logstash-integration-logstash 0.0.1-java

data/spec/unit/logstash_input_spec.rb

@@ -0,0 +1,151 @@
+# encoding: utf-8
+
+require_relative "../spec_helper"
+require "logstash/devutils/rspec/shared_examples"
+require "logstash/inputs/logstash"
+
+describe LogStash::Inputs::Logstash do
+
+  subject(:plugin) { LogStash::Inputs::Logstash.new(config) }
+
+  describe "a plugin class" do
+    subject { described_class }
+
+    it { is_expected.to be_a_kind_of Class }
+    it { is_expected.to be <= LogStash::Inputs::Base }
+    it { is_expected.to have_attributes(:config_name => "logstash") }
+  end
+
+  describe "a plugin instance with minimal config" do
+    subject(:instance) { described_class.new({ "port" => 123, "ssl_enabled" => false }) }
+
+    it { is_expected.to respond_to(:register).with(0).arguments }
+    it { is_expected.to respond_to(:run).with(1).argument }
+    it { is_expected.to respond_to(:stop).with(0).arguments }
+    it { is_expected.to respond_to(:close).with(0).arguments }
+  end
+
+  describe "plugin register" do
+    let(:config) {{ "port" => 123 }}
+
+    let(:registered_plugin) { plugin.tap(&:register) }
+
+    context "username and password auth" do
+      let(:config) { super().merge("host" => "my-ls-upstream.com", "ssl_enabled" => false) }
+
+      context "with `username`" do
+        let(:config) { super().merge("username" => "test_user") }
+
+        it "requires `password`" do
+          expected_message = "`password` is REQUIRED when `username` is provided"
+          expect{ plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+      end
+
+      context "with `password`" do
+        let(:config) { super().merge("password" => "pa$$") }
+
+        it "requires `username`" do
+          expected_message = "`password` not allowed unless `username` is configured"
+          expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+      end
+    end
+
+    context "SSL disabled" do
+      let(:config) { super().merge("ssl_enabled" => false) }
+
+      context "with SSL related configs" do
+        let(:config) { super().merge("ssl_keystore_path" => cert_fixture!('client_from_root.jks'), "ssl_certificate_authorities" => cert_fixture!('root.pem')) }
+
+        it "does not allow and raises an error" do
+          expected_message = 'Explicit SSL-related settings not supported because `ssl_enabled => false`: ["ssl_keystore_path", "ssl_certificate_authorities"]'
+          expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+      end
+
+    end
+
+    context "self identity" do
+      let(:config) { super().merge("ssl_enabled" => true) }
+
+      it "requires SSL identity" do
+        expected_message = 'SSL identity MUST be configured with either `ssl_certificate`/`ssl_key` or `ssl_keystore_*`'
+        expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+      end
+
+      context "SSL certificate" do
+        let(:config) { super().merge("ssl_certificate" => cert_fixture!('server_from_root.pem')) }
+
+        context "with keystore" do
+          let(:config) { super().merge("ssl_keystore_path" => cert_fixture!('client_from_root.jks')) }
+
+          it "cannot be used together" do
+            expected_message = 'SSL identity can be configured with EITHER `ssl_certificate` OR `ssl_keystore_*`, but not both'
+            expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+          end
+        end
+
+        context "without `ssl_key`" do
+          let(:config) { super().merge("ssl_key_passphrase" => "pa$$w0rd") }
+
+          it "is not allowed" do
+            expected_message = '`ssl_key` is required when `ssl_certificate` is configured'
+            expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+          end
+        end
+      end
+
+      context "`ssl_key`" do
+        let(:config) { super().merge("ssl_key" => cert_fixture!('server_from_root.key.pkcs8.pem')) }
+
+        it "requires SSL certificate" do
+          expected_message = '`ssl_key` is not allowed unless `ssl_certificate` is configured'
+          expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+      end
+
+      context "`ssl_key_passphrase`" do
+        let(:config) { super().merge("ssl_key_passphrase" => "pa$$w0rd") }
+
+        it "requires SSL key" do
+          expected_message = '`ssl_key_passphrase` is not allowed unless `ssl_key` is configured'
+          expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+      end
+
+      context "`ssl_keystore_path`" do
+        let(:config) { super().merge("ssl_keystore_path" => cert_fixture!('server_from_root.jks')) }
+
+        it "requires `ssl_keystore_password`" do
+          expected_message = '`ssl_keystore_password` is REQUIRED when `ssl_keystore_path` is configured'
+          expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+      end
+
+      context "`ssl_keystore_password`" do
+        let(:config) { super().merge("ssl_keystore_password" => "pa$$w0rd") }
+
+        it "requires `ssl_keystore_path`" do
+          expected_message = '`ssl_keystore_password` is not allowed unless `ssl_keystore_path` is configured'
+          expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+      end
+    end
+
+    context "trust with CA" do
+      let(:config) { super().merge(
+        "ssl_enabled" => true,
+        "ssl_certificate_authorities" => cert_fixture!('root.pem'),
+        "ssl_keystore_path" => cert_fixture!('server_from_root.jks'),
+        "ssl_keystore_password" => "pa$$w0rd"
+        # default `ssl_client_authentication` is 'none'
+      ) }
+
+      it "requires SSL Client Authentication" do
+        expected_message = '`ssl_certificate_authorities` is not supported because `ssl_client_authentication => none`'
+        expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+      end
+    end
+  end
+end

data/spec/unit/logstash_output_spec.rb

@@ -0,0 +1,170 @@
+# encoding: utf-8
+
+require_relative "../spec_helper"
+require "logstash/devutils/rspec/shared_examples"
+require "logstash/outputs/logstash"
+
+describe LogStash::Outputs::Logstash do
+
+  let(:config) {{ "host" => "127.0.0.1", "port" => 123 }}
+
+  subject(:plugin) { LogStash::Outputs::Logstash.new(config) }
+
+  describe "a plugin class" do
+    subject { described_class }
+
+    it { is_expected.to be_a_kind_of Class }
+    it { is_expected.to be <= LogStash::Outputs::Base }
+    it { is_expected.to have_attributes(:config_name => "logstash") }
+  end
+
+  describe "a plugin instance with minimal config" do
+    subject(:instance) { described_class.new(config) }
+
+    it { is_expected.to respond_to(:register).with(0).arguments }
+    it { is_expected.to respond_to(:multi_receive).with(1).argument }
+    it { is_expected.to respond_to(:stop).with(0).arguments }
+    it { is_expected.to respond_to(:close).with(0).arguments }
+  end
+
+  describe "plugin register" do
+    let(:registered_plugin) { plugin.tap(&:register) }
+
+    describe "username and password auth" do
+      let(:config) { super().merge("host" => "my-ls-downstream.com", "ssl_enabled" => false) }
+
+      context "with `username`" do
+        let(:config) { super().merge("username" => "test_user") }
+
+        it "requires `password`" do
+          expected_message = "`password` is REQUIRED when `username` is provided"
+          expect{ plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+      end
+
+      context "with `password`" do
+        let(:config) { super().merge("password" => "pa$$") }
+
+        it "requires `username`" do
+          expected_message = "`password` not allowed unless `username` is configured"
+          expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+      end
+    end
+
+    context "SSL disabled" do
+      let(:config) { super().merge("ssl_enabled" => false) }
+
+      context "with SSL related configs" do
+        let(:config) { super().merge("ssl_keystore_path" => cert_fixture!('client_from_root.jks'), "ssl_certificate_authorities" => cert_fixture!('root.pem')) }
+
+        it "does not allow and raises an error" do
+          expected_message = 'Explicit SSL-related settings not supported because `ssl_enabled => false`: ["ssl_keystore_path", "ssl_certificate_authorities"]'
+          expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+      end
+    end
+
+    context "self identity" do
+      let(:config) { super().merge("ssl_enabled" => true) }
+
+      context "SSL certificate" do
+        let(:config) { super().merge("ssl_certificate" => cert_fixture!('server_from_root.pem')) }
+
+        it "requires `ssl_key`" do
+          expected_message = '`ssl_key` is REQUIRED when `ssl_certificate` is provided'
+          expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+
+        context "with keystore" do
+          let(:config) { super().merge("ssl_keystore_path" => cert_fixture!('client_from_root.jks')) }
+
+          it "cannot be used together" do
+            expected_message = 'SSL identity can be configured with EITHER `ssl_certificate` OR `ssl_keystore_*`, but not both'
+            expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+          end
+        end
+      end
+
+      context "`ssl_key`" do
+        let(:config) { super().merge("ssl_key" => cert_fixture!('server_from_root.key.pkcs8.pem')) }
+
+        it "requires SSL certificate" do
+          expected_message = '`ssl_key` is not allowed unless `ssl_certificate` is configured'
+          expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+      end
+
+      context "`ssl_keystore_path`" do
+        let(:config) { super().merge("ssl_keystore_path" => cert_fixture!('server_from_root.jks')) }
+
+        it "requires `ssl_keystore_password`" do
+          expected_message = '`ssl_keystore_password` is REQUIRED when `ssl_keystore_path` is provided'
+          expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+      end
+
+      context "`ssl_keystore_password`" do
+        let(:config) { super().merge("ssl_keystore_password" => "pa$$w0rd") }
+
+        it "requires `ssl_keystore_path`" do
+          expected_message = '`ssl_keystore_password` is not allowed unless `ssl_keystore_path` is configured'
+          expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+      end
+    end
+
+    context "trust" do
+      let(:config) { super().merge("ssl_enabled" => true) }
+
+      context "with CA" do
+        let(:config) { super().merge("ssl_certificate_authorities" => cert_fixture!('root.pem')) }
+
+        context "and `ssl_verification_mode` is 'none'" do
+          let(:config) { super().merge("ssl_verification_mode" => "none") }
+
+          it "not allowed" do
+            expected_message = 'SSL Certificate Authorities cannot be configured when `ssl_verification_mode => none`'
+            expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+          end
+        end
+
+        context "and truststore" do
+          let(:config) { super().merge("ssl_truststore_path" => cert_fixture!('client_self_signed.jks')) }
+
+          it "not allowed" do
+            expected_message = 'SSL trust can be configured with EITHER `ssl_certificate_authorities` OR `ssl_truststore_*`, but not both'
+            expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+          end
+        end
+      end
+
+      context "truststore" do
+        let(:config) { super().merge("ssl_truststore_path" => cert_fixture!('client_self_signed.jks')) }
+
+        it "requires truststore password" do
+          expected_message = '`ssl_truststore_password` is REQUIRED when `ssl_truststore_path` is provided'
+          expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+
+        context "and `ssl_verification_mode` is 'none'" do
+          let(:config) { super().merge("ssl_verification_mode" => "none") }
+
+          it "not allowed" do
+            expected_message = 'SSL Truststore cannot be configured when `ssl_verification_mode => none`'
+            expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+          end
+        end
+      end
+
+      context "password without truststore path" do
+        let(:config) { super().merge("ssl_truststore_password" => "pa$$w0rd") }
+
+        it "not allowed" do
+          expected_message = '`ssl_truststore_password` not allowed unless `ssl_truststore_path` is configured'
+          expect{ registered_plugin }.to raise_error(LogStash::ConfigurationError).with_message(expected_message)
+        end
+      end
+    end
+  end
+end

metadata

@@ -0,0 +1,243 @@
+--- !ruby/object:Gem::Specification
+name: logstash-integration-logstash
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: java
+authors:
+- Elastic
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2023-09-25 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 2.1.12
+    - - "<="
+      - !ruby/object:Gem::Version
+        version: '2.99'
+  name: logstash-core-plugin-api
+  prerelease: false
+  type: :runtime
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 2.1.12
+    - - "<="
+      - !ruby/object:Gem::Version
+        version: '2.99'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  name: logstash-mixin-plugin_factory_support
+  prerelease: false
+  type: :runtime
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.1'
+  name: logstash-codec-json_lines
+  prerelease: false
+  type: :runtime
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.1'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 3.7.0
+  name: logstash-input-http
+  prerelease: false
+  type: :runtime
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 3.7.0
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 5.6.0
+  name: logstash-output-http
+  prerelease: false
+  type: :runtime
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 5.6.0
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  name: logstash-devutils
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  name: rspec-collection_matchers
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  name: random-port
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: This gem is a Logstash plugin required to be installed on top of the
+  Logstash core pipeline using $LS_HOME/bin/logstash-plugin install gemname. This
+  gem is not a stand-alone program
+email: info@elastic.co
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- CHANGELOG.md
+- Gemfile
+- LICENSE
+- NOTICE.TXT
+- README.md
+- VERSION
+- docs/index.asciidoc
+- docs/input-logstash.asciidoc
+- docs/output-logstash.asciidoc
+- lib/logstash/inputs/logstash.rb
+- lib/logstash/outputs/logstash.rb
+- logstash-integration-logstash.gemspec
+- spec/fixtures/certs/generate.sh
+- spec/fixtures/certs/generated/README.txt
+- spec/fixtures/certs/generated/client_from_root.jks
+- spec/fixtures/certs/generated/client_from_root.key.pem
+- spec/fixtures/certs/generated/client_from_root.key.pkcs8.pem
+- spec/fixtures/certs/generated/client_from_root.p12
+- spec/fixtures/certs/generated/client_from_root.pem
+- spec/fixtures/certs/generated/client_from_untrusted.jks
+- spec/fixtures/certs/generated/client_from_untrusted.key.pem
+- spec/fixtures/certs/generated/client_from_untrusted.key.pkcs8.pem
+- spec/fixtures/certs/generated/client_from_untrusted.p12
+- spec/fixtures/certs/generated/client_from_untrusted.pem
+- spec/fixtures/certs/generated/client_self_signed.jks
+- spec/fixtures/certs/generated/client_self_signed.key.pem
+- spec/fixtures/certs/generated/client_self_signed.key.pkcs8.pem
+- spec/fixtures/certs/generated/client_self_signed.p12
+- spec/fixtures/certs/generated/client_self_signed.pem
+- spec/fixtures/certs/generated/root.key.pem
+- spec/fixtures/certs/generated/root.pem
+- spec/fixtures/certs/generated/server_from_root-key-pkcs8.pem
+- spec/fixtures/certs/generated/server_from_root.jks
+- spec/fixtures/certs/generated/server_from_root.key.pem
+- spec/fixtures/certs/generated/server_from_root.key.pkcs8.pem
+- spec/fixtures/certs/generated/server_from_root.p12
+- spec/fixtures/certs/generated/server_from_root.pem
+- spec/fixtures/certs/generated/untrusted.key.pem
+- spec/fixtures/certs/generated/untrusted.pem
+- spec/fixtures/certs/openssl.cnf
+- spec/spec_helper.rb
+- spec/unit/full_transmission_spec.rb
+- spec/unit/logstash_input_spec.rb
+- spec/unit/logstash_output_spec.rb
+homepage: https://www.elastic.co/logstash
+licenses:
+- Apache-2.0
+metadata:
+  logstash_plugin: 'true'
+  logstash_group: integration
+  integration_plugins: logstash-input-logstash,logstash-output-logstash
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+- vendor/jar-dependencies
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.2.33
+signing_key:
+specification_version: 4
+summary: Collection of Logstash plugins that enable sending events from one Logstash
+  pipeline to another
+test_files:
+- spec/fixtures/certs/generate.sh
+- spec/fixtures/certs/generated/README.txt
+- spec/fixtures/certs/generated/client_from_root.jks
+- spec/fixtures/certs/generated/client_from_root.key.pem
+- spec/fixtures/certs/generated/client_from_root.key.pkcs8.pem
+- spec/fixtures/certs/generated/client_from_root.p12
+- spec/fixtures/certs/generated/client_from_root.pem
+- spec/fixtures/certs/generated/client_from_untrusted.jks
+- spec/fixtures/certs/generated/client_from_untrusted.key.pem
+- spec/fixtures/certs/generated/client_from_untrusted.key.pkcs8.pem
+- spec/fixtures/certs/generated/client_from_untrusted.p12
+- spec/fixtures/certs/generated/client_from_untrusted.pem
+- spec/fixtures/certs/generated/client_self_signed.jks
+- spec/fixtures/certs/generated/client_self_signed.key.pem
+- spec/fixtures/certs/generated/client_self_signed.key.pkcs8.pem
+- spec/fixtures/certs/generated/client_self_signed.p12
+- spec/fixtures/certs/generated/client_self_signed.pem
+- spec/fixtures/certs/generated/root.key.pem
+- spec/fixtures/certs/generated/root.pem
+- spec/fixtures/certs/generated/server_from_root-key-pkcs8.pem
+- spec/fixtures/certs/generated/server_from_root.jks
+- spec/fixtures/certs/generated/server_from_root.key.pem
+- spec/fixtures/certs/generated/server_from_root.key.pkcs8.pem
+- spec/fixtures/certs/generated/server_from_root.p12
+- spec/fixtures/certs/generated/server_from_root.pem
+- spec/fixtures/certs/generated/untrusted.key.pem
+- spec/fixtures/certs/generated/untrusted.pem
+- spec/fixtures/certs/openssl.cnf
+- spec/spec_helper.rb
+- spec/unit/full_transmission_spec.rb
+- spec/unit/logstash_input_spec.rb
+- spec/unit/logstash_output_spec.rb