osquery-1/osquery/logger/plugins/aws_kinesis.h

/*
 *  Copyright (c) 2014-present, Facebook, Inc.
 *  All rights reserved.
 *
 *  This source code is licensed under the BSD-style license found in the
 *  LICENSE file in the root directory of this source tree. An additional grant
 *  of patent rights can be found in the PATENTS file in the same directory.
 *
 */

#pragma once

#include <chrono>
#include <memory>
#include <vector>

#include <aws/kinesis/KinesisClient.h>

#include <osquery/core.h>
#include <osquery/dispatcher.h>
#include <osquery/logger.h>

#include "osquery/logger/plugins/buffered.h"

namespace osquery {

DECLARE_uint64(aws_kinesis_period);

class KinesisLogForwarder : public BufferedLogForwarder {
 private:
  static const size_t kKinesisMaxLogBytes;
  static const size_t kKinesisMaxRecords;
  static const size_t kKinesisMaxRetryCount;
  static const size_t kKinesisInitialRetryDelay;

 public:
  KinesisLogForwarder()
      : BufferedLogForwarder("kinesis",
                             std::chrono::seconds(FLAGS_aws_kinesis_period),
                             kKinesisMaxRecords) {}
  Status setUp() override;

 protected:
  Status send(std::vector<std::string>& log_data,
              const std::string& log_type) override;

 private:
  std::string partition_key_;
  std::shared_ptr<Aws::Kinesis::KinesisClient> client_{nullptr};

  FRIEND_TEST(KinesisTests, test_send);
};

class KinesisLoggerPlugin : public LoggerPlugin {
 public:
  KinesisLoggerPlugin() : LoggerPlugin() {}

  Status setUp() override;

  bool usesLogStatus() override {
    return true;
  }

 private:
  void init(const std::string& name,
            const std::vector<StatusLogLine>& log) override;

  Status logString(const std::string& s) override;

  /// Log a status (ERROR/WARNING/INFO) message.
  Status logStatus(const std::vector<StatusLogLine>& log) override;

 private:
  std::shared_ptr<KinesisLogForwarder> forwarder_{nullptr};
};
}
Add AWS Kinesis and Firehose logger plugins (#2045) This commit adds logger plugin implementations for the Amazon Kinesis (https://aws.amazon.com/kinesis/) and Kinesis Firehose (https://aws.amazon.com/kinesis/firehose/) services. To support these plugins there are a number of utility classes and functions for AWS authentication, configuration and API integration. The logger plugin implementations take advantage of the BufferedLogForwarder base class for reliable buffering and batch sending of logs. In their current implementations, the logger plugins only support sending of result logs to these AWS services. 2016-04-25 23:19:51 +00:00			`/*`
			`* Copyright (c) 2014-present, Facebook, Inc.`
			`* All rights reserved.`
			`*`
			`* This source code is licensed under the BSD-style license found in the`
			`* LICENSE file in the root directory of this source tree. An additional grant`
			`* of patent rights can be found in the PATENTS file in the same directory.`
			`*`
			`*/`

			`#pragma once`

			`#include <chrono>`
			`#include <memory>`
			`#include <vector>`

			`#include <aws/kinesis/KinesisClient.h>`

			`#include <osquery/core.h>`
			`#include <osquery/dispatcher.h>`
			`#include <osquery/logger.h>`

			`#include "osquery/logger/plugins/buffered.h"`

			`namespace osquery {`

			`DECLARE_uint64(aws_kinesis_period);`

			`class KinesisLogForwarder : public BufferedLogForwarder {`
			`private:`
			`static const size_t kKinesisMaxLogBytes;`
			`static const size_t kKinesisMaxRecords;`
Adding Status Logging to AWS Kinesis/Firehose Logger Plugins (#3115) 2017-04-04 16:54:56 +00:00			`static const size_t kKinesisMaxRetryCount;`
			`static const size_t kKinesisInitialRetryDelay;`
Add AWS Kinesis and Firehose logger plugins (#2045) This commit adds logger plugin implementations for the Amazon Kinesis (https://aws.amazon.com/kinesis/) and Kinesis Firehose (https://aws.amazon.com/kinesis/firehose/) services. To support these plugins there are a number of utility classes and functions for AWS authentication, configuration and API integration. The logger plugin implementations take advantage of the BufferedLogForwarder base class for reliable buffering and batch sending of logs. In their current implementations, the logger plugins only support sending of result logs to these AWS services. 2016-04-25 23:19:51 +00:00
			`public:`
			`KinesisLogForwarder()`
			`: BufferedLogForwarder("kinesis",`
			`std::chrono::seconds(FLAGS_aws_kinesis_period),`
			`kKinesisMaxRecords) {}`
			`Status setUp() override;`

			`protected:`
			`Status send(std::vector<std::string>& log_data,`
			`const std::string& log_type) override;`

			`private:`
Optional randomization of shard ids for AWS Kinesis load balancing (#2157) 2016-06-15 22:29:59 +00:00			`std::string partition_key_;`
Add AWS Kinesis and Firehose logger plugins (#2045) This commit adds logger plugin implementations for the Amazon Kinesis (https://aws.amazon.com/kinesis/) and Kinesis Firehose (https://aws.amazon.com/kinesis/firehose/) services. To support these plugins there are a number of utility classes and functions for AWS authentication, configuration and API integration. The logger plugin implementations take advantage of the BufferedLogForwarder base class for reliable buffering and batch sending of logs. In their current implementations, the logger plugins only support sending of result logs to these AWS services. 2016-04-25 23:19:51 +00:00			`std::shared_ptr<Aws::Kinesis::KinesisClient> client_{nullptr};`

			`FRIEND_TEST(KinesisTests, test_send);`
			`};`

			`class KinesisLoggerPlugin : public LoggerPlugin {`
			`public:`
			`KinesisLoggerPlugin() : LoggerPlugin() {}`

			`Status setUp() override;`

Adding Status Logging to AWS Kinesis/Firehose Logger Plugins (#3115) 2017-04-04 16:54:56 +00:00			`bool usesLogStatus() override {`
			`return true;`
			`}`

Refactor logStatus and logger initialization (#2081) The initialization of a logger plugin was confusing. The 'init' step was introduced to allow a daemon to buffer status events before a logger plugin is determined by external/remote configuration. The buffered statuses could then be transferred via a medium other than Glog (the default). To determine if Glog should continue to write statuses to the filesystem the 'init' method returned a Status. Logger plugins should now use a feature method override to select how status logs should be handled. 2016-05-11 19:05:09 +00:00			`private:`
			`void init(const std::string& name,`
Adding Status Logging to AWS Kinesis/Firehose Logger Plugins (#3115) 2017-04-04 16:54:56 +00:00			`const std::vector<StatusLogLine>& log) override;`
Add AWS Kinesis and Firehose logger plugins (#2045) This commit adds logger plugin implementations for the Amazon Kinesis (https://aws.amazon.com/kinesis/) and Kinesis Firehose (https://aws.amazon.com/kinesis/firehose/) services. To support these plugins there are a number of utility classes and functions for AWS authentication, configuration and API integration. The logger plugin implementations take advantage of the BufferedLogForwarder base class for reliable buffering and batch sending of logs. In their current implementations, the logger plugins only support sending of result logs to these AWS services. 2016-04-25 23:19:51 +00:00
			`Status logString(const std::string& s) override;`

Adding Status Logging to AWS Kinesis/Firehose Logger Plugins (#3115) 2017-04-04 16:54:56 +00:00			`/// Log a status (ERROR/WARNING/INFO) message.`
			`Status logStatus(const std::vector<StatusLogLine>& log) override;`

Add AWS Kinesis and Firehose logger plugins (#2045) This commit adds logger plugin implementations for the Amazon Kinesis (https://aws.amazon.com/kinesis/) and Kinesis Firehose (https://aws.amazon.com/kinesis/firehose/) services. To support these plugins there are a number of utility classes and functions for AWS authentication, configuration and API integration. The logger plugin implementations take advantage of the BufferedLogForwarder base class for reliable buffering and batch sending of logs. In their current implementations, the logger plugins only support sending of result logs to these AWS services. 2016-04-25 23:19:51 +00:00			`private:`
			`std::shared_ptr<KinesisLogForwarder> forwarder_{nullptr};`
			`};`
			`}`