Commit Graph

51 Commits

Author SHA1 Message Date
Thomas Gerbet
f29911cd75 elk7: 7.17.9 -> 7.17.10
Fixes CVE-2023-31413, CVE-2023-26486 and CVE-2023-26487.

https://discuss.elastic.co/t/elastic-stack-8-7-0-7-17-10-security-updates/332327

The non official analysis-lemmagen plugin has not yet been released for ES 7.17.10.
It is marked as broken in the meantime.
2023-05-20 00:33:51 +02:00
Thomas Gerbet
b41c49ee2d elk7: 7.17.4 -> 7.17.9
Fixes CVE-2022-38779.

Advisory:
https://discuss.elastic.co/t/kibana-7-17-9-and-8-6-2-security-update/325782

Changelogs:
https://www.elastic.co/guide/en/welcome-to-elastic/7.17/new.html
2023-04-26 23:42:46 +02:00
ajs124
426fbcb5a6 *beat6: remove 2023-04-04 10:32:26 +02:00
Thomas Gerbet
66444200f4 metricbeat7: fix passthru.tests 2023-02-06 22:01:39 +02:00
Dan Fithian
021f4cac52 beats: add dfithian as maintainer 2022-07-18 15:20:34 -04:00
PedroHLC ☭
8b4c4bf34f elk7: 7.16.1 -> 7.17.4 2022-06-03 11:11:06 -04:00
ajs124
63828897eb packetbeat: remove after being marked broken for over two years
It was marked in commit 5aa4b19 by Linus Heckemann on 2019-10-07 (commited on 2019-10-08)
2022-04-03 16:14:59 +01:00
zowoq
2fe2f500d4 beats7: update vendorSha256 2022-01-30 20:34:40 +10:00
Kim Lindberger
ebaa226853
elk7: 7.11.1 -> 7.16.1, 6.8.3 -> 6.8.21 + add filebeat module and tests (#150879)
* elk7: 7.11.1 -> 7.16.1

* nixosTests.elk: Improve reliability and compatibility with ELK 7.x

- Use comparisons in jq instead of grepping
- Match for `.hits.total.value` if version >= 7, otherwise it always
  passes
- Make curl fail if requests fails

* nixos/filebeat: Add initial module and test

Filebeat is an open source file harvester, mostly used to fetch logs
files and feed them into logstash.

This module can be used instead of journalbeat if used with
`filebeat7` and configured with the `journald` input.

* python3Packages.parsedmarc.tests: Fix breakage

- Don't use the deprecated elasticsearch7-oss package
- Improve jq query robustness and add tracing

* rl-2205: Note the addition of the filebeat service

* elk6: 6.8.3 -> 6.8.21

The latest version includes a fix for CVE-2021-44228.

* nixos/journalbeat: Add a loose dependency on elasticsearch

Avoid unnecssary back-off when elasticsearch is running on the same
host.
2021-12-17 00:20:52 +09:00
Andrew Childs
98469f2c55 beats7: 7.5.1 -> 7.11.1 2021-11-03 11:37:04 +01:00
Robert Hensing
68a8d86415 es *beat6: Fix build on aarch64 2021-09-23 18:42:29 +02:00
happysalada
59e34733b7 beats: buildGoPackage -> buildGoModule 2021-08-31 09:06:13 +09:00
happysalada
f9321de0f3 elk7: 7.5.1 -> 7.10.2
Update pkgs/development/tools/misc/kibana/7.x.nix

Co-authored-by: Mihai Fufezan <36706276+fufexan@users.noreply.github.com>

Update pkgs/servers/search/elasticsearch/7.x.nix

Co-authored-by: Mihai Fufezan <36706276+fufexan@users.noreply.github.com>

Update pkgs/servers/search/elasticsearch/7.x.nix

Co-authored-by: Mihai Fufezan <36706276+fufexan@users.noreply.github.com>

Update pkgs/development/tools/misc/kibana/7.x.nix

Co-authored-by: Mihai Fufezan <36706276+fufexan@users.noreply.github.com>
2021-08-31 09:06:13 +09:00
happysalada
8b2cecc3ce beats: nixpkgs-fmt 2021-08-31 09:06:13 +09:00
Robert Hensing
5699d027ec nixos/metricbeat: init 2021-05-31 10:42:08 +02:00
Pavol Rusnak
a6ce00c50c
treewide: remove stdenv where not needed 2021-01-25 18:31:47 +01:00
Ben Siraphob
badf51221d treewide: stdenv.lib -> lib 2021-01-16 17:58:11 +07:00
Profpatsch
4a7f99d55d treewide: with stdenv.lib; in meta -> with lib;
Part of: https://github.com/NixOS/nixpkgs/issues/108938

meta = with stdenv.lib;

is a widely used pattern. We want to slowly remove
the `stdenv.lib` indirection and encourage people
to use `lib` directly. Thus let’s start with the meta
field.

This used a rewriting script to mostly automatically
replace all occurances of this pattern, and add the
`lib` argument to the package header if it doesn’t
exist yet.

The script in its current form is available at
https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix
2021-01-11 10:38:22 +01:00
Florian Klink
05a61fc30a filebeat7: use lib.getLib systemd instead of systemd.lib
This will pick the `lib` output if it exists, otherwise default to `out`.
2020-08-13 20:51:41 +02:00
Florian Klink
8ccbb4747e filebeat6: use lib.getLib systemd instead of systemd.lib
This will pick the `lib` output if it exists, otherwise default to `out`.
2020-08-13 20:51:41 +02:00
zowoq
b5dc07a4b4 treewide: use $out instead of $bin with buildGoPackage 2020-04-28 20:30:29 +10:00
Michael Reilly
84cf00f980
treewide: Per RFC45, remove all unquoted URLs 2020-04-10 17:54:53 +01:00
vasile luta
620297784e packetbeat7: 7.3.1 -> 7.5.1 2020-01-06 15:24:25 +02:00
Linus Heckemann
5aa4b19946 treewide: mark some broken packages as broken
Refs:
e675498026
1e9cc5b984
793a2fe1e8
c19cf65261
f6544d618f
2019-10-08 17:14:26 +02:00
adisbladis
723148f92e
elastic7: 7.0.1 -> 7.3.1 2019-09-07 12:48:42 +01:00
adisbladis
3ab433df34
elastic6: 6.7.2 -> 6.8.3 2019-09-07 12:43:40 +01:00
adisbladis
bded2f69d3
beats-5.*: Drop EOL packages 2019-09-06 14:30:49 +01:00
Bas van Dijk
1a0818e941 elk6: 6.7.1 -> 6.7.2 2019-05-10 23:32:44 +02:00
Bas van Dijk
8673d82bc1 elk5: 5.6.9 -> 5.6.16 2019-05-10 22:46:12 +02:00
Bas van Dijk
42c9c6df73 journalbeat7: fix binary by setting RPATH to systemd using patchelf 2019-05-10 15:36:53 +02:00
Bas van Dijk
42f357d1ac journalbeat6: fix binary by setting RPATH to systemd using patchelf 2019-05-10 15:29:35 +02:00
Bas van Dijk
78cb9b7898 elk: 7.0.0 -> 7.0.1 2019-05-09 11:37:48 +02:00
Bas van Dijk
13352f28d2 elk7: init at 7.0.0
This adds the following new packages:

+ elasticsearch7
+ elasticsearch7-oss
+ logstash7
+ logstash7-oss
+ kibana7
+ kibana7-oss
+ filebeat7
+ heartbeat7
+ metricbeat7
+ packetbeat7
+ journalbeat7

The default major version of the ELK stack stays at 6. We should
probably set it to 7 in a next commit.
2019-04-14 21:39:46 +02:00
Bas van Dijk
7062a073e8 elk: 6.5.1 -> 6.7.1 2019-04-09 12:34:01 +02:00
Bas van Dijk
fbf0efc6a7 elk: 6.3.2 -> 6.5.1 2018-12-01 12:47:12 +01:00
Jörg Thalheim
d50253237e beats: upgrade default from v5 to v6 2018-08-03 12:06:58 +01:00
Bas van Dijk
ebcdb822f8 elk: 6.2.4 -> 6.3.2
* The ELK stack is upgraded to 6.3.2.

* `elasticsearch6`, `logstash6` and `kibana6` now come with X-Pack which is
  a suite of additional features. These are however licensed under the unfree
  "Elastic License".

* Fortunately they also provide OSS versions which are now packaged
  under: `elasticsearch6-oss`, `logstash6-oss` and `kibana6-oss`.
  Note that the naming of the attributes is consistent with upstream.

* The test `nix-build nixos/tests/elk.nix -A ELK-6` will test the OSS
  version by default. You can also run the test on the unfree ELK using:
  `NIXPKGS_ALLOW_UNFREE=1 nix-build nixos/tests/elk.nix -A ELK-6 --arg enableUnfree true`
2018-07-28 00:01:31 +02:00
Bas van Dijk
9c8fa9729c elk6: 6.2.3 -> 6.2.4 2018-04-18 00:38:48 +02:00
Bas van Dijk
1593ff3f51 elk5: 5.6.8 -> 5.6.9 2018-04-18 00:38:48 +02:00
Bas van Dijk
54e6c0e7ae elk6: 6.2.2 -> 6.2.3 2018-04-18 00:32:57 +02:00
Bas van Dijk
b3e94a2385 elk6: 6.1.2 -> 6.2.2 2018-04-18 00:32:57 +02:00
Bas van Dijk
390abceb2b elk5: 5.6.6 -> 5.6.8 2018-04-18 00:32:57 +02:00
Bas van Dijk
af47db6a3a elk: 5.6.5 -> 5.6.6
Security fix for CVE-2018-3818.

https://www.elastic.co/guide/en/kibana/5.6/release-notes-5.6.6.html
https://www.elastic.co/guide/en/logstash/5.6/logstash-5-6-6.html
2018-01-17 02:11:19 +01:00
Bas van Dijk
e842ffbb33 elk: 6.1.1 -> 6.1.2
Contains a security fix for kibana: CVE-2018-3818.

https://www.elastic.co/guide/en/elasticsearch/reference/current/release-notes-6.1.2.html
https://www.elastic.co/guide/en/logstash/6.1/logstash-6-1-2.html
https://www.elastic.co/guide/en/kibana/6.1/release-notes-6.1.2.html
https://www.elastic.co/guide/en/beats/libbeat/6.1/release-notes-6.1.2.html
2018-01-17 01:29:53 +01:00
Bas van Dijk
e8e88c43f6 elk: 6.1.0 -> 6.1.1 2018-01-02 01:21:55 +01:00
Bas van Dijk
803077ef1c elk: add elasticsearch6, logstash6, kibana6 and the beats at v6.1.0
This change is backwards compatible since the ELK tools at version 5.x
remain unchanged.

The test suite now both tests ELK-5 and ELK-6.
2018-01-02 01:15:29 +01:00
Bas van Dijk
95913d2768 elk: 5.6.1 -> 5.6.5
https://www.elastic.co/guide/en/elasticsearch/reference/5.6/release-notes-5.6.0.html
https://www.elastic.co/guide/en/logstash/5.6/logstash-5-6-5.html
https://www.elastic.co/guide/en/kibana/5.6/release-notes-5.6.5.html
https://www.elastic.co/guide/en/beats/libbeat/5.6/release-notes-5.6.5.html
2018-01-02 01:15:29 +01:00
Bas van Dijk
ea8e7ed1e3 elk: 5.5.2 -> 5.6.1
Release notes:

* https://www.elastic.co/guide/en/elasticsearch/reference/5.6/release-notes-5.6.1.html
* https://www.elastic.co/guide/en/logstash/5.6/logstash-5-6-1.html
* https://www.elastic.co/guide/en/kibana/current/release-notes-5.6.1.html
2017-09-19 10:52:08 +02:00
Bas van Dijk
09bde4a2cd elk: 5.4.2 -> 5.5.2
Release notes:

* https://www.elastic.co/guide/en/elasticsearch/reference/5.5/release-notes-5.5.2.html
* https://www.elastic.co/guide/en/logstash/5.5/logstash-5-5-2.html
* https://www.elastic.co/guide/en/kibana/current/release-notes-5.5.2.html
2017-08-23 01:58:12 +02:00
Bas van Dijk
35e5719fe9 elasticsearch: 5.4.0 -> 5.4.2 2017-06-26 08:47:28 +02:00