git.ipfire.org Git - thirdparty/ulogd2.git/commit

author	Eric Leblond <eric@regit.org>
	Sun, 26 Jan 2014 21:21:42 +0000 (22:21 +0100)
committer	Eric Leblond <eric@regit.org>
	Tue, 28 Jan 2014 22:06:19 +0000 (23:06 +0100)
commit	0d213c1f1de63a016bcd730106e3aea83439c388
tree	cdb0b67ea184f9601c8b3e7886fc693e6c995d69	tree \| snapshot
parent	5ebf1795c064cdde5ddaf66a263f532030317dd5	commit \| diff

store Common Information Model name in ulogd key

This patch adds storage for CIM field name in ulogd key. This
will be used by JSON output to interoperate with logging
collector such as logstash or splunk.

Common Information Model is an open standard that defines how managed
elements in an IT environment are represented as a common set of objects
and relationships between them:
http://www.dmtf.org/standards/cim

This seems to be mainly XML based but there is a JSON version of some
aspects of the model. One of the main documentation on CIM in JSON
format seems to be:
http://docs.splunk.com/Documentation/PCI/2.0/DataSource/CommonInformationModelFieldReference

Using the correct CIM field name allow events coming from ulogd to be
correlated with events coming from other sources.

filter/raw2packet/ulogd_raw2packet_BASE.c		diff \| blob \| blame \| history
filter/ulogd_filter_IP2STR.c		diff \| blob \| blame \| history
include/ulogd/ulogd.h		diff \| blob \| blame \| history