Menu
I try to send a log message to syslog via
logger -is -t TestApp -p user.error TEST MESSAGE1
Then I check if it is there
tail system.log
...
Apr 12 16:33:00 HOSTNAME TestApp[3024]: TEST MESSAGE1
So it works. Then I try to do the same via a compiled application.
openlog("TestApp", LOG_PID, LOG_USER);
setlogmask(LOG_UPTO(LOG_DEBUG));
syslog(LOG_ERR, "TEST MESSAGE2");
closelog();
I run the application then I check system.log
tail system.log
...
Apr 12 16:33:00 HOSTNAME TestApp[3024]: TEST MESSAGE1
....
and I cannot find "TEST MESSAGE 2" there. I also try to check it via "syslog"
syslog -s -l er TEST MESSAGE3
Same result. I cannot see the message in the log file. OK. There might be some problems with log settings. So I try to configure logging to a specific file. I create /etc/asl/TestApp
# ASL configuration for TestApp
#
> /var/log/TestApp.log mode=0640 format=bsd rotate=seq compress file_max=1M all_max=5M
#
? [= Sender TestApp] file /var/log/TestApp.log
? [= Sender TestApp] [<= Level debug] claim
I restart both syslogd and ASL.
launchctl stop com.apple.syslogd
launchctl stop com.apple.aslmanager
launchctl start com.apple.aslmanager
launchctl start com.apple.syslogd
Then I try to send a message via "logger" again and check the logs
tail TestApp.log
Apr 12 16:47:49 HOSTNAME TestApp[3062]: TEST MESSAGE1
So "logger" works again. I try to do the same via the compiled application but I cannot see "TEST MESSAGE2". Then I do the same via "syslog -s -l er TEST MESSAGE3". Again I cannot see the message in TestApp.log and system.log.
I read the information about logging in macOS and it describes some changes but it does not say the old syslog method will not work.
What am I doing wrong? Why is "logger" working but "syslog" and my compiled (Hello World) application are not working?
Thanks
254
asked Apr 12 '18 20:04
If you get stuck or fail to install the downloaded macOS 10.13/10.13. 4, try the tips below to get this problem fixed: Open Launchpad > Delete "Install macOS Sierra" file with a question mark on it. Reboot Mac and retry downloading a new macOS Sierra update 10.13/10.13.
Open the Console application (from the Utilities folder inside your Applications folder). It should open to All Messages, showing the log entries for everything that's happened recently on your Mac. If you've previously narrowed the Console results, show the Log List and select All Messages before proceeding.
The Syslog daemon (syslog) on macOS is configured through the /etc/syslog. conf configuration file. Follow the steps below to send all Syslog messages from an macOS machine to EventSentry.
View System Logs in the Console App. To view your Mac system logs, launch the Console app. You can launch it with Spotlight search by pressing Command+Space, typing “Console,” and then pressing Enter. You'll also find it at Finder > Applications > Utilities > Console.
Apple broke syslog(3) functionality in macOS Sierra and it continues to be broken in High Sierra. There's not adequate words to describe how stupid Apple's change was.
The closest one might be able to come to seeing log messages sent by compiled programs (including the PHP interpreter, for example) is to use a command like this to pull them out of Apple's obtuse storage:
log stream --info --debug --predicate 'sender == "<your-app-name>"' --style syslog
But that only results in part of the syslog functionality. There's no support for sending logs to a central collection point via UDP, and most of the 8 urgency levels are now missing. The facility coding is likewise hobbled.
192
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
