http-log: deprecate

http-log is now deprecated and will be removed in Suricata 9.0. Display a deprecation notice on use, and add notes to the userguide. Issue: #6543
6 months ago · ab26323a96
parent d7e33a51bc
commit ab26323a96
5 changed files with 11 additions and 10 deletions
--- a/doc/userguide/configuration/suricata-yaml.rst
+++ b/doc/userguide/configuration/suricata-yaml.rst
@ -424,6 +424,9 @@ Example:
 A line based log of HTTP requests (http.log)
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

+.. attention:: http-log is deprecated in Suricata 8.0 and will be
+               removed in Suricata 9.0.
+
 This log keeps track of all HTTP-traffic events. It contains the HTTP
 request, hostname, URI and the User-Agent. This information will be
 stored in the http.log (default name, in the suricata log
--- a/doc/userguide/output/custom-http-logging.rst
+++ b/doc/userguide/output/custom-http-logging.rst
@ -1,6 +1,9 @@
 Custom http logging
 ===================

+.. attention:: http-log is deprecated in Suricata 8.0 and will be
+               removed in Suricata 9.0.
+
 In your Suricata.yaml, find the http-log section and edit as follows:


--- a/doc/userguide/upgrade.rst
+++ b/doc/userguide/upgrade.rst
@ -76,6 +76,10 @@ Removals
 ~~~~~~~~
 - The ssh keywords ``ssh.protoversion`` and ``ssh.softwareversion`` have been removed.

+Deprecations
+~~~~~~~~~~~~
+- The ``http-log`` output is now deprecated and will be removed in Suricata 9.0.
+
 Upgrading 6.0 to 7.0
 --------------------

--- a/src/log-httplog.c
+++ b/src/log-httplog.c
@ -547,6 +547,7 @@ TmEcode LogHttpLogThreadDeinit(ThreadVars *t, void *data)
 * */
 OutputInitResult LogHttpLogInitCtx(ConfNode *conf)
 {
+    SCLogWarning("The http-log output has been deprecated and will be removed in Suricata 9.0.");
    OutputInitResult result = { NULL, false };
    LogFileCtx* file_ctx = LogFileNewCtx();
    if(file_ctx == NULL) {
--- a/suricata.yaml.in
+++ b/suricata.yaml.in
@ -352,16 +352,6 @@ outputs:
        #   state-update: false             # log packets triggering a TCP state update
        #   spurious-retransmission: false  # log spurious retransmission packets

-  # a line based log of HTTP requests (no alerts)
-  - http-log:
-      enabled: no
-      filename: http.log
-      append: yes
-      #extended: yes     # enable this for extended logging information
-      #custom: yes       # enable the custom logging format (defined by customformat)
-      #customformat: "%{%D-%H:%M:%S}t.%z %{X-Forwarded-For}i %H %m %h %u %s %B %a:%p -> %A:%P"
-      #filetype: regular # 'regular', 'unix_stream' or 'unix_dgram'
-
  # a line based log of TLS handshake parameters (no alerts)
  - tls-log:
      enabled: no  # Log TLS connections.