Changeset 465866c – NSClient++

changelog

-                      r695f240
+                      r465866c
  * Fixa dependonservice LanManWorkStation (old win)
  * Fix RtlStringFromGUID problem on NT4
+-05-19 MickeM
+ * Tweaked all servers to use the new internals and added first testcase for NSCP socket
+-05-24 MickeM
+ * Reworked real time event log support to be a lot more flexible
+   You can now specify all options on a "filter" level.
+ * WARNING*
+   Old syntax NOT supported (and will not upgrade) but hopefully not to many will be affected.
+ * Added support for ipv6 allowed hosts validation
+-05-21 MickeM
+ * Sofia Born (My second daughter)
 -05-19 MickeM

include/nsca/client/nsca_client_protocol.hpp

-                      raf05fa1
+                      r465866c
+  }
+}
-/*
-#pragma once
-#include <boost/shared_ptr.hpp>
-#include <boost/asio.hpp>
-#include <socket/socket_helpers.hpp>
-#include <nsca/nsca_packet.hpp>
-#include <nsca/nsca_enrypt.hpp>
-using boost::asio::ip::tcp;
-namespace nsca {
-  class socket : public boost::noncopyable {
-  private:
-    boost::shared_ptr<tcp::socket> socket_;
-    boost::asio::io_service &io_service_;
-    nsca_encrypt crypt_inst;
-    int time;
-  public:
-    typedef boost::asio::basic_socket<tcp,boost::asio::stream_socket_service<tcp> >  basic_socket_type;
-  public:
-    socket(boost::asio::io_service &io_service) : io_service_(io_service), time(0) {
-      socket_.reset(new tcp::socket(io_service_));
+    }
-    ~socket() {
-      if (socket_)
-        socket_->close();
-      socket_.reset();
+    }
-    virtual void connect(std::string host, std::string port) {
-      NSC_DEBUG_MSG(_T("Connecting to: ") + utf8::cvt<std::wstring>(host) + _T(" (") + utf8::cvt<std::wstring>(port) + _T(")"));
-      tcp::resolver resolver(io_service_);
-      tcp::resolver::query query(host, port);
-      tcp::resolver::iterator endpoint_iterator = resolver.resolve(query);
-      tcp::resolver::iterator end;
-      boost::system::error_code error = boost::asio::error::host_not_found;
-      while (error && endpoint_iterator != end) {
-        tcp::resolver::endpoint_type ep = *endpoint_iterator;
-        socket_->close();
-        socket_->connect(*endpoint_iterator++, error);
-        NSC_DEBUG_MSG(_T("Connected to: ") + utf8::cvt<std::wstring>(ep.address().to_string()));
+      }
-      if (error) {
-        NSC_DEBUG_MSG(_T("Failed to connect to:") + utf8::to_unicode(host));
-        throw boost::system::system_error(error);
+      }
+    }
-    virtual void shutdown() {
-      NSC_DEBUG_MSG(_T("Ending socket (gracefully)"));
-      // Initiate graceful connection closure.
-      boost::system::error_code ignored_ec;
-      if (socket_)
-        socket_->shutdown(boost::asio::ip::tcp::socket::shutdown_both, ignored_ec);
-    };
-    virtual void close() {
-      if (socket_)
-        socket_->close();
-      socket_.reset();
-    };
-    virtual void send_nsca(const nsca::packet &packet, const boost::posix_time::seconds timeout) {
-      if (!socket_ || !socket_->is_open()) {
-        NSC_LOG_ERROR_STD(_T("Socket was closed when trying to send data..."));
-        return;
+      }
-      std::string buffer = crypt_inst.get_rand_buffer(packet.get_packet_length());
-      packet.get_buffer(buffer, time);
-      crypt_inst.encrypt_buffer(buffer);
-      NSC_DEBUG_MSG(_T("Sending data: ") + strEx::itos(buffer.size()));
-      write_with_timeout(buffer, timeout);
+    }
-    virtual bool recv_iv(std::string password, int encryption_method, boost::posix_time::seconds timeout) {
-      if (!socket_ || !socket_->is_open()) {
-        NSC_LOG_ERROR_STD(_T("Socket was closed when trying to read data..."));
-        return false;
+      }
-      unsigned int len = nsca::length::iv::get_packet_length();
-      std::vector<char> buf(len);
-      if (!read_with_timeout(buf, timeout)) {
-        NSC_LOG_ERROR_STD(_T("Failed to read IV from server (using ") + strEx::itos(encryption_method) + _T(", ") + strEx::itos(len) + _T(")."));
-        return false;
+      }
-      nsca::iv_packet iv_packet(std::string(buf.begin(), buf.end()));
-      std::string iv = iv_packet.get_iv();
-      time = iv_packet.get_time();
-      NSC_DEBUG_MSG(_T("Encrypting using: ") + utf8::cvt<std::wstring>(nsca::nsca_encrypt::helpers::encryption_to_string(encryption_method)) + _T(", password '") + utf8::cvt<std::wstring>(password) + _T("'"));
-      crypt_inst.encrypt_init(password, encryption_method, iv);
-      return true;
+    }
-    virtual bool read_with_timeout(std::vector<char> &buf, boost::posix_time::seconds timeout) {
-      return socket_helpers::io::read_with_timeout(*socket_, *socket_, boost::asio::buffer(buf), timeout);
+    }
-    virtual void write_with_timeout(std::string &buf, boost::posix_time::seconds timeout) {
-      socket_helpers::io::write_with_timeout(*socket_, *socket_, boost::asio::buffer(buf), timeout);
+    }
-  };
+}
-*/

include/nscapi/macros.hpp

r8d89d7a	r465866c
37	37	#define NSC_LOG_ERROR_STD(msg) if (GET_CORE()->should_log(NSCAPI::log_level::error)) { NSC_ANY_MSG((std::wstring)msg, NSCAPI::log_level::error); }
38	38	#define NSC_LOG_ERROR(msg) if (GET_CORE()->should_log(NSCAPI::log_level::error)) { NSC_ANY_MSG(msg, NSCAPI::log_level::error); }
	39	#define NSC_LOG_ERROR_LISTW(lst) if (GET_CORE()->should_log(NSCAPI::log_level::error)) { BOOST_FOREACH(const std::wstring &s, lst) { NSC_ANY_MSG(s, NSCAPI::log_level::error); } }
	40	#define NSC_LOG_ERROR_LISTS(lst) if (GET_CORE()->should_log(NSCAPI::log_level::error)) { BOOST_FOREACH(const std::string &s, lst) { NSC_ANY_MSG(s, NSCAPI::log_level::error); } }
39	41
40	42	#define NSC_LOG_CRITICAL_STD(msg) if (GET_CORE()->should_log(NSCAPI::log_level::critical)) { NSC_ANY_MSG((std::wstring)msg, NSCAPI::log_level::critical); }

include/nscapi/nscapi_core_helper.cpp

ree52cdd	r465866c
40	40	}
41	41
42		bool nscapi::core_helper::submit_simple_message(~~std::wstring channel, std::wstring command, NSCAPI::nagiosReturn code, std::wstring & message,~~ std::wstring & perf, std::wstring & response) {
	42	bool nscapi::core_helper::submit_simple_message(const std::wstring channel, const std::wstring command, const NSCAPI::nagiosReturn code, const std::wstring & message, const std::wstring & perf, std::wstring & response) {
43	43	std::string request, buffer;
44	44	nscapi::functions::create_simple_submit_request(channel, command, code, message, perf, request);

include/nscapi/nscapi_core_helper.hpp

ree52cdd	r465866c
31	31
32	32	NSCAPI::nagiosReturn exec_simple_command(const std::wstring target, const std::wstring command, const std::list<std::wstring> &argument, std::list<std::wstring> & result);
33		bool submit_simple_message(~~std::wstring channel, std::wstring command, NSCAPI::nagiosReturn code, std::wstring & message,~~ std::wstring & perf, std::wstring & response);
	33	bool submit_simple_message(const std::wstring channel, const std::wstring command, const NSCAPI::nagiosReturn code, const std::wstring & message, const std::wstring & perf, std::wstring & response);
34	34	};
35	35	};

include/nscapi/settings_object.hpp

-                      r67c6d04
+                      r465866c
           return;
         add(proxy, path, alias, value, is_template);
+      }
+      std::list<std::wstring> get_object_key_list() const {
+        std::list<std::wstring> ret;
+        BOOST_FOREACH(const typename object_list_type::value_type &t, object_list) {
+          ret.push_back(t.first);
+        }
+        return ret;
+      }
+      std::list<t_object_type> get_object_list() const {
+        std::list<t_object_type> ret;
+        BOOST_FOREACH(const typename object_list_type::value_type &t, object_list) {
+          ret.push_back(t.second);
+        }
+        return ret;
+      }
+      bool has_objects() const {
+        return !object_list.empty();
+      }

include/nscp/packet.hpp

-                      ra629015
+                      r465866c
     //////////////////////////////////////////////////////////////////////////
     // Write to string
     std::string write_string() const {
       std::string ret;
+    std::vector<char> write_string() const {
+      std::vector<char> ret;
       write_signature(ret);
       write_header(ret);
 …
       sig.AppendToString(&buffer);
+    }
+    void write_signature(std::string &buffer) const {
+    template<class T>
+    void write_signature(T &buffer) const {
       nscp::data::tcp_signature_data data = signature;
+      buffer.append(reinterpret_cast<char*>(&data), length::get_signature_size());
+      char * begin = reinterpret_cast<char*>(&data);
+      char *end = &begin[length::get_signature_size()];
+      buffer.insert(buffer.end(), begin, end);
+    }
     std::string write_header() const {
 …
       return buffer;
+    }
+    inline void write_header(std::string &buffer) const {
+    template<class T>
+    inline void write_header(T &buffer) const {
       if (!header.empty())
         buffer.insert(buffer.end(), header.begin(), header.end());
 …
       return buffer;
+    }
+    inline void write_payload(std::string &buffer) const {
+    template<class T>
+    inline void write_payload(T &buffer) const {
       if (!payload.empty())
         buffer.insert(buffer.end(), payload.begin(), payload.end());

include/nscp/server/handler.hpp

-                      r2b2e9b8
+                      r465866c
 namespace nscp {
   namespace server {
+    class server_handler {
+    private:
+      server_handler(const server_handler &other) {}
+      server_handler& operator= (const server_handler &other) {
+        return *this;
+      }
+    class handler : public boost::noncopyable {
     public:
-      server_handler() {}
       virtual nscp::packet process(const nscp::packet &packet) = 0;
-      virtual std::list<nscp::packet> process_all(const std::list<nscp::packet> &packet) = 0;
       virtual void log_debug(std::string file, int line, std::wstring msg) = 0;
       virtual void log_error(std::string file, int line, std::wstring msg) = 0;
+      virtual void log_debug(std::string module, std::string file, int line, std::string msg) const = 0;
+      virtual void log_error(std::string module, std::string file, int line, std::string msg) const = 0;
       virtual nscp::packet create_error(std::wstring msg) = 0;
     };
   }// namespace server
 } // namespace nrpe
+} // namespace nscp

include/nscp/server/parser.hpp

-                      r2b2e9b8
+                      r465866c
 namespace nscp {
   namespace server {
     class parser : public boost::noncopyable {
       std::vector<char> buffer_;
-      boost::shared_ptr<nscp::server::server_handler> handler_;
     public:
-      parser(boost::shared_ptr<nscp::server::server_handler> handler) : handler_(handler) {}
-      typedef boost::function<boost::tuple<bool, char*>(parser*, char*, char*)> digest_function;
       template <typename InputIterator>
 …
+      }
+      boost::tuple<bool, char*> digest_signature(char* begin, char* end) {
+      template <typename InputIterator>
+      boost::tuple<bool, InputIterator> digest_signature(InputIterator begin, InputIterator end) {
         return digest_anything(begin, end, nscp::length::get_signature_size());
+      }
       template <typename InputIterator>
       InputIterator digest_header(InputIterator begin, InputIterator end, const nscp::data::tcp_signature_data &signature) {
+      boost::tuple<bool, InputIterator> digest_header(InputIterator begin, InputIterator end, const nscp::data::tcp_signature_data &signature) {
         return digest_anything(begin, end, nscp::length::get_header_size(signature));
+      }
+      boost::tuple<bool, char*> digest_payload(char* begin, char* end, const nscp::data::tcp_signature_data &signature) {
+      template <typename InputIterator>
+      boost::tuple<bool, InputIterator> digest_payload(InputIterator begin, InputIterator end, const nscp::data::tcp_signature_data &signature) {
         return digest_anything(begin, end, nscp::length::get_payload_size(signature));
+      }
       nscp::data::tcp_signature_data parse_signature() {
+      void parse_signature(nscp::packet &packet) {
         assert(buffer_.size() >= nscp::length::get_signature_size());
         nscp::data::tcp_signature_data *tmp = reinterpret_cast<nscp::data::tcp_signature_data*>(&(*buffer_.begin()));
         nscp::data::tcp_signature_data signature = *tmp;
+        packet.read_signature(tmp);
         buffer_.clear();
-        return signature;
+      }
       void parse_header(const nscp::data::tcp_signature_data &signature) {
         unsigned long wanted = nscp::length::get_header_size(signature);
+      void parse_header(nscp::packet &packet) {
+        unsigned long wanted = nscp::length::get_header_size(packet.signature);
         if (wanted == 0)
           return;
 …
+      }
     };
+    struct digester : public boost::noncopyable {
+      enum state {
+        need_signature,
+        need_header,
+        need_payload,
+      };
+      parser parser_;
+      state current_state_;
+      nscp::packet packet_;
+      void reset() {
+        current_state_ = need_signature;
+      }
+      unsigned long long get_next_size() {
+        if (current_state_ == need_signature) {
+          return nscp::length::get_signature_size();
+        } else if (current_state_ == need_header) {
+          return nscp::length::get_header_size(packet_.signature);
+        } else if (current_state_ == need_payload) {
+          return nscp::length::get_payload_size(packet_.signature);
+        }
+        return 0;
+      }
+      template<typename iterator_type>
+      boost::tuple<bool, iterator_type> digest(iterator_type begin, iterator_type end) {
+        bool result = false;
+        if (current_state_ == need_signature) {
+          boost::tie(result, begin) = parser_.digest_signature(begin, end);
+          if (result) {
+            parser_.parse_signature(packet_);
+            current_state_ = need_header;
+          } else
+            return boost::make_tuple(false, begin);
+        }
+        if (current_state_ == need_header) {
+          boost::tie(result, begin) = parser_.digest_header(begin, end, packet_.signature);
+          if (result) {
+            parser_.parse_header(packet_);
+            current_state_ = need_payload;
+          } else
+            return boost::make_tuple(false, begin);
+        }
+        if (current_state_ == need_payload) {
+          boost::tie(result, begin) = parser_.digest_payload(begin, end, packet_.signature);
+          if (result) {
+            parser_.parse_payload(packet_);
+            current_state_ = need_signature;
+          }
+          return boost::make_tuple(result, begin);
+        }
+        return boost::make_tuple(result, begin);
+      }
+      nscp::packet get_packet() const { return packet_; }
+    };
   }// namespace server
 } // namespace nscp

include/settings/client/settings_client.cpp

-                      r76540c3
+                      r465866c
     boost::shared_ptr<wpath_key_type> wpath_key(std::wstring *val) {
       boost::shared_ptr<wpath_key_type> r(new wpath_key_type(val, _T(""), false));
+      return r;
+    }
+    boost::shared_ptr<path_key_type> path_key(std::string *val, std::string def) {
+      boost::shared_ptr<path_key_type> r(new path_key_type(val, def, true));
+      return r;
+    }
+    boost::shared_ptr<path_key_type> path_key(std::string *val) {
+      boost::shared_ptr<path_key_type> r(new path_key_type(val, "", false));
       return r;
+    }

include/settings/client/settings_client.hpp

-                      r6533c1a
+                      r465866c
     typedef typed_key_value<std::string, typed_string_value<std::string> > string_key_type;
     typedef typed_key_value<std::wstring, typed_path_value<std::wstring> > wpath_key_type;
+    typedef typed_key_value<std::string, typed_path_value<std::string> > path_key_type;
     typedef typed_key_value<unsigned int, typed_int_value<unsigned int> > uint_key_type;
     typedef typed_key_value<int, typed_int_value<int> > int_key_type;
 …
     boost::shared_ptr<wpath_key_type> wpath_key(std::wstring *val, std::wstring def);
     boost::shared_ptr<wpath_key_type> wpath_key(std::wstring *val);
+    boost::shared_ptr<path_key_type> path_key(std::string *val, std::string def);
+    boost::shared_ptr<path_key_type> path_key(std::string *val);
     template<class T>

include/socket/client.hpp

-                      raf05fa1
+                      r465866c
     class connection : public boost::enable_shared_from_this<connection<protocol_type> >, private boost::noncopyable {
     private:
-      tcp::socket socket_;
       protocol_type protocol_;
       boost::asio::io_service &io_service_;
 …
       connection(boost::asio::io_service &io_service, boost::posix_time::time_duration timeout, boost::shared_ptr<typename protocol_type::client_handler> handler)
         : io_service_(io_service)
-        , socket_(io_service)
         , timer_(io_service)
         , timeout_(timeout)
 …
       virtual ~connection() {
+        stop_timer();
+        close();
+        try {
+          stop_timer();
+        } catch (const std::exception &e) {
+          handler_->log_error(__FILE__, __LINE__, std::string("Failed to close connection: ") + e.what());
+        } catch (...) {
+          handler_->log_error(__FILE__, __LINE__, "Failed to close connection");
+        }
+      }
 …
       // External API functions
       //
       virtual void connect(std::string host, std::string port) {
+      virtual boost::system::error_code connect(std::string host, std::string port) {
         tcp::resolver resolver(io_service_);
         tcp::resolver::query query(host, port);
 …
           get_socket().lowest_layer().connect(*endpoint_iterator++, error);
+        }
+        if (error)
+          throw boost::system::system_error(error);
+        if (error) {
+          return error;
+        }
         protocol_.on_connect();
+        return error;
+      }
 …
       virtual void close() {
         trace("close()");
         if (!get_socket().is_open())
           return;
         get_socket().shutdown(boost::asio::ip::tcp::socket::shutdown_both);
         get_socket().close();
+        boost::system::error_code ignored_ec;
+        if (get_socket().is_open())
+          get_socket().shutdown(boost::asio::ip::tcp::socket::shutdown_both, ignored_ec);
+        get_socket().close(ignored_ec);
+      }
 …
+      }
+      virtual void start_read_request(boost::asio::mutable_buffers_1 &buffer) {
+        trace("start_read_request()");
+        async_read(socket_, buffer,
+          boost::bind(&connection::handle_read_request, shared_from_this(), boost::asio::placeholders::error, boost::asio::placeholders::bytes_transferred)
+        );
+      }
+      virtual void start_read_request(boost::asio::mutable_buffers_1 &buffer) = 0;
       virtual void handle_read_request(const boost::system::error_code& e, std::size_t bytes_transferred) {
 …
+      }
+      virtual void start_write_request(boost::asio::mutable_buffers_1 &buffer) {
+        trace("start_write_request()");
+        async_write(socket_, buffer,
+          boost::bind(&connection::handle_write_request, shared_from_this(), boost::asio::placeholders::error, boost::asio::placeholders::bytes_transferred)
+          );
+      }
+      virtual void start_write_request(boost::asio::mutable_buffers_1 &buffer) = 0;
       virtual void handle_write_request(const boost::system::error_code& e, std::size_t bytes_transferred) {
 …
         return false;
+      }
-      virtual basic_socket_type& get_socket() {
-        return socket_;
+      }
       //////////////////////////////////////////////////////////////////////////
       // Internal helper functions
       //
       inline void trace(std::string msg) const {
         if (debug_trace)
+        if (debug_trace && handler_)
           handler_->log_debug(__FILE__, __LINE__, msg);
+      }
+      inline void log_error(std::string file, int line, std::string msg) const {
+        if (handler_)
+          handler_->log_error(__FILE__, __LINE__, msg);
+      }
+      virtual basic_socket_type& get_socket() = 0;
+    };
+    template<class protocol_type>
+    class tcp_connection : public connection<protocol_type> {
+      typedef connection<protocol_type> connection_type;
+      tcp::socket socket_;
+    public:
+      tcp_connection(boost::asio::io_service &io_service, boost::posix_time::time_duration timeout, boost::shared_ptr<typename protocol_type::client_handler> handler)
+        : connection_type(io_service, timeout, handler)
+        , socket_(io_service)
+      {}
+      virtual ~tcp_connection() {
+        try {
+          close();
+        } catch (const std::exception &e) {
+          log_error(__FILE__, __LINE__, std::string("Failed to close connection: ") + e.what());
+        } catch (...) {
+          log_error(__FILE__, __LINE__, "Failed to close connection");
+        }
+      }
+      virtual void start_read_request(boost::asio::mutable_buffers_1 &buffer) {
+        std::size_t data_size = boost::asio::buffer_size(buffer);
+        trace("tcp::start_read_request(" + strEx::s::itos((int)data_size) + ")");
+        async_read(socket_, buffer,
+          boost::bind(&connection::handle_read_request, shared_from_this(), boost::asio::placeholders::error, boost::asio::placeholders::bytes_transferred)
+          );
+      }
+      virtual void start_write_request(boost::asio::mutable_buffers_1 &buffer) {
+        std::size_t data_size = boost::asio::buffer_size(buffer);
+        trace("tcp::start_write_request(" + strEx::s::itos((int)data_size) + ")");
+        async_write(socket_, buffer,
+          boost::bind(&connection::handle_write_request, shared_from_this(), boost::asio::placeholders::error, boost::asio::placeholders::bytes_transferred)
+          );
+      }
+      virtual basic_socket_type& get_socket() {
+        return socket_;
+      }
     };
 …
       {}
       virtual ~ssl_connection() {
+      }
+      virtual void connect(std::string host, std::string port) {
+        connection_type::connect(host, port);
+        ssl_socket_.handshake(boost::asio::ssl::stream_base::client);
+        try {
+          close();
+        } catch (const std::exception &e) {
+          log_error(__FILE__, __LINE__, std::string("Failed to close connection: ") + e.what());
+        } catch (...) {
+          log_error(__FILE__, __LINE__, "Failed to close connection");
+        }
+      }
+      virtual boost::system::error_code connect(std::string host, std::string port) {
+        boost::system::error_code error = connection_type::connect(host, port);
+        if (!error)
+          ssl_socket_.handshake(boost::asio::ssl::stream_base::client);
+        return error;
+      }
 …
       typedef connection<protocol_type> connection_type;
+      typedef tcp_connection<protocol_type> tcp_connection_type;
 #ifdef USE_SSL
       boost::asio::ssl::context context_;
 …
+      {
+      }
+      ~client() {
+        try {
+          if (connection_)
+            connection_->shutdown();
+        } catch (...) {
+          handler_->log_error(__FILE__, __LINE__, "Failed to close socket on disconnect");
+        }
+        connection_.reset();
+      }
       void connect() {
         connection_.reset(create_connection());
+        connection_->connect(handler_->get_host(), handler_->get_port());
+        boost::system::error_code error = connection_->connect(handler_->get_host(), handler_->get_port());
+        if (error) {
+          connection_.reset();
+          throw std::exception(error.message().c_str());
+        }
+      }
 …
+        }
 #endif
         return new connection_type(io_service_, handler_->get_timeout(), handler_);
+        return new tcp_connection_type(io_service_, handler_->get_timeout(), handler_);
+      }

include/socket/connection.hpp

raf05fa1	r465866c
16	16
17	17	using boost::asio::ip::tcp;
18		static const bool debug_trace = ~~fals~~e;
	18	static const bool debug_trace = true;
19	19
20	20	//

include/socket/server.hpp

-                      r9bd40e2
+                      r465866c
           return;
+        }
         if (protocol_->get_info().use_ssl) {
+        if (protocol_->get_info().ssl.enabled) {
 #ifdef USE_SSL
+          SSL_CTX_set_cipher_list(context_.impl(), "ADH");
+          protocol_->log_debug(__FILE__, __LINE__, "Using certificate: " + utf8::cvt<std::string>(protocol_->get_info().certificate));
+          context_.use_tmp_dh_file(to_string(protocol_->get_info().certificate));
+          protocol_->log_debug(__FILE__, __LINE__, "Using SSL: " + protocol_->get_info().ssl.to_string());
+          //context_.use_certificate_file(protocol_->get_info().ssl.certificate);
+          //context_.use_private_key_file(protocol_->get_info().ssl.certificate_key);
+          //context_.set_verify_mode(protocol_->get_info().ssl.get_verify_mode());
+          SSL_CTX_set_cipher_list(context_.impl(), protocol_->get_info().ssl.allowed_ciphers.c_str());
+          context_.use_tmp_dh_file(protocol_->get_info().ssl.dh_key);
           context_.set_verify_mode(boost::asio::ssl::context::verify_none);
 #else
 …
       typename connection_type* create_connection() {
 #ifdef USE_SSL
         if (protocol_->get_info().use_ssl) {
+        if (protocol_->get_info().ssl.enabled) {
           return new ssl_connection_type(io_service_, context_, protocol_);
+        }

include/socket/socket_helpers.cpp

-                      r58f0e80
+                      r465866c
 #include <boost/asio.hpp>
 #include <boost/algorithm/string.hpp>
+#include <boost/filesystem.hpp>
 #include <strEx.h>
 …
 namespace ip = boost::asio::ip;
+std::list<std::wstring> socket_helpers::connection_info::validate() {
+  return validate_ssl();
+}
+std::list<std::wstring> socket_helpers::connection_info::validate_ssl() {
+  std::list<std::wstring> list;
+  if (!ssl.enabled)
+    return list;
+#ifndef USE_SSL
+  list.push_back(_T("SSL is not supported (not compiled with openssl)"));
+#endif
+  if (!ssl.certificate.empty() && !boost::filesystem::is_regular(ssl.certificate))
+    list.push_back(_T("Certificate not found: ") + utf8::cvt<std::wstring>(ssl.certificate));
+  if (!ssl.certificate_key.empty() && !boost::filesystem::is_regular(ssl.certificate_key))
+    list.push_back(_T("Certificate key not found: ") + utf8::cvt<std::wstring>(ssl.certificate_key));
+  if (!ssl.dh_key.empty() && !boost::filesystem::is_regular(ssl.dh_key))
+    list.push_back(_T("DH key not found: ") + utf8::cvt<std::wstring>(ssl.dh_key));
+  return list;
+}
 std::wstring socket_helpers::allowed_hosts_manager::to_wstring() {
   std::wstring ret;
   BOOST_FOREACH(const host_record &r, entries) {
     ip::address_v4 a(r.in_addr);
+  BOOST_FOREACH(const host_record_v4 &r, entries_v4) {
+    ip::address_v4 a(r.addr);
     ip::address_v4 m(r.mask);
+    std::wstring s = utf8::cvt<std::wstring>(a.to_string()) + _T("(") + utf8::cvt<std::wstring>(m.to_string()) + _T(")");
+    strEx::append_list(ret, s);
+  }
+  BOOST_FOREACH(const host_record_v6 &r, entries_v6) {
+    ip::address_v6 a(r.addr);
+    ip::address_v6 m(r.mask);
     std::wstring s = utf8::cvt<std::wstring>(a.to_string()) + _T("(") + utf8::cvt<std::wstring>(m.to_string()) + _T(")");
     strEx::append_list(ret, s);
 …
+}
+unsigned int socket_helpers::allowed_hosts_manager::lookup_mask(std::string mask) {
+  unsigned int masklen = 32;
+unsigned int extract_mask(std::string &mask, unsigned int masklen) {
   if (!mask.empty()) {
+    std::string::size_type pos = mask.find_first_of("0123456789");
+    if (pos != std::wstring::npos) {
+      masklen = strEx::stoi(mask.substr(pos));
+    std::string::size_type p1 = mask.find_first_of("0123456789");
+    if (p1 != std::wstring::npos) {
+      std::string::size_type p2 = mask.find_first_not_of("0123456789", p1);
+      if (p2 != std::wstring::npos)
+        masklen = strEx::stoi(mask.substr(p1, p2));
+      else
+        masklen = strEx::stoi(mask.substr(p1));
+    }
+  }
+  if (masklen > 32)
+    masklen = 32;
+  return (0xffffffff << (32 - masklen )) & 0xffffffff;
+  return masklen;
+}
+template<class addr>
+addr calculate_mask(std::string mask_s) {
+  addr ret;
+  const unsigned int byte_size = 8;
+  const unsigned int largest_byte = 0xff;
+  unsigned int mask = extract_mask(mask_s, byte_size*ret.size());
+  unsigned int index = mask / byte_size;
+  unsigned int reminder = mask % byte_size;
+  unsigned int value = largest_byte - (largest_byte >> reminder);
+  for (unsigned int i=0;i<ret.size();i++) {
+    if (i < index)
+      ret[i] = largest_byte;
+    else if (i == index)
+      ret[i] = value;
+    else
+      ret[i] = 0;
+  }
+  return ret;
+}
 …
   boost::asio::io_service io_service;
   ip::tcp::resolver resolver(io_service);
   entries.clear();
   host_record tmp_record;
+  entries_v4.clear();
+  entries_v6.clear();
   BOOST_FOREACH(std::string &record, sources) {
     boost::trim(record);
+    if (!record.empty()) {
+      std::string::size_type pos = record.find('/');
+      if (pos == std::string::npos) {
+        tmp_record.host = record;
+        tmp_record.mask = lookup_mask("");
+    if (record.empty())
+      continue;
+    std::string::size_type pos = record.find('/');
+    std::string addr, mask;
+    if (pos == std::string::npos) {
+      addr = record;
+      mask = "";
+    } else {
+      addr = record.substr(0, pos);
+      mask = record.substr(pos);
+    }
+    if (addr.empty())
+      continue;
+    if (std::isdigit(addr[0])) {
+      ip::address a = ip::address::from_string(addr);
+      if (a.is_v4()) {
+        entries_v4.push_back(host_record_v4(record, a.to_v4().to_bytes(), calculate_mask<addr_v4>(mask)));
+      } else if (a.is_v6()) {
+        entries_v6.push_back(host_record_v6(record, a.to_v6().to_bytes(), calculate_mask<addr_v6>(mask)));
       } else {
+        tmp_record.host = record.substr(0, pos);
+        tmp_record.mask = lookup_mask(record.substr(pos));
+        errors.push_back("Invalid address: " + record);
+      }
+      if (std::isdigit(tmp_record.host[0])) {
+        ip::address_v4 a = ip::address_v4::from_string(tmp_record.host);
+        tmp_record.in_addr = a.to_ulong();
+        entries.push_back(tmp_record);
+      } else {
+        try {
+          ip::tcp::resolver::query query(tmp_record.host, "");
+          ip::tcp::resolver::iterator endpoint_iterator = resolver.resolve(query);
+          ip::tcp::resolver::iterator end;
+          for (;endpoint_iterator != end; ++endpoint_iterator) {
+            tmp_record.in_addr = endpoint_iterator->endpoint().address().to_v4().to_ulong();
+            tmp_record.host = endpoint_iterator->endpoint().address().to_string();
+            entries.push_back(tmp_record);
+    } else {
+      try {
+        ip::tcp::resolver::query query(addr, "");
+        ip::tcp::resolver::iterator endpoint_iterator = resolver.resolve(query);
+        ip::tcp::resolver::iterator end;
+        for (;endpoint_iterator != end; ++endpoint_iterator) {
+          ip::address a = endpoint_iterator->endpoint().address();
+          if (a.is_v4()) {
+            entries_v4.push_back(host_record_v4(record, a.to_v4().to_bytes(), calculate_mask<addr_v4>(mask)));
+          } else if (a.is_v6()) {
+            entries_v6.push_back(host_record_v6(record, a.to_v6().to_bytes(), calculate_mask<addr_v6>(mask)));
+          } else {
+            errors.push_back("Invalid address: " + record);
+          }
-        } catch (const std::exception &e) {
-          errors.push_back("Failed to lookup allowed host " + record + ": " + e.what());
+        }
+      } catch (const std::exception &e) {
+        errors.push_back("Failed to parse host " + record + ": " + e.what());
+      }
+    }

include/socket/socket_helpers.hpp

-                      r72eea1f
+                      r465866c
   struct allowed_hosts_manager {
+    template<class addr_type>
     struct host_record {
+      host_record() : mask(0), in_addr(0) {}
+      host_record(const host_record &other) : mask(other.mask), in_addr(other.in_addr), host(other.host) {}
+      host_record(std::string host, typename addr_type addr, typename addr_type mask)
+        : addr(addr)
+        , mask(mask)
+        , host(host) {}
+      host_record(const host_record &other)
+        : addr(other.addr)
+        , mask(other.mask)
+        , host(other.host) {}
       const host_record& operator=(const host_record &other) {
+        addr = other.addr;
         mask = other.mask;
-        in_addr = other.in_addr;
         host = other.host;
         return *this;
+      }
       std::string host;
       u_long in_addr;
       unsigned long mask;
+      typename addr_type addr;
+      typename addr_type mask;
     };
+    std::list<host_record> entries;
+    typedef boost::asio::ip::address_v4::bytes_type addr_v4;
+    typedef boost::asio::ip::address_v6::bytes_type addr_v6;
+    typedef host_record<addr_v4> host_record_v4;
+    typedef host_record<addr_v6> host_record_v6;
+    std::list<host_record_v4> entries_v4;
+    std::list<host_record_v6> entries_v6;
     std::list<std::string> sources;
-    //std::wstring list;
     bool cached;
     allowed_hosts_manager() : cached(true) {}
     allowed_hosts_manager(const allowed_hosts_manager &other) : entries(other.entries), sources(other.sources), cached(other.cached) {}
+    allowed_hosts_manager(const allowed_hosts_manager &other) : entries_v4(other.entries_v4), entries_v6(other.entries_v6), sources(other.sources), cached(other.cached) {}
     const allowed_hosts_manager& operator=(const allowed_hosts_manager &other) {
+      entries = other.entries;
+      entries_v4 = other.entries_v4;
+      entries_v6 = other.entries_v6;
       sources = other.sources;
       cached = other.cached;
 …
+      }
+    }
+    unsigned int lookup_mask(std::string mask);
+    addr_v4 lookup_mask_v4(std::string mask);
+    addr_v6 lookup_mask_v6(std::string mask);
     void refresh(std::list<std::string> &errors);
+    inline bool match_host(const host_record &allowed, const unsigned long &remote) const {
+      return ((allowed.in_addr&allowed.mask)==(remote&allowed.mask));
+    template<class T>
+    inline bool match_host(const T &allowed, const T &mask, const T &remote) const {
+      for (int i=0;i<allowed.size(); i++) {
+        if ( (allowed[i]&mask[i]) != (remote[i]&mask[i]) )
+          return false;
+      }
+      return true;
+    }
     bool is_allowed(const boost::asio::ip::address &address, std::list<std::string> &errors) {
       return (address.is_v4() && is_allowed_v4(address.to_v4().to_ulong(), errors))
         || (address.is_v6() && address.to_v6().is_v4_compatible() && is_allowed_v4(address.to_v6().to_v4().to_ulong(), errors))
         || (address.is_v6() && address.to_v6().is_v4_mapped() && is_allowed_v4(address.to_v6().to_v4().to_ulong(), errors));
+    }
     bool is_allowed_v4(const unsigned long &remote, std::list<std::string> &errors) {
       errors.push_back(strEx::wstring_to_string(strEx::itos(remote)));
       if (entries.empty())
         return true;
+      return (entries_v4.empty()&&entries_v6.empty())
+        || (address.is_v4() && is_allowed_v4(address.to_v4().to_bytes(), errors))
+        || (address.is_v6() && is_allowed_v6(address.to_v6().to_bytes(), errors))
+        || (address.is_v6() && address.to_v6().is_v4_compatible() && is_allowed_v4(address.to_v6().to_v4().to_bytes(), errors))
+        || (address.is_v6() && address.to_v6().is_v4_mapped() && is_allowed_v4(address.to_v6().to_v4().to_bytes(), errors))
+        ;
+    }
+    bool is_allowed_v4(const addr_v4 &remote, std::list<std::string> &errors) {
       if (!cached)
         refresh(errors);
+      BOOST_FOREACH(const host_record &r, entries) {
+        if (match_host(r, remote))
+      BOOST_FOREACH(const host_record_v4 &r, entries_v4) {
+        if (match_host(r.addr, r.mask, remote))
+          return true;
+      }
+      return false;
+    }
+    bool is_allowed_v6(const addr_v6 &remote, std::list<std::string> &errors) {
+      if (!cached)
+        refresh(errors);
+      BOOST_FOREACH(const host_record_v6 &r, entries_v6) {
+        if (match_host(r.addr, r.mask, remote))
           return true;
+      }
 …
   struct connection_info {
     static const int backlog_default;
     connection_info() : back_log(backlog_default), port(0), thread_pool_size(0), use_ssl(false), timeout(30) {}
+    connection_info() : back_log(backlog_default), port(0), thread_pool_size(0), timeout(30) {}
     connection_info(const connection_info &other)
 …
       , thread_pool_size(other.thread_pool_size)
       , back_log(other.back_log)
       , use_ssl(other.use_ssl)
+      , ssl(other.ssl)
       , timeout(other.timeout)
-      , certificate(other.certificate)
       , allowed_hosts(other.allowed_hosts)
+      {
 …
       thread_pool_size = other.thread_pool_size;
       back_log = other.back_log;
       use_ssl = other.use_ssl;
+      ssl = other.ssl;
       timeout = other.timeout;
-      certificate = other.certificate;
       allowed_hosts = other.allowed_hosts;
       return *this;
+    }
+    std::list<std::wstring> validate_ssl();
+    std::list<std::wstring> validate();
     std::string address;
 …
     unsigned int thread_pool_size;
     int back_log;
-    bool use_ssl;
     unsigned int timeout;
+    std::wstring certificate;
+    struct ssl_opts {
+      ssl_opts() : enabled(false) {}
+      ssl_opts(const ssl_opts &other)
+        : enabled(other.enabled)
+        , certificate(other.certificate)
+        , certificate_format(other.certificate_format)
+        , certificate_key(other.certificate_key)
+        , ca_path(other.ca_path)
+        , allowed_ciphers(other.allowed_ciphers)
+        , dh_key(other.dh_key)
+        , verify_mode(other.verify_mode)
+      {}
+      ssl_opts& operator=(const ssl_opts &other) {
+        enabled = other.enabled;
+        certificate = other.certificate;
+        certificate_format = other.certificate_format;
+        certificate_key = other.certificate_key;
+        ca_path = other.ca_path;
+        allowed_ciphers = other.allowed_ciphers;
+        dh_key = other.dh_key;
+        verify_mode = other.verify_mode;
+      }
+      bool enabled;
+      std::string certificate;
+      std::string certificate_format;
+      std::string certificate_key;
+      std::string ca_path;
+      std::string allowed_ciphers;
+      std::string dh_key;
+      std::string verify_mode;
+      std::string to_string() {
+        std::stringstream ss;
+        if (enabled) {
+          ss << "ssl: " << verify_mode;
+          ss << ", cert: " << certificate << " (" << certificate_format << "), " << certificate_key;
+          ss << ", dh: " << dh_key << ", ciphers: " << allowed_ciphers << ", ca: " << ca_path;
+        } else
+          ss << "ssl disabled";
+        return ss.str();
+      }
+    };
+    ssl_opts ssl;
     allowed_hosts_manager allowed_hosts;

include/strEx.h

-                      rfa11893
+                      r465866c
   };
   namespace s {
+    /*
     inline std::string itos(float i) {
       std::stringstream ss;
 …
       return ss.str();
+    }
+    inline std::string itos(unsigned int i) {
+    */
+    template<typename T>
+    inline std::string itos(T i) {
       std::stringstream ss;
       ss << i;

modules/CheckEventLog/CMakeLists.txt

r8d89d7a	r465866c
28	28	filter.hpp
29	29
	30	filters.hpp
	31
30	32	${NSCP_DEF_PLUGIN_HPP}
31	33	${NSCP_FILTER_HPP}

modules/CheckEventLog/CheckEventLog.cpp

-                      r440c0cb
+                      r465866c
 #include "filter.hpp"
+#include "filters.hpp"
 #include <nscapi/nscapi_protobuf_functions.hpp>
 …
+}
+WORD get_language(std::string lang) {
+  if (lang == "neutral") return LANG_NEUTRAL;
+  if (lang == "arabic") return LANG_ARABIC;
+  if (lang == "bulgarian") return LANG_BULGARIAN;
+  if (lang == "catalan") return LANG_CATALAN;
+  if (lang == "chinese") return LANG_CHINESE;
+  if (lang == "czech") return LANG_CZECH;
+  if (lang == "danish") return LANG_DANISH;
+  if (lang == "german") return LANG_GERMAN;
+  if (lang == "greek") return LANG_GREEK;
+  if (lang == "english") return LANG_ENGLISH;
+  if (lang == "spanish") return LANG_SPANISH;
+  if (lang == "finnish") return LANG_FINNISH;
+  if (lang == "french") return LANG_FRENCH;
+  if (lang == "hebrew") return LANG_HEBREW;
+  if (lang == "hungarian") return LANG_HUNGARIAN;
+  if (lang == "icelandic") return LANG_ICELANDIC;
+  if (lang == "italian") return LANG_ITALIAN;
+  if (lang == "japanese") return LANG_JAPANESE;
+  if (lang == "korean") return LANG_KOREAN;
+  if (lang == "dutch") return LANG_DUTCH;
+  if (lang == "norwegian") return LANG_NORWEGIAN;
+  if (lang == "polish") return LANG_POLISH;
+  if (lang == "portuguese") return LANG_PORTUGUESE;
+  if (lang == "romanian") return LANG_ROMANIAN;
+  if (lang == "russian") return LANG_RUSSIAN;
+  if (lang == "croatian") return LANG_CROATIAN;
+  if (lang == "serbian") return LANG_SERBIAN;
+  if (lang == "slovak") return LANG_SLOVAK;
+  if (lang == "albanian") return LANG_ALBANIAN;
+  if (lang == "swedish") return LANG_SWEDISH;
+  if (lang == "thai") return LANG_THAI;
+  if (lang == "turkish") return LANG_TURKISH;
+  if (lang == "urdu") return LANG_URDU;
+  if (lang == "indonesian") return LANG_INDONESIAN;
+  if (lang == "ukrainian") return LANG_UKRAINIAN;
+  if (lang == "belarusian") return LANG_BELARUSIAN;
+  if (lang == "slovenian") return LANG_SLOVENIAN;
+  if (lang == "estonian") return LANG_ESTONIAN;
+  if (lang == "latvian") return LANG_LATVIAN;
+  if (lang == "lithuanian") return LANG_LITHUANIAN;
+  if (lang == "farsi") return LANG_FARSI;
+  if (lang == "vietnamese") return LANG_VIETNAMESE;
+  if (lang == "armenian") return LANG_ARMENIAN;
+  if (lang == "azeri") return LANG_AZERI;
+  if (lang == "basque") return LANG_BASQUE;
+  if (lang == "macedonian") return LANG_MACEDONIAN;
+  if (lang == "afrikaans") return LANG_AFRIKAANS;
+  if (lang == "georgian") return LANG_GEORGIAN;
+  if (lang == "faeroese") return LANG_FAEROESE;
+  if (lang == "hindi") return LANG_HINDI;
+  if (lang == "malay") return LANG_MALAY;
+  if (lang == "kazak") return LANG_KAZAK;
+  if (lang == "kyrgyz") return LANG_KYRGYZ;
+  if (lang == "swahili") return LANG_SWAHILI;
+  if (lang == "uzbek") return LANG_UZBEK;
+  if (lang == "tatar") return LANG_TATAR;
+  if (lang == "punjabi") return LANG_PUNJABI;
+  if (lang == "gujarati") return LANG_GUJARATI;
+  if (lang == "tamil") return LANG_TAMIL;
+  if (lang == "telugu") return LANG_TELUGU;
+  if (lang == "kannada") return LANG_KANNADA;
+  if (lang == "marathi") return LANG_MARATHI;
+  if (lang == "sanskrit") return LANG_SANSKRIT;
+  if (lang == "mongolian") return LANG_MONGOLIAN;
+  if (lang == "galician") return LANG_GALICIAN;
+  if (lang == "konkani") return LANG_KONKANI;
+  if (lang == "syriac") return LANG_SYRIAC;
+  if (lang == "divehi") return LANG_DIVEHI;
+  return LANG_NEUTRAL;
+}
+void real_time_thread::set_language(std::string lang) {
+  WORD wLang = get_language(lang);
+  if (wLang == LANG_NEUTRAL)
+    info.dwLang = MAKELANGID(wLang, SUBLANG_DEFAULT);
+  else
+    info.dwLang = MAKELANGID(wLang, SUBLANG_NEUTRAL);
+}
+void real_time_thread::process_no_events(std::wstring alias) {
+void real_time_thread::process_no_events(const filters::filter_config_object &object) {
   std::wstring response;
+  if (alias.empty())
+    alias = info.alias;
+  if (!nscapi::core_helper::submit_simple_message(info.target, alias, NSCAPI::returnOK, info.ok_msg, info.perf_msg, response)) {
+  if (!nscapi::core_helper::submit_simple_message(object.target, object.alias, NSCAPI::returnOK, object.ok_msg, object.perf_msg, response)) {
     NSC_LOG_ERROR(_T("Failed to submit evenhtlog result: ") + response);
+  }
+}
 void real_time_thread::process_record(std::wstring alias, const EventLogRecord &record) {
+void real_time_thread::process_record(const filters::filter_config_object &object, const EventLogRecord &record) {
   std::wstring response;
+  std::wstring message = record.render(true, info.syntax, DATE_FORMAT, info.dwLang);
+  if (alias.empty())
+    alias = info.alias;
+  if (!nscapi::core_helper::submit_simple_message(info.target, alias, NSCAPI::returnCRIT, message, info.perf_msg, response)) {
+  std::wstring message = record.render(true, object.syntax, object.date_format, object.dwLang);
+  if (!nscapi::core_helper::submit_simple_message(object.target, object.alias, object.severity, message, object.perf_msg, response)) {
     NSC_LOG_ERROR(_T("Failed to submit evenhtlog result: ") + response);
+  }
 …
+}
 void real_time_thread::debug_miss(const EventLogRecord &record) {
   std::wstring message = record.render(true, info.syntax, DATE_FORMAT, info.dwLang);
+  std::wstring message = record.render(true, _T("%type% %source%: %message%"), DATE_FORMAT, LANG_NEUTRAL);
   NSC_DEBUG_MSG_STD(_T("No filter matched: ") + message);
+}
 …
 void real_time_thread::thread_proc() {
   std::list<eventlog_filter::filter_engine> filters;
   BOOST_FOREACH(const filter_container &filter, filters_) {
     eventlog_filter::filter_argument fargs = eventlog_filter::factories::create_argument(info.syntax, DATE_FORMAT);
     fargs->filter = filter.filter;
     fargs->debug = debug_;
     fargs->alias = filter.alias;
+  std::list<filters::filter_config_object> filters;
+  BOOST_FOREACH(filters::filter_config_object object, filters_.get_object_list()) {
+    eventlog_filter::filter_argument fargs = eventlog_filter::factories::create_argument(object.syntax, object.date_format);
+    fargs->filter = object.filter;
+    fargs->debug = object.debug;
+    fargs->alias = object.alias;
     fargs->bShowDescriptions = true;
+    eventlog_filter::filter_engine engine = eventlog_filter::factories::create_engine(fargs);
+    if (!engine) {
+      NSC_LOG_ERROR_STD(_T("Invalid filter: ") + filter.filter);
+    // eventlog_filter::filter_engine
+    object.engine = eventlog_filter::factories::create_engine(fargs);
+    if (!object.engine) {
+      NSC_LOG_ERROR_STD(_T("Invalid filter: ") + object.filter);
       continue;
+    }
     if (!engine->boot()) {
       NSC_LOG_ERROR_STD(_T("Error booting filter: ") + filter.filter);
+    if (!object.engine->boot()) {
+      NSC_LOG_ERROR_STD(_T("Error booting filter: ") + object.filter);
       continue;
+    }
     std::wstring message;
     if (!engine->validate(message)) {
+    if (!object.engine->validate(message)) {
       NSC_LOG_ERROR_STD(_T("Error validating filter: ") + message);
       continue;
+    }
     filters.push_back(engine);
+    filters.push_back(object);
+  }
 …
     DWORD dwWaitReason = WaitForMultipleObjects(list.size()+1, handles, FALSE, dwWaitTime==0?INFINITE:dwWaitTime);
     if (dwWaitReason == WAIT_TIMEOUT) {
       BOOST_FOREACH(eventlog_filter::filter_engine engine, filters) {
         process_no_events(engine->data->alias);
+      BOOST_FOREACH(const filters::filter_config_object &object, filters) {
+        process_no_events(object);
+      }
     } else if (dwWaitReason == WAIT_OBJECT_0) {
 …
         bool matched = false;
         BOOST_FOREACH(eventlog_filter::filter_engine engine, filters) {
           if (engine->match(arg)) {
             process_record(engine->data->alias, elr);
+        BOOST_FOREACH(const filters::filter_config_object &object, filters) {
+          if (object.engine->match(arg)) {
+            process_record(object, elr);
             matched = true;
+          }
 …
   if (!enabled_)
     return true;
+  if (!has_filters()) {
+    add_realtime_filter(_T("default"), _T("type NOT IN ('success', 'info', 'auditSuccess')"));
+  }
+  stop_event_ = CreateEvent(NULL, TRUE, FALSE, _T("EVentLogShutdown"));
+  stop_event_ = CreateEvent(NULL, TRUE, FALSE, _T("EventLogShutdown"));
   thread_ = boost::shared_ptr<boost::thread>(new boost::thread(boost::bind(&real_time_thread::thread_proc, this)));
 …
+}
+void real_time_thread::add_realtime_filter(std::wstring key, std::wstring query) {
+  filter_container c;
+  if (!key.empty() && query.empty()) {
+    c.filter = key;
+    filters_.push_back(c);
+  } else if (key.empty() && query.empty()) {
+    return;
+  } else {
+    c.alias = key;
+    c.filter = query;
+    filters_.push_back(c);
+void real_time_thread::add_realtime_filter(boost::shared_ptr<nscapi::settings_proxy> proxy, std::wstring key, std::wstring query) {
+  try {
+    filters_.add(proxy, filters_path_, key, query, key == _T("default"));
+  } catch (const std::exception &e) {
+    NSC_LOG_ERROR_STD(_T("Failed to add command: ") + key + _T(", ") + utf8::to_unicode(e.what()));
+  } catch (...) {
+    NSC_LOG_ERROR_STD(_T("Failed to add command: ") + key);
+  }
+}
 …
     settings.set_alias(alias, _T("eventlog"));
+    thread_.filters_path_ = settings.alias().get_settings_path(_T("real-time/filters"));
     settings.alias().add_path_to_settings()
 …
       (_T("real-time"), _T("CONFIGURE REALTIME CHECKING"), _T("A set of options to configure the real time checks"))
       (_T("real-time/filters"), sh::fun_values_path(boost::bind(&real_time_thread::add_realtime_filter, &thread_, _1, _2)),
+      (_T("real-time/filters"), sh::fun_values_path(boost::bind(&real_time_thread::add_realtime_filter, &thread_, get_settings_proxy(), _1, _2)),
       _T("REALTIME FILTERS"), _T("A set of filters to use in real-time mode"))
+      ;
 …
       _T("REAL TIME CHECKING"), _T("Spawns a backgrounnd thread which detects issues and reports them back instantly."))
-      (_T("destination"), sh::string_fun_key<std::wstring>(boost::bind(&real_time_thread::set_destination, &thread_, _1), _T("NSCA")),
-      _T("DESTINATION"), _T("The destination for intercepted messages"))
       (_T("startup age"), sh::string_fun_key<std::wstring>(boost::bind(&real_time_thread::set_start_age, &thread_, _1), _T("30m")),
       _T("STARTUP AGE"), _T("The initial age to scan when starting NSClient++"))
 …
       _T("MAGIMUM AGE"), _T("How long before reporting \"ok\" (if this is set to off no ok will be reported only errors)"))
-      (_T("filter"), sh::string_fun_key<std::wstring>(boost::bind(&real_time_thread::set_filter, &thread_, _1), _T("")),
-      _T("STARTUP AGE"), _T("The initial age to scan when starting NSClient++"))
-      (_T("syntax"), sh::wstring_key(&thread_.info.syntax, _T("%type% %source%: %message%")),
-      _T("STARTUP AGE"), _T("The initial age to scan when starting NSClient++"))
-      (_T("language"), sh::string_fun_key<std::string>(boost::bind(&real_time_thread::set_language, &thread_, _1), ""),
-      _T("MESSAGE LANGUAGE"), _T("The language to use for rendering message (mainly used fror testing)"))
       (_T("log"), sh::string_fun_key<std::wstring>(boost::bind(&real_time_thread::set_eventlog, &thread_, _1), _T("application")),
       _T("LOGS TO CHECK"), _T("Coma separated list of logs to check"))
 …
       (_T("enable active"), sh::bool_key(&thread_.cache_, false),
       _T("ENABLE ACTIVE MONITORING"), _T("This will store all matches so you can use real-time filters from active monitoring (use CheckEventlogCache)."))
-      (_T("ok message"), sh::wstring_key(&thread_.info.ok_msg, _T("eventlog found no records")),
-      _T("OK MESSAGE"), _T("This is the message sent periodically whenever no error is discovered."))
-      (_T("alias"), sh::wstring_key(&thread_.info.alias, _T("eventlog")),
-      _T("ALIAS"), _T("The alias to use for this event (in NSCA this constitutes the service name)."))
+      ;

modules/CheckEventLog/CheckEventLog.h

-                      r440c0cb
+                      r465866c
 #include "eventlog_record.hpp"
+#include "filters.hpp"
 struct real_time_thread {
-  struct target_information {
-    std::wstring target;
-    std::wstring alias;
-    std::wstring syntax;
-    std::wstring ok_msg;
-    std::wstring perf_msg; //
-    //bool perf;
-    DWORD dwLang;
-  };
-  struct filter_container {
-    std::wstring filter;
-    std::wstring alias;
-  };
-  target_information info;
   bool enabled_;
   //std::wstring destination_;
 …
   unsigned long long max_age_;
   //std::wstring syntax_;
   std::list<filter_container> filters_;
+  //std::list<filter_container> filters_;
   boost::shared_ptr<boost::thread> thread_;
   HANDLE stop_event_;
 …
   std::list<std::wstring> hit_cache_;
   boost::timed_mutex cache_mutex_;
+  filters::filter_config_handler filters_;
   bool cache_;
   bool debug_;
+  std::wstring filters_path_;
   real_time_thread() : enabled_(false), start_age_(0), max_age_(0), debug_(false), cache_(false) {
 …
+  }
   void add_realtime_filter(std::wstring key, std::wstring query);
+  void add_realtime_filter(boost::shared_ptr<nscapi::settings_proxy> proxy, std::wstring key, std::wstring query);
   void set_enabled(bool flag) { enabled_ = flag; }
-  void set_destination(std::wstring dst) { info.target = dst; }
   void set_start_age(std::wstring age) {
     start_age_ = strEx::stoi64_as_time(age);
 …
   void set_language(std::string lang);
   void set_filter(std::wstring flt) {
+  void set_filter(boost::shared_ptr<nscapi::settings_proxy> proxy, std::wstring flt) {
     if (!flt.empty())
       add_realtime_filter(_T("filter"), flt);
+      add_realtime_filter(proxy, _T("default"), flt);
+  }
   bool has_filters() {
     return !filters_.empty();
+    return !filters_.has_objects();
+  }
   bool start();
 …
   void thread_proc();
 //  void process_events(eventlog_filter::filter_engine engine, eventlog_wrapper &eventlog);
   void process_no_events(std::wstring alias);
   void process_record(std::wstring alias, const EventLogRecord &record);
+  void process_no_events(const filters::filter_config_object &object);
+  void process_record(const filters::filter_config_object &object, const EventLogRecord &record);
   void debug_miss(const EventLogRecord &record);
 //  void process_event(eventlog_filter::filter_engine engine, const EVENTLOGRECORD* record);

modules/CheckExternalScripts/CMakeLists.txt

r8d89d7a	r465866c
18	18	"${TARGET}.h"
19	19	"${TARGET}.def"
	20	commands.hpp
20	21
21	22	${NSCP_INCLUDEDIR}/execute_process_unix.hpp

modules/DistributedClient/module.cmake

r234a037	r465866c
1	1	IF(ZEROMQ_FOUND)
2		SET (BUILD_MODULE 1)
	2	SET (BUILD_MODULE 0)
3	3	ELSE(ZEROMQ_FOUND)
4	4	MESSAGE(STATUS "Disabling DistributedClient since zeromq was not found")

modules/DistributedServer/handler_impl.cpp

-                      r8d89d7a
+                      r465866c
 #include "handler_impl.hpp"
+nscp::packet handler_impl::process(const nscp::packet &packet) {
+  if (nscp::checks::is_query_request(packet)) {
+    Plugin::QueryRequestMessage msg;
+    msg.ParseFromString(packet.payload);
+    std::wstring command = _T("todo: fixme");//utf8::cvt<std::wstring>(msg.command());
+    std::string reply;
+    try {
+      NSCAPI::nagiosReturn returncode = handle_query_request(packet.payload, msg, reply);
+      if (returncode == NSCAPI::returnIgnored)
+        nscapi::functions::create_simple_query_response_unknown(command, _T("Command was not found: ") + command, _T(""), reply);
+    } catch (const nscp::nscp_exception &e) {
+      nscapi::functions::create_simple_query_response_unknown(command, _T("Processing error: ") + command + _T(": ") + utf8::cvt<std::wstring>(e.what()), _T(""), reply);
+    } catch (const std::exception &e) {
+      nscapi::functions::create_simple_query_response_unknown(command, _T("Unknown error processing: ") + command + _T(": ") + utf8::cvt<std::wstring>(e.what()), _T(""), reply);
+    }
+    return nscp::factory::create_query_response(reply);
+  } else if (nscp::checks::is_submit_request(packet)) {
+    Plugin::SubmitRequestMessage msg;
+    msg.ParseFromString(packet.payload);
+    try {
+      std::string reply;
+      NSCAPI::nagiosReturn returncode = handle_submission_request(packet.payload, msg, reply);
+      return nscp::factory::create_submission_response(reply);
+    } catch (const nscp::nscp_exception &e) {
+      return nscp::factory::create_error(_T("Exception processing message: ") + to_wstring(e.what()));
+    } catch (const std::exception &e) {
+      return nscp::factory::create_error(_T("Exception processing message: ") + to_wstring(e.what()));
+    }
+  } else if (nscp::checks::is_exec_request(packet)) {
+    Plugin::ExecuteRequestMessage msg;
+    msg.ParseFromString(packet.payload);
+    try {
+      std::string reply;
+      NSCAPI::nagiosReturn returncode = handle_exec_request(packet.payload, msg, reply);
+      return nscp::factory::create_submission_response(reply);
+    } catch (const nscp::nscp_exception &e) {
+      return nscp::factory::create_error(_T("Exception processing message: ") + to_wstring(e.what()));
+    } catch (const std::exception &e) {
+      return nscp::factory::create_error(_T("Exception processing message: ") + to_wstring(e.what()));
+    }
+  } else {
+    this->log_error(__FILE__, __LINE__, _T("Unknown packet: ") + packet.to_wstring());
+    return nscp::factory::create_error(_T("Unknown packet: ") + packet.to_wstring());
+  }
+  return nscp::factory::create_error(_T("Unknown error..."));
+}
 NSCAPI::nagiosReturn handler_impl::handle_query_request(const std::string &request, Plugin::QueryRequestMessage &msg, std::string &reply) {

modules/DistributedServer/handler_impl.hpp

-                      r8013c0c
+                      r465866c
 #include <nscp/handler.hpp>
 class handler_impl : public nscp::handler, private boost::noncopyable {
+class handler_impl : public nscp::server::handler, private boost::noncopyable {
   bool allowArgs_;
   bool allowNasty_;
 …
 public:
   handler_impl() : noPerfData_(false), allowNasty_(false), allowArgs_(false) {}
+  nscp::packet process(const nscp::packet &packet);
   NSCAPI::nagiosReturn handle_query_request(const std::string &request, Plugin::QueryRequestMessage &msg, std::string &reply);

modules/DistributedServer/module.cmake

r2b2e9b8	r465866c
1	1	IF(ZEROMQ_FOUND)
2		SET (BUILD_MODULE 1)
	2	SET (BUILD_MODULE 0)
3	3	ELSE(ZEROMQ_FOUND)
4	4	MESSAGE(STATUS "Disabling DistributedServer since zeromq was not found")

modules/NRPEClient/CMakeLists.txt

-                      r8d89d7a
+                      r465866c
     "${TARGET}.def"
     ${NSCP_INCLUDEDIR}/nrpe/packet.hpp
     ${NSCP_INCLUDEDIR}/nrpe/client/socket.hpp
+    ${NSCP_INCLUDEDIR}/nrpe/client/nrpe_client_protocol.hpp
     ${NSCP_INCLUDEDIR}/swap_bytes.hpp
     ${NSCP_INCLUDEDIR}/socket/socket_helpers.hpp
+    ${NSCP_INCLUDEDIR}/socket/client.hpp
     ${NSCP_INCLUDEDIR}/client/command_line_parser.hpp
 …
+)
 INCLUDE(${BUILD_CMAKE_FOLDER}/module.cmake)
+SOURCE_GROUP("Server" REGULAR_EXPRESSION .*include/nrpe/.*)
+SOURCE_GROUP("Client" REGULAR_EXPRESSION .*include/nrpe/.*)
+SOURCE_GROUP("Socket" REGULAR_EXPRESSION .*include/socket/.*)

modules/NRPEClient/NRPEClient.cpp

raf05fa1	r465866c
25	25	#include <strEx.h>
26	26
27		~~#include <strEx.h>~~
28
29	27	#include <settings/client/settings_client.hpp>
30	28	#include <nscapi/nscapi_protobuf_functions.hpp>

modules/NRPEServer/NRPEServer.cpp

-                      r9bd40e2
+                      r465866c
 #include <strEx.h>
 #include <time.h>
-//#include <config.h>
 #include "handler_impl.hpp"
 …
       _T("TIMEOUT"), _T("Timeout when reading packets on incoming sockets. If the data has not arrived within this time we will bail out."))
       (_T("use ssl"), sh::bool_key(&info_.use_ssl, true),
       _T("ENABLE SSL ENCRYPTION"), _T("This option controls if SSL should be enabled."))
+      (_T("use ssl"), sh::bool_key(&info_.ssl.enabled, false),
+      _T("ENABLE SSL ENCRYPTION"), _T("This option controls if SSL should be enabled."), true)
       (_T("certificate"), sh::wpath_key(&info_.certificate, _T("${certificate-path}/nrpe_dh_512.pem")),
       _T("SSL CERTIFICATE"), _T("Configure which SSL certificate to use (DH key)"))
+      (_T("certificate"), sh::path_key(&info_.ssl.dh_key, "${certificate-path}/nrpe_dh_512.pem"),
+      _T("DH KEY"), _T(""), true)
+      (_T("certificate"), sh::path_key(&info_.ssl.certificate, "${certificate-path}/certificate.pem"),
+      _T("SSL CERTIFICATE"), _T(""), true)
+      (_T("certificate key"), sh::path_key(&info_.ssl.certificate_key, "${certificate-path}/certificate_key.pem"),
+      _T("SSL CERTIFICATE"), _T(""), true)
+      (_T("certificate format"), sh::string_key(&info_.ssl.certificate_format, "PEM"),
+      _T("CERTIFICATE FORMAT"), _T(""), true)
+      (_T("ca"), sh::path_key(&info_.ssl.ca_path, "${certificate-path}/ca.pem"),
+      _T("CA"), _T(""), true)
+      (_T("allowed ciphers"), sh::string_key(&info_.ssl.allowed_ciphers, "ADH"),
+      _T("ALLOWED CIPHERS"), _T("A better value is: ALL:!ADH:!LOW:!EXP:!MD5:@STRENGTH"), true)
+      (_T("verify mode"), sh::string_key(&info_.ssl.verify_mode, "none"),
+      _T("VERIFY MODE"), _T(""), true)
+      ;
 …
     if (info_.use_ssl) {
       NSC_LOG_ERROR_STD(_T("SSL not avalible! (not compiled with openssl support)"));
+      return false;
+    }
 #endif
     if (handler_->get_payload_length() != 1024)
       NSC_DEBUG_MSG_STD(_T("Non-standard buffer length (hope you have recompiled check_nrpe changing #define MAX_PACKETBUFFER_LENGTH = ") + strEx::itos(handler_->get_payload_length()));
+    if (!boost::filesystem::is_regular(info_.certificate))
+      NSC_LOG_ERROR_STD(_T("Certificate not found: ") + info_.certificate);
+    NSC_LOG_ERROR_LISTW(info_.validate());
     std::list<std::string> errors;
     info_.allowed_hosts.refresh(errors);
+    BOOST_FOREACH(const std::string &e, errors) {
+      NSC_LOG_ERROR_STD(utf8::cvt<std::wstring>(e));
+    }
+    NSC_LOG_ERROR_LISTS(errors);
     NSC_DEBUG_MSG_STD(_T("Allowed hosts definition: ") + info_.allowed_hosts.to_wstring());
 …
     if (mode == NSCAPI::normalStart) {
-#ifndef USE_SSL
-      if (info_.use_ssl) {
-        NSC_LOG_ERROR_STD(_T("SSL is not supported (not compiled with openssl)"));
-        return false;
+      }
-#endif
       server_.reset(new nrpe::server::server(boost::shared_ptr<nrpe::read_protocol>(new nrpe::read_protocol(info_, handler_))));
       if (!server_) {

modules/NRPEServer/NRPEServer.h

-                      r9bd40e2
+                      r465866c
   class NRPEException {
+  class NRPEExceptionn {
     std::wstring error_;
   public:
     NRPEException(std::wstring s) {
+    NRPEExceptionn(std::wstring s) {
       error_ = s;
+    }

modules/NSCAClient/CMakeLists.txt

-                      r8d89d7a
+                      r465866c
   stdafx.cpp
   "${TARGET}.cpp"
+  ${NSCP_INCLUDEDIR}/nsca/nsca_packet.cpp
   ${NSCP_INCLUDEDIR}/socket/socket_helpers.cpp
-  ${NSCP_INCLUDEDIR}/nsca/nsca_packet.cpp
   ${NSCP_INCLUDEDIR}/client/command_line_parser.cpp
 …
     "${TARGET}.def"
     ${NSCP_INCLUDEDIR}/nsca/nsca_packet.hpp
-    ${NSCP_INCLUDEDIR}/nsca/nsca_socket.hpp
     ${NSCP_INCLUDEDIR}/nsca/nsca_enrypt.hpp
     ${NSCP_INCLUDEDIR}/swap_bytes.hpp
     ${NSCP_INCLUDEDIR}/socket/socket_helpers.hpp
+    ${NSCP_INCLUDEDIR}/socket/client.hpp
     ${NSCP_INCLUDEDIR}/client/command_line_parser.hpp
 …
+  )
 ENDIF(WIN32)
 add_library(${TARGET} MODULE ${SRCS})

modules/NSCAClient/NSCAClient.cpp

raf05fa1	r465866c
27	27	#include <nsca/nsca_enrypt.hpp>
28	28	#include <nsca/nsca_packet.hpp>
29		~~#include <nsca/nsca_socket.hpp>~~
30	29
31	30	#include <nsca/client/nsca_client_protocol.hpp>

modules/NSCAServer/NSCAServer.cpp

-                      r9bd40e2
+                      r465866c
+    }
     NSC_DEBUG_MSG_STD(_T("Allowed hosts definition: ") + info_.allowed_hosts.to_wstring());
+    NSC_LOG_ERROR_LISTW(info_.validate());
     if (mode == NSCAPI::normalStart) {
+#ifndef USE_SSL
+      if (info_.use_ssl) {
+        NSC_LOG_ERROR_STD(_T("SSL is not supported (not compiled with openssl)"));
+        return false;
+      }
+#endif
       server_.reset(new nsca::server::server(boost::shared_ptr<nsca::read_protocol>(new nsca::read_protocol(info_, handler_))));
       if (!server_) {

modules/NSCPClient/CMakeLists.txt

-                      r8d89d7a
+                      r465866c
   "${TARGET}.cpp"
   ${NSCP_INCLUDEDIR}/nscp/packet.cpp
-  ${NSCP_INCLUDEDIR}/nscp/handler.cpp
   ${NSCP_INCLUDEDIR}/socket/socket_helpers.cpp
   ${NSCP_INCLUDEDIR}/client/command_line_parser.cpp
 …
 ADD_DEFINITIONS(${NSCP_GLOBAL_DEFINES})
+IF(OPENSSL_FOUND)
+  ADD_DEFINITIONS(-DUSE_SSL)
+ENDIF(OPENSSL_FOUND)
 IF(WIN32)
 …
     "${TARGET}.def"
     ${NSCP_INCLUDEDIR}/nscp/packet.hpp
+    ${NSCP_INCLUDEDIR}/nscp/handler.hpp
+    ${NSCP_INCLUDEDIR}/nscp/client/socket.hpp
+    ${NSCP_INCLUDEDIR}/nscp/client/nscp_client_protocol.hpp
     ${NSCP_INCLUDEDIR}/swap_bytes.hpp
     ${NSCP_INCLUDEDIR}/socket/socket_helpers.hpp
+    ${NSCP_INCLUDEDIR}/socket/client.hpp
     ${NSCP_INCLUDEDIR}/client/command_line_parser.hpp
 …
+)
 INCLUDE(${BUILD_CMAKE_FOLDER}/module.cmake)
+SOURCE_GROUP("Server" REGULAR_EXPRESSION .*include/nscp/.*)
+SOURCE_GROUP("Client" REGULAR_EXPRESSION .*include/nscp/.*)
+SOURCE_GROUP("Socket" REGULAR_EXPRESSION .*include/socket/.*)

modules/NSCPClient/NSCPClient.cpp

-                      r84cdb9b
+                      r465866c
 #include "stdafx.h"
 #include "NSCPClient.h"
 #include <time.h>
-#include <boost/filesystem.hpp>
 #include <strEx.h>
-#include <net/net.hpp>
-#include <nscp/client/socket.hpp>
 #include <protobuf/plugin.pb.h>
 …
     sh::settings_registry settings(get_settings_proxy());
     settings.set_alias(_T("NSCP"), alias, _T("client"));
+    settings.set_alias(_T("nscp"), alias, _T("client"));
     target_path = settings.alias().get_settings_path(_T("targets"));
 …
       (_T("targets"), sh::fun_values_path(boost::bind(&NSCPClient::add_target, this, _1, _2)),
       _T("REMOTE TARGET DEFINITIONS"), _T(""))
+      ;
 …
     register_command(_T("nscp_exec"), _T("Execute remote command on a remote host via NSCP"));
     register_command(_T("nscp_help"), _T("Help on using NSCP Client"));
   } catch (nscapi::nscapi_exception &e) {
     NSC_LOG_ERROR_STD(_T("NSClient API exception: ") + utf8::to_unicode(e.what()));
 …
   desc.add_options()
     ("certificate,c", po::value<std::string>()->notifier(boost::bind(&nscapi::functions::destination_container::set_string_data, &data->recipient, "certificate", _1)),
+      "Length of payload (has to be same as on the server)")
+/*
+    ("no-ssl,n", po::value<bool>(&command_data.no_ssl)->zero_tokens()->default_value(false), "Do not initial an ssl handshake with the server, talk in plain text.")
+    ("cert,c", po::value<std::wstring>(&command_data.cert)->default_value(cert_), "Certificate to use.")
+    */
+    "Length of payload (has to be same as on the server)")
+    ("no-ssl,n", po::value<bool>()->zero_tokens()->default_value(false)->notifier(boost::bind(&nscapi::functions::destination_container::set_bool_data, &data->recipient, "no ssl", _1)),
+    "Do not initial an ssl handshake with the server, talk in plaintext.")
+    ;
+}
 …
   std::wstring recipient = utf8::cvt<std::wstring>(config.data->recipient.id);
   if (!targets.has_object(recipient)) {
-    NSC_LOG_ERROR(_T("Target not found (using default): ") + recipient);
     recipient = _T("default");
+  }
 …
   std::list<nscp::packet> chunks;
-  chunks.push_back(nscp::factory::create_envelope_request(1));
   chunks.push_back(nscp::factory::create_payload(nscp::data::command_request, request_message.SerializeAsString(), 0));
   chunks = instance->send(con, chunks);
 …
   std::list<nscp::packet> chunks;
-  chunks.push_back(nscp::factory::create_envelope_request(1));
   chunks.push_back(nscp::factory::create_payload(nscp::data::exec_request, request_message.SerializeAsString(), 0));
   chunks = instance->send(con, chunks);
 …
 // Protocol implementations
 //
+struct client_handler : public socket_helpers::client::client_handler {
+  client_handler(NSCPClient::connection_data &con)
+    : socket_helpers::client::client_handler(con.host, con.port, con.timeout, con.use_ssl, con.cert)
+  {
+  }
+  void log_debug(std::string file, int line, std::string msg) const {
+    if (GET_CORE()->should_log(NSCAPI::log_level::debug)) {
+      GET_CORE()->log(NSCAPI::log_level::debug, file, line, utf8::to_unicode(msg));
+    }
+  }
+  void log_error(std::string file, int line, std::string msg) const {
+    if (GET_CORE()->should_log(NSCAPI::log_level::error)) {
+      GET_CORE()->log(NSCAPI::log_level::error, file, line, utf8::to_unicode(msg));
+    }
+  }
+};
 std::list<nscp::packet> NSCPClient::send(connection_data con, std::list<nscp::packet> &chunks) {
+  NSC_DEBUG_MSG_STD(_T("NRPE Connection details: ") + con.to_wstring());
+  chunks.push_front(nscp::factory::create_envelope_request(1));
+  std::list<nscp::packet> tmp, result;
+  if (con.use_ssl) {
+#ifdef USE_SSL
+    tmp = send_ssl(con.host, con.port, con.cert, con.timeout, chunks);
+#else
+    NSC_LOG_ERROR_STD(_T("SSL not avalible (not compiled with USE_SSL)"));
+    result.push_back(nscp::factory::create_error(_T("SSL support not available (compiled without USE_SSL)!")));
+  std::list<nscp::packet> response;
+  try {
+    NSC_DEBUG_MSG_STD(_T("NSCP Connection details: ") + con.to_wstring());
+    //NSC_DEBUG_MSG_STD(_T("NSCP data: ") + utf8::cvt<std::wstring>(data));
+    if (con.use_ssl) {
+#ifndef USE_SSL
+      NSC_LOG_ERROR_STD(_T("SSL not avalible (compiled without USE_SSL)"));
+      return response;
 #endif
+  } else {
+    tmp = send_nossl(con.host, con.port, con.timeout, chunks);
+  }
+  BOOST_FOREACH(nscp::packet &p, tmp) {
+    if (nscp::checks::is_envelope_response(p)) {
+    } else {
+      result.push_back(p);
+    }
+  }
+  return result;
+}
+#ifdef USE_SSL
+std::list<nscp::packet> NSCPClient::send_ssl(std::string host, std::string port, std::wstring cert, int timeout, const std::list<nscp::packet> &chunks) {
+  NSC_DEBUG_MSG_STD(_T("Connecting SSL to: ") + utf8::cvt<std::wstring>(host + ":" + port));
+  boost::asio::io_service io_service;
+  boost::asio::ssl::context ctx(io_service, boost::asio::ssl::context::sslv23);
+  SSL_CTX_set_cipher_list(ctx.impl(), "ADH");
+  ctx.use_tmp_dh_file(to_string(cert));
+  ctx.set_verify_mode(boost::asio::ssl::context::verify_none);
+  nscp::client::ssl_socket socket(io_service, ctx, host, port);
+  socket.send(chunks, boost::posix_time::seconds(timeout));
+  return socket.recv(boost::posix_time::seconds(timeout));
+}
+#endif
+std::list<nscp::packet> NSCPClient::send_nossl(std::string host, std::string port, int timeout, const std::list<nscp::packet> &chunks) {
+  NSC_DEBUG_MSG_STD(_T("Connecting to: ") + utf8::cvt<std::wstring>(host + ":" + port));
+  boost::asio::io_service io_service;
+  nscp::client::socket socket(io_service, host, port);
+  socket.send(chunks, boost::posix_time::seconds(timeout));
+  return socket.recv(boost::posix_time::seconds(timeout));
+    }
+    socket_helpers::client::client<nscp::client::protocol> client(boost::shared_ptr<client_handler>(new client_handler(con)));
+    client.connect();
+    BOOST_FOREACH(nscp::packet packet, chunks) {
+      response.push_back(client.process_request(packet));
+    }
+    client.shutdown();
+    return response;
+  } catch (std::runtime_error &e) {
+    NSC_LOG_ERROR_STD(_T("Socket error: ") + utf8::to_unicode(e.what()));
+    return response;
+  } catch (std::exception &e) {
+    NSC_LOG_ERROR_STD(_T("Error: ") + utf8::to_unicode(e.what()));
+    return response;
+  } catch (...) {
+    return response;
+  }
+}

modules/NSCPClient/NSCPClient.h

-                      r8d89d7a
+                      r465866c
 #include <nscp/packet.hpp>
+#include <socket/client.hpp>
+#include <nscp/client/nscp_client_protocol.hpp>
 NSC_WRAPPERS_MAIN();
 …
   nscapi::targets::handler<custom_reader> targets;
   client::command_manager commands;
+public:
   struct connection_data {
     std::string cert;
+    connection_data() : use_ssl(true) {}
+    std::string host;
+    std::string port;
+    int timeout;
     bool use_ssl;
-    std::string host, port;
-    int timeout;
     connection_data(nscapi::protobuf::types::destination_container arguments, nscapi::protobuf::types::destination_container target) {
 …
       host = arguments.address.host;
       port = arguments.address.get_port(5668);
+      port = arguments.address.get_port_string("5668");
+    }
 …
 private:
   std::list<nscp::packet> send(connection_data con, std::list<nscp::packet> &chunks);
-  std::list<nscp::packet> send_nossl(std::string host, std::string port, int timeout, const std::list<nscp::packet> &chunks);
-  std::list<nscp::packet> send_ssl(std::string host, std::string port, std::wstring cert, int timeout, const std::list<nscp::packet> &chunks);

modules/NSCPServer/CMakeLists.txt

-                      r440c0cb
+                      r465866c
   "${TARGET}.cpp"
   "handler_impl.cpp"
-  ${NSCP_INCLUDEDIR}/nscp/server/server.cpp
-  ${NSCP_INCLUDEDIR}/nscp/server/connection.cpp
-  ${NSCP_INCLUDEDIR}/nscp/server/tcp_connection.cpp
-  ${NSCP_INCLUDEDIR}/nscp/server/ssl_connection.cpp
   ${NSCP_INCLUDEDIR}/nscp/packet.cpp
   ${NSCP_INCLUDEDIR}/socket/socket_helpers.cpp
-  ${NSCP_INCLUDEDIR}/nscp/handler.cpp
   ${NSCP_DEF_PLUGIN_CPP}
 …
     "${TARGET}.def"
     "handler_impl.hpp"
+    ${NSCP_INCLUDEDIR}/nscp/server/server.hpp
+    ${NSCP_INCLUDEDIR}/nscp/server/connection.hpp
+    ${NSCP_INCLUDEDIR}/nscp/server/tcp_connection.hpp
+    ${NSCP_INCLUDEDIR}/nscp/server/ssl_connection.hpp
+    ${NSCP_INCLUDEDIR}/nscp/server/protocol.hpp
     ${NSCP_INCLUDEDIR}/nscp/server/handler.hpp
     ${NSCP_INCLUDEDIR}/nscp/server/parser.hpp
     ${NSCP_INCLUDEDIR}/nscp/packet.hpp
-    ${NSCP_INCLUDEDIR}/nscp/handler.hpp
     ${NSCP_INCLUDEDIR}/swap_bytes.hpp
     ${NSCP_INCLUDEDIR}/socket/socket_helpers.hpp

modules/NSCPServer/NSCPServer.cpp

-                      r84cdb9b
+                      r465866c
 #include <strEx.h>
 #include <time.h>
-#include <config.h>
 #include "handler_impl.hpp"
 #include <settings/client/settings_client.hpp>
 namespace sh = nscapi::settings_helper;
+NSCPListener::NSCPListener() : info_(boost::shared_ptr<nscp::server::server_handler>(new handler_impl(1024))) {
+NSCPListener::NSCPListener() : handler_(new handler_impl()) {
+}
 NSCPListener::~NSCPListener() {}
 …
 bool NSCPListener::loadModuleEx(std::wstring alias, NSCAPI::moduleLoadMode mode) {
   try {
     sh::settings_registry settings(get_settings_proxy());
     settings.set_alias(_T("nscp"), alias, _T("server"));
 …
       _T("PORT NUMBER"), _T("Port to use for NSCP."))
+      (_T("allow arguments"), sh::bool_fun_key<bool>(boost::bind(&handler_impl::set_allow_arguments, handler_, _1), false),
+      _T("COMMAND ARGUMENT PROCESSING"), _T("This option determines whether or not the we will allow clients to specify arguments to commands that are executed."))
+      ;
 …
       (_T("thread pool"), sh::uint_key(&info_.thread_pool_size, 10),
       _T("THREAD POOL"), _T(""))
+      _T("THREAD POOL"), _T(""), true)
       (_T("bind to"), sh::string_key(&info_.address),
       _T("BIND TO ADDRESS"), _T("Allows you to bind server to a specific local address. This has to be a dotted ip address not a host name. Leaving this blank will bind to all available IP addresses."))
+      _T("BIND TO ADDRESS"), _T("Allows you to bind server to a specific local address. This has to be a dotted ip address not a host name. Leaving this blank will bind to all available IP addresses."), true)
       (_T("socket queue size"), sh::int_key(&info_.back_log, 0),
       _T("LISTEN QUEUE"), _T("Number of sockets to queue before starting to refuse new incoming connections. This can be used to tweak the amount of simultaneous sockets that the server accepts."))
+      _T("LISTEN QUEUE"), _T("Number of sockets to queue before starting to refuse new incoming connections. This can be used to tweak the amount of simultaneous sockets that the server accepts."), true)
       (_T("allowed hosts"), sh::string_fun_key<std::wstring>(boost::bind(&socket_helpers::allowed_hosts_manager::set_source, &info_.allowed_hosts, _1), _T("127.0.0.1")),
 …
       _T("TIMEOUT"), _T("Timeout when reading packets on incoming sockets. If the data has not arrived within this time we will bail out."))
       (_T("use ssl"), sh::bool_key(&info_.use_ssl, true),
       _T("ENABLE SSL ENCRYPTION"), _T("This option controls if SSL should be enabled."))
+      (_T("use ssl"), sh::bool_key(&info_.ssl.enabled, false),
+      _T("ENABLE SSL ENCRYPTION"), _T("This option controls if SSL should be enabled."), true)
       (_T("certificate"), sh::wpath_key(&info_.certificate, _T("${certificate-path}/nrpe_dh_512.pem")),
       _T("SSL CERTIFICATE"), _T(""))
+      (_T("certificate"), sh::path_key(&info_.ssl.dh_key, "${certificate-path}/nrpe_dh_512.pem"),
+      _T("DH KEY"), _T(""), true)
+      (_T("certificate"), sh::path_key(&info_.ssl.certificate, "${certificate-path}/certificate.pem"),
+      _T("SSL CERTIFICATE"), _T(""), true)
+      (_T("certificate key"), sh::path_key(&info_.ssl.certificate_key, "${certificate-path}/certificate_key.pem"),
+      _T("SSL CERTIFICATE"), _T(""), true)
+      (_T("certificate format"), sh::string_key(&info_.ssl.certificate_format, "PEM"),
+      _T("CERTIFICATE FORMAT"), _T(""), true)
+      (_T("ca"), sh::path_key(&info_.ssl.ca_path, "${certificate-path}/ca.pem"),
+      _T("CA"), _T(""), true)
+      (_T("allowed ciphers"), sh::string_key(&info_.ssl.allowed_ciphers, "ALL:!ADH:!LOW:!EXP:!MD5:@STRENGTH"),
+      _T("ALLOWED CIPHERS"), _T(""), true)
+      (_T("verify mode"), sh::string_key(&info_.ssl.verify_mode, "none"),
+      _T("VERIFY MODE"), _T(""), true)
+      ;
 …
     if (info_.use_ssl) {
       NSC_LOG_ERROR_STD(_T("SSL not avalible! (not compiled with openssl support)"));
+      return false;
+    }
 #endif
+    if (!boost::filesystem::is_regular(info_.certificate))
+      NSC_LOG_ERROR_STD(_T("Certificate not found: ") + info_.certificate);
+    NSC_LOG_ERROR_LISTW(info_.validate());
     std::list<std::string> errors;
     info_.allowed_hosts.refresh(errors);
+    BOOST_FOREACH(const std::string &e, errors) {
+      NSC_LOG_ERROR_STD(utf8::cvt<std::wstring>(e));
+    }
+    NSC_LOG_ERROR_LISTS(errors);
     NSC_DEBUG_MSG_STD(_T("Allowed hosts definition: ") + info_.allowed_hosts.to_wstring());
 …
     if (mode == NSCAPI::normalStart) {
+      if (info_.use_ssl) {
+#ifdef USE_SSL
+        server_.reset(new nscp::server::server(info_));
+#else
+        NSC_LOG_ERROR_STD(_T("SSL is not supported (not compiled with openssl)"));
+        return false;
+#endif
+      } else {
+        server_.reset(new nscp::server::server(info_));
+      }
+      server_.reset(new nscp::server::server(boost::shared_ptr<nscp::read_protocol>(new nscp::read_protocol(info_, handler_))));
       if (!server_) {
         NSC_LOG_ERROR_STD(_T("Failed to create server instance!"));
 …
       server_->start();
+    }
-  } catch (nscp::server::nscp_exception &e) {
-    NSC_LOG_ERROR_STD(_T("Exception caught: ") + e.what());
-    return false;
   } catch (std::exception &e) {
     NSC_LOG_ERROR_STD(_T("Exception caught: ") + to_wstring(e.what()));

modules/NSCPServer/NSCPServer.h

-                      r81e420c
+                      r465866c
 #include <socket_helpers.hpp>
+#include <nscp/server/server.hpp>
+#include <nscp/server/protocol.hpp>
+#include "handler_impl.hpp"
 NSC_WRAPPERS_MAIN();
 class NSCPListener : public nscapi::impl::simple_plugin {
-private:
-  typedef enum {
-    inject, script, script_dir,
-  } command_type;
-  struct command_data {
-    command_data() : type(inject) {}
-    command_data(command_type type_, std::wstring arguments_) : type(type_), arguments(arguments_) {}
-    command_type type;
-    std::wstring arguments;
-  };
-  nscp::server::server::connection_info info_;
 public:
   NSCPListener();
 …
   NSCAPI::nagiosReturn handleCommand(const strEx::blindstr command, const unsigned int argLen, wchar_t **char_args, std::wstring &message, std::wstring &perf);
   std::wstring getConfigurationMeta();
+private:
+  socket_helpers::connection_info info_;
   boost::shared_ptr<nscp::server::server> server_;
+  boost::shared_ptr<handler_impl> handler_;
 };

modules/NSCPServer/handler_impl.cpp

-                      r7515d00
+                      r465866c
 #include "handler_impl.hpp"
+nscp::packet handler_impl::process(const nscp::packet &packet) {
+  if (nscp::checks::is_query_request(packet)) {
+    Plugin::QueryRequestMessage msg;
+    msg.ParseFromString(packet.payload);
+    std::wstring command = _T("todo: fixme");//utf8::cvt<std::wstring>(msg.command());
+    std::string reply;
+    try {
+      NSCAPI::nagiosReturn returncode = handle_query_request(packet.payload, msg, reply);
+      if (returncode == NSCAPI::returnIgnored)
+        nscapi::functions::create_simple_query_response_unknown(command, _T("Command was not found: ") + command, _T(""), reply);
+    } catch (const nscp::nscp_exception &e) {
+      nscapi::functions::create_simple_query_response_unknown(command, _T("Processing error: ") + command + _T(": ") + utf8::cvt<std::wstring>(e.what()), _T(""), reply);
+    } catch (const std::exception &e) {
+      nscapi::functions::create_simple_query_response_unknown(command, _T("Unknown error processing: ") + command + _T(": ") + utf8::cvt<std::wstring>(e.what()), _T(""), reply);
+    }
+    return nscp::factory::create_query_response(reply);
+  } else if (nscp::checks::is_submit_request(packet)) {
+    Plugin::SubmitRequestMessage msg;
+    msg.ParseFromString(packet.payload);
+    try {
+      std::string reply;
+      NSCAPI::nagiosReturn returncode = handle_submission_request(packet.payload, msg, reply);
+      return nscp::factory::create_submission_response(reply);
+    } catch (const nscp::nscp_exception &e) {
+      return nscp::factory::create_error(_T("Exception processing message: ") + to_wstring(e.what()));
+    } catch (const std::exception &e) {
+      return nscp::factory::create_error(_T("Exception processing message: ") + to_wstring(e.what()));
+    }
+  } else if (nscp::checks::is_exec_request(packet)) {
+    Plugin::ExecuteRequestMessage msg;
+    msg.ParseFromString(packet.payload);
+    try {
+      std::string reply;
+      NSCAPI::nagiosReturn returncode = handle_exec_request(packet.payload, msg, reply);
+      return nscp::factory::create_submission_response(reply);
+    } catch (const nscp::nscp_exception &e) {
+      return nscp::factory::create_error(_T("Exception processing message: ") + to_wstring(e.what()));
+    } catch (const std::exception &e) {
+      return nscp::factory::create_error(_T("Exception processing message: ") + to_wstring(e.what()));
+    }
+  } else {
+    this->log_error("nscp:handler", __FILE__, __LINE__, "Unknown packet: " + packet.to_string());
+    return nscp::factory::create_error(_T("Unknown packet: ") + packet.to_wstring());
+  }
+  return nscp::factory::create_error(_T("Unknown error..."));
+}
 NSCAPI::nagiosReturn handler_impl::handle_query_request(const std::string &request, Plugin::QueryRequestMessage &msg, std::string &reply) {
   Plugin::Common::Header hdr;
 …
       nscapi::functions::create_simple_query_response_unknown(command, _T("Arguments not allowed for command: ") + command, _T(""), outBuffer);
     } else {
+      bool ok = true;
+      if (!allowNasty_) {
+        for (int j=0;j<payload.arguments_size();j++) {
+          if (payload.arguments(j).find_first_of(NASTY_METACHARS) != std::wstring::npos) {
+            ok = false;
+            break;
+          }
+        }
+      }
+      if (ok) {
+        std::string tmpBuffer;
+        Plugin::QueryRequestMessage tmp;
+        tmp.mutable_header()->CopyFrom(hdr);
+        tmp.add_payload()->CopyFrom(payload);
+        tmp.SerializeToString(&tmpBuffer);
+        NSCAPI::nagiosReturn returncode = nscapi::plugin_singleton->get_core()->query(command, tmpBuffer, outBuffer);
+        if (returncode == NSCAPI::returnIgnored) {
+          nscapi::functions::create_simple_query_response_unknown(command, _T("Command was not found: ") + command, _T(""), outBuffer);
+        }
+      } else {
+        nscapi::functions::create_simple_query_response_unknown(command, _T("Nasty arguments not allowed for command: ") + command, _T(""), outBuffer);
+      std::string tmpBuffer;
+      Plugin::QueryRequestMessage tmp;
+      tmp.mutable_header()->CopyFrom(hdr);
+      tmp.add_payload()->CopyFrom(payload);
+      tmp.SerializeToString(&tmpBuffer);
+      NSCAPI::nagiosReturn returncode = nscapi::plugin_singleton->get_core()->query(command, tmpBuffer, outBuffer);
+      if (returncode == NSCAPI::returnIgnored) {
+        nscapi::functions::create_simple_query_response_unknown(command, _T("Command was not found: ") + command, _T(""), outBuffer);
+      }
       Plugin::QueryResponseMessage tmpResponse;

modules/NSCPServer/handler_impl.hpp

-                      r8013c0c
+                      r465866c
 #include <nscp/packet.hpp>
 #include <nscp/handler.hpp>
+#include <nscp/server/handler.hpp>
 #include <boost/tuple/tuple.hpp>
+class handler_impl : private boost::noncopyable, public nscp::handler {
+  unsigned int payload_length_;
+class handler_impl : public nscp::server::handler {
   bool allowArgs_;
-  bool allowNasty_;
-  bool noPerfData_;
 public:
   handler_impl(unsigned int payload_length) : payload_length_(payload_length), noPerfData_(false), allowNasty_(false), allowArgs_(false) {}
+  handler_impl() : allowArgs_(false) {}
   NSCAPI::nagiosReturn handle_query_request(const std::string &request, Plugin::QueryRequestMessage &msg, std::string &reply);
 …
     allowArgs_ = v;
+  }
-  virtual void set_allow_nasty_arguments(bool v) {
-    allowNasty_ = v;
+  }
-  virtual void set_perf_data(bool v) {
-    noPerfData_ = !v;
-    if (noPerfData_)
-      log_debug(__FILE__, __LINE__, _T("Performance data disabled!"));
+  }
+  void log_debug(std::string file, int line, std::wstring msg) {
+  virtual nscp::packet process(const nscp::packet &packet);
+  virtual void log_debug(std::string module, std::string file, int line, std::string msg) const {
     if (GET_CORE()->should_log(NSCAPI::log_level::debug)) {
       GET_CORE()->log(NSCAPI::log_level::debug, file, line, msg);
+    }
+  }
   void log_error(std::string file, int line, std::wstring msg) {
+  virtual void log_error(std::string module, std::string file, int line, std::string msg) const {
     if (GET_CORE()->should_log(NSCAPI::log_level::error)) {
       GET_CORE()->log(NSCAPI::log_level::error, file, line, msg);

modules/NSCPServer/stdafx.h

r438998b	r465866c
47	47	#endif
48	48
49		#include <~~config~~.h>
	49	#include <strEx.h>
50	50	#include <utils.h>
51	51

modules/NSClientServer/NSClientServer.cpp

-                      r9bd40e2
+                      r465866c
       _T("LISTEN QUEUE"), _T("Number of sockets to queue before starting to refuse new incoming connections. This can be used to tweak the amount of simultaneous sockets that the server accepts."), true)
       (_T("use ssl"), sh::bool_key(&info_.use_ssl, false),
+      (_T("use ssl"), sh::bool_key(&info_.ssl.enabled, false),
       _T("ENABLE SSL ENCRYPTION"), _T("This option controls if SSL should be enabled."), true)
+      (_T("certificate"), sh::wpath_key(&info_.certificate, _T("${certificate-path}/nrpe_dh_512.pem")),
+      (_T("certificate"), sh::path_key(&info_.ssl.dh_key, "${certificate-path}/nrpe_dh_512.pem"),
+      _T("DH KEY"), _T(""), true)
+      (_T("certificate"), sh::path_key(&info_.ssl.certificate, "${certificate-path}/certificate.pem"),
       _T("SSL CERTIFICATE"), _T(""), true)
+      (_T("certificate key"), sh::path_key(&info_.ssl.certificate_key, "${certificate-path}/certificate_key.pem"),
+      _T("SSL CERTIFICATE"), _T(""), true)
+      (_T("certificate format"), sh::string_key(&info_.ssl.certificate_format, "PEM"),
+      _T("CERTIFICATE FORMAT"), _T(""), true)
+      (_T("ca"), sh::path_key(&info_.ssl.ca_path, "${certificate-path}/ca.pem"),
+      _T("CA"), _T(""), true)
+      (_T("allowed ciphers"), sh::string_key(&info_.ssl.allowed_ciphers, "ALL:!ADH:!LOW:!EXP:!MD5:@STRENGTH"),
+      _T("ALLOWED CIPHERS"), _T(""), true)
+      (_T("verify mode"), sh::string_key(&info_.ssl.verify_mode, "none"),
+      _T("VERIFY MODE"), _T(""), true)
+      ;
 …
+  }
 #endif
+  if (!boost::filesystem::is_regular(info_.certificate))
+    NSC_LOG_ERROR_STD(_T("Certificate not found: ") + info_.certificate);
+  NSC_LOG_ERROR_LISTW(info_.validate());
   std::list<std::string> errors;

modules/Scheduler/CMakeLists.txt

r8d89d7a	r465866c
21	21	"${TARGET}.def"
22	22	simple_scheduler.hpp
	23	schedules.hpp
23	24
24	25	${NSCP_DEF_PLUGIN_HPP}

scripts/python/test_eventlog.py

-                      r74e060a
+                      r465866c
   last_message = None
   last_perfdata = None
+  last_tag = []
   got_simple_response = None
   message_count = 0
 …
     self.key = '_%stest_command'%prefix
     self.reg = Registry.get(plugin_id)
+    self.reg.simple_subscription('pytest_evlog', EventLogTest.simple_inbox_handler)
+  def simple_inbox_handler(channel, source, command, code, message, perf):
+    self.reg.simple_subscription('pytest_evlog_01', EventLogTest.simple_inbox_handler_01)
+    self.reg.simple_subscription('pytest_evlog_02', EventLogTest.simple_inbox_handler_02)
+  def simple_inbox_handler_01(channel, source, command, code, message, perf):
     instance = EventLogTest.getInstance()
+    return instance.simple_inbox_handler_wrapped(channel, source, command, code, message, perf)
+  simple_inbox_handler = Callable(simple_inbox_handler)
+  def simple_inbox_handler_wrapped(self, channel, source, command, status, message, perf):
+    return instance.simple_inbox_handler_wrapped(channel, source, command, code, message, perf, '001')
+  simple_inbox_handler_01 = Callable(simple_inbox_handler_01)
+  def simple_inbox_handler_02(channel, source, command, code, message, perf):
+    instance = EventLogTest.getInstance()
+    return instance.simple_inbox_handler_wrapped(channel, source, command, code, message, perf, '002')
+  simple_inbox_handler_02 = Callable(simple_inbox_handler_02)
+  def simple_inbox_handler_wrapped(self, channel, source, command, status, message, perf, tag):
     message = unicodedata.normalize('NFKD', message).encode('ascii','ignore')
     log('Got simple message %s on %s'%(command, channel))
 …
     self.last_status = status
     self.last_message = message
+    if self.last_tag:
+      self.last_tag.append(tag)
+    else:
+      self.last_tag = [ tag ]
     self.message_count = self.message_count + 1
     self.last_perfdata = perf
 …
     sleep(500)
     result.assert_equals(self.last_message, 'error Application Error: ', 'Verify that message is sent through')
+    result.assert_equals(self.message_count, 1, 'Verify that onlyt one message is sent through')
+    result.assert_equals(self.message_count, 1, 'Verify that only one message is sent through')
+    log('Got tags: %s'%self.last_tag)
     result.add_message(self.test_create('Application Error', 1000, 'info', 2, 1, 5, a_list), 'Testing to create a log message')
 …
     (res, msg, perf) = Core.get().simple_query('CheckEventLogCACHE', ['warn=eq:1', 'crit=eq:2'])
     cache.assert_equals(res, status.CRITICAL, "Validate cache has items")
+    cache.assert_equals(res, status.CRITICAL, "Validate cache has items: %s"%msg)
     cache.assert_equals(msg, 'error Application Error: , info Application Error: , eventlog: 2 = critical', "Validate cache is ok: %s"%msg)
     cache.assert_equals(perf, "'eventlog'=2;1;2", "Validate cache is ok: %s"%msg)
 …
     return result
+  def install_filter(self, conf, path, target, filter):
+    conf.set_string(path, 'filter', filter)
+    conf.set_string(path, 'maximum age', '5s')
+    conf.set_string(path, 'destination', target)
+    conf.set_string(path, 'language', 'english')
+    conf.set_string(path, 'debug', 'true')
   def install(self, arguments):
     conf = Settings.get()
 …
     conf.set_string('/settings/pytest_eventlog/real-time', 'enabled', 'true')
+    conf.set_string('/settings/pytest_eventlog/real-time', 'filter', 'id = 1000 and category = 0')
+    conf.set_string('/settings/pytest_eventlog/real-time/filters', 'test', 'id = 1000 and category = 1')
+    self.install_filter(conf, '/settings/pytest_eventlog/real-time/filters/py_test_001', 'pytest_evlog_01', 'id = 1000 and category = 0')
+    self.install_filter(conf, '/settings/pytest_eventlog/real-time/filters/py_test_002', 'pytest_evlog_02', 'id = 1000 and category = 1')
     conf.set_string('/settings/pytest_eventlog/real-time', 'maximum age', '5s')
-    conf.set_string('/settings/pytest_eventlog/real-time', 'destination', 'pytest_evlog')
-    conf.set_string('/settings/pytest_eventlog/real-time', 'language', 'english')
     conf.set_string('/settings/pytest_eventlog/real-time', 'debug', 'true')
     conf.set_string('/settings/pytest_eventlog/real-time', 'enable active', 'true')

version.hpp

-                      r695f240
+                      r465866c
 #ifndef VERSION_HPP
 #define VERSION_HPP
 #define PRODUCTVER     0,4,0,174
 #define STRPRODUCTVER  "0,4,0,174"
 #define STRPRODUCTDATE "2012-05-19"
+#define PRODUCTVER     0,4,1,0
+#define STRPRODUCTVER  "0,4,1,0"
+#define STRPRODUCTDATE "2012-04-23"
 #endif // VERSION_HPP

Context Navigation

Changeset 465866c in nscp

Legend:

Download in other formats: