Hooking into the Logging Framework.

2025-10-07 09:08:20 +00:00 · 2013-03-24 21:58:28 -04:00 · 2013-03-24 21:58:28 -04:00 · e755bf1b54
commit e755bf1b54
parent a699470145
2 changed files with 71 additions and 5 deletions
--- a/testing/btest/doc/manual/framework_logging_factorial_04.bro
+++ b/testing/btest/doc/manual/framework_logging_factorial_04.bro
@ -0,0 +1,62 @@
+# @TEST-EXEC: bro %INPUT
+# @TEST-EXEC: btest-diff factor-mod5.log
+# @TEST-EXEC: btest-diff factor-non5.log
+
+module Factor;
+
+export {
+    redef enum Log::ID += { LOG };
+
+    type Info: record {
+        num:           count &log;
+        factorial_num: count &log;
+        };
+    
+    global log_factor: event(rec: Info);
+    }
+
+function factorial(n: count): count
+    {
+    if ( n == 0 )
+        {
+        return 1;
+        }
+    else
+        {
+        return ( n * factorial(n - 1) );
+        }
+    }
+
+event bro_init()
+    {
+    Log::create_stream(LOG, [$columns=Info, $ev=log_factorial]);
+    }
+
+event bro_done()
+    {
+    local numbers: vector of count = vector(1, 2, 3, 4, 5, 6, 7, 8, 9, 10);    
+    for ( n in numbers )
+        {
+        Log::write( Factor::LOG, [$num=numbers[n],
+                                  $factorial_num=factorial(numbers[n])]);
+        }
+    }
+
+function mod5(id: Log::ID, path: string, rec: Factor::Info) : string    
+    {
+    if ( rec$factorial_num % 5 == 0 )
+        {
+        return "factor-mod5";
+        }
+    else
+        {
+        return "factor-non5";
+        }
+    }
+
+event bro_init()
+    {
+    local filter: Log::Filter = [$name="split-mod5s", $path_func=mod5];
+    Log::add_filter(Factor::LOG, filter);
+    Log::remove_filter(Factor::LOG, "default");
+    }