policy: log selected actions

Rebased on top of !1234 (merged) (but planned to merge to master after EDE gets there)

---

The following actions will now be logged in debug level (or request tracing): ANSWER, DENY, DENY_MSG, DROP, REFUSE, TC

This can be useful for RPZ and other policy debugging.

Purposefully ommitted actions:

• PASS - since it's the same as normal processing
• REROUTE - the action itself comes from renumber module
• STUB,FORWARD,TLS_FORWARD - this could be more confusing than useful (e.g. when response comes from cache)

Fixes #689 (closed)

The two policies I'm not certain about when it comes to logging are: TC and REROUTE. TC was easy enough to implement, but it doesn't seem too important either way.

REROUTE might be useful, but I skipped it since it comes from a different module so I didn't want to make it more complex unless there's agreements that we actually need it.

added 1 commit

• 59a410c6 - policy: add policy.IPTRACE logging action

Compare with previous version

mentioned in issue #689 (closed)

changed the description

changed target branch from master to extended-errors

resolved all threads

deleted the extended-errors branch. This merge request now targets the master branch

added 37 commits

• 59a410c6...bfa16651 - 33 commits from branch master
• 727141db - policy: log selected actions
• b099a269 - doc: fix link to log groups
• 67a411d6 - doc: add mention about policy debug logging near RPZ
• ac6abd1b - policy: add policy.IPTRACE logging action

Compare with previous version

added 4 commits

• 46158186 - policy: log selected actions
• b4b918b9 - doc: fix link to log groups
• f41ee8c3 - doc: add mention about policy debug logging near RPZ
• 89aab472 - policy: add policy.IPTRACE logging action

Compare with previous version

marked this merge request as ready

merged

mentioned in commit e862a78d