Bug #346: Event tab : Prewikka Internal Error - Prewikka - UNITY 360

Bug #346

Event tab : Prewikka Internal Error

Added by about 15 years ago. Updated almost 15 years ago.

Status:

Resolved

Priority:

Normal

Assignee:

Yoann VANDOORSELAERE

Target version:

0.9.15

Start date:

Due date:

% Done:

100%

Resolution:

Description

Same defect than #273 under debian Lenny... (no rights to reopen..)

ii  libprelude2               0.9.21.3-2                Hybrid Intrusion Detection System [ Base library ]
ii  libpreludedb0             0.9.15.1-3                Hybrid Intrusion Detection System [ Base library ]
ii  prelude-correlator        0.9.0~beta3-1             Hybrid Intrusion Detection System [ Correlator ]
iU  prelude-lml               0.9.14-2                  Hybrid Intrusion Detection System [ Log Monitoring Lackey ]
ii  prelude-manager           0.9.14.2-2                Hybrid Intrusion Detection System [ Report Manager ]
ii  prewikka                  0.9.14-2                  Graphical analysis console for the Prelude IDS Framework
ii  python-prelude            0.9.21.3-2                Hybrid Intrusion Detection System [ Base library ]
ii  python-preludedb          0.9.15.1-3                Hybrid Intrusion Detection System [ Base library ]

Re-Paste the error:

Prewikka internal error
in method 'preludedb_get_alert_idents2', argument 2 of type 'idmef_criteria_t *'

Traceback (most recent call last):
  File "/usr/lib/python2.5/site-packages/prewikka/Core.py", line 333, in process
    getattr(view_object, view[[handler]])()
  File "/usr/lib/python2.5/site-packages/prewikka/views/alertlisting.py", line 1111, in render
    total = self._setMessages(criteria)
  File "/usr/lib/python2.5/site-packages/prewikka/views/alertlisting.py", line 1067, in _setMessages
    return self._setAggregatedMessagesNoValues(criteria, ag_s, ag_t, ag_c, ag_a)
  File "/usr/lib/python2.5/site-packages/prewikka/views/alertlisting.py", line 1019, in _setAggregatedMessagesNoValues
    self._getMissingAggregatedInfos(message, valueshash, parameters, criteria2, aggregated_count)
  File "/usr/lib/python2.5/site-packages/prewikka/views/alertlisting.py", line 885, in _getMissingAggregatedInfos
    message.setMessage(self._fetchMessage(ident), ident)
  File "/usr/lib/python2.5/site-packages/prewikka/views/alertlisting.py", line 607, in setMessage
    self._setMessageAlertIdentInfo(message, message[[alertcorrelation_alert]], ident)
  File "/usr/lib/python2.5/site-packages/prewikka/views/alertlisting.py", line 545, in _setMessageAlertIdentInfo
    self._fetchInfoFromLinkedMessage(" || ".join(criteria), source, target)
  File "/usr/lib/python2.5/site-packages/prewikka/views/alertlisting.py", line 499, in _fetchInfoFromLinkedMessage
    result = self.env.idmef_db.getAlertIdents(criteria)
  File "/usr/lib/python2.5/site-packages/prewikka/IDMEFDatabase.py", line 402, in getAlertIdents
    return self._getMessageIdents(preludedb_get_alert_idents2, criteria, limit, offset, order_by)
  File "/usr/lib/python2.5/site-packages/prewikka/IDMEFDatabase.py", line 388, in _getMessageIdents
    result = get_message_idents(self._db, criteria, limit, offset, order_by)
[[TypeError]]: in method 'preludedb_get_alert_idents2', argument 2 of type 'idmef_criteria_t *'

I get the error when alerting something through a prelude-correlator lua rule. Before that, prewikka is clear.
At first correlation alert, unable to display events (got the error) and if the correlation alert pass the watching period, the display with other events come back...

Related issues

Associated revisions

Revision 636fd5f8 (diff)
Added by Yoann VANDOORSELAERE almost 15 years ago

Fix IDMEFDatabase exception on empty criteria string.

Providing an empty criteria string as argument to _getMessageIdents used
to generate a SWIG pointer mismatch exception. Empty criteria string are
now checked for and converted to None. This fixes #346.