plaso.multi_processing package¶

Submodules¶

plaso.multi_processing.analysis_process module¶

plaso.multi_processing.base_process module¶

Base class for a process used in multi-processing.

class plaso.multi_processing.base_process.MultiProcessBaseProcess(processing_configuration, enable_sigsegv_handler=False, **kwargs)[source]¶

Bases: multiprocessing.context.Process

Multi-processing process interface.

rpc_port¶: int – port number of the process status RPC server.

SignalAbort()[source]¶: Signals the process to abort.

name¶: str – process name.

run()[source]¶: Runs the process.

plaso.multi_processing.engine module¶

plaso.multi_processing.logger module¶

The multi-processing sub module logger.

plaso.multi_processing.multi_process_queue module¶

A multiprocessing-backed queue.

class plaso.multi_processing.multi_process_queue.MultiProcessingQueue(maximum_number_of_queued_items=0, timeout=None)[source]¶

Bases: plaso.engine.plaso_queue.Queue

Multi-processing queue.

Close(abort=False)[source]¶

Closes the queue.

This needs to be called from any process or thread putting items onto the queue.

Parameters:	abort (Optional[bool]) – True if the close was issued on abort.

Empty()[source]¶: Empties the queue.

IsEmpty()[source]¶: Determines if the queue is empty.

Open()[source]¶: Opens the queue.

PopItem()[source]¶

Pops an item off the queue.

Returns:	item from the queue.
Return type:	object
Raises:	`QueueClose` – if the queue has already been closed. `QueueEmpty` – if no item could be retrieved from the queue within the specified timeout.

PushItem(item, block=True)[source]¶

Pushes an item onto the queue.

Parameters:	item (object) – item to add. block (Optional[bool]) – True to block the process when the queue is full.
Raises:	`QueueFull` – if the item could not be pushed the queue because it’s full.

plaso.multi_processing.plaso_xmlrpc module¶

XML RPC server and client.

class plaso.multi_processing.plaso_xmlrpc.ThreadedXMLRPCServer(callback)[source]¶

Bases: plaso.multi_processing.rpc.RPCServer

Threaded XML RPC server.

Start(hostname, port)[source]¶

Starts the process status RPC server.

Parameters:	hostname (str) – hostname or IP address to connect to for requests. port (int) – port to connect to for requests.
Returns:	True if the RPC server was successfully started.
Return type:	bool

Stop()[source]¶: Stops the process status RPC server.

class plaso.multi_processing.plaso_xmlrpc.XMLProcessStatusRPCClient[source]¶

Bases: plaso.multi_processing.plaso_xmlrpc.XMLRPCClient

XML process status RPC client.

class plaso.multi_processing.plaso_xmlrpc.XMLProcessStatusRPCServer(callback)[source]¶

Bases: plaso.multi_processing.plaso_xmlrpc.ThreadedXMLRPCServer

XML process status threaded RPC server.

class plaso.multi_processing.plaso_xmlrpc.XMLRPCClient[source]¶

Bases: plaso.multi_processing.rpc.RPCClient

XML RPC client.

CallFunction()[source]¶: Calls the function via RPC.

Close()[source]¶: Closes the RPC communication channel to the server.

Open(hostname, port)[source]¶

Opens a RPC communication channel to the server.

Parameters:	hostname (str) – hostname or IP address to connect to for requests. port (int) – port to connect to for requests.
Returns:	True if the communication channel was established.
Return type:	bool

plaso.multi_processing.psort module¶

plaso.multi_processing.rpc module¶

The RPC client and server interface.

class plaso.multi_processing.rpc.RPCClient[source]¶

Bases: object

RPC client interface.

CallFunction()[source]¶: Calls the function via RPC.

Close()[source]¶: Closes the RPC communication channel to the server.

Open(hostname, port)[source]¶

Opens a RPC communication channel to the server.

Parameters:	hostname (str) – hostname or IP address to connect to for requests. port (int) – port to connect to for requests.
Returns:	True if the communication channel was established.
Return type:	bool

class plaso.multi_processing.rpc.RPCServer(callback)[source]¶

Bases: object

RPC server interface.

Start(hostname, port)[source]¶

Starts the RPC server.

Parameters:	hostname (str) – hostname or IP address to connect to for requests. port (int) – port to connect to for requests.
Returns:	True if the RPC server was successfully started.
Return type:	bool

Stop()[source]¶: Stops the RPC server.

plaso.multi_processing.task_engine module¶

plaso.multi_processing.task_manager module¶

The task manager.

class plaso.multi_processing.task_manager.TaskManager[source]¶

Bases: object

Manages tasks and tracks their completion and status.

A task being tracked by the manager must be in exactly one of the following states:

abandoned: a task assumed to be abandoned because a tasks that has been

queued or was processing exceeds the maximum inactive time.
merging: a task that is being merged by the engine.
pending_merge: the task has been processed and is ready to be merged with

the session storage.
processed: a worker has completed processing the task, but it is not ready

to be merged into the session storage.
processing: a worker is processing the task.
queued: the task is waiting for a worker to start processing it. It is also

possible that a worker has already completed the task, but no status update was collected from the worker while it processed the task.

Once the engine reports that a task is completely merged, it is removed from the task manager.

Tasks are considered “pending” when there is more work that needs to be done to complete these tasks. Pending applies to tasks that are: * not abandoned; * abandoned, but need to be retried.

Abandoned tasks without corresponding retry tasks are considered “failed” when the foreman is done processing.

CheckTaskToMerge(task)[source]¶

Checks if the task should be merged.

Parameters:	task (Task) – task.
Returns:	True if the task should be merged.
Return type:	bool
Raises:	`KeyError` – if the task was not queued, processing or abandoned.

CompleteTask(task)[source]¶

Completes a task.

The task is complete and can be removed from the task manager.

Parameters:	task (Task) – task.
Raises:	`KeyError` – if the task was not merging.

CreateRetryTask()[source]¶

Creates a task that to retry a previously abandoned task.

Returns:	a task that was abandoned but should be retried or None if there are no abandoned tasks that should be retried.
Return type:	Task

CreateTask(session_identifier)[source]¶

Creates a task.

Parameters:	session_identifier (str) – the identifier of the session the task is part of.
Returns:	task attribute container.
Return type:	Task

GetFailedTasks()[source]¶

Retrieves all failed tasks.

Failed tasks are tasks that were abandoned and have no retry task once the foreman is done processing.

Returns:	tasks.
Return type:	list[Task]

GetProcessedTaskByIdentifier(task_identifier)[source]¶

Retrieves a task that has been processed.

Parameters:	task_identifier (str) – unique identifier of the task.
Returns:	a task that has been processed.
Return type:	Task
Raises:	`KeyError` – if the task was not processing, queued or abandoned.

GetStatusInformation()[source]¶

Retrieves status information about the tasks.

Returns:	tasks status information.
Return type:	TasksStatus

GetTaskPendingMerge(current_task)[source]¶

Retrieves the first task that is pending merge or has a higher priority.

This function will check if there is a task with a higher merge priority than the current_task being merged. If so, that task with the higher priority is returned.

Parameters:	current_task (Task) – current task being merged or None if no such task.
Returns:	the next task to merge or None if there is no task pending merge or with a higher priority.
Return type:	Task

HasPendingTasks()[source]¶

Determines if there are tasks running or in need of retrying.

Returns:	True if there are tasks that are active, ready to be merged or need to be retried.
Return type:	bool

RemoveTask(task)[source]¶

Removes an abandoned task.

Parameters:	task (Task) – task.
Raises:	`KeyError` – if the task was not abandoned or the task was abandoned and was not retried.

SampleTaskStatus(task, status)[source]¶

Takes a sample of the status of the task for profiling.

Parameters:	task (Task) – a task. status (str) – status.

StartProfiling(configuration, identifier)[source]¶

Starts profiling.

Parameters:	configuration (ProfilingConfiguration) – profiling configuration. identifier (str) – identifier of the profiling session used to create the sample filename.

StopProfiling()[source]¶: Stops profiling.

UpdateTaskAsPendingMerge(task)[source]¶

Updates the task manager to reflect the task is ready to be merged.

Parameters:	task (Task) – task.
Raises:	`KeyError` – if the task was not queued, processing or abandoned, or the task was abandoned and has a retry task.

UpdateTaskAsProcessingByIdentifier(task_identifier)[source]¶

Updates the task manager to reflect the task is processing.

Parameters:	task_identifier (str) – unique identifier of the task.
Raises:	`KeyError` – if the task is not known to the task manager.

plaso.multi_processing package¶

Submodules¶

plaso.multi_processing.analysis_process module¶

plaso.multi_processing.base_process module¶

plaso.multi_processing.engine module¶

plaso.multi_processing.logger module¶

plaso.multi_processing.multi_process_queue module¶

plaso.multi_processing.plaso_xmlrpc module¶

plaso.multi_processing.psort module¶

plaso.multi_processing.rpc module¶

plaso.multi_processing.task_engine module¶

plaso.multi_processing.task_manager module¶

plaso.multi_processing.worker_process module¶

Module contents¶