tcell_agent 1.1.10 → 1.1.11

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b84894f0c99387e227049af1f0cf23514630037a8a717b43283bcb19c66dfa37
-  data.tar.gz: 7464cb57bee06eea3c94717334ef755b0acbef4768f836f39b8de7cdb85cb505
+  metadata.gz: 551e5d85f546219d1832b6392e84881eb019b670fc51f86d28be6dfa1b0f94ae
+  data.tar.gz: 2cc3d40b2ae1d360cc19c39c86428019c656e257ba55be60c39bc8235657fabf
 SHA512:
-  metadata.gz: 60dabf811b67b4d762a8c39c96e47f7f3fff2e0287bb8586fec019976680b7c88efcbeb8e8ef541a8c719de0430a1c010e72ebaf7dfaffd03ff38b8c501fabca
-  data.tar.gz: 4974dccf426c1113ffbd238ef8006dc8600fc01bcbd29fbf940c2c78df5f979c80f48888b7565fa8a3c998b71edc60973e2e97ddd08c8648224755b270af9ae9
+  metadata.gz: c4b5e2c2ef86eba52860ff5101508ac80fd55621b8381ff06e58a5cc19086bdc893b47103bc2c50c5d02ade6a8fb6a033058ec1df3c114d1f8ca6632c8b0d56a
+  data.tar.gz: c683422e7bc12498a73d1276df558be9b96e46e4882874e5d949a4fd390c63f351ab682b36a880b097d02390ff07e52a198e5b82a2c16cba101b6be3ec4f8d94

data/README.md

@@ -1,120 +1,48 @@
-# TCellAgent [![Build Status](https://magnum.travis-ci.com/tcellio/rubyagent-tcell.svg?token=j7YU3iPt38CqCoDeM83P)](https://magnum.travis-ci.com/tcellio/rubyagent-tcell)
-
-TCell Agent - Instruments Rails
-
-## Release Process Checklist
-
-Open a jira with the following checklist (sample: https://jira.tcell.io/browse/RA-98)
-
-
-[ X ] unit tests pass  
-[ X ] integration tests pass  
-[ X ] test-kit tests pass (all variants)  
-[ X ] check test-kit logs for any unexpected errors  
-[ X ] performance tests pass (https://github.com/tcellio/load-testing/tree/master/agents)  
-[ X ] update changelog and version (sample https://github.com/tcellio/rubyagent-tcell/pull/275)  
-
-[ X ] manual install verified working (`make build`, install gem globally: `gem install tcell_agent-x.x.x.gem` works properly)  
-[ X ] run `tcell_agent test` command (might not be needed, since this is run in test-kit for every test-app)  
-
-[ X ] Update Master Branch
-
-[ X ] ensure unknown_options accounts for any new keys (check `lib/tcell_agent/config/unknown_options.rb` file for logic)  
-[ X ] update support page in wiki with any new support (https://tcellio.atlassian.net/wiki/spaces/EN/pages/54460460/Server+Agent+Support)  
- 
-Repeat if any bugs are found and patched
+# RubyAgent
+A Ruby security agent to instrument Ruby web applications. Additional docs can be found [here](https://docs.tcell.io/docs/ruby-agent-install)
+## Installation
 
-[ X ] merge master branch to release branch (this model was followed to make it easy to hotfix released versions)
+Add this line to your Gemfile to install the gem directly from [RubyGems](https://rubygems.org)
 
-[ X ] create release in github repo with release notes and appropriate version tag (https://github.com/tcellio/rubyagent-tcell/releases)  
-[ X ] run `make build` on release branch (`gem unpack tcell_agent-x.x.x.gem` and manually inspect .gem file to make sure no files are missing and no extra files are included)  
-[ X ] upload to rubygems (`gem push tcell_agent-x.x.x.gem`)  
-[ X ] confirm upload worked by running a test app that installs latest version from rubygems and smoke test  
+    $ gem 'tcell_agent'
 
-Common Manual Tests Before Release
+or to use a local version directly,
 
-Run a Test Kit test app with multiple worker processes and run the suite of tests against it (https://github.com/tcellio/tcell/compare/test-kit/run-multiple-worker-processes?expand=1)
+    $ gem 'tcell_agent', :path => '<path-to-gem-repo'
 
-Manually running a test app with multiple worker processes is temporary until this is implemented: https://jira.tcell.io/browse/TCEL-5298
+and to install the gem,
 
-Smoke test a test app. Make sure agent can report appfw, you can post forms, you can login/log out. Test server configurations that you can't test with test-kit. Like multiple worker processes.
+    $ bundle install
 
-Special Things
+## Usage
 
-Config File - For rails applications config files are commonly stored in `config/` directory. Rubyagent is configured to look in `config/tcell_agent.config` by default for its configuration file.
+Download the config file from the tCell dashboard  and move it to the `config` directory of the application.
 
-Agent Home Owner - A customer experienced an issue where their web app master process ran as root but each worker process ran as a different user. This caused problems with the `tcell/` directory. If the master process created the directory then it was owned by root, so worker processes would raise permission exceptions when they tried to do any logging or write to the cache under the `tcell/`.  `config.agent_home_owner` was introduced to allow the customer to specify the name of the user that should own `tcell/` so that worker process would not get permission exceptions when writing to it. This is no longer necessary with the newest agent version. The newest agent version doesn't do anything in the master process, everything is executed in the workers, so `tcell/` should have the correct permissions because it'll always be created by a worker process.
+    $ cp ~/Downloads/tcell_agent.config config/
 
-Rails Initializers: It's common for gems to be configured thru Rails initializers: https://guides.rubyonrails.org/v2.3/configuring.html#using-initializers. TCell rubyagent supports this as well. This means that certain rubyagent startup code that relies on configuration needs to run after Rails initializers have run. The rubyagent can be configured entirely thru initializers (as opposed to using tcell_agent.config file and/or ENV vars). Sample `config/initializers/tcell.rb` file:
+When the server is started, tCell will be running. The log files will be created in the `tcell` directory of the project.
 
+Alternatively, Rails initializers can be used instead of adding the `tcell_agent.config` file. The values for the fields can be found in `tcell_agent.config`. Here's a sample `config/initializers/tcell.rb`:
 ```
 if defined?(TCellAgent)
   TCellAgent.configure do |config|
     config.app_id = "---APP_ID---"
     config.api_key = "---API_KEY---"
-    config.agent_log_dir = "/tmp/tcelllogs"
-    config.agent_home_dir = "/tmp/tcellhome"
-    config.tcell_api_url = "https://api.tcell-preview.io/api/v1"
-    config.tcell_input_url = "https://input.tcell-preview.io/api/v1"
+    config.agent_log_dir = "---path-to-logs-dir---"
+    config.agent_home_dir = "--path-to-tcell-dir---"
+    config.tcell_api_url = ""
+    config.tcell_input_url = ""
     config.allow_payloads = true
-    # Removed for ruby 2.0
-    # config.agent_home_owner = "boris"
-    config.enabled = true
-    config.logging_options = {"enabled" => true, "level" => "DEBUG"}
-    config.host_identifier = "foomyserver"
-    config.log_tag = "TCELL_LOGS"
-    # Removed for ruby 2.0
-    # config.logger can no longer be supported after rubyagent v1.1.4 since logging is now handled by libtcellagent
-    # config.logger = Rails.logger
-    # or
-    # config.logger = ActiveSupport::TaggedLogging.new(ActiveSupport::Logger.new(STDOUT))
   end
 end
 ```
 
-Heroku Deployments - Rails apps are commonly deployed to Heroku. The biggest impact that has on the rubyagent is the agent log file. Heroku doesn't provide access to the filesystem, so the rubyagent needs the ability to log to STDOUT instead of a file. `log_tag` and `logger` settings in configuration were introduced to support this.
-
-Log Tag (see above for example `log_tag` set in config) - Since rubyagent log can be printed to STDOUT along with all the other logging, `log_tag` is a custom string added to every log line to be able to filter just tcell log lines.
-
-Logger object - Up until rubyagent v1.1.4 you could set a Rails.logger for the rubyagent to use for its logging. With the migration to have libtcellagent handle logging, that use case can no longer be supported. This feature was mainly used to get the rubyagent to log to STDOUT in heroku deployments. So as long as the agent supports some config to allow to log to STDOUT, this won't be missed.
-
-## Installation
-
-Download the GEM file and unpack it:
+## Troubleshooting
 
-    $ curl -O https://s3-us-west-2.amazonaws.com/tcell-agent-download/duvm4dj/tcell_agent-0.2.0.gem
-    
-In your rails directory
-    
-    $ mv tcell_agent-0.2.0.gem vendor/cache/
-    $ bundle install
-
-Add this line to your application's Gemfile:
-
-
-```ruby 
-gem 'tcell_agent', '0.2.0'
-```
-or if you're using the repository directly.
-```ruby
-gem "tcell_agent", :path => "<path to your tcell_agent repo>"
+Log level can be customized in `tcell_agent.config` by adding a block such as:
 ```
-
-And then execute:
-
-    $ bundle
-
-## Usage
-
-You can download the config file from the Agents section of the application then move it to the config directory
-
-    $ cp ~/Downloads/tcell_agent.config config/
-
-Or run the helper command
-
-    $ bundle exec tcell_agent setup
-
-Or if running from the repo:
-
-    $ bundle exec <path to repo>/rubyagent-tcell/bin/tcell_agent 
-
+"logging_options": {
+    "enabled": true,
+    "level": "INFO"
+}
+```

data/lib/tcell_agent/rust/whisperer.rb

@@ -8,7 +8,7 @@ module TCellAgent
     module Wrapper
       extend FFI::Library
 
-      VERSION = '1.3.1'.freeze
+      VERSION = '1.3.2'.freeze
       prefix = 'lib'
       extension = '.so'
       variant = ''

data/lib/tcell_agent/tcell_context.rb

@@ -4,7 +4,7 @@ require 'tcell_agent/logger'
 require 'tcell_agent/utils/params'
 require 'cgi'
 
-TCELL_MAX_BODY_LENGTH = 20_000
+TCELL_MAX_BODY_LENGTH = 50_000
 
 # TODO(ralba): move TCellData from instrumentation.rb here
 # and merge both models into one and drop usage of MetaData.
@@ -100,14 +100,13 @@ module TCellAgent
     end
 
     def headers_dict=(value)
-      headers_dict = value.select do |k, _v|
-        header_downcased = k.downcase
-        (header_downcased != 'http_cookie' && header_downcased.start_with?('http_')) ||
-          %w[content_type content_length].include?(header_downcased)
+      headers_dict = value.select do |header_key, _v|
+        (header_key != 'HTTP_COOKIE' && header_key.start_with?('HTTP_')) ||
+          %w[CONTENT_TYPE CONTENT_LENGTH].include?(header_key)
       end
 
       headers_dict = headers_dict.each_with_object({}) do |(k, v), memo|
-        memo[k.downcase.sub(/^http_/, '').tr('_', '-')] = v
+        memo[k.sub(/^HTTP_/, '').tr('_', '-').downcase] = v
       end
       @flattened_headers_dict = TCellAgent::Utils::Params.flatten(headers_dict)
     end
@@ -121,18 +120,19 @@ module TCellAgent
     end
 
     def get_raw_post_data(request)
-      if request.env.key?('RAW_POST_DATA')
-        raw_post_data = request.env['RAW_POST_DATA']
-      else
-        body = request.body
-        # Positions strio to the beginning of input, resetting lineno to zero.
-        # rails 4.1 seems to read the stringIO directly and so body.gets is empty
-        # this is called
-        body.rewind if body.respond_to?(:rewind)
-        raw_post_data = body.read(request.content_length.to_i) if request.content_length
-        body.rewind if body.respond_to?(:rewind)
+      content_length = request.content_length.to_i if request.content_length
+      if !content_length.nil? && content_length > TCELL_MAX_BODY_LENGTH || request.content_type.nil?
+        return nil
       end
-      raw_post_data if raw_post_data.respond_to?(:length) && raw_post_data.length < TCELL_MAX_BODY_LENGTH
+      raw_post_data = nil
+      # Positions strio to the beginning of input, resetting lineno to zero.
+      # rails 4.1 seems to read the stringIO directly and so body.gets is empty
+      # this is called
+      body.rewind if body.respond_to?(:rewind)
+      body = request.body
+      raw_post_data = body.read(request.content_length.to_i) if request.content_length
+      body.rewind if body.respond_to?(:rewind)
+      raw_post_data
     end
 
     def set_parameter_dicts(request)

data/lib/tcell_agent/version.rb

@@ -1,5 +1,5 @@
 # See the file "LICENSE" for the full license governing this code.
 
 module TCellAgent
-  VERSION = '1.1.10'.freeze
+  VERSION = '1.1.11'.freeze
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: tcell_agent
 version: !ruby/object:Gem::Version
-  version: 1.1.10
+  version: 1.1.11
 platform: ruby
 authors:
 - Rafael
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2019-09-09 00:00:00.000000000 Z
+date: 2019-09-23 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: ffi
@@ -160,11 +160,11 @@ files:
 - lib/tcell_agent/rails/settings_reporter.rb
 - lib/tcell_agent/rails/tcell_body_proxy.rb
 - lib/tcell_agent/routes/table.rb
-- lib/tcell_agent/rust/libtcellagent-1.3.1.dylib
-- lib/tcell_agent/rust/libtcellagent-1.3.1.so
-- lib/tcell_agent/rust/libtcellagent-alpine-1.3.1.so
+- lib/tcell_agent/rust/libtcellagent-1.3.2.dylib
+- lib/tcell_agent/rust/libtcellagent-1.3.2.so
+- lib/tcell_agent/rust/libtcellagent-alpine-1.3.2.so
 - lib/tcell_agent/rust/models.rb
-- lib/tcell_agent/rust/tcellagent-1.3.1.dll
+- lib/tcell_agent/rust/tcellagent-1.3.2.dll
 - lib/tcell_agent/rust/whisperer.rb
 - lib/tcell_agent/sensor_events/app_config.rb
 - lib/tcell_agent/sensor_events/appsensor_event.rb