opensource/graylog2-server
1
0
Fork 0
mirror of https://github.com/Graylog2/graylog2-server.git synced 2026-03-13 09:32:21 +08:00
Code Issues Packages Projects Releases Wiki Activity
28,381 Commits 400 Branches 498 Tags
rulesCache
Commit Graph

503 Commits

Author SHA1 Message Date
github-actions[bot]
b4b04f2121 Bump to 6.2.0-SNAPSHOT 2024-10-07 12:47:54 +00:00
Jenkins
54e43af9cf [graylog2-server] prepare for next development iteration 2024-10-07 13:49:58 +02:00
Jenkins
b7ffdc6fac [graylog2-server] prepare release 6.1.0-rc.1 2024-10-07 13:33:24 +02:00
Tomas Dvorak
8c827ddca6 Safer in-place migration handling (#20366) 
* Remove side effects, set preflight finished onexit in migration

* Preflight chck for node.lock

* added changelog

* use opensearch lock check in migration actions

* safer allDatanodesAvailable impl

* license

* use opensearch locks check during inplace migration

* adapted test

---------

Co-authored-by: Matthias Oesterheld <33032967+moesterheld@users.noreply.github.com>
 2024-10-02 10:27:17 +02:00
Jenkins
f0bf7e413d [graylog2-server] prepare for next development iteration 2024-09-30 14:11:05 +02:00
Jenkins
a15060e0bb [graylog2-server] prepare release 6.1.0-beta.4 2024-09-30 13:54:15 +02:00
Matthias Oesterheld
c83e5a0d39 resolve node_name from configuration getter instead of named parameter (#20524) 2024-09-24 17:07:47 +02:00
Jenkins
d7af5a4619 [graylog2-server] prepare for next development iteration 2024-09-23 13:53:01 +02:00
Jenkins
7bd2445e6d [graylog2-server] prepare release 6.1.0-beta.3 2024-09-23 13:36:19 +02:00
Matthias Oesterheld
9c778cc1df pass in node name to correct shard relocation (#20463) 
handle stop in state machine
 2024-09-19 11:08:02 +02:00
Jenkins
6fbca6f4c3 [graylog2-server] prepare for next development iteration 2024-09-16 10:29:03 +02:00
Jenkins
3f1795e622 [graylog2-server] prepare release 6.1.0-beta.2 2024-09-16 10:12:21 +02:00
Kay Roepke
b501b88251 Revert version to 6.1.0-SNAPSHOT 2024-09-16 09:37:54 +02:00
Jenkins
b772a694c8 [graylog2-server] prepare release 6.1.0-beta.2 2024-09-16 08:43:44 +02:00
Jenkins
5e0d3aa98b [graylog2-server] prepare for next development iteration 2024-09-09 09:02:49 +02:00
Jenkins
2d25b0d3cc [graylog2-server] prepare release 6.1.0-beta.1 2024-09-09 08:46:08 +02:00
dependabot[bot]
b1c1c9d8eb Bump org.codehaus.mojo:buildnumber-maven-plugin from 3.2.0 to 3.2.1 (#20332) 
Bumps [org.codehaus.mojo:buildnumber-maven-plugin](https://github.com/mojohaus/buildnumber-maven-plugin) from 3.2.0 to 3.2.1.
- [Release notes](https://github.com/mojohaus/buildnumber-maven-plugin/releases)
- [Commits](https://github.com/mojohaus/buildnumber-maven-plugin/compare/3.2.0...3.2.1)

---
updated-dependencies:
- dependency-name: org.codehaus.mojo:buildnumber-maven-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-05 10:29:03 +02:00
Jenkins
bdba42ac84 [graylog2-server] prepare for next development iteration 2024-08-30 12:02:49 +02:00
Jenkins
9793e053d7 [graylog2-server] prepare release 6.1.0-alpha.8 2024-08-30 11:45:56 +02:00
Jenkins
a74ff7c718 [graylog2-server] prepare for next development iteration 2024-08-16 14:34:31 +02:00
Jenkins
a259c1dfeb [graylog2-server] prepare release 6.1.0-alpha.7 2024-08-16 14:18:11 +02:00
Tomas Dvorak
ee9a81d48e Handle closed indices in remote reindex migration (#20081) 
* Handle closed indices in remote reindex migration

* selectAll shouldn't select the closed indices

* added changelog

* Remove support for empty indices list in remote reindex migration (not used anywhere)

* Reopen closed indices for remote reindex migration

* updated changelog

* fix setting authorization header only for non-null parameters

* remove check for message from closed index

---------

Co-authored-by: Mohamed OULD HOCINE <106236152+gally47@users.noreply.github.com>
Co-authored-by: Mohamed Ould Hocine <mohamed.ould.hocine@graylog.com>
Co-authored-by: Matthias Oesterheld <33032967+moesterheld@users.noreply.github.com>
Co-authored-by: Matthias Oesterheld <matthias.oesterheld@graylog.com>
 2024-08-16 13:27:48 +02:00
dependabot[bot]
55867c5fb7 Bump org.codehaus.mojo:exec-maven-plugin from 3.4.0 to 3.4.1 (#20165) 
Bumps [org.codehaus.mojo:exec-maven-plugin](https://github.com/mojohaus/exec-maven-plugin) from 3.4.0 to 3.4.1.
- [Release notes](https://github.com/mojohaus/exec-maven-plugin/releases)
- [Commits](https://github.com/mojohaus/exec-maven-plugin/compare/3.4.0...3.4.1)

---
updated-dependencies:
- dependency-name: org.codehaus.mojo:exec-maven-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-13 11:13:00 +02:00
Matthias Oesterheld
27c236323a Add certificate information to support bundle (#20120) 
* read and add endpoint for datanode certificates

* read and add endpoint for Graylog certificates

* doc and permission

* add error logging

* add certificates to support bundle

* cl

* change certrenewal swagger annotation

* move security config resolution to provider

* add singleton annotation

* fix wrong imports
 2024-08-12 14:38:32 +02:00
Matthias Oesterheld
fbefdcc97f fix certificate renewal periodicals to parse both Duration and Period (#20056) 
* fix certificate renewal periodicals to use PeriodDuration

* move threshold calculation to `RenewalPolicy`
create & use typed method for parsed lifetime

* remove threeten-extra dependency

* fix test for dates using 10% threshold
 2024-08-09 15:42:08 +02:00
Matthias Oesterheld
c49f79f8d4 wrap all exceptions in response (#20139) 2024-08-09 14:14:23 +02:00
Matthias Oesterheld
c86b0d5c90 Add datanode information to support bundle (#20090) 
* add additional information to DataNodeStatus

* add datanode information to support bundle

* cl
 2024-08-08 11:55:00 +02:00
Jan Heise
356d2521e1 Bumping the OpenSearch Client in general and the Server in the DataNode to 2.15 (#20097) 
* bumping the opensearch client and the server in the datanode to 2.15

* fixing digest

* fixed digest

* fixed last digest

* added changelog
 2024-08-07 14:48:51 +02:00
dependabot[bot]
be74221482 Bump org.codehaus.mojo:exec-maven-plugin from 3.3.0 to 3.4.0 (#20101) 
Bumps [org.codehaus.mojo:exec-maven-plugin](https://github.com/mojohaus/exec-maven-plugin) from 3.3.0 to 3.4.0.
- [Release notes](https://github.com/mojohaus/exec-maven-plugin/releases)
- [Commits](https://github.com/mojohaus/exec-maven-plugin/compare/3.3.0...3.4.0)

---
updated-dependencies:
- dependency-name: org.codehaus.mojo:exec-maven-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-07 09:42:19 +02:00
Patrick Mann
0be60d51dd WIP: Draw-down license feature (#19885) 
* WIP: traffic reporting and checking for draw-down licenses (#19774)

* make traffic reporting pluggable

* license header

* refactor for re-use

* quick fix TelemetryResponse for drawdown license

* add date utilities

* refactor

* Replace licenses status API with new validity API (#19832)

---------

Co-authored-by: Anton Ebel <anton.ebel@graylog.com>
Co-authored-by: Laura <grotlue@users.noreply.github.com>

* Active license information (#19863)

* add drawdown license notification (#19895)

* add top-level dependency bcprov-jdk18 since it is needed in several other modules

* document REST API changes

* more BC dependency refactoring

---------

Co-authored-by: Anton Ebel <anton.ebel@graylog.com>
Co-authored-by: Laura <grotlue@users.noreply.github.com>
 2024-07-31 11:18:00 +02:00
Tomas Dvorak
53bbc0872f Initial pre-preflight checks cert provisioning (#19970) 
* Initial pre-preflight checks cert provisioning

* Proper preflight expired certificate handling for datanode

* always run provisioning in IndexerDiscoveryProvider retry listener

---------

Co-authored-by: Matthias Oesterheld <33032967+moesterheld@users.noreply.github.com>
 2024-07-31 09:19:57 +02:00
Jenkins
fb5d79609c [graylog2-server] prepare for next development iteration 2024-07-26 13:53:42 +02:00
Jenkins
2a1ff8c4d0 [graylog2-server] prepare release 6.1.0-alpha.6 2024-07-26 13:36:59 +02:00
Jenkins
890ff674b9 [graylog2-server] prepare for next development iteration 2024-07-15 13:56:26 +02:00
Jenkins
e52dca4bfb [graylog2-server] prepare release 6.1.0-alpha.5 2024-07-15 13:39:51 +02:00
Tomas Dvorak
2a397e01d3 Implement remote connection checks for remote-reindex migrations (#19879) 
* Implement remote connection checks for remote-reindex migrations

* datanode trust manager for connection checks

* Added changelog

* fixed forbidden api usage

* fixed forbidden apis

* fixed forbidden apis #3
 2024-07-15 05:21:17 +02:00
Tomas Dvorak
ba77102211 Add command for creating p12 truststore for datanode/opensearch (#19804) 
* Add command for creating p12 truststore for datanode/opensearch

* Added certutil bin

* Fixed string.format locale
 2024-07-11 11:15:58 +02:00
Jenkins
b8aeee4800 [graylog2-server] prepare for next development iteration 2024-07-08 10:36:18 +02:00
Jenkins
c2e5ec5e5c [graylog2-server] prepare release 6.1.0-alpha.4 2024-07-08 10:19:56 +02:00
Tomas Dvorak
b6cb2c125d Support for untrusted CAs in datanode remote reindex migration (#19775) 
* Support for untrusted CAs in datanode remote reindex migration

* Added changelog

* replace sun https server with grizzly

* fixed import

* fix tests

* Fix optional truststore in datanode

* extend default JVM truststore for opensearch inside datanode

* fixed nonnull annotation

* Do not override javax.net.ssl.trustStore property in datanode

* Fix trustmanager for opensearch rest client in datanode

* Fix uploaded ca keystore aliases

---------

Co-authored-by: Mohamed Ould Hocine <mohamed.ould.hocine@graylog.com>
Co-authored-by: Mohamed OULD HOCINE <106236152+gally47@users.noreply.github.com>
 2024-07-04 15:39:55 +02:00
Tomas Dvorak
a26a09488a Migrate datanode CA to cluster config service, refactor handling (#19747) 
* Added test for LegacyDatanodeKeystoreProvider, removed CertService dependency

* Added license

* fixed nonnull annotation

* Migrate datanode CA to cluster config service, refactor handling

* code cleanup

* Added changelog

* fixed exception

* Added unit tests for CaPersistenceService

* Migrate certificate authority before preflight

---------

Co-authored-by: Matthias Oesterheld <33032967+moesterheld@users.noreply.github.com>
 2024-07-03 14:53:52 +02:00
Tomas Dvorak
33dfb063fa Lazy configuration processing, printing all errors at once (#19801) 
* Lazy configuration processing, printing all errors at once

* Added changelog
 2024-07-02 10:39:55 +02:00
Tomas Dvorak
e16aaea55b Added test for LegacyDatanodeKeystoreProvider, removed CertService de… (#19735) 
* Added test for LegacyDatanodeKeystoreProvider, removed CertService dependency

* Added license

* fixed nonnull annotation

---------

Co-authored-by: Matthias Oesterheld <33032967+moesterheld@users.noreply.github.com>
 2024-07-01 08:04:42 +02:00
Tomas Dvorak
76cd8bb41d Propagate datanode version through node service (#19691) 
* Propagate datanode version through node service

* Datanode version displayed in datanodes table

* added changelog

* lint error fixed

* fixed lint errors

* fixed nullable annotation import

* Added datanode version to the detail page

* Define datanode_version in types.ts

* Provide datanode version during initial register in NodePingPeriodical

* define datanode_version in preflight types.ts

* fix tests

---------

Co-authored-by: Mohamed OULD HOCINE <106236152+gally47@users.noreply.github.com>
Co-authored-by: Mohamed Ould Hocine <mohamed.ould.hocine@graylog.com>
Co-authored-by: Matthias Oesterheld <33032967+moesterheld@users.noreply.github.com>
 2024-06-28 13:45:40 +02:00
Jenkins
51d0474097 [graylog2-server] prepare for next development iteration 2024-06-26 14:43:01 +02:00
Jenkins
30e1bf8eb8 [graylog2-server] prepare release 6.1.0-alpha.3 2024-06-26 14:26:37 +02:00
Tomas Dvorak
655723659e Disable automatic CSR in preflight mode (#19709) 
* Disable automatic CSR in preflight mode

* added changelog

* run automatic cert renewal for datanode only if preflight is finished

---------

Co-authored-by: Matthias Oesterheld <33032967+moesterheld@users.noreply.github.com>
 2024-06-25 13:38:48 +02:00
Tomas Dvorak
07a9c24e1c Graylog CA abstractions refactoring (#19632) 
* Graylog CA abstractions refactoring

* CaTruststore abstraction, bindings

* Add BC providers in key and truststores, tests

* code cleanup

* Fixed forbidden annotation

* fixed bindings

---------

Co-authored-by: Matthias Oesterheld <33032967+moesterheld@users.noreply.github.com>
 2024-06-21 12:23:18 +02:00
Tomas Dvorak
fe71d42658 Datanode periodical for certificate renewals (#19618) 
* Datanode periodical for certificate renewals

* 30 minutes period for datanode cert renewal periodical

* logging adapted

* code cleanup

* Removed unused, simplified renewal on graylog server side

* removed unused cert renewal endpoint
 2024-06-20 09:49:57 +02:00
Jenkins
e9ba9a2e14 [graylog2-server] prepare for next development iteration 2024-06-13 12:45:21 +02:00