Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Metricbeat] Windows Module add wmi metricset #42017

Open
wants to merge 55 commits into
base: main
Choose a base branch
from
Open
Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
55 commits
Select commit Hold shift + click to select a range
5aff55e
Add stub for wmi module
herrBez Dec 3, 2024
60dfc6d
Execute mage update
herrBez Dec 3, 2024
4c6334f
Add first draft of wmi metricset
herrBez Dec 3, 2024
e5e45a5
Merge branch 'main' of https://github.com/elastic/beats into wmi
herrBez Dec 12, 2024
880a7ef
Merge branch 'main' of https://github.com/elastic/beats into wmi
herrBez Dec 12, 2024
ebc8ceb
Add first draft of wmi windows module
herrBez Dec 12, 2024
6198252
Add config unit test
herrBez Dec 12, 2024
98357b7
Add unit test for the config class
herrBez Dec 12, 2024
70abaef
Add license notice mage fmt
herrBez Dec 12, 2024
0349726
Add License to wmi/wmi.go
herrBez Dec 12, 2024
65d594f
Update example
herrBez Dec 12, 2024
aface56
Use wrapping fromat verb for fmt.Errorf
herrBez Dec 13, 2024
b833f93
Fix mispelled comment
herrBez Dec 13, 2024
a5e69f2
Add first draft of the documentation
herrBez Dec 13, 2024
18ba51d
Add the config reference and config file
herrBez Dec 13, 2024
dfb1338
Bump microsfot/wmi to 0.25.1
herrBez Dec 13, 2024
aa6b937
Make sure the wmi metricset is only used on windows
herrBez Dec 13, 2024
de36999
Run mage update
herrBez Dec 13, 2024
64201dc
Add License for microsoft/wmi library in Notice.txt
herrBez Dec 13, 2024
c5adc90
Add Timeout configuration
herrBez Dec 16, 2024
d706121
Introduce the ExecuteGuardedQueryInstances to wait for at most a time…
herrBez Dec 16, 2024
e0477e5
Merge branch 'wmi' of github.com:herrBez/beats into wmi
herrBez Dec 16, 2024
59b625c
Add invokation of CloseAllInstances() to make sure to free resources …
herrBez Dec 21, 2024
f01ba97
Add license header to utils.go
herrBez Dec 23, 2024
0a6c670
Rename timeout to warning_threshold to conceive the message that the …
herrBez Dec 24, 2024
06ae564
Refactor the ExecuteGuardedQueryInstances to use the context.WithTimeout
herrBez Dec 24, 2024
c1c956b
Add unit test for ExecuteGuardedQueryInstances
herrBez Dec 24, 2024
b29f5c7
Add parameter IncludeEmptyString. Create function to check skip condi…
herrBez Dec 24, 2024
bf9c088
Add namespace at the query level and add a structure to index queries…
herrBez Dec 24, 2024
c54eca0
Rename the config method to be more explicit
herrBez Dec 24, 2024
3e232f2
Add Primitives to deal with the type convrsion for strings
herrBez Dec 24, 2024
7ff8b88
Add unit test for the conversion function
herrBez Dec 24, 2024
f1e67e4
Add heuristic to determine if fetching the CIMType is needed
herrBez Dec 24, 2024
c4f7101
Add type conversion
herrBez Dec 24, 2024
1e00ac9
Improve comments to explicitly state what are the config parameters u…
herrBez Dec 24, 2024
54e6642
Add license header to wmi and utils test
herrBez Dec 24, 2024
0cced56
Run mage fmt
herrBez Dec 24, 2024
9661c45
Update the reference config after the final implementation
herrBez Dec 24, 2024
ab3c5e6
Remove the dummy field definition
herrBez Dec 24, 2024
6c3c55f
Add sample data in the data.json file
herrBez Dec 24, 2024
969b7cc
Fix go.mod and change NOTICE.txt to reflect the fact that go-ole is n…
herrBez Dec 24, 2024
be95605
Make sure that the wmi tests run only on windows
herrBez Dec 24, 2024
9a8b9b8
Improve the error message to prepare a Troubleshooting Guide
herrBez Dec 24, 2024
082873a
Merge branch 'wmi' of github.com:herrBez/beats into wmi
herrBez Dec 24, 2024
e7fcdd4
Merge remote-tracking branch 'upstream/main' into wmi
herrBez Jan 15, 2025
4882238
Fix test to use right function
herrBez Jan 15, 2025
213d92e
Add doc.go file
herrBez Jan 15, 2025
83e2627
Add pragma to avoid compiling utils.go on platforms other than windows
herrBez Jan 15, 2025
f7b4865
Run make update BEATS=metricbeat
herrBez Jan 15, 2025
8ff47b4
Use Metricset Logger instead of generic one in wmi.go
herrBez Jan 16, 2025
cd513ef
Make sure that we are using the Metricset logger everywhere. Address …
herrBez Jan 16, 2025
f4c0c7d
Merge branch 'wmi' of github.com:herrBez/beats into wmi
herrBez Jan 16, 2025
8ccb2dc
Merge branch 'main' into wmi
herrBez Jan 16, 2025
df56ec6
Run make updates BEATS=metricbeat
herrBez Jan 16, 2025
cf9b2f6
Get rid of duplicated rawResult.Clear()
herrBez Jan 16, 2025
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
93 changes: 62 additions & 31 deletions NOTICE.txt
Original file line number Diff line number Diff line change
Expand Up @@ -16404,6 +16404,37 @@ OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.


--------------------------------------------------------------------------------
Dependency : github.com/go-ole/go-ole
Version: v1.2.6
Licence type (autodetected): MIT
--------------------------------------------------------------------------------

Contents of probable licence file $GOMODCACHE/github.com/go-ole/go-ole@v1.2.6/LICENSE:

The MIT License (MIT)

Copyright © 2013-2017 Yasuhiro Matsumoto, <mattn.jp@gmail.com>

Permission is hereby granted, free of charge, to any person obtaining a copy of
this software and associated documentation files (the “Software”), to deal in
the Software without restriction, including without limitation the rights to
use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies
of the Software, and to permit persons to whom the Software is furnished to do
so, subject to the following conditions:

The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.


--------------------------------------------------------------------------------
Dependency : github.com/go-sql-driver/mysql
Version: v1.6.0
Expand Down Expand Up @@ -20790,6 +20821,37 @@ THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.


--------------------------------------------------------------------------------
Dependency : github.com/microsoft/wmi
Version: v0.25.1
Licence type (autodetected): MIT
--------------------------------------------------------------------------------

Contents of probable licence file $GOMODCACHE/github.com/microsoft/wmi@v0.25.1/LICENSE:

MIT License

Copyright (c) Microsoft Corporation. All rights reserved.

Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:

The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE


--------------------------------------------------------------------------------
Dependency : github.com/miekg/dns
Version: v1.1.61
Expand Down Expand Up @@ -44607,37 +44669,6 @@ IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.


--------------------------------------------------------------------------------
Dependency : github.com/go-ole/go-ole
Version: v1.2.6
Licence type (autodetected): MIT
--------------------------------------------------------------------------------

Contents of probable licence file $GOMODCACHE/github.com/go-ole/go-ole@v1.2.6/LICENSE:

The MIT License (MIT)

Copyright © 2013-2017 Yasuhiro Matsumoto, <mattn.jp@gmail.com>

Permission is hereby granted, free of charge, to any person obtaining a copy of
this software and associated documentation files (the “Software”), to deal in
the Software without restriction, including without limitation the rights to
use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies
of the Software, and to permit persons to whom the Software is furnished to do
so, subject to the following conditions:

The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.


--------------------------------------------------------------------------------
Dependency : github.com/go-openapi/jsonpointer
Version: v0.20.2
Expand Down
3 changes: 2 additions & 1 deletion go.mod
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,7 @@ require (
github.com/elastic/toutoumomoma v0.0.0-20240626215117-76e39db18dfb
github.com/foxcpp/go-mockdns v0.0.0-20201212160233-ede2f9158d15
github.com/go-ldap/ldap/v3 v3.4.6
github.com/go-ole/go-ole v1.2.6
github.com/gofrs/uuid/v5 v5.2.0
github.com/golang-jwt/jwt/v5 v5.2.1
github.com/google/cel-go v0.19.0
Expand All @@ -202,6 +203,7 @@ require (
github.com/klauspost/compress v1.17.11
github.com/meraki/dashboard-api-go/v3 v3.0.9
github.com/microsoft/go-mssqldb v1.7.2
github.com/microsoft/wmi v0.25.1
github.com/open-telemetry/opentelemetry-collector-contrib/exporter/elasticsearchexporter v0.114.0
github.com/otiai10/copy v1.12.0
github.com/pierrec/lz4/v4 v4.1.21
Expand Down Expand Up @@ -306,7 +308,6 @@ require (
github.com/go-logfmt/logfmt v0.6.0 // indirect
github.com/go-logr/logr v1.4.2 // indirect
github.com/go-logr/stdr v1.2.2 // indirect
github.com/go-ole/go-ole v1.2.6 // indirect
github.com/go-openapi/jsonpointer v0.20.2 // indirect
github.com/go-openapi/jsonreference v0.20.4 // indirect
github.com/go-openapi/swag v0.22.9 // indirect
Expand Down
2 changes: 2 additions & 0 deletions go.sum
Original file line number Diff line number Diff line change
Expand Up @@ -726,6 +726,8 @@ github.com/mattn/go-runewidth v0.0.9/go.mod h1:H031xJmbD/WCDINGzjvQ9THkh0rPKHF+m
github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
github.com/microsoft/go-mssqldb v1.7.2 h1:CHkFJiObW7ItKTJfHo1QX7QBBD1iV+mn1eOyRP3b/PA=
github.com/microsoft/go-mssqldb v1.7.2/go.mod h1:kOvZKUdrhhFQmxLZqbwUV0rHkNkZpthMITIb2Ko1IoA=
github.com/microsoft/wmi v0.25.1 h1:sQv9hCEHtW5K6yEVL78T6XGRMGxk4aTpcJwCiB5rLN0=
github.com/microsoft/wmi v0.25.1/go.mod h1:1zbdSF0A+5OwTUII5p3hN7/K6KF2m3o27pSG6Y51VU8=
github.com/miekg/dns v1.1.22/go.mod h1:bPDLeHnStXmXAq1m/Ch/hvfNHr14JKNPMBo3VZKjuso=
github.com/miekg/dns v1.1.61 h1:nLxbwF3XxhwVSm8g9Dghm9MHPaUZuqhPiGL+675ZmEs=
github.com/miekg/dns v1.1.61/go.mod h1:mnAarhS3nWaW+NVP2wTkYVIZyHNJ098SJZUki3eykwQ=
Expand Down
6 changes: 6 additions & 0 deletions metricbeat/docs/fields.asciidoc
Original file line number Diff line number Diff line change
Expand Up @@ -69179,6 +69179,12 @@ format: duration

--

[float]
=== wmi

wmi


[[exported-fields-zookeeper]]
== ZooKeeper fields

Expand Down
27 changes: 26 additions & 1 deletion metricbeat/docs/modules/windows.asciidoc
Original file line number Diff line number Diff line change
Expand Up @@ -52,7 +52,28 @@ metricbeat.modules:
metricsets: ["service"]
enabled: true
period: 60s
----

- module: windows
metricsets: ["wmi"]
period: 60s
wmi:
include_null: false # Exclude fields with null values from the output
include_queries: false # Do not include the query string in the output
include_empty_string: false # Exclude fields with empty string values from the output
warning_threshold: 30s # Maximum time to wait for a query result before logging a warning
# Default namespace for queries can be specified here. Uncomment if needed. Default is root\\cimv2
# namespace: "root\\cimv2"
queries:
- class: Win32_OperatingSystem # FROM: Class to fetch
fields: # SELECT: Fields to retrieve for this WMI class. Omit the setting to fetch all properties
- FreePhysicalMemory
- FreeSpaceInPagingFiles
- FreeVirtualMemory
- LocalDateTime
- NumberOfUsers
where: "" # Optional WHERE clause to filter query results
# Namespace for this specific query. Uncomment to override the default namespace.
# namespace: "root\\cimv2"----

[float]
=== Metricsets
Expand All @@ -63,8 +84,12 @@ The following metricsets are available:

* <<metricbeat-metricset-windows-service,service>>

* <<metricbeat-metricset-windows-wmi,wmi>>

include::windows/perfmon.asciidoc[]

include::windows/service.asciidoc[]

include::windows/wmi.asciidoc[]

:edit_url!:
28 changes: 28 additions & 0 deletions metricbeat/docs/modules/windows/wmi.asciidoc
Original file line number Diff line number Diff line change
@@ -0,0 +1,28 @@
////
This file is generated! See scripts/mage/docs_collector.go
////
:edit_url: https://github.com/elastic/beats/edit/main/metricbeat/module/windows/wmi/_meta/docs.asciidoc


[[metricbeat-metricset-windows-wmi]]
=== Windows wmi metricset

beta[]

include::../../../module/windows/wmi/_meta/docs.asciidoc[]


:edit_url:

==== Fields

For a description of each field in the metricset, see the
<<exported-fields-windows,exported fields>> section.

Here is an example document generated by this metricset:

[source,json]
----
include::../../../module/windows/wmi/_meta/data.json[]
----
:edit_url!:
3 changes: 2 additions & 1 deletion metricbeat/docs/modules_list.asciidoc
Original file line number Diff line number Diff line change
Expand Up @@ -330,8 +330,9 @@ This file is generated! See scripts/mage/docs_collector.go
|<<metricbeat-metricset-vsphere-resourcepool,resourcepool>> beta[]
|<<metricbeat-metricset-vsphere-virtualmachine,virtualmachine>>
|<<metricbeat-module-windows,Windows>> |image:./images/icon-yes.png[Prebuilt dashboards are available] |
.2+| .2+| |<<metricbeat-metricset-windows-perfmon,perfmon>>
.3+| .3+| |<<metricbeat-metricset-windows-perfmon,perfmon>>
|<<metricbeat-metricset-windows-service,service>>
|<<metricbeat-metricset-windows-wmi,wmi>> beta[]
|<<metricbeat-module-zookeeper,ZooKeeper>> |image:./images/icon-yes.png[Prebuilt dashboards are available] |
.3+| .3+| |<<metricbeat-metricset-zookeeper-connection,connection>>
|<<metricbeat-metricset-zookeeper-mntr,mntr>>
Expand Down
1 change: 1 addition & 0 deletions metricbeat/include/list_common.go

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

21 changes: 21 additions & 0 deletions metricbeat/metricbeat.reference.yml
Original file line number Diff line number Diff line change
Expand Up @@ -1091,6 +1091,27 @@ metricbeat.modules:
enabled: true
period: 60s

- module: windows
metricsets: ["wmi"]
period: 60s
wmi:
include_null: false # Exclude fields with null values from the output
include_queries: false # Do not include the query string in the output
include_empty_string: false # Exclude fields with empty string values from the output
warning_threshold: 30s # Maximum time to wait for a query result before logging a warning
# Default namespace for queries can be specified here. Uncomment if needed. Default is root\\cimv2
# namespace: "root\\cimv2"
queries:
- class: Win32_OperatingSystem # FROM: Class to fetch
fields: # SELECT: Fields to retrieve for this WMI class. Omit the setting to fetch all properties
- FreePhysicalMemory
- FreeSpaceInPagingFiles
- FreeVirtualMemory
- LocalDateTime
- NumberOfUsers
where: "" # Optional WHERE clause to filter query results
# Namespace for this specific query. Uncomment to override the default namespace.
# namespace: "root\\cimv2"
#------------------------------ ZooKeeper Module ------------------------------
- module: zookeeper
enabled: true
Expand Down
22 changes: 22 additions & 0 deletions metricbeat/module/windows/_meta/config.reference.yml
Original file line number Diff line number Diff line change
Expand Up @@ -17,3 +17,25 @@
metricsets: ["service"]
enabled: true
period: 60s

- module: windows
metricsets: ["wmi"]
period: 60s
wmi:
include_null: false # Exclude fields with null values from the output
include_queries: false # Do not include the query string in the output
include_empty_string: false # Exclude fields with empty string values from the output
warning_threshold: 30s # Maximum time to wait for a query result before logging a warning
# Default namespace for queries can be specified here. Uncomment if needed. Default is root\\cimv2
# namespace: "root\\cimv2"
queries:
- class: Win32_OperatingSystem # FROM: Class to fetch
fields: # SELECT: Fields to retrieve for this WMI class. Omit the setting to fetch all properties
- FreePhysicalMemory
- FreeSpaceInPagingFiles
- FreeVirtualMemory
- LocalDateTime
- NumberOfUsers
where: "" # Optional WHERE clause to filter query results
# Namespace for this specific query. Uncomment to override the default namespace.
# namespace: "root\\cimv2"
19 changes: 19 additions & 0 deletions metricbeat/module/windows/_meta/config.yml
Original file line number Diff line number Diff line change
Expand Up @@ -15,3 +15,22 @@
# field: cpu_usage
# format: "float"
# - name: "Thread Count"

# - module: windows
# metricsets:
# - wmi
# period: 60s
# wmi:
# warning_threshold: 30s
# # namespace: "root\\cimv2"
# queries:
# - class: Win32_OperatingSystem # FROM: Class to fetch
# fields: # SELECT: Fields to retrieve for this WMI class. Omit the setting to fetch all properties
# - FreePhysicalMemory
# - FreeSpaceInPagingFiles
# - FreeVirtualMemory
# - LocalDateTime
# - NumberOfUsers
# where: "" # Optional WHERE clause to filter query results
# # Namespace for this specific query. Uncomment to override the default namespace.
# # namespace: "root\\cimv2"
2 changes: 1 addition & 1 deletion metricbeat/module/windows/fields.go

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

27 changes: 27 additions & 0 deletions metricbeat/module/windows/wmi/_meta/data.json
Original file line number Diff line number Diff line change
@@ -0,0 +1,27 @@
{
"@timestamp": "2024-12-12T15:46:39.622Z",
"event": {
"dataset": "windows.wmi",
"duration": 58982500,
"module": "windows"
},
"metricset": {
"name": "wmi",
"period": 10000
},
"service": {
"type": "windows"
},
"windows": {
"wmi": {
"FreePhysicalMemory": 7537796,
"FreeSpaceInPagingFiles": 2257908,
"FreeVirtualMemory": 9694064,
"LocalDateTime": "2024-12-12T15:46:39.62Z",
"NumberOfUsers": 1,
"class": "Win32_OperatingSystem",
"host": "localhost",
"namespace": "root\\cimv2"
}
}
}
Loading
Loading