Project

General

Profile

Actions

Bug #799

closed

suricata.log output - quoting

Added by Peter Manev almost 11 years ago. Updated over 7 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Target version:
-
Affected Versions:
Effort:
Difficulty:
Label:

Description

In some situation in the suricata.log output - there is a chance for unreadable output:

root@suricata:/var/data/regit/log/suricata/StatsByDate# cat suricata-2013-04-10.log
[32677] 9/4/2013 -- 02:26:03 - (defrag-hash.c:203) <Info> (DefragInitConfig) -- allocated 229376 bytes of memory for the defrag hash... 4096 buckets of size 56
[32677] 9/4/2013 -- 02:26:03 - (defrag-hash.c:228) <Info> (DefragInitConfig) -- preallocated 65535 defrag trackers of size 144
[32677] 9/4/2013 -- 02:26:03 - (defrag-hash.c:235) <Info> (DefragInitConfig) -- defrag memory usage: 9666416 bytes, maximum: 16777216
[32677] 9/4/2013 -- 02:26:03 - (tmqh-flow.c:76) <Info> (TmqhFlowRegister) -- AutoFP mode using default "Active Packets" flow load balancer
[32677] 9/4/2013 -- 02:26:03 - (util-pidfile.c:118) <Error> (SCPidfileTestRunning) -- [ERRCODE: SC_ERR_INITIALIZATION(45)] - pid file '/usr/local/var/run/suricata.pid' exists. Is Suricata already running? Aborting!
....

Notice:

'/usr/local/var/run/suricata.pid'

If you try to open the same file with nano or mcedit, you get:

[32677] 9/4/2013 -- 02:26:03 - (defrag-hash.c:203) <Info> (DefragInitConfig) -- allocated 229376 bytes of memory for the defrag hash... 4096 buckets of size 56
[32677] 9/4/2013 -- 02:26:03 - (defrag-hash.c:228) <Info> (DefragInitConfig) -- preallocated 65535 defrag trackers of size 144
[32677] 9/4/2013 -- 02:26:03 - (defrag-hash.c:235) <Info> (DefragInitConfig) -- defrag memory usage: 9666416 bytes, maximum: 16777216
[32677] 9/4/2013 -- 02:26:03 - (tmqh-flow.c:76) <Info> (TmqhFlowRegister) -- AutoFP mode using default "Active Packets" flow load balancer
[32677] 9/4/2013 -- 02:26:03 - (util-pidfile.c:118) <Error> (SCPidfileTestRunning) -- [ERRCODE: SC_ERR_INITIALIZATION(45)] - pid file '/usr/local/var/run/suricata.pid' exists. Is Suricata already running? Aborting!
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^$

Actions #1

Updated by Victor Julien over 10 years ago

  • Target version set to TBD
Actions #2

Updated by Andreas Herz over 7 years ago

  • Status changed from New to Closed
Actions #3

Updated by Andreas Herz over 7 years ago

  • Target version deleted (TBD)

not reproduced anymore

Actions

Also available in: Atom PDF