Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

cef,infoblox_nios,keycloak,modsecurity,panw,pfsense,qnap_nas,snort,sonicwall: ensure timezones are strings #5051

Merged
merged 6 commits into from
Feb 6, 2023
Merged

cef,infoblox_nios,keycloak,modsecurity,panw,pfsense,qnap_nas,snort,sonicwall: ensure timezones are strings #5051

merged 6 commits into from
Feb 6, 2023

Conversation

efd6
Copy link
Contributor

@efd6 efd6 commented Jan 19, 2023

What does this PR do?

This ensures that timezone offsets in the form "+0n00" are not interpreted as octal integers.

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.

Author's Checklist

  • [ ]

How to test this PR locally

Related issues

Screenshots

@efd6 efd6 self-assigned this Jan 19, 2023
@elasticmachine
Copy link

elasticmachine commented Jan 19, 2023
edited
Loading

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview preview

Expand to view the summary

Build stats

  • Start Time: 2023-01-30T22:46:29.201+0000

  • Duration: 19 min 33 sec

Test stats 🧪

Test Results
Failed 0
Passed 176
Skipped 0
Total 176

🤖 GitHub comments

Expand to view the GitHub comments

To re-run your PR in the CI, just comment with:

  • /test : Re-trigger the build.

@elasticmachine
Copy link

elasticmachine commented Jan 19, 2023
edited
Loading

🌐 Coverage report

Name Metrics % (covered/total) Diff
Packages 100.0% (9/9) 💚
Files 100.0% (41/41) 💚 2.284
Classes 100.0% (41/41) 💚 2.284
Methods 98.983% (292/295) 👍 7.521
Lines 94.333% (7174/7605) 👍 1.468
Conditionals 100.0% (0/0) 💚

@efd6
Copy link
Contributor Author

efd6 commented Jan 19, 2023

/test

@efd6
Copy link
Contributor Author

efd6 commented Jan 19, 2023

These all pass locally, so I'm not sure what is going on.

$ for d in cef infoblox_nios keycloak microsoft_dhcp modsecurity panw pfsense qnap_nas snort sonicwall_firewall; do (cd $d; elastic-package test); done 
2023/01/19 17:38:41  WARN CommitHash is undefined, in both ~/.elastic-package/version and the compiled binary, config may be out of date.
Run test suite for the package
Run asset tests for the package
--- Test results for package: cef - START ---
╭─────────┬─────────────┬───────────┬──────────────────────────────────────────────────────────────┬────────┬──────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME                                                    │ RESULT │ TIME ELAPSED │
├─────────┼─────────────┼───────────┼──────────────────────────────────────────────────────────────┼────────┼──────────────┤
│ cef     │             │ asset     │ dashboard cef-04749697-de8d-49b3-8eca-c873ab2c5ac9 is loaded │ PASS   │        3.8µs │
│ cef     │             │ asset     │ dashboard cef-4f045e14-8e20-47ed-a6d1-219dd3c8ed5c is loaded │ PASS   │        107ns │
│ cef     │             │ asset     │ dashboard cef-56428e01-0c47-4770-8ba4-9345a029ea41 is loaded │ PASS   │         95ns │
│ cef     │             │ asset     │ dashboard cef-607f756e-288d-499a-8f8a-33791354ffaf is loaded │ PASS   │        100ns │
│ cef     │             │ asset     │ dashboard cef-85d71d6a-69fc-46a5-bf38-f94c177fbabf is loaded │ PASS   │        117ns │
│ cef     │             │ asset     │ dashboard cef-9e352900-89c3-4c1b-863e-249e24d0dac9 is loaded │ PASS   │        125ns │
│ cef     │             │ asset     │ dashboard cef-a0030996-9c7b-4f66-bd5a-59b23a7e7c15 is loaded │ PASS   │        125ns │
│ cef     │             │ asset     │ dashboard cef-c10ce1cf-f6b8-4de4-8715-2cb5f6770b3b is loaded │ PASS   │        137ns │
│ cef     │             │ asset     │ dashboard cef-db1e1aca-279e-4ecc-b84e-fe58644f7619 is loaded │ PASS   │        138ns │
│ cef     │             │ asset     │ dashboard cef-dd0bc9af-2e89-4150-9b42-62517ea56b71 is loaded │ PASS   │        143ns │
│ cef     │             │ asset     │ search cef-357351f2-fbd1-41b6-9b03-592fbb7aec7c is loaded    │ PASS   │        159ns │
│ cef     │             │ asset     │ search cef-41770860-2a81-4ce7-b8b4-a0c6970725b0 is loaded    │ PASS   │        131ns │
│ cef     │             │ asset     │ search cef-46204a7b-ca56-4ad7-bf60-5ef9c6b83042 is loaded    │ PASS   │        121ns │
│ cef     │             │ asset     │ search cef-5a3668ef-c2d5-4bd3-a545-e2a9963b721c is loaded    │ PASS   │        140ns │
│ cef     │             │ asset     │ search cef-5cede2d3-20fe-4140-add4-4c4f841b71a2 is loaded    │ PASS   │        187ns │
│ cef     │             │ asset     │ search cef-68202a5c-c8f2-432f-8c08-04fbfacb95c8 is loaded    │ PASS   │        142ns │
│ cef     │             │ asset     │ search cef-e6cf2383-71f4-4db1-a791-1a7d4f110194 is loaded    │ PASS   │        153ns │
│ cef     │             │ asset     │ search cef-f85a3444-8a43-4e46-b872-4e44bc25d0f3 is loaded    │ PASS   │        161ns │
│ cef     │ log         │ asset     │ index_template logs-cef.log is loaded                        │ PASS   │        297ns │
│ cef     │ log         │ asset     │ ingest_pipeline logs-cef.log-2.6.1 is loaded                 │ PASS   │        215ns │
╰─────────┴─────────────┴───────────┴──────────────────────────────────────────────────────────────┴────────┴──────────────╯
--- Test results for package: cef - END   ---
Done
Run pipeline tests for the package
--- Test results for package: cef - START ---
╭─────────┬─────────────┬───────────┬───────────────────────┬────────┬──────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME             │ RESULT │ TIME ELAPSED │
├─────────┼─────────────┼───────────┼───────────────────────┼────────┼──────────────┤
│ cef     │ log         │ pipeline  │ test-arcsight.json    │ PASS   │  22.980222ms │
│ cef     │ log         │ pipeline  │ test-cef.json         │ PASS   │  37.111837ms │
│ cef     │ log         │ pipeline  │ test-checkpoint.json  │ PASS   │  16.672737ms │
│ cef     │ log         │ pipeline  │ test-cisco-asa.json   │ PASS   │   6.101573ms │
│ cef     │ log         │ pipeline  │ test-fp-ngfw-smc.json │ PASS   │  10.211729ms │
│ cef     │ log         │ pipeline  │ test-netscaler.json   │ PASS   │     6.9716ms │
│ cef     │ log         │ pipeline  │ test-syslog.json      │ PASS   │    5.91005ms │
│ cef     │ log         │ pipeline  │ test-trend-micro.json │ PASS   │   8.004062ms │
╰─────────┴─────────────┴───────────┴───────────────────────┴────────┴──────────────╯
--- Test results for package: cef - END   ---
Done
Run static tests for the package
--- Test results for package: cef - START ---
╭─────────┬─────────────┬───────────┬──────────────────────────┬────────┬──────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME                │ RESULT │ TIME ELAPSED │
├─────────┼─────────────┼───────────┼──────────────────────────┼────────┼──────────────┤
│ cef     │ log         │ static    │ Verify sample_event.json │ PASS   │  56.077055ms │
╰─────────┴─────────────┴───────────┴──────────────────────────┴────────┴──────────────╯
--- Test results for package: cef - END   ---
Done
Run system tests for the package
2023/01/19 17:39:18  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/cef-log-logfile-1674112158970758000.log
2023/01/19 17:40:03  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/cef-log-udp-1674112203955574000.log
2023/01/19 17:40:39  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/cef-log-logfile-1674112239972291000.log
--- Test results for package: cef - START ---
╭─────────┬─────────────┬───────────┬─────────────────┬────────┬───────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME       │ RESULT │  TIME ELAPSED │
├─────────┼─────────────┼───────────┼─────────────────┼────────┼───────────────┤
│ cef     │ log         │ system    │ logfile         │ PASS   │ 21.625877015s │
│ cef     │ log         │ system    │ udp             │ PASS   │ 29.239042361s │
│ cef     │ log         │ system    │ logfile-non-utc │ PASS   │ 21.119062908s │
╰─────────┴─────────────┴───────────┴─────────────────┴────────┴───────────────╯
--- Test results for package: cef - END   ---
Done
2023/01/19 17:40:41  WARN CommitHash is undefined, in both ~/.elastic-package/version and the compiled binary, config may be out of date.
Run test suite for the package
Run system tests for the package
2023/01/19 17:41:14  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/infoblox_nios-log-logfile-1674112274980755000.log
2023/01/19 17:42:01  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/infoblox_nios-log-tcp-1674112321010060000.log
2023/01/19 17:42:42  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/infoblox_nios-log-udp-1674112362980735000.log
2023/01/19 17:43:17  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/infoblox_nios-log-logfile-1674112397006339000.log
--- Test results for package: infoblox_nios - START ---
╭───────────────┬─────────────┬───────────┬─────────────────┬────────┬───────────────╮
│ PACKAGE       │ DATA STREAM │ TEST TYPE │ TEST NAME       │ RESULT │  TIME ELAPSED │
├───────────────┼─────────────┼───────────┼─────────────────┼────────┼───────────────┤
│ infoblox_nios │ log         │ system    │ logfile         │ PASS   │ 23.302233923s │
│ infoblox_nios │ log         │ system    │ tcp             │ PASS   │ 30.278860614s │
│ infoblox_nios │ log         │ system    │ udp             │ PASS   │ 26.258871851s │
│ infoblox_nios │ log         │ system    │ logfile-non-utc │ PASS   │  18.22769715s │
╰───────────────┴─────────────┴───────────┴─────────────────┴────────┴───────────────╯
--- Test results for package: infoblox_nios - END   ---
Done
Run asset tests for the package
--- Test results for package: infoblox_nios - START ---
╭───────────────┬─────────────┬───────────┬────────────────────────────────────────────────────────────────────────┬────────┬──────────────╮
│ PACKAGE       │ DATA STREAM │ TEST TYPE │ TEST NAME                                                              │ RESULT │ TIME ELAPSED │
├───────────────┼─────────────┼───────────┼────────────────────────────────────────────────────────────────────────┼────────┼──────────────┤
│ infoblox_nios │             │ asset     │ dashboard infoblox_nios-27c573b0-b4d8-11ec-80e1-4bd67c5762eb is loaded │ PASS   │      1.115µs │
│ infoblox_nios │             │ asset     │ dashboard infoblox_nios-c3abc8b0-b4dd-11ec-80e1-4bd67c5762eb is loaded │ PASS   │        121ns │
│ infoblox_nios │             │ asset     │ dashboard infoblox_nios-f8d86480-b4c9-11ec-80e1-4bd67c5762eb is loaded │ PASS   │        115ns │
│ infoblox_nios │             │ asset     │ search infoblox_nios-4559ff50-b4e1-11ec-80e1-4bd67c5762eb is loaded    │ PASS   │        116ns │
│ infoblox_nios │             │ asset     │ search infoblox_nios-5cc295e0-b4d6-11ec-80e1-4bd67c5762eb is loaded    │ PASS   │        146ns │
│ infoblox_nios │             │ asset     │ search infoblox_nios-7103abb0-b4e1-11ec-80e1-4bd67c5762eb is loaded    │ PASS   │        105ns │
│ infoblox_nios │             │ asset     │ search infoblox_nios-71f7a570-b4dd-11ec-80e1-4bd67c5762eb is loaded    │ PASS   │        122ns │
│ infoblox_nios │             │ asset     │ search infoblox_nios-854739b0-b735-11ec-8ec2-49017af276c3 is loaded    │ PASS   │        140ns │
│ infoblox_nios │             │ asset     │ search infoblox_nios-8d55bb50-b4e1-11ec-80e1-4bd67c5762eb is loaded    │ PASS   │        134ns │
│ infoblox_nios │             │ asset     │ search infoblox_nios-b3b496f0-b4e5-11ec-80e1-4bd67c5762eb is loaded    │ PASS   │        144ns │
│ infoblox_nios │             │ asset     │ search infoblox_nios-f3899090-b4d7-11ec-80e1-4bd67c5762eb is loaded    │ PASS   │        151ns │
│ infoblox_nios │ log         │ asset     │ index_template logs-infoblox_nios.log is loaded                        │ PASS   │        165ns │
│ infoblox_nios │ log         │ asset     │ ingest_pipeline logs-infoblox_nios.log-1.6.1 is loaded                 │ PASS   │        158ns │
╰───────────────┴─────────────┴───────────┴────────────────────────────────────────────────────────────────────────┴────────┴──────────────╯
--- Test results for package: infoblox_nios - END   ---
Done
Run pipeline tests for the package
--- Test results for package: infoblox_nios - START ---
╭───────────────┬─────────────┬───────────┬────────────────┬────────┬──────────────╮
│ PACKAGE       │ DATA STREAM │ TEST TYPE │ TEST NAME      │ RESULT │ TIME ELAPSED │
├───────────────┼─────────────┼───────────┼────────────────┼────────┼──────────────┤
│ infoblox_nios │ log         │ pipeline  │ test-audit.log │ PASS   │  10.962331ms │
│ infoblox_nios │ log         │ pipeline  │ test-dhcp.log  │ PASS   │  22.851497ms │
│ infoblox_nios │ log         │ pipeline  │ test-dns.log   │ PASS   │  13.813332ms │
╰───────────────┴─────────────┴───────────┴────────────────┴────────┴──────────────╯
--- Test results for package: infoblox_nios - END   ---
Done
Run static tests for the package
--- Test results for package: infoblox_nios - START ---
╭───────────────┬─────────────┬───────────┬──────────────────────────┬────────┬──────────────╮
│ PACKAGE       │ DATA STREAM │ TEST TYPE │ TEST NAME                │ RESULT │ TIME ELAPSED │
├───────────────┼─────────────┼───────────┼──────────────────────────┼────────┼──────────────┤
│ infoblox_nios │ log         │ static    │ Verify sample_event.json │ PASS   │  47.213552ms │
╰───────────────┴─────────────┴───────────┴──────────────────────────┴────────┴──────────────╯
--- Test results for package: infoblox_nios - END   ---
Done
2023/01/19 17:43:22  WARN CommitHash is undefined, in both ~/.elastic-package/version and the compiled binary, config may be out of date.
Run test suite for the package
Run pipeline tests for the package
--- Test results for package: keycloak - START ---
╭──────────┬─────────────┬───────────┬──────────────┬────────┬──────────────╮
│ PACKAGE  │ DATA STREAM │ TEST TYPE │ TEST NAME    │ RESULT │ TIME ELAPSED │
├──────────┼─────────────┼───────────┼──────────────┼────────┼──────────────┤
│ keycloak │ log         │ pipeline  │ test-log.log │ PASS   │  24.588148ms │
╰──────────┴─────────────┴───────────┴──────────────┴────────┴──────────────╯
--- Test results for package: keycloak - END   ---
Done
Run static tests for the package
--- Test results for package: keycloak - START ---
╭──────────┬─────────────┬───────────┬──────────────────────────┬────────┬──────────────╮
│ PACKAGE  │ DATA STREAM │ TEST TYPE │ TEST NAME                │ RESULT │ TIME ELAPSED │
├──────────┼─────────────┼───────────┼──────────────────────────┼────────┼──────────────┤
│ keycloak │ log         │ static    │ Verify sample_event.json │ PASS   │  48.123138ms │
╰──────────┴─────────────┴───────────┴──────────────────────────┴────────┴──────────────╯
--- Test results for package: keycloak - END   ---
Done
Run system tests for the package
2023/01/19 17:43:55  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/keycloak-1674112435007150000.log
2023/01/19 17:44:26  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/keycloak-1674112466850742000.log
--- Test results for package: keycloak - START ---
╭──────────┬─────────────┬───────────┬─────────────────┬────────┬───────────────╮
│ PACKAGE  │ DATA STREAM │ TEST TYPE │ TEST NAME       │ RESULT │  TIME ELAPSED │
├──────────┼─────────────┼───────────┼─────────────────┼────────┼───────────────┤
│ keycloak │ log         │ system    │ logfile         │ PASS   │ 22.547358612s │
│ keycloak │ log         │ system    │ logfile-non-utc │ PASS   │ 17.979286838s │
╰──────────┴─────────────┴───────────┴─────────────────┴────────┴───────────────╯
--- Test results for package: keycloak - END   ---
Done
Run asset tests for the package
--- Test results for package: keycloak - START ---
╭──────────┬─────────────┬───────────┬───────────────────────────────────────────────────┬────────┬──────────────╮
│ PACKAGE  │ DATA STREAM │ TEST TYPE │ TEST NAME                                         │ RESULT │ TIME ELAPSED │
├──────────┼─────────────┼───────────┼───────────────────────────────────────────────────┼────────┼──────────────┤
│ keycloak │ log         │ asset     │ index_template logs-keycloak.log is loaded        │ PASS   │        679ns │
│ keycloak │ log         │ asset     │ ingest_pipeline logs-keycloak.log-1.7.1 is loaded │ PASS   │        107ns │
╰──────────┴─────────────┴───────────┴───────────────────────────────────────────────────┴────────┴──────────────╯
--- Test results for package: keycloak - END   ---
Done
2023/01/19 17:44:52  WARN CommitHash is undefined, in both ~/.elastic-package/version and the compiled binary, config may be out of date.
Run test suite for the package
Run system tests for the package
2023/01/19 17:45:26  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/dhcp-logfile-1674112526821240000.log
2023/01/19 17:46:01  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/dhcp-logfile-1674112561910090000.log
--- Test results for package: microsoft_dhcp - START ---
╭────────────────┬─────────────┬───────────┬─────────────────┬────────┬──────────────╮
│ PACKAGE        │ DATA STREAM │ TEST TYPE │ TEST NAME       │ RESULT │ TIME ELAPSED │
├────────────────┼─────────────┼───────────┼─────────────────┼────────┼──────────────┤
│ microsoft_dhcp │ log         │ system    │ default-non-utc │ PASS   │ 23.12223638s │
│ microsoft_dhcp │ log         │ system    │ default         │ PASS   │ 23.05882044s │
╰────────────────┴─────────────┴───────────┴─────────────────┴────────┴──────────────╯
--- Test results for package: microsoft_dhcp - END   ---
Done
Run asset tests for the package
--- Test results for package: microsoft_dhcp - START ---
╭────────────────┬─────────────┬───────────┬──────────────────────────────────────────────────────────┬────────┬──────────────╮
│ PACKAGE        │ DATA STREAM │ TEST TYPE │ TEST NAME                                                │ RESULT │ TIME ELAPSED │
├────────────────┼─────────────┼───────────┼──────────────────────────────────────────────────────────┼────────┼──────────────┤
│ microsoft_dhcp │ log         │ asset     │ index_template logs-microsoft_dhcp.log is loaded         │ PASS   │        700ns │
│ microsoft_dhcp │ log         │ asset     │ ingest_pipeline logs-microsoft_dhcp.log-1.10.1 is loaded │ PASS   │        126ns │
╰────────────────┴─────────────┴───────────┴──────────────────────────────────────────────────────────┴────────┴──────────────╯
--- Test results for package: microsoft_dhcp - END   ---
Done
Run pipeline tests for the package
--- Test results for package: microsoft_dhcp - START ---
╭────────────────┬─────────────┬───────────┬────────────────┬────────┬──────────────╮
│ PACKAGE        │ DATA STREAM │ TEST TYPE │ TEST NAME      │ RESULT │ TIME ELAPSED │
├────────────────┼─────────────┼───────────┼────────────────┼────────┼──────────────┤
│ microsoft_dhcp │ log         │ pipeline  │ test-log.log   │ PASS   │   6.569625ms │
│ microsoft_dhcp │ log         │ pipeline  │ test-logv6.log │ PASS   │   7.666247ms │
╰────────────────┴─────────────┴───────────┴────────────────┴────────┴──────────────╯
--- Test results for package: microsoft_dhcp - END   ---
Done
Run static tests for the package
--- Test results for package: microsoft_dhcp - START ---
╭────────────────┬─────────────┬───────────┬──────────────────────────┬────────┬──────────────╮
│ PACKAGE        │ DATA STREAM │ TEST TYPE │ TEST NAME                │ RESULT │ TIME ELAPSED │
├────────────────┼─────────────┼───────────┼──────────────────────────┼────────┼──────────────┤
│ microsoft_dhcp │ log         │ static    │ Verify sample_event.json │ PASS   │  45.635077ms │
╰────────────────┴─────────────┴───────────┴──────────────────────────┴────────┴──────────────╯
--- Test results for package: microsoft_dhcp - END   ---
Done
2023/01/19 17:46:05  WARN CommitHash is undefined, in both ~/.elastic-package/version and the compiled binary, config may be out of date.
Run test suite for the package
Run system tests for the package
2023/01/19 17:46:39  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/modsec-audit-logfile-1674112599862316000.log
--- Test results for package: modsecurity - START ---
╭─────────────┬─────────────┬───────────┬───────────┬────────┬───────────────╮
│ PACKAGE     │ DATA STREAM │ TEST TYPE │ TEST NAME │ RESULT │  TIME ELAPSED │
├─────────────┼─────────────┼───────────┼───────────┼────────┼───────────────┤
│ modsecurity │ auditlog    │ system    │ logfile   │ PASS   │ 21.378690132s │
╰─────────────┴─────────────┴───────────┴───────────┴────────┴───────────────╯
--- Test results for package: modsecurity - END   ---
Done
Run asset tests for the package
--- Test results for package: modsecurity - START ---
╭─────────────┬─────────────┬───────────┬───────────────────────────────────────────────────────────┬────────┬──────────────╮
│ PACKAGE     │ DATA STREAM │ TEST TYPE │ TEST NAME                                                 │ RESULT │ TIME ELAPSED │
├─────────────┼─────────────┼───────────┼───────────────────────────────────────────────────────────┼────────┼──────────────┤
│ modsecurity │ auditlog    │ asset     │ index_template logs-modsecurity.auditlog is loaded        │ PASS   │        757ns │
│ modsecurity │ auditlog    │ asset     │ ingest_pipeline logs-modsecurity.auditlog-1.5.1 is loaded │ PASS   │        126ns │
╰─────────────┴─────────────┴───────────┴───────────────────────────────────────────────────────────┴────────┴──────────────╯
--- Test results for package: modsecurity - END   ---
Done
Run pipeline tests for the package
--- Test results for package: modsecurity - START ---
╭─────────────┬─────────────┬───────────┬───────────────────────┬────────┬──────────────╮
│ PACKAGE     │ DATA STREAM │ TEST TYPE │ TEST NAME             │ RESULT │ TIME ELAPSED │
├─────────────┼─────────────┼───────────┼───────────────────────┼────────┼──────────────┤
│ modsecurity │ auditlog    │ pipeline  │ test-apache-audit.log │ PASS   │   7.570113ms │
│ modsecurity │ auditlog    │ pipeline  │ test-audit.log        │ PASS   │   9.343247ms │
╰─────────────┴─────────────┴───────────┴───────────────────────┴────────┴──────────────╯
--- Test results for package: modsecurity - END   ---
Done
Run static tests for the package
--- Test results for package: modsecurity - START ---
╭─────────────┬─────────────┬───────────┬──────────────────────────┬────────┬──────────────╮
│ PACKAGE     │ DATA STREAM │ TEST TYPE │ TEST NAME                │ RESULT │ TIME ELAPSED │
├─────────────┼─────────────┼───────────┼──────────────────────────┼────────┼──────────────┤
│ modsecurity │ auditlog    │ static    │ Verify sample_event.json │ PASS   │  50.027832ms │
╰─────────────┴─────────────┴───────────┴──────────────────────────┴────────┴──────────────╯
--- Test results for package: modsecurity - END   ---
Done
2023/01/19 17:46:43  WARN CommitHash is undefined, in both ~/.elastic-package/version and the compiled binary, config may be out of date.
Run test suite for the package
Run system tests for the package
2023/01/19 17:47:20  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/panw-logfile-1674112640754210000.log
2023/01/19 17:48:06  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/panw-panos-tcp-1674112686756636000.log
2023/01/19 17:48:49  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/panw-panos-udp-1674112729684968000.log
2023/01/19 17:49:25  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/panw-logfile-1674112765751018000.log
2023/01/19 17:50:08  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/panw-panos-tls-1674112808775366000.log
--- Test results for package: panw - START ---
╭─────────┬─────────────┬───────────┬─────────────────┬────────┬───────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME       │ RESULT │  TIME ELAPSED │
├─────────┼─────────────┼───────────┼─────────────────┼────────┼───────────────┤
│ panw    │ panos       │ system    │ logfile         │ PASS   │ 25.195026829s │
│ panw    │ panos       │ system    │ tcp             │ PASS   │ 31.597344208s │
│ panw    │ panos       │ system    │ udp             │ PASS   │ 28.559008614s │
│ panw    │ panos       │ system    │ logfile-non-utc │ PASS   │ 22.340194908s │
│ panw    │ panos       │ system    │ tls             │ PASS   │ 28.743056103s │
╰─────────┴─────────────┴───────────┴─────────────────┴────────┴───────────────╯
--- Test results for package: panw - END   ---
Done
Run asset tests for the package
--- Test results for package: panw - START ---
╭─────────┬─────────────┬───────────┬───────────────────────────────────────────────────────────────┬────────┬──────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME                                                     │ RESULT │ TIME ELAPSED │
├─────────┼─────────────┼───────────┼───────────────────────────────────────────────────────────────┼────────┼──────────────┤
│ panw    │             │ asset     │ dashboard panw-0c0fa830-dca5-11ec-8b8b-1fae02ab6a5e is loaded │ PASS   │        880ns │
│ panw    │             │ asset     │ dashboard panw-42d2b320-dcec-11ec-8b8b-1fae02ab6a5e is loaded │ PASS   │        134ns │
│ panw    │             │ asset     │ dashboard panw-4782db40-dccc-11ec-8b8b-1fae02ab6a5e is loaded │ PASS   │        133ns │
│ panw    │             │ asset     │ dashboard panw-772964e0-7591-11e9-aacf-79a3704914a0 is loaded │ PASS   │        132ns │
│ panw    │             │ asset     │ dashboard panw-a663eea0-dd72-11ec-8b8b-1fae02ab6a5e is loaded │ PASS   │        133ns │
│ panw    │             │ asset     │ dashboard panw-a8dc42e0-dcc8-11ec-8b8b-1fae02ab6a5e is loaded │ PASS   │        145ns │
│ panw    │             │ asset     │ dashboard panw-b1a9f7a0-dcaa-11ec-8b8b-1fae02ab6a5e is loaded │ PASS   │        155ns │
│ panw    │             │ asset     │ dashboard panw-d3e36450-dce1-11ec-8b8b-1fae02ab6a5e is loaded │ PASS   │        166ns │
│ panw    │             │ asset     │ dashboard panw-e40ba240-7572-11e9-976e-65a8f47cc4c1 is loaded │ PASS   │        160ns │
│ panw    │             │ asset     │ dashboard panw-f84a1440-dcf7-11ec-8b8b-1fae02ab6a5e is loaded │ PASS   │        191ns │
│ panw    │             │ asset     │ search panw-0ffe1200-ddb9-11ec-8e76-9b3b99f98cd4 is loaded    │ PASS   │        181ns │
│ panw    │             │ asset     │ search panw-1d9d5060-ddb9-11ec-8e76-9b3b99f98cd4 is loaded    │ PASS   │        206ns │
│ panw    │             │ asset     │ search panw-24a5cf50-ddb8-11ec-8e76-9b3b99f98cd4 is loaded    │ PASS   │        160ns │
│ panw    │             │ asset     │ search panw-290685e0-7569-11e9-976e-65a8f47cc4c1 is loaded    │ PASS   │        171ns │
│ panw    │             │ asset     │ search panw-37acbca0-ddb1-11ec-8e76-9b3b99f98cd4 is loaded    │ PASS   │        182ns │
│ panw    │             │ asset     │ search panw-3cea1360-7569-11e9-976e-65a8f47cc4c1 is loaded    │ PASS   │        238ns │
│ panw    │             │ asset     │ search panw-6d0ea500-ddb8-11ec-8e76-9b3b99f98cd4 is loaded    │ PASS   │        192ns │
│ panw    │             │ asset     │ search panw-79d117f0-ddb8-11ec-8e76-9b3b99f98cd4 is loaded    │ PASS   │        204ns │
│ panw    │             │ asset     │ search panw-89e2f970-ddb7-11ec-8e76-9b3b99f98cd4 is loaded    │ PASS   │        205ns │
│ panw    │             │ asset     │ search panw-8dc6b590-ddb2-11ec-8e76-9b3b99f98cd4 is loaded    │ PASS   │        212ns │
│ panw    │             │ asset     │ search panw-92083d90-ddb7-11ec-8e76-9b3b99f98cd4 is loaded    │ PASS   │        225ns │
│ panw    │             │ asset     │ search panw-9df5cdf0-ddaf-11ec-8e76-9b3b99f98cd4 is loaded    │ PASS   │        250ns │
│ panw    │             │ asset     │ search panw-a93a1c80-dcd7-11ec-8b8b-1fae02ab6a5e is loaded    │ PASS   │        245ns │
│ panw    │             │ asset     │ search panw-c53134a0-ddb8-11ec-8e76-9b3b99f98cd4 is loaded    │ PASS   │        258ns │
│ panw    │             │ asset     │ search panw-cfbe1f60-ddb7-11ec-8e76-9b3b99f98cd4 is loaded    │ PASS   │        268ns │
│ panw    │             │ asset     │ search panw-d01e7260-ddb8-11ec-8e76-9b3b99f98cd4 is loaded    │ PASS   │        276ns │
│ panw    │ panos       │ asset     │ index_template logs-panw.panos is loaded                      │ PASS   │        216ns │
│ panw    │ panos       │ asset     │ ingest_pipeline logs-panw.panos-3.5.1 is loaded               │ PASS   │        272ns │
╰─────────┴─────────────┴───────────┴───────────────────────────────────────────────────────────────┴────────┴──────────────╯
--- Test results for package: panw - END   ---
Done
Run pipeline tests for the package
--- Test results for package: panw - START ---
╭─────────┬─────────────┬───────────┬──────────────────────────────────────────────┬────────┬──────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME                                    │ RESULT │ TIME ELAPSED │
├─────────┼─────────────┼───────────┼──────────────────────────────────────────────┼────────┼──────────────┤
│ panw    │ panos       │ pipeline  │ test-panw-panos-authentication-sample.log    │ PASS   │   3.774239ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-config-sample.log            │ PASS   │   4.021551ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-correlated-events-sample.log │ PASS   │   4.166452ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-decryption-sample.log        │ PASS   │   5.240219ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-globalprotect-sample.log     │ PASS   │  12.227272ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-gtp-sample.log               │ PASS   │   4.438172ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-hipmatch-sample.log          │ PASS   │   4.706153ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-inc-other-sample.log         │ PASS   │  21.700626ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-inc-threat-sample.log        │ PASS   │  86.826769ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-inc-traffic-sample.log       │ PASS   │  73.806478ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-inc-traffic.json             │ PASS   │   6.506189ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-ip-tag-sample.log            │ PASS   │   3.912388ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-sctp-sample.log              │ PASS   │   4.150897ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-system-sample.log            │ PASS   │   3.733145ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-threat-sample.log            │ PASS   │ 177.828945ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-traffic-sample.log           │ PASS   │  167.34747ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-tunnel-inspection-sample.log │ PASS   │   4.954193ms │
│ panw    │ panos       │ pipeline  │ test-panw-panos-userid-sample.log            │ PASS   │  12.364796ms │
╰─────────┴─────────────┴───────────┴──────────────────────────────────────────────┴────────┴──────────────╯
--- Test results for package: panw - END   ---
Done
Run static tests for the package
--- Test results for package: panw - START ---
╭─────────┬─────────────┬───────────┬──────────────────────────┬────────┬──────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME                │ RESULT │ TIME ELAPSED │
├─────────┼─────────────┼───────────┼──────────────────────────┼────────┼──────────────┤
│ panw    │ panos       │ static    │ Verify sample_event.json │ PASS   │  57.470929ms │
╰─────────┴─────────────┴───────────┴──────────────────────────┴────────┴──────────────╯
--- Test results for package: panw - END   ---
Done
2023/01/19 17:50:39  WARN CommitHash is undefined, in both ~/.elastic-package/version and the compiled binary, config may be out of date.
Run test suite for the package
Run system tests for the package
2023/01/19 17:51:42  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/pfsense-log-udp-1674112902710178000.log
2023/01/19 17:52:39  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/pfsense-log-tcp-1674112959680351000.log
2023/01/19 17:53:20  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/pfsense-log-udp-1674113000711067000.log
2023/01/19 17:54:02  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/pfsense-log-tls-1674113042679300000.log
--- Test results for package: pfsense - START ---
╭─────────┬─────────────┬───────────┬─────────────┬────────┬───────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME   │ RESULT │  TIME ELAPSED │
├─────────┼─────────────┼───────────┼─────────────┼────────┼───────────────┤
│ pfsense │ log         │ system    │ udp-non-utc │ PASS   │ 51.057183466s │
│ pfsense │ log         │ system    │ tcp         │ PASS   │ 43.575583652s │
│ pfsense │ log         │ system    │ udp         │ PASS   │ 27.234160896s │
│ pfsense │ log         │ system    │ tls         │ PASS   │ 28.589140472s │
╰─────────┴─────────────┴───────────┴─────────────┴────────┴───────────────╯
--- Test results for package: pfsense - END   ---
Done
Run asset tests for the package
--- Test results for package: pfsense - START ---
╭─────────┬─────────────┬───────────┬──────────────────────────────────────────────────────────────────┬────────┬──────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME                                                        │ RESULT │ TIME ELAPSED │
├─────────┼─────────────┼───────────┼──────────────────────────────────────────────────────────────────┼────────┼──────────────┤
│ pfsense │             │ asset     │ dashboard pfsense-986061c0-3a9a-11eb-96b2-e765737b7534 is loaded │ PASS   │        751ns │
│ pfsense │             │ asset     │ dashboard pfsense-bdb33ee0-3a8e-11eb-96b2-e765737b7534 is loaded │ PASS   │        110ns │
│ pfsense │             │ asset     │ dashboard pfsense-c8b42350-3a9c-11eb-96b2-e765737b7534 is loaded │ PASS   │        108ns │
│ pfsense │             │ asset     │ search pfsense-22edf800-3a8e-11eb-96b2-e765737b7534 is loaded    │ PASS   │        125ns │
│ pfsense │             │ asset     │ search pfsense-ec91cf20-3a9c-11eb-96b2-e765737b7534 is loaded    │ PASS   │        101ns │
│ pfsense │             │ asset     │ search pfsense-f9ed8947-6d26-4497-905f-57d08ee304f4 is loaded    │ PASS   │        114ns │
│ pfsense │ log         │ asset     │ index_template logs-pfsense.log is loaded                        │ PASS   │        144ns │
│ pfsense │ log         │ asset     │ ingest_pipeline logs-pfsense.log-1.6.1 is loaded                 │ PASS   │        170ns │
╰─────────┴─────────────┴───────────┴──────────────────────────────────────────────────────────────────┴────────┴──────────────╯
--- Test results for package: pfsense - END   ---
Done
Run pipeline tests for the package
--- Test results for package: pfsense - START ---
╭─────────┬─────────────┬───────────┬──────────────────────────┬────────┬──────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME                │ RESULT │ TIME ELAPSED │
├─────────┼─────────────┼───────────┼──────────────────────────┼────────┼──────────────┤
│ pfsense │ log         │ pipeline  │ test-opensense.log       │ PASS   │  70.000498ms │
│ pfsense │ log         │ pipeline  │ test-pfsense-bsd.log     │ PASS   │  11.047402ms │
│ pfsense │ log         │ pipeline  │ test-pfsense-dhcp.log    │ PASS   │  22.366831ms │
│ pfsense │ log         │ pipeline  │ test-pfsense-haproxy.log │ PASS   │  10.859495ms │
│ pfsense │ log         │ pipeline  │ test-pfsense-ipsec.log   │ PASS   │   7.745692ms │
│ pfsense │ log         │ pipeline  │ test-pfsense-openvpn.log │ PASS   │   5.633565ms │
│ pfsense │ log         │ pipeline  │ test-pfsense-phpfpm.log  │ PASS   │   5.294327ms │
│ pfsense │ log         │ pipeline  │ test-pfsense-squid.log   │ PASS   │   3.775592ms │
│ pfsense │ log         │ pipeline  │ test-pfsense-syslog.log  │ PASS   │   7.040265ms │
│ pfsense │ log         │ pipeline  │ test-pfsense-unbound.log │ PASS   │   4.110278ms │
╰─────────┴─────────────┴───────────┴──────────────────────────┴────────┴──────────────╯
--- Test results for package: pfsense - END   ---
Done
Run static tests for the package
--- Test results for package: pfsense - START ---
╭─────────┬─────────────┬───────────┬──────────────────────────┬────────┬──────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME                │ RESULT │ TIME ELAPSED │
├─────────┼─────────────┼───────────┼──────────────────────────┼────────┼──────────────┤
│ pfsense │ log         │ static    │ Verify sample_event.json │ PASS   │  47.301406ms │
╰─────────┴─────────────┴───────────┴──────────────────────────┴────────┴──────────────╯
--- Test results for package: pfsense - END   ---
Done
2023/01/19 17:54:17  WARN CommitHash is undefined, in both ~/.elastic-package/version and the compiled binary, config may be out of date.
Run test suite for the package
Run static tests for the package
--- Test results for package: qnap_nas - START ---
╭──────────┬─────────────┬───────────┬──────────────────────────┬────────┬──────────────╮
│ PACKAGE  │ DATA STREAM │ TEST TYPE │ TEST NAME                │ RESULT │ TIME ELAPSED │
├──────────┼─────────────┼───────────┼──────────────────────────┼────────┼──────────────┤
│ qnap_nas │ log         │ static    │ Verify sample_event.json │ PASS   │  50.740201ms │
╰──────────┴─────────────┴───────────┴──────────────────────────┴────────┴──────────────╯
--- Test results for package: qnap_nas - END   ---
Done
Run system tests for the package
2023/01/19 17:55:00  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/qnap-nas-udp-1674113100690791000.log
2023/01/19 17:55:44  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/qnap-nas-tcp-1674113144742556000.log
2023/01/19 17:56:28  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/qnap-nas-udp-1674113188677169000.log
2023/01/19 17:57:10  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/qnap-nas-tls-1674113230740257000.log
--- Test results for package: qnap_nas - START ---
╭──────────┬─────────────┬───────────┬─────────────┬────────┬───────────────╮
│ PACKAGE  │ DATA STREAM │ TEST TYPE │ TEST NAME   │ RESULT │  TIME ELAPSED │
├──────────┼─────────────┼───────────┼─────────────┼────────┼───────────────┤
│ qnap_nas │ log         │ system    │ udp-non-utc │ PASS   │ 29.867864232s │
│ qnap_nas │ log         │ system    │ tcp         │ PASS   │ 29.618780743s │
│ qnap_nas │ log         │ system    │ udp         │ PASS   │ 29.226086489s │
│ qnap_nas │ log         │ system    │ tls         │ PASS   │ 27.349465396s │
╰──────────┴─────────────┴───────────┴─────────────┴────────┴───────────────╯
--- Test results for package: qnap_nas - END   ---
Done
Run asset tests for the package
--- Test results for package: qnap_nas - START ---
╭──────────┬─────────────┬───────────┬───────────────────────────────────────────────────────────────────┬────────┬──────────────╮
│ PACKAGE  │ DATA STREAM │ TEST TYPE │ TEST NAME                                                         │ RESULT │ TIME ELAPSED │
├──────────┼─────────────┼───────────┼───────────────────────────────────────────────────────────────────┼────────┼──────────────┤
│ qnap_nas │             │ asset     │ dashboard qnap_nas-32e28700-4b0c-11ec-b2cc-b9a3cc301b75 is loaded │ PASS   │        791ns │
│ qnap_nas │             │ asset     │ search qnap_nas-50acdec0-4b0c-11ec-b2cc-b9a3cc301b75 is loaded    │ PASS   │        154ns │
│ qnap_nas │ log         │ asset     │ index_template logs-qnap_nas.log is loaded                        │ PASS   │        404ns │
│ qnap_nas │ log         │ asset     │ ingest_pipeline logs-qnap_nas.log-1.7.1 is loaded                 │ PASS   │        124ns │
╰──────────┴─────────────┴───────────┴───────────────────────────────────────────────────────────────────┴────────┴──────────────╯
--- Test results for package: qnap_nas - END   ---
Done
Run pipeline tests for the package
--- Test results for package: qnap_nas - START ---
╭──────────┬─────────────┬───────────┬─────────────────┬────────┬──────────────╮
│ PACKAGE  │ DATA STREAM │ TEST TYPE │ TEST NAME       │ RESULT │ TIME ELAPSED │
├──────────┼─────────────┼───────────┼─────────────────┼────────┼──────────────┤
│ qnap_nas │ log         │ pipeline  │ test-access.log │ PASS   │   6.981523ms │
│ qnap_nas │ log         │ pipeline  │ test-event.log  │ PASS   │   6.950451ms │
╰──────────┴─────────────┴───────────┴─────────────────┴────────┴──────────────╯
--- Test results for package: qnap_nas - END   ---
Done
2023/01/19 17:57:15  WARN CommitHash is undefined, in both ~/.elastic-package/version and the compiled binary, config may be out of date.
Run test suite for the package
Run system tests for the package
2023/01/19 17:57:50  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/snort-logfile-1674113270693409000.log
2023/01/19 17:58:46  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/snort-log-udp-1674113326673750000.log
2023/01/19 17:59:19  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/snort-logfile-1674113359675730000.log
2023/01/19 17:59:51  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/snort-logfile-1674113391828433000.log
--- Test results for package: snort - START ---
╭─────────┬─────────────┬───────────┬─────────────────┬────────┬───────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME       │ RESULT │  TIME ELAPSED │
├─────────┼─────────────┼───────────┼─────────────────┼────────┼───────────────┤
│ snort   │ log         │ system    │ logfile         │ PASS   │ 22.213114059s │
│ snort   │ log         │ system    │ udp             │ PASS   │  41.65099075s │
│ snort   │ log         │ system    │ logfile-full    │ PASS   │ 19.455279414s │
│ snort   │ log         │ system    │ logfile-non-utc │ PASS   │ 17.704021308s │
╰─────────┴─────────────┴───────────┴─────────────────┴────────┴───────────────╯
--- Test results for package: snort - END   ---
Done
Run asset tests for the package
--- Test results for package: snort - START ---
╭─────────┬─────────────┬───────────┬────────────────────────────────────────────────┬────────┬──────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME                                      │ RESULT │ TIME ELAPSED │
├─────────┼─────────────┼───────────┼────────────────────────────────────────────────┼────────┼──────────────┤
│ snort   │ log         │ asset     │ index_template logs-snort.log is loaded        │ PASS   │        590ns │
│ snort   │ log         │ asset     │ ingest_pipeline logs-snort.log-1.4.1 is loaded │ PASS   │        102ns │
╰─────────┴─────────────┴───────────┴────────────────────────────────────────────────┴────────┴──────────────╯
--- Test results for package: snort - END   ---
Done
Run pipeline tests for the package
--- Test results for package: snort - START ---
╭─────────┬─────────────┬───────────┬──────────────────────┬────────┬──────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME            │ RESULT │ TIME ELAPSED │
├─────────┼─────────────┼───────────┼──────────────────────┼────────┼──────────────┤
│ snort   │ log         │ pipeline  │ test-log-csv.log     │ PASS   │    7.94452ms │
│ snort   │ log         │ pipeline  │ test-log-fast.log    │ PASS   │   6.979044ms │
│ snort   │ log         │ pipeline  │ test-log-full.log    │ PASS   │   6.262147ms │
│ snort   │ log         │ pipeline  │ test-log-json.log    │ PASS   │   6.206141ms │
│ snort   │ log         │ pipeline  │ test-log-pfsense.log │ PASS   │   5.590965ms │
│ snort   │ log         │ pipeline  │ test-log-syslog.log  │ PASS   │   4.870926ms │
╰─────────┴─────────────┴───────────┴──────────────────────┴────────┴──────────────╯
--- Test results for package: snort - END   ---
Done
Run static tests for the package
--- Test results for package: snort - START ---
╭─────────┬─────────────┬───────────┬──────────────────────────┬────────┬──────────────╮
│ PACKAGE │ DATA STREAM │ TEST TYPE │ TEST NAME                │ RESULT │ TIME ELAPSED │
├─────────┼─────────────┼───────────┼──────────────────────────┼────────┼──────────────┤
│ snort   │ log         │ static    │ Verify sample_event.json │ PASS   │  49.256805ms │
╰─────────┴─────────────┴───────────┴──────────────────────────┴────────┴──────────────╯
--- Test results for package: snort - END   ---
Done
2023/01/19 17:59:55  WARN CommitHash is undefined, in both ~/.elastic-package/version and the compiled binary, config may be out of date.
Run test suite for the package
Run system tests for the package
2023/01/19 18:00:27  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/sonicwall_firewall-logfile-1674113427867351000.log
2023/01/19 18:01:27  INFO Write container logs to file: .../github.com/elastic/integrations/build/container-logs/sonicwall_firewall-syslog-1674113487811697000.log
--- Test results for package: sonicwall_firewall - START ---
╭────────────────────┬─────────────┬───────────┬───────────┬────────┬───────────────╮
│ PACKAGE            │ DATA STREAM │ TEST TYPE │ TEST NAME │ RESULT │  TIME ELAPSED │
├────────────────────┼─────────────┼───────────┼───────────┼────────┼───────────────┤
│ sonicwall_firewall │ log         │ system    │ logfile   │ PASS   │ 19.609718283s │
│ sonicwall_firewall │ log         │ system    │ syslog    │ PASS   │ 45.803510732s │
╰────────────────────┴─────────────┴───────────┴───────────┴────────┴───────────────╯
--- Test results for package: sonicwall_firewall - END   ---
Done
Run asset tests for the package
--- Test results for package: sonicwall_firewall - START ---
╭────────────────────┬─────────────┬───────────┬─────────────────────────────────────────────────────────────────────────────┬────────┬──────────────╮
│ PACKAGE            │ DATA STREAM │ TEST TYPE │ TEST NAME                                                                   │ RESULT │ TIME ELAPSED │
├────────────────────┼─────────────┼───────────┼─────────────────────────────────────────────────────────────────────────────┼────────┼──────────────┤
│ sonicwall_firewall │             │ asset     │ dashboard sonicwall_firewall-782e2cf0-d78f-11ec-bc4f-47419689dcde is loaded │ PASS   │        891ns │
│ sonicwall_firewall │             │ asset     │ search sonicwall_firewall-93af7ae0-d796-11ec-bc4f-47419689dcde is loaded    │ PASS   │        120ns │
│ sonicwall_firewall │ log         │ asset     │ index_template logs-sonicwall_firewall.log is loaded                        │ PASS   │        156ns │
│ sonicwall_firewall │ log         │ asset     │ ingest_pipeline logs-sonicwall_firewall.log-1.3.1 is loaded                 │ PASS   │         83ns │
╰────────────────────┴─────────────┴───────────┴─────────────────────────────────────────────────────────────────────────────┴────────┴──────────────╯
--- Test results for package: sonicwall_firewall - END   ---
Done
Run pipeline tests for the package
--- Test results for package: sonicwall_firewall - START ---
╭────────────────────┬─────────────┬───────────┬────────────────────────┬────────┬──────────────╮
│ PACKAGE            │ DATA STREAM │ TEST TYPE │ TEST NAME              │ RESULT │ TIME ELAPSED │
├────────────────────┼─────────────┼───────────┼────────────────────────┼────────┼──────────────┤
│ sonicwall_firewall │ log         │ pipeline  │ test-drizzthacker.log  │ PASS   │  25.851487ms │
│ sonicwall_firewall │ log         │ pipeline  │ test-general.log       │ PASS   │  30.786967ms │
│ sonicwall_firewall │ log         │ pipeline  │ test-nat.log           │ PASS   │   7.852358ms │
│ sonicwall_firewall │ log         │ pipeline  │ test-sonicos70-aws.log │ PASS   │ 149.664548ms │
╰────────────────────┴─────────────┴───────────┴────────────────────────┴────────┴──────────────╯
--- Test results for package: sonicwall_firewall - END   ---
Done
Run static tests for the package
--- Test results for package: sonicwall_firewall - START ---
╭────────────────────┬─────────────┬───────────┬──────────────────────────┬────────┬──────────────╮
│ PACKAGE            │ DATA STREAM │ TEST TYPE │ TEST NAME                │ RESULT │ TIME ELAPSED │
├────────────────────┼─────────────┼───────────┼──────────────────────────┼────────┼──────────────┤
│ sonicwall_firewall │ log         │ static    │ Verify sample_event.json │ PASS   │  43.341336ms │
╰────────────────────┴─────────────┴───────────┴──────────────────────────┴────────┴──────────────╯
--- Test results for package: sonicwall_firewall - END   ---
Done

@andrewkroh
Copy link
Member

/test

1 similar comment
@efd6
Copy link
Contributor Author

efd6 commented Jan 22, 2023

/test

@efd6
cef,infoblox_nios,keycloak,microsoft_dhcp,modsecurity,panw,pfsense,qn…
35ae8c0 
…ap_nas,snort,sonicwall: ensure timezones are strings
@efd6 efd6 force-pushed the 5049-timezones branch 3 times, most recently from 811eabe to a89bf1c Compare January 27, 2023 05:21
@efd6
make udp-handling streams pass
cdfea56 
This depends on each stream container spawn getting a unique port and so
distinguishing the docs.
@efd6
make non udp-handling streams pass
87ec81f 
This depends on file name differences.
@efd6
Copy link
Contributor Author

efd6 commented Jan 27, 2023 

[2023-01-27T06:19:44.502Z] Error: error running package system tests: could not complete test run: could not add data stream config to policy: could not add package to policy; API status code = 500; response body = {"statusCode":500,"error":"Internal Server Error","message":"can not read an implicit mapping pair; a colon is missed at line 12, column 25:\n        tz_offset: \"\"+0500\"\"\n                            ^"}

ᕙ(⇀‸↼‶)ᕗ

@efd6 efd6 force-pushed the 5049-timezones branch 2 times, most recently from cdd3ad4 to 87ec81f Compare January 27, 2023 09:41
@efd6
Copy link
Contributor Author

efd6 commented Jan 27, 2023

I'm going to back out the ms-dhcp, the error makes no sense.

@efd6 efd6 changed the title cef,infoblox_nios,keycloak,microsoft_dhcp,modsecurity,panw,pfsense,qnap_nas,snort,sonicwall: ensure timezones are strings cef,infoblox_nios,keycloak,modsecurity,panw,pfsense,qnap_nas,snort,sonicwall: ensure timezones are strings Jan 27, 2023
@efd6 efd6 marked this pull request as ready for review January 27, 2023 10:07
@efd6 efd6 requested a review from a team as a code owner January 27, 2023 10:07
@elasticmachine
Copy link

Pinging @elastic/security-external-integrations (Team:Security-External Integrations)

andrewkroh
andrewkroh reviewed Jan 27, 2023
View reviewed changes
Copy link
Member

@andrewkroh andrewkroh left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Everything but modsecurity looks good. I think the modsecurity pipeline needs updated to use the event.timezone produced by add_locale.

packages/modsecurity/data_stream/auditlog/agent/stream/stream.yml.hbs
@@ -9,9 +9,6 @@ tags:
{{#each tags as |tag i|}}
- {{tag}}
{{/each}}
fields_under_root: true
fields:
tz_offset: {{tz_offset}}
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This raises the question of what should the behavior be. This field was not used in a pipeline (or presenting the manifest). And the event.timezone produced by the add_locale processor does not appear to be used anywhere.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, this was my confusion here. I saw it wasn't being used. I'll add time zone config to the processor.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looking into this further, it looks like the logs always have a time zone. So I think the removal is the correct thing to do here.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The time_stamp field in this test file does not have a TZ. And I think that time value is being parsed in the nginx-modsec pipeline. Maybe the value is always reported in UTC?

integrations/packages/modsecurity/data_stream/auditlog/_dev/test/pipeline/test-audit.log

Line 1 in e001c86

{"transaction":{"client_ip":"67.43.156.14","time_stamp":"Fri May 14 14:52:47 2021","server_id":"c06217c4ac0d6f8892d2489cd5d92aaceec2508e","client_port":44464,"host_ip":"67.43.156.14","host_port":443,"id":"162100396753.595789","request":{"method":"GET","http_version":1.1,"uri":"/owa/","headers":{"Host":"34.87.56.16","User-Agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36","Accept":"*/*","Accept-Encoding":"gzip"}},"response":{"http_code":404,"headers":{"Strict-Transport-Security":"max-age=31536000; includeSubDomains","X-Runtime":"0.003894","X-Powered-By":"Phusion Passenger 6.0.2","Connection":"keep-alive","Content-Encoding":"gzip","Vary":"Origin","Status":"404 Not Found","X-Request-Id":"435c78d3-c122-4dee-8ca5-101397fab368","Server":"nginx/1.14.0","Content-Type":"text/html; charset=utf-8","Date":"Fri, 14 May 2021 14:52:47 GMT","Via":"1.1 google"}},"producer":{"modsecurity":"ModSecurity v3.0.2 (Linux)","connector":"ModSecurity-nginx v0.1.1-beta","secrules_engine":"Enabled","components":["OWASP_CRS/3.0.2\""]},"messages":[{"message":"Host header is a numeric IP address","details":{"match":"Matched \"Operator `Rx' with parameter `^[\\d.:]+$' against variable `REQUEST_HEADERS:Host' (Value: `34.87.56.16' )","reference":"o0,11v25,11","ruleId":"920350","file":"/etc/nginx/modsec/owasp-modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf","lineNumber":"733","data":"34.87.56.16","severity":"4","ver":"OWASP_CRS/3.0.0","rev":"2","tags":["application-multi","language-multi","platform-multi","attack-protocol","OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST","WASCTC/WASC-21","OWASP_TOP_10/A7","PCI/6.5.10"],"maturity":"9","accuracy":"9"}}]}}

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I came up with a reasonably sane way to handle the insanity of disparate representations of time zone for cisco_meraki, so I bring that here.

Obligatory xkcd.

@efd6 efd6 merged commit 283366b into elastic:main Feb 6, 2023
@elasticmachine
Copy link

Package cef - 2.6.1 containing this change is available at https://epr.elastic.co/search?package=cef

@elasticmachine
Copy link

Package infoblox_nios - 1.6.1 containing this change is available at https://epr.elastic.co/search?package=infoblox_nios

@elasticmachine
Copy link

Package keycloak - 1.7.1 containing this change is available at https://epr.elastic.co/search?package=keycloak

@elasticmachine
Copy link

Package modsecurity - 1.5.1 containing this change is available at https://epr.elastic.co/search?package=modsecurity

@elasticmachine
Copy link

Package panw - 3.5.1 containing this change is available at https://epr.elastic.co/search?package=panw

@elasticmachine
Copy link

Package pfsense - 1.6.2 containing this change is available at https://epr.elastic.co/search?package=pfsense

@elasticmachine
Copy link

Package qnap_nas - 1.7.1 containing this change is available at https://epr.elastic.co/search?package=qnap_nas

@elasticmachine
Copy link

Package snort - 1.4.1 containing this change is available at https://epr.elastic.co/search?package=snort

@elasticmachine
Copy link

Package sonicwall_firewall - 1.3.1 containing this change is available at https://epr.elastic.co/search?package=sonicwall_firewall

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@andrewkroh andrewkroh andrewkroh approved these changes

Assignees

@efd6 efd6

Labels
bug Something isn't working Integration:CEF Integration:Infoblox_nios Integration:Keycloak Integration:Modsecurity Integration:PANW Integration:pfSense pfSense Firewall Integration:Snort integration:Sonicwall
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

[CEF] Add quotes around timezone value
3 participants
@efd6 @elasticmachine @andrewkroh