-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Rebase #1
Rebase #1
Commits on Mar 8, 2019
-
Add missing changelog for #10801 (#11166)
Steffen Siering committedMar 8, 2019 Configuration menu - View commit details
-
Copy full SHA for c9d35e5 - Browse repository at this point
Copy the full SHA c9d35e5View commit details
Commits on Mar 11, 2019
-
Configuration menu - View commit details
-
Copy full SHA for 1384fb5 - Browse repository at this point
Copy the full SHA 1384fb5View commit details -
Fix a issue when cancelling an enroll. (#11067)
Fix an issue with a partial enroll, when a user refused to overrides a local configuration actually the enroll command did already used the token on the ES cluster, this commit move the confirm in the CM instead of having it in the Enroll's function and is executed by sending the token or creating any files on disk. Fixes: #10150
Configuration menu - View commit details
-
Copy full SHA for 5eb5085 - Browse repository at this point
Copy the full SHA 5eb5085View commit details -
Import fields.ecs.yml as generated by the ECS repo (#11150)
Moved the definition of `agent.hostname` to fields.common.yml
Configuration menu - View commit details
-
Copy full SHA for c33cb27 - Browse repository at this point
Copy the full SHA c33cb27View commit details -
Configuration menu - View commit details
-
Copy full SHA for c1047b6 - Browse repository at this point
Copy the full SHA c1047b6View commit details -
[Metricbeat] Migrate Kubernetes state_node Metricset to use ReporterV…
…2 interface (#10962) This is the first Kubernetes modules which uses the new testing interface too
Configuration menu - View commit details
-
Copy full SHA for 265ab8b - Browse repository at this point
Copy the full SHA 265ab8bView commit details -
[Auditbeat] User dataset: Numerous fixes to error handling (#10942)
Fixes a number of issues in the `user` dataset discovered while testing on Fedora 29: * When calling C functions via cgo, don't rely on errno as an indicator of success - check the return value first. * Set errno to 0 before calling getpwent(3) or getspent(3). * Make C function calls thread-safe. * Address a systemd bug where it can return ENOENT even when there is no error. * Don't fail on every error. * Fail system test on WARN/ERROR messages in the log.
Christoph Wurm committedMar 11, 2019 Configuration menu - View commit details
-
Copy full SHA for 8ce5440 - Browse repository at this point
Copy the full SHA 8ce5440View commit details -
[Heartbeat] Make dashboard docs point to uptime-contrib. (#11121)
These dashboards are now maintained in the new elastic/uptime-contrib repo, so the docs should point there.
Configuration menu - View commit details
-
Copy full SHA for 7ee2049 - Browse repository at this point
Copy the full SHA 7ee2049View commit details -
[Heartbeat] Fix missing url.* fields on TCP NXDOMAIN (#10787)
TCP checks are not adding URL fields on NXDOMAIN endpoints. This fixes that issue. It does so by ensuring that URL metadata is added before executing the check, and not during, as done previously. A side effect of this is that we now perform DNS lookups once per `{hostname,port}` instead of once per `{hostname}`. This is worth the increased simplicity however, as the code would be quite convoluted otherwise, which would put us at risk for more bugs. Related (but different) 6.x issue: #10777 Fix import formatting
Configuration menu - View commit details
-
Copy full SHA for 821baec - Browse repository at this point
Copy the full SHA 821baecView commit details
Commits on Mar 12, 2019
-
Add NATS Filebeat dashboard #11170
This PR is part of #10071. Co-Authored-By: Stamatis Katsaounis <katsaouniss@gmail.com> Co-Authored-By: Michael Katsoulis <michaelkatsoulis88@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for 33833be - Browse repository at this point
Copy the full SHA 33833beView commit details -
Import updated ECS 1.0.0 go library. (#11196)
* Import updated ECS 1.0.0 go library. * Adjust Packetbeat to use int64 for URL ports. * Re-generate golden files for filebeat and x-pack/filebeat
Configuration menu - View commit details
-
Copy full SHA for 55ee2e4 - Browse repository at this point
Copy the full SHA 55ee2e4View commit details
Commits on Mar 13, 2019
-
Fix fields.yml for sqs from message.* to messages.* (#11188)
* Fix fields.yml for sqs from message.* to messages.* and field type * Change type back to long * Add format: bytes
Configuration menu - View commit details
-
Copy full SHA for 75fba38 - Browse repository at this point
Copy the full SHA 75fba38View commit details -
Add sleep to allow ES sufficient time for CCR (#11172)
After repeatedly running the Elasticsearch module integration test in Metricbeat, I found that sometimes Elasticsearch doesn't get enough time to perform CCR and generate CCR stats. This causes the following error, but only some times: ``` --- FAIL: TestFetch (2.44s) --- FAIL: TestFetch/ccr (0.08s) elasticsearch_integration_test.go:92: Error Trace: elasticsearch_integration_test.go:92 Error: Should NOT be empty, but was [] Test: TestFetch/ccr ``` So this PR adds a 300ms sleep to give Elasticsearch enough time to perform CCR and generate CCR stats. After testing various sleep durations, I found that 300ms seemed to be the lowest (round) value I could use that consistently passed this test. Possibly related: #10866
Configuration menu - View commit details
-
Copy full SHA for 672cf1b - Browse repository at this point
Copy the full SHA 672cf1bView commit details -
Configuration menu - View commit details
-
Copy full SHA for f13cd2f - Browse repository at this point
Copy the full SHA f13cd2fView commit details -
Configuration menu - View commit details
-
Copy full SHA for de13893 - Browse repository at this point
Copy the full SHA de13893View commit details -
Configuration menu - View commit details
-
Copy full SHA for d27417b - Browse repository at this point
Copy the full SHA d27417bView commit details -
Always send _type to Monitoring Bulk API (#11217)
The Monitoring Bulk API (`POST _xpack/monitoring/_bulk`) does not interpret `_type` in the bulk metadata the same was as the regular Bulk API (`POST _bulk`). In the case of the Monitoring Bulk API, `_type` has a special meaning. It does not correspond to the Elasticsearch document `_type` but rather a `type` field within monitoring documents. The `_type` of those monitoring documents gets automatically set to `_doc` by the Monitoring Bulk API. Therefore, the Beats monitoring code should always send `_type` to the Monitoring Bulk API.
Configuration menu - View commit details
-
Copy full SHA for ac72b5c - Browse repository at this point
Copy the full SHA ac72b5cView commit details -
Add instance.state.name into fields.yml (#11221)
* Add instance.state.name into fields.yml * Rebase and regenerate fields.yml * Update changelog
Configuration menu - View commit details
-
Copy full SHA for efcf034 - Browse repository at this point
Copy the full SHA efcf034View commit details -
Configuration menu - View commit details
-
Copy full SHA for c85b904 - Browse repository at this point
Copy the full SHA c85b904View commit details -
Configuration menu - View commit details
-
Copy full SHA for c7ec7d4 - Browse repository at this point
Copy the full SHA c7ec7d4View commit details -
Configuration menu - View commit details
-
Copy full SHA for 08b725a - Browse repository at this point
Copy the full SHA 08b725aView commit details -
Add getQueueUrls and SQS queue name (#11151)
* Fix sqs queue name * Add function to get queueUrls * Fix field names from message to messages * Move looping through each queueURL into a separate function
Configuration menu - View commit details
-
Copy full SHA for a6a21f4 - Browse repository at this point
Copy the full SHA a6a21f4View commit details -
Configuration menu - View commit details
-
Copy full SHA for 8169159 - Browse repository at this point
Copy the full SHA 8169159View commit details -
Collect Cloudwatch metrics from the same timestamp (#11142)
* Update aws documentation * Add checks for instance fields in TestFetch * Add tests for CheckTimestampInArray and FindTimestamp * Update comment for CheckTimestampInArray * Change test to table driven * Adopt CheckTimestampInArray and FindTimestamp in S3 and SQS
Configuration menu - View commit details
-
Copy full SHA for 822b95a - Browse repository at this point
Copy the full SHA 822b95aView commit details -
[Filebeat] allow ingest pipelines in YAML format (#11209)
This updates the ingest pipeline loading to look at the pipeline definition file extension and use a JSON or YAML decoder depending on the type.
Configuration menu - View commit details
-
Copy full SHA for a93a09e - Browse repository at this point
Copy the full SHA a93a09eView commit details
Commits on Mar 14, 2019
-
Configuration menu - View commit details
-
Copy full SHA for 5fb2412 - Browse repository at this point
Copy the full SHA 5fb2412View commit details -
Configuration menu - View commit details
-
Copy full SHA for 5cdc84c - Browse repository at this point
Copy the full SHA 5cdc84cView commit details -
Move Fields from pacakge libbeat/common to libbeat/mapping (#11198)
The structures `Field` and `Fields` are moved from `common` to the package `mapping`. This is a step towards moving things from the abused package `common`. I would like to move fields and other asset related functionality to this package in the future.
Configuration menu - View commit details
-
Copy full SHA for e5ac246 - Browse repository at this point
Copy the full SHA e5ac246View commit details -
Skip password test in metricbeat redis module (#11243)
At the moment, docker containers are shared between tests. Password test changes the password as part of its checks, what can affect the connection of other tests using the same instance, skip this test by now to avoid flakiness in the rest of tests.
Configuration menu - View commit details
-
Copy full SHA for b1f36ce - Browse repository at this point
Copy the full SHA b1f36ceView commit details -
[Libbeat] Gracefully shut down on SIGHUP (#10704)
SIGHUP is sent to a process if the user's terminal is disconnected. It is one of the five termination signals. Currently, Beats is going to terminate suddenly, i.e. the log will cut off, no shutdown actions are going to be run, etc. This change catches SIGHUP as it already does SIGINT/SIGTERM and runs the usual shutdown actions. This can include waiting for a period of time specified using the shutdown_timeout option Filebeat and Packetbeat support.
Christoph Wurm committedMar 14, 2019 Configuration menu - View commit details
-
Copy full SHA for e9537aa - Browse repository at this point
Copy the full SHA e9537aaView commit details -
Re-introduce field formats on ECS fields. (#11240)
They were accidentally removed by #11150.
Configuration menu - View commit details
-
Copy full SHA for c6c6ab9 - Browse repository at this point
Copy the full SHA c6c6ab9View commit details -
Update ingest pipelines to use event.timezone (#11248)
* Update ingest pipelines to use event.timezone Previously, `beats.timezone` was used, in master it's not available anymore. However, some ingest pipelines were still using it.
Configuration menu - View commit details
-
Copy full SHA for 1946505 - Browse repository at this point
Copy the full SHA 1946505View commit details -
[Auditbeat] Process dataset: Only report processes with executable (#…
…11232) Excludes kernel processes on Linux. They don't provide a lot of value, the names are not unique, and they will not be able to use potential future features like process executable hashes.
Christoph Wurm committedMar 14, 2019 Configuration menu - View commit details
-
Copy full SHA for 115eeb7 - Browse repository at this point
Copy the full SHA 115eeb7View commit details -
Configuration menu - View commit details
-
Copy full SHA for e9fc1b6 - Browse repository at this point
Copy the full SHA e9fc1b6View commit details
Commits on Mar 15, 2019
-
The script processor executes Javascript code to process an event. The processor uses a pure Go implementation of ECMAScript 5.1. This can be useful in situations where one of the other processors doesn’t provide the functionality you need to filter events. The processor can be configured by embedding Javascript in your configuration file or by pointing the processor at external file(s). See the included documentation for the full details. processors: - script: type: javascript code: > function process(event) { event.Tag("js"); } For observability it can add metrics with a histogram of the execution time and a counter for the number of exceptions that occur. There is an optional timeout configuration option to the processor that will timeout the execution by interrupting the JS code. Rather than have libbeat force the inclusion of the script processor in all Beats, make each Beat opt into the processor. It is imported by the log processing Beats (filebeat, journalbeat, and winlogbeat). Benchmark Results Here's a benchmark to get a rough idea of how long it takes to process an event in the processor's runtime I updated the benchmark to test each case with and without the timeout enabled. BenchmarkBeatEventV0/Put-12 2000000 707 ns/op BenchmarkBeatEventV0/timeout_Put-12 1000000 1510 ns/op BenchmarkBeatEventV0/Object_Put_Key-12 2000000 631 ns/op BenchmarkBeatEventV0/timeout_Object_Put_Key-12 1000000 1252 ns/op BenchmarkBeatEventV0/Get-12 2000000 750 ns/op BenchmarkBeatEventV0/timeout_Get-12 1000000 1495 ns/op BenchmarkBeatEventV0/Get_Undefined_Key-12 1000000 1039 ns/op BenchmarkBeatEventV0/timeout_Get_Undefined_Key-12 1000000 2108 ns/op BenchmarkBeatEventV0/fields_get_key-12 2000000 1044 ns/op BenchmarkBeatEventV0/timeout_fields_get_key-12 1000000 2051 ns/op BenchmarkBeatEventV0/Get_@metadata-12 2000000 750 ns/op BenchmarkBeatEventV0/timeout_Get_@metadata-12 1000000 1745 ns/op BenchmarkBeatEventV0/Put_@metadata-12 1000000 1048 ns/op BenchmarkBeatEventV0/timeout_Put_@metadata-12 500000 2623 ns/op BenchmarkBeatEventV0/Delete_@metadata-12 2000000 842 ns/op BenchmarkBeatEventV0/timeout_Delete_@metadata-12 1000000 1629 ns/op BenchmarkBeatEventV0/Cancel-12 2000000 759 ns/op BenchmarkBeatEventV0/timeout_Cancel-12 1000000 1329 ns/op BenchmarkBeatEventV0/Tag-12 1000000 1189 ns/op BenchmarkBeatEventV0/timeout_Tag-12 1000000 1973 ns/op BenchmarkBeatEventV0/AppendTo-12 2000000 644 ns/op BenchmarkBeatEventV0/timeout_AppendTo-12 1000000 1347 ns/op
Configuration menu - View commit details
-
Copy full SHA for 0693a22 - Browse repository at this point
Copy the full SHA 0693a22View commit details -
Use PYTHON_EXE env var as the python interpreter (#11212)
Setting the PYTHON_EXE environment variable causes new Python virtual environments to be created using the specified interpreter. Both `make` and `mage` honor the variable. For example, `PYTHON_EXE=python2.7 make python-env`.
Configuration menu - View commit details
-
Copy full SHA for 9fb274a - Browse repository at this point
Copy the full SHA 9fb274aView commit details -
Configuration menu - View commit details
-
Copy full SHA for 67ebca4 - Browse repository at this point
Copy the full SHA 67ebca4View commit details -
Change URLPATH grok pattern to support brackets (#11252)
* Change URLPATH grok pattern to support [] * Update URIPATHWITHBRACKET with the current URIPATH * Add changelog
Configuration menu - View commit details
-
Copy full SHA for 1f68e2b - Browse repository at this point
Copy the full SHA 1f68e2bView commit details -
Libbeat add_kubernetes_metadata processor: Missing fields replicaset.…
…name, etc. in fields.yml (#11134) * Add Kubernetes missing fields: replica-set.name, statefulset.name and deployment.name, to libbeat add_kubernetes_metadata processor fields.yml and add a few test cases. * Remove duplicate fields in metricbeat fields.yml
alakahakai committedMar 15, 2019 Configuration menu - View commit details
-
Copy full SHA for 357c6cf - Browse repository at this point
Copy the full SHA 357c6cfView commit details -
Add aws sqs overview dashboard (#11175)
* Add aws sqs overview dashboard * Add sqs overview dashboard into documentation
Configuration menu - View commit details
-
Copy full SHA for 6b915a5 - Browse repository at this point
Copy the full SHA 6b915a5View commit details
Commits on Mar 16, 2019
-
Add support for iis 7.5 log with different format of destination/sour…
…ce address (#11256) * Add support for iis 7.5 log with different destination/source address * update changelog * Add test with IPv6 ip address
Configuration menu - View commit details
-
Copy full SHA for e5ffcd6 - Browse repository at this point
Copy the full SHA e5ffcd6View commit details -
[Heartbeat] Remove extra monitor template files (#11216)
In #9648 the monitor generator script was removed, but its supporting files were not. This commit removes the remaining legacy files.
Configuration menu - View commit details
-
Copy full SHA for 005bb60 - Browse repository at this point
Copy the full SHA 005bb60View commit details
Commits on Mar 18, 2019
-
Updated link to githubbeat (#11281)
The repository the documentation was previously linking to (https://github.com/jlevesy/githubbeat) is now inactive, the owner suggests using the following fork instead: https://github.com/josephlewis42/githubbeat
Configuration menu - View commit details
-
Copy full SHA for 7454eee - Browse repository at this point
Copy the full SHA 7454eeeView commit details -
[Metricbeat] Fix wrong alias in rabbitmq module (#11284)
* rabbitmq.node.name was duplicated and alias pointed to itself * rabbitmq.connection.name was falsely migrated to `rabbitmq.name` Also adding tests to Filebeat and Metricbeat to ensure this does not happen again in the future. Closes #11271
Configuration menu - View commit details
-
Copy full SHA for feaef40 - Browse repository at this point
Copy the full SHA feaef40View commit details -
[Metricbeat] Check that fields are documented in data tests (#11127)
Currently we check in python tests that the fields are documented. As by now we have all the fields also available in the go code with the fields.go files it is possible to do this check in the new data tests. To prevent cyclic imports the data_test.go had to be moved to its own package. Now by default all modules are imported. Like this we don't have to add each module manually.
Configuration menu - View commit details
-
Copy full SHA for 4dce54b - Browse repository at this point
Copy the full SHA 4dce54bView commit details -
Configuration menu - View commit details
-
Copy full SHA for a2e6d3a - Browse repository at this point
Copy the full SHA a2e6d3aView commit details -
Don't collect empty ip addresses in docker container metricset (#11247)
Docker containers can have empty ip addresses if they are running in host network mode or if they are stopped. Collecting lists with empty addresses can make type mapping to fail when trying to store them as ip addresses. Fix #11225
Configuration menu - View commit details
-
Copy full SHA for 258c1c8 - Browse repository at this point
Copy the full SHA 258c1c8View commit details
Commits on Mar 19, 2019
-
Configuration menu - View commit details
-
Copy full SHA for 96f3549 - Browse repository at this point
Copy the full SHA 96f3549View commit details -
Rename migration.enabled to migration.6_to_7.enabled (#11286)
This is to make it more clear this is for the migration from 6.7 to 7.0.
Configuration menu - View commit details
-
Copy full SHA for 38c81eb - Browse repository at this point
Copy the full SHA 38c81ebView commit details -
Configuration menu - View commit details
-
Copy full SHA for 68cc3fd - Browse repository at this point
Copy the full SHA 68cc3fdView commit details -
update index prefix in outputconfig docs (#11300)
for APM, where beatname_lc=apm-server but beat_default_index_prefix=apm
Configuration menu - View commit details
-
Copy full SHA for d3dda31 - Browse repository at this point
Copy the full SHA d3dda31View commit details -
avoid filebeat test failure on big endian machines (#11291)
* Fix test failure of auditbeat for s390x * avoid filebeat test failure on big endian machines
Configuration menu - View commit details
-
Copy full SHA for d5ccedc - Browse repository at this point
Copy the full SHA d5ccedcView commit details -
Add default timeouts to metricbeat HTTP helpers (#11032)
Set a default request timeout of 10 seconds to metricbeat HTTP helpers so there are less chances of leaking established connections. Add a connection timeout that defaults to two seconds so connections fail fast in case of network connectivity problems.
Configuration menu - View commit details
-
Copy full SHA for 1cdc88b - Browse repository at this point
Copy the full SHA 1cdc88bView commit details -
Coredns metricbeat module (#10585)
Co-Authored-By: Ioannis Androulidakis <ioannis@arrikto.com>
Configuration menu - View commit details
-
Copy full SHA for cb23a8e - Browse repository at this point
Copy the full SHA cb23a8eView commit details -
Update schema version in monitoring index name (#11315)
* Update schema version in monitoring index name * Update tests
Configuration menu - View commit details
-
Copy full SHA for 55aba20 - Browse repository at this point
Copy the full SHA 55aba20View commit details -
Use different monitoring bulk API paths depending on ES version (#11203)
Resolves #9480. Starting Elasticsearch 7.0.0, Beats should ship their monitoring data to the `_monitoring/bulk` Elasticsearch API endpoint. Prior to 7.0.0, `_xpack/monitoring/_bulk` should be used. This PR implements this version-based conditional logic. I used Wireshark to look at the ES API endpoints being hit. Running this PR with ES 8.0.0 or ES 7.0.0, I confirmed that the `POST _monitoring/bulk` endpoint was being hit: <img width="1436" alt="Screen Shot 2019-03-14 at 10 55 52 AM" src="https://user-images.githubusercontent.com/51061/54380101-ed567780-4647-11e9-8ed1-9b9020bb85d4.png"> And running this PR with ES 6.7.0, I confirmed that the `POST _xpack/monitoring/_bulk` endpoint was being hit: <img width="1437" alt="Screen Shot 2019-03-14 at 10 56 42 AM" src="https://user-images.githubusercontent.com/51061/54380094-eaf41d80-4647-11e9-8658-d9a6ba14541b.png">
Configuration menu - View commit details
-
Copy full SHA for 44c40c9 - Browse repository at this point
Copy the full SHA 44c40c9View commit details -
[metricbeat] implement Close() for docker metricsets (#11294)
* implement Close() for docker metricsets
Configuration menu - View commit details
-
Copy full SHA for 57f8b5c - Browse repository at this point
Copy the full SHA 57f8b5cView commit details -
Stop waiting for signals on closed outleters (#11263)
Outleters start a goroutine to handle the finalization of filebeat. If the outleter is closed by other means the goroutine will be kept running even if it has nothing to do, leaking goroutines. Stop this goroutine if the outleter is closed.
Configuration menu - View commit details
-
Copy full SHA for 57c9891 - Browse repository at this point
Copy the full SHA 57c9891View commit details
Commits on Mar 20, 2019
-
Regenerate UUID of a Beat when meta.json is empty (#11086)
* treat empty meta as non existent * test made parallel friendly * changelog plus typos in beats.go * perform atomic write of meta.json
Configuration menu - View commit details
-
Copy full SHA for e531d10 - Browse repository at this point
Copy the full SHA e531d10View commit details -
Move x-pack dashboards images to x-pack dir (#11317)
Some modules under x-pack had their dashboards images below the OSS beat directory. This PR moves those images under x-pack.
Configuration menu - View commit details
-
Copy full SHA for 9ff8392 - Browse repository at this point
Copy the full SHA 9ff8392View commit details -
Configuration menu - View commit details
-
Copy full SHA for b0a2eb4 - Browse repository at this point
Copy the full SHA b0a2eb4View commit details -
Configuration menu - View commit details
-
Copy full SHA for 5b6cedb - Browse repository at this point
Copy the full SHA 5b6cedbView commit details -
Configuration menu - View commit details
-
Copy full SHA for daefdb5 - Browse repository at this point
Copy the full SHA daefdb5View commit details
Commits on Mar 21, 2019
-
Configuration menu - View commit details
-
Copy full SHA for 783aca0 - Browse repository at this point
Copy the full SHA 783aca0View commit details -
Adding categorization fields for the system/auth module (#11334)
* Adding categorization fields for the system/auth module This PR adds the following fields for the SSH login events: * `event.category: authentication` * `event.action: ssh_login` * `event.type` either `authentication_success` or `authentication_failure` The `event.outcome` is currently not quite ECS compliant, but I didn't touch it to avoid a breaking change. The PR doesn't attempt to categorize other logs besides the SSH login attempts, so it's a subset of #9905, but it's what we need for the UI. * Normalized event.outcome and brought back `system.auth.ssh.event`. * changelog
Configuration menu - View commit details
-
Copy full SHA for a9f567b - Browse repository at this point
Copy the full SHA a9f567bView commit details -
Configuration menu - View commit details
-
Copy full SHA for 4588257 - Browse repository at this point
Copy the full SHA 4588257View commit details -
Configuration menu - View commit details
-
Copy full SHA for f76f293 - Browse repository at this point
Copy the full SHA f76f293View commit details -
Replace dashboard screenshot (#11356)
Signed-off-by: Chris <chrismarkou92@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for 33164eb - Browse repository at this point
Copy the full SHA 33164ebView commit details -
Try to avoid flakiness on http helper timeout tests (#11345)
Block the response only during a time or till the conext is done. Close body if a request object is returned.
Configuration menu - View commit details
-
Copy full SHA for 2c0b15f - Browse repository at this point
Copy the full SHA 2c0b15fView commit details -
[Metricbeat] Migrate mysql/galera_status to ReporterV2 (#11324)
* Migrate mysql/galera_status to ReporterV2
Configuration menu - View commit details
-
Copy full SHA for 8696d2c - Browse repository at this point
Copy the full SHA 8696d2cView commit details -
Configuration menu - View commit details
-
Copy full SHA for 6865403 - Browse repository at this point
Copy the full SHA 6865403View commit details -
Default Beats Kibana dashboards to KQL instead of Lucene (#11268)
Closes #10969. In Kibana as of 7.0, the default query language is no longer Lucene, but KQL (Kibana Query Language). This PR updates all of the JSON objects to use the new language, and modifies any existing queries to the new syntax (if needed - most of them stayed the same).
Configuration menu - View commit details
-
Copy full SHA for 02d29c6 - Browse repository at this point
Copy the full SHA 02d29c6View commit details -
Add ability to use existing processors from script processor (#11260)
* Add JS require with modules This adds a `require` function to the JS runtime that scripts can call to import "modules". Some standard modules that are added in this PR are - `processor` - You can construct beat processors in JS (e.g. `new processor.Dissect({...})`). - `console` - You can write to beat's logger. - `path` - You can parse win32 and posix paths. The `processor` module supports constructing: - `AddCloudMetadata` - `AddDockerMetadata` - `AddHostMetadata` - `AddKubernetesMetadata` - `AddLocale` - `AddProcessMetadata` - `CommunityID` - `DecodeJSONFields` - `Dissect` - `DNS` * Add github.com/dop251/goja_nodejs to vendor
Configuration menu - View commit details
-
Copy full SHA for d36eb5a - Browse repository at this point
Copy the full SHA d36eb5aView commit details
Commits on Mar 22, 2019
-
Add testdata for stats metricset of coredns (#11332)
Signed-off-by: Chris <chrismarkou92@gmail.com> Signed-off-by: Chris Mark <chrismarkou92@gmail.com>
Configuration menu - View commit details
-
Copy full SHA for 80c930c - Browse repository at this point
Copy the full SHA 80c930cView commit details -
[Auditbeat] Login dataset: Add event category and type (#11339)
Adds `event.category: authentication` and `event.type: authentication_success` (or `authentication_failure`).
Christoph Wurm committedMar 22, 2019 Configuration menu - View commit details
-
Copy full SHA for 09a8fa8 - Browse repository at this point
Copy the full SHA 09a8fa8View commit details -
New processor: copy_fields (#11303)
A new processor is introduced as part of support for keeping orignal messages. Options and naming follows the convention of other processors. ### `copy_fields` This processor copies one field to another. Example configuration is below: ```yaml processors: - copy_fields: fields: - from: message to: event.original fail_on_error: false ignore_missing: true ```
Configuration menu - View commit details
-
Copy full SHA for 4b9f945 - Browse repository at this point
Copy the full SHA 4b9f945View commit details -
[Metricbeat] migrate golang module to ReporterV2 error (#11382)
* migrate golang module to ReporterV2 error
Configuration menu - View commit details
-
Copy full SHA for a5de499 - Browse repository at this point
Copy the full SHA a5de499View commit details -
Make geoip steps generic and move to libbeat (#10947)
* Make geoip steps generic and move to libbeat * Add changes from review * Add topic to all the beats
Configuration menu - View commit details
-
Copy full SHA for 98e0dbe - Browse repository at this point
Copy the full SHA 98e0dbeView commit details -
Report faulting file when config reload fails (#11304)
* fixed error format to include faulting file,some go lint issues * changelog updated * review round 1 * not breaking
Configuration menu - View commit details
-
Copy full SHA for 5de8ebb - Browse repository at this point
Copy the full SHA 5de8ebbView commit details -
Register javascript modules (#11384)
Register modules with the script processor.
Configuration menu - View commit details
-
Copy full SHA for f94182e - Browse repository at this point
Copy the full SHA f94182eView commit details
Commits on Mar 25, 2019
-
decode_json_field: do not process arrays when flag not set (#11318)
* wong assumption? * indicate skip for arrays * changelog * make one liner * not marking as breaking change
Configuration menu - View commit details
-
Copy full SHA for be1a9d7 - Browse repository at this point
Copy the full SHA be1a9d7View commit details -
Configuration menu - View commit details
-
Copy full SHA for cbd7749 - Browse repository at this point
Copy the full SHA cbd7749View commit details -
Configuration menu - View commit details
-
Copy full SHA for aed1b61 - Browse repository at this point
Copy the full SHA aed1b61View commit details -
Configuration menu - View commit details
-
Copy full SHA for 06f0b95 - Browse repository at this point
Copy the full SHA 06f0b95View commit details -
Configuration menu - View commit details
-
Copy full SHA for 32056e4 - Browse repository at this point
Copy the full SHA 32056e4View commit details -
Configuration menu - View commit details
-
Copy full SHA for e7758da - Browse repository at this point
Copy the full SHA e7758daView commit details -
[metricbeat] Migrate vsphere/datastore to ReporterV2 (#11401)
* migrate vsphere/datastore to ReporterV2
Configuration menu - View commit details
-
Copy full SHA for 65a20db - Browse repository at this point
Copy the full SHA 65a20dbView commit details -
Add Namespace to prometheus helper mappings (#11424)
Add Namespace to prometheus helper mappings
Pablo Mercado committedMar 25, 2019 Configuration menu - View commit details
-
Copy full SHA for 4267241 - Browse repository at this point
Copy the full SHA 4267241View commit details -
Add support to MySQL 8 extra fields in slow log (#11417)
Add test files for MySQL 8, Percona 8 and MariaDB 10.3 to filebeat mysql module. Add support for MySQL 8 extra fields in slow log. Update compatibility notes. Closes #10257
Configuration menu - View commit details
-
Copy full SHA for 4ec5d13 - Browse repository at this point
Copy the full SHA 4ec5d13View commit details -
Configuration menu - View commit details
-
Copy full SHA for fef8ec4 - Browse repository at this point
Copy the full SHA fef8ec4View commit details -
Link to infrastructure monitoring docs from Beats docs (#10954)
* Link to infrastructure monitoring docs from Beats docs * Add links that point to the infrastructure monitoring guide * Add changes from review
Configuration menu - View commit details
-
Copy full SHA for 766c694 - Browse repository at this point
Copy the full SHA 766c694View commit details -
Configuration menu - View commit details
-
Copy full SHA for 493a158 - Browse repository at this point
Copy the full SHA 493a158View commit details -
Configuration menu - View commit details
-
Copy full SHA for 53500aa - Browse repository at this point
Copy the full SHA 53500aaView commit details
Commits on Mar 26, 2019
-
Configuration menu - View commit details
-
Copy full SHA for f98f2f4 - Browse repository at this point
Copy the full SHA f98f2f4View commit details -
Fix image for docs build (#11460)
Fix coredns image in docs.asciidoc for docs build
Ray Qiu committedMar 26, 2019 Configuration menu - View commit details
-
Copy full SHA for a08c1a8 - Browse repository at this point
Copy the full SHA a08c1a8View commit details -
Configuration menu - View commit details
-
Copy full SHA for b3af1f6 - Browse repository at this point
Copy the full SHA b3af1f6View commit details -
Fix metrics appending in prometheus collector (#11398)
Update method of common.MapStr doesn't update nested maps so we were overwriting existing metrics. Fix fields definition to add wildcard so fields match. Add testdata.
Configuration menu - View commit details
-
Copy full SHA for a174425 - Browse repository at this point
Copy the full SHA a174425View commit details -
[Auditbeat] System module: Shorten entity ids (#11405)
As discussed in #11348, this shortens down entity IDs to base64-encoded 12 bytes. It makes quite the difference. I've also used the opportunity to finally standardize the `TestData` functions to (hopefully) always generate the same data (or at least to get closer to that), regardless of which system they are run on. Resolves #11348.
Christoph Wurm committedMar 26, 2019 Configuration menu - View commit details
-
Copy full SHA for 2f51a07 - Browse repository at this point
Copy the full SHA 2f51a07View commit details -
Task/use etcd metrics endpoint (#11280)
Add Etcd V3 metrics from the /metrics endpoint
Pablo Mercado committedMar 26, 2019 Configuration menu - View commit details
-
Copy full SHA for bf8ebaf - Browse repository at this point
Copy the full SHA bf8ebafView commit details -
bugfix: fix a typo in libbeat/outputs/transport/client.go (#11242)
* bugfix: fix a typo in libbeat/outputs/transport/client.go
Configuration menu - View commit details
-
Copy full SHA for d834ac4 - Browse repository at this point
Copy the full SHA d834ac4View commit details -
CM Breaking changes in 6.7 (#11434)
* CM Breaking changes in 6.7 Add a note concerning the breaking change of 6.7 for Central Management and mention the migration tool.
Configuration menu - View commit details
-
Copy full SHA for ca63bef - Browse repository at this point
Copy the full SHA ca63befView commit details -
Configuration menu - View commit details
-
Copy full SHA for 5fcfa55 - Browse repository at this point
Copy the full SHA 5fcfa55View commit details -
[metricbeat] migrate vsphere/host to ReporterV2 (#11403)
* migrate vsphere/host to ReporterV2
Configuration menu - View commit details
-
Copy full SHA for 289fc23 - Browse repository at this point
Copy the full SHA 289fc23View commit details -
decode_json_field: process objects and arrays only (#11312)
* process objects and arrays only * changelog * table tests for depth * added array into testcase * moved to fixes * added structure check & decoder error check
Configuration menu - View commit details
-
Copy full SHA for 6bff9a6 - Browse repository at this point
Copy the full SHA 6bff9a6View commit details -
Configuration menu - View commit details
-
Copy full SHA for 49f1609 - Browse repository at this point
Copy the full SHA 49f1609View commit details -
Configuration menu - View commit details
-
Copy full SHA for 7982422 - Browse repository at this point
Copy the full SHA 7982422View commit details
Commits on Mar 27, 2019
-
[metricbeat] migrate vsphere/virtualmachine to ReporterV2 (#11475)
* migrate vsphere/virtualmachine to ReporterV2
Configuration menu - View commit details
-
Copy full SHA for 8e18bad - Browse repository at this point
Copy the full SHA 8e18badView commit details -
Configuration menu - View commit details
-
Copy full SHA for 6d18473 - Browse repository at this point
Copy the full SHA 6d18473View commit details -
Add autodiscover to libbeat modules list in fields generator (#11474)
Add autodiscover providers to the list of libbeat modules in fields generator. Move jolokia autodiscover fields added in #10925 to the provider.
Configuration menu - View commit details
-
Copy full SHA for 8f1fa59 - Browse repository at this point
Copy the full SHA 8f1fa59View commit details -
Configuration menu - View commit details
-
Copy full SHA for 276f19e - Browse repository at this point
Copy the full SHA 276f19eView commit details -
Configuration menu - View commit details
-
Copy full SHA for c8c32b9 - Browse repository at this point
Copy the full SHA c8c32b9View commit details
Commits on Mar 28, 2019
-
Configuration menu - View commit details
-
Copy full SHA for 72aa56d - Browse repository at this point
Copy the full SHA 72aa56dView commit details -
Configuration menu - View commit details
-
Copy full SHA for 4126841 - Browse repository at this point
Copy the full SHA 4126841View commit details -
Configuration menu - View commit details
-
Copy full SHA for 8cceee6 - Browse repository at this point
Copy the full SHA 8cceee6View commit details -
Configuration menu - View commit details
-
Copy full SHA for 4be9bbf - Browse repository at this point
Copy the full SHA 4be9bbfView commit details -
Configuration menu - View commit details
-
Copy full SHA for 5764e89 - Browse repository at this point
Copy the full SHA 5764e89View commit details -
Configuration menu - View commit details
-
Copy full SHA for dcd98bd - Browse repository at this point
Copy the full SHA dcd98bdView commit details -
Configuration menu - View commit details
-
Copy full SHA for 1342d5f - Browse repository at this point
Copy the full SHA 1342d5fView commit details -
Beats CM now handle the new response format from Kibana. (#11377)
Format is defined in elastic/kibana#27408 Main objective is to easier bubbling or errors and messages. ``` export interface ReturnType { error?: { message: string; code?: number; }; success: boolean; } ```
Configuration menu - View commit details
-
Copy full SHA for a07dec3 - Browse repository at this point
Copy the full SHA a07dec3View commit details -
Configuration menu - View commit details
-
Copy full SHA for e044c9c - Browse repository at this point
Copy the full SHA e044c9cView commit details -
[Filebeat] Cisco ASA module (#11171)
This adds a cisco module to x-pack/filebeat. The only fileset currently, asa, will ingest Cisco ASA logs received over syslog. Closes #9200
Configuration menu - View commit details
-
Copy full SHA for 32eb8d1 - Browse repository at this point
Copy the full SHA 32eb8d1View commit details -
Configuration menu - View commit details
-
Copy full SHA for 96e059d - Browse repository at this point
Copy the full SHA 96e059dView commit details
Commits on Mar 29, 2019
-
Fix Kafka download link (#11502)
The previous mirror does not seem to be available anymore.
Configuration menu - View commit details
-
Copy full SHA for 5b22060 - Browse repository at this point
Copy the full SHA 5b22060View commit details -
Fix field alias for nginx.access.remote_ip (#11512)
- It was missing in the breaking changes doc (generated from ecs-migration.yml) - The actual field alias was incorrectly pointing to source.ip, this has been adjusted to source.address - Re-generating the documentation file also updated the breaking changes to include a change introduced in #11334 This should be backported to 7.0. Closes #11510
Configuration menu - View commit details
-
Copy full SHA for 692ef9e - Browse repository at this point
Copy the full SHA 692ef9eView commit details -
Updated kafka version to 2.1.1 (#11530)
* updated kafka version * doc update * updated docs
Configuration menu - View commit details
-
Copy full SHA for df7d657 - Browse repository at this point
Copy the full SHA df7d657View commit details -
Configuration menu - View commit details
-
Copy full SHA for 25ea083 - Browse repository at this point
Copy the full SHA 25ea083View commit details -
Revert the use of event.type (#11538)
* Undo the change about the Auditbeat field in field-name-changes.asciidoc. We're stopping the use of event.type for now, until we're ready to introduce it with curated values * Undo the migration of Filebeat Elasticserch module's es.audit.event_type to event.type
Configuration menu - View commit details
-
Copy full SHA for 88471d0 - Browse repository at this point
Copy the full SHA 88471d0View commit details -
Add docs for new processors (#11239)
Add docs for add_fields, add_labels, and add_tags processors
Steffen Siering committedMar 29, 2019 Configuration menu - View commit details
-
Copy full SHA for 6872b33 - Browse repository at this point
Copy the full SHA 6872b33View commit details -
Add missing docs for filebeat.registry.migrate_file (#11237)
The `filebeat.registry.migrate_file` has been introduced with 7.0. I just noticed that the doc is still missing.
Steffen Siering committedMar 29, 2019 Configuration menu - View commit details
-
Copy full SHA for ff73035 - Browse repository at this point
Copy the full SHA ff73035View commit details -
Add missing migrated fields for system module. (#11545)
* This adds all missing migrated fields for the system module to ecs-migration.yml * The breaking changes doc has been updated accordingly with script/renamed_fields.py * The corresponding dashboards for the system module have been updated manually (sorry for all the whitespace diff)
Configuration menu - View commit details
-
Copy full SHA for e100beb - Browse repository at this point
Copy the full SHA e100bebView commit details
Commits on Mar 30, 2019
-
Fix issue 11543 when key 'log' does not exist (#11549)
* Fix panic in add_kubernetes_metadata processor when key `log` does not exist. {issue}11543[11543]
Ray Qiu committedMar 30, 2019 Configuration menu - View commit details
-
Copy full SHA for aba44a8 - Browse repository at this point
Copy the full SHA aba44a8View commit details
Commits on Apr 1, 2019
-
add mongodb OP_MSG (2013) (#11500)
This adds a new opcode OP_MSG to the MongoDB protocol parser.
Configuration menu - View commit details
-
Copy full SHA for 89bf75c - Browse repository at this point
Copy the full SHA 89bf75cView commit details -
Configuration menu - View commit details
-
Copy full SHA for 408508b - Browse repository at this point
Copy the full SHA 408508bView commit details -
Configuration menu - View commit details
-
Copy full SHA for ecfc3b8 - Browse repository at this point
Copy the full SHA ecfc3b8View commit details -
Configuration menu - View commit details
-
Copy full SHA for 4d1b9ce - Browse repository at this point
Copy the full SHA 4d1b9ceView commit details -
[Metricbeat] Migrate Kubernetes state_container Metricset to use Repo…
…rterV2 interface (#10858)
Configuration menu - View commit details
-
Copy full SHA for f81ac68 - Browse repository at this point
Copy the full SHA f81ac68View commit details -
[Filebeat] NetFlow: Add Cisco ASA fields (#11201)
Cisco ASA uses some custom fields for NetFlow V9. From "Cisco ASA NetFlow Implementation Guide": - 33000 NF_F_INGRESS_ACL_ID, renamed to ingress_acl_id - 33001 NF_F_EGRESS_ACL_ID, renamed to egress_acl_id - 33002 NF_F_FW_EXT_EVENT, renamed to fw_ext_event - 40000 NF_F_USERNAME, renamed to username Some devices also use the following fields, from "Information Elements for Stealthwatch v7.0": - 40001 ASAXlateSourceAddressIPV4, renamed to xlate_source_address_ipv4 - 40002 ASAXlateDestinationAddressIPV4, renamed to xlate_destination_address_ipv4 - 40003 ASAXlateSourcePort, renamed to xlate_source_port - 40004 ASAXlateDestinationPort, renamed to xlate_destination_port - 40005 ASAFirewallEvent, renamed to firewall_event Cisco ASA NetFlow implementation requires a new field datatype, ACL ID, with 12-byte length, that encodes the following information: - First four bytes are the ACL name ID. - Next four bytes are the ACL entry ID / Object-Group ID. - Final four bytes are the Extended ACL Entry ID. Following with Logstash tradition, these fields are converted to string featuring the 3 ID's in encoded in hex and separated by a hypen.
Configuration menu - View commit details
-
Copy full SHA for 5c04770 - Browse repository at this point
Copy the full SHA 5c04770View commit details -
[Filebeat] Missing file cisco.yml.disabled(#11563)
This file was missing from the new cisco module
Configuration menu - View commit details
-
Copy full SHA for 6b04ff0 - Browse repository at this point
Copy the full SHA 6b04ff0View commit details -
Update master changelogs (#11573)
* Update master changelogs * Add missing updates to release.asciidoc
Steffen Siering committedApr 1, 2019 Configuration menu - View commit details
-
Copy full SHA for 4fe44c4 - Browse repository at this point
Copy the full SHA 4fe44c4View commit details -
Collect and index CCR auto-follow stats (#11574)
Resolves #9178. This PR teaches the `elasticsearch.ccr` metricset (with `xpack.enabled: true`) to collect and index CCR auto-follow stats. The metricset was already collecting and indexing CCR follow stats per index.
Configuration menu - View commit details
-
Copy full SHA for 0932f84 - Browse repository at this point
Copy the full SHA 0932f84View commit details -
Indicate that ILM is on by default and add new settings (#11485)
* Indicate that ILM is on by default and add new settings * Add changes from the review
Configuration menu - View commit details
-
Copy full SHA for 5fb7831 - Browse repository at this point
Copy the full SHA 5fb7831View commit details -
[Auditbeat] Package: Open versioned librpm shared objects (#11565)
To access Librpm functions in the package dataset, we currently dlopen() `/usr/lib64/librpm.so` which is usually a symlink to the versioned shared object e.g. `/usr/lib64/librpm.so.1`. However, this symlink is only present when the package `rpm-devel` is installed and that's usually not the case by default. This PR changes to using the versioned shared object names as a fallback when the symlink is not available. Versions 1, 3, and 8 are library versions that are present on systems I've tested on, while other in-between versions are not explicitly tested, but it's reasonable to assume they work. In any case, if any of the functions we are looking for are not available the dataset will still abort. I've also changed from an absolute path (`/usr/lib64/librpm.so*`) to a generic one (`librpm.so*`) to be more flexible about the location. With this change, the package dataset works on CentOS 6, 7, and Fedora 29 without the `rpm-devel` package installed. The package is still required for compilation.
Christoph Wurm committedApr 1, 2019 Configuration menu - View commit details
-
Copy full SHA for 5811355 - Browse repository at this point
Copy the full SHA 5811355View commit details -
Update breaking changes docs (#11439)
Steffen Siering committedApr 1, 2019 Configuration menu - View commit details
-
Copy full SHA for ed5745d - Browse repository at this point
Copy the full SHA ed5745dView commit details
Commits on Apr 2, 2019
-
Remove ellipse from config example (#11571)
Someone could copy/paste this example without realizing the ellipse can be to be changed to a meaningful event ID filter.
Configuration menu - View commit details
-
Copy full SHA for e1988a3 - Browse repository at this point
Copy the full SHA e1988a3View commit details -
Set migration.6_to_7.enabled: true in short config (#11559)
To simplify for users to enable the migration aliases, the config option is set to true. Like this when commenting out the config, it is already enabled. This came out of a discussion where we discovered users assumed it's enabled when commenting out and falsely assumed the migration layer is enabled.
Configuration menu - View commit details
-
Copy full SHA for c0bfdbd - Browse repository at this point
Copy the full SHA c0bfdbdView commit details -
docker metadata processor: replace source field with log.field.path (#…
…11577) * docker metadata processor: replace source field with log.field.path
Pablo Mercado committedApr 2, 2019 Configuration menu - View commit details
-
Copy full SHA for ce68c78 - Browse repository at this point
Copy the full SHA ce68c78View commit details -
Add _bucket to histogram metrics in Prometheus Collector (#11578)
* Add _bucket to histogram metrics
Configuration menu - View commit details
-
Copy full SHA for 9835571 - Browse repository at this point
Copy the full SHA 9835571View commit details -
Fix changelog for #6579 (#11572)
The changelog entry got merged into the wrong spot during the cherry-pick. This was originally fixed in v6.2.4. Relates #6579
Configuration menu - View commit details
-
Copy full SHA for 4341746 - Browse repository at this point
Copy the full SHA 4341746View commit details -
Configuration menu - View commit details
-
Copy full SHA for f0e288b - Browse repository at this point
Copy the full SHA f0e288bView commit details -
New processor: truncate_fields (#11297)
This PR introduces a new processor `truncate_fields`. To keep raw messages use this processor with `copy_fields`. ### `truncate_fields` This processor truncates configured fields. Example configuration is below: ```yaml processors: - truncate_fields: fields: - message max_bytes: 1024 fail_on_error: false ignore_missing: true ``` ### Keep raw events This preserves the orignal field and truncates it, if it's too long. ```yaml processors: - copy_fields: fields: - from: message to: event.original fail_on_error: false ignore_missing: true - truncate_fields: fields: - event.original max_bytes: 1024 fail_on_error: false ignore_missing: true ```
Configuration menu - View commit details
-
Copy full SHA for 555a89a - Browse repository at this point
Copy the full SHA 555a89aView commit details -
* Add upgrade docs * Apply suggestions from code review * Add more detail based on review feedback * A few clarifications * Remove old file * Rename file to original name * More changes from review * Add changes from review before moving stuff around * Move some content and clean it up * Add more fixes from the review * Add more changes based on review comments
Configuration menu - View commit details
-
Copy full SHA for 0caa944 - Browse repository at this point
Copy the full SHA 0caa944View commit details
Commits on Apr 3, 2019
-
Add missing Kubernetes metadata fields to Filebeat CoreDNS module, an…
…d fix a documentation error - issue #11590. (#11591) * Add missing Kubernetes metadata fields to Filebeat CoreDNS module, and fix a documentation error.
Ray Qiu committedApr 3, 2019 Configuration menu - View commit details
-
Copy full SHA for dfc7850 - Browse repository at this point
Copy the full SHA dfc7850View commit details -
[Metricbeat] Migrate Kubernetes state_deployment Metricset to use Rep…
…orterV2 interface (#10961)
Configuration menu - View commit details
-
Copy full SHA for 8de672e - Browse repository at this point
Copy the full SHA 8de672eView commit details -
Configuration menu - View commit details
-
Copy full SHA for 9f3aede - Browse repository at this point
Copy the full SHA 9f3aedeView commit details -
Add scripts for aws module to help testing locally (#11589)
* Add get creds script and sqs script into aws module test folder * Add readme
Configuration menu - View commit details
-
Copy full SHA for de955be - Browse repository at this point
Copy the full SHA de955beView commit details -
Configuration menu - View commit details
-
Copy full SHA for 5c989ab - Browse repository at this point
Copy the full SHA 5c989abView commit details -
Configuration menu - View commit details
-
Copy full SHA for 72fa474 - Browse repository at this point
Copy the full SHA 72fa474View commit details -
Configuration menu - View commit details
-
Copy full SHA for 0971472 - Browse repository at this point
Copy the full SHA 0971472View commit details -
Collect field also being collected by internal collector (#11616)
This PR updates the `elasticsearch.index` metricset (x-pack code path) to collect a new field that's now being collected by internal/native `index_stats` collector.
Configuration menu - View commit details
-
Copy full SHA for 49c852c - Browse repository at this point
Copy the full SHA 49c852cView commit details -
Support shipping directly to monitoring cluster (#9260)
* Fixing imports * Introducing monitoring.* config * Determine reporter format (production or monitoring) * WIP: Capture elasticsearch cluster_uuid on connect to ES output? * WIP: record cluster_uuid and then try to use it * Extracting bulk to production code into function * Add switch for sending to production or monitoring cluster * Better if check * Using switch instead of if-else * WIP: Debugging docker-compose failure * [WIP] Add docker compose logging for system tests as well * Removing logging statements used for debugging * Add "_type": "doc" if ES version < 7 * Rename format -> _format since it's for internal use only * Rename Monitoring -> XPackMonitoring and MonitoringNew -> Monitoring * Use consts instead of bare strings * Move format validation check to constructor * Collect cluster UUID when connection is made with ES output cluster * Fix format passing + cluster UUID retrieval from registry * Fixing error message * Pass down format correctly * Changing log level for recurring message * Fixing monitoring index name generation + doc fields * Removing line from vestigial implementation * Removing unnecessary else * Use iota for reporting format constants * Better passing of format + validation in constructor * Adding CHANGELOG entry * Adding system test for direct monitoring * Refactoring * Adding skeleton comparison test * Refactoring: renaming * Refactoring * Better cleanup * Fixing formatting * Fixing syntax error * Fixing variable name in template * Fleshing out TODOs * Make Hound happy (woof woof!) * Fixing rebase errors * Make monitoring type a string + better variable name * Change major version check * Extract meta from action * Use shorter method names * Remove duplication of logic * Refactoring: move selectMonitoringConfig to monitoring.SelectConfig * Update schema version * Move variable into callback fn's scope so memory is not shared across callback calls * Fixing scope of registry and var creations so they don't happen on every callback call * Remove naming stutter * Reduce hackiness with passing reporter format * Move error vars to package scope * Removing stutter * Adding extra godoc about format usage * Extend godoc to explain the rationale behind the format hack * Debugging docker container logs for system tests * Remove _type from bulk request URI * Removing debugging statement * Fixing logic
Configuration menu - View commit details
-
Copy full SHA for 01ff3e4 - Browse repository at this point
Copy the full SHA 01ff3e4View commit details
Commits on Apr 4, 2019
-
[Metricbeat] Migrate Kubernetes state_replicaset Metricset to use Rep…
…orterV2 interface (#10974)
Configuration menu - View commit details
-
Copy full SHA for 459c7f5 - Browse repository at this point
Copy the full SHA 459c7f5View commit details -
[Metricbeat] Migrate Kubernetes state_statefulset Metricset to use Re…
…porterV2 interface (#10976)
Configuration menu - View commit details
-
Copy full SHA for 9df6455 - Browse repository at this point
Copy the full SHA 9df6455View commit details -
Configuration menu - View commit details
-
Copy full SHA for 4e09a44 - Browse repository at this point
Copy the full SHA 4e09a44View commit details -
Configuration menu - View commit details
-
Copy full SHA for 2ec788f - Browse repository at this point
Copy the full SHA 2ec788fView commit details -
Add TLS support for Metricbeat http server (#11611)
Add TLS/SSL support to the Metricbeat http/server metricset. This allows users to host an HTTPS server if they configure a certificate and key. Closes #11457
Configuration menu - View commit details
-
Copy full SHA for 0fb063f - Browse repository at this point
Copy the full SHA 0fb063fView commit details -
Fixes license check issue with invalid license UUID and check on 32 b…
Configuration menu - View commit details
-
Copy full SHA for 4b7823b - Browse repository at this point
Copy the full SHA 4b7823bView commit details -
Configuration menu - View commit details
-
Copy full SHA for 928d12e - Browse repository at this point
Copy the full SHA 928d12eView commit details -
Module configuration variants (#9118)
* Show colon-delimited names in module listing * Sort module listings so variants show up after defaults * Accept variant names * Update unit tests * Adding CHANGELOG entries * Adding docs for module configuration variants * Renaming method to be more conventional * Using - instead of : as variant delimiter * Adding xpack variant for elasticsearch module * Adding xpack variant for kibana module * Adding unit test for sorting order * Removing flavors for clarity * Fixing CHANGELOG * Fixing duplicate anchor
Configuration menu - View commit details
-
Copy full SHA for 22c4970 - Browse repository at this point
Copy the full SHA 22c4970View commit details
Commits on Apr 5, 2019
-
[Auditbeat] normalized event fields for auditd module (#11432)
The auditd module is updated to set normalized values for event.category and event.type. It also sets event.outcome from auditd.result. Currently it sets the following values for audit messages of USER_LOGIN and USER_AUTH type: | event.category | event.outcome | event.type | |----------------|---------------|------------------------| | authentication | success | authentication_success | | authentication | failure | authentication_failure | Closes #11428
Configuration menu - View commit details
-
Copy full SHA for 0df354a - Browse repository at this point
Copy the full SHA 0df354aView commit details -
[Auditbeat] Package: Nullify Librpm's rpmsqEnable (#11628)
Overrides the `rpmsqEnable` function in Librpm that sets and unsets signal traps. Hopefully, this will eliminate the residual test failures.
Christoph Wurm committedApr 5, 2019 Configuration menu - View commit details
-
Copy full SHA for e047de6 - Browse repository at this point
Copy the full SHA e047de6View commit details -
[Auditbeat] Package: Enable suse (#11634)
Both openSUSE and SLES use RPM under the hood, so we can use the code we already have for CentOS/Fedora. Depends on #11628. Fixes elastic/beats-tester#115.
Christoph Wurm committedApr 5, 2019 Configuration menu - View commit details
-
Copy full SHA for ebdf66d - Browse repository at this point
Copy the full SHA ebdf66dView commit details -
restore default make target and allow some overrides (#11541)
* build the beat by default * allow clean override of some make targets
Configuration menu - View commit details
-
Copy full SHA for 5554677 - Browse repository at this point
Copy the full SHA 5554677View commit details
Commits on Apr 6, 2019
-
Updating monitoring docs with direct monitoring configuration (#11678)
* Updating monitoring docs with direct monitoring configuration * [DOCS] Fixes outdated terms and links
Configuration menu - View commit details
-
Copy full SHA for aa8df15 - Browse repository at this point
Copy the full SHA aa8df15View commit details
Commits on Apr 7, 2019
-
Fix template/policy is always overwritten (#11671)
The force flag for policy and template overwrites have been set to true in the standard Elasticsearch callback. Due to this every reconnect will result in the policy and template being overwritten. This fix sets the flags to false and ensure that the template is only overwritten if a new policy is created in Elasticsearch.
Steffen Siering committedApr 7, 2019 Configuration menu - View commit details
-
Copy full SHA for 9f4e2c8 - Browse repository at this point
Copy the full SHA 9f4e2c8View commit details
Commits on Apr 8, 2019
-
[Metricbeat] Add moduleFlag, omitDocumentedFieldsCheck and ModuleConf…
…ig to http testing framework (#11660)
Configuration menu - View commit details
-
Copy full SHA for e8342d8 - Browse repository at this point
Copy the full SHA e8342d8View commit details -
[metricbeat] migrate mongodb to reporterv2 with error handling (#11653)
* migrate mongodb to reporterv2 with error handling
Configuration menu - View commit details
-
Copy full SHA for 3ff87df - Browse repository at this point
Copy the full SHA 3ff87dfView commit details -
[Fix] Do not hide error on http failure (#11604)
* do not hide error on failure * changelog
Configuration menu - View commit details
-
Copy full SHA for 9df4a68 - Browse repository at this point
Copy the full SHA 9df4a68View commit details -
Fix formatting for
event.duration
(#11675)Human readable not working well for us.
Configuration menu - View commit details
-
Copy full SHA for 529885e - Browse repository at this point
Copy the full SHA 529885eView commit details -
[CM] Parse enrollment_token response correctly (#11648)
* fixed enroll response parsing
Configuration menu - View commit details
-
Copy full SHA for 4cc4eee - Browse repository at this point
Copy the full SHA 4cc4eeeView commit details -
Configuration menu - View commit details
-
Copy full SHA for 23702d6 - Browse repository at this point
Copy the full SHA 23702d6View commit details -
Add release highlights (#11621)
* Add release highlights * Rework highlights * Add fixes from review * Use attribute
Configuration menu - View commit details
-
Copy full SHA for 1bbaf86 - Browse repository at this point
Copy the full SHA 1bbaf86View commit details
Commits on Apr 9, 2019
-
Remove Windows XP comment from README (#11698)
Windows XP isn't supported by Go 1.11 and it's not on our support matrix.
Configuration menu - View commit details
-
Copy full SHA for fbd5e4d - Browse repository at this point
Copy the full SHA fbd5e4dView commit details -
rename my.domain.org to non existent my.domain.elastic and update resolving file
Pablo Mercado committedApr 9, 2019 Configuration menu - View commit details
-
Copy full SHA for 460354d - Browse repository at this point
Copy the full SHA 460354dView commit details -
Configuration menu - View commit details
-
Copy full SHA for e76ead1 - Browse repository at this point
Copy the full SHA e76ead1View commit details -
Configuration menu - View commit details
-
Copy full SHA for bb3f116 - Browse repository at this point
Copy the full SHA bb3f116View commit details -
Updating config files with new direct x-pack monitoring settings (#11677
) Beats now have the ability to send their monitoring data directly to the **monitoring** Elasticsearch cluster (#9260). This PR updates the default and reference configuration files for all Beats with the new monitoring settings. It also updates the configuration template used by Central Management.
Configuration menu - View commit details
-
Copy full SHA for ecc61f2 - Browse repository at this point
Copy the full SHA ecc61f2View commit details -
Monitoring parity test: better type comparisons (#11720)
* Cast ints into floats * Use isinstance instead of type
Configuration menu - View commit details
-
Copy full SHA for 1e6d160 - Browse repository at this point
Copy the full SHA 1e6d160View commit details -
[metricbeat] check for a valid limit before we process a memory event (…
…#11676) * check for a valid limit before we process a memory event
Configuration menu - View commit details
-
Copy full SHA for 97aec9b - Browse repository at this point
Copy the full SHA 97aec9bView commit details -
Configuration menu - View commit details
-
Copy full SHA for a4b6e1f - Browse repository at this point
Copy the full SHA a4b6e1fView commit details -
[metricbeat] migrate zookeeper to reporter V2 with error handling (#1…
…1659) * migrate zookeeper to reporter V2 with error handling
Configuration menu - View commit details
-
Copy full SHA for 9aca9e7 - Browse repository at this point
Copy the full SHA 9aca9e7View commit details -
Update Golang to 1.12.1 (#11330)
Changes in 1.12: https://golang.org/doc/go1.12 Changes in minor release: https://github.com/golang/go/issues?q=milestone%3AGo1.12.1 Updated vendored packages: - `github.com/tsg/gopacket/pcap` - `github.com/docker/docker/pkg/*` - `github.com/docker/go-connections` New vendored packages (as required by dependencies): - `github.com/konsorten/go-windows-terminal-sequences` Removed vendored package: - `github.com/Sirupsen/logrus`: `github.com/sirupsen/logrus` is used and it leads to a case insensitive collision, required by docker dependencies
Configuration menu - View commit details
-
Copy full SHA for 0c1d247 - Browse repository at this point
Copy the full SHA 0c1d247View commit details -
Fix upgrade docs for issues found during testing (#11638)
* Fix typo found by Jason B * Add chnages recommended by testers * Add missing file * Fix more issues and add troubleshooting for default_field problem * Remove reviewer note * Another round of changes from review
Configuration menu - View commit details
-
Copy full SHA for ab6cc1c - Browse repository at this point
Copy the full SHA ab6cc1cView commit details -
Remove Logstash Forwarder migration content (#11681)
* Remove Logstash Forwarder migration content * Remove migration file from index
Configuration menu - View commit details
-
Copy full SHA for 14aa522 - Browse repository at this point
Copy the full SHA 14aa522View commit details -
Change add_cloud_metadata to not overwrite cloud field (#11612)
* Change add_cloud_metadata to not overwrite cloud field * Add overwrite flag for add_cloud_metadata * Add test for cloud.provider: ec2 * Update processors-using.asciidoc
Configuration menu - View commit details
-
Copy full SHA for 17edc90 - Browse repository at this point
Copy the full SHA 17edc90View commit details -
Read archived .evtx files with Winlogbeat (#11361)
This gives Winlogbeat the ability to read from archived .evtx files. The `name` parameter recognizes that the value is absolute path and then uses the appropriate APIs to open the file and ingest its contents. In order to support the use case of reading from a file and then exiting when there are no more events (`ERROR_NO_MORE_ITEMS`) I added a config option to change the behavior of the reader from waiting for more events to stopping. I also had to add `shutdown_timeout` option to make Winlogbeat wait for events to finish publishing before exiting. To keep it simple, globs are not supported. This would have required the introduction of a "prospector" to continuously monitor the glob for new / moved / deleted files. winlogbeat.event_logs: - name: ${EVTX_FILE} no_more_events: stop winlogbeat.shutdown_timeout: 30s winlogbeat.registry_file: evtx-registry.yml output.elasticsearch.hosts: ['http://localhost:9200'] Closes #4450
Configuration menu - View commit details
-
Copy full SHA for dfabb06 - Browse repository at this point
Copy the full SHA dfabb06View commit details
Commits on Apr 10, 2019
-
Make it possible to chain Beat processors in the script processor (#1…
…1680) Prior to this change it was possible to construct individual Beat processors. This adds the ability to chain them together in a list so that calling a single `Run(event)` function executes the list of processors. var localeProcessor = new processor.AddLocale(); var chain = new processor.Chain() .Add(localeProcessor) .Rename({ fields: [ {from: "event.timezone", to: "timezone"}, ], }) .Add(function(evt) { evt.Put("hello", "world"); }) .Build(); function process(evt) { return chain.Run(evt); }
Configuration menu - View commit details
-
Copy full SHA for 19e83b1 - Browse repository at this point
Copy the full SHA 19e83b1View commit details -
Make mage dependency for clean (#11712)
Mage is used in the `make clean` but was not a dependency. So clean failed on CI without noticing.
Configuration menu - View commit details
-
Copy full SHA for 118ae55 - Browse repository at this point
Copy the full SHA 118ae55View commit details -
[Libbeat] Fix array matching in contains condition (#11691)
Matching arrays of strings inside a contains condition doesn't work properly with the output of JSON decoding as it is expecting fields of type []string when they are in this case []interface{}. Fixes: #3138
Configuration menu - View commit details
-
Copy full SHA for 6a56dad - Browse repository at this point
Copy the full SHA 6a56dadView commit details -
[Auditbeat] Fix misleading user/uid for login events (#11525)
Update the auditd module to set the correct user/uid for login attempts. Until now, the ECS user.name/id were set to the account that the login process used, not the account that was being logged-in to. Fixes #11430
Configuration menu - View commit details
-
Copy full SHA for 1e9c7d4 - Browse repository at this point
Copy the full SHA 1e9c7d4View commit details -
Configuration menu - View commit details
-
Copy full SHA for 42dcd63 - Browse repository at this point
Copy the full SHA 42dcd63View commit details -
Configuration menu - View commit details
-
Copy full SHA for 5c2787e - Browse repository at this point
Copy the full SHA 5c2787eView commit details
Commits on Apr 11, 2019
-
Change cloud.provider from ec2 to aws and from gce to gcp in add_clou…
…d_metadata (#11687) * Change cloud.provider from ec2 to aws in add_cloud_metadata * Change GCE to GCP to match ECS
Configuration menu - View commit details
-
Copy full SHA for 69f6aeb - Browse repository at this point
Copy the full SHA 69f6aebView commit details -
Configuration menu - View commit details
-
Copy full SHA for a3856c5 - Browse repository at this point
Copy the full SHA a3856c5View commit details -
Configuration menu - View commit details
-
Copy full SHA for 3ba4cc5 - Browse repository at this point
Copy the full SHA 3ba4cc5View commit details -
Update github.com/elastic/go-seccomp-bpf (#11746)
This updates the syscall list for Linux v5.0. And this fixes a bug that can occur if you configure more than 256 syscalls in a BPF filter.
Configuration menu - View commit details
-
Copy full SHA for 8098e28 - Browse repository at this point
Copy the full SHA 8098e28View commit details -
Configuration menu - View commit details
-
Copy full SHA for b9a3cdf - Browse repository at this point
Copy the full SHA b9a3cdfView commit details -
[Metricbeat] Migrate Dropwizard collector Metricset to use ReporterV2…
…Error interface (#11743)
Configuration menu - View commit details
-
Copy full SHA for c6f3a09 - Browse repository at this point
Copy the full SHA c6f3a09View commit details -
Enable docker provider integration test (#11721)
Test was disabled here: #11627
Configuration menu - View commit details
-
Copy full SHA for ccfbda3 - Browse repository at this point
Copy the full SHA ccfbda3View commit details -
Refactoring: use logger from base metricset (#11754)
With #11106, the base `Metricset` struct started defining a `Logger()` method which returned a `*logp.Logger` for metricsets to use. With this change, each metricset no longer needs to define its own logger. This PR updates Elastic Stack metricsets to use the base `Metricset`'s `Logger()` instead of defining their own.
Configuration menu - View commit details
-
Copy full SHA for 6d07f89 - Browse repository at this point
Copy the full SHA 6d07f89View commit details -
[Metricbeat] updated docs & generator to the new reporterV2 w/ error …
…interface (#11745) * updated docs and metricset templates to the new reporterV2 w/ error interface
Configuration menu - View commit details
-
Copy full SHA for 5f947e7 - Browse repository at this point
Copy the full SHA 5f947e7View commit details -
Configuration menu - View commit details
-
Copy full SHA for 6f1f994 - Browse repository at this point
Copy the full SHA 6f1f994View commit details
Commits on Apr 12, 2019
-
Refactoring: use new Fetch interface that automatically reports and l…
…ogs errors (#11763) Refactors code in the `kibana` Metricbeat module to use the new `Fetch` interface introduced in #10727. Note that x-pack code paths in this module were not refactored to use the new interface as we don't want errors from those code paths to be reported into `metricbeat-*` indices, only logged to Metricbeat logs. Related: #11767.
Configuration menu - View commit details
-
Copy full SHA for 462f798 - Browse repository at this point
Copy the full SHA 462f798View commit details -
Configuration menu - View commit details
-
Copy full SHA for dbf39c1 - Browse repository at this point
Copy the full SHA dbf39c1View commit details -
Fix: Correctly initialize the Logger for the TCP input instance. (#11605
Configuration menu - View commit details
-
Copy full SHA for c5d4832 - Browse repository at this point
Copy the full SHA c5d4832View commit details -
Fix Prometheus histograms when keylabels and values sit at the same p…
…ath (#11759) - Fix Labels overwriting for Prometheus histograms + keylabels - Add tests for keylabeled prometheus metrics
Pablo Mercado committedApr 12, 2019 Configuration menu - View commit details
-
Copy full SHA for eb89eaa - Browse repository at this point
Copy the full SHA eb89eaaView commit details -
Configuration menu - View commit details
-
Copy full SHA for bd1a925 - Browse repository at this point
Copy the full SHA bd1a925View commit details -
Configuration menu - View commit details
-
Copy full SHA for ae1f99e - Browse repository at this point
Copy the full SHA ae1f99eView commit details -
Configuration menu - View commit details
-
Copy full SHA for f6d610b - Browse repository at this point
Copy the full SHA f6d610bView commit details
Commits on Apr 13, 2019
-
Fixing name of ES API in error message (#11797)
The `elasticsearch/pending_tasks` metricset was emitting an error message referring to the "ML Job Stats" API, instead of the "Pending Tasks" API. This PR fixes the error message.
Configuration menu - View commit details
-
Copy full SHA for 71d203d - Browse repository at this point
Copy the full SHA 71d203dView commit details -
Don't report errors in x-pack code path (#11796)
The X-Pack code path shouldn't report errors as they will get indexed into `metricbeat-*` indices, not `.monitoring-*` indices (which don't have a field for errors anyway).
Configuration menu - View commit details
-
Copy full SHA for 48cf37d - Browse repository at this point
Copy the full SHA 48cf37dView commit details -
Refactoring: use new Fetch interface that automatically reports and l…
…ogs errors (#11795) * Refactoring: Use new Fetch interface in elasticsearch/shard metricset * Refactoring: Use new Fetch interface in elasticsearch/pending_tasks metricset * Refactoring: Use new Fetch interface in elasticsearch/node_stats metricset * Refactoring: Use new Fetch interface in elasticsearch/node metricset * Refactoring: Use new Fetch interface in elasticsearch/ml_job metricset * Refactoring: Use new Fetch interface in elasticsearch/index_summary metricset * Refactoring: Use new Fetch interface in elasticsearch/index_recovery metricset * Refactoring: Use new Fetch interface in elasticsearch/index metricset * Refactoring: Use new Fetch interface in elasticsearch/cluster_stats metricset * Refactoring: Use new Fetch interface in elasticsearch/ccr metricset * Updating test
Configuration menu - View commit details
-
Copy full SHA for 14381b8 - Browse repository at this point
Copy the full SHA 14381b8View commit details -
Skip flaky Kibana Stats integration test (#11807)
We're starting to see errors like this quite frequently (but not all the time) in our CI: ``` Creating metricbeat91226fb6ffe6d06676cfc1383d0a3ffb19f00db7_kibana_1 ... stats_integration_test.go:60: Error Trace: stats_integration_test.go:60 Error: Should be empty, but was [error making http request: Get http://kibana:5601/api/stats?extended=true: net/http: request canceled (Client.Timeout exceeded while awaiting headers)] Test: TestFetch stats_integration_test.go:61: Error Trace: stats_integration_test.go:61 Error: Should NOT be empty, but was [] Test: TestFetch ``` So this PR skips this test suite for now, while we try to debug and fix the root cause in #11380.
Configuration menu - View commit details
-
Copy full SHA for 6eecf67 - Browse repository at this point
Copy the full SHA 6eecf67View commit details
Commits on Apr 15, 2019
-
Configuration menu - View commit details
-
Copy full SHA for 0e48728 - Browse repository at this point
Copy the full SHA 0e48728View commit details -
Configuration menu - View commit details
-
Copy full SHA for 1f24a7d - Browse repository at this point
Copy the full SHA 1f24a7dView commit details -
Fix flaky service_integration_windows_test (#11662)
* Fix flaky service_integration_windows_test Some services can change state before reader.Read() call is executed which will result in a test faillure. Fix test by introducing a confidence factor and enriching the error message with the state-changed service details. Fixes #8880 and #7977 * Update metricbeat/module/windows/service/service_integration_windows_test.go Co-Authored-By: narph <mariana@elastic.co>
Configuration menu - View commit details
-
Copy full SHA for 88b88f7 - Browse repository at this point
Copy the full SHA 88b88f7View commit details -
Add option to set rcv_buffer for UDP inputs (#11739)
* Add option to set rcv_buffer for UDP inputs * Missed err handling * Import style fix * Implement review feedback * add documentation * Add option to set rcv_buffer for UDP inputs * Missed err handling * Import style fix * Implement review feedback * add documentation * Correct changelog link * Apply gofmt suggestion * Apply indentation recommendation from gofmt * Newline for linter * Autogen reference file * x-pack fmt update * Restore import order that was modified by fmt update
Configuration menu - View commit details
-
Copy full SHA for 8b4ad62 - Browse repository at this point
Copy the full SHA 8b4ad62View commit details -
Configuration menu - View commit details
-
Copy full SHA for 5e22c55 - Browse repository at this point
Copy the full SHA 5e22c55View commit details -
Configuration menu - View commit details
-
Copy full SHA for 9b7c782 - Browse repository at this point
Copy the full SHA 9b7c782View commit details -
Configuration menu - View commit details
-
Copy full SHA for 5836641 - Browse repository at this point
Copy the full SHA 5836641View commit details -
[metricbeat] migrate Redis to reporterV2 with error (#11792)
* migrate redis to reporter V2 with error return
Configuration menu - View commit details
-
Copy full SHA for 2499449 - Browse repository at this point
Copy the full SHA 2499449View commit details -
Configurable line terminator (#11015)
This PR add a new input configuration option named `line_terminator`: ``` # Characters which separate the lines. Valid values: auto, line_feed, vertical_tab, form_feed, # carriage_return, carriage_return_line_feed, next_line, line_separator, paragraph_separator. #line_terminator: auto ``` The option `auto` tells Filebeat to use our current hybrid new line finder approach. Thus, we can avoid introducing a breaking change. It also contains a minor refactoring in `readfile` package. I have created a new type `Config` which stores the configuration of the readers of the package. This eliminates a long list of parameters in the constructors of `EncodeReader` and `LineReader`. Closes #5500
Configuration menu - View commit details
-
Copy full SHA for ebc7da7 - Browse repository at this point
Copy the full SHA ebc7da7View commit details -
Configuration menu - View commit details
-
Copy full SHA for eb680ad - Browse repository at this point
Copy the full SHA eb680adView commit details -
Configuration menu - View commit details
-
Copy full SHA for 3f273fe - Browse repository at this point
Copy the full SHA 3f273feView commit details -
Configuration menu - View commit details
-
Copy full SHA for 3233251 - Browse repository at this point
Copy the full SHA 3233251View commit details -
Configuration menu - View commit details
-
Copy full SHA for e2b1084 - Browse repository at this point
Copy the full SHA e2b1084View commit details -
[metricbeat] migrate kvm to ReporterV2 with new error handling (#11814)
* migrate kvm to reporterv2 with error handling
Configuration menu - View commit details
-
Copy full SHA for b3b9a2f - Browse repository at this point
Copy the full SHA b3b9a2fView commit details -
Configuration menu - View commit details
-
Copy full SHA for ddd168d - Browse repository at this point
Copy the full SHA ddd168dView commit details -
Configuration menu - View commit details
-
Copy full SHA for ecae0a9 - Browse repository at this point
Copy the full SHA ecae0a9View commit details -
Configuration menu - View commit details
-
Copy full SHA for 1e713d1 - Browse repository at this point
Copy the full SHA 1e713d1View commit details -
Configuration menu - View commit details
-
Copy full SHA for ea97be0 - Browse repository at this point
Copy the full SHA ea97be0View commit details
Commits on Apr 16, 2019
-
Configuration menu - View commit details
-
Copy full SHA for 8f8db1a - Browse repository at this point
Copy the full SHA 8f8db1aView commit details -
Fix TODO in Suricata doc (#11752)
* Fix TODO in Suricata doc Add config example to replace TODO in Suricata module documentation.
Configuration menu - View commit details
-
Copy full SHA for af76692 - Browse repository at this point
Copy the full SHA af76692View commit details -
[Metricbeat] add line about LSM ptrace blocks in the system metricset (…
…#11822) * add line about ptrace blocks in the system metricset
Configuration menu - View commit details
-
Copy full SHA for 7b6d7d8 - Browse repository at this point
Copy the full SHA 7b6d7d8View commit details -
Un-skip Metricbeat kibana module flaky tests (#11827)
* Un-skip flaky tests * Making healthcheck more robust
Configuration menu - View commit details
-
Copy full SHA for fc4d8f6 - Browse repository at this point
Copy the full SHA fc4d8f6View commit details -
Configuration menu - View commit details
-
Copy full SHA for c5937e5 - Browse repository at this point
Copy the full SHA c5937e5View commit details -
LimitReader copies bytes instead of slicing so the underlying big arr…
…ay can be freed (#11524) In `LimitReader` when truncating the line if the configured limit was reached, the message was sliced. Slicing does not touch the underlying array. To make sure the long line can be truncated and freed, the reader copies the contents to a new array. Thus, freeing the data.
Configuration menu - View commit details
-
Copy full SHA for 72bc454 - Browse repository at this point
Copy the full SHA 72bc454View commit details -
Add CoreDNS metrics for cache plugin (#11738)
Add CoreDNS metrics and adapt some existing names
Pablo Mercado committedApr 16, 2019 Configuration menu - View commit details
-
Copy full SHA for 872d7fc - Browse repository at this point
Copy the full SHA 872d7fcView commit details
Commits on Apr 17, 2019
-
Filebeat envoyproxy module (#11700)
* Add filebeat module envoyproxy for Envoy access logs
Ray Qiu committedApr 17, 2019 Configuration menu - View commit details
-
Copy full SHA for 03e316e - Browse repository at this point
Copy the full SHA 03e316eView commit details -
Configuration menu - View commit details
-
Copy full SHA for 1dede0b - Browse repository at this point
Copy the full SHA 1dede0bView commit details -
Configuration menu - View commit details
-
Copy full SHA for 3d7695f - Browse repository at this point
Copy the full SHA 3d7695fView commit details