logstash-input-elastic_serverless_forwarder 0.1.0-java

data/spec/fixtures/certs/generated/root.key

@@ -0,0 +1,51 @@
+-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----

data/spec/fixtures/certs/generated/server_from_root.crt

@@ -0,0 +1,36 @@
+-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

data/spec/fixtures/certs/generated/server_from_root.key

@@ -0,0 +1,51 @@
+-----BEGIN RSA PRIVATE KEY-----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-----END RSA PRIVATE KEY-----

data/spec/fixtures/certs/generated/server_from_root.key.pkcs8

@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----

data/spec/fixtures/certs/generated/server_from_root.pkcs8.key

@@ -0,0 +1,52 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----

data/spec/fixtures/certs/openssl.cnf

@@ -0,0 +1,57 @@
+[ req ]
+distinguished_name= req_distinguished_name
+attributes= req_attributes
+
+[ req_distinguished_name ]
+countryName= Country Name (2 letter code)
+countryName_min= 2
+countryName_max= 2
+stateOrProvinceName= State or Province Name (full name)
+localityName= Locality Name (eg, city)
+0.organizationName= Organization Name (eg, company)
+organizationalUnitName= Organizational Unit Name (eg, section)
+commonName= Common Name (eg, fully qualified host name)
+commonName_max= 64
+emailAddress= Email Address
+emailAddress_max= 64
+
+[ req_attributes ]
+challengePassword= A challenge password
+challengePassword_min= 4
+challengePassword_max= 20
+
+[ ca ]
+subjectKeyIdentifier = hash
+authorityKeyIdentifier = keyid:always,issuer
+basicConstraints = critical, CA:true
+keyUsage = critical, digitalSignature, cRLSign, keyCertSign
+
+[ client_cert ]
+basicConstraints = CA:FALSE
+nsCertType = client, email
+nsComment = "OpenSSL Generated Client Certificate"
+subjectKeyIdentifier = hash
+authorityKeyIdentifier = keyid,issuer
+keyUsage = critical, nonRepudiation, digitalSignature, keyEncipherment
+extendedKeyUsage = clientAuth, emailProtection
+subjectAltName = "DNS:localhost, IP:127.0.0.1"
+
+[ client_cert_no_matching_subject ]
+basicConstraints = CA:FALSE
+nsCertType = client, email
+nsComment = "OpenSSL Generated Client Certificate"
+subjectKeyIdentifier = hash
+authorityKeyIdentifier = keyid,issuer
+keyUsage = critical, nonRepudiation, digitalSignature, keyEncipherment
+extendedKeyUsage = clientAuth, emailProtection
+subjectAltName = "DNS:nowhere, IP:123.45.67.89"
+
+[ server_cert ]
+basicConstraints = CA:FALSE
+nsCertType = server
+nsComment = "OpenSSL Generated Server Certificate"
+subjectKeyIdentifier = hash
+authorityKeyIdentifier = keyid,issuer:always
+keyUsage = critical, digitalSignature, keyEncipherment
+extendedKeyUsage = serverAuth
+subjectAltName = "DNS:localhost, IP:127.0.0.1"

data/spec/inputs/elastic_serverless_forwarder_spec.rb

@@ -0,0 +1,292 @@
+require "logstash/devutils/rspec/spec_helper"
+require "logstash/devutils/rspec/shared_examples"
+
+require "logstash/inputs/elastic_serverless_forwarder"
+
+require "json"
+require "manticore"
+
+describe LogStash::Inputs::ElasticServerlessForwarder do
+
+  let(:generated_certs_directory) { Pathname.new('../fixtures/certs/generated').expand_path(__dir__).realpath }
+
+  let(:client) { Manticore::Client.new(client_options) }
+  let(:client_options) { { } }
+  let(:request_options) do
+    { headers: {"Content-Type" => "application/x-ndjson"} }
+  end
+
+  let(:port) { rand(1025...5000) }
+  let(:host) { "127.0.0.1" }
+  let(:scheme) { 'https' }
+  let(:url) { "#{scheme}://#{host}:#{port}" }
+
+  let(:config) { { "host" => host, "port" => port } }
+
+  subject(:esf_input) { described_class.new(config) }
+
+  let!(:queue) { Queue.new }
+
+  context 'baseline' do
+    let(:config) { super().merge('ssl' => false) }
+    let(:scheme) { 'http' }
+
+    it_behaves_like "an interruptible input plugin" do
+      let(:config) { { "port" => port, "ssl" => false } }
+    end
+
+    after :each do
+      client.clear_pending
+      client.close
+      esf_input.stop
+    end
+
+  end
+
+  shared_context "basic request handling" do
+    let!(:registered_esf_input) { esf_input.tap(&:register) }
+    let!(:running_input_thread) { Thread.new { registered_esf_input.run(queue) } }
+    before(:each) { wait_until_listening(host, port) }
+
+    after(:each) do
+      client.clear_pending
+      client.close
+      esf_input.stop
+      running_input_thread.join(10) || fail('o no')
+    end
+
+    let(:ndjson_encoded_body) do
+      <<~EONDJSONBODY
+        {"hello":"world"}
+        {"this":"works"}
+        {"message":"and doesn't destroy event.original that was included in payload", "event":{"original":"yes"}}
+      EONDJSONBODY
+    end
+
+    def wait_until_listening(host, port, timeout=10)
+      deadline = Time.now + timeout
+      begin
+        TCPSocket.new(host, port).close
+      rescue Errno::ECONNREFUSED
+        raise if Time.now > deadline
+        sleep 1
+        retry
+      end
+    end
+
+    def pop_with_timeout(queue, timeout)
+      t = Thread.new { queue.pop }
+      t.join(timeout) || t.kill
+      t.value
+    end
+  end
+
+  shared_examples 'successful request handling' do
+    include_context 'basic request handling'
+    describe 'basic receipt of events' do
+      it 'puts decoded, unenriched events into the queue' do
+        client.post("#{scheme}://#{host}:#{port}/events", request_options.merge(body: ndjson_encoded_body)).call
+
+        event = pop_with_timeout(queue, 30) || fail('nothing written to queue')
+        expect(event.get("hello")).to eq('world')
+
+        # ensure enrichment is avoided
+        expect(event).to_not include('[event][original]')
+        expect(event).to_not include('[@metadata][void]')
+        expect(event).to_not include('[host]')
+
+        # ensure additional events are added
+        event2 = pop_with_timeout(queue, 1) || fail('only single event written to queue')
+        expect(event2.get("this")).to eq('works')
+
+        # ensure an event that _has_ an event.original in the payload is not lost
+        event3 = pop_with_timeout(queue, 1) || fail('no third element in the queue')
+        expect(event3).to include('[event][original]')
+        expect(event3.get('[event][original]')).to eq('yes')
+      end
+    end
+  end
+
+  shared_examples 'bad certificate request handling' do
+    include_context 'basic request handling'
+    describe 'connection' do
+      it 'rejects the connection with a bad_certificate error' do
+        expect do
+          client.post("#{scheme}://#{host}:#{port}/events", request_options.merge(body: ndjson_encoded_body)).call
+        end.to raise_exception(Manticore::ClientProtocolException, a_string_including('bad_certificate'))
+      end
+    end
+  end
+
+  shared_examples 'bad basic auth request handling' do
+    include_context 'basic request handling'
+    describe 'request' do
+      it 'rejects the request with an HTTP 401 Unauthorized' do
+        response = client.post("#{scheme}://#{host}:#{port}/events", request_options.merge(body: ndjson_encoded_body)).call
+        expect(response).to have_attributes(code: 401, message: 'Unauthorized')
+      end
+    end
+  end
+
+  shared_examples 'basic auth support' do
+    context 'when http basic auth is enabled' do
+      let(:username) { 'john.doe' }
+      let(:password) { 'sUp3r$ecr3t' }
+      let(:config) do
+        super().merge('auth_basic_username' => username, 'auth_basic_password' => password)
+      end
+
+      context 'with valid credentials' do
+        let(:request_options) { super().merge(auth: {user: username, password: password}) }
+
+        include_examples 'successful request handling'
+      end
+      context 'with invalid credentials' do
+        let(:request_options) { super().merge(auth: {user: username, password: "incorrect"}) }
+
+        include_examples 'bad basic auth request handling'
+      end
+      context 'without credentials' do
+        include_examples 'bad basic auth request handling'
+      end
+    end
+  end
+
+  describe 'unsecured HTTP' do
+    let(:config) { super().merge('ssl' => false) }
+    let(:scheme) { 'http' }
+
+    include_examples 'successful request handling'
+    include_examples 'basic auth support'
+  end
+
+  describe 'SSL enabled' do
+    let(:config) do
+      super().merge({
+        'ssl_certificate' => generated_certs_directory.join('server_from_root.crt').to_path,
+        'ssl_key'         => generated_certs_directory.join('server_from_root.key.pkcs8').to_path,
+      })
+    end
+    let(:client_ssl_options) do
+      { ca_file: generated_certs_directory.join('root.crt').to_path }
+    end
+    let(:client_options) do
+      super().merge(
+        ssl: client_ssl_options
+      )
+    end
+
+    include_examples 'successful request handling'
+    include_examples 'basic auth support'
+
+    context 'ssl_client_authentication => optional' do
+      let(:config) do
+        super().merge({
+          "ssl_client_authentication" => "optional",
+          "ssl_certificate_authorities" => generated_certs_directory.join('root.crt').to_path,
+        })
+      end
+
+      context 'when client provides trusted cert' do
+        let(:client_ssl_options) do
+          super().merge({
+                          keystore: generated_certs_directory.join('client_from_root.p12').to_path,
+                          keystore_password: '12345678',
+                        })
+        end
+        include_examples 'successful request handling'
+        include_examples 'basic auth support'
+      end
+
+      context 'when client does not provide cert' do
+        include_examples 'successful request handling'
+        include_examples 'basic auth support'
+      end
+
+      context 'when client provides CA-signed cert without matching subjectAltName entry' do
+        let(:client_ssl_options) do
+          super().merge({
+                          keystore: generated_certs_directory.join('client_no_matching_subject.p12').to_path,
+                          keystore_password: '12345678',
+                        })
+        end
+
+        include_examples 'successful request handling'
+
+        context 'and `ssl_verification_mode => full`', skip: "pending implementation of `ssl_verification_mode => full`" do
+          let(:config) do
+            super().merge('ssl_verification_mode' => 'full')
+          end
+
+          include_examples 'bad certificate request handling'
+        end
+      end
+
+      context 'when client provides self-signed cert' do
+        let(:client_ssl_options) do
+          super().merge({
+                          keystore: generated_certs_directory.join('client_self_signed.p12').to_path,
+                          keystore_password: '12345678',
+                        })
+        end
+
+        include_examples 'successful request handling'
+        include_examples 'basic auth support'
+      end
+    end
+
+    context 'ssl_client_authentication => required' do
+      let(:config) do
+        super().merge({
+          "ssl_client_authentication" => "required",
+          "ssl_certificate_authorities" => generated_certs_directory.join('root.crt').to_path,
+        })
+      end
+
+      context 'when client provides trusted cert' do
+        let(:client_ssl_options) do
+          super().merge({
+            keystore: generated_certs_directory.join('client_from_root.p12').to_path,
+            keystore_password: '12345678',
+          })
+        end
+        include_examples 'successful request handling'
+        include_examples 'basic auth support'
+      end
+
+      context 'when client does not provide cert' do
+        include_examples 'bad certificate request handling'
+      end
+
+      context 'when client provides CA-signed cert without matching subjectAltName entry' do
+        let(:client_ssl_options) do
+          super().merge({
+                          keystore: generated_certs_directory.join('client_no_matching_subject.p12').to_path,
+                          keystore_password: '12345678',
+                        })
+        end
+
+        include_examples 'successful request handling'
+
+        context 'and `ssl_verification_mode => full`', skip: "pending implementation of `ssl_verification_mode => full`" do
+          let(:config) do
+            super().merge('ssl_verification_mode' => 'full')
+          end
+
+          include_examples 'bad certificate request handling'
+        end
+      end
+
+      context 'when client provides self-signed cert' do
+        let(:client_ssl_options) do
+          super().merge({
+                          keystore: generated_certs_directory.join('client_self_signed.p12').to_path,
+                          keystore_password: '12345678',
+                        })
+        end
+
+        include_examples 'bad certificate request handling'
+      end
+    end
+  end
+end