# p4rca configuration template
# Copy to /p4/common/config/p4rca.yaml (SDP) or /etc/p4rca/p4rca.yaml

# --- P4LOG tailing ---
tailer:
  log_path: /p4/1/logs/log          # P4LOG path (SDP: $LOGS/log)
  log2sql_bin: /usr/local/bin/log2sql
  db_path: /var/lib/p4rca/rolling.db
  window_minutes: 15                 # Rolling retention window

# --- Monitor collection ---
collector:
  interval_s: 30
  p4_bin: /p4/common/bin/p4
  p4port: 1666
  p4user: svc-p4rca

# --- Anomaly detection ---
detector:
  wedge:
    enabled: true
    lock_wait_threshold_ms: 5000
    min_waiting_processes: 3
  slow_command:
    enabled: true
    compute_threshold_ms: 30000
  connection_spike:
    enabled: true
    sigma_threshold: 3.0

# --- Action policy ---
action:
  max_tier: 1                        # 0=observe, 1=alert, 2=recommend, 3=act_timeout, 4=autonomous
  audit_log: /var/log/p4rca/audit.jsonl

# --- SLM (Phase 2) ---
# slm:
#   ollama_url: http://localhost:11434/api/chat
#   model: phi4

# --- RAG (Phase 3) ---
# rag:
#   vector_db_path: /var/lib/p4rca/rag.db
#   top_k: 5