Log 11301 - InsightOps Java library should send data by TLS by default

* [LOG-11301] InsightOps Java library should send data by TLS by default

Author: maquilanti-r7

README.md

@@ -1,10 +1,10 @@
-[Please see our documentation page for usage information](https://insightops.help.rapid7.com/v1.0/docs/libraries)
+[Please see our documentation page for usage information](https://insightops.help.rapid7.com/docs/libraries)
 -------
 
 Logging To InsightOps from Java
 ==============================
 
-Logentries currently supports logging from Java using the following logging libraries:
+InsightOps currently supports logging from Java using the following logging libraries:
 
 * [Log4J](https://insightops.help.rapid7.com/docs/log4j-log4j2)
 * [Log4J2](https://insightops.help.rapid7.com/docs/log4j-log4j2)
@@ -42,12 +42,10 @@ Logentries handler configuration (e.g. to support different tokens).
     ```
     logger1.com.rapid7.jul.LogentriesHandler.token=4ff1cb0a-beea-4616-b647-1c113de8e7bb
     logger1.com.rapid7.jul.LogentriesHandler.region=eu
-    logger1.com.rapid7.jul.LogentriesHandler.port=10000
     logger1.com.rapid7.jul.LogentriesHandler.formatter=java.util.logging.SimpleFormatter
     
     logger2.com.rapid7.jul.LogentriesHandler.token=a70d9089-576c-4668-9641-14995d493a62
     logger2.com.rapid7.jul.LogentriesHandler.region=eu
-    logger2.com.rapid7.jul.LogentriesHandler.port=10000
     logger2.com.rapid7.jul.LogentriesHandler.formatter=java.util.logging.SimpleFormatter
     ```
 

configFiles/log4j.properties.example

@@ -5,4 +5,4 @@ log4j.appender.le.layout.ConversionPattern=%d{yyyy-MM-dd HH:mm:ss ZZZ} %-5p: %F:
 log4j.appender.le.Token=LOGENTRIES_TOKEN
 log4j.appender.le.Region=eu
 log4j.appender.le.Debug=False
-log4j.appender.le.Ssl=False
+log4j.appender.le.Ssl=true

configFiles/log4j.xml.example

@@ -2,11 +2,11 @@
 <!DOCTYPE log4j:configuration SYSTEM "log4j.dtd">
 <log4j:configuration debug="true">
 	<appender name="le" class="com.rapid7.log4j.LogentriesAppender">
-		<!-- Enter your Logentries token, like bc0c4f90-a2d6-11e1-b3dd-0800200c9a66 -->
+		<!-- Enter your log token, like 0c7407d4-fd0d-4436-bb50-44f1266b4490 -->
 		<param name="Token" value="LOGENTRIES_TOKEN" />
 		<param name="Region" value="eu" />
 		<param name="Debug" value="false" />
-		<param name="Ssl" value="false" />
+		<param name="Ssl" value="true" />
 		<layout class="org.apache.log4j.PatternLayout">
 			<param name="ConversionPattern"
 				value="%d{yyyy-MM-dd HH:mm:ss ZZZ} %-5p (%F:%L)  %m" />

configFiles/log4j2.xml.example

@@ -9,6 +9,7 @@
             <debug>false</debug>
             <ignoreExceptions>false</ignoreExceptions>
             <logId></logId>
+            <useSsl>true</useSsl>
             <!-- datahub specific options -->
             <key>account_key</key>
             <useDataHub>false</useDataHub>

configFiles/logback.xml.example

@@ -6,7 +6,7 @@
 		<Token>LOGENTRIES_TOKEN</Token>
 		<Region>eu</Region>
 		<Debug>False</Debug>
-		<Ssl>False</Ssl>
+		<Ssl>true</Ssl>
 		<facility>USER</facility>
 		<encoder>
 			<pattern>%d{HH:mm:ss.SSS} [%thread] %-5level %logger{36} - %msg%n</pattern>

configFiles/logging.properties.example

@@ -3,5 +3,4 @@ handlers = com.rapid7.jul.LogentriesHandler
 
 com.rapid7.jul.LogentriesHandler.token = LOGENTRIES_TOKEN
 com.rapid7.jul.LogentriesHandler.region = eu
-com.rapid7.jul.LogentriesHandler.port = 10000
 com.rapid7.jul.LogentriesHandler.formatter = java.util.logging.SimpleFormatter

pom.xml

@@ -1,8 +1,9 @@
 <?xml version="1.0" encoding="UTF-8"?>
-<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
 
-	<properties>
-		<additionalparam>-Xdoclint:none</additionalparam>
+    <properties>
+        <additionalparam>-Xdoclint:none</additionalparam>
         <guava.version>21.0</guava.version>
         <jackson.version>2.4.2</jackson.version>
         <log4j.version>2.7</log4j.version>
@@ -37,12 +38,10 @@
     </scm>
     <developers>
         <developer>
-            <id>MarkLC</id>
-            <name>Mark Lacomber</name>
-            <email>marklacomber@gmail.com</email>
+            <name>Rapid7</name>
+            <email>InsightOpsTeam@rapid7.com</email>
         </developer>
     </developers>
-
     <build>
         <plugins>
             <plugin>
@@ -80,6 +79,10 @@
                 <artifactId>maven-surefire-plugin</artifactId>
                 <version>2.19.1</version>
                 <configuration>
+                    <systemPropertyVariables>
+                        <!--to Test tls/ssl mode connections in unit tests-->
+                        <javax.net.ssl.trustStore>target/test-classes/unit_test_key_store.jks</javax.net.ssl.trustStore>
+                    </systemPropertyVariables>
                     <!-- Travis build workaround -->
                     <forkCount>1</forkCount>
                     <argLine>${surefire.jvm.params}</argLine>
@@ -152,7 +155,7 @@
             <groupId>com.lmax</groupId>
             <artifactId>disruptor</artifactId>
             <version>${disruptor.version}</version>
-           <optional>true</optional> 
+            <optional>true</optional>
         </dependency>
         <dependency>
             <groupId>org.apache.logging.log4j</groupId>

src/main/java/com/rapid7/Constants.java

@@ -3,5 +3,4 @@
 
 public class Constants {
     public static final String DATA_ENDPOINT_TEMPLATE = "%s.data.logs.insight.rapid7.com";
-    public static final String HTTP_ENDPOINT_TEMPLATE = "%s.api.logs.insight.rapid7.com";
 }

src/main/java/com/rapid7/jul/LogentriesHandler.java

@@ -1,11 +1,8 @@
 package com.rapid7.jul;
 
-import java.io.IOException;
-import java.net.InetSocketAddress;
-import java.nio.BufferOverflowException;
-import java.nio.ByteBuffer;
-import java.nio.channels.SocketChannel;
-import java.nio.charset.Charset;
+import com.rapid7.net.AsyncLogger;
+import com.rapid7.net.LoggerConfiguration;
+
 import java.text.MessageFormat;
 import java.util.logging.Formatter;
 import java.util.logging.Handler;
@@ -14,99 +11,51 @@
 import java.util.logging.LogRecord;
 import java.util.logging.SimpleFormatter;
 
-import static com.google.common.base.Strings.isNullOrEmpty;
-import static com.rapid7.Constants.DATA_ENDPOINT_TEMPLATE;
-import static java.util.logging.ErrorManager.CLOSE_FAILURE;
 import static java.util.logging.ErrorManager.FORMAT_FAILURE;
 import static java.util.logging.ErrorManager.GENERIC_FAILURE;
-import static java.util.logging.ErrorManager.OPEN_FAILURE;
-import static java.util.logging.ErrorManager.WRITE_FAILURE;
 
-/**
- * <code>LogentriesHandler</code>: A handler for writing formatted records to a
- * logentries.com. This handler uses the Token-based input.
- *
- * @author Björn Raupach (raupach@me.com)
- */
-public final class LogentriesHandler extends Handler {
+public class LogentriesHandler extends Handler {
 
-    private final byte[] newline = {0x0D, 0x0A};
-    private final byte space = 0x020;
-    private String host;
-    private int port;
-    private byte[] token;
-    private String region;
-    private boolean open;
-    private SocketChannel channel;
-    private ByteBuffer buffer;
+    /**
+     * Asynchronous Background logger
+     */
+    final AsyncLogger iopsAsync;
 
     public LogentriesHandler() {
         this(null);
     }
 
     public LogentriesHandler(String prefix) {
-        configure(prefix);
-        connect();
-        buffer = ByteBuffer.allocate(4096);
-    }
-
-    public String getHost() {
-        return host;
-    }
-
-    public void setHost(String host) {
-        this.host = host;
-    }
-
-    public int getPort() {
-        return port;
+        iopsAsync = new AsyncLogger(loadConfiguration(prefix));
     }
 
-    public void setPort(int port) {
-        this.port = port;
-    }
-
-    public byte[] getToken() {
-        return token;
-    }
-
-    public void setToken(byte[] token) {
-        this.token = token;
-    }
-
-    public String getRegion() {
-        return region;
-    }
-
-    public void setRegion(String region) {
-        this.region = region;
+    private LoggerConfiguration loadConfiguration(String prefix) {
+        String cname = getClass().getName();
+        String propsPrefix = prefix == null ? cname : prefix + "." + cname;
+        setLevel(getLevelProperty(propsPrefix + ".level", Level.INFO));
+        setFormatter(getFormatterProperty(propsPrefix + ".formatter", new SimpleFormatter()));
+        return new LoggerConfiguration.Builder()
+                .inRegion(getStringProperty(propsPrefix + ".region", ""))
+                .toServerAddress(getStringProperty(propsPrefix + ".host", null))
+                .toServerPort(getIntProperty(propsPrefix + ".port", 0))
+                .useToken(getStringProperty(propsPrefix + ".token", ""))
+                .useDataHub(getBooleanProperty(propsPrefix + ".useDataHub", false))
+                .useHttpPut(getBooleanProperty(propsPrefix + ".httpPut", false))
+                .useAccountKey(getStringProperty(propsPrefix + ".key", ""))
+                .httpPutLocation(getStringProperty(propsPrefix + ".location", ""))
+                .runInDebugMode(getBooleanProperty(propsPrefix + ".debug", false))
+                .logHostNameAsPrefix(getBooleanProperty(propsPrefix + ".logHostName", false))
+                .useAsHostName(getStringProperty(propsPrefix + ".hostNameToLog", ""))
+                .setLogIdPrefix(getStringProperty(propsPrefix + ".logId", ""))
+                .useSSL(getBooleanProperty(propsPrefix + ".ssl", true))
+                .build();
     }
 
 
     @Override
     public synchronized void publish(LogRecord record) {
-        if (open && isLoggable(record)) {
-            String msg = formatMessage(record);
-            if (!msg.isEmpty()) {
-                boolean filled = fillAndFlip(msg);
-                if (filled) {
-                    boolean drained = drain();
-                    if (!drained) {
-                        System.err.println("java.util.logging.ErrorManager: Sending to logentries.com failed. Trying to reconnect once.");
-                        connect();
-                        if (open) {
-                            filled = fillAndFlip(msg);
-                            if (filled) {
-                                drained = drain();
-                                if (!drained) {
-                                    System.err.println("java.util.logging.ErrorManager: Unable to reconnect. Shutting handler down.");
-                                    close();
-                                }
-                            }
-                        }
-                    }
-                }
-            }
+        if (isLoggable(record)) {
+            this.iopsAsync.addLineToQueue(formatMessage(record));
         }
     }
 
@@ -122,77 +71,14 @@ String formatMessage(LogRecord record) {
         return msg;
     }
 
-    boolean fillAndFlip(String formattedMessage) {
-        try {
-            buffer.clear();
-            buffer.put(token);
-            buffer.put(space);
-            buffer.put(formattedMessage.getBytes(Charset.forName("UTF-8")));
-            buffer.put(newline);
-        } catch (BufferOverflowException e) {
-            reportError("Buffer exceeds capacity", e, WRITE_FAILURE);
-            return false;
-        }
-        buffer.flip();
-        return true;
-    }
-
-    boolean drain() {
-        while (buffer.hasRemaining()) {
-            try {
-                channel.write(buffer);
-            } catch (Exception e) {
-                reportError("Error while writing channel.", e, WRITE_FAILURE);
-                return false;
-            }
-        }
-        return true;
-    }
-
-    void configure(String prefix) {
-        String cname = getClass().getName();
-        String propsPrefix = prefix == null ? cname : prefix + "." + cname;
-        setLevel(getLevelProperty(propsPrefix + ".level", Level.INFO));
-        setFormatter(getFormatterProperty(propsPrefix + ".formatter", new SimpleFormatter()));
-        setRegion(getStringProperty(propsPrefix + ".region", ""));
-
-        String hostProperty = getStringProperty(propsPrefix + ".host", null);
-        if (isNullOrEmpty(hostProperty)) {
-            setHost(String.format(DATA_ENDPOINT_TEMPLATE, region));
-        } else {
-            setHost(hostProperty);
-        }
-
-        setPort(getIntProperty(propsPrefix + ".port", 514));
-        setToken(getBytesProperty(propsPrefix + ".token", ""));
-    }
-
-    void connect() {
-        try {
-            channel = SocketChannel.open();
-            channel.connect(new InetSocketAddress(host, port));
-            open = true;
-        } catch (IOException e) {
-            open = false;
-            reportError(MessageFormat.format("Error connection to host: {0}:{1}", host, port), e, OPEN_FAILURE);
-        }
-    }
-
     @Override
     public void flush() {
+        // no need to flush since the log is sent by AsyncLogger
     }
 
     @Override
-    public void close() throws SecurityException {
-        open = false;
-        buffer = null;
-        if (channel != null) {
-            try {
-                channel.close();
-            } catch (IOException e) {
-                reportError("Error while closing channel.", e, CLOSE_FAILURE);
-            }
-        }
+    public void close() {
+        iopsAsync.close();
     }
 
     // -- These methods are private in LogManager
@@ -235,8 +121,20 @@ String getStringProperty(String name, String defaultValue) {
         return val.trim();
     }
 
-    byte[] getBytesProperty(String name, String defaultValue) {
-        return getStringProperty(name, defaultValue).getBytes();
+    boolean getBooleanProperty(String name, boolean defaultValue) {
+        LogManager manager = LogManager.getLogManager();
+        String val = manager.getProperty(name);
+        if (val == null) {
+            return defaultValue;
+        }
+        if ("false".equalsIgnoreCase(val.trim())) {
+            return false;
+        } else if ("true".equalsIgnoreCase(val.trim())) {
+            return true;
+        } else {
+            reportError(MessageFormat.format("Error reading property ''{0}''", name), null, GENERIC_FAILURE);
+            return defaultValue;
+        }
     }
 
     int getIntProperty(String name, int defaultValue) {