osquery-1/osquery/main/daemon.cpp

/*
 *  Copyright (c) 2014, Facebook, Inc.
 *  All rights reserved.
 *
 *  This source code is licensed under the BSD-style license found in the
 *  LICENSE file in the root directory of this source tree. An additional grant 
 *  of patent rights can be found in the PATENTS file in the same directory.
 *
 */
 
#include <boost/thread.hpp>

#include <glog/logging.h>

#include <osquery/config.h>
#include <osquery/config/plugin.h>
#include <osquery/core.h>
#include <osquery/database.h>
#include <osquery/events.h>
#include <osquery/logger/plugin.h>
#include <osquery/scheduler.h>

int main(int argc, char* argv[]) {
  osquery::initOsquery(argc, argv, osquery::OSQUERY_TOOL_DAEMON);

  auto pid_status = osquery::createPidFile();
  if (!pid_status.ok()) {
    LOG(ERROR) << "Could not create osquery pidfile: " << pid_status.toString();
    ::exit(EXIT_FAILURE);
  }

  try {
    osquery::DBHandle::getInstance();
  } catch (std::exception& e) {
    LOG(ERROR) << "osqueryd failed to start: " << e.what();
    ::exit(1);
  }

  LOG(INFO) << "Listing all plugins";

  LOG(INFO) << "Logger plugins:";
  for (const auto& it : REGISTERED_LOGGER_PLUGINS) {
    LOG(INFO) << "  - " << it.first;
  }

  LOG(INFO) << "Config plugins:";
  for (const auto& it : REGISTERED_CONFIG_PLUGINS) {
    LOG(INFO) << "  - " << it.first;
  }

  LOG(INFO) << "Event Publishers:";
  for (const auto& it : REGISTERED_EVENTPUBLISHERS) {
    LOG(INFO) << "  - " << it.first;
  }

  LOG(INFO) << "Event Subscribers:";
  for (const auto& it : REGISTERED_EVENTSUBSCRIBERS) {
    LOG(INFO) << "  - " << it.first;
  }

  // Start a thread for each appropriate event type
  osquery::registries::faucet(REGISTERED_EVENTPUBLISHERS,
                              REGISTERED_EVENTSUBSCRIBERS);
  osquery::EventFactory::delay();

  boost::thread scheduler_thread(osquery::initializeScheduler);
  scheduler_thread.join();

  // End any event type run loops.
  osquery::EventFactory::end();

  return 0;
}
Updating the license comment to be the correct open source header As per t5494224, all of the license headers in osquery needed to be updated to reflect the correct open source header style. 2014-12-18 18:50:47 +00:00			`/*`
			`* Copyright (c) 2014, Facebook, Inc.`
			`* All rights reserved.`
			`*`
			`* This source code is licensed under the BSD-style license found in the`
			`* LICENSE file in the root directory of this source tree. An additional grant`
			`* of patent rights can be found in the PATENTS file in the same directory.`
			`*`
			`*/`

Initial commit 2014-07-31 00:35:19 +00:00			`#include <boost/thread.hpp>`

Adding LaunchDaemon and flagfile to the repo/package 2014-08-21 21:35:51 +00:00			`#include <glog/logging.h>`

Codemod to improve include search paths 2014-12-03 23:14:02 +00:00			`#include <osquery/config.h>`
			`#include <osquery/config/plugin.h>`
			`#include <osquery/core.h>`
			`#include <osquery/database.h>`
			`#include <osquery/events.h>`
			`#include <osquery/logger/plugin.h>`
			`#include <osquery/scheduler.h>`
Initial commit 2014-07-31 00:35:19 +00:00
clang-format 2014-08-30 11:06:21 +00:00			`int main(int argc, char* argv[]) {`
Refector shell flags/versioning 2014-11-09 04:27:28 +00:00			`osquery::initOsquery(argc, argv, osquery::OSQUERY_TOOL_DAEMON);`
Initial commit 2014-07-31 00:35:19 +00:00
pidfile for osqueryd close #442 2014-11-18 02:42:36 +00:00			`auto pid_status = osquery::createPidFile();`
			`if (!pid_status.ok()) {`
			`LOG(ERROR) << "Could not create osquery pidfile: " << pid_status.toString();`
Change exit(-1) to exit(EXIT_FAILURE) 2014-12-08 18:40:10 +00:00			`::exit(EXIT_FAILURE);`
pidfile for osqueryd close #442 2014-11-18 02:42:36 +00:00			`}`

Clean flags usage in daemon/shell and dbhandle 2014-10-27 18:55:28 +00:00			`try {`
			`osquery::DBHandle::getInstance();`
			`} catch (std::exception& e) {`
			`LOG(ERROR) << "osqueryd failed to start: " << e.what();`
			`::exit(1);`
			`}`

Adding LaunchDaemon and flagfile to the repo/package 2014-08-21 21:35:51 +00:00			`LOG(INFO) << "Listing all plugins";`

			`LOG(INFO) << "Logger plugins:";`
			`for (const auto& it : REGISTERED_LOGGER_PLUGINS) {`
			`LOG(INFO) << " - " << it.first;`
			`}`

			`LOG(INFO) << "Config plugins:";`
			`for (const auto& it : REGISTERED_CONFIG_PLUGINS) {`
			`LOG(INFO) << " - " << it.first;`
			`}`

Refector shell flags/versioning 2014-11-09 04:27:28 +00:00			`LOG(INFO) << "Event Publishers:";`
[events] Use pub/sub diction for events 2014-10-03 15:36:22 +00:00			`for (const auto& it : REGISTERED_EVENTPUBLISHERS) {`
[events] Registry integration 2014-09-24 18:25:05 +00:00			`LOG(INFO) << " - " << it.first;`
			`}`

Refector shell flags/versioning 2014-11-09 04:27:28 +00:00			`LOG(INFO) << "Event Subscribers:";`
[events] Use pub/sub diction for events 2014-10-03 15:36:22 +00:00			`for (const auto& it : REGISTERED_EVENTSUBSCRIBERS) {`
[events] Registry integration 2014-09-24 18:25:05 +00:00			`LOG(INFO) << " - " << it.first;`
			`}`

[events] EventType threads for each run loop 2014-09-23 01:35:12 +00:00			`// Start a thread for each appropriate event type`
Clean flags usage in daemon/shell and dbhandle 2014-10-27 18:55:28 +00:00			`osquery::registries::faucet(REGISTERED_EVENTPUBLISHERS,`
Using clang-format 3.5 2014-10-28 00:37:36 +00:00			`REGISTERED_EVENTSUBSCRIBERS);`
[events] EventType threads for each run loop 2014-09-23 01:35:12 +00:00			`osquery::EventFactory::delay();`
Initial commit 2014-07-31 00:35:19 +00:00
[events] EventType threads for each run loop 2014-09-23 01:35:12 +00:00			`boost::thread scheduler_thread(osquery::initializeScheduler);`
Initial commit 2014-07-31 00:35:19 +00:00			`scheduler_thread.join();`

[events] EventType threads for each run loop 2014-09-23 01:35:12 +00:00			`// End any event type run loops.`
			`osquery::EventFactory::end();`

Initial commit 2014-07-31 00:35:19 +00:00			`return 0;`
			`}`