 1078752370
16989: poll(0xFFBEFA88, 2, 600000) (sleeping...)
16989: signotifywait() (sleeping...)
16989: lwp_sema_wait(0xFEF0DE30) (sleeping...)
16989: lwp_cond_wait(0xFF0E5548, 0xFF0E5558, 0xFF0DEDB0) (sleeping...)
16989: door_return(0x00000000, 0, 0x00000000, 0) (sleeping...)
here the file has been created and open for appending, but nothing has
been written to it.
now I've invoked something like 'logger -p local2.notice 'testik 11''.
16989: lwp_cond_wait(0xFF0E5548, 0xFF0E5558, 0xFF0DEDB0) Err#62 ETIME
16989: poll(0xFFBEFA88, 2, 600000) (sleeping...)
16989: signotifywait() (sleeping...)
16989: lwp_sema_wait(0xFEF0DE30) (sleeping...)
16989: lwp_cond_wait(0xFF0E5548, 0xFF0E5558, 0xFF0DEDB0) (sleeping...)
16989: door_return(0x00000000, 0, 0x00000000, 0) (sleeping...)
16989: poll(0xFFBEFA88, 2, 600000) = 1
16989: getmsg(3, 0xFFBED190, 0xFFBED180, 0xFFBED164) = 0
16989: time() = 1078752429
16989: time() = 1078752429
16989: time() = 1078752429
16989: time() = 1078752429
16989: poll(0xFFBEFA88, 2, 100) = 1
16989: write(6, " M a r 8 1 4 : 2 6".., 302) = 302
16989: time() = 1078752429
16989: poll(0xFFBEFA88, 2, 100) = 0
16989: getpid() = 16989 [1]
16989: time() = 1078752429
16989: getpid() = 16989 [1]
16989: time() = 1078752429
16989: poll(0xFFBEFA88, 2, 541000) (sleeping...)
16989: signotifywait() (sleeping...)
16989: lwp_sema_wait(0xFEF0DE30) (sleeping...)
16989: lwp_cond_wait(0xFF0E5548, 0xFF0E5558, 0xFF0DEDB0) (sleeping...)
16989: door_return(0x00000000, 0, 0x00000000, 0) (sleeping...)
16989: lwp_cond_wait(0xFF0E5548, 0xFF0E5558, 0xFF0DEDB0) Err#62 ETIME
16989: poll(0xFFBEFA88, 2, 541000) (sleeping...)
Anyway, when I've tried to set priority for filter to 'debug', nothing
has been logged. Is this normal? We have lost some quite important
system logs in the past, so I'm trying to do some research to avoid this
(messages on kernel.notice facility/priority weren't logged into file etc).
Thanks!
Balazs Scheidler wrote:
> 2004-03-08, h keltezéssel 14:46-kor Pavel Urban ezt írta:
>
>>Hello,
>>
>>I've just tried 1.6.2 on Solaris 8 and encountered one problem. When I
>>try to set
>>
>>filter f_filter_test { level(debug); };
>>
>>I can see no output and no activity like opening destination file. When
>>I try to change this priority to 'notice', the file gets opened and
>>output is send there. What's wrong with 'debug' priority...?
>>
>>The rest of my text config follows.
>
>
> syslog-ng opens the file when the first message would be written to it.
>
--
***********************************************************************
Pavel Urban (pavel.urban@ct.cz)
IOL system disaster
Internet OnLine, www.iol.cz (owned by Czech Telecom, www.ct.cz)
***********************************************************************
Vegetables should not operate electronic equipment.
Computer Stupidities, http://rinkworks.com/stupid/
***********************************************************************