trufflehog/pkg/engine/syslog.go

package engine

import (
	"os"

	"github.com/go-errors/errors"
	"google.golang.org/protobuf/proto"
	"google.golang.org/protobuf/types/known/anypb"

	"github.com/trufflesecurity/trufflehog/v3/pkg/common"
	"github.com/trufflesecurity/trufflehog/v3/pkg/context"
	"github.com/trufflesecurity/trufflehog/v3/pkg/pb/sourcespb"
	"github.com/trufflesecurity/trufflehog/v3/pkg/sources"
	"github.com/trufflesecurity/trufflehog/v3/pkg/sources/syslog"
)

// ScanSyslog is a source that scans syslog files.
func (e *Engine) ScanSyslog(ctx context.Context, c sources.Config) error {
	connection := &sourcespb.Syslog{
		Protocol:      c.Protocol,
		ListenAddress: c.Address,
		Format:        c.Format,
	}

	if c.CertPath != "" && c.KeyPath != "" {
		cert, err := os.ReadFile(c.CertPath)
		if err != nil {
			return errors.WrapPrefix(err, "could not open TLS cert file", 0)
		}
		connection.TlsCert = string(cert)

		key, err := os.ReadFile(c.KeyPath)
		if err != nil {
			return errors.WrapPrefix(err, "could not open TLS key file", 0)
		}
		connection.TlsKey = string(key)
	}

	var conn anypb.Any
	err := anypb.MarshalFrom(&conn, connection, proto.MarshalOptions{})
	if err != nil {
		return errors.WrapPrefix(err, "error unmarshalling connection", 0)
	}
	source := syslog.Source{}
	ctx = context.WithValues(ctx,
		"source_type", source.Type().String(),
		"source_name", "syslog",
	)
	err = source.Init(ctx, "trufflehog - syslog", 0, 0, false, &conn, c.Concurrency)
	source.InjectConnection(connection)
	if err != nil {
		ctx.Logger().Error(err, "failed to initialize syslog source")
		return err
	}

	e.sourcesWg.Add(1)
	go func() {
		defer common.RecoverWithExit(ctx)
		defer e.sourcesWg.Done()
		err := source.Chunks(ctx, e.ChunksChan())
		if err != nil {
			ctx.Logger().Error(err, "could not scan syslog")
		}
	}()
	return nil
}
Syslog source (#500) * Add syslog source * only load cert/key with tls * Cleanup * Linting Co-authored-by: Bill Rich <bill.rich@trufflesec.com> 2022-05-04 22:08:11 +00:00			`package engine`

			`import (`
Refactor Engine to wait for workers in a Finish method (#581) * Refactor Engine to wait for workers in a Finish method This should allow the engine to run multiple concurrent scans if desired before shutting down. Additionally, this commit refactors some of the printing logic to the output package. * Fix tests 2022-05-25 16:35:44 +00:00			`"os"`

Syslog source (#500) * Add syslog source * only load cert/key with tls * Cleanup * Linting Co-authored-by: Bill Rich <bill.rich@trufflesec.com> 2022-05-04 22:08:11 +00:00			`"github.com/go-errors/errors"`
			`"google.golang.org/protobuf/proto"`
			`"google.golang.org/protobuf/types/known/anypb"`

Add common sentry recover library and add into goroutines (#738) * Add common sentry recover library and add into goroutines * fix nits 2022-08-29 18:45:37 +00:00			`"github.com/trufflesecurity/trufflehog/v3/pkg/common"`
			`"github.com/trufflesecurity/trufflehog/v3/pkg/context"`
Syslog source (#500) * Add syslog source * only load cert/key with tls * Cleanup * Linting Co-authored-by: Bill Rich <bill.rich@trufflesec.com> 2022-05-04 22:08:11 +00:00			`"github.com/trufflesecurity/trufflehog/v3/pkg/pb/sourcespb"`
[Thog-371] Utilize config struct for engine scans (#700) * Use a config struct when scanning and engine source. * fix tests. * Move test_helpers to the sources pkg. * Handle ScanGit error in tests. * adderss comments. * Use functional options. * Remove temp var. * Add better var names for the setup functions for each config. * Remove unused var. * fix error logs. * fix error logs. * single line. * remove blank lines. 2022-08-10 17:11:13 +00:00			`"github.com/trufflesecurity/trufflehog/v3/pkg/sources"`
Syslog source (#500) * Add syslog source * only load cert/key with tls * Cleanup * Linting Co-authored-by: Bill Rich <bill.rich@trufflesec.com> 2022-05-04 22:08:11 +00:00			`"github.com/trufflesecurity/trufflehog/v3/pkg/sources/syslog"`
			`)`

[Thog-371] Utilize config struct for engine scans (#700) * Use a config struct when scanning and engine source. * fix tests. * Move test_helpers to the sources pkg. * Handle ScanGit error in tests. * adderss comments. * Use functional options. * Remove temp var. * Add better var names for the setup functions for each config. * Remove unused var. * fix error logs. * fix error logs. * single line. * remove blank lines. 2022-08-10 17:11:13 +00:00			`// ScanSyslog is a source that scans syslog files.`
[chore] - Use config struct instead of pointer for engine scans. (#709) * Use a config struct instead of pointer when scanning engine sources. * use config. 2022-08-12 16:56:24 +00:00			`func (e *Engine) ScanSyslog(ctx context.Context, c sources.Config) error {`
Syslog source (#500) * Add syslog source * only load cert/key with tls * Cleanup * Linting Co-authored-by: Bill Rich <bill.rich@trufflesec.com> 2022-05-04 22:08:11 +00:00			`connection := &sourcespb.Syslog{`
[Thog-371] Utilize config struct for engine scans (#700) * Use a config struct when scanning and engine source. * fix tests. * Move test_helpers to the sources pkg. * Handle ScanGit error in tests. * adderss comments. * Use functional options. * Remove temp var. * Add better var names for the setup functions for each config. * Remove unused var. * fix error logs. * fix error logs. * single line. * remove blank lines. 2022-08-10 17:11:13 +00:00			`Protocol: c.Protocol,`
			`ListenAddress: c.Address,`
			`Format: c.Format,`
Syslog source (#500) * Add syslog source * only load cert/key with tls * Cleanup * Linting Co-authored-by: Bill Rich <bill.rich@trufflesec.com> 2022-05-04 22:08:11 +00:00			`}`

[Thog-371] Utilize config struct for engine scans (#700) * Use a config struct when scanning and engine source. * fix tests. * Move test_helpers to the sources pkg. * Handle ScanGit error in tests. * adderss comments. * Use functional options. * Remove temp var. * Add better var names for the setup functions for each config. * Remove unused var. * fix error logs. * fix error logs. * single line. * remove blank lines. 2022-08-10 17:11:13 +00:00			`if c.CertPath != "" && c.KeyPath != "" {`
			`cert, err := os.ReadFile(c.CertPath)`
Syslog source (#500) * Add syslog source * only load cert/key with tls * Cleanup * Linting Co-authored-by: Bill Rich <bill.rich@trufflesec.com> 2022-05-04 22:08:11 +00:00			`if err != nil {`
			`return errors.WrapPrefix(err, "could not open TLS cert file", 0)`
			`}`
			`connection.TlsCert = string(cert)`

[Thog-371] Utilize config struct for engine scans (#700) * Use a config struct when scanning and engine source. * fix tests. * Move test_helpers to the sources pkg. * Handle ScanGit error in tests. * adderss comments. * Use functional options. * Remove temp var. * Add better var names for the setup functions for each config. * Remove unused var. * fix error logs. * fix error logs. * single line. * remove blank lines. 2022-08-10 17:11:13 +00:00			`key, err := os.ReadFile(c.KeyPath)`
Syslog source (#500) * Add syslog source * only load cert/key with tls * Cleanup * Linting Co-authored-by: Bill Rich <bill.rich@trufflesec.com> 2022-05-04 22:08:11 +00:00			`if err != nil {`
			`return errors.WrapPrefix(err, "could not open TLS key file", 0)`
			`}`
			`connection.TlsKey = string(key)`
			`}`

			`var conn anypb.Any`
			`err := anypb.MarshalFrom(&conn, connection, proto.MarshalOptions{})`
			`if err != nil {`
			`return errors.WrapPrefix(err, "error unmarshalling connection", 0)`
			`}`
			`source := syslog.Source{}`
[chore] Remove logrus from circleci, filesystem, gitlab, and s3 sources (#1089) * [chore] Remove logrus from circleci, filesystem, gitlab, and s3 sources * Address comments 2023-02-10 17:02:55 +00:00			`ctx = context.WithValues(ctx,`
			`"source_type", source.Type().String(),`
			`"source_name", "syslog",`
			`)`
[Thog-371] Utilize config struct for engine scans (#700) * Use a config struct when scanning and engine source. * fix tests. * Move test_helpers to the sources pkg. * Handle ScanGit error in tests. * adderss comments. * Use functional options. * Remove temp var. * Add better var names for the setup functions for each config. * Remove unused var. * fix error logs. * fix error logs. * single line. * remove blank lines. 2022-08-10 17:11:13 +00:00			`err = source.Init(ctx, "trufflehog - syslog", 0, 0, false, &conn, c.Concurrency)`
Syslog source (#500) * Add syslog source * only load cert/key with tls * Cleanup * Linting Co-authored-by: Bill Rich <bill.rich@trufflesec.com> 2022-05-04 22:08:11 +00:00			`source.InjectConnection(connection)`
			`if err != nil {`
[chore] Remove logrus from engine package (#1085) 2023-02-09 22:55:19 +00:00			`ctx.Logger().Error(err, "failed to initialize syslog source")`
Syslog source (#500) * Add syslog source * only load cert/key with tls * Cleanup * Linting Co-authored-by: Bill Rich <bill.rich@trufflesec.com> 2022-05-04 22:08:11 +00:00			`return err`
			`}`

Refactor Engine to wait for workers in a Finish method (#581) * Refactor Engine to wait for workers in a Finish method This should allow the engine to run multiple concurrent scans if desired before shutting down. Additionally, this commit refactors some of the printing logic to the output package. * Fix tests 2022-05-25 16:35:44 +00:00			`e.sourcesWg.Add(1)`
Syslog source (#500) * Add syslog source * only load cert/key with tls * Cleanup * Linting Co-authored-by: Bill Rich <bill.rich@trufflesec.com> 2022-05-04 22:08:11 +00:00			`go func() {`
[THOG-709] - Recover from detector panics (#810) 2022-09-22 14:01:10 +00:00			`defer common.RecoverWithExit(ctx)`
Refactor Engine to wait for workers in a Finish method (#581) * Refactor Engine to wait for workers in a Finish method This should allow the engine to run multiple concurrent scans if desired before shutting down. Additionally, this commit refactors some of the printing logic to the output package. * Fix tests 2022-05-25 16:35:44 +00:00			`defer e.sourcesWg.Done()`
Syslog source (#500) * Add syslog source * only load cert/key with tls * Cleanup * Linting Co-authored-by: Bill Rich <bill.rich@trufflesec.com> 2022-05-04 22:08:11 +00:00			`err := source.Chunks(ctx, e.ChunksChan())`
			`if err != nil {`
[chore] Remove logrus from engine package (#1085) 2023-02-09 22:55:19 +00:00			`ctx.Logger().Error(err, "could not scan syslog")`
Syslog source (#500) * Add syslog source * only load cert/key with tls * Cleanup * Linting Co-authored-by: Bill Rich <bill.rich@trufflesec.com> 2022-05-04 22:08:11 +00:00			`}`
			`}()`
			`return nil`
			`}`