logstash-input-beats 6.2.6-java → 6.3.0-java
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +3 -0
- data/VERSION +1 -1
- data/docs/index.asciidoc +5 -5
- data/lib/logstash/inputs/beats/tls.rb +2 -1
- data/lib/logstash-input-beats_jars.rb +1 -1
- data/lib/tasks/test.rake +2 -2
- data/spec/inputs/beats/tls_spec.rb +2 -2
- data/spec/integration/filebeat_spec.rb +29 -1
- data/spec/support/file_helpers.rb +1 -1
- data/vendor/jar-dependencies/org/logstash/beats/logstash-input-beats/6.3.0/logstash-input-beats-6.3.0.jar +0 -0
- metadata +3 -3
- data/vendor/jar-dependencies/org/logstash/beats/logstash-input-beats/6.2.6/logstash-input-beats-6.2.6.jar +0 -0
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: e50f7332c2cc7d230b49310fd987ff4ed575b0d8eb4e62526899af20bfabe0d5
|
4
|
+
data.tar.gz: dfeb260b1a5c7866b624c769abc2c780efa194dbadd5c18d1f2cb282ff58537b
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: e4be1cf87358e1e02479c7692d8317382ffe96e497f9ea658ce2774f6583253ce9a05fb7ab322722eea0c59ca06cad09718f95ffce6b7b5a53dcfa9b8b4c24d7
|
7
|
+
data.tar.gz: dcb8dae4e25448aec7105bea439c7c04bfcdc49752c99624fc26722d2f056024cb8942f7af926b486f1c9eb00fb6b0b80ae636bdf3fb164084125b4636681b28
|
data/CHANGELOG.md
CHANGED
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
6.
|
1
|
+
6.3.0
|
data/docs/index.asciidoc
CHANGED
@@ -199,9 +199,10 @@ Flag to determine whether to add `host` field to event using the value supplied
|
|
199
199
|
===== `cipher_suites`
|
200
200
|
|
201
201
|
* Value type is <<array,array>>
|
202
|
-
* Default value is `java.lang.String[TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256]@459cfcca`
|
202
|
+
* Default value is `java.lang.String[TLS_AES_128_GCM_SHA256, TLS_AES_256_GCM_SHA384, TLS_CHACHA20_POLY1305_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256]@459cfcca`
|
203
203
|
|
204
204
|
The list of ciphers suite to use, listed by priorities.
|
205
|
+
The default values applies for OpenJDK 11.0.14 and higher, for older versions the list does not include suites not supported by the JDK, such as the ChaCha20 family of ciphers.
|
205
206
|
|
206
207
|
[id="plugins-{type}s-{plugin}-client_inactivity_timeout"]
|
207
208
|
===== `client_inactivity_timeout`
|
@@ -360,10 +361,10 @@ This option is only valid when `ssl_verify_mode` is set to `peer` or `force_peer
|
|
360
361
|
===== `tls_max_version`
|
361
362
|
|
362
363
|
* Value type is <<number,number>>
|
363
|
-
* Default value is `1.
|
364
|
+
* Default value is `1.3`
|
364
365
|
|
365
366
|
The maximum TLS version allowed for the encrypted connections. The value must be the one of the following:
|
366
|
-
1.0 for TLS 1.0, 1.1 for TLS 1.1, 1.2 for TLS 1.2
|
367
|
+
1.0 for TLS 1.0, 1.1 for TLS 1.1, 1.2 for TLS 1.2, 1.3 for TLS 1.3
|
367
368
|
|
368
369
|
[id="plugins-{type}s-{plugin}-tls_min_version"]
|
369
370
|
===== `tls_min_version`
|
@@ -372,7 +373,7 @@ The maximum TLS version allowed for the encrypted connections. The value must be
|
|
372
373
|
* Default value is `1`
|
373
374
|
|
374
375
|
The minimum TLS version allowed for the encrypted connections. The value must be one of the following:
|
375
|
-
1.0 for TLS 1.0, 1.1 for TLS 1.1, 1.2 for TLS 1.2
|
376
|
+
1.0 for TLS 1.0, 1.1 for TLS 1.1, 1.2 for TLS 1.2, 1.3 for TLS 1.3
|
376
377
|
|
377
378
|
|
378
379
|
|
@@ -380,4 +381,3 @@ The minimum TLS version allowed for the encrypted connections. The value must be
|
|
380
381
|
include::{include_path}/{type}.asciidoc[]
|
381
382
|
|
382
383
|
:default_codec!:
|
383
|
-
|
@@ -7,4 +7,4 @@ require_jar('com.fasterxml.jackson.core', 'jackson-core', '2.9.10')
|
|
7
7
|
require_jar('com.fasterxml.jackson.core', 'jackson-annotations', '2.9.10')
|
8
8
|
require_jar('com.fasterxml.jackson.core', 'jackson-databind', '2.9.10.8')
|
9
9
|
require_jar('com.fasterxml.jackson.module', 'jackson-module-afterburner', '2.9.10')
|
10
|
-
require_jar('org.logstash.beats', 'logstash-input-beats', '6.
|
10
|
+
require_jar('org.logstash.beats', 'logstash-input-beats', '6.3.0')
|
data/lib/tasks/test.rake
CHANGED
@@ -4,9 +4,9 @@ VENDOR_PATH = File.expand_path(File.join(File.dirname(__FILE__), "..", "..", "ve
|
|
4
4
|
|
5
5
|
#TODO: Figure out better means to keep this version in sync
|
6
6
|
if OS_PLATFORM == "linux"
|
7
|
-
FILEBEAT_URL = "https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-6.
|
7
|
+
FILEBEAT_URL = "https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-7.6.0-linux-x86_64.tar.gz"
|
8
8
|
elsif OS_PLATFORM == "darwin"
|
9
|
-
FILEBEAT_URL = "https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-6.
|
9
|
+
FILEBEAT_URL = "https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-7.6.0-darwin-x86_64.tar.gz"
|
10
10
|
end
|
11
11
|
|
12
12
|
LSF_URL = "https://download.elastic.co/logstash-forwarder/binaries/logstash-forwarder_#{OS_PLATFORM}_amd64"
|
@@ -10,8 +10,8 @@ describe LogStash::Inputs::Beats::TLS do
|
|
10
10
|
end
|
11
11
|
|
12
12
|
it "returns the maximum supported tls" do
|
13
|
-
expect(subject.max.version).to eq(1.
|
14
|
-
expect(subject.max.name).to eq("TLSv1.
|
13
|
+
expect(subject.max.version).to eq(1.3)
|
14
|
+
expect(subject.max.name).to eq("TLSv1.3")
|
15
15
|
end
|
16
16
|
|
17
17
|
describe ".get_supported" do
|
@@ -37,7 +37,7 @@ describe "Filebeat", :integration => true do
|
|
37
37
|
let(:filebeat_config) do
|
38
38
|
{
|
39
39
|
"filebeat" => {
|
40
|
-
"
|
40
|
+
"inputs" => [{ "paths" => [log_file], "type" => "log" }],
|
41
41
|
"scan_frequency" => "1s"
|
42
42
|
},
|
43
43
|
"output" => {
|
@@ -174,6 +174,34 @@ describe "Filebeat", :integration => true do
|
|
174
174
|
end
|
175
175
|
end
|
176
176
|
|
177
|
+
context "with TLSv1.3 client" do
|
178
|
+
let(:filebeat_config) do
|
179
|
+
super().merge({
|
180
|
+
"output" => {
|
181
|
+
"logstash" => {
|
182
|
+
"hosts" => ["#{host}:#{port}"],
|
183
|
+
"ssl" => {
|
184
|
+
"certificate_authorities" => certificate_authorities,
|
185
|
+
"versions" => ["TLSv1.3"],
|
186
|
+
}
|
187
|
+
}
|
188
|
+
},
|
189
|
+
"logging" => { "level" => "debug" }
|
190
|
+
})
|
191
|
+
end
|
192
|
+
include_examples "send events"
|
193
|
+
|
194
|
+
context "when TLSv1.3 enforced in plugin" do
|
195
|
+
let(:input_config) {
|
196
|
+
super().merge({
|
197
|
+
"tls_min_version" => "1.3"
|
198
|
+
})
|
199
|
+
}
|
200
|
+
|
201
|
+
include_examples "send events"
|
202
|
+
end
|
203
|
+
end
|
204
|
+
|
177
205
|
# Refactor this to use Flores's PKI instead of openssl command line
|
178
206
|
# see: https://github.com/jordansissel/ruby-flores/issues/7
|
179
207
|
context "with a passphrase" do
|
Binary file
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: logstash-input-beats
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 6.
|
4
|
+
version: 6.3.0
|
5
5
|
platform: java
|
6
6
|
authors:
|
7
7
|
- Elastic
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2022-
|
11
|
+
date: 2022-03-21 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
requirement: !ruby/object:Gem::Requirement
|
@@ -298,7 +298,7 @@ files:
|
|
298
298
|
- vendor/jar-dependencies/com/fasterxml/jackson/module/jackson-module-afterburner/2.9.10/jackson-module-afterburner-2.9.10.jar
|
299
299
|
- vendor/jar-dependencies/io/netty/netty-all/4.1.65.Final/netty-all-4.1.65.Final.jar
|
300
300
|
- vendor/jar-dependencies/org/javassist/javassist/3.24.0-GA/javassist-3.24.0-GA.jar
|
301
|
-
- vendor/jar-dependencies/org/logstash/beats/logstash-input-beats/6.
|
301
|
+
- vendor/jar-dependencies/org/logstash/beats/logstash-input-beats/6.3.0/logstash-input-beats-6.3.0.jar
|
302
302
|
homepage: http://www.elastic.co/guide/en/logstash/current/index.html
|
303
303
|
licenses:
|
304
304
|
- Apache License (2.0)
|