MozDef/mq/lib/plugins.py

#!/usr/bin/env python

# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this
# file, You can obtain one at http://mozilla.org/MPL/2.0/.
# Copyright (c) 2017 Mozilla Corporation


import sys
import os
from operator import itemgetter
from datetime import datetime
import pynsive

sys.path.append(os.path.join(os.path.dirname(os.path.abspath(__file__)), '../lib'))
from utilities.dict2List import dict2List


def sendEventToPlugins(anevent, metadata, pluginList):
    '''compare the event to the plugin registrations.
       plugins register with a list of keys or values
       or values they want to match on
       this function compares that registration list
       to the current event and sends the event to plugins
       in order
    '''
    if not isinstance(anevent, dict):
        raise TypeError('event is type {0}, should be a dict'.format(type(anevent)))

    # expecting tuple of module,criteria,priority in pluginList
    # sort the plugin list by priority
    for plugin in sorted(pluginList, key=itemgetter(2), reverse=False):
        # assume we don't run this event through the plugin
        send = False
        if isinstance(plugin[1], list):
            try:
                if (set(plugin[1]).intersection([e for e in dict2List(anevent)])):
                    send = True
            except TypeError:
                sys.stderr.write('TypeError on set intersection for dict {0}'.format(anevent))
                return (anevent, metadata)
        if send:
            (anevent, metadata) = plugin[0].onMessage(anevent, metadata)
            if anevent is None:
                # plug-in is signalling to drop this message
                # early exit
                return (anevent, metadata)

    return (anevent, metadata)


def registerPlugins():
    pluginList = list()   # tuple of module,registration dict,priority
    if os.path.exists('plugins'):
        modules = pynsive.list_modules('plugins')
        for mname in modules:
            module = pynsive.import_module(mname)
            reload(module)
            if not module:
                raise ImportError('Unable to load module {}'.format(mname))
            else:
                if 'message' in dir(module):
                    mclass = module.message()
                    mreg = mclass.registration
                    if 'priority' in dir(mclass):
                        mpriority = mclass.priority
                    else:
                        mpriority = 100
                    if isinstance(mreg, list):
                        print('[*] plugin {0} registered to receive messages with {1}'.format(mname, mreg))
                        pluginList.append((mclass, mreg, mpriority))
    return pluginList


def checkPlugins(pluginList, lastPluginCheck, checkFrequency):
    if abs(datetime.now() - lastPluginCheck).seconds > checkFrequency:
        # print('[*] checking plugins')
        lastPluginCheck = datetime.now()
        pluginList = registerPlugins()
        return pluginList, lastPluginCheck
    else:
        return pluginList, lastPluginCheck
Add SNS SQS mq worker 2017-05-26 21:21:37 +03:00			`#!/usr/bin/env python`

			`# This Source Code Form is subject to the terms of the Mozilla Public`
			`# License, v. 2.0. If a copy of the MPL was not distributed with this`
			`# file, You can obtain one at http://mozilla.org/MPL/2.0/.`
			`# Copyright (c) 2017 Mozilla Corporation`


			`import sys`
			`import os`
			`from operator import itemgetter`
			`from datetime import datetime`
			`import pynsive`

			`sys.path.append(os.path.join(os.path.dirname(os.path.abspath(__file__)), '../lib'))`
			`from utilities.dict2List import dict2List`


			`def sendEventToPlugins(anevent, metadata, pluginList):`
			`'''compare the event to the plugin registrations.`
			`plugins register with a list of keys or values`
			`or values they want to match on`
			`this function compares that registration list`
			`to the current event and sends the event to plugins`
			`in order`
			`'''`
			`if not isinstance(anevent, dict):`
			`raise TypeError('event is type {0}, should be a dict'.format(type(anevent)))`

			`# expecting tuple of module,criteria,priority in pluginList`
			`# sort the plugin list by priority`
			`for plugin in sorted(pluginList, key=itemgetter(2), reverse=False):`
			`# assume we don't run this event through the plugin`
			`send = False`
			`if isinstance(plugin[1], list):`
			`try:`
			`if (set(plugin[1]).intersection([e for e in dict2List(anevent)])):`
			`send = True`
			`except TypeError:`
			`sys.stderr.write('TypeError on set intersection for dict {0}'.format(anevent))`
			`return (anevent, metadata)`
			`if send:`
			`(anevent, metadata) = plugin[0].onMessage(anevent, metadata)`
			`if anevent is None:`
			`# plug-in is signalling to drop this message`
			`# early exit`
			`return (anevent, metadata)`

			`return (anevent, metadata)`


			`def registerPlugins():`
			`pluginList = list() # tuple of module,registration dict,priority`
			`if os.path.exists('plugins'):`
			`modules = pynsive.list_modules('plugins')`
			`for mname in modules:`
			`module = pynsive.import_module(mname)`
			`reload(module)`
			`if not module:`
			`raise ImportError('Unable to load module {}'.format(mname))`
			`else:`
			`if 'message' in dir(module):`
			`mclass = module.message()`
			`mreg = mclass.registration`
			`if 'priority' in dir(mclass):`
			`mpriority = mclass.priority`
			`else:`
			`mpriority = 100`
			`if isinstance(mreg, list):`
			`print('[*] plugin {0} registered to receive messages with {1}'.format(mname, mreg))`
			`pluginList.append((mclass, mreg, mpriority))`
			`return pluginList`


			`def checkPlugins(pluginList, lastPluginCheck, checkFrequency):`
			`if abs(datetime.now() - lastPluginCheck).seconds > checkFrequency:`
			`# print('[*] checking plugins')`
			`lastPluginCheck = datetime.now()`
			`pluginList = registerPlugins()`
			`return pluginList, lastPluginCheck`
			`else:`
			`return pluginList, lastPluginCheck`