/etc/aminer/conf-available/generic/KernelMsgParsingModel.py is in logdata-anomaly-miner 0.0.7-1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 | from aminer.parsing import AnyByteDataModelElement
from aminer.parsing import DelimitedDataModelElement
from aminer.parsing import FirstMatchModelElement
from aminer.parsing import FixedDataModelElement
from aminer.parsing import SequenceModelElement
def getModel(messagesModel=None):
"""This function defines how to parse messages from kernel logging.
@param if messagesModel is defined, model will first attempt
to check if log data matches this model before returning the
complete unparsed message as single string."""
realMessagesModel=AnyByteDataModelElement('msg')
if messagesModel!=None:
realMessagesModel=FirstMatchModelElement('msg', [
messagesModel,
realMessagesModel])
model=SequenceModelElement('kernel', [
FixedDataModelElement('sname', 'kernel: ['),
DelimitedDataModelElement('timestamp', ']'),
FixedDataModelElement('s0', '] '),
AnyByteDataModelElement('msg')])
return(model)
|