use strict; use DBI; use Time::Piece; use Fatal qw(open close); # parsing: # 213.20.65.52 - - [01/Jan/2002:09:30:38 +0000] "GET /img/bg.gif HTTP/1.1" 200 268 # "http://www.axkit.org/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; Q31 2461)" use constant IP => 0; use constant AUTH => 1; use constant DATE => 2; use constant REQUEST => 3; use constant STATUS => 4; use constant BYTES => 5; use constant REFERER => 6; use constant UA => 7; use constant METHOD => 8; use constant URI => 9; my $logfile = $ARGV[0] || die "Usage: $0 filename\n"; open(LOG, $logfile); my $dbh = DBI->connect("dbi:SQLite:$logfile.db","","", { AutoCommit => 0, RaiseError => 1 }); print "Dropping old table...\n"; eval { $dbh->do("DROP TABLE access_log"); }; print "Done\n"; $dbh->do(<prepare(<) { chomp; # superfluous, but we do it anyway $line++; my @vals; # adjust the regexp depending on your log format if (/^([^ ]*) [^ ]*? ([^ ]*?) \[([^\]]*?)\] "(.*?)" ([^ ]*?) ([^ ]*?) "(.*?)" "(.*?)"$/) { @vals = ($1,$2,$3,$4,$5,$6,$7,$8); } else { warn("Corrup log line: $_\n"); next; } eval { $vals[DATE] = Time::Piece->strptime($vals[DATE], '%d/%b/%Y:%H:%M:%S +0000')->datetime; }; if ($@) { die "Failed to parse $vals[DATE] on line $line\n"; } if ($vals[REQUEST] =~ /^(\w+) ([^ ]+)/) { $vals[METHOD] = $1; $vals[URI] = $2; } else { warn "Couldn't parse: $vals[REQUEST] on line $line\n" if $vals[REQUEST] ne '-'; $vals[METHOD] = "INVALID_METHOD"; $vals[URI] = "-"; } # print join(':', @vals), "\n"; $sth->execute(@vals[DATE,IP,METHOD,URI,AUTH,UA,REFERER,STATUS,BYTES]); unless ($line % 1000) { print "Completed $line lines, committing.\n"; $dbh->commit; } } close LOG; $sth->finish; $dbh->disconnect;