From f22c18d3ca5e1c1aa421c1373fd4ea978160f5e4 Mon Sep 17 00:00:00 2001 From: Mario Castro Date: Thu, 6 Dec 2018 15:28:19 +0100 Subject: [PATCH 1/2] Update Filebeat Traefik module to handle mixed Common and Combined Log Format (#8768) * Added support for Common Log Format and Combined Log Format in Traefik which is the default format until now. * Added more log lines, including one in Common Log Format * Added user_identifier field which was hardcoded to '-' before * Added log test inputs where the user_name and user_identifier were set and not set. * Added duration field which was missing * Numeric fields added as string have been converted to long * Added request count field * Added two log lines more that covers issue #6111 * Make bytes_sent field of type long. Most Grok expressions are optional now * Added CHANGELOG entry (cherry picked from commit 0e9054ce5517688d3608f5a1c8cf7c5d802575d2) fields.go file is updated and pre-ECS generated JSON expected file which differs from master is used # Conflicts: # filebeat/include/fields.go # filebeat/module/traefik/access/test/test.log-expected.json --- CHANGELOG.asciidoc | 4 + filebeat/docs/fields.asciidoc | 30 ++++ filebeat/include/fields.go | 2 +- .../module/traefik/access/_meta/fields.yml | 12 ++ .../traefik/access/config/traefik-access.yml | 2 +- .../traefik/access/ingest/pipeline.json | 11 +- filebeat/module/traefik/access/test/test.log | 7 +- .../access/test/test.log-expected.json | 159 +++++++++++++++++- 8 files changed, 218 insertions(+), 9 deletions(-) diff --git a/CHANGELOG.asciidoc b/CHANGELOG.asciidoc index fc02952e059..3e41cd65083 100644 --- a/CHANGELOG.asciidoc +++ b/CHANGELOG.asciidoc @@ -64,6 +64,10 @@ https://github.com/elastic/beats/compare/v6.5.2...6.5[Check the HEAD diff] *Filebeat* +- Added `detect_null_bytes` selector to detect null bytes from a io.reader. {pull}9210[9210] +- Added `syslog_host` variable to HAProxy module to allow syslog listener to bind to configured host. {pull}9366[9366] +- Added support on Traefik for Common Log Format and Combined Log Format mixed which is the default Traefik format {issue}8015[8015] {issue}6111[6111] {pull}8768[8768]. + *Heartbeat* *Journalbeat* diff --git a/filebeat/docs/fields.asciidoc b/filebeat/docs/fields.asciidoc index b04e466a275..9752acf6c20 100644 --- a/filebeat/docs/fields.asciidoc +++ b/filebeat/docs/fields.asciidoc @@ -4991,6 +4991,16 @@ type: keyword Client IP address. +-- + +*`traefik.access.duration`*:: ++ +-- +type: long + +Duration of the access entry. + + -- *`traefik.access.user_name`*:: @@ -5001,6 +5011,16 @@ type: keyword The user name used when basic authentication is used. +-- + +*`traefik.access.user_identifier`*:: ++ +-- +type: keyword + +Is the RFC 1413 identity of the client + + -- *`traefik.access.method`*:: @@ -5092,6 +5112,16 @@ type: keyword The name of the physical device. +-- + +*`traefik.access.user_agent.build`*:: ++ +-- +type: keyword + +The build of the user agent. + + -- *`traefik.access.user_agent.major`*:: diff --git a/filebeat/include/fields.go b/filebeat/include/fields.go index e17f04b9a8b..3ab067c08de 100644 --- a/filebeat/include/fields.go +++ b/filebeat/include/fields.go @@ -31,5 +31,5 @@ func init() { // Asset returns asset data func Asset() string { - return "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" + return "" } diff --git a/filebeat/module/traefik/access/_meta/fields.yml b/filebeat/module/traefik/access/_meta/fields.yml index a65e524b057..116ed67d42f 100644 --- a/filebeat/module/traefik/access/_meta/fields.yml +++ b/filebeat/module/traefik/access/_meta/fields.yml @@ -7,10 +7,18 @@ type: keyword description: > Client IP address. + - name: duration + type: long + description: > + Duration of the access entry. - name: user_name type: keyword description: > The user name used when basic authentication is used. + - name: user_identifier + type: keyword + description: > + Is the RFC 1413 identity of the client - name: method type: keyword example: GET @@ -52,6 +60,10 @@ type: keyword description: > The name of the physical device. + - name: build + type: keyword + description: > + The build of the user agent. - name: major type: long description: > diff --git a/filebeat/module/traefik/access/config/traefik-access.yml b/filebeat/module/traefik/access/config/traefik-access.yml index 2df383f52fd..1d20f94a29f 100644 --- a/filebeat/module/traefik/access/config/traefik-access.yml +++ b/filebeat/module/traefik/access/config/traefik-access.yml @@ -7,7 +7,7 @@ exclude_files: [".gz$"] processors: - dissect: - tokenizer: '%{traefik.access.remote_ip} - %{traefik.access.user_name} [%{traefik.access.time}] + tokenizer: '%{traefik.access.remote_ip} %{traefik.access.user_identifier} %{traefik.access.user_name} [%{traefik.access.time}] "%{traefik.access.method} %{traefik.access.url} HTTP/%{traefik.access.http_version}" %{traefik.access.response_code} %{traefik.access.message}' diff --git a/filebeat/module/traefik/access/ingest/pipeline.json b/filebeat/module/traefik/access/ingest/pipeline.json index d15899fc98a..955cafc1af8 100644 --- a/filebeat/module/traefik/access/ingest/pipeline.json +++ b/filebeat/module/traefik/access/ingest/pipeline.json @@ -5,19 +5,21 @@ "grok": { "field": "traefik.access.message", "patterns": [ - "(?:%{NUMBER:traefik.access.body_sent.bytes}|-)( \"%{DATA:traefik.access.referrer}\")?( \"%{DATA:traefik.access.agent}\")?(?:%{NUMBER:traefik.access.request_count}|-)?( \"%{DATA:traefik.access.frontend_name}\")?( \"%{DATA:traefik.access.backend_url}\")?" + "(?:%{NUMBER:traefik.access.body_sent.bytes:int}|-)( (?:\"%{DATA:traefik.access.referrer}\"|-)?( (?:\"%{DATA:traefik.access.agent}\"|-)?)?( (?:%{NUMBER:traefik.access.request_count:int}|-)?)?( (?:\"%{DATA:traefik.access.frontend_name}\"|-)?)?( \"%{DATA:traefik.access.backend_url}\")?( %{NUMBER:traefik.access.duration:int}ms)?)?" ], "ignore_missing": true } }, { "remove": { - "field": "message" + "field": "message", + "ignore_missing": true } }, { "remove": { - "field": "traefik.access.message" + "field": "traefik.access.message", + "ignore_missing": true } }, { @@ -50,7 +52,8 @@ { "rename": { "field": "traefik.access.agent", - "target_field": "traefik.access.user_agent.original" + "target_field": "traefik.access.user_agent.original", + "ignore_failure": true } }, { diff --git a/filebeat/module/traefik/access/test/test.log b/filebeat/module/traefik/access/test/test.log index 742546ff51a..a271309d214 100644 --- a/filebeat/module/traefik/access/test/test.log +++ b/filebeat/module/traefik/access/test/test.log @@ -1,2 +1,7 @@ 192.168.33.1 - - [02/Oct/2017:20:22:07 +0000] "GET /ui/favicons/favicon-16x16.png HTTP/1.1" 304 0 "http://example.com/login" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.100 Safari/537.36" 262 "Host-host-1" "http://172.19.0.3:5601" 2ms -85.181.35.98 - - [02/Oct/2017:20:22:08 +0000] "GET /ui/favicons/favicon.ico HTTP/1.1" 304 0 "http://example.com/login" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.100 Safari/537.36" 271 "Host-host1 "http://172.19.0.3:5601" 3ms +85.181.35.98 - - [02/Oct/2017:20:22:08 +0000] "GET /ui/favicons/favicon.ico HTTP/1.1" 304 0 "http://example.com/login" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.100 Safari/537.36" 271 "Host-host1" "http://172.19.0.3:5601" 3ms +70.29.80.15 - - [28/Feb/2018:17:30:33 +0000] "GET /en/ HTTP/2.0" 200 2814 - "Mozilla/5.0 (iPhone; CPU iPhone OS 11_2_5 like Mac OS X) AppleWebKit/604.5.6 (KHTML, like Gecko) Version/11.0 Mobile/15D60 Safari/604.1" 13 "Host-host1-com-0" "http://172.19.0.6:14008" 247ms +::1 - - [29/Nov/2018:15:03:51 +0000] "GET / HTTP/1.1" 404 19 "-" "curl/7.62.0" 10 "backend not found" "/" 0ms +94.254.131.115 - - [19/Jan/2018:10:01:02 +0000] "GET /assets/52f8f2e711d235d76044799e/owners?oauth_token=ya29.GltABOXd_gtG-XVvYX2YhxXJiXVvbHRMXn9fbzc_mDfl2rDhqK0CrAlwuwwRWnNnEaMDwkmyI7-QGbRSB0Hzje2cc__FjTQ1iuiYTSIBaIPfxSWip5jx6zqvsVVo HTTP/1.1" 200 85 - "Android" 623112 "Host-api-wearerealitygames-com-2" "http://172.25.0.9:4140" 13ms +89.64.35.193 - - [19/Jan/2018:10:01:02 +0000] "GET /marketplace/tax?oauth_token=ya29.Gl0fBWnrJ7DcEU-tN-O3Vxn2XZVaz2I-hFTjP1JQzhYFVT-SKtlmo9hSzrx3n82LUwUxJ1s5lmU8U3Mc9gA_aCxBk49ShYEwvmYOWxJJyldDIJ7hY4us4LoiSY1OqAM HTTP/1.1" 200 150 - "Android" 623114 "Host-api-wearerealitygames-com-2" "http://172.25.0.6:4140" 8ms +127.0.0.1 - frank [10/Oct/2000:13:55:36 -0700] "GET /apache_pb.gif HTTP/1.0" 200 2326 diff --git a/filebeat/module/traefik/access/test/test.log-expected.json b/filebeat/module/traefik/access/test/test.log-expected.json index 27d3066994d..64db2480cf2 100644 --- a/filebeat/module/traefik/access/test/test.log-expected.json +++ b/filebeat/module/traefik/access/test/test.log-expected.json @@ -6,11 +6,15 @@ "input.type": "log", "offset": 0, "prospector.type": "log", - "traefik.access.body_sent.bytes": "0", + "traefik.access.backend_url": "http://172.19.0.3:5601", + "traefik.access.body_sent.bytes": 0, + "traefik.access.duration": 2, + "traefik.access.frontend_name": "Host-host-1", "traefik.access.http_version": "1.1", "traefik.access.method": "GET", "traefik.access.referrer": "http://example.com/login", "traefik.access.remote_ip": "192.168.33.1", + "traefik.access.request_count": 262, "traefik.access.response_code": "304", "traefik.access.url": "/ui/favicons/favicon-16x16.png", "traefik.access.user_agent.device": "Other", @@ -21,6 +25,7 @@ "traefik.access.user_agent.os": "Linux", "traefik.access.user_agent.os_name": "Linux", "traefik.access.user_agent.patch": "3163", + "traefik.access.user_identifier": "-", "traefik.access.user_name": "-" }, { @@ -30,7 +35,10 @@ "input.type": "log", "offset": 280, "prospector.type": "log", - "traefik.access.body_sent.bytes": "0", + "traefik.access.backend_url": "http://172.19.0.3:5601", + "traefik.access.body_sent.bytes": 0, + "traefik.access.duration": 3, + "traefik.access.frontend_name": "Host-host1", "traefik.access.geoip.city_name": "Berlin", "traefik.access.geoip.continent_name": "Europe", "traefik.access.geoip.country_iso_code": "DE", @@ -42,6 +50,7 @@ "traefik.access.method": "GET", "traefik.access.referrer": "http://example.com/login", "traefik.access.remote_ip": "85.181.35.98", + "traefik.access.request_count": 271, "traefik.access.response_code": "304", "traefik.access.url": "/ui/favicons/favicon.ico", "traefik.access.user_agent.device": "Other", @@ -52,6 +61,152 @@ "traefik.access.user_agent.os": "Linux", "traefik.access.user_agent.os_name": "Linux", "traefik.access.user_agent.patch": "3163", + "traefik.access.user_identifier": "-", "traefik.access.user_name": "-" + }, + { + "@timestamp": "2018-02-28T17:30:33.000Z", + "fileset.module": "traefik", + "fileset.name": "access", + "input.type": "log", + "offset": 553, + "prospector.type": "log", + "traefik.access.backend_url": "http://172.19.0.6:14008", + "traefik.access.body_sent.bytes": 2814, + "traefik.access.duration": 247, + "traefik.access.frontend_name": "Host-host1-com-0", + "traefik.access.geoip.city_name": "Ottawa", + "traefik.access.geoip.continent_name": "North America", + "traefik.access.geoip.country_iso_code": "CA", + "traefik.access.geoip.location.lat": 45.2691, + "traefik.access.geoip.location.lon": -75.7518, + "traefik.access.geoip.region_iso_code": "CA-ON", + "traefik.access.geoip.region_name": "Ontario", + "traefik.access.http_version": "2.0", + "traefik.access.method": "GET", + "traefik.access.remote_ip": "70.29.80.15", + "traefik.access.request_count": 13, + "traefik.access.response_code": "200", + "traefik.access.url": "/en/", + "traefik.access.user_agent.device": "iPhone", + "traefik.access.user_agent.major": "11", + "traefik.access.user_agent.minor": "0", + "traefik.access.user_agent.name": "Mobile Safari", + "traefik.access.user_agent.original": "Mozilla/5.0 (iPhone; CPU iPhone OS 11_2_5 like Mac OS X) AppleWebKit/604.5.6 (KHTML, like Gecko) Version/11.0 Mobile/15D60 Safari/604.1", + "traefik.access.user_agent.os": "iOS 11.2.5", + "traefik.access.user_agent.os_major": "11", + "traefik.access.user_agent.os_minor": "2", + "traefik.access.user_agent.os_name": "iOS", + "traefik.access.user_identifier": "-", + "traefik.access.user_name": "-" + }, + { + "@timestamp": "2018-11-29T15:03:51.000Z", + "fileset.module": "traefik", + "fileset.name": "access", + "input.type": "log", + "offset": 821, + "prospector.type": "log", + "traefik.access.backend_url": "/", + "traefik.access.body_sent.bytes": 19, + "traefik.access.duration": 0, + "traefik.access.frontend_name": "backend not found", + "traefik.access.http_version": "1.1", + "traefik.access.method": "GET", + "traefik.access.referrer": "-", + "traefik.access.remote_ip": "::1", + "traefik.access.request_count": 10, + "traefik.access.response_code": "404", + "traefik.access.url": "/", + "traefik.access.user_agent.device": "Other", + "traefik.access.user_agent.major": "7", + "traefik.access.user_agent.minor": "62", + "traefik.access.user_agent.name": "curl", + "traefik.access.user_agent.original": "curl/7.62.0", + "traefik.access.user_agent.os": "Other", + "traefik.access.user_agent.os_name": "Other", + "traefik.access.user_agent.patch": "0", + "traefik.access.user_identifier": "-", + "traefik.access.user_name": "-" + }, + { + "@timestamp": "2018-01-19T10:01:02.000Z", + "fileset.module": "traefik", + "fileset.name": "access", + "input.type": "log", + "offset": 931, + "prospector.type": "log", + "traefik.access.backend_url": "http://172.25.0.9:4140", + "traefik.access.body_sent.bytes": 85, + "traefik.access.duration": 13, + "traefik.access.frontend_name": "Host-api-wearerealitygames-com-2", + "traefik.access.geoip.city_name": "Warsaw", + "traefik.access.geoip.continent_name": "Europe", + "traefik.access.geoip.country_iso_code": "PL", + "traefik.access.geoip.location.lat": 52.25, + "traefik.access.geoip.location.lon": 21.0, + "traefik.access.geoip.region_iso_code": "PL-MZ", + "traefik.access.geoip.region_name": "Mazovia", + "traefik.access.http_version": "1.1", + "traefik.access.method": "GET", + "traefik.access.remote_ip": "94.254.131.115", + "traefik.access.request_count": 623112, + "traefik.access.response_code": "200", + "traefik.access.url": "/assets/52f8f2e711d235d76044799e/owners?oauth_token=ya29.GltABOXd_gtG-XVvYX2YhxXJiXVvbHRMXn9fbzc_mDfl2rDhqK0CrAlwuwwRWnNnEaMDwkmyI7-QGbRSB0Hzje2cc__FjTQ1iuiYTSIBaIPfxSWip5jx6zqvsVVo", + "traefik.access.user_agent.device": "Generic Smartphone", + "traefik.access.user_agent.name": "Other", + "traefik.access.user_agent.original": "Android", + "traefik.access.user_agent.os": "Android", + "traefik.access.user_agent.os_name": "Android", + "traefik.access.user_identifier": "-", + "traefik.access.user_name": "-" + }, + { + "@timestamp": "2018-01-19T10:01:02.000Z", + "fileset.module": "traefik", + "fileset.name": "access", + "input.type": "log", + "offset": 1267, + "prospector.type": "log", + "traefik.access.backend_url": "http://172.25.0.6:4140", + "traefik.access.body_sent.bytes": 150, + "traefik.access.duration": 8, + "traefik.access.frontend_name": "Host-api-wearerealitygames-com-2", + "traefik.access.geoip.city_name": "Katowice", + "traefik.access.geoip.continent_name": "Europe", + "traefik.access.geoip.country_iso_code": "PL", + "traefik.access.geoip.location.lat": 50.2194, + "traefik.access.geoip.location.lon": 18.9737, + "traefik.access.geoip.region_iso_code": "PL-SL", + "traefik.access.geoip.region_name": "Silesia", + "traefik.access.http_version": "1.1", + "traefik.access.method": "GET", + "traefik.access.remote_ip": "89.64.35.193", + "traefik.access.request_count": 623114, + "traefik.access.response_code": "200", + "traefik.access.url": "/marketplace/tax?oauth_token=ya29.Gl0fBWnrJ7DcEU-tN-O3Vxn2XZVaz2I-hFTjP1JQzhYFVT-SKtlmo9hSzrx3n82LUwUxJ1s5lmU8U3Mc9gA_aCxBk49ShYEwvmYOWxJJyldDIJ7hY4us4LoiSY1OqAM", + "traefik.access.user_agent.device": "Generic Smartphone", + "traefik.access.user_agent.name": "Other", + "traefik.access.user_agent.original": "Android", + "traefik.access.user_agent.os": "Android", + "traefik.access.user_agent.os_name": "Android", + "traefik.access.user_identifier": "-", + "traefik.access.user_name": "-" + }, + { + "@timestamp": "2000-10-10T20:55:36.000Z", + "fileset.module": "traefik", + "fileset.name": "access", + "input.type": "log", + "offset": 1581, + "prospector.type": "log", + "traefik.access.body_sent.bytes": 2326, + "traefik.access.http_version": "1.0", + "traefik.access.method": "GET", + "traefik.access.remote_ip": "127.0.0.1", + "traefik.access.response_code": "200", + "traefik.access.url": "/apache_pb.gif", + "traefik.access.user_identifier": "-", + "traefik.access.user_name": "frank" } ] \ No newline at end of file From 9ccf0ac9ea443de4b9d208c859518ef3064d66a9 Mon Sep 17 00:00:00 2001 From: sayden Date: Fri, 7 Dec 2018 16:54:04 +0100 Subject: [PATCH 2/2] Clean Changelog entries added by mistake --- CHANGELOG.asciidoc | 2 -- 1 file changed, 2 deletions(-) diff --git a/CHANGELOG.asciidoc b/CHANGELOG.asciidoc index 3e41cd65083..3763d69baa4 100644 --- a/CHANGELOG.asciidoc +++ b/CHANGELOG.asciidoc @@ -64,8 +64,6 @@ https://github.com/elastic/beats/compare/v6.5.2...6.5[Check the HEAD diff] *Filebeat* -- Added `detect_null_bytes` selector to detect null bytes from a io.reader. {pull}9210[9210] -- Added `syslog_host` variable to HAProxy module to allow syslog listener to bind to configured host. {pull}9366[9366] - Added support on Traefik for Common Log Format and Combined Log Format mixed which is the default Traefik format {issue}8015[8015] {issue}6111[6111] {pull}8768[8768]. *Heartbeat*