|
|
||
|---|---|---|
| .github | ||
| bin | ||
| ci | ||
| config | ||
| data | ||
| docs | ||
| gradle/wrapper | ||
| lib | ||
| logstash-core | ||
| logstash-core-plugin-api | ||
| modules | ||
| pkg | ||
| qa | ||
| rakelib | ||
| spec | ||
| tools | ||
| .dockerignore | ||
| .gitignore | ||
| .ruby-version | ||
| build.gradle | ||
| CONTRIBUTING.md | ||
| CONTRIBUTORS | ||
| Dockerfile | ||
| Dockerfile.base | ||
| dripmain.rb | ||
| Gemfile.jruby-1.9.lock.release | ||
| Gemfile.template | ||
| gradle.properties | ||
| gradlew | ||
| gradlew.bat | ||
| LICENSE | ||
| NOTICE.TXT | ||
| Rakefile | ||
| README.md | ||
| ROADMAP.md | ||
| settings.gradle | ||
| STYLE.md | ||
| versions.yml | ||
Logstash
Build status
| Test | master | 5.0 | 2.4 |
|---|---|---|---|
| core |  |
 |
 |
Logstash is part of the Elastic Stack along with Beats, Elasticsearch and Kibana. Logstash is an open source, server-side data processing pipeline that ingests data from a multitude of sources simultaneously, transforms it, and then sends it to your favorite "stash." (Ours is Elasticsearch, naturally.). Logstash has over 200 plugins, and you can write your own very easily as well.
The license is Apache 2.0, meaning you are pretty much free to use it however you want in whatever way.
For more info, see https://www.elastic.co/products/logstash
Documentation and Getting Started
You can find the documentation and getting started guides for Logstash on the elastic.co site
For information about building the documentation, see the README in https://github.com/elastic/docs
Downloads
You can download Logstash binaries, as well as debian/rpm packages for the supported platforms, from downloads page.
Need Help?
- Logstash Forum
- Logstash Documentation
- #logstash on freenode IRC
- Logstash Product Information
- Elastic Support
Logstash Plugins
Logstash plugins are hosted in separate repositories under the logstash-plugins github organization. Each plugin is a self-contained Ruby gem which gets published to RubyGems.org.
Writing your own Plugin
Logstash is known for its extensibility. There are hundreds of plugins for Logstash and you can write your own very easily! For more info on developing and testing these plugins, please see the working with plugins section
Plugin Issues and Pull Requests
Please open new issues and pull requests for plugins under its own repository
For example, if you have to report an issue/enhancement for the Elasticsearch output, please do so here.
Logstash core will continue to exist under this repository and all related issues and pull requests can be submitted here.
Developing Logstash Core
Prerequisites
- Install JDK version 8
- Install JRuby 1.7.x.
- Install
rakeandbundlertool usinggem install rakeandgem install bundlerrespectively.
On Windows make sure to set the JAVA_HOME environment variable to the path to your JDK installation directory. For example set JAVA_HOME=<JDK_PATH>
Vendored JRuby: Logstash uses JRuby which gets embedded in the vendor/jruby/ directory. It is recommended to use a Ruby version manager such as RVM or rbenv.
- To run Logstash from the repo you must first bootstrap the environment:
rake bootstrap
- You can then use
bin/logstashto start Logstash, but there are no plugins installed. Logstash ships with default plugins. To install those, you can run:
rake plugin:install-default
- Alternatively, you can only install the core plugins required to run the tests
rake test:install-core
To verify your environment, run
bin/logstash -e 'input { stdin { } } output { stdout {} }'
This should start Logstash with stdin input waiting for you to enter an event
hello world
2016-11-11T01:22:14.405+0000 0.0.0.0 hello world
Drip Launcher
Drip is a tool that solves the slow JVM startup problem while developing Logstash. The drip script is intended to be a drop-in replacement for the java command. We recommend using drip during development, in particular for running tests. Using drip, the first invocation of a command will not be faster but the subsequent commands will be swift.
To tell logstash to use drip, either set the USE_DRIP=1 environment variable or set JAVACMD=`which drip`.
Example:
USE_DRIP=1 bin/rspec
Caveats
Drip does not work with STDIN. You cannot use drip for running configs which use the stdin plugin.
Testing
For testing you can use the test rake tasks and the bin/rspec command, see instructions below. Note that the bin/logstash rspec command has been replaced by bin/rspec.
Core tests
1- In order to run the core tests, a small set of plugins must first be installed:
rake test:install-core
2- To run the logstash core tests you can use the rake task:
rake test:core
or use the rspec tool to run all tests or run a specific test:
bin/rspec
bin/rspec spec/foo/bar_spec.rb
Plugins tests
To run the tests of all currently installed plugins:
rake test:plugin
You can install the default set of plugins included in the logstash package or all plugins:
rake test:install-default
rake test:install-all
Note that if a plugin is installed using the plugin manager bin/logstash-plugin install ... do not forget to also install the plugins development dependencies using the following command after the plugin installation:
bin/logstash-plugin install --development
Building Artifacts
You can build a Logstash snapshot package as tarball or zip file
rake artifact:tar
rake artifact:zip
This will create the artifact LS_HOME/build directory
You can also build .rpm and .deb, but the fpm tool is required.
rake artifact:rpm
rake artifact:deb
Project Principles
- Community: If a newbie has a bad time, it's a bug.
- Software: Make it work, then make it right, then make it fast.
- Technology: If it doesn't do a thing today, we can make it do it tomorrow.
Contributing
All contributions are welcome: ideas, patches, documentation, bug reports, complaints, and even something you drew up on a napkin.
Programming is not a required skill. Whatever you've seen about open source and maintainers or community members saying "send patches or die" - you will not see that here.
It is more important to me that you are able to contribute.
For more information about contributing, see the CONTRIBUTING file.