LILiK
/
openwrt-packages-dist
5
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
17376 Commits
1 Branch
46 MiB
Tree: 130b770a8b
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '130b770a8b'
${ noResults }
openwrt-packages-dist/net/ulogd/patches/010-json-remote.patch

441 lines
11 KiB
Raw Normal View History

ulogd: Backport JSON network patch It was requested in #9065 . Cleaned up Makefile slightly. Removed inactive maintainer. Added PKG_BUILD_PARALLEL for faster compilation. Signed-off-by: Rosen Penev <rosenp@gmail.com>
5 years ago
 
  1. From 9d9ea2cd70a369a7f665a322e6c53631e01a2570 Mon Sep 17 00:00:00 2001
  2. From: Andreas Jaggi <andreas.jaggi@waterwave.ch>
  3. Date: Wed, 30 May 2018 22:15:36 +0200
  4. Subject: ulogd: json: send messages to a remote host / unix socket
  5. 

  6. Extend the JSON output plugin so that the generated JSON stream can be
  7. sent to a remote host via TCP/UDP or to a local unix socket.
  8. 

  9. Signed-off-by: Andreas Jaggi <andreas.jaggi@waterwave.ch>
  10. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
  11. ---

  12.  output/ulogd_output_JSON.c | 291 +++++++++++++++++++++++++++++++++++++++++----
  13.  ulogd.conf.in              |  11 ++
  14.  2 files changed, 281 insertions(+), 21 deletions(-)
  15. 

  16. diff --git a/output/ulogd_output_JSON.c b/output/ulogd_output_JSON.c

  17. index 4d8e3e9..6edfa90 100644

  18. --- a/output/ulogd_output_JSON.c

  19. +++ b/output/ulogd_output_JSON.c

  20. @@ -20,10 +20,15 @@

  21.  
  22.  #include <stdio.h>
  23.  #include <stdlib.h>
  24. +#include <unistd.h>

  25.  #include <string.h>
  26.  #include <time.h>
  27.  #include <errno.h>
  28.  #include <inttypes.h>
  29. +#include <sys/types.h>

  30. +#include <sys/socket.h>

  31. +#include <sys/un.h>

  32. +#include <netdb.h>

  33.  #include <ulogd/ulogd.h>
  34.  #include <ulogd/conffile.h>
  35.  #include <jansson.h>
  36. @@ -36,6 +41,10 @@

  37.  #define ULOGD_JSON_DEFAULT_DEVICE "Netfilter"
  38.  #endif
  39.  
  40. +#define host_ce(x)	(x->ces[JSON_CONF_HOST])

  41. +#define port_ce(x)	(x->ces[JSON_CONF_PORT])

  42. +#define mode_ce(x)	(x->ces[JSON_CONF_MODE])

  43. +#define file_ce(x)	(x->ces[JSON_CONF_FILENAME])

  44.  #define unlikely(x) __builtin_expect((x),0)
  45.  
  46.  struct json_priv {
  47. @@ -44,6 +53,15 @@ struct json_priv {

  48.  	int usec_idx;
  49.  	long cached_gmtoff;
  50.  	char cached_tz[6];	/* eg +0200 */
  51. +	int mode;

  52. +	int sock;

  53. +};

  54. +

  55. +enum json_mode {

  56. +	JSON_MODE_FILE = 0,

  57. +	JSON_MODE_TCP,

  58. +	JSON_MODE_UDP,

  59. +	JSON_MODE_UNIX

  60.  };
  61.  
  62.  enum json_conf {
  63. @@ -53,6 +71,9 @@ enum json_conf {

  64.  	JSON_CONF_EVENTV1,
  65.  	JSON_CONF_DEVICE,
  66.  	JSON_CONF_BOOLEAN_LABEL,
  67. +	JSON_CONF_MODE,

  68. +	JSON_CONF_HOST,

  69. +	JSON_CONF_PORT,

  70.  	JSON_CONF_MAX
  71.  };
  72.  
  73. @@ -95,15 +116,167 @@ static struct config_keyset json_kset = {

  74.  			.options = CONFIG_OPT_NONE,
  75.  			.u = { .value = 0 },
  76.  		},
  77. +		[JSON_CONF_MODE] = {

  78. +			.key = "mode",

  79. +			.type = CONFIG_TYPE_STRING,

  80. +			.options = CONFIG_OPT_NONE,

  81. +			.u = { .string = "file" },

  82. +		},

  83. +		[JSON_CONF_HOST] = {

  84. +			.key = "host",

  85. +			.type = CONFIG_TYPE_STRING,

  86. +			.options = CONFIG_OPT_NONE,

  87. +			.u = { .string = "127.0.0.1" },

  88. +		},

  89. +		[JSON_CONF_PORT] = {

  90. +			.key = "port",

  91. +			.type = CONFIG_TYPE_STRING,

  92. +			.options = CONFIG_OPT_NONE,

  93. +			.u = { .string = "12345" },

  94. +		},

  95.  	},
  96.  };
  97.  
  98. +static void close_socket(struct json_priv *op) {

  99. +	if (op->sock != -1) {

  100. +		close(op->sock);

  101. +		op->sock = -1;

  102. +	}

  103. +}

  104. +

  105. +static int _connect_socket_unix(struct ulogd_pluginstance *pi)

  106. +{

  107. +	struct json_priv *op = (struct json_priv *) &pi->private;

  108. +	struct sockaddr_un u_addr;

  109. +	int sfd;

  110. +

  111. +	close_socket(op);

  112. +

  113. +	ulogd_log(ULOGD_DEBUG, "connecting to unix:%s\n",

  114. +		  file_ce(pi->config_kset).u.string);

  115. +

  116. +	sfd = socket(AF_UNIX, SOCK_STREAM, 0);

  117. +	if (sfd == -1) {

  118. +		return -1;

  119. +	}

  120. +	u_addr.sun_family = AF_UNIX;

  121. +	strncpy(u_addr.sun_path, file_ce(pi->config_kset).u.string,

  122. +		sizeof(u_addr.sun_path) - 1);

  123. +	if (connect(sfd, (struct sockaddr *) &u_addr, sizeof(struct sockaddr_un)) == -1) {

  124. +		close(sfd);

  125. +		return -1;

  126. +	}

  127. +

  128. +	op->sock = sfd;

  129. +

  130. +	return 0;

  131. +}

  132. +

  133. +static int _connect_socket_net(struct ulogd_pluginstance *pi)

  134. +{

  135. +	struct json_priv *op = (struct json_priv *) &pi->private;

  136. +	struct addrinfo hints;

  137. +	struct addrinfo *result, *rp;

  138. +	int sfd, s;

  139. +

  140. +	close_socket(op);

  141. +

  142. +	ulogd_log(ULOGD_DEBUG, "connecting to %s:%s\n",

  143. +		  host_ce(pi->config_kset).u.string,

  144. +		  port_ce(pi->config_kset).u.string);

  145. +

  146. +	memset(&hints, 0, sizeof(struct addrinfo));

  147. +	hints.ai_family = AF_UNSPEC;

  148. +	hints.ai_socktype = op->mode == JSON_MODE_UDP ? SOCK_DGRAM : SOCK_STREAM;

  149. +	hints.ai_protocol = 0;

  150. +	hints.ai_flags = 0;

  151. +

  152. +	s = getaddrinfo(host_ce(pi->config_kset).u.string,

  153. +			port_ce(pi->config_kset).u.string, &hints, &result);

  154. +	if (s != 0) {

  155. +		ulogd_log(ULOGD_ERROR, "getaddrinfo: %s\n", gai_strerror(s));

  156. +		return -1;

  157. +	}

  158. +

  159. +	for (rp = result; rp != NULL; rp = rp->ai_next) {

  160. +		int on = 1;

  161. +

  162. +		sfd = socket(rp->ai_family, rp->ai_socktype,

  163. +				rp->ai_protocol);

  164. +		if (sfd == -1)

  165. +			continue;

  166. +

  167. +		setsockopt(sfd, SOL_SOCKET, SO_REUSEADDR,

  168. +			   (char *) &on, sizeof(on));

  169. +

  170. +		if (connect(sfd, rp->ai_addr, rp->ai_addrlen) != -1)

  171. +			break;

  172. +

  173. +		close(sfd);

  174. +	}

  175. +

  176. +	freeaddrinfo(result);

  177. +

  178. +	if (rp == NULL) {

  179. +		return -1;

  180. +	}

  181. +

  182. +	op->sock = sfd;

  183. +

  184. +	return 0;

  185. +}

  186. +

  187. +static int _connect_socket(struct ulogd_pluginstance *pi)

  188. +{

  189. +	struct json_priv *op = (struct json_priv *) &pi->private;

  190. +

  191. +	if (op->mode == JSON_MODE_UNIX)

  192. +		return _connect_socket_unix(pi);

  193. +	else

  194. +		return _connect_socket_net(pi);

  195. +}

  196. +

  197. +static int json_interp_socket(struct ulogd_pluginstance *upi, char *buf, int buflen)

  198. +{

  199. +	struct json_priv *opi = (struct json_priv *) &upi->private;

  200. +	int ret = 0;

  201. +

  202. +	if (opi->sock != -1)

  203. +		ret = send(opi->sock, buf, buflen, MSG_NOSIGNAL);

  204. +	free(buf);

  205. +	if (ret != buflen) {

  206. +		ulogd_log(ULOGD_ERROR, "Failure sending message: %s\n",

  207. +			  strerror(errno));

  208. +		if (ret == -1 || opi->sock == -1)

  209. +			return _connect_socket(upi);

  210. +		else

  211. +			return ULOGD_IRET_ERR;

  212. +	}

  213. +

  214. +	return ULOGD_IRET_OK;

  215. +}

  216. +

  217. +static int json_interp_file(struct ulogd_pluginstance *upi, char *buf)

  218. +{

  219. +	struct json_priv *opi = (struct json_priv *) &upi->private;

  220. +

  221. +	fprintf(opi->of, "%s", buf);

  222. +	free(buf);

  223. +

  224. +	if (upi->config_kset->ces[JSON_CONF_SYNC].u.value != 0)

  225. +		fflush(opi->of);

  226. +

  227. +	return ULOGD_IRET_OK;

  228. +}

  229. +

  230.  #define MAX_LOCAL_TIME_STRING 38
  231.  
  232.  static int json_interp(struct ulogd_pluginstance *upi)
  233.  {
  234.  	struct json_priv *opi = (struct json_priv *) &upi->private;
  235.  	unsigned int i;
  236. +	char *buf;

  237. +	int buflen;

  238.  	json_t *msg;
  239.  
  240.  	msg = json_object();
  241. @@ -218,34 +391,65 @@ static int json_interp(struct ulogd_pluginstance *upi)

  242.  		}
  243.  	}
  244.  
  245. -	json_dumpf(msg, opi->of, 0);

  246. -	fprintf(opi->of, "\n");

  247.  
  248. +	buf = json_dumps(msg, 0);

  249.  	json_decref(msg);
  250. +	if (buf == NULL) {

  251. +		ulogd_log(ULOGD_ERROR, "Could not create message\n");

  252. +		return ULOGD_IRET_ERR;

  253. +	}

  254. +	buflen = strlen(buf);

  255. +	buf = realloc(buf, sizeof(char)*(buflen+2));

  256. +	if (buf == NULL) {

  257. +		ulogd_log(ULOGD_ERROR, "Could not create message\n");

  258. +		return ULOGD_IRET_ERR;

  259. +	}

  260. +	strncat(buf, "\n", 1);

  261. +	buflen++;

  262.  
  263. -	if (upi->config_kset->ces[JSON_CONF_SYNC].u.value != 0)

  264. -		fflush(opi->of);

  265. +	if (opi->mode == JSON_MODE_FILE)

  266. +		return json_interp_file(upi, buf);

  267. +	else

  268. +		return json_interp_socket(upi, buf, buflen);

  269. +}

  270.  
  271. -	return ULOGD_IRET_OK;

  272. +static void reopen_file(struct ulogd_pluginstance *upi)

  273. +{

  274. +	struct json_priv *oi = (struct json_priv *) &upi->private;

  275. +	FILE *old = oi->of;

  276. +

  277. +	ulogd_log(ULOGD_NOTICE, "JSON: reopening logfile\n");

  278. +	oi->of = fopen(upi->config_kset->ces[0].u.string, "a");

  279. +	if (!oi->of) {

  280. +		ulogd_log(ULOGD_ERROR, "can't open JSON "

  281. +				       "log file: %s\n",

  282. +			  strerror(errno));

  283. +		oi->of = old;

  284. +	} else {

  285. +		fclose(old);

  286. +	}

  287. +}

  288. +

  289. +static void reopen_socket(struct ulogd_pluginstance *upi)

  290. +{

  291. +	ulogd_log(ULOGD_NOTICE, "JSON: reopening socket\n");

  292. +	if (_connect_socket(upi) < 0) {

  293. +		ulogd_log(ULOGD_ERROR, "can't open JSON "

  294. +				       "socket: %s\n",

  295. +			  strerror(errno));

  296. +	}

  297.  }
  298.  
  299.  static void sighup_handler_print(struct ulogd_pluginstance *upi, int signal)
  300.  {
  301.  	struct json_priv *oi = (struct json_priv *) &upi->private;
  302. -	FILE *old = oi->of;

  303.  
  304.  	switch (signal) {
  305.  	case SIGHUP:
  306. -		ulogd_log(ULOGD_NOTICE, "JSON: reopening logfile\n");

  307. -		oi->of = fopen(upi->config_kset->ces[0].u.string, "a");

  308. -		if (!oi->of) {

  309. -			ulogd_log(ULOGD_ERROR, "can't open JSON "

  310. -					       "log file: %s\n",

  311. -				  strerror(errno));

  312. -			oi->of = old;

  313. -		} else {

  314. -			fclose(old);

  315. -		}

  316. +		if (oi->mode == JSON_MODE_FILE)

  317. +			reopen_file(upi);

  318. +		else

  319. +			reopen_socket(upi);

  320.  		break;
  321.  	default:
  322.  		break;
  323. @@ -255,6 +459,8 @@ static void sighup_handler_print(struct ulogd_pluginstance *upi, int signal)

  324.  static int json_configure(struct ulogd_pluginstance *upi,
  325.  			    struct ulogd_pluginstance_stack *stack)
  326.  {
  327. +	struct json_priv *op = (struct json_priv *) &upi->private;

  328. +	char *mode_str = mode_ce(upi->config_kset).u.string;

  329.  	int ret;
  330.  
  331.  	ret = ulogd_wildcard_inputkeys(upi);
  332. @@ -265,13 +471,25 @@ static int json_configure(struct ulogd_pluginstance *upi,

  333.  	if (ret < 0)
  334.  		return ret;
  335.  
  336. +	if (!strcasecmp(mode_str, "udp")) {

  337. +		op->mode = JSON_MODE_UDP;

  338. +	} else if (!strcasecmp(mode_str, "tcp")) {

  339. +		op->mode = JSON_MODE_TCP;

  340. +	} else if (!strcasecmp(mode_str, "unix")) {

  341. +		op->mode = JSON_MODE_UNIX;

  342. +	} else if (!strcasecmp(mode_str, "file")) {

  343. +		op->mode = JSON_MODE_FILE;

  344. +	} else {

  345. +		ulogd_log(ULOGD_ERROR, "unknown mode '%s'\n", mode_str);

  346. +		return -EINVAL;

  347. +	}

  348. +

  349.  	return 0;
  350.  }
  351.  
  352. -static int json_init(struct ulogd_pluginstance *upi)

  353. +static int json_init_file(struct ulogd_pluginstance *upi)

  354.  {
  355.  	struct json_priv *op = (struct json_priv *) &upi->private;
  356. -	unsigned int i;

  357.  
  358.  	op->of = fopen(upi->config_kset->ces[0].u.string, "a");
  359.  	if (!op->of) {
  360. @@ -280,6 +498,27 @@ static int json_init(struct ulogd_pluginstance *upi)

  361.  		return -1;
  362.  	}
  363.  
  364. +	return 0;

  365. +}

  366. +

  367. +static int json_init_socket(struct ulogd_pluginstance *upi)

  368. +{

  369. +	struct json_priv *op = (struct json_priv *) &upi->private;

  370. +

  371. +	if (host_ce(upi->config_kset).u.string == NULL)

  372. +		return -1;

  373. +	if (port_ce(upi->config_kset).u.string == NULL)

  374. +		return -1;

  375. +

  376. +	op->sock = -1;

  377. +	return _connect_socket(upi);

  378. +}

  379. +

  380. +static int json_init(struct ulogd_pluginstance *upi)

  381. +{

  382. +	struct json_priv *op = (struct json_priv *) &upi->private;

  383. +	unsigned int i;

  384. +

  385.  	/* search for time */
  386.  	op->sec_idx = -1;
  387.  	op->usec_idx = -1;
  388. @@ -293,15 +532,25 @@ static int json_init(struct ulogd_pluginstance *upi)

  389.  
  390.  	*op->cached_tz = '\0';
  391.  
  392. -	return 0;

  393. +	if (op->mode == JSON_MODE_FILE)

  394. +		return json_init_file(upi);

  395. +	else

  396. +		return json_init_socket(upi);

  397. +}

  398. +

  399. +static void close_file(FILE *of) {

  400. +	if (of != stdout)

  401. +		fclose(of);

  402.  }
  403.  
  404.  static int json_fini(struct ulogd_pluginstance *pi)
  405.  {
  406.  	struct json_priv *op = (struct json_priv *) &pi->private;
  407.  
  408. -	if (op->of != stdout)

  409. -		fclose(op->of);

  410. +	if (op->mode == JSON_MODE_FILE)

  411. +		close_file(op->of);

  412. +	else

  413. +		close_socket(op);

  414.  
  415.  	return 0;
  416.  }
  417. diff --git a/ulogd.conf.in b/ulogd.conf.in

  418. index 62222db..99cfc24 100644

  419. --- a/ulogd.conf.in

  420. +++ b/ulogd.conf.in

  421. @@ -213,6 +213,17 @@ sync=1

  422.  # Uncomment the following line to use JSON v1 event format that
  423.  # can provide better compatility with some JSON file reader.
  424.  #eventv1=1
  425. +# Uncomment the following lines to send the JSON logs to a remote host via UDP

  426. +#mode="udp"

  427. +#host="192.0.2.10"

  428. +#port="10210"

  429. +# Uncomment the following lines to send the JSON logs to a remote host via TCP

  430. +#mode="tcp"

  431. +#host="192.0.2.10"

  432. +#port="10210"

  433. +# Uncomment the following lines to send the JSON logs to a local unix socket

  434. +#mode="unix"

  435. +#file="/var/run/ulogd.socket"

  436.  
  437.  [pcap1]
  438.  #default file is /var/log/ulogd.pcap
  439. -- 

  440. cgit v1.2.1
  441.