3 ################################################################################
6 # A parser for Privoxy log messages. For incomplete documentation run
7 # perldoc privoxy-log-parser(.pl), for fancy screenshots see:
9 # http://www.fabiankeil.de/sourcecode/privoxy-log-parser/
11 # $Id: privoxy-log-parser.pl,v 1.136 2012/07/27 17:42:39 fabiankeil Exp $
14 # - LOG_LEVEL_CGI, LOG_LEVEL_ERROR, LOG_LEVEL_WRITE content highlighting
15 # - create fancy statistics
16 # - grep through Privoxy sources to find unsupported log messages
17 # - hunt down substitutions that match content from variables which
18 # can contain stuff like ()?'[]
19 # - replace $h{'foo'} with h('foo') where possible
20 # - hunt down XXX comments instead of just creating them
21 # - add example log lines for every regex and mark them up for
23 # - Handle incomplete input without Perl warning about undefined variables.
24 # - Use generic highlighting function that takes a regex and the
26 # - Add --compress and --decompress options.
28 # Copyright (c) 2007-2010 Fabian Keil <fk@fabiankeil.de>
30 # Permission to use, copy, modify, and distribute this software for any
31 # purpose with or without fee is hereby granted, provided that the above
32 # copyright notice and this permission notice appear in all copies.
34 # THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
35 # WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
36 # MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
37 # ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
38 # WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
39 # ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
40 # OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
41 ################################################################################
48 PRIVOXY_LOG_PARSER_VERSION => '0.7',
49 # Feel free to mess with these ...
50 DEFAULT_BACKGROUND => 'black', # Choose registered colour (like 'black')
51 DEFAULT_TEXT_COLOUR => 'white', # Choose registered colour (like 'black')
52 HEADER_DEFAULT_COLOUR => 'yellow',
53 REGISTER_HEADERS_WITH_THE_SAME_COLOUR => 1,
55 CLI_OPTION_DEFAULT_TO_HTML_OUTPUT => 0,
56 CLI_OPTION_TITLE => 'Privoxy-Log-Parser in da house',
57 CLI_OPTION_NO_EMBEDDED_CSS => 0,
58 CLI_OPTION_NO_MSECS => 0,
59 CLI_OPTION_NO_SYNTAX_HIGHLIGHTING => 0,
60 CLI_OPTION_SHORTEN_THREAD_IDS => 0,
61 CLI_OPTION_SHOW_INEFFECTIVE_FILTERS => 0,
62 CLI_OPTION_ACCEPT_UNKNOWN_MESSAGES => 0,
63 CLI_OPTION_STATISTICS => 0,
64 CLI_OPTION_UNBREAK_LINES_ONLY => 0,
65 CLI_OPTION_URL_STATISTICS_THRESHOLD => 0,
66 CLI_OPTION_HOST_STATISTICS_THRESHOLD => 0,
68 SUPPRESS_SUCCEEDED_FILTER_ADDITIONS => 1,
70 SHOW_FILTER_READIN_IN => 0,
71 SUPPRESS_EMPTY_LINES => 1,
72 SUPPRESS_SUCCESSFUL_CONNECTIONS => 1,
73 SUPPRESS_GIF_NOT_CHANGED => 1,
74 SUPPRESS_NEED_TO_DE_CHUNK_FIRST => 1,
76 DEBUG_HEADER_REGISTERING => 0,
77 DEBUG_HEADER_HIGHLIGHTING => 0,
80 DEBUG_SUPPRESS_LOG_MESSAGES => 0,
82 PUNISH_MISSING_LOG_KNOWLEDGE_WITH_DEATH => 0,
83 PUNISH_MISSING_HIGHLIGHT_KNOWLEDGE_WITH_DEATH => 1,
85 LOG_UNPARSED_LINES_TO_EXTRA_FILE => 0,
86 ERROR_LOG_FILE => '/var/log/privoxy-log-parser',
88 # You better leave these alone unless you know what you're doing.
89 COLOUR_RESET => "\033[0;0m",
93 # For performance reasons, these are global.
96 my %req; # request data from previous lines
101 my $thread_colour_index = 0;
102 my $header_colour_index = 0;
103 my $time_colour_index = 0;
105 my $no_special_header_highlighting;
108 my $header_highlight_regex = '';
110 my $html_output_mode;
111 my $no_msecs_mode; # XXX: should probably be removed
112 my $shorten_thread_ids;
115 sub prepare_our_stuff () {
117 # Syntax Higlight hash
119 'red', 'green', 'brown', 'blue', 'purple', 'cyan',
120 'light_gray', 'light_red', 'light_green', 'yellow',
121 'light_blue', 'pink', 'light_cyan', 'white'
128 Filter => 'purple', # XXX: Used?
129 'Re-Filter' => 'purple',
131 Request => 'light_cyan',
132 CGI => 'light_green',
134 Error => 'light_red',
136 'Fatal error' => 'light_red',
137 'Gif-Deanimate' => 'blue',
139 Writing => 'light_green',
140 Received => 'yellow',
142 # ----------------------
145 request_ => 'brown', # host+path but no protocol
146 'ip-address' => 'yellow',
149 Truncation => 'light_red',
151 Timestamp => 'brown',
152 Crunching => 'light_red',
153 crunched => 'light_red',
154 'Request-Line' => 'pink',
156 destination => 'yellow',
157 'http-version' => 'pink',
158 'crunch-pattern' => 'pink',
163 'program-name' => 'cyan',
166 warning => 'light_red',
167 debug => 'light_red',
171 'status-message' => 'light_cyan',
172 'status-code' => 'yellow',
173 'invalid-request' => 'light_red',
175 error => 'light_red',
176 'rewritten-URL' => 'light_red',
177 'pcrs-delimiter' => 'light_red',
178 'ignored' => 'light_red',
179 'action-bits-update' => 'light_red',
180 'configuration-line' => 'red',
181 'content-type' => 'yellow',
182 'HOST' => HEADER_DEFAULT_COLOUR,
187 # Header colours need their own hash so the keys can be accessed properly
189 # Prefilled with headers that should not appear with default header colours
190 Cookie => 'light_red',
191 'Set-Cookie' => 'light_red',
192 Warning => 'light_red',
193 Default => HEADER_DEFAULT_COLOUR,
196 # Crunch reasons need their own hash as well
198 'Unsupported HTTP feature' => 'light_red',
199 Blocked => 'light_red',
200 Untrusted => 'light_red',
201 Redirected => 'green',
202 'CGI Call' => 'white',
203 'DNS failure' => 'red',
204 'Forwarding failed' => 'light_red',
205 'Connection failure' => 'light_red',
206 'Out of memory (may mask other reasons)' => 'light_red',
207 'No reason recorded' => 'light_red',
210 @time_colours = ('white', 'light_gray');
212 # Translate highlight strings into highlight code
213 prepare_highlight_hash(\%header_colours);
214 prepare_highlight_hash(\%reason_colours);
215 prepare_highlight_hash(\%h);
216 prepare_colour_array(\@all_colours);
217 prepare_colour_array(\@time_colours);
224 ###############################################################
225 # Takes a colour string and returns an ANSI escape sequence
226 # (unless --no-syntax-highlighting is used).
227 # XXX: The Rolling Stones reference has to go.
228 ###############################################################
232 return "" if cli_option_is_set('no-syntax-highlighting');
274 my $bg_code = get_background();
276 our $default = default_colours();
278 if (defined($text{$colour})) {
279 $colour_code = ESCAPE;
280 $colour_code .= $text{$colour};
282 $colour_code .= $light{$colour} ? "1" : "2";
284 $colour_code .= $bg_code;
286 debug_message $colour . " is \'" . $colour_code . $colour . $default . "\'" if DEBUG_PAINT_IT;
288 } elsif ($colour =~ /reset/) {
290 $colour_code = default_colours();
294 die "What's $colour supposed to mean?\n";
300 sub get_semantic_html_markup ($) {
301 ###############################################################
302 # Takes a string and returns a span element
303 ###############################################################
308 if ($type =~ /Standard/) {
312 $code = '<span title="' . $type . '" class="' . $type . '">';
318 sub cli_option_is_set ($) {
321 my $cli_option = shift;
323 die "Unknown CLI option: $cli_option" unless defined $cli_options{$cli_option};
325 return $cli_options{$cli_option};
328 sub get_html_title () {
331 return $cli_options{'title'};
335 sub init_css_colours() {
343 purple => "F06", # XXX: wrong
344 cyan => "F09", # XXX: wrong
349 light_green => "33F",
358 sub get_css_colour ($) {
363 die "What's $colour supposed to mean?\n" unless defined($css_colours{$colour});
365 return '#' . $css_colours{$colour};
368 sub get_css_line ($) {
373 $css_line .= '.' . lc($class) . ' {'; # XXX: lc() shouldn't be necessary
374 die "What's $class supposed to mean?\n" unless defined($h_colours{$class});
375 $css_line .= 'color:' . get_css_colour($h_colours{$class}) . ';';
376 $css_line .= 'background-color:' . get_css_colour(DEFAULT_BACKGROUND) . ';';
377 $css_line .= '}' . "\n";
382 sub get_css_line_for_colour ($) {
387 $css_line .= '.' . lc($colour) . ' {'; # XXX: lc() shouldn't be necessary
388 $css_line .= 'color:' . get_css_colour($colour) . ';';
389 $css_line .= 'background-color:' . get_css_colour(DEFAULT_BACKGROUND) . ';';
390 $css_line .= '}' . "\n";
395 # XXX: Wrong solution
396 sub get_missing_css_lines () {
400 $css_line .= '.' . 'default' . ' {';
401 $css_line .= 'color:' . HEADER_DEFAULT_COLOUR . ';';
402 $css_line .= 'background-color:' . get_css_colour(DEFAULT_BACKGROUND) . ';';
403 $css_line .= '}' . "\n";
410 our %css_colours; #XXX: Wrong solution
414 $css .= '.privoxy-log {';
415 $css .= 'color:' . get_css_colour(DEFAULT_TEXT_COLOUR) . ';';
416 $css .= 'background-color:' . get_css_colour(DEFAULT_BACKGROUND) . ';';
419 foreach my $key (keys %h_colours) {
421 next if ($h_colours{$key} =~ m/reset/); #XXX: Wrong solution.
422 $css .= get_css_line($key);
426 foreach my $colour (keys %css_colours) {
428 $css .= get_css_line_for_colour($colour);
432 $css .= get_missing_css_lines(); #XXX: Wrong solution
441 if (cli_option_is_set('html-output')) {
443 my $title = get_html_title();
445 $intro .= '<html><head>';
446 $intro .= '<title>' . $title . '</title>';
447 $intro .= '<style>' . get_css() . '</style>' unless cli_option_is_set('no-embedded-css');
448 $intro .= '</head><body>';
449 $intro .= '<h1>' . $title . '</h1><p class="privoxy-log">';
459 if (cli_option_is_set('html-output')) {
461 $outro = '</p></body></html>';
467 sub get_line_end () {
468 return cli_option_is_set('html-output') ? "<br>\n" : "\n";
471 sub get_colour_html_markup ($) {
472 ###############################################################
473 # Takes a colour string a span element. XXX: WHAT?
474 # XXX: This function shouldn't be necessary, the
475 # markup should always be semantically correct.
476 ###############################################################
481 if ($type =~ /Standard/) {
484 $code = '<span class="' . lc($type) . '">';
490 sub default_colours () {
493 return reset_colours();
496 sub show_colours () {
500 sub reset_colours () {
501 return ESCAPE . "0m";
504 sub set_background ($){
520 if (defined($backgrounds{$colour})) {
521 $bg_code = $backgrounds{$colour};
523 die "Invalid background colour: " . $colour;
527 sub get_background (){
531 sub prepare_highlight_hash ($) {
534 foreach my $key (keys %$ref) {
535 $$ref{$key} = $html_output_mode ?
536 get_semantic_html_markup($key) :
537 paint_it($$ref{$key});
541 sub prepare_colour_array ($) {
544 foreach my $i (0 ... @$ref - 1) {
545 $$ref[$i] = $html_output_mode ?
546 get_colour_html_markup($$ref[$i]) :
551 sub found_unknown_content ($) {
556 return if cli_option_is_set('accept-unknown-messages');
558 return if ($unknown =~ /\[too long, truncated\]$/);
560 $message = "found_unknown_content: Don't know how to highlight: ";
561 # Break line so the log file can later be parsed as Privoxy log file again
562 $message .= '"' . $unknown . '"' . " in:\n";
563 $message .= $req{$t}{'log-message'};
564 debug_message($message);
565 log_parse_error($req{$t}{'log-message'});
567 die "Unworthy content parser" if PUNISH_MISSING_LOG_KNOWLEDGE_WITH_DEATH;
570 sub log_parse_error ($) {
574 if (LOG_UNPARSED_LINES_TO_EXTRA_FILE) {
575 open(my $errorlog_fd, ">>", ERROR_LOG_FILE) || die "Writing " . ERROR_LOG_FILE . " failed";
576 print $errorlog_fd $message;
581 sub debug_message (@) {
584 print $h{'debug'} . "@message" . $h{'Standard'} . "\n";
587 ################################################################################
588 # highlighter functions that aren't loglevel-specific
589 ################################################################################
593 # Get highlight marker
594 my $highlight = shift; # XXX: Stupid name;
598 if (defined($highlight)) {
600 $result = $h{$highlight};
604 $message = "h: Don't recognize highlighter $highlight.";
605 debug_message($message);
606 log_parser_error($message);
607 die "Unworthy highlighter function" if PUNISH_MISSING_HIGHLIGHT_KNOWLEDGE_WITH_DEATH;
613 sub highlight_known_headers ($) {
617 debug_message("Searching $content for things to highlight.") if DEBUG_HEADER_HIGHLIGHTING;
619 if ($content =~ m/(?<=\s)($header_highlight_regex):/) {
621 $content =~ s@(?<=[\s|'])($header)(?=:)@$header_colours{$header}$1$h{'Standard'}@ig;
622 debug_message("Highlighted '$header' in '$content'") if DEBUG_HEADER_HIGHLIGHTING;
628 sub highlight_matched_request_line ($$) {
630 my $result = shift; # XXX: Stupid name;
632 if ($result =~ m@(.*)($regex)(.*)@) {
633 $result = $1 . highlight_request_line($2) . $3
638 sub highlight_request_line ($) {
641 my ($method, $url, $http_version);
643 #GET http://images.sourceforge.net/sfx/icon_warning.gif HTTP/1.1
644 if ($rl =~ m/Invalid request/) {
646 $rl = h('invalid-request') . $rl . h('Standard');
648 } elsif ($rl =~ m/^([-\w]+) (.*) (HTTP\/\d\.\d)/) {
650 # XXX: might not match in case of HTTP method fuzzing.
651 # XXX: save these: ($method, $path, $http_version) = ($1, $2, $3);
652 $rl =~ s@^(\w+)@$h{'method'}$1$h{'Standard'}@;
653 if ($rl =~ /http:\/\//) {
654 $rl = highlight_matched_url($rl, '[^\s]*(?=\sHTTP)');
656 $rl = highlight_matched_pattern($rl, 'request_', '[^\s]*(?=\sHTTP)');
659 $rl =~ s@(HTTP\/\d\.\d)$@$h{'http-version'}$1$h{'Standard'}@;
661 } elsif ($rl =~ m/\.\.\. \[too long, truncated\]$/) {
663 $rl =~ s@^(\w+)@$h{'method'}$1$h{'Standard'}@;
664 $rl = highlight_matched_url($rl, '[^\s]*(?=\.\.\.)');
666 } elsif ($rl =~ m/^ $/) {
668 $rl = h('error') . "No request line specified!" . h('Standard');
672 debug_message ("Can't parse request line: $rl");
679 sub highlight_response_line ($) {
682 my ($http_version, $status_code, $status_message);
687 # TODO: Mark different status codes differently
689 if ($rl =~ m/((?:HTTP\/\d\.\d|ICY)) (\d+) (.*)/) {
690 ($http_version, $status_code, $status_message) = ($1, $2, $3);
692 debug_message ("Can't parse response line: $rl") and die 'Fix this';
695 # Rebuild highlighted
697 $rl .= h('http-version') . $http_version . h('Standard');
699 $rl .= h('status-code') . $status_code . h('Standard');
701 $rl .= h('status-message') . $status_message . h('Standard');
706 sub highlight_matched_url ($$) {
708 my $result = shift; # XXX: Stupid name;
711 #print "Got $result, regex ($regex)\n";
713 if ($result =~ m@(.*?)($regex)(.*)@) {
714 $result = $1 . highlight_url($2) . $3;
715 #print "Now the result is $result\n";
721 sub highlight_matched_host ($$) {
723 my ($result, $regex) = @_; # XXX: result ist stupid name;
725 if ($result =~ m@(.*?)($regex)(.*)@) {
726 $result = $1 . $h{host} . $2 . $h{Standard} . $3;
732 sub highlight_matched_pattern ($$$) {
734 my $result = shift; # XXX: Stupid name;
738 die "Unknown key $key" unless defined $h{$key};
740 if ($result =~ m@(.*?)($regex)(.*)@) {
741 $result = $1 . h($key) . $2 . h('Standard') . $3;
747 sub highlight_matched_path ($$) {
749 my $result = shift; # XXX: Stupid name;
752 if ($result =~ m@(.*?)($regex)(.*)@) {
753 $result = $1 . h('path') . $2 . h('Standard') . $3;
759 sub highlight_url ($) {
763 if ($html_output_mode) {
765 $url = '<a href="' . $url . '">' . $url . '</a>';
769 $url = h('URL') . $url . h('Standard');
776 sub update_header_highlight_regex ($) {
779 my $headers = join ('|', keys %header_colours);
781 $header_highlight_regex = qr/$headers/;
782 print "Registering '$header'\n" if DEBUG_HEADER_HIGHLIGHTING;
785 ################################################################################
786 # loglevel-specific highlighter functions
787 ################################################################################
789 sub handle_loglevel_header ($) {
793 if ($c =~ /^scan:/) {
795 if ($c =~ m/^scan: ([^: ]+):/) {
797 # Register new headers
798 # scan: Accept: image/png,image/*;q=0.8,*/*;q=0.5
800 if (!defined($header_colours{$header}) and $header =~ /^[\d\w-]*$/) {
801 debug_message "Registering previously unknown header $1" if DEBUG_HEADER_REGISTERING;
803 if (REGISTER_HEADERS_WITH_THE_SAME_COLOUR) {
804 $header_colours{$header} = $header_colours{'Default'};
806 $header_colours{$header} = $all_colours[$header_colour_index % @all_colours];
807 $header_colour_index++;
809 update_header_highlight_regex($header);
812 } elsif ($c =~ m/^(scan: )(\w+ .+ HTTP\/\d\.\d)/) {
814 # scan: GET http://p.p/ HTTP/1.1
815 $c = $1 . highlight_request_line($2);
817 } elsif ($c =~ m/^(scan: )((?:HTTP\/\d\.\d|ICY) (\d+) (.*))/) {
819 # scan: HTTP/1.1 200 OK
820 $req{$t}{'response_line'} = $2;
821 $req{$t}{'status_code'} = $3;
822 $req{$t}{'status_message'} = $4;
823 $c = $1 . highlight_response_line($req{$t}{'response_line'});
826 } elsif ($c =~ m/^Crunching (?:server|client) header: .* \(contains: ([^\)]*)\)/) {
828 # Crunching server header: Set-Cookie: trac_form_token=d5308c34e16d15e9e301a456; (contains: Cookie:)
829 $c =~ s@(?<=contains: )($1)@$h{'crunch-pattern'}$1$h{'Standard'}@;
830 $c =~ s@(Crunching)@$h{$1}$1$h{'Standard'}@;
832 } elsif ($c =~ m/^New host is: ([^\s]*)\./) {
834 # New host is: trac.vidalia-project.net. Crunching Referer: http://www.vidalia-project.net/!
835 $c = highlight_matched_host($c, '(?<=New host is: )[^\s]+(?=\.)');
836 $c = highlight_matched_url($c, '(?<=Crunching Referer: )[^\s!]+');
838 } elsif ($c =~ m/^Text mode enabled by force. (Take cover)!/) {
840 # Text mode enabled by force. Take cover!
841 $c =~ s@($1)@$h{'warning'}$1$h{'Standard'}@;
843 } elsif ($c =~ m/^(New HTTP Request-Line: )(.*)/) {
845 # New HTTP Request-Line: GET http://www.privoxy.org/ HTTP/1.1
846 $c = $1 . highlight_request_line($2);
848 } elsif ($c =~ m/^Adjust(ed)? Content-Length to \d+/) {
850 # Adjusted Content-Length to 2132
851 # Adjust Content-Length to 33533
852 $c =~ s@(?<=Content-Length to )(\d+)@$h{'Number'}$1$h{'Standard'}@;
853 $c = highlight_known_headers($c);
855 } elsif ($c =~ m/^Destination extracted from "Host:" header. New request URL:/) {
857 # Destination extracted from "Host:" header. New request URL: http://www.cccmz.de/~ridcully/blog/
858 $c = highlight_matched_url($c, '(?<=New request URL: ).*');
860 } elsif ($c =~ m/^Couldn\'t parse:/) {
862 # XXX: These should probable be logged with LOG_LEVEL_ERROR
863 # Couldn't parse: If-Modified-Since: Wed, 21 Mar 2007 16:34:50 GMT (crunching!)
864 # Couldn't parse: at, 24 Mar 2007 13:46:21 GMT in If-Modified-Since: Sat, 24 Mar 2007 13:46:21 GMT (crunching!)
865 $c =~ s@^(Couldn\'t parse)@$h{'error'}$1$h{'Standard'}@;
867 } elsif ($c =~ /^Tagger \'([^\']*)\' added tag \'([^\']*)\'/ or
868 $c =~ m/^Adding tag \'([^\']*)\' created by header tagger \'([^\']*)\'/) {
870 # Adding tag 'GET request' created by header tagger 'method-man' (XXX: no longer used)
871 # Tagger 'revalidation' added tag 'REVALIDATION-REQUEST'. No action bit update necessary.
872 # Tagger 'revalidation' added tag 'REVALIDATION-REQUEST'. Action bits updated accordingly.
874 # XXX: Save tag and tagger
876 $c =~ s@(?<=^Tagger \')([^\']*)@$h{'tagger'}$1$h{'Standard'}@;
877 $c =~ s@(?<=added tag \')([^\']*)@$h{'tag'}$1$h{'Standard'}@;
878 $c =~ s@(?<=Action bits )(updated)@$h{'action-bits-update'}$1$h{'Standard'}@;
879 $no_special_header_highlighting = 1;
881 } elsif ($c =~ /^Tagger \'([^\']*)\' didn['']t add tag \'([^\']*)\'/) {
883 # Tagger 'revalidation' didn't add tag 'REVALIDATION-REQUEST'. Tag already present
884 # XXX: Save tag and tagger
886 $c =~ s@(?<=^Tagger \')([^\']*)@$h{'tag'}$1$h{'Standard'}@;
887 $c =~ s@(?<=didn['']t add tag \')([^\']*)@$h{'tagger'}$1$h{'Standard'}@;
889 } elsif ($c =~ m/^(?:scan:|Randomiz|addh:|Adding:|Removing:|Referer:|Modified:|Accept-Language header|[Cc]ookie)/
890 or $c =~ m/^(Text mode is already enabled|Denied request with NULL byte|Replaced:|add-unique:)/
891 or $c =~ m/^(Crunched (incoming|outgoing) cookie|Suppressed offer|Accepted the client)/
892 or $c =~ m/^(addh-unique|Referer forged to)/
893 or $c =~ m/^Downgraded answer to HTTP\/1.0/
894 or $c =~ m/^Parameter: \+hide-referrer\{[^\}]*\} is a bad idea, but I don\'t care./
895 or $c =~ m/^Referer (?:overwritten|replaced) with: Referer: / #XXX: should this be highlighted?
896 or $c =~ m/^Referer crunched!/
897 or $c =~ m/^crunched x-forwarded-for!/
898 or $c =~ m/^crunched From!/
899 or $c =~ m/^ modified$/
900 or $c =~ m/^Content filtering is enabled. Crunching:/
901 or $c =~ m/^force-text-mode overruled the client/
902 or $c =~ m/^Server time in the future\./
903 or $c =~ m/^content-disposition header crunched and replaced with:/i
904 or $c =~ m/^Reducing white space in /
905 or $c =~ m/^Ignoring single quote in /
906 or $c =~ m/^Converting tab to space in /
907 or $c =~ m/A HTTP\/1\.1 response without/
908 or $c =~ m/Disabled filter mode on behalf of the client/
909 or $c =~ m/Keeping the (?:server|client) header /
910 or $c =~ m/Content modified with no Content-Length header set/
911 or $c =~ m/^Appended client IP address to/
912 or $c =~ m/^Removing 'Connection: close' to imply keep-alive./
913 or $c =~ m/^keep-alive support is disabled/
914 or $c =~ m/^Continue hack in da house/
915 or $c =~ m/^Merged multiple header lines to:/
916 or $c =~ m/^Added header: /
917 or $c =~ m/^Enlisting (?:sorted|left-over) header/
920 # XXX: Some of these may need highlighting
922 # Modified: User-Agent: Mozilla/5.0 (X11; U; SunOS i86pc; pl-PL; rv:1.8.1.1) Gecko/20070214 Firefox/2.0.0.1
923 # Accept-Language header crunched and replaced with: Accept-Language: pl-pl
924 # cookie 'Set-Cookie: eZSessionCookie=07bfec287c197440d299f81580593c3d; \
925 # expires=Thursday, 12-Apr-07 15:16:18 GMT; path=/' send by \
926 # http://wirres.net/article/articleview/4265/1/6/ appears to be using time format 1 (XXX: gone with the wind)
927 # Cookie rewritten to a temporary one: Set-Cookie: NSC_gffe-iuuq-mc-wtfswfs=8efb33a53660;path=/
928 # Text mode is already enabled
929 # Denied request with NULL byte(s) turned into line break(s)
930 # Replaced: 'Connection: Yo, home to Bel Air' with 'Connection: close'
931 # addh-unique: Host: people.freebsd.org
932 # Suppressed offer to compress content
933 # Crunched incoming cookie -- yum!
934 # Accepted the client's request to fetch without filtering.
935 # Crunched outgoing cookie: Cookie: PREF=ID=6cf0abd347b30262:TM=1173357617:LM=1173357617:S=jZypyyJ7LPiwFi1_
936 # addh-unique: Host: subkeys.pgp.net:11371
937 # Referer forged to: Referer: http://10.0.0.1/
938 # Downgraded answer to HTTP/1.0
939 # Parameter: +hide-referrer{pille-palle} is a bad idea, but I don't care.
940 # Referer overwritten with: Referer: pille-palle
941 # Referer replaced with: Referer: pille-palle
942 # crunched x-forwarded-for!
944 # modified # XXX: pretty stupid log message
945 # Content filtering is enabled. Crunching: 'Range: 1234-5678' to prevent range-mismatch problems
946 # force-text-mode overruled the client's request to fetch without filtering!
947 # Server time in the future.
948 # content-disposition header crunched and replaced with: content-disposition: filename=baz
949 # Content-Disposition header crunched and replaced with: content-disposition: filename=baz
950 # Reducing white space in 'X-LWS-Test: "This is quoted" this is not "this is " but " this again is not'
951 # Ignoring single quote in 'X-LWS-Test: "This is quoted" this is not "this is " but " this again is not'
952 # Converting tab to space in 'X-LWS-Test: "This is quoted" this is not "this is " but "\
954 # A HTTP/1.1 response without Connection header implies keep-alive.
955 # Disabled filter mode on behalf of the client.
956 # Keeping the server header 'Connection: keep-alive' around.
957 # Keeping the client header 'Connection: close' around. The connection will not be kept alive.
958 # Keeping the client header 'Connection: keep-alive' around. The connection will be kept alive if possible.
959 # Content modified with no Content-Length header set. Creating a fake one for adjustment later on.
960 # Appended client IP address to X-Forwarded-For: 10.0.0.2, 10.0.0.1
961 # Removing 'Connection: close' to imply keep-alive.
962 # keep-alive support is disabled. Crunching: Keep-Alive: 300.
963 # Continue hack in da house.
964 # Merged multiple header lines to: 'X-FORWARDED-PROTO: http X-HOST: 127.0.0.1'
965 # Added header: Content-Encoding: deflate
966 # Enlisting sorted header User-Agent: Mozilla/5.0 (X11; SunOS i86pc; rv:10.0.3) Gecko/20100101 Firefox/10.0.3
967 # Enlisting left-over header Connection: close
969 } elsif ($c =~ m/^scanning headers for:/) {
971 return '' unless SHOW_SCAN_INTRO;
973 } elsif ($c =~ m/^[Cc]runch(ing|ed)|crumble crunched:/) {
974 # crunched User-Agent!
975 # Crunching: Content-Encoding: gzip
977 $c =~ s@(Crunching|crunched)@$h{$1}$1$h{'Standard'}@;
979 } elsif ($c =~ m/^Offending request data with NULL bytes turned into \'°\' characters:/) {
981 # Offending request data with NULL bytes turned into '°' characters: °°n°°(°°°
983 $c = h('warning') . $c . h('Standard');
985 } elsif ($c =~ m/^(Transforming \")(.*?)(\" to \")(.*?)(\")/) {
987 # Transforming "Proxy-Authenticate: Basic realm="Correos Proxy Server"" to\
988 # "Proxy-Authenticate: Basic realm="Correos Proxy Server""
990 $c =~ s@(?<=^Transforming \")(.*)(?=\" to)@$h{'Header'}$1$h{'Standard'}@;
991 $c =~ s@(?<=to \")(.*)(?=\")@$h{'Header'}$1$h{'Standard'}@;
993 } elsif ($c =~ m/^Removing empty header/) {
995 # Removing empty header
998 } elsif ($c =~ m/^Content-Type: .* not replaced/) {
1000 # Content-Type: application/octet-stream not replaced. It doesn't look like text.\
1001 # Enable force-text-mode if you know what you're doing.
1002 # XXX: Could highlight more here.
1003 $c =~ s@(?<=^Content-Type: )(.*)(?= not replaced)@$h{'content-type'}$1$h{'Standard'}@;
1005 } elsif ($c =~ m/^(Server|Client) keep-alive timeout is/) {
1007 # Server keep-alive timeout is 5. Sticking with 10.
1008 # Client keep-alive timeout is 20. Sticking with 10.
1010 $c =~ s@(?<=timeout is )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1011 $c =~ s@(?<=Sticking with )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1013 } elsif ($c =~ m/^Reducing keep-alive timeout/) {
1015 # Reducing keep-alive timeout from 60 to 10.
1017 $c =~ s@(?<= from )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1018 $c =~ s@(?<= to )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1020 } elsif ($c =~ m/^Killed all-caps Host header line: HOST:/) {
1022 # Killed all-caps Host header line: HOST: bestproxydb.com
1023 $c = highlight_matched_host($c, '(?<=HOST: )[^\s]+');
1024 $c = highlight_matched_pattern($c, 'HOST', 'HOST');
1028 found_unknown_content($c);
1032 unless ($c =~ m/^Transforming/) {
1033 $c = highlight_known_headers($c) unless $no_special_header_highlighting;
1039 sub handle_loglevel_re_filter ($) {
1041 my $content = shift;
1045 if ($c =~ m/^(?:re_)?filtering ([^\s]+) \(size (\d+)\) with (?:filter )?\'?([^\s]+?)\'? produced (\d+) hits \(new size (\d+)\)/) {
1047 # XXX: only the second version gets highlighted properly.
1048 # re_filtering www.lfk.de/favicon.ico (size 209) with filter untrackable-hulk produced 0 hits (new size 209).
1049 # filtering aci.blogg.de/ (size 37988) with 'blogg.de' produced 3 hits (new size 38057)
1050 $req{$t}{'content_source'} = $1;
1051 $req{$t}{'content_size'} = $2;
1052 $req{$t}{'content_filter'} = $3;
1053 $req{$t}{'content_hits'} = $4;
1054 $req{$t}{'new_content_size'} = $5;
1055 $req{$t}{'content_size_change'} = $req{$t}{'new_content_size'} - $req{$t}{'content_size'};
1056 #return '' if ($req{$t}{'content_hits'} == 0 && !cli_option_is_set('show-ineffective-filters'));
1057 if ($req{$t}{'content_hits'} == 0 and
1058 not (cli_option_is_set('show-ineffective-filters')
1059 or ($req{$t}{'content_filter'} =~ m/^privoxy-filter-test$/))) {
1063 $c =~ s@(?<=\(size )(\d+)\)(?= with)@$h{'Number'}$1$h{'Standard'}@;
1064 $c =~ s@(?<=\(new size )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1065 $c =~ s@(?<=produced )(\d+)(?= hits)@$h{'Number'}$1$h{'Standard'}@;
1067 $c =~ s@([^\s]+?)(\'? produced)@$h{'filter'}$1$h{'Standard'}$2@;
1068 $c = highlight_matched_host($c, '(?<=filtering )[^\s]+');
1071 $c .= "(" . $h{'Number'};
1072 $c .= "+" if ($req{$t}{'content_size_change'} >= 0);
1073 $c .= $req{$t}{'content_size_change'} . $h{'Standard'} . ")";
1076 } elsif ($c =~ /\.{3}$/
1077 and $c =~ m/^(?:re_)?filtering \'?(.*?)\'? \(size (\d*)\) with (?:filter )?\'?([^\s]*?)\'? ?\.{3}$/) {
1079 # Used by Privoxy 3.0.5 and 3.0.6:
1081 # Used by Privoxy 3.0.7:
1082 # filtering 'Connection: close' (size 17) with 'generic-content-ads' ...
1084 $req{$t}{'filtered_header'} = $1;
1085 $req{$t}{'old_header_size'} = $2;
1086 $req{$t}{'header_filter_name'} = $3;
1088 unless (cli_option_is_set('show-ineffective-filters') or
1089 $req{$t}{'header_filter_name'} =~ m/^privoxy-filter-test$/) {
1092 $content =~ s@(?<=\(size )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1093 $content =~ s@($req{$t}{'header_filter_name'})@$h{'filter'}$1$h{'Standard'}@;
1095 } elsif ($c =~ m/^ ?\.\.\. ?produced (\d*) hits \(new size (\d*)\)\./) {
1097 # ...produced 0 hits (new size 23).
1098 #... produced 1 hits (new size 54).
1100 $req{$t}{'header_filter_hits'} = $1;
1101 $req{$t}{'new_header_size'} = $2;
1103 unless (cli_option_is_set('show-ineffective-filters') or
1104 (defined($req{$t}{'header_filter_name'}) and
1105 $req{$t}{'header_filter_name'} =~ m/^privoxy-filter-test$/)) {
1107 if ($req{$t}{'header_filter_hits'} == 0 and
1108 not (defined($req{$t}{'header_filter_name'}) and
1109 $req{$t}{'header_filter_name'} =~ m/^privoxy-filter-test$/)) {
1112 # Reformat including information from the intro
1113 $c = "'" . h('filter') . $req{$t}{'header_filter_name'} . h('Standard') . "'";
1115 # XXX: Hide behind constant, it may be interesting if LOG_LEVEL_HEADER isn't enabled as well.
1116 # $c .= $req{$t}{'filtered_header'} . " ";
1117 $c .= h('Number') . $req{$t}{'header_filter_hits'}. h('Standard');
1118 $c .= ($req{$t}{'header_filter_hits'} == 1) ? " time, " : " times, ";
1120 if ($req{$t}{'old_header_size'} != $req{$t}{'new_header_size'}) {
1122 $c .= "changing size from ";
1123 $c .= h('Number') . $req{$t}{'old_header_size'} . h('Standard');
1125 $c .= h('Number') . $req{$t}{'new_header_size'} . h('Standard');
1130 $c .= "keeping the size at " . $req{$t}{'old_header_size'};
1134 # Highlight from last line (XXX: What?)
1135 # $c =~ s@(?<=produced )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1136 # $c =~ s@($req{$t}{'header_filter_name'})@$h{'filter'}$1$h{'Standard'}@;
1141 $c =~ s@(?<=produced )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1142 $c =~ s@(?<=new size )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1147 } elsif ($c =~ m/^(Tagger|Filter) ([^\s]*) has empty joblist. Nothing to do./) {
1149 # Filter privoxy-filter-test has empty joblist. Nothing to do.
1150 # Tagger variable-test has empty joblist. Nothing to do.
1152 $content =~ s@(?<=$1 )([^\s]*)@$h{'filter'}$1$h{'Standard'}@;
1154 } elsif ($c =~ m/^De-chunking successful. Shrunk from (\d+) to (\d+)/) {
1156 $req{$t}{'chunked-size'} = $1;
1157 $req{$t}{'dechunked-size'} = $2;
1158 $req{$t}{'dechunk-change'} = $req{$t}{'dechunked-size'} - $req{$t}{'chunked-size'};
1160 $content .= " (" . h('Number') . $req{$t}{'dechunk-change'} . h('Standard') . ")";
1162 $content =~ s@(?<=from )($req{$t}{'chunked-size'})@$h{'Number'}$1$h{'Standard'}@;
1163 $content =~ s@(?<=to )($req{$t}{'dechunked-size'})@$h{'Number'}$1$h{'Standard'}@;
1165 } elsif ($c =~ m/^Decompression successful. Old size: (\d+), new size: (\d+)./) {
1167 # Decompression successful. Old size: 670, new size: 1166.
1169 $req{$t}{'size-compressed'} = $1;
1170 $req{$t}{'size-decompressed'} = $2;
1171 $req{$t}{'decompression-gain'} = $req{$t}{'size-decompressed'} - $req{$t}{'size-compressed'};
1173 $content =~ s@(?<=Old size: )($req{$t}{'size-compressed'})@$h{'Number'}$1$h{'Standard'}@;
1174 $content =~ s@(?<=new size: )($req{$t}{'size-decompressed'})@$h{'Number'}$1$h{'Standard'}@;
1176 # XXX: Create sub get_percentage()
1177 if ($req{$t}{'size-decompressed'}) {
1178 $req{$t}{'decompression-gain-percent'} =
1179 $req{$t}{'decompression-gain'} / $req{$t}{'size-decompressed'} * 100;
1181 $content .= " (saved: ";
1182 #$content .= h('Number') . $req{$t}{'decompression-gain'} . h('Standard');
1184 $content .= h('Number') . sprintf("%.2f%%", $req{$t}{'decompression-gain-percent'}) . h('Standard');
1188 } elsif ($c =~ m/^(Need to de-chunk first)/) {
1190 # Need to de-chunk first
1191 return '' if SUPPRESS_NEED_TO_DE_CHUNK_FIRST;
1193 } elsif ($c =~ m/^(Adding (?:dynamic )?re_filter job)/) {
1195 return '' if (SUPPRESS_SUCCEEDED_FILTER_ADDITIONS && m/succeeded/);
1197 # Adding re_filter job ...
1198 # Adding dynamic re_filter job s@^(?:\w*)\s+.*\s+HTTP/\d\.\d\s*@IP-ADDRESS: $origin@D\
1199 # to filter client-ip-address succeeded.
1201 } elsif ($c =~ m/^Compressed content from /) {
1203 # Compressed content from 29258 to 8630 bytes. Compression level: 3
1204 $content =~ s@(?<=from )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1205 $content =~ s@(?<=to )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1206 $content =~ s@(?<=level: )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1208 } elsif ($c =~ m/^Reading in filter/) {
1210 return '' unless SHOW_FILTER_READIN_IN;
1214 found_unknown_content($content);
1221 sub handle_loglevel_redirect ($) {
1225 if ($c =~ m/^Decoding "([^""]*)"/) {
1227 $req{$t}{'original-destination'} = $1;
1228 $c = highlight_matched_path($c, '(?<=Decoding ")[^"]*');
1231 } elsif ($c =~ m/^Checking/) {
1233 # Checking /_ylt=A0geu.Z76BRGR9k/**http://search.yahoo.com/search?p=view+odb+presentation+on+freebsd\
1234 # &ei=UTF-8&xargs=0&pstart=1&fr=moz2&b=11 for redirects.
1236 # TODO: Change colour if really url-decoded
1237 $req{$t}{'decoded-original-destination'} = $1;
1238 $c = highlight_matched_path($c, '(?<=Checking ")[^"]*');
1241 } elsif ($c =~ m/^pcrs command "([^""]*)" changed /) {
1243 # pcrs command "s@&from=rss@@" changed \
1244 # "http://it.slashdot.org/article.pl?sid=07/03/02/1657247&from=rss"\
1245 # to "http://it.slashdot.org/article.pl?sid=07/03/02/1657247" (1 hit).
1246 $c =~ s@(?<=pcrs command )"([^""]*)"@$h{'filter'}$1$h{'Standard'}@;
1247 $c = highlight_matched_url($c, '(?<=changed ")[^""]*');
1248 $c =~ s@(?<=changed )"([^""]*)"@$1@; # Remove quotes
1249 $c = highlight_matched_url($c, '(?<=to ")[^""]*');
1250 $c =~ s@(?<=to )"([^""]*)"@$1@; # Remove quotes
1251 $c =~ s@(\d+)(?= hits?)@$h{'hits'}$1$h{'Standard'}@;
1253 } elsif ($c =~ m/^pcrs command "([^""]*)" didn\'t change/) {
1255 # pcrs command "s@^http://([^.]+?)/?$@http://www.bing.com/search?q=$1@" didn't \
1256 # change "http://www.example.org/".
1257 $c =~ s@(?<=pcrs command )"([^""]*)"@$h{'filter'}$1$h{'Standard'}@;
1258 $c = highlight_matched_url($c, '(?<=change ")[^""]*');
1260 } elsif ($c =~ m/(^New URL is: )(.*)/) {
1262 # New URL is: http://it.slashdot.org/article.pl?sid=07/03/04/1511210
1263 # XXX: Use URL highlighter
1265 $c = $1 . h('rewritten-URL') . $2 . h('Standard');
1267 } elsif ($c =~ m/No pcrs command recognized, assuming that/) {
1268 # No pcrs command recognized, assuming that "http://config.privoxy.org/user-manual/favicon.png"\
1269 # is already properly formatted.
1270 # XXX: assume the same?
1271 $c = highlight_matched_url($c, '(?<=assuming that \")[^"]*');
1273 } elsif ($c =~ m/^Percent-encoding redirect/) {
1275 # Percent-encoding redirect URL: http://www.example.org/\x02
1276 $c = highlight_matched_url($c, '(?<=redirect URL: ).*');
1280 found_unknown_content($c);
1287 sub handle_loglevel_gif_deanimate ($) {
1289 my $content = shift;
1291 if ($content =~ m/Success! GIF shrunk from (\d+) bytes to (\d+)\./) {
1293 my $bytes_from = $1;
1295 # Gif-Deanimate: Success! GIF shrunk from 205 bytes to 133.
1296 $content =~ s@$bytes_from@$h{'Number'}$bytes_from$h{'Standard'}@;
1297 # XXX: Do we need g in case of ($1 == $2)?
1298 $content =~ s@$bytes_to@$h{'Number'}$bytes_to$h{'Standard'}@;
1300 } elsif ($content =~ m/GIF (not) changed/) {
1302 # Gif-Deanimate: GIF not changed.
1303 return '' if SUPPRESS_GIF_NOT_CHANGED;
1304 $content =~ s@($1)@$h{'not'}$1$h{'Standard'}@;
1306 } elsif ($content =~ m/^failed! \(gif parsing\)/) {
1308 # failed! (gif parsing)
1309 # XXX: Replace this error message with something less stupid
1310 $content =~ s@(failed!)@$h{'error'}$1$h{'Standard'}@;
1312 } elsif ($content =~ m/^Need to de-chunk first/) {
1314 # Need to de-chunk first
1315 return '' if SUPPRESS_NEED_TO_DE_CHUNK_FIRST;
1317 } elsif ($content =~ m/^(?:No GIF header found|failed while parsing)/) {
1319 # No GIF header found (XXX: Did I ever commit this?)
1320 # failed while parsing 195 134747048 (XXX: never committed)
1322 # Ignore these for now
1326 found_unknown_content($content);
1333 sub handle_loglevel_request ($) {
1335 my $content = shift;
1337 if ($content =~ m/crunch! /) {
1339 # config.privoxy.org/send-stylesheet crunch! (CGI Call)
1341 # Highlight crunch reasons
1342 foreach my $reason (keys %reason_colours) {
1343 $content =~ s@\(($reason)\)@$reason_colours{$reason}($1)$h{'Standard'}@g;
1345 # Highlight request URL domain and ditch 'crunch!'
1346 $content = highlight_matched_pattern($content, 'request_', '[^ ]*(?= crunch!)');
1347 $content =~ s@ crunch!@@;
1349 } elsif ($content =~ m/\[too long, truncated\]$/) {
1351 # config.privoxy.org/edit-actions-submit?f=3&v=1176116716&s=7&Submit=Submit[...]&filter... [too long, truncated]
1352 $content = highlight_matched_pattern($content, 'request_', '^.*(?=\.\.\. \[too long, truncated\]$)');
1354 } elsif ($content =~ m/(.*)/) { # XXX: Pretty stupid
1356 # trac.vidalia-project.net/wiki/Volunteer?format=txt
1357 $content = h('request_') . $content . h('Standard');
1361 found_unknown_content($content);
1368 sub handle_loglevel_crunch ($) {
1370 my $content = shift;
1372 # Highlight crunch reason
1373 foreach my $reason (keys %reason_colours) {
1374 $content =~ s@($reason)@$reason_colours{$reason}$1$h{'Standard'}@g;
1377 if ($content =~ m/\[too long, truncated\]$/) {
1379 # Blocked: config.privoxy.org/edit-actions-submit?f=3&v=1176116716&s=7&Submit=Submit\
1380 # [...]&filter... [too long, truncated]
1381 $content = highlight_matched_pattern($content, 'request_', '^.*(?=\.\.\. \[too long, truncated\]$)');
1385 # Blocked: http://ads.example.org/
1386 $content = highlight_matched_pattern($content, 'request_', '(?<=: ).*');
1392 sub handle_loglevel_connect ($) {
1396 if ($c =~ m/^via [^\s]+ to: [^\s]+/) {
1398 # Connect: via 10.0.0.1:8123 to: www.example.org.noconnect
1400 $c = highlight_matched_host($c, '(?<=via )[^\s]+');
1401 $c = highlight_matched_host($c, '(?<=to: )[^\s]+');
1403 } elsif ($c =~ m/^connect to: .* failed: .*/) {
1405 # connect to: www.example.org.noconnect failed: Operation not permitted
1407 $c = highlight_matched_host($c, '(?<=connect to: )[^\s]+');
1409 $c =~ s@(?<=failed: )(.*)@$h{'error'}$1$h{'Standard'}@;
1411 } elsif ($c =~ m/^to ([^\s]*)( successful)?$/) {
1413 # Connect: to www.nzherald.co.nz successful
1414 # Connect: to archiv.radiotux.de
1416 return '' if SUPPRESS_SUCCESSFUL_CONNECTIONS;
1417 $c = highlight_matched_host($c, '(?<=to )[^\s]+');
1419 } elsif ($c =~ m/^to ([^\s]*)$/) {
1421 # Connect: to lists.sourceforge.net:443
1423 $c = highlight_matched_host($c, '(?<=to )[^\s]+');
1425 } elsif ($c =~ m/^accepted connection from .*/ or
1428 # accepted connection from 10.0.0.1 on socket 5
1429 # Privoxy 3.0.6 and earlier just say:
1431 $c = highlight_matched_host($c, '(?<=connection from )[^ ]*');
1432 $c = highlight_matched_pattern($c, 'Number', '(?<=socket )\d+');
1434 } elsif ($c =~ m/^Closing client socket/) {
1436 # Closing client socket 5. Keep-alive: 0, Socket alive: 1. Data available: 0.
1437 $c = highlight_matched_pattern($c, 'Number', '(?<=socket )\d+');
1438 $c = highlight_matched_pattern($c, 'Number', '(?<=Keep-alive: )\d+');
1439 $c = highlight_matched_pattern($c, 'Number', '(?<=Socket alive: )\d+');
1440 $c = highlight_matched_pattern($c, 'Number', '(?<=available: )\d+');
1442 } elsif ($c =~ m/^write header to: .* failed:/) {
1444 # write header to: 10.0.0.1 failed: Broken pipe
1446 $c = highlight_matched_host($c, '(?<=write header to: )[^\s]*');
1447 $c =~ s@(?<=failed: )(.*)@$h{'Error'}$1$h{'Standard'}@;
1449 } elsif ($c =~ m/^write header to client failed:/) {
1451 # write header to client failed: Broken pipe
1453 $c =~ s@(?<=failed: )(.*)@$h{'Error'}$1$h{'Standard'}@;
1455 } elsif ($c =~ m/^socks4_connect:/) {
1457 # socks4_connect: SOCKS request rejected or failed.
1458 $c =~ s@(?<=socks4_connect: )(.*)@$h{'Error'}$1$h{'Standard'}@;
1460 } elsif ($c =~ m/^Listening for new connections/ or
1461 $c =~ m/^accept connection/) {
1463 # Privoxy versions above 3.0.6 say:
1464 # Listening for new connections ...
1465 # earlier versions say:
1466 # accept connection ...
1469 } elsif ($c =~ m/^accept failed:/) {
1471 $c =~ s@(?<=accept failed: )(.*)@$h{'Error'}$1$h{'Standard'}@;
1473 } elsif ($c =~ m/^Overriding forwarding settings/) {
1475 # Overriding forwarding settings based on 'forward 10.0.0.1:8123'
1476 $c =~ s@(?<=based on \')(.*)(?=\')@$h{'configuration-line'}$1$h{'Standard'}@;
1478 } elsif ($c =~ m/^Denying suspicious CONNECT request from/) {
1480 # Denying suspicious CONNECT request from 10.0.0.1
1481 $c = highlight_matched_host($c, '(?<=from )[^\s]+'); # XXX: not an URL
1483 } elsif ($c =~ m/^socks5_connect:/) {
1485 $c =~ s@(?<=socks5_connect: )(.*)@$h{'error'}$1$h{'Standard'}@;
1487 } elsif ($c =~ m/^Created new connection to/) {
1489 # Created new connection to www.privoxy.org:80 on socket 11.
1490 $c = highlight_matched_host($c, '(?<=connection to )[^\s]+');
1491 $c =~ s@(?<=on socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1493 } elsif ($c =~ m/^Found reusable socket/) {
1495 # Found reusable socket 9 for www.privoxy.org:80 in slot 0.
1497 # Found reusable socket 8 for www.privoxy.org:80 in slot 2.\
1498 # Timestamp made 0 seconds ago. Timeout: 1. Latency: 0.
1499 $c =~ s@(?<=Found reusable socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1500 $c = highlight_matched_host($c, '(?<=for )[^\s]+');
1501 $c =~ s@(?<=in slot )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1502 $c =~ s@(?<=made )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1503 $c =~ s@(?<=Timeout: )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1504 $c =~ s@(?<=Latency: )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1506 } elsif ($c =~ m/^Marking open socket/) {
1508 # Marking open socket 9 for www.privoxy.org:80 in slot 0 as unused.
1509 $c =~ s@(?<=Marking open socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1510 $c = highlight_matched_host($c, '(?<=for )[^\s]+');
1511 $c =~ s@(?<=in slot )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1513 } elsif ($c =~ m/^No reusable/) {
1515 # No reusable socket for addons.mozilla.org:443 found. Opening a new one.
1516 $c = highlight_matched_host($c, '(?<=for )[^\s]+');
1518 } elsif ($c =~ m/^(Remembering|Forgetting) socket/) {
1520 # Remembering socket 13 for www.privoxy.org:80 in slot 0.
1521 # Forgetting socket 38 for www.privoxy.org:80 in slot 5.
1523 $c =~ s@(?<=socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1524 $c = highlight_matched_host($c, '(?<=for )[^\s]+');
1525 $c =~ s@(?<=in slot )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1527 } elsif ($c =~ m/^Socket/) {
1529 # Socket 16 already forgotten or never remembered.
1530 $c =~ s@(?<=Socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1532 } elsif ($c =~ m/^The connection to/) {
1534 # The connection to www.privoxy.org:80 in slot 6 timed out. Closing socket 19. Timeout is: 61.
1536 # The connection to 1.bp.blogspot.com:80 in slot 0 timed out. Closing socket 5.\
1537 # Timeout is: 1. Assumed latency: 4.
1538 # The connection to 10.0.0.1:80 in slot 0 is no longer usable. Closing socket 4.
1539 $c = highlight_matched_host($c, '(?<=connection to )[^\s]+');
1540 $c =~ s@(?<=in slot )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1541 $c =~ s@(?<=Closing socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1542 $c =~ s@(?<=Timeout is: )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1543 $c =~ s@(?<=Assumed latency: )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1545 } elsif ($c =~ m/^Stopped waiting for the request line/ or
1546 $c =~ m/^No request line on socket \d received in time/ or
1547 $c =~ m/^The client side of the connection on socket \d/) {
1549 # Stopped waiting for the request line. Timeout: 121.
1550 # Privoxy 3.0.19 and later:
1551 # No request line on socket 5 received in time. Timeout: 1.
1552 # The client side of the connection on socket 5 got closed \
1553 # without sending a complete request line.
1554 $c =~ s@(?<=Timeout: )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1555 $c =~ s@(?<=socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1557 } elsif ($c =~ m/^Waiting for \d/) {
1559 # Waiting for 1 connections to timeout.
1560 $c =~ s@(?<=^Waiting for )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1562 } elsif ($c =~ m/^Initialized/) {
1564 # Initialized 20 socket slots.
1565 $c =~ s@(?<=Initialized )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1567 } elsif ($c =~ m/^Done reading from server/) {
1569 # Done reading from server. Expected content length: 24892. \
1570 # Actual content length: 24892. Most recently received: 4412.
1572 # Done reading from server. Expected content length: 24892. \
1573 # Actual content length: 24892. Bytes most recently read: 4412.
1574 # Done reading from server. Content length: 6018 as expected. \
1575 # Bytes most recently read: 294.
1576 $c =~ s@(?<=ontent length: )(\d+)@$h{'Number'}$1$h{'Standard'}@g;
1577 $c =~ s@(?<=received: )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1578 $c =~ s@(?<=read: )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1580 } elsif ($c =~ m/^Continuing buffering headers/) {
1582 # Continuing buffering headers. byte_count: 19. header_offset: 517. len: 536.
1583 $c =~ s@(?<=byte_count: )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1584 $c =~ s@(?<=header_offset: )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1585 $c =~ s@(?<=len: )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1587 # Continuing buffering headers. Bytes most recently read: %d.
1588 $c =~ s@(?<=read: )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1590 } elsif ($c =~ m/^Received \d+ bytes while/) {
1592 # Received 206 bytes while expecting 12103.
1593 $c =~ s@(?<=Received )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1594 $c =~ s@(?<=expecting )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1596 } elsif ($c =~ m/^(Rejecting c|C)onnection from/) {
1598 # Connection from 81.163.28.218 dropped due to ACL
1599 # Rejecting connection from 178.63.152.227. Maximum number of connections reached.
1600 $c =~ s@(?<=onnection from )((?:\d+\.?){3}\d+)@$h{'Number'}$1$h{'Standard'}@;
1602 } elsif ($c =~ m/^(?:Reusing|Closing) server socket \d./ or
1603 $c =~ m/^No additional client request/) {
1605 # Reusing server socket 4. Opened for 10.0.0.1.
1606 # Closing server socket 2. Opened for 10.0.0.1.
1607 # No additional client request received in time. \
1608 # Closing server socket 4, initially opened for 10.0.0.1.
1609 # No additional client request received in time on socket 29.
1611 $c =~ s@(?<= socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1612 $c = highlight_matched_host($c, '(?<=for )[^\s]+(?=\.$)');
1614 } elsif ($c =~ m/^Connected to /) {
1616 # Connected to tor-jail[10.0.0.2]:9050.
1618 $c = highlight_matched_host($c, '(?<=\[)[^\]]+');
1619 $c = highlight_matched_host($c, '(?<=Connected to )[^\[\s]+');
1620 $c =~ s@(?<=\]:)(\d+)@$h{'Number'}$1$h{'Standard'}@;
1622 } elsif ($c =~ m/^Could not connect to /) {
1624 # Could not connect to [10.0.0.1]:80.
1626 $c = highlight_matched_host($c, '(?<=\[)[^\]]+');
1627 $c =~ s@(?<=\]:)(\d+)@$h{'Number'}$1$h{'Standard'}@;
1629 } elsif ($c =~ m/^Waiting for the next client request/ or
1630 $c =~ m/^The connection on server socket/ or
1631 $c =~ m/^Client request arrived in time /) {
1633 # Waiting for the next client request on socket 3. Keeping the server \
1634 # socket 12 to a.fsdn.com open.
1635 # The connection on server socket 6 to upload.wikimedia.org isn't reusable. Closing.
1636 # Used by Privoxy 3.0.18 and later:
1637 # Client request arrived in time on socket 21.
1638 # Used by earlier version:
1639 # Client request arrived in time or the client closed the connection on socket 12.
1641 $c =~ s@(?<=on socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1642 $c =~ s@(?<=server socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1643 $c = highlight_matched_host($c, '(?<=to )[^\s]+');
1645 } elsif ($c =~ m/^Marking the server socket/) {
1647 # Marking the server socket 7 tainted.
1649 $c =~ s@(?<=server socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1651 } elsif ($c =~ m/^Reduced expected bytes to /) {
1653 # Reduced expected bytes to 0 to account for the 1542 ones we already got.
1654 $c =~ s@(?<=bytes to )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1655 $c =~ s@(?<=for the )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1657 } elsif ($c =~ m/^The client closed socket /) {
1659 # The client closed socket 2 while the server socket 4 is still open.
1660 $c =~ s@(?<=closed socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1661 $c =~ s@(?<=server socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1663 } elsif ($c =~ m/^Expected client content length set /) {
1665 # Expected client content length set to 667325411 after reading 4999 bytes.
1666 $c =~ s@(?<=set to )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1667 $c =~ s@(?<=reading )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1669 } elsif ($c =~ m/^Reducing expected bytes to /) {
1671 # Reducing expected bytes to 0. Marking the server socket tainted after throwing 4 bytes away.
1672 $c =~ s@(?<=bytes to )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1673 $c =~ s@(?<=after throwing )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1675 } elsif ($c =~ m/^Waiting for up to /) {
1677 # Waiting for up to 4999 bytes from the client.
1678 $c =~ s@(?<=up to )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1680 } elsif ($c =~ m/^Stopping to watch the client socket/) {
1682 # Stopping to watch the client socket. There's already another request waiting.
1683 # Privoxy 3.0.20 and later:
1684 # Stopping to watch the client socket 5. There's already another request waiting.
1685 $c =~ s@(?<=client socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1687 } elsif ($c =~ m/^Looks like we / or
1688 $c =~ m/^Unsetting keep-alive flag/ or
1689 $c =~ m/^No connections to wait/ or
1690 $c =~ m/^Complete client request received/ or
1691 $c =~ m/^Possible pipeline attempt detected./ or
1692 $c =~ m/^POST request detected. The connection will not be kept alive./ or
1693 $c =~ m/^The server still wants to talk, but the client hung up on us./ or
1694 $c =~ m/^The server didn't specify how long the connection will stay open/ or
1695 $c =~ m/^There might be a request body. The connection will not be kept alive/ or
1696 $c =~ m/^Done reading from the client\.$/) {
1698 # Looks like we reached the end of the last chunk. We better stop reading.
1699 # Looks like we read the end of the last chunk together with the server \
1700 # headers. We better stop reading.
1701 # Looks like we got the last chunk together with the server headers. \
1702 # We better stop reading.
1703 # Unsetting keep-alive flag.
1704 # No connections to wait for left.
1705 # Client request arrived in time or the client closed the connection.
1706 # Complete client request received
1707 # Possible pipeline attempt detected. The connection will not be \
1708 # kept alive and we will only serve the first request.
1709 # POST request detected. The connection will not be kept alive.
1710 # The server still wants to talk, but the client hung up on us.
1711 # The server didn't specify how long the connection will stay open. Assume it's only a second.
1712 # There might be a request body. The connection will not be kept alive.
1713 # Done reading from the client\.
1717 found_unknown_content($c);
1725 sub handle_loglevel_info ($) {
1729 if ($c =~ m/^Rewrite detected:/) {
1731 # Rewrite detected: GET http://10.0.0.2:88/blah.txt HTTP/1.1
1732 $c = highlight_matched_request_line($c, '(?<=^Rewrite detected: ).*');
1734 } elsif ($c =~ m/^Decompress(ing deflated|ion didn)/ or
1735 $c =~ m/^Compressed content detected/ or
1736 $c =~ m/^SDCH-compressed content detected/ or
1739 # Decompressing deflated iob: 117
1740 # Decompression didn't result in any content.
1741 # Compressed content detected, content filtering disabled. Consider recompiling Privoxy\
1742 # with zlib support or enable the prevent-compression action.
1743 # SDCH-compressed content detected, content filtering disabled.\
1744 # Consider suppressing SDCH offers made by the client.
1745 # Tagger 'complete-url' created empty tag. Ignored.
1749 } elsif ($c =~ m/^(Re)?loading configuration file /) {
1751 # loading configuration file '/usr/local/etc/privoxy/config':
1752 # Reloading configuration file '/usr/local/etc/privoxy/config'
1753 $c =~ s@(?<=loading configuration file \')([^\']*)@$h{'file'}$1$h{'Standard'}@;
1755 } elsif ($c =~ m/^Loading (actions|filter) file: /) {
1757 # Loading actions file: /usr/local/etc/privoxy/default.action
1758 # Loading filter file: /usr/local/etc/privoxy/default.filter
1759 $c =~ s@(?<= file: )(.*)$@$h{'file'}$1$h{'Standard'}@;
1761 } elsif ($c =~ m/^exiting by signal/) {
1763 # exiting by signal 15 .. bye
1764 $c =~ s@(?<=exiting by signal )(\d+)@$h{'signal'}$1$h{'Standard'}@;
1766 } elsif ($c =~ m/^Privoxy version/) {
1768 # Privoxy version 3.0.7
1769 $c =~ s@(?<=^Privoxy version )(\d+\.\d+\.\d+)$@$h{'version'}$1$h{'Standard'}@;
1771 } elsif ($c =~ m/^Program name: /) {
1773 # Program name: /usr/local/sbin/privoxy
1774 $c =~ s@(?<=Program name: )(.*)@$h{'program-name'}$1$h{'Standard'}@;
1776 } elsif ($c =~ m/^Listening on port /) {
1778 # Listening on port 8118 on IP address 10.0.0.1
1779 $c =~ s@(?<=Listening on port )(\d+)@$h{'port'}$1$h{'Standard'}@;
1780 $c =~ s@(?<=on IP address )(.*)@$h{'ip-address'}$1$h{'Standard'}@;
1782 } elsif ($c =~ m/^\(Re-\)Open(?:ing)? logfile/) {
1784 # (Re-)Open logfile /var/log/privoxy/privoxy.log
1785 $c =~ s@(?<=Open logfile )(.*)@$h{'file'}$1$h{'Standard'}@;
1787 } elsif ($c =~ m/^(Request from|Malformed server response detected)/) {
1789 # Request from 10.0.0.1 denied. limit-connect{,} doesn't allow CONNECT requests to port 443.
1790 # Request from 10.0.0.1 marked for blocking. limit-connect{,} doesn't allow CONNECT requests to port 443.
1792 # Request from 10.0.0.1 marked for blocking. limit-connect{0} doesn't allow CONNECT requests to www.example.org:443
1793 # Malformed server response detected. Downgrading to HTTP/1.0 impossible.
1795 $c =~ s@(?<=Request from )([^\s]*)@$h{'ip-address'}$1$h{'Standard'}@;
1796 $c =~ s@(denied|blocking)@$h{'warning'}$1$h{'Standard'}@;
1797 $c =~ s@(CONNECT)@$h{'method'}$1$h{'Standard'}@;
1798 $c =~ s@(?<=to port )(\d+)@$h{'port'}$1$h{'Standard'}@;
1799 $c =~ s@(?<=to )([^\s]+)@$h{'request_'}$1$h{'Standard'}@;
1801 } elsif ($c =~ m/^Status code/) {
1803 # Status code 304 implies no body.
1804 $c =~ s@(?<=Status code )(\d+)@$h{'status-code'}$1$h{'Standard'}@;
1806 } elsif ($c =~ m/^Method/) {
1808 # Method HEAD implies no body.
1809 $c =~ s@(?<=Method )([^\s]+)@$h{'method'}$1$h{'Standard'}@;
1811 } elsif ($c =~ m/^Buffer limit reached while extending /) {
1813 # Buffer limit reached while extending the buffer (iob). Needed: 4197470. Limit: 4194304
1814 $c =~ s@(?<=Needed: )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1815 $c =~ s@(?<=Limit: )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1817 } elsif ($c =~ m/^File modification detected: /) {
1819 # File modification detected: /usr/local/etc/privoxy/user-agent.action
1820 $c =~ s@(?<= detected: )(.*)$@$h{'file'}$1$h{'Standard'}@;
1822 } elsif ($c =~ m/^No logfile configured/ or
1823 $c =~ m/^Malformerd HTTP headers detected and MS IIS5 hack enabled/ or
1824 $c =~ m/^Invalid \"chunked\" transfer/ or
1825 $c =~ m/^Support for/ or
1826 $c =~ m/^Flushing header and buffers/ or
1827 $c =~ m/^Can not resolve/
1830 # No logfile configured. Please enable it before reporting any problems.
1831 # Malformerd HTTP headers detected and MS IIS5 hack enabled. Expect an invalid \
1832 # response or even no response at all.
1833 # No logfile configured. Logging disabled.
1834 # Invalid "chunked" transfer encoding detected and ignored.
1835 # Support for 'Connection: keep-alive' is experimental, incomplete and\
1836 # known not to work properly in some situations.
1837 # Flushing header and buffers. Stepping back from filtering.
1838 # Can not resolve doesnotexist: hostname nor servname provided, or not known
1842 found_unknown_content($c);
1849 sub handle_loglevel_cgi ($) {
1853 if ($c =~ m/^Granting access to/) {
1855 #Granting access to http://config.privoxy.org/send-stylesheet, referrer http://p.p/ is trustworthy.
1857 } elsif ($c =~ m/^Substituting: s(.)/) {
1859 # Substituting: s/@else-not-FEATURE_ZLIB@.*@endif-FEATURE_ZLIB@//sigTU
1860 # XXX: prone to span several lines
1863 #$c =~ s@(?<=failed: )(.*)@$h{'error'}$1$h{'Standard'}@;
1864 $c =~ s@(?!<=\\)($delimiter)@$h{'pcrs-delimiter'}$1$h{'Standard'}@g; # XXX: Too aggressive
1865 #$c =~ s@(?!<=\\)($1)@$h{'pcrs-delimiter'}$1$h{'Standard'}@g;
1871 sub handle_loglevel_force ($) {
1875 if ($c =~ m/^Ignored force prefix in request:/) {
1877 # Ignored force prefix in request: "GET http://10.0.0.1/PRIVOXY-FORCE/block HTTP/1.1"
1878 $c =~ s@^(Ignored)@$h{'ignored'}$1$h{'Standard'}@;
1879 $c = highlight_matched_request_line($c, '(?<=request: ")[^"]*');
1881 } elsif ($c =~ m/^Enforcing request:/) {
1883 # Enforcing request: "GET http://10.0.0.1/block HTTP/1.1".
1884 $c = highlight_matched_request_line($c, '(?<=request: ")[^"]*');
1888 found_unknown_content($c);
1895 sub handle_loglevel_error ($) {
1899 if ($c =~ m/^(?:Empty|No) server or forwarder response received on socket \d+\./) {
1901 # Empty server or forwarder response received on socket 4.
1902 # Empty server or forwarder response received on socket 3. \
1903 # Closing client socket 15 without sending data.
1904 # Used by Privoxy 3.0.18 and later:
1905 # No server or forwarder response received on socket 8. \
1906 # Closing client socket 10 without sending data.
1908 $c =~ s@(?<=on socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1909 $c =~ s@(?<=client socket )(\d+)@$h{'Number'}$1$h{'Standard'}@;
1911 } elsif ($c =~ m/^Didn't receive data in time:/) {
1913 # Didn't receive data in time: a.fsdn.com:443
1914 $c =~ s@(?<=in time: )(.*)@$h{'destination'}$1$h{'Standard'}@;
1917 # XXX: There are probably more messages that deserve highlighting.
1923 sub handle_loglevel_ignore ($) {
1927 sub gather_loglevel_request_stats ($$) {
1935 sub gather_loglevel_crunch_stats ($$) {
1943 if ($c =~ m/^Redirected:/) {
1944 # Redirected: http://www.example.org/http://p.p/
1945 $stats{'fast-redirections'}++;
1947 } elsif ($c =~ m/^Blocked:/) {
1948 # Blocked: blogger.googleusercontent.com:443
1949 $stats{'blocked'}++;
1954 sub gather_loglevel_error_stats ($$) {
1961 if ($c =~ m/^Empty server or forwarder response received on socket \d+./) {
1963 # Empty server or forwarder response received on socket 4.
1964 $stats{'empty-responses'}++;
1965 if ($thread_data{$thread}{'new_connection'}) {
1966 $stats{'empty-responses-on-new-connections'}++;
1968 $stats{'empty-responses-on-reused-connections'}++;
1973 sub gather_loglevel_connect_stats ($$) {
1975 my ($c, $thread) = @_;
1979 if ($c =~ m/^via ([^\s]+) to: [^\s]+/) {
1981 # Connect: via 10.0.0.1:8123 to: www.example.org.noconnect
1982 $thread_data{$thread}{'forwarder'} = $1; # XXX: is this missue?
1984 } elsif ($c =~ m/^to ([^\s]*)$/) {
1986 # Connect: to lists.sourceforge.net:443
1988 $thread_data{$thread}{'forwarder'} = 'direct connection';
1990 } elsif ($c =~ m/^Created new connection to/) {
1992 # Created new connection to www.privoxy.org:80 on socket 11.
1994 $thread_data{$thread}{'new_connection'} = 1;
1996 } elsif ($c =~ m/^Reusing server socket \d./ or
1997 $c =~ m/^Found reusable socket/) {
1999 # Reusing server socket 4. Opened for 10.0.0.1.
2000 # Found reusable socket 9 for www.privoxy.org:80 in slot 0.
2002 $thread_data{$thread}{'new_connection'} = 0;
2003 $stats{'reused-connections'}++;
2007 sub gather_loglevel_header_stats ($$) {
2009 my ($c, $thread) = @_;
2012 if ($c =~ m/^A HTTP\/1\.1 response without/ or
2013 $c =~ m/^Keeping the server header 'Connection: keep-alive' around./)
2015 # A HTTP/1.1 response without Connection header implies keep-alive.
2016 # Keeping the server header 'Connection: keep-alive' around.
2017 $stats{'server-keep-alive'}++;
2019 } elsif ($c =~ m/^scan: ((\w+) (.+) (HTTP\/\d\.\d))/) {
2021 # scan: HTTP/1.1 200 OK
2022 $stats{'method'}{$2}++;
2023 $stats{'resource'}{$3}++;
2024 $stats{'http-version'}{$4}++;
2026 } elsif ($c =~ m/^scan: Host: ([^\s]+)/) {
2029 $stats{'hosts'}{$1}++;
2037 'server-keep-alive' => 0,
2038 'reused-connections' => 0,
2039 'empty-responses' => 0,
2040 'empty-responses-on-new-connections' => 0,
2041 'empty-responses-on-reused-connections' => 0,
2042 'fast-redirections' => 0,
2044 'reused-connections' => 0,
2045 'server-keep-alive' => 0,
2049 sub get_percentage ($$) {
2053 # If small is 0 the percentage is always 0%.
2054 # Make sure it works even if big is 0 as well.
2055 return "0.00%" if ($small eq 0);
2057 # Prevent division by zero.
2058 # XXX: Is this still supposed to be reachable?
2059 return "NaN" if ($big eq 0);
2061 return sprintf("%.2f%%", $small / $big * 100);
2064 sub print_stats () {
2068 my $new_connections = $stats{requests} - $stats{crunches} - $stats{'reused-connections'};
2069 my $outgoing_requests = $stats{requests} - $stats{crunches};
2071 if ($stats{requests} eq 0) {
2072 print "No requests yet.\n";
2076 print "Client requests total: " . $stats{requests} . "\n";
2077 print "Crunches: " . $stats{crunches} . " (" .
2078 get_percentage($stats{requests}, $stats{crunches}) . ")\n";
2079 print "Blocks: " . $stats{'blocked'} . " (" .
2080 get_percentage($stats{requests}, $stats{'blocked'}) . ")\n";
2081 print "Fast redirections: " . $stats{'fast-redirections'} . " (" .
2082 get_percentage($stats{requests}, $stats{'fast-redirections'}) . ")\n";
2083 print "Outgoing requests: " . $outgoing_requests . " (" .
2084 get_percentage($stats{requests}, $outgoing_requests) . ")\n";
2085 print "Server keep-alive offers: " . $stats{'server-keep-alive'} . " (" .
2086 get_percentage($stats{requests}, $stats{'server-keep-alive'}) . ")\n";
2087 print "New outgoing connections: " . $new_connections . " (" .
2088 get_percentage($stats{requests}, $new_connections) . ")\n";
2089 print "Reused connections: " . $stats{'reused-connections'} . " (" .
2090 get_percentage($stats{requests}, $stats{'reused-connections'}) .
2091 "; server offers accepted: " .
2092 get_percentage($stats{'server-keep-alive'}, $stats{'reused-connections'}) . ")\n";
2093 print "Empty responses: " . $stats{'empty-responses'} . " (" .
2094 get_percentage($stats{requests}, $stats{'empty-responses'}) . ")\n";
2095 print "Empty responses on new connections: "
2096 . $stats{'empty-responses-on-new-connections'} . " (" .
2097 get_percentage($stats{requests}, $stats{'empty-responses-on-new-connections'})
2099 print "Empty responses on reused connections: " .
2100 $stats{'empty-responses-on-reused-connections'} . " (" .
2101 get_percentage($stats{requests}, $stats{'empty-responses-on-reused-connections'}) .
2104 if ($stats{method} eq 0) {
2105 print "No response lines parsed yet yet.\n";
2108 print "Method distribution:\n";
2109 foreach my $method (sort {$stats{'method'}{$b} <=> $stats{'method'}{$a}} keys %{$stats{'method'}}) {
2110 printf "%8d : %-8s\n", $stats{'method'}{$method}, $method;
2112 print "Client HTTP versions:\n";
2113 foreach my $http_version (sort {$stats{'http-version'}{$b} <=> $stats{'http-version'}{$a}} keys %{$stats{'http-version'}}) {
2114 printf "%d : %s\n", $stats{'http-version'}{$http_version}, $http_version;
2117 if ($cli_options{'url-statistics-threshold'} == 0) {
2118 print "URL statistics are disabled. Increase --url-statistics-threshold to enable them.\n";
2120 print "Requested URLs:\n";
2121 foreach my $resource (sort {$stats{'resource'}{$b} <=> $stats{'resource'}{$a}} keys %{$stats{'resource'}}) {
2122 if ($stats{'resource'}{$resource} < $cli_options{'url-statistics-threshold'}) {
2123 print "Skipped statistics for URLs below the treshold.\n";
2126 printf "%d : %s\n", $stats{'resource'}{$resource}, $resource;
2130 if ($cli_options{'host-statistics-threshold'} == 0) {
2131 print "Host statistics are disabled. Increase --host-statistics-threshold to enable them.\n";
2133 print "Requested Hosts:\n";
2134 foreach my $host (sort {$stats{'hosts'}{$b} <=> $stats{'hosts'}{$a}} keys %{$stats{'hosts'}}) {
2135 if ($stats{'hosts'}{$host} < $cli_options{'host-statistics-threshold'}) {
2136 print "Skipped statistics for Hosts below the treshold.\n";
2139 printf "%d : %s\n", $stats{'hosts'}{$host}, $host;
2145 ################################################################################
2146 # Functions that actually print stuff
2147 ################################################################################
2149 sub print_clf_message () {
2151 our ($ip, $timestamp, $request_line, $status_code, $size);
2154 return if DEBUG_SUPPRESS_LOG_MESSAGES;
2156 # Rebuild highlighted
2157 $output .= $h{'Number'} . $ip . $h{'Standard'};
2159 $output .= "[" . $h{'Timestamp'} . $timestamp . $h{'Standard'} . "]";
2161 $output .= "\"" . highlight_request_line("$request_line") . "\"";
2163 $output .= $h{'Status'} . $status_code . $h{'Standard'};
2165 $output .= $h{'Number'} . $size . $h{'Standard'};
2166 $output .= $line_end;
2171 sub print_non_clf_message ($) {
2173 my $content = shift;
2174 my $msec_string = $no_msecs_mode ? '' : '.' . $req{$t}{'msecs'};
2175 my $line_start = $html_output_mode ? '' : $h{"Standard"};
2177 return if DEBUG_SUPPRESS_LOG_MESSAGES;
2180 . $time_colours[$time_colour_index % 2]
2181 . $req{$t}{'time-stamp'}
2183 . $h{Standard} . " "
2184 . $thread_colours{$t}
2188 . $h{$req{$t}{'log-level'}}
2189 . $req{$t}{'log-level'}
2196 sub shorten_thread_id ($) {
2198 my $thread_id = shift;
2200 our %short_thread_ids;
2203 unless (defined $short_thread_ids{$thread_id}) {
2204 $short_thread_ids{$thread_id} = sprintf "%.3d", $max_threadid++;
2207 return $short_thread_ids{$thread_id}
2212 my ($day, $time_stamp, $thread, $log_level, $content, $c, $msecs);
2214 my $last_thread = 0;
2215 my $last_timestamp = 0;
2216 my $filters_that_did_nothing;
2219 $time_colour = paint_it('white');
2221 my %log_level_handlers = (
2222 'Re-Filter' => \&handle_loglevel_re_filter,
2223 'Header' => \&handle_loglevel_header,
2224 'Connect' => \&handle_loglevel_connect,
2225 'Redirect' => \&handle_loglevel_redirect,
2226 'Request' => \&handle_loglevel_request,
2227 'Crunch' => \&handle_loglevel_crunch,
2228 'Gif-Deanimate' => \&handle_loglevel_gif_deanimate,
2229 'Info' => \&handle_loglevel_info,
2230 'CGI' => \&handle_loglevel_cgi,
2231 'Force' => \&handle_loglevel_force,
2232 'Error' => \&handle_loglevel_error,
2233 'Fatal error' => \&handle_loglevel_ignore,
2234 'Writing' => \&handle_loglevel_ignore,
2235 'Received' => \&handle_loglevel_ignore,
2236 'Actions' => \&handle_loglevel_ignore,
2237 'Unknown log level' => \&handle_loglevel_ignore,
2242 if (m/^(\d{4}-\d{2}-\d{2}|\w{3} \d{2}) (\d\d:\d\d:\d\d)\.?(\d+)? (?:Privoxy\()?([^\)\s]*)[\)]? ([\w -]*): (.*?)\r?$/) {
2243 $thread = $t = ($shorten_thread_ids) ? shorten_thread_id($4) : $4;
2244 $req{$t}{'day'} = $day = $1;
2245 $req{$t}{'time-stamp'} = $time_stamp = $2;
2246 $req{$t}{'msecs'} = $msecs = $3 ? $3 : 0; # Only the cool kids have micro second resolution;
2247 $req{$t}{'log-level'} = $log_level = $5;
2248 $req{$t}{'content'} = $content = $c = $6;
2249 $req{$t}{'log-message'} = $_;
2250 $no_special_header_highlighting = 0;
2252 if (defined($log_level_handlers{$log_level})) {
2254 $content = $log_level_handlers{$log_level}($content);
2258 die "No handler found for log level \"$log_level\"\n";
2261 # Highlight Truncations
2262 if (length($_) > 4000) {
2263 $content =~ s@(too long, truncated)]$@$h{'Truncation'}$1$h{'Standard'}]@g;
2266 next unless $content;
2268 # Register threads to keep the colour constant
2269 if (!defined($thread_colours{$thread})) {
2270 $thread_colours{$thread} = $all_colours[$thread_colour_index % @all_colours];
2271 $thread_colour_index++;
2274 # Switch timestamp colour if timestamps differ
2275 if (($msecs ne $last_msecs) || ($time_stamp ne $last_timestamp)) {
2276 debug_message("Tick tack!") if DEBUG_TICKS;
2277 $time_colour = $time_colours[$time_colour_index % 2];
2278 $time_colour_index++;
2279 $last_msecs = $msecs;
2280 $last_timestamp = $time_stamp;
2283 $last_thread = $thread;
2285 print_non_clf_message($content);
2287 } elsif (m/^((?:\d+\.\d+\.\d+\.\d+|[:\d]+)) - - \[(.*)\] "(.*)" (\d+) (\d+)/) {
2289 # LOG_LEVEL_CLF lines look like this
2290 # 61.152.239.32 - - [04/Mar/2007:18:28:23 +0100] "GET \
2291 # http://ad.yieldmanager.com/imp?z=1&Z=120x600&s=109339&u=http%3A%2F%2Fwww.365loan.co.uk%2F&r=1\
2292 # HTTP/1.1" 403 1730
2293 our ($ip, $timestamp, $request_line, $status_code, $size) = ($1, $2, $3, $4, $5);
2295 print_clf_message();
2299 # Some Privoxy log messages span more than one line,
2300 # usually to dump lots of content that doesn't need any syntax highlighting.
2301 # XXX: add mechanism to forward these lines to the right handler anyway.
2303 unless (DEBUG_SUPPRESS_LOG_MESSAGES or (SUPPRESS_EMPTY_LINES and m/^\s+$/)) {
2304 print and print get_line_end(); # unless (SUPPRESS_EMPTY_LINES and m/^\s+$/);
2312 my ($day, $time_stamp, $msecs, $thread, $log_level, $content);
2313 my %log_level_handlers = (
2314 'Re-Filter' => \&handle_loglevel_ignore,
2315 'Header' => \&gather_loglevel_header_stats,
2316 'Connect' => \&gather_loglevel_connect_stats,
2317 'Redirect' => \&handle_loglevel_ignore,
2318 'Request' => \&gather_loglevel_request_stats,
2319 'Crunch' => \&gather_loglevel_crunch_stats,
2320 'Gif-Deanimate' => \&handle_loglevel_ignore,
2321 'Info' => \&handle_loglevel_ignore,
2322 'CGI' => \&handle_loglevel_ignore,
2323 'Force' => \&handle_loglevel_ignore,
2324 'Error' => \&gather_loglevel_error_stats,
2325 'Fatal error' => \&handle_loglevel_ignore,
2326 'Writing' => \&handle_loglevel_ignore,
2327 'Received' => \&handle_loglevel_ignore,
2328 'Actions' => \&handle_loglevel_ignore,
2329 'Unknown log level' => \&handle_loglevel_ignore
2333 if (m/^(\d{4}-\d{2}-\d{2}|\w{3} \d{2}) (\d\d:\d\d:\d\d)\.?(\d+)? (?:Privoxy\()?([^\)\s]*)[\)]? ([\w -]*): (.*?)\r?$/) {
2336 $msecs = $3 ? $3 : 0;
2341 if (defined($log_level_handlers{$log_level})) {
2343 $content = $log_level_handlers{$log_level}($content, $thread);
2347 die "No handler found for log level \"$log_level\"\n";
2357 sub unbreak_lines_only_loop() {
2358 my $log_messages_reached = 0;
2362 # Log level other than LOG_LEVEL_CLF?
2363 if (m/^(\d{4}-\d{2}-\d{2}|\w{3} \d{2}) (\d\d:\d\d:\d\d)\.?(\d+)? (?:Privoxy\()?([^\)\s]*)[\)]? ([\w -]*): (.*?)\r?$/ or
2365 m/^((?:\d+\.\d+\.\d+\.\d+)) - - \[(.*)\] "(.*)" (\d+) (\d+)/) {
2366 $log_messages_reached = 1;
2371 $_ = "\n". $_ if /^(?:\d+\.\d+\.\d+\.\d+)/;
2376 print "\n" unless $log_messages_reached;
2381 sub VersionMessage {
2382 my $version_message;
2384 $version_message .= 'Privoxy-Log-Parser ' . PRIVOXY_LOG_PARSER_VERSION . "\n";
2385 $version_message .= 'Copyright (C) 2007-2010 Fabian Keil <fk@fabiankeil.de>' . "\n";
2386 $version_message .= 'http://www.fabiankeil.de/sourcecode/privoxy-log-parser/' . "\n";
2388 print $version_message;
2391 sub get_cli_options () {
2393 our %cli_options = (
2394 'html-output' => CLI_OPTION_DEFAULT_TO_HTML_OUTPUT,
2395 'title' => CLI_OPTION_TITLE,
2396 'no-syntax-highlighting' => CLI_OPTION_NO_SYNTAX_HIGHLIGHTING,
2397 'no-embedded-css' => CLI_OPTION_NO_EMBEDDED_CSS,
2398 'no-msecs' => CLI_OPTION_NO_MSECS,
2399 'shorten-thread-ids' => CLI_OPTION_SHORTEN_THREAD_IDS,
2400 'show-ineffective-filters' => CLI_OPTION_SHOW_INEFFECTIVE_FILTERS,
2401 'accept-unknown-messages' => CLI_OPTION_ACCEPT_UNKNOWN_MESSAGES,
2402 'statistics' => CLI_OPTION_STATISTICS,
2403 'url-statistics-threshold' => CLI_OPTION_URL_STATISTICS_THRESHOLD,
2404 'unbreak-lines-only' => CLI_OPTION_UNBREAK_LINES_ONLY,
2405 'host-statistics-threshold'=> CLI_OPTION_HOST_STATISTICS_THRESHOLD,
2409 'html-output' => \$cli_options{'html-output'},
2410 'title' => \$cli_options{'title'},
2411 'no-syntax-highlighting' => \$cli_options{'no-syntax-highlighting'},
2412 'no-embedded-css' => \$cli_options{'no-embedded-css'},
2413 'no-msecs' => \$cli_options{'no-msecs'},
2414 'shorten-thread-ids' => \$cli_options{'shorten-thread-ids'},
2415 'show-ineffective-filters' => \$cli_options{'show-ineffective-filters'},
2416 'accept-unknown-messages' => \$cli_options{'accept-unknown-messages'},
2417 'statistics' => \$cli_options{'statistics'},
2418 'unbreak-lines-only' => \$cli_options{'unbreak-lines-only'},
2419 'url-statistics-threshold=i'=> \$cli_options{'url-statistics-threshold'},
2420 'host-statistics-threshold=i'=> \$cli_options{'host-statistics-threshold'},
2421 'version' => sub { VersionMessage && exit(0) },
2425 $html_output_mode = cli_option_is_set('html-output');
2426 $no_msecs_mode = cli_option_is_set('no-msecs');
2427 $shorten_thread_ids = cli_option_is_set('shorten-thread-ids');
2428 $line_end = get_line_end();
2439 Options and their default values if they have any:
2440 [--accept-unknown-messages]
2441 [--host-statistics-threshold $cli_options{'host-statistics-threshold'}]
2445 [--no-syntax-highlighting]
2446 [--shorten-thread-ids]
2447 [--show-ineffective-filters]
2449 [--unbreak-lines-only]
2450 [--url-statistics-threshold $cli_options{'url-statistics-threshold'}]
2451 [--title $cli_options{'title'}]
2453 see "perldoc $0" for more information
2459 ################################################################################
2461 ################################################################################
2465 set_background(DEFAULT_BACKGROUND);
2466 prepare_our_stuff();
2470 # XXX: should explicitly reject incompatible argument combinations
2471 if (cli_option_is_set('unbreak-lines-only')) {
2472 unbreak_lines_only_loop();
2473 } elsif (cli_option_is_set('statistics')) {
2486 B<privoxy-log-parser> - A parser and syntax-highlighter for Privoxy log messages
2490 B<privoxy-log-parser> [B<--accept-unknown-messages>] [B<--html-output>]
2491 [B<--no-msecs>] [B<--no-syntax-higlighting>] [B<--statistics>]
2492 [B<--shorten-thread-ids>] [B<--show-ineffective-filters>]
2493 [B<--url-statistics-threshold>] [B<--version>]
2497 B<privoxy-log-parser> reads Privoxy log messages and
2499 - syntax-highlights recognized lines,
2501 - reformats some of them for easier comprehension,
2503 - filters out less useful messages, and
2505 - (in some cases) calculates additional information,
2506 like the compression ratio or how a filter affected
2509 With B<privoxy-log-parser> you should be able to increase Privoxy's log level
2510 without getting confused by the resulting amount of output. For example for
2511 "debug 64" B<privoxy-log-parser> will (by default) only show messages that
2512 affect the content. If a filter doesn't cause any hits, B<privoxy-log-parser>
2513 will hide the "filter foo caused 0 hits" message.
2517 [B<--accept-unknown-messages>] Don't print warnings in case of unknown messages,
2518 just don't highlight them.
2520 [B<--host-statistics-threshold>] Only show the request count for a host
2521 if it's above or equal to the given threshold. If the threshold is 0, host
2522 statistics are disabled.
2524 [B<--html-output>] Use HTML and CSS for the syntax highlighting. If this option is
2525 omitted, ANSI escape sequences are used unless B<--no-syntax-highlighting> is active.
2526 This option is only intended to make embedding log excerpts in web pages easier.
2527 It does not escape any input!
2529 [B<--no-msecs>] Don't expect milisecond resolution
2531 [B<--no-syntax-highlighting>] Disable syntax-highlighting. Useful when
2532 the filtered output is piped into less in which case the ANSI control
2533 codes don't work, or if the terminal itself doesn't support the control
2536 [B<--shorten-thread-ids>] Shorten the thread ids to a three-digit decimal number.
2537 Note that the mapping from thread ids to shortened ids is created at run-time
2538 and thus varies with the input.
2540 [B<--show-ineffective-filters>] Don't suppress log lines for filters
2541 that didn't modify the content.
2543 [B<--statistics>] Gather various statistics instead of syntax highlighting
2544 log messages. This is an experimental feature, if the results look wrong
2545 they very well might be. Also note that the results are pretty much guaranteed
2546 to be incorrect if Privoxy and Privoxy-Log-Parser aren't in sync.
2548 [B<--unbreak-lines-only>] Tries to fix lines that got messed up by a broken or
2549 interestingly configured mail client and thus are no longer recognized properly.
2550 Only fixes some breakage, but may be good enough or at least better than nothing.
2551 Doesn't do anything else, so you probably want to pipe the output into
2552 B<privoxy-log-parser> again.
2554 [B<--url-statistics-threshold>] Only show the request count for a resource
2555 if it's above or equal to the given threshold. If the threshold is 0, URL
2556 statistics are disabled.
2558 [B<--version>] Print version and exit.
2562 To monitor a log file:
2564 tail -F /usr/jails/privoxy-jail/var/log/privoxy/privoxy.log | B<privoxy-log-parser>
2566 Replace '-F' with '-f' if your tail implementation lacks '-F' support
2567 or if the log won't get rotated anyway. The log file location depends
2568 on your system (Doh!).
2570 To monitor Privoxy without having it write to a log file:
2572 privoxy --no-daemon /usr/jails/privoxy-jail/usr/local/etc/privoxy/config 2>&1 | B<privoxy-log-parser>
2574 Again, the config file location depends on your system. Output redirection
2575 depends on your shell, the above works with bourne shells.
2577 To read a processed Privoxy log file from top to bottom, letting the content
2578 scroll by slightly faster than you can read:
2580 B<privoxy-log-parser> < /usr/jails/privoxy-jail/var/log/privoxy/privoxy.log
2582 This is probably only useful to fill screens in the background of haxor movies.
2586 Syntax highlighting with ANSI escape sequences will look strange
2587 if your background color isn't black.
2589 Some messages aren't recognized yet and will not be fully highlighted.
2591 B<privoxy-log-parser> is developed with Privoxy 3.0.7 or later in mind,
2592 using earlier Privoxy versions will probably result in an increased amount
2593 of unrecognized log lines.
2595 Privoxy's log files tend to be rather large. If you use HTML
2596 highlighting some browsers can't handle them, get confused and
2597 will eventually crash because of segmentation faults or unexpected
2598 exceptions. This is a problem in the browser and not B<privoxy-log-parser>'s
2603 Many settings can't be controlled through command line options yet.
2611 Fabian Keil <fk@fabiankeil.de>