2010-01-25 08:59:44 -05:00
|
|
|
{==============================================================================|
|
2010-02-13 11:56:46 -05:00
|
|
|
| Project : Ararat Synapse | 001.002.003 |
|
2010-01-25 08:59:44 -05:00
|
|
|
|==============================================================================|
|
|
|
|
|
| Content: SysLog client |
|
|
|
|
|
|==============================================================================|
|
2010-02-13 11:56:46 -05:00
|
|
|
| Copyright (c)1999-2010, Lukas Gebauer |
|
2010-01-25 08:59:44 -05:00
|
|
|
| All rights reserved. |
|
|
|
|
|
| |
|
|
|
|
|
| Redistribution and use in source and binary forms, with or without |
|
|
|
|
|
| modification, are permitted provided that the following conditions are met: |
|
|
|
|
|
| |
|
|
|
|
|
| Redistributions of source code must retain the above copyright notice, this |
|
|
|
|
|
| list of conditions and the following disclaimer. |
|
|
|
|
|
| |
|
|
|
|
|
| Redistributions in binary form must reproduce the above copyright notice, |
|
|
|
|
|
| this list of conditions and the following disclaimer in the documentation |
|
|
|
|
|
| and/or other materials provided with the distribution. |
|
|
|
|
|
| |
|
|
|
|
|
| Neither the name of Lukas Gebauer nor the names of its contributors may |
|
|
|
|
|
| be used to endorse or promote products derived from this software without |
|
|
|
|
|
| specific prior written permission. |
|
|
|
|
|
| |
|
|
|
|
|
| THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" |
|
|
|
|
|
| AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE |
|
|
|
|
|
| IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE |
|
|
|
|
|
| ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE FOR |
|
|
|
|
|
| ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL |
|
|
|
|
|
| DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR |
|
|
|
|
|
| SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER |
|
|
|
|
|
| CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT |
|
|
|
|
|
| LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY |
|
|
|
|
|
| OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH |
|
|
|
|
|
| DAMAGE. |
|
|
|
|
|
|==============================================================================|
|
|
|
|
|
| The Initial Developer of the Original Code is Lukas Gebauer (Czech Republic).|
|
2010-02-13 11:56:46 -05:00
|
|
|
| Portions created by Lukas Gebauer are Copyright (c)2001-2010. |
|
2010-01-25 08:59:44 -05:00
|
|
|
| All Rights Reserved. |
|
|
|
|
|
|==============================================================================|
|
|
|
|
|
| Contributor(s): |
|
|
|
|
|
| Christian Brosius |
|
|
|
|
|
|==============================================================================|
|
|
|
|
|
| History: see HISTORY.HTM from distribution package |
|
|
|
|
|
| (Found at URL: http://www.ararat.cz/synapse/) |
|
|
|
|
|
|==============================================================================}
|
|
|
|
|
|
|
|
|
|
{:@abstract(BSD SYSLOG protocol)
|
|
|
|
|
|
|
|
|
|
Used RFC: RFC-3164
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
{$IFDEF FPC}
|
|
|
|
|
{$MODE DELPHI}
|
|
|
|
|
{$ENDIF}
|
|
|
|
|
{$Q-}
|
|
|
|
|
{$H+}
|
|
|
|
|
|
|
|
|
|
unit slogsend;
|
|
|
|
|
|
|
|
|
|
interface
|
|
|
|
|
|
|
|
|
|
uses
|
|
|
|
|
SysUtils, Classes,
|
|
|
|
|
blcksock, synautil;
|
|
|
|
|
|
|
|
|
|
const
|
|
|
|
|
cSysLogProtocol = '514';
|
|
|
|
|
|
|
|
|
|
FCL_Kernel = 0;
|
|
|
|
|
FCL_UserLevel = 1;
|
|
|
|
|
FCL_MailSystem = 2;
|
|
|
|
|
FCL_System = 3;
|
|
|
|
|
FCL_Security = 4;
|
|
|
|
|
FCL_Syslogd = 5;
|
|
|
|
|
FCL_Printer = 6;
|
|
|
|
|
FCL_News = 7;
|
|
|
|
|
FCL_UUCP = 8;
|
|
|
|
|
FCL_Clock = 9;
|
|
|
|
|
FCL_Authorization = 10;
|
|
|
|
|
FCL_FTP = 11;
|
|
|
|
|
FCL_NTP = 12;
|
|
|
|
|
FCL_LogAudit = 13;
|
|
|
|
|
FCL_LogAlert = 14;
|
|
|
|
|
FCL_Time = 15;
|
|
|
|
|
FCL_Local0 = 16;
|
|
|
|
|
FCL_Local1 = 17;
|
|
|
|
|
FCL_Local2 = 18;
|
|
|
|
|
FCL_Local3 = 19;
|
|
|
|
|
FCL_Local4 = 20;
|
|
|
|
|
FCL_Local5 = 21;
|
|
|
|
|
FCL_Local6 = 22;
|
|
|
|
|
FCL_Local7 = 23;
|
|
|
|
|
|
|
|
|
|
type
|
|
|
|
|
{:@abstract(Define possible priority of Syslog message)}
|
|
|
|
|
TSyslogSeverity = (Emergency, Alert, Critical, Error, Warning, Notice, Info,
|
|
|
|
|
Debug);
|
|
|
|
|
|
|
|
|
|
{:@abstract(encoding or decoding of SYSLOG message)}
|
|
|
|
|
TSyslogMessage = class(TObject)
|
|
|
|
|
private
|
|
|
|
|
FFacility:Byte;
|
|
|
|
|
FSeverity:TSyslogSeverity;
|
|
|
|
|
FDateTime:TDateTime;
|
|
|
|
|
FTag:String;
|
|
|
|
|
FMessage:String;
|
|
|
|
|
FLocalIP:String;
|
|
|
|
|
function GetPacketBuf:String;
|
|
|
|
|
procedure SetPacketBuf(Value:String);
|
|
|
|
|
public
|
|
|
|
|
{:Reset values to defaults}
|
|
|
|
|
procedure Clear;
|
|
|
|
|
published
|
|
|
|
|
{:Define facilicity of Syslog message. For specify you may use predefined
|
|
|
|
|
FCL_* constants. Default is "FCL_Local0".}
|
|
|
|
|
property Facility:Byte read FFacility write FFacility;
|
|
|
|
|
|
|
|
|
|
{:Define possible priority of Syslog message. Default is "Debug".}
|
|
|
|
|
property Severity:TSyslogSeverity read FSeverity write FSeverity;
|
|
|
|
|
|
|
|
|
|
{:date and time of Syslog message}
|
|
|
|
|
property DateTime:TDateTime read FDateTime write FDateTime;
|
|
|
|
|
|
|
|
|
|
{:This is used for identify process of this message. Default is filename
|
|
|
|
|
of your executable file.}
|
|
|
|
|
property Tag:String read FTag write FTag;
|
|
|
|
|
|
|
|
|
|
{:Text of your message for log.}
|
|
|
|
|
property LogMessage:String read FMessage write FMessage;
|
|
|
|
|
|
|
|
|
|
{:IP address of message sender.}
|
|
|
|
|
property LocalIP:String read FLocalIP write FLocalIP;
|
|
|
|
|
|
|
|
|
|
{:This property holds encoded binary SYSLOG packet}
|
|
|
|
|
property PacketBuf:String read GetPacketBuf write SetPacketBuf;
|
|
|
|
|
end;
|
|
|
|
|
|
|
|
|
|
{:@abstract(This object implement BSD SysLog client)
|
|
|
|
|
|
|
|
|
|
Note: Are you missing properties for specify server address and port? Look to
|
|
|
|
|
parent @link(TSynaClient) too!}
|
|
|
|
|
TSyslogSend = class(TSynaClient)
|
|
|
|
|
private
|
|
|
|
|
FSock: TUDPBlockSocket;
|
|
|
|
|
FSysLogMessage: TSysLogMessage;
|
|
|
|
|
public
|
|
|
|
|
constructor Create;
|
|
|
|
|
destructor Destroy; override;
|
|
|
|
|
{:Send Syslog UDP packet defined by @link(SysLogMessage).}
|
|
|
|
|
function DoIt: Boolean;
|
|
|
|
|
published
|
|
|
|
|
{:Syslog message for send}
|
|
|
|
|
property SysLogMessage:TSysLogMessage read FSysLogMessage write FSysLogMessage;
|
|
|
|
|
end;
|
|
|
|
|
|
|
|
|
|
{:Simply send packet to specified Syslog server.}
|
|
|
|
|
function ToSysLog(const SyslogServer: string; Facil: Byte;
|
|
|
|
|
Sever: TSyslogSeverity; const Content: string): Boolean;
|
|
|
|
|
|
|
|
|
|
implementation
|
|
|
|
|
|
|
|
|
|
function TSyslogMessage.GetPacketBuf:String;
|
|
|
|
|
begin
|
|
|
|
|
Result := '<' + IntToStr((FFacility * 8) + Ord(FSeverity)) + '>';
|
|
|
|
|
Result := Result + CDateTime(FDateTime) + ' ';
|
|
|
|
|
Result := Result + FLocalIP + ' ';
|
|
|
|
|
Result := Result + FTag + ': ' + FMessage;
|
|
|
|
|
end;
|
|
|
|
|
|
|
|
|
|
procedure TSyslogMessage.SetPacketBuf(Value:String);
|
|
|
|
|
var StrBuf:String;
|
|
|
|
|
IntBuf,Pos:Integer;
|
|
|
|
|
begin
|
|
|
|
|
if Length(Value) < 1 then exit;
|
|
|
|
|
Pos := 1;
|
|
|
|
|
if Value[Pos] <> '<' then exit;
|
|
|
|
|
Inc(Pos);
|
|
|
|
|
// Facility and Severity
|
|
|
|
|
StrBuf := '';
|
|
|
|
|
while (Value[Pos] <> '>')do
|
|
|
|
|
begin
|
|
|
|
|
StrBuf := StrBuf + Value[Pos];
|
|
|
|
|
Inc(Pos);
|
|
|
|
|
end;
|
|
|
|
|
IntBuf := StrToInt(StrBuf);
|
|
|
|
|
FFacility := IntBuf div 8;
|
|
|
|
|
case (IntBuf mod 8)of
|
|
|
|
|
0:FSeverity := Emergency;
|
|
|
|
|
1:FSeverity := Alert;
|
|
|
|
|
2:FSeverity := Critical;
|
|
|
|
|
3:FSeverity := Error;
|
|
|
|
|
4:FSeverity := Warning;
|
|
|
|
|
5:FSeverity := Notice;
|
|
|
|
|
6:FSeverity := Info;
|
|
|
|
|
7:FSeverity := Debug;
|
|
|
|
|
end;
|
|
|
|
|
// DateTime
|
|
|
|
|
Inc(Pos);
|
|
|
|
|
StrBuf := '';
|
|
|
|
|
// Month
|
|
|
|
|
while (Value[Pos] <> ' ')do
|
|
|
|
|
begin
|
|
|
|
|
StrBuf := StrBuf + Value[Pos];
|
|
|
|
|
Inc(Pos);
|
|
|
|
|
end;
|
|
|
|
|
StrBuf := StrBuf + Value[Pos];
|
|
|
|
|
Inc(Pos);
|
|
|
|
|
// Day
|
|
|
|
|
while (Value[Pos] <> ' ')do
|
|
|
|
|
begin
|
|
|
|
|
StrBuf := StrBuf + Value[Pos];
|
|
|
|
|
Inc(Pos);
|
|
|
|
|
end;
|
|
|
|
|
StrBuf := StrBuf + Value[Pos];
|
|
|
|
|
Inc(Pos);
|
|
|
|
|
// Time
|
|
|
|
|
while (Value[Pos] <> ' ')do
|
|
|
|
|
begin
|
|
|
|
|
StrBuf := StrBuf + Value[Pos];
|
|
|
|
|
Inc(Pos);
|
|
|
|
|
end;
|
|
|
|
|
FDateTime := DecodeRFCDateTime(StrBuf);
|
|
|
|
|
Inc(Pos);
|
|
|
|
|
|
|
|
|
|
// LocalIP
|
|
|
|
|
StrBuf := '';
|
|
|
|
|
while (Value[Pos] <> ' ')do
|
|
|
|
|
begin
|
|
|
|
|
StrBuf := StrBuf + Value[Pos];
|
|
|
|
|
Inc(Pos);
|
|
|
|
|
end;
|
|
|
|
|
FLocalIP := StrBuf;
|
|
|
|
|
Inc(Pos);
|
|
|
|
|
// Tag
|
|
|
|
|
StrBuf := '';
|
|
|
|
|
while (Value[Pos] <> ':')do
|
|
|
|
|
begin
|
|
|
|
|
StrBuf := StrBuf + Value[Pos];
|
|
|
|
|
Inc(Pos);
|
|
|
|
|
end;
|
|
|
|
|
FTag := StrBuf;
|
|
|
|
|
// LogMessage
|
|
|
|
|
Inc(Pos);
|
|
|
|
|
StrBuf := '';
|
|
|
|
|
while (Pos <= Length(Value))do
|
|
|
|
|
begin
|
|
|
|
|
StrBuf := StrBuf + Value[Pos];
|
|
|
|
|
Inc(Pos);
|
|
|
|
|
end;
|
|
|
|
|
FMessage := TrimSP(StrBuf);
|
|
|
|
|
end;
|
|
|
|
|
|
|
|
|
|
procedure TSysLogMessage.Clear;
|
|
|
|
|
begin
|
|
|
|
|
FFacility := FCL_Local0;
|
|
|
|
|
FSeverity := Debug;
|
|
|
|
|
FTag := ExtractFileName(ParamStr(0));
|
|
|
|
|
FMessage := '';
|
|
|
|
|
FLocalIP := '0.0.0.0';
|
|
|
|
|
end;
|
|
|
|
|
|
|
|
|
|
//------------------------------------------------------------------------------
|
|
|
|
|
|
|
|
|
|
constructor TSyslogSend.Create;
|
|
|
|
|
begin
|
|
|
|
|
inherited Create;
|
|
|
|
|
FSock := TUDPBlockSocket.Create;
|
2010-02-13 11:56:46 -05:00
|
|
|
FSock.Owner := self;
|
2010-01-25 08:59:44 -05:00
|
|
|
FSysLogMessage := TSysLogMessage.Create;
|
|
|
|
|
FTargetPort := cSysLogProtocol;
|
|
|
|
|
end;
|
|
|
|
|
|
|
|
|
|
destructor TSyslogSend.Destroy;
|
|
|
|
|
begin
|
|
|
|
|
FSock.Free;
|
|
|
|
|
FSysLogMessage.Free;
|
|
|
|
|
inherited Destroy;
|
|
|
|
|
end;
|
|
|
|
|
|
|
|
|
|
function TSyslogSend.DoIt: Boolean;
|
|
|
|
|
var
|
|
|
|
|
L: TStringList;
|
|
|
|
|
begin
|
|
|
|
|
Result := False;
|
|
|
|
|
L := TStringList.Create;
|
|
|
|
|
try
|
|
|
|
|
FSock.ResolveNameToIP(FSock.Localname, L);
|
|
|
|
|
if L.Count < 1 then
|
|
|
|
|
FSysLogMessage.LocalIP := '0.0.0.0'
|
|
|
|
|
else
|
|
|
|
|
FSysLogMessage.LocalIP := L[0];
|
|
|
|
|
finally
|
|
|
|
|
L.Free;
|
|
|
|
|
end;
|
|
|
|
|
FSysLogMessage.DateTime := Now;
|
|
|
|
|
if Length(FSysLogMessage.PacketBuf) <= 1024 then
|
|
|
|
|
begin
|
|
|
|
|
FSock.Connect(FTargetHost, FTargetPort);
|
|
|
|
|
FSock.SendString(FSysLogMessage.PacketBuf);
|
|
|
|
|
Result := FSock.LastError = 0;
|
|
|
|
|
end;
|
|
|
|
|
end;
|
|
|
|
|
|
|
|
|
|
{==============================================================================}
|
|
|
|
|
|
|
|
|
|
function ToSysLog(const SyslogServer: string; Facil: Byte;
|
|
|
|
|
Sever: TSyslogSeverity; const Content: string): Boolean;
|
|
|
|
|
begin
|
|
|
|
|
with TSyslogSend.Create do
|
|
|
|
|
try
|
|
|
|
|
TargetHost :=SyslogServer;
|
|
|
|
|
SysLogMessage.Facility := Facil;
|
|
|
|
|
SysLogMessage.Severity := Sever;
|
|
|
|
|
SysLogMessage.LogMessage := Content;
|
|
|
|
|
Result := DoIt;
|
|
|
|
|
finally
|
|
|
|
|
Free;
|
|
|
|
|
end;
|
|
|
|
|
end;
|
|
|
|
|
|
|
|
|
|
end.
|
