From 371556232f70d9427ec6b146c4373d19bffe1b93 Mon Sep 17 00:00:00 2001 From: he2ss Date: Thu, 9 Sep 2021 11:08:14 +0200 Subject: [PATCH 1/4] add log level --- README.md | 3 ++- lib/CrowdSec.lua | 30 ++++++++++++++++++++++++++---- lib/config.lua | 2 +- template.conf | 1 + 4 files changed, 30 insertions(+), 6 deletions(-) diff --git a/README.md b/README.md index 2c20154..a1d2ec4 100644 --- a/README.md +++ b/README.md @@ -51,7 +51,8 @@ The configuration is located by default in `/usr/local/lua/crowdsec/crowdsec.con ``` API_URL=http://localhost:8080 <-- the API url API_KEY= <-- the API Key generated with `cscli bouncers add -n ` -LOG_FILE=/tmp/lua_mod.log <-- path to log file +LOG_FILE=/tmp/lua_mod.log <-- path to log file +LOG_LEVEL=INFO <-- log level (INFO, WARN, DEBUG, ERROR, FATAL) CACHE_EXPIRATION=1 <-- in seconds CACHE_SIZE=1000 <-- cache size REQUEST_TIMEOUT=0.2 <-- Maximum duration in seconds for a request to LAPI diff --git a/lib/CrowdSec.lua b/lib/CrowdSec.lua index fd10cf4..238f1ee 100644 --- a/lib/CrowdSec.lua +++ b/lib/CrowdSec.lua @@ -25,6 +25,27 @@ end local csmod = {} +function getLogLevel( level ) + if level and type(level)=="string" + if level == "INFO" + return logging.INFO + end + if level == "WARN" + return logging.WARN + end + if level == "DEBUG" + return logging.DEBUG + end + if level == "ERROR" + return logging.ERROR + end + if level == "FATAL" + return logging.FATAL + end + end + return logging.INFO +end + -- init function function csmod.init(configFile, userAgent) local conf, err = config.loadConfig(configFile) @@ -34,6 +55,7 @@ function csmod.init(configFile, userAgent) runtime.conf = conf local logger = log_file(conf["LOG_FILE"]) + logger:setLevel (getLogLevel(conf["LOG_LEVEL"])) runtime.logger = logger runtime.userAgent = userAgent local c, err = lrucache.new(conf["CACHE_SIZE"]) @@ -105,12 +127,12 @@ function csmod.allowIp(ip) return true, nil end if resp == "null" then -- no result from API, no decision for this IP - -- set ip in cache and DON'T block it - runtime.cache:set(ip, true,runtime.conf["CACHE_EXPIRATION"]) + -- setLevel (logging.) ip in cache and DON'T block it + runtime.cache:setLevel (logging.)(ip, true,runtime.conf["CACHE_EXPIRATION"]) return true, nil end - -- set ip in cache and block it - runtime.cache:set(ip, false,runtime.conf["CACHE_EXPIRATION"]) + -- setLevel (logging.) ip in cache and block it + runtime.cache:setLevel (logging.)(ip, false,runtime.conf["CACHE_EXPIRATION"]) return false, nil end diff --git a/lib/config.lua b/lib/config.lua index d308bea..812d8f9 100644 --- a/lib/config.lua +++ b/lib/config.lua @@ -35,7 +35,7 @@ function config.loadConfig(file) return nil, "File ".. file .." doesn't exist" end local conf = {} - local valid_params = {'API_URL', 'API_KEY', 'LOG_FILE'} + local valid_params = {'API_URL', 'API_KEY', 'LOG_FILE', 'LOG_LEVEL'} local valid_int_params = {'CACHE_EXPIRATION', 'CACHE_SIZE', 'REQUEST_TIMEOUT'} local default_values = { ['REQUEST_TIMEOUT'] = 0.2 diff --git a/template.conf b/template.conf index 1ab2f33..8026120 100644 --- a/template.conf +++ b/template.conf @@ -1,5 +1,6 @@ API_URL=http://127.0.0.1:8080 API_KEY= ${API_KEY} LOG_FILE=/tmp/lua_mod.log +LOG_LEVEL=INFO CACHE_EXPIRATION=1 CACHE_SIZE=1000 From 8d0d89109767b7b986c50c106b85c82af4a5484d Mon Sep 17 00:00:00 2001 From: he2ss Date: Thu, 9 Sep 2021 11:36:33 +0200 Subject: [PATCH 2/4] fix typo --- lib/CrowdSec.lua | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/lib/CrowdSec.lua b/lib/CrowdSec.lua index 238f1ee..6af961e 100644 --- a/lib/CrowdSec.lua +++ b/lib/CrowdSec.lua @@ -26,20 +26,20 @@ end local csmod = {} function getLogLevel( level ) - if level and type(level)=="string" - if level == "INFO" + if level and type(level)=="string" then + if level:upper() == "INFO" then return logging.INFO end - if level == "WARN" + if level:upper() == "WARN" then return logging.WARN end - if level == "DEBUG" + if level:upper() == "DEBUG" then return logging.DEBUG end - if level == "ERROR" + if level:upper() == "ERROR" then return logging.ERROR end - if level == "FATAL" + if level:upper() == "FATAL" then return logging.FATAL end end From 84469fa2be0dcf56c83b3cd2b9e21ca55f0b5256 Mon Sep 17 00:00:00 2001 From: he2ss Date: Thu, 9 Sep 2021 11:40:45 +0200 Subject: [PATCH 3/4] fix typo added by vscode --- lib/CrowdSec.lua | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/lib/CrowdSec.lua b/lib/CrowdSec.lua index 6af961e..2f55f3a 100644 --- a/lib/CrowdSec.lua +++ b/lib/CrowdSec.lua @@ -127,12 +127,12 @@ function csmod.allowIp(ip) return true, nil end if resp == "null" then -- no result from API, no decision for this IP - -- setLevel (logging.) ip in cache and DON'T block it - runtime.cache:setLevel (logging.)(ip, true,runtime.conf["CACHE_EXPIRATION"]) + -- set ip in cache and DON'T block it + runtime.cache:set(ip, true,runtime.conf["CACHE_EXPIRATION"]) return true, nil end - -- setLevel (logging.) ip in cache and block it - runtime.cache:setLevel (logging.)(ip, false,runtime.conf["CACHE_EXPIRATION"]) + -- set ip in cache and block it + runtime.cache:set(ip, false,runtime.conf["CACHE_EXPIRATION"]) return false, nil end From 800423d2cb75726a5f5e5347a996112eb427f395 Mon Sep 17 00:00:00 2001 From: he2ss Date: Thu, 9 Sep 2021 14:25:30 +0200 Subject: [PATCH 4/4] fix logfile path --- README.md | 2 +- lib/config.lua | 4 +++- template.conf | 2 +- 3 files changed, 5 insertions(+), 3 deletions(-) diff --git a/README.md b/README.md index a1d2ec4..6941282 100644 --- a/README.md +++ b/README.md @@ -51,7 +51,7 @@ The configuration is located by default in `/usr/local/lua/crowdsec/crowdsec.con ``` API_URL=http://localhost:8080 <-- the API url API_KEY= <-- the API Key generated with `cscli bouncers add -n ` -LOG_FILE=/tmp/lua_mod.log <-- path to log file +LOG_FILE=/var/log/crowdsec_lua_bouncer.log <-- path to log file LOG_LEVEL=INFO <-- log level (INFO, WARN, DEBUG, ERROR, FATAL) CACHE_EXPIRATION=1 <-- in seconds CACHE_SIZE=1000 <-- cache size diff --git a/lib/config.lua b/lib/config.lua index 812d8f9..5a8bb62 100644 --- a/lib/config.lua +++ b/lib/config.lua @@ -38,7 +38,9 @@ function config.loadConfig(file) local valid_params = {'API_URL', 'API_KEY', 'LOG_FILE', 'LOG_LEVEL'} local valid_int_params = {'CACHE_EXPIRATION', 'CACHE_SIZE', 'REQUEST_TIMEOUT'} local default_values = { - ['REQUEST_TIMEOUT'] = 0.2 + ['REQUEST_TIMEOUT'] = 0.2, + ['LOG_FILE'] = "/var/log/crowdsec_lua_bouncer.log", + ['LOG_LEVEL'] = "INFO" } for line in io.lines(file) do local isOk = false diff --git a/template.conf b/template.conf index 8026120..e9dfffb 100644 --- a/template.conf +++ b/template.conf @@ -1,6 +1,6 @@ API_URL=http://127.0.0.1:8080 API_KEY= ${API_KEY} -LOG_FILE=/tmp/lua_mod.log +LOG_FILE=/var/log/crowdsec_lua_bouncer.log LOG_LEVEL=INFO CACHE_EXPIRATION=1 CACHE_SIZE=1000