osquery-1/include/osquery/config.h

// Copyright 2004-present Facebook. All Rights Reserved.

#pragma once

#include <future>
#include <memory>
#include <mutex>
#include <string>
#include <utility>
#include <vector>

#include "osquery/status.h"

namespace osquery {

/** @brief represents the relevant parameters of a scheduled query.
 *
 *  Within the context of osqueryd, a scheduled query may have many relevant
 *  attributes. Those attributes are represented in this data structure.
 */
struct OsqueryScheduledQuery {
  /// name represents the "name" of a query.
  std::string name;

  /// query represents the actual SQL query.
  std::string query;

  /// interval represents how often the query should be executed, in minutes.
  int interval;

  /// equals operator
  bool operator==(const OsqueryScheduledQuery& comp) const {
    return (comp.name == name) && (comp.query == query) &&
           (comp.interval == interval);
  }

  /// not equals operator
  bool operator!=(const OsqueryScheduledQuery& comp) const {
    return !(*this == comp);
  }
};

/** @brief A native representation of osquery configuration data.
 *
 *  When you use osquery::Config::getInstance(), you are getting a singleton
 *  handle to interact with the data stored in an instance of this struct.
 */
struct OsqueryConfig {
  /// A vector of all of the queries that are scheduled to execute.
  std::vector<OsqueryScheduledQuery> scheduledQueries;
};

/** @brief A string which represents the default consfig retriever.
 *
 *  The config plugin that you use to define your config retriever can be
 *  defined via a command-line flag, however, if you don't define a config
 *  plugin to use via the command-line, then the config retriever which is
 *  represented by the string stored in kDefaultConfigRetriever will be used.
 */
extern const std::string kDefaultConfigRetriever;

/** @brief A singleton that exposes accessors to osquery's configuration data.
 *
 *  osquery has two types on configurations. Things that don't change during
 *  the execution of the process should be configured as command-line
 *  arguments. Things that can change during the lifetime of program execution
 *  should be defined using the osquery::config::Config class and the pluggable
 *  plugin interface that is included with it.
 */
class Config {
 public:
  /** @brief The primary way to access the Config singleton.
   *
   *  osquery::config::Config::getInstance() provides access to the Config
   *  singleton
   *
   *  @code{.cpp}
   *    auto config = osquery::config::Config::getInstance();
   *  @endcode
   *
   *  @return a singleton instance of Config.
   */
  static std::shared_ptr<Config> getInstance();

  /** @brief Get a vector of all scheduled queries.
   *
   *  @code{.cpp}
   *    auto config = osquery::config::Config::getInstance();
   *    for (const auto& q : config->getScheduledQueries()) {
   *      LOG(INFO) << "name:     " << q.name;
   *      LOG(INFO) << "interval: " << q.interval;
   *    }
   *  @endcode
   *
   *  @return a vector of OsqueryScheduledQuery's which represent the queries
   *  that are to be executed
   */
  std::vector<OsqueryScheduledQuery> getScheduledQueries();

 private:
  /** @brief Default constructor.
   *
   * Since instances of Config should only be created via getInstance(),
   * Config's constructor is private
   */
  Config();

  /** @brief Uses the specified config retriever to populate a config struct.
   *
   *  Internally, genConfig checks to see if there was a config retriever
   *  specified on the command-line. If there was, it checks to see if that
   *  config retriever actually exists. If it does, it gets used to generate
   *  configuration data. If it does not, an error is logged.
   *
   *  If no config retriever was specified, the config retriever represented by
   *  kDefaultConfigRetriever is used.
   *
   *  @param conf a reference to a struct which will be populated by the config
   *  retriever in use.
   *
   *  @return an instance of osquery::Status, indicating the success or failure
   *  of the operation.
   */
  static osquery::Status genConfig(OsqueryConfig& conf);

 private:
  /** @brief the private member that stores the raw osquery config data in a
   *  native format
   */
  OsqueryConfig cfg_;
};
}
Initial commit 2014-07-31 00:35:19 +00:00			`// Copyright 2004-present Facebook. All Rights Reserved.`

using '#pragma once' instead of '#ifndef HEADER' let's start using #pragma once for our headers. it's less lines of code, clang supports it, headers become more movable, etc. it's all around a better plan. 2014-09-10 01:54:53 +00:00			`#pragma once`
Initial commit 2014-07-31 00:35:19 +00:00
			`#include <future>`
			`#include <memory>`
			`#include <mutex>`
			`#include <string>`
			`#include <utility>`
			`#include <vector>`

core/status to status and header cleanup 2014-08-05 23:13:55 +00:00			`#include "osquery/status.h"`
Initial commit 2014-07-31 00:35:19 +00:00
Ran clang-format across the codebase 2014-08-15 07:25:30 +00:00			`namespace osquery {`
Initial commit 2014-07-31 00:35:19 +00:00
#143 2014-09-15 18:09:33 +00:00			`/** @brief represents the relevant parameters of a scheduled query.`
			`*`
			`* Within the context of osqueryd, a scheduled query may have many relevant`
			`* attributes. Those attributes are represented in this data structure.`
			`*/`
Initial commit 2014-07-31 00:35:19 +00:00			`struct OsqueryScheduledQuery {`
#143 2014-09-15 18:09:33 +00:00			`/// name represents the "name" of a query.`
Initial commit 2014-07-31 00:35:19 +00:00			`std::string name;`

#143 2014-09-15 18:09:33 +00:00			`/// query represents the actual SQL query.`
Initial commit 2014-07-31 00:35:19 +00:00			`std::string query;`

#143 2014-09-15 18:09:33 +00:00			`/// interval represents how often the query should be executed, in minutes.`
Initial commit 2014-07-31 00:35:19 +00:00			`int interval;`

#143 2014-09-15 18:09:33 +00:00			`/// equals operator`
Initial commit 2014-07-31 00:35:19 +00:00			`bool operator==(const OsqueryScheduledQuery& comp) const {`
Ran clang-format across the codebase 2014-08-15 07:25:30 +00:00			`return (comp.name == name) && (comp.query == query) &&`
Initial commit 2014-07-31 00:35:19 +00:00			`(comp.interval == interval);`
			`}`

#143 2014-09-15 18:09:33 +00:00			`/// not equals operator`
Initial commit 2014-07-31 00:35:19 +00:00			`bool operator!=(const OsqueryScheduledQuery& comp) const {`
			`return !(*this == comp);`
			`}`
			`};`

#143 2014-09-15 18:09:33 +00:00			`/** @brief A native representation of osquery configuration data.`
			`*`
			`* When you use osquery::Config::getInstance(), you are getting a singleton`
			`* handle to interact with the data stored in an instance of this struct.`
			`*/`
Initial commit 2014-07-31 00:35:19 +00:00			`struct OsqueryConfig {`
#143 2014-09-15 18:09:33 +00:00			`/// A vector of all of the queries that are scheduled to execute.`
			`std::vector<OsqueryScheduledQuery> scheduledQueries;`
Initial commit 2014-07-31 00:35:19 +00:00			`};`

config documentation updates 2014-09-15 20:02:30 +00:00			`/** @brief A string which represents the default consfig retriever.`
#143 2014-09-15 18:09:33 +00:00			`*`
			`* The config plugin that you use to define your config retriever can be`
			`* defined via a command-line flag, however, if you don't define a config`
			`* plugin to use via the command-line, then the config retriever which is`
			`* represented by the string stored in kDefaultConfigRetriever will be used.`
			`*/`
Initial commit 2014-07-31 00:35:19 +00:00			`extern const std::string kDefaultConfigRetriever;`

#143 2014-09-15 18:09:33 +00:00			`/** @brief A singleton that exposes accessors to osquery's configuration data.`
			`*`
			`* osquery has two types on configurations. Things that don't change during`
			`* the execution of the process should be configured as command-line`
			`* arguments. Things that can change during the lifetime of program execution`
			`* should be defined using the osquery::config::Config class and the pluggable`
			`* plugin interface that is included with it.`
			`*/`
Initial commit 2014-07-31 00:35:19 +00:00			`class Config {`
Ran clang-format across the codebase 2014-08-15 07:25:30 +00:00			`public:`
#143 2014-09-15 18:09:33 +00:00			`/** @brief The primary way to access the Config singleton.`
			`*`
			`* osquery::config::Config::getInstance() provides access to the Config`
			`* singleton`
			`*`
			`* @code{.cpp}`
			`* auto config = osquery::config::Config::getInstance();`
			`* @endcode`
			`*`
			`* @return a singleton instance of Config.`
			`*/`
Initial commit 2014-07-31 00:35:19 +00:00			`static std::shared_ptr<Config> getInstance();`

#143 2014-09-15 18:09:33 +00:00			`/** @brief Get a vector of all scheduled queries.`
			`*`
			`* @code{.cpp}`
			`* auto config = osquery::config::Config::getInstance();`
			`* for (const auto& q : config->getScheduledQueries()) {`
			`* LOG(INFO) << "name: " << q.name;`
			`* LOG(INFO) << "interval: " << q.interval;`
			`* }`
			`* @endcode`
			`*`
			`* @return a vector of OsqueryScheduledQuery's which represent the queries`
			`* that are to be executed`
			`*/`
down with scheduledQueries_t 2014-09-15 18:17:48 +00:00			`std::vector<OsqueryScheduledQuery> getScheduledQueries();`
Ran clang-format across the codebase 2014-08-15 07:25:30 +00:00
			`private:`
#143 2014-09-15 18:09:33 +00:00			`/** @brief Default constructor.`
			`*`
			`* Since instances of Config should only be created via getInstance(),`
			`* Config's constructor is private`
			`*/`
Initial commit 2014-07-31 00:35:19 +00:00			`Config();`

#143 2014-09-15 18:09:33 +00:00			`/** @brief Uses the specified config retriever to populate a config struct.`
			`*`
			`* Internally, genConfig checks to see if there was a config retriever`
			`* specified on the command-line. If there was, it checks to see if that`
			`* config retriever actually exists. If it does, it gets used to generate`
			`* configuration data. If it does not, an error is logged.`
			`*`
			`* If no config retriever was specified, the config retriever represented by`
			`* kDefaultConfigRetriever is used.`
			`*`
			`* @param conf a reference to a struct which will be populated by the config`
			`* retriever in use.`
			`*`
			`* @return an instance of osquery::Status, indicating the success or failure`
			`* of the operation.`
			`*/`
core/status to status and header cleanup 2014-08-05 23:13:55 +00:00			`static osquery::Status genConfig(OsqueryConfig& conf);`
Ran clang-format across the codebase 2014-08-15 07:25:30 +00:00
			`private:`
#143 2014-09-15 18:09:33 +00:00			`/** @brief the private member that stores the raw osquery config data in a`
			`* native format`
			`*/`
Initial commit 2014-07-31 00:35:19 +00:00			`OsqueryConfig cfg_;`
			`};`
Ran clang-format across the codebase 2014-08-15 07:25:30 +00:00			`}`