Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Auditbeat] Process metricset: Skip permission errors on Windows #9863

Merged
merged 5 commits into from
Jan 4, 2019
Merged

[Auditbeat] Process metricset: Skip permission errors on Windows #9863

merged 5 commits into from
Jan 4, 2019

Conversation

cwurm
Copy link
Contributor

@cwurm cwurm commented Jan 3, 2019

The process metricset tests were failing on Windows because they were trying to open processes that cannot be opened (the System and Idle Processes, and any CSRSS process - see OpenProcess).

This change skips the System Process (PID: 0) as well as any process access has been denied to.

Since the process metricset seems to be working well on Windows now, this also adds Windows to the documentation (Note: The system module remains marked as experimental for now).

Fixes #9748.

@cwurm cwurm added review needs_backport PR is waiting to be backported to other branches. Auditbeat SecOps labels Jan 3, 2019
@elasticmachine
Copy link
Collaborator

Pinging @elastic/secops

andrewkroh
andrewkroh reviewed Jan 3, 2019
View reviewed changes
Copy link
Member

@andrewkroh andrewkroh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, but there's an intake check failure on CI. Probably needs a formatted.

x-pack/auditbeat/docs/modules/system.asciidoc Show resolved Hide resolved
@cwurm cwurm requested a review from a team as a code owner January 3, 2019 13:43
andrewkroh
andrewkroh approved these changes Jan 3, 2019
View reviewed changes
Copy link
Member

@andrewkroh andrewkroh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM.

@cwurm cwurm force-pushed the process_windows_perms branch from 0e59f6b to d5864b4 Compare January 3, 2019 14:00
@cwurm cwurm merged commit 72b96a7 into elastic:master Jan 4, 2019
cwurm pushed a commit to cwurm/beats that referenced this pull request Jan 4, 2019
[Auditbeat] Process metricset: Skip permission errors on Windows (ela…
1d548f9 
…stic#9863)

Changes the process metricset to skip the System Process (PID: 0) as well as any process access has been denied to on Windows. Adds Windows to the documentation.

Fixes elastic#9748.

(cherry picked from commit 72b96a7)
@cwurm cwurm mentioned this pull request Jan 4, 2019
Merged
@cwurm cwurm added v6.7.0 and removed needs_backport PR is waiting to be backported to other branches. labels Jan 4, 2019
cwurm pushed a commit to cwurm/beats that referenced this pull request Jan 4, 2019
[Auditbeat] Process metricset: Skip permission errors on Windows (ela…
509c95d 
…stic#9863)

Changes the process metricset to skip the System Process (PID: 0) as well as any process access has been denied to on Windows. Adds Windows to the documentation.

Fixes elastic#9748.

(cherry picked from commit 72b96a7)
@cwurm cwurm mentioned this pull request Jan 4, 2019
Merged
@cwurm cwurm added v6.6.0 and removed v6.7.0 labels Jan 4, 2019
@cwurm cwurm mentioned this pull request Jan 4, 2019
Closed
21 tasks
cwurm pushed a commit that referenced this pull request Jan 4, 2019
[Auditbeat] Process metricset: Skip permission errors on Windows (#9863
eabd6b0 
…) (#9886)

Changes the process metricset to skip the System Process (PID: 0) as well as any process access has been denied to on Windows. Adds Windows to the documentation.

Fixes #9748.

(cherry picked from commit 72b96a7)
cwurm pushed a commit that referenced this pull request Jan 4, 2019
[Auditbeat] Process metricset: Skip permission errors on Windows (#9863
4f414d4 
…) (#9887)

Changes the process metricset to skip the System Process (PID: 0) as well as any process access has been denied to on Windows. Adds Windows to the documentation.

Fixes #9748.

(cherry picked from commit 72b96a7)
leweafan pushed a commit to leweafan/beats that referenced this pull request Apr 28, 2023
[Auditbeat] Process metricset: Skip permission errors on Windows (ela…
166259c 
…stic#9863) (elastic#9887)

Changes the process metricset to skip the System Process (PID: 0) as well as any process access has been denied to on Windows. Adds Windows to the documentation.

Fixes elastic#9748.

(cherry picked from commit e42ffec)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@andrewkroh andrewkroh andrewkroh approved these changes

Assignees
No one assigned
Labels
Auditbeat review v6.6.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@cwurm @elasticmachine @andrewkroh