plaso.multi_processing package¶

Submodules¶

plaso.multi_processing.analysis_process module¶

plaso.multi_processing.base_process module¶

Base class for a process used in multi-processing.

class plaso.multi_processing.base_process.MultiProcessBaseProcess(processing_configuration, enable_sigsegv_handler=False, **kwargs)[source]¶

Bases: multiprocessing.context.Process

Multi-processing process interface.

rpc_port¶

port number of the process status RPC server.

Type: int

SignalAbort()[source]¶: Signals the process to abort.

name¶

process name.

Type: str

run()[source]¶: Runs the process.

plaso.multi_processing.engine module¶

plaso.multi_processing.logger module¶

The multi-processing sub module logger.

plaso.multi_processing.multi_process_queue module¶

A multiprocessing-backed queue.

class plaso.multi_processing.multi_process_queue.MultiProcessingQueue(maximum_number_of_queued_items=0, timeout=None)[source]¶

Bases: plaso.engine.plaso_queue.Queue

Multi-processing queue.

Close(abort=False)[source]¶

Closes the queue.

This needs to be called from any process or thread putting items onto the queue.

Parameters: abort (Optional[bool]) – True if the close was issued on abort.

Empty()[source]¶: Empties the queue.

IsEmpty()[source]¶: Determines if the queue is empty.

Open()[source]¶: Opens the queue.

PopItem()[source]¶

Pops an item off the queue.

Returns

item from the queue.

Return type

object

Raises

QueueClose – if the queue has already been closed.
QueueEmpty – if no item could be retrieved from the queue within the specified timeout.

PushItem(item, block=True)[source]¶

Pushes an item onto the queue.

Parameters

item (object) – item to add.
block (Optional[bool]) – True to block the process when the queue is full.

Raises

QueueFull – if the item could not be pushed the queue because it’s full.

plaso.multi_processing.plaso_xmlrpc module¶

XML RPC server and client.

class plaso.multi_processing.plaso_xmlrpc.ThreadedXMLRPCServer(callback)[source]¶

Bases: plaso.multi_processing.rpc.RPCServer

Threaded XML RPC server.

Start(hostname, port)[source]¶

Starts the process status RPC server.

Parameters

hostname (str) – hostname or IP address to connect to for requests.
port (int) – port to connect to for requests.

Returns

True if the RPC server was successfully started.

Return type

bool

Stop()[source]¶: Stops the process status RPC server.

class plaso.multi_processing.plaso_xmlrpc.XMLProcessStatusRPCClient[source]¶

Bases: plaso.multi_processing.plaso_xmlrpc.XMLRPCClient

XML process status RPC client.

class plaso.multi_processing.plaso_xmlrpc.XMLProcessStatusRPCServer(callback)[source]¶

Bases: plaso.multi_processing.plaso_xmlrpc.ThreadedXMLRPCServer

XML process status threaded RPC server.

class plaso.multi_processing.plaso_xmlrpc.XMLRPCClient[source]¶

Bases: plaso.multi_processing.rpc.RPCClient

XML RPC client.

CallFunction()[source]¶: Calls the function via RPC.

Close()[source]¶: Closes the RPC communication channel to the server.

Open(hostname, port)[source]¶

Opens a RPC communication channel to the server.

Parameters

hostname (str) – hostname or IP address to connect to for requests.
port (int) – port to connect to for requests.

Returns

True if the communication channel was established.

Return type

bool

plaso.multi_processing.psort module¶

plaso.multi_processing.rpc module¶

The RPC client and server interface.

class plaso.multi_processing.rpc.RPCClient[source]¶

Bases: object

RPC client interface.

CallFunction()[source]¶: Calls the function via RPC.

Close()[source]¶: Closes the RPC communication channel to the server.

Open(hostname, port)[source]¶

Opens a RPC communication channel to the server.

Parameters

hostname (str) – hostname or IP address to connect to for requests.
port (int) – port to connect to for requests.

Returns

True if the communication channel was established.

Return type

bool

class plaso.multi_processing.rpc.RPCServer(callback)[source]¶

Bases: object

RPC server interface.

Start(hostname, port)[source]¶

Starts the RPC server.

Parameters

hostname (str) – hostname or IP address to connect to for requests.
port (int) – port to connect to for requests.

Returns

True if the RPC server was successfully started.

Return type

bool

Stop()[source]¶: Stops the RPC server.

plaso.multi_processing.task_engine module¶

plaso.multi_processing.task_manager module¶

The task manager.

class plaso.multi_processing.task_manager.TaskManager[source]¶

Bases: object

Manages tasks and tracks their completion and status.

A task being tracked by the manager must be in exactly one of the following states:

abandoned: a task assumed to be abandoned because a tasks that has been
queued or was processing exceeds the maximum inactive time.
merging: a task that is being merged by the engine.
pending_merge: the task has been processed and is ready to be merged with
the session storage.
processed: a worker has completed processing the task, but it is not ready
to be merged into the session storage.
processing: a worker is processing the task.
queued: the task is waiting for a worker to start processing it. It is also
possible that a worker has already completed the task, but no status update was collected from the worker while it processed the task.

Once the engine reports that a task is completely merged, it is removed from the task manager.

Tasks are considered “pending” when there is more work that needs to be done to complete these tasks. Pending applies to tasks that are: * not abandoned; * abandoned, but need to be retried.

Abandoned tasks without corresponding retry tasks are considered “failed” when the foreman is done processing.

CheckTaskToMerge(task)[source]¶

Checks if the task should be merged.

Parameters: task (Task) – task.
Returns: True if the task should be merged.
Return type: bool
Raises: KeyError – if the task was not queued, processing or abandoned.

CompleteTask(task)[source]¶

Completes a task.

The task is complete and can be removed from the task manager.

Parameters: task (Task) – task.
Raises: KeyError – if the task was not merging.

CreateRetryTask()[source]¶

Creates a task that to retry a previously abandoned task.

Returns

a task that was abandoned but should be retried or None if there are: no abandoned tasks that should be retried.

Return type

Task

CreateTask(session_identifier)[source]¶

Creates a task.

Parameters: session_identifier (str) – the identifier of the session the task is part of.
Returns: task attribute container.
Return type: Task

GetFailedTasks()[source]¶

Retrieves all failed tasks.

Failed tasks are tasks that were abandoned and have no retry task once the foreman is done processing.

Returns: tasks.
Return type: list[Task]

GetProcessedTaskByIdentifier(task_identifier)[source]¶

Retrieves a task that has been processed.

Parameters: task_identifier (str) – unique identifier of the task.
Returns: a task that has been processed.
Return type: Task
Raises: KeyError – if the task was not processing, queued or abandoned.

GetStatusInformation()[source]¶

Retrieves status information about the tasks.

Returns: tasks status information.
Return type: TasksStatus

GetTaskPendingMerge(current_task)[source]¶

Retrieves the first task that is pending merge or has a higher priority.

This function will check if there is a task with a higher merge priority than the current_task being merged. If so, that task with the higher priority is returned.

Parameters

current_task (Task) – current task being merged or None if no such task.

Returns

the next task to merge or None if there is no task pending merge or: with a higher priority.

Return type

Task

HasPendingTasks()[source]¶

Determines if there are tasks running or in need of retrying.

Returns

True if there are tasks that are active, ready to be merged or: need to be retried.

Return type

bool

RemoveTask(task)[source]¶

Removes an abandoned task.

Parameters: task (Task) – task.
Raises: KeyError – if the task was not abandoned or the task was abandoned and was not retried.

SampleTaskStatus(task, status)[source]¶

Takes a sample of the status of the task for profiling.

Parameters

task (Task) – a task.
status (str) – status.

StartProfiling(configuration, identifier)[source]¶

Starts profiling.

Parameters

configuration (ProfilingConfiguration) – profiling configuration.
identifier (str) – identifier of the profiling session used to create the sample filename.

StopProfiling()[source]¶: Stops profiling.

UpdateTaskAsPendingMerge(task)[source]¶

Updates the task manager to reflect the task is ready to be merged.

Parameters: task (Task) – task.
Raises: KeyError – if the task was not queued, processing or abandoned, or the task was abandoned and has a retry task.

UpdateTaskAsProcessingByIdentifier(task_identifier)[source]¶

Updates the task manager to reflect the task is processing.

Parameters: task_identifier (str) – unique identifier of the task.
Raises: KeyError – if the task is not known to the task manager.

plaso.multi_processing package¶

Submodules¶

plaso.multi_processing.analysis_process module¶

plaso.multi_processing.base_process module¶

plaso.multi_processing.engine module¶

plaso.multi_processing.logger module¶

plaso.multi_processing.multi_process_queue module¶

plaso.multi_processing.plaso_xmlrpc module¶

plaso.multi_processing.psort module¶

plaso.multi_processing.rpc module¶

plaso.multi_processing.task_engine module¶

plaso.multi_processing.task_manager module¶

plaso.multi_processing.worker_process module¶

Module contents¶