Added by Victor Julien over 6 years ago. Updated 3 months ago.
Description
Make sure macros like debug!, info!, warn! etc. are useable and plugged to suricata's logging functions.
Pierre do you have an idea about how this can be done?
There are some issues we would run into here. The Rust std log implements:
- error
- warn
- info
- debug
- trace
All these follow the same call pattern, and do not give us a place to pass the code in error and warn. We could certainly intercept all these and pass them to our logging system with some default error code where required.
A pattern I've seen is an implemenatation of these so you get output when call them, but then application specific macros (ie: scwarn!, scerr!) where a lot more application specific context was added to meet the business requirements.
I'm not sure if looking into larger log implementations is worth it at this time as we're still best off passing to the C implementation of our logger for the forseeable future.
Log crate doesn't actually provide a logger implementation, so we would have to implement a logger that can receive them, and pass them to the C implementation.
For error and warn, can use a generic error code.
The error code concern might go away depending how we deal with #3160.
I think I need a little reminder as to why this is necessary. I've created a PR that implements a logger here:
https://github.com/OISF/suricata/pull/4365
The only benefit I see is that we can now see the output from external crates that may log diagnostic information using the standard log macros. There is not much benefit for us to use it in tree.
Idea: Rename macros like SCLogNotice to simply scnotice!() (scinfo, scerror, etc) if that would help make this more usable, feel more Rusty.
Nothing more to do, right ?