Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

quickstart without db grok doesn't work #1

Open
faxm0dem opened this issue Dec 3, 2019 · 0 comments
Open

quickstart without db grok doesn't work #1

faxm0dem opened this issue Dec 3, 2019 · 0 comments

Comments

@faxm0dem
Copy link
Member

faxm0dem commented Dec 3, 2019

It generates 0 patterns when database empty:

☠ rm sequence.sdb
☠ sequence analyzebyservice --all -k json --config sequence.toml -i examples/kernel.json -l /dev/stderr -n info -f txt -s grok -o /tmp/sequence.conf
{"id":100,"level":"info","msg":"Starting up: method called analyzebyservice","time":"2019-12-03T11:11:50+01:00","version":"beta"}
{"id":100,"level":"info","msg":"Read in 5000 records successfully, starting analysis..","time":"2019-12-03T11:11:50+01:00","version":"beta"}
{"id":303,"level":"error","msg":"Failed to select record(s) from patterns table, query: Where Serviceid = c65a0fb7e74ffd2c9fc3a0f9aacb0f6a24b0a68b, reason: models: failed to assign all query results to Pattern slice: bind failed to execute query: no such table: Patterns","time":"2019-12-03T11:11:50+01:00","version":"beta"}
{"id":100,"level":"info","msg":"Analysed in: 98.345077ms\n","time":"2019-12-03T11:11:50+01:00","version":"beta"}
{"id":303,"level":"error","msg":"Failed to select record(s) from patterns table, query: sum(cumulative_match_count), reason: bind failed to execute query: no such table: Patterns","time":"2019-12-03T11:11:50+01:00","version":"beta"}
{"id":303,"level":"error","msg":"Failed to select record(s) from patterns table, query: Where cumulative_match_count \u003e threshold, reason: models: failed to assign all query results to Pattern slice: bind failed to execute query: no such table: Patterns","time":"2019-12-03T11:11:50+01:00","version":"beta"}
{"id":100,"level":"info","msg":"Found 0 patterns for output","time":"2019-12-03T11:11:50+01:00","version":"beta"}
{"id":102,"level":"info","msg":"Output 0 patterns to file, the top 5 matched patterns are , time taken: 1.651817ms","output_patterns":0,"time":"2019-12-03T11:11:50+01:00","top_5":"","version":"beta"}
☠ cat /tmp/sequence.conf
filter {
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant