fluent-plugin-windows-eventlog 0.5.4 → 0.6.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (7) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +4 -0
  3. data/README.md +3 -3
  4. data/fluent-plugin-winevtlog.gemspec +3 -3
  5. data/lib/fluent/plugin/in_windows_eventlog2.rb +1 -1
  6. data/test/plugin/test_in_windows_eventlog2.rb +13 -3
  7. metadata +27 -27
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 4adb2db8018eb70bda4f9c33114901fe73a6e9d418795eacd6c082d2dc5cbe28
4
- data.tar.gz: e5061ffe31dd546e51c59cbaac8be76f59a72d2408d5a0d8005cfead39800a6e
3
+ metadata.gz: 7e3441c382ee3af99cf0a4b67e1d059903933ec07f837fbec8ae93b11a2b252c
4
+ data.tar.gz: 2d8555cc1d825218f03deb00b4d83ac2690df8e138395cdef197319b299b2135
5
5
  SHA512:
6
- metadata.gz: baf4475fcd9f425e3e745badc49348d601f77ff932ba73f475a8df7d92a8d464a7f66c1eaaadeee89be2ec9a0655a62c49b900f3e4eb74ebc7b0b268ad4c3c8c
7
- data.tar.gz: 1fc8df91e614f7ff3e03fa3dea159743d0ffc86bfec538c2351b03126970886c1bdca30887663bc18eb2a75db94f404a8b3add6a528363a94314924a61265466
6
+ metadata.gz: 26071af5dda0107d6269dd2a4ff641cbf914a4ff7071d725e4297001e9b1606470cb019e578900a57c7738d49d4f8093cdd8ba164db826dd246a88cef4f1b333
7
+ data.tar.gz: 318b12aa2ef3d12547001ae1dc17a27fe28bf0622c6249f2ec396a5cf77a12ff4b8f54bb994a746eb517a99e4d1cd8b77325ad43e9704f4b01b205fb1019fd13
data/CHANGELOG.md CHANGED
@@ -1,3 +1,7 @@
1
+ # Release v0.6.0 - 2020/04/15
2
+ * Make fluent-plugin-parser-winevt_xml plugin as optional dependency
3
+ * in_windows_eventlog2: Render Ruby hash object directly by default
4
+
1
5
  # Release v0.5.4 - 2020/04/10
2
6
  * Permit using nokogiri 1.11.0
3
7
 
data/README.md CHANGED
@@ -139,7 +139,7 @@ fluentd Input plugin for the Windows Event Log using newer Windows Event Logging
139
139
  read_existing_events false
140
140
  read_interval 2
141
141
  tag winevt.raw
142
- render_as_xml false # default is true.
142
+ render_as_xml false # default is false.
143
143
  rate_limit 200 # default is -1(Winevt::EventLog::Subscribe::RATE_INFINITE).
144
144
  # preserve_qualifiers_on_hash true # default is false.
145
145
  <storage>
@@ -166,7 +166,7 @@ fluentd Input plugin for the Windows Event Log using newer Windows Event Logging
166
166
 
167
167
  **NOTE:** When `Description` contains error message such as `The message resource is present but the message was not found in the message table.`, eventlog's resource file (.mui) related to error generating event is something wrong. This issue is also occurred in built-in Windows Event Viewer which is the part of Windows management tool.
168
168
 
169
- **NOTE:** When `render_as_xml` as `false`, the dependent winevt_c gem renders Windows EventLog as Ruby Hash object directly. This reduces bottleneck to consume EventLog. Specifying `render_as_xml` as `false` should be faster consuming than `render_as_xml` as `true` case.
169
+ **NOTE:** When `render_as_xml` as `true`, `fluent-plugin-parser-winevt_xml` plugin should be needed to parse XML rendered Windows EventLog string.
170
170
 
171
171
  **NOTE:** If you encountered CPU spike due to massively huge EventLog channel, `rate_limit` parameter may help you. Currently, this paramter can handle the multiples of 10 or -1(`Winevt::EventLog::Subscribe::RATE_INFINITE`).
172
172
 
@@ -183,7 +183,7 @@ fluentd Input plugin for the Windows Event Log using newer Windows Event Logging
183
183
  |`parse_description`| (option) parse `description` field and set parsed result into the record. `Description` and `EventData` fields are removed|
184
184
  |`read_from_head` | **Deprecated** (option) Start to read the entries from the oldest, not from when fluentd is started. Defaults to `false`.|
185
185
  |`read_existing_events` | (option) Read the entries which already exist before fluentd is started. Defaults to `false`.|
186
- |`render_as_xml` | (option) Render Windows EventLog as XML or Ruby Hash object directly. Defaults to `true`.|
186
+ |`render_as_xml` | (option) Render Windows EventLog as XML or Ruby Hash object directly. Defaults to `false`.|
187
187
  |`rate_limit` | (option) Specify rate limit to consume EventLog. Default is `Winevt::EventLog::Subscribe::RATE_INFINITE`.|
188
188
  |`preserve_qualifiers_on_hash` | (option) When set up it as true, this plugin preserves "Qualifiers" and "EventID" keys. When set up it as false, this plugin calculates actual "EventID" from "Qualifiers" and removing "Qualifiers". Default is `false`.|
189
189
  |`read_all_channels`| (option) Read from all channels. Default is `false`|
data/fluent-plugin-winevtlog.gemspec CHANGED
@@ -4,7 +4,7 @@ $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
4
4
 
5
5
  Gem::Specification.new do |spec|
6
6
  spec.name = "fluent-plugin-windows-eventlog"
7
- spec.version = "0.5.4"
7
+ spec.version = "0.6.0"
8
8
  spec.authors = ["okahashi117", "Hiroshi Hatake", "Masahiro Nakagawa"]
9
9
  spec.email = ["naruki_okahashi@jbat.co.jp", "cosmo0920.oucc@gmail.com", "repeatedly@gmail.com"]
10
10
  spec.summary = %q{Fluentd Input plugin to read windows event log.}
@@ -20,9 +20,9 @@ Gem::Specification.new do |spec|
20
20
  spec.add_development_dependency "bundler"
21
21
  spec.add_development_dependency "rake"
22
22
  spec.add_development_dependency "test-unit", "~> 3.2.0"
23
+ spec.add_development_dependency "nokogiri", [">= 1.10", "< 1.12"]
24
+ spec.add_development_dependency "fluent-plugin-parser-winevt_xml", ">= 0.1.2"
23
25
  spec.add_runtime_dependency "fluentd", [">= 0.14.12", "< 2"]
24
26
  spec.add_runtime_dependency "win32-eventlog"
25
27
  spec.add_runtime_dependency "winevt_c", ">= 0.7.1"
26
- spec.add_runtime_dependency "nokogiri", [">= 1.10", "< 1.12"]
27
- spec.add_runtime_dependency "fluent-plugin-parser-winevt_xml", ">= 0.1.2"
28
28
  end
data/lib/fluent/plugin/in_windows_eventlog2.rb CHANGED
@@ -38,7 +38,7 @@ module Fluent::Plugin
38
38
  config_param :read_from_head, :bool, default: false, deprecated: "Use `read_existing_events' instead."
39
39
  config_param :read_existing_events, :bool, default: false
40
40
  config_param :parse_description, :bool, default: false
41
- config_param :render_as_xml, :bool, default: true
41
+ config_param :render_as_xml, :bool, default: false
42
42
  config_param :rate_limit, :integer, default: Winevt::EventLog::Subscribe::RATE_INFINITE
43
43
  config_param :preserve_qualifiers_on_hash, :bool, default: false
44
44
  config_param :read_all_channels, :bool, default: false
data/test/plugin/test_in_windows_eventlog2.rb CHANGED
@@ -15,6 +15,14 @@ class WindowsEventLog2InputTest < Test::Unit::TestCase
15
15
  })
16
16
  ])
17
17
 
18
+ XML_RENDERING_CONFIG = config_element("ROOT", "", {"tag" => "fluent.eventlog",
19
+ "render_as_xml" => true}, [
20
+ config_element("storage", "", {
21
+ '@type' => 'local',
22
+ 'persistent' => false
23
+ })
24
+ ])
25
+
18
26
  def create_driver(conf = CONFIG)
19
27
  Fluent::Test::Driver::Input.new(Fluent::Plugin::WindowsEventLog2Input).configure(conf)
20
28
  end
@@ -25,7 +33,7 @@ class WindowsEventLog2InputTest < Test::Unit::TestCase
25
33
  assert_equal 2, d.instance.read_interval
26
34
  assert_equal [], d.instance.channels
27
35
  assert_false d.instance.read_existing_events
28
- assert_true d.instance.render_as_xml
36
+ assert_false d.instance.render_as_xml
29
37
  end
30
38
 
31
39
  sub_test_case "configure" do
@@ -389,7 +397,8 @@ EOS
389
397
  end
390
398
 
391
399
  def test_write_with_none_parser
392
- d = create_driver(config_element("ROOT", "", {"tag" => "fluent.eventlog"}, [
400
+ d = create_driver(config_element("ROOT", "", {"tag" => "fluent.eventlog",
401
+ "render_as_xml" => true}, [
393
402
  config_element("storage", "", {
394
403
  '@type' => 'local',
395
404
  'persistent' => false
@@ -419,7 +428,8 @@ EOS
419
428
  end
420
429
 
421
430
  def test_write_with_winevt_xml_parser_without_qualifiers
422
- d = create_driver(config_element("ROOT", "", {"tag" => "fluent.eventlog"}, [
431
+ d = create_driver(config_element("ROOT", "", {"tag" => "fluent.eventlog",
432
+ "render_as_xml" => true}, [
423
433
  config_element("storage", "", {
424
434
  '@type' => 'local',
425
435
  'persistent' => false
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: fluent-plugin-windows-eventlog
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.5.4
4
+ version: 0.6.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - okahashi117
@@ -10,7 +10,7 @@ authors:
10
10
  autorequire:
11
11
  bindir: bin
12
12
  cert_chain: []
13
- date: 2020-04-10 00:00:00.000000000 Z
13
+ date: 2020-04-15 00:00:00.000000000 Z
14
14
  dependencies:
15
15
  - !ruby/object:Gem::Dependency
16
16
  name: bundler
@@ -55,87 +55,87 @@ dependencies:
55
55
  - !ruby/object:Gem::Version
56
56
  version: 3.2.0
57
57
  - !ruby/object:Gem::Dependency
58
- name: fluentd
58
+ name: nokogiri
59
59
  requirement: !ruby/object:Gem::Requirement
60
60
  requirements:
61
61
  - - ">="
62
62
  - !ruby/object:Gem::Version
63
- version: 0.14.12
63
+ version: '1.10'
64
64
  - - "<"
65
65
  - !ruby/object:Gem::Version
66
- version: '2'
67
- type: :runtime
66
+ version: '1.12'
67
+ type: :development
68
68
  prerelease: false
69
69
  version_requirements: !ruby/object:Gem::Requirement
70
70
  requirements:
71
71
  - - ">="
72
72
  - !ruby/object:Gem::Version
73
- version: 0.14.12
73
+ version: '1.10'
74
74
  - - "<"
75
75
  - !ruby/object:Gem::Version
76
- version: '2'
76
+ version: '1.12'
77
77
  - !ruby/object:Gem::Dependency
78
- name: win32-eventlog
78
+ name: fluent-plugin-parser-winevt_xml
79
79
  requirement: !ruby/object:Gem::Requirement
80
80
  requirements:
81
81
  - - ">="
82
82
  - !ruby/object:Gem::Version
83
- version: '0'
84
- type: :runtime
83
+ version: 0.1.2
84
+ type: :development
85
85
  prerelease: false
86
86
  version_requirements: !ruby/object:Gem::Requirement
87
87
  requirements:
88
88
  - - ">="
89
89
  - !ruby/object:Gem::Version
90
- version: '0'
90
+ version: 0.1.2
91
91
  - !ruby/object:Gem::Dependency
92
- name: winevt_c
92
+ name: fluentd
93
93
  requirement: !ruby/object:Gem::Requirement
94
94
  requirements:
95
95
  - - ">="
96
96
  - !ruby/object:Gem::Version
97
- version: 0.7.1
97
+ version: 0.14.12
98
+ - - "<"
99
+ - !ruby/object:Gem::Version
100
+ version: '2'
98
101
  type: :runtime
99
102
  prerelease: false
100
103
  version_requirements: !ruby/object:Gem::Requirement
101
104
  requirements:
102
105
  - - ">="
103
106
  - !ruby/object:Gem::Version
104
- version: 0.7.1
107
+ version: 0.14.12
108
+ - - "<"
109
+ - !ruby/object:Gem::Version
110
+ version: '2'
105
111
  - !ruby/object:Gem::Dependency
106
- name: nokogiri
112
+ name: win32-eventlog
107
113
  requirement: !ruby/object:Gem::Requirement
108
114
  requirements:
109
115
  - - ">="
110
116
  - !ruby/object:Gem::Version
111
- version: '1.10'
112
- - - "<"
113
- - !ruby/object:Gem::Version
114
- version: '1.12'
117
+ version: '0'
115
118
  type: :runtime
116
119
  prerelease: false
117
120
  version_requirements: !ruby/object:Gem::Requirement
118
121
  requirements:
119
122
  - - ">="
120
123
  - !ruby/object:Gem::Version
121
- version: '1.10'
122
- - - "<"
123
- - !ruby/object:Gem::Version
124
- version: '1.12'
124
+ version: '0'
125
125
  - !ruby/object:Gem::Dependency
126
- name: fluent-plugin-parser-winevt_xml
126
+ name: winevt_c
127
127
  requirement: !ruby/object:Gem::Requirement
128
128
  requirements:
129
129
  - - ">="
130
130
  - !ruby/object:Gem::Version
131
- version: 0.1.2
131
+ version: 0.7.1
132
132
  type: :runtime
133
133
  prerelease: false
134
134
  version_requirements: !ruby/object:Gem::Requirement
135
135
  requirements:
136
136
  - - ">="
137
137
  - !ruby/object:Gem::Version
138
- version: 0.1.2
138
+ version: 0.7.1
139
139
  description: Fluentd Input plugin to read windows event log.
140
140
  email:
141
141
  - naruki_okahashi@jbat.co.jp