Merge 4.7.2 into 4.8.0 #2715
Merged
Merge 4.7.2 into 4.8.0 #2715
Wazuh CI / Distributed Cases - manager_indexer - centos - Start Wazuh indexer cluster
succeeded
Dec 22, 2023 in 2m 12s
Test_unattended_distributed_cases
Below you have the stage output
Details
indexer log
--------------------------------
22/12/2023 02:30:47 DEBUG: Checking root permissions.
22/12/2023 02:30:47 INFO: Starting Wazuh installation assistant. Wazuh version: 4.8.0
22/12/2023 02:30:47 INFO: Verbose logging redirected to /var/log/wazuh-install.log
22/12/2023 02:30:47 DEBUG: YUM package manager will be used.
22/12/2023 02:30:47 DEBUG: Checking system distribution.
22/12/2023 02:30:47 DEBUG: Detected distribution name: centos
22/12/2023 02:30:47 DEBUG: Detected distribution version: 7
22/12/2023 02:30:47 DEBUG: Checking Wazuh installation.
22/12/2023 02:30:48 DEBUG: There are Wazuh remaining files.
22/12/2023 02:30:49 DEBUG: There are Wazuh indexer remaining files.
22/12/2023 02:30:50 DEBUG: There are Filebeat remaining files.
22/12/2023 02:30:51 DEBUG: Installing check dependencies.
22/12/2023 02:31:00 INFO: --- Dependencies ---
22/12/2023 02:31:00 INFO: Installing lsof.
Loaded plugins: fastestmirror Loading mirror speeds from cached hostfile builder.sh cert_tool common_functions config Development-guide.md install_functions passwords_tool wazuh-install-files.tar wazu
h-install.sh base: download.cf.centos.org builder.sh cert_tool common_functions config Development-guide.md install_functions passwords_tool wazuh-install-files.tar wazuh-install.sh extras: download.c
f.centos.org builder.sh cert_tool common_functions config Development-guide.md install_functions passwords_tool wazuh-install-files.tar wazuh-install.sh updates: download.cf.centos.org Not using downl
oaded wazuh/repomd.xml because it is older than what we have: Current : Fri Dec 22 00:43:01 2023 Downloaded: Wed Dec 20 13:48:27 2023 Resolving Dependencies --> Running transaction check ---> Package
lsof.x86_64 0:4.87-6.el7 will be installed --> Finished Dependency Resolution Dependencies Resolved ================================================================================ Package Arch Versio
n Repository Size ================================================================================ Installing: lsof x86_64 4.87-6.el7 base 331 k Transaction Summary ===================================
============================================= Install 1 Package Total download size: 331 k Installed size: 927 k Downloading packages: Running transaction check Running transaction test Transaction te
st succeeded Running transaction Installing : lsof-4.87-6.el7.x86_64 1/1 Verifying : lsof-4.87-6.el7.x86_64 1/1 Installed: lsof.x86_64 0:4.87-6.el7 Complete!
Loaded plugins: fastestmirror Loading mirror speeds from cached hostfile builder.sh cert_tool common_functions config Development-guide.md install_functions passwords_tool wazuh-install-files.tar wazu
h-install.sh base: download.cf.centos.org builder.sh cert_tool common_functions config Development-guide.md install_functions passwords_tool wazuh-install-files.tar wazuh-install.sh extras: download.c
f.centos.org builder.sh cert_tool common_functions config Development-guide.md install_functions passwords_tool wazuh-install-files.tar wazuh-install.sh updates: download.cf.centos.org Not using downl
oaded wazuh/repomd.xml because it is older than what we have: Current : Fri Dec 22 00:43:01 2023 Downloaded: Wed Dec 20 13:48:27 2023 Resolving Dependencies --> Running transaction check ---> Package
lsof.x86_64 0:4.87-6.el7 will be installed --> Finished Dependency Resolution Dependencies Resolved ================================================================================ Package Arch Versio
n Repository Size ================================================================================ Installing: lsof x86_64 4.87-6.el7 base 331 k Transaction Summary ===================================
============================================= Install 1 Package Total download size: 331 k Installed size: 927 k Downloading packages: Running transaction check Running transaction test Transaction te
st succeeded Running transaction Installing : lsof-4.87-6.el7.x86_64 1/1 Verifying : lsof-4.87-6.el7.x86_64 1/1 Installed: lsof.x86_64 0:4.87-6.el7 Complete!
22/12/2023 02:31:03 DEBUG: Checking previous certificate existence.
22/12/2023 02:31:03 DEBUG: Checking system architecture.
22/12/2023 02:31:03 INFO: Verifying that your system meets the recommended minimum hardware requirements.
22/12/2023 02:31:03 DEBUG: CPU cores detected: 2
22/12/2023 02:31:03 DEBUG: Free RAM memory detected: 7741
22/12/2023 02:31:03 DEBUG: Extracting Wazuh configuration.
22/12/2023 02:31:03 DEBUG: Reading configuration file.
22/12/2023 02:31:03 DEBUG: Checking if 172.31.83.7 is private.
22/12/2023 02:31:03 DEBUG: Checking if 172.31.83.7 is private.
22/12/2023 02:31:03 DEBUG: Checking if 172.31.85.236 is private.
22/12/2023 02:31:03 DEBUG: Starting Wazuh indexer cluster.
**************************************************************************
** This tool will be deprecated in the next major release of OpenSearch **
** https://github.com/opensearch-project/security/issues/1755 **
**************************************************************************
Security Admin v7
Will connect to 172.31.83.7:9200 ... done
Connected as "CN=admin,OU=Wazuh,O=Wazuh,L=California,C=US"
OpenSearch Version: 2.10.0
Contacting opensearch cluster 'opensearch' and wait for YELLOW clusterstate ...
Clustername: wazuh-indexer-cluster
Clusterstate: GREEN
Number of nodes: 1
Number of data nodes: 1
.opendistro_security index does not exists, attempt to create it ... done (0-all replicas)
Populate config from /etc/wazuh-indexer/opensearch-security/
Will update '/config' with /etc/wazuh-indexer/opensearch-security/config.yml
SUCC: Configuration for 'config' created or updated
Will update '/roles' with /etc/wazuh-indexer/opensearch-security/roles.yml
SUCC: Configuration for 'roles' created or updated
Will update '/rolesmapping' with /etc/wazuh-indexer/opensearch-security/roles_mapping.yml
SUCC: Configuration for 'rolesmapping' created or updated
Will update '/internalusers' with /etc/wazuh-indexer/opensearch-security/internal_users.yml
SUCC: Configuration for 'internalusers' created or updated
Will update '/actiongroups' with /etc/wazuh-indexer/opensearch-security/action_groups.yml
SUCC: Configuration for 'actiongroups' created or updated
Will update '/tenants' with /etc/wazuh-indexer/opensearch-security/tenants.yml
SUCC: Configuration for 'tenants' created or updated
Will update '/nodesdn' with /etc/wazuh-indexer/opensearch-security/nodes_dn.yml
SUCC: Configuration for 'nodesdn' created or updated
Will update '/whitelist' with /etc/wazuh-indexer/opensearch-security/whitelist.yml
SUCC: Configuration for 'whitelist' created or updated
Will update '/audit' with /etc/wazuh-indexer/opensearch-security/audit.yml
SUCC: Configuration for 'audit' created or updated
Will update '/allowlist' with /etc/wazuh-indexer/opensearch-security/allowlist.yml
SUCC: Configuration for 'allowlist' created or updated
SUCC: Expected 10 config types for node {"updated_config_types":["allowlist","tenants","rolesmapping","nodesdn","audit","roles","whitelist","internalusers","actiongroups","config"],"updated_config_siz
e":10,"message":null} is 10 (["allowlist","tenants","rolesmapping","nodesdn","audit","roles","whitelist","internalusers","actiongroups","config"]) due to: null
Done with success
22/12/2023 02:31:15 INFO: Wazuh indexer cluster security configuration initialized.
wazuh-alerts template uploaded
wazuh-archives template uploaded
rollover_policy policy uploaded
wazuh-alerts write index created
wazuh-archives write index created
Indexer ISM initialization finished successfully
22/12/2023 02:31:18 INFO: The Wazuh indexer cluster ISM initialized.
{"error":"Content-Type header [] is not supported","status":406}22/12/2023 02:31:43 DEBUG: Inserted wazuh-alerts template into the Wazuh indexer cluster.
22/12/2023 02:31:43 DEBUG: Setting Wazuh indexer cluster passwords.
22/12/2023 02:31:44 DEBUG: Checking Wazuh installation.
22/12/2023 02:31:45 DEBUG: There are Wazuh remaining files.
22/12/2023 02:31:46 DEBUG: There are Wazuh indexer remaining files.
22/12/2023 02:31:47 DEBUG: There are Filebeat remaining files.
22/12/2023 02:31:48 INFO: Updating the internal users.
22/12/2023 02:31:48 DEBUG: Creating password backup.
**************************************************************************
** This tool will be deprecated in the next major release of OpenSearch **
** https://github.com/opensearch-project/security/issues/1755 **
**************************************************************************
Security Admin v7
Will connect to 172.31.83.7:9200 ... done
Connected as "CN=admin,OU=Wazuh,O=Wazuh,L=California,C=US"
OpenSearch Version: 2.10.0
Contacting opensearch cluster 'opensearch' and wait for YELLOW clusterstate ...
Clustername: wazuh-indexer-cluster
Clusterstate: YELLOW
Number of nodes: 1
Number of data nodes: 1
.opendistro_security index already exists, so we do not need to create one.
Will retrieve '/config' into /etc/wazuh-indexer/backup/config.yml
SUCC: Configuration for 'config' stored in /etc/wazuh-indexer/backup/config.yml
Will retrieve '/roles' into /etc/wazuh-indexer/backup/roles.yml
SUCC: Configuration for 'roles' stored in /etc/wazuh-indexer/backup/roles.yml
Will retrieve '/rolesmapping' into /etc/wazuh-indexer/backup/roles_mapping.yml
SUCC: Configuration for 'rolesmapping' stored in /etc/wazuh-indexer/backup/roles_mapping.yml
Will retrieve '/internalusers' into /etc/wazuh-indexer/backup/internal_users.yml
SUCC: Configuration for 'internalusers' stored in /etc/wazuh-indexer/backup/internal_users.yml
Will retrieve '/actiongroups' into /etc/wazuh-indexer/backup/action_groups.yml
SUCC: Configuration for 'actiongroups' stored in /etc/wazuh-indexer/backup/action_groups.yml
Will retrieve '/tenants' into /etc/wazuh-indexer/backup/tenants.yml
SUCC: Configuration for 'tenants' stored in /etc/wazuh-indexer/backup/tenants.yml
Will retrieve '/nodesdn' into /etc/wazuh-indexer/backup/nodes_dn.yml
SUCC: Configuration for 'nodesdn' stored in /etc/wazuh-indexer/backup/nodes_dn.yml
Will retrieve '/whitelist' into /etc/wazuh-indexer/backup/whitelist.yml
SUCC: Configuration for 'whitelist' stored in /etc/wazuh-indexer/backup/whitelist.yml
Will retrieve '/allowlist' into /etc/wazuh-indexer/backup/allowlist.yml
SUCC: Configuration for 'allowlist' stored in /etc/wazuh-indexer/backup/allowlist.yml
Will retrieve '/audit' into /etc/wazuh-indexer/backup/audit.yml
SUCC: Configuration for 'audit' stored in /etc/wazuh-indexer/backup/audit.yml
22/12/2023 02:31:54 DEBUG: Password backup created in /etc/wazuh-indexer/backup.
22/12/2023 02:31:54 INFO: A backup of the internal users has been saved in the /etc/wazuh-indexer/internalusers-backup folder.
22/12/2023 02:31:54 DEBUG: The internal users have been updated before changing the passwords.
22/12/2023 02:31:54 DEBUG: Generating password hashes.
22/12/2023 02:32:03 DEBUG: Password hashes generated.
22/12/2023 02:32:03 DEBUG: Creating password backup.
**************************************************************************
** This tool will be deprecated in the next major release of OpenSearch **
** https://github.com/opensearch-project/security/issues/1755 **
**************************************************************************
Security Admin v7
Will connect to 172.31.83.7:9200 ... done
Connected as "CN=admin,OU=Wazuh,O=Wazuh,L=California,C=US"
OpenSearch Version: 2.10.0
Contacting opensearch cluster 'opensearch' and wait for YELLOW clusterstate ...
Clustername: wazuh-indexer-cluster
Clusterstate: YELLOW
Number of nodes: 1
Number of data nodes: 1
.opendistro_security index already exists, so we do not need to create one.
Will retrieve '/config' into /etc/wazuh-indexer/backup/config.yml
SUCC: Configuration for 'config' stored in /etc/wazuh-indexer/backup/config.yml
Will retrieve '/roles' into /etc/wazuh-indexer/backup/roles.yml
SUCC: Configuration for 'roles' stored in /etc/wazuh-indexer/backup/roles.yml
Will retrieve '/rolesmapping' into /etc/wazuh-indexer/backup/roles_mapping.yml
SUCC: Configuration for 'rolesmapping' stored in /etc/wazuh-indexer/backup/roles_mapping.yml
Will retrieve '/internalusers' into /etc/wazuh-indexer/backup/internal_users.yml
SUCC: Configuration for 'internalusers' stored in /etc/wazuh-indexer/backup/internal_users.yml
Will retrieve '/actiongroups' into /etc/wazuh-indexer/backup/action_groups.yml
SUCC: Configuration for 'actiongroups' stored in /etc/wazuh-indexer/backup/action_groups.yml
Will retrieve '/tenants' into /etc/wazuh-indexer/backup/tenants.yml
SUCC: Configuration for 'tenants' stored in /etc/wazuh-indexer/backup/tenants.yml
Will retrieve '/nodesdn' into /etc/wazuh-indexer/backup/nodes_dn.yml
SUCC: Configuration for 'nodesdn' stored in /etc/wazuh-indexer/backup/nodes_dn.yml
Will retrieve '/whitelist' into /etc/wazuh-indexer/backup/whitelist.yml
SUCC: Configuration for 'whitelist' stored in /etc/wazuh-indexer/backup/whitelist.yml
Will retrieve '/allowlist' into /etc/wazuh-indexer/backup/allowlist.yml
SUCC: Configuration for 'allowlist' stored in /etc/wazuh-indexer/backup/allowlist.yml
Will retrieve '/audit' into /etc/wazuh-indexer/backup/audit.yml
SUCC: Configuration for 'audit' stored in /etc/wazuh-indexer/backup/audit.yml
22/12/2023 02:32:08 DEBUG: Password backup created in /etc/wazuh-indexer/backup.
Successfully updated the keystore
22/12/2023 02:32:08 DEBUG: Restarting filebeat service...
22/12/2023 02:32:08 DEBUG: filebeat started.
22/12/2023 02:32:08 DEBUG: Running security admin tool.
22/12/2023 02:32:09 DEBUG: Loading new passwords changes.
**************************************************************************
** This tool will be deprecated in the next major release of OpenSearch **
** https://github.com/opensearch-project/security/issues/1755 **
**************************************************************************
Security Admin v7
Will connect to 172.31.83.7:9200 ... done
Connected as "CN=admin,OU=Wazuh,O=Wazuh,L=California,C=US"
OpenSearch Version: 2.10.0
Contacting opensearch cluster 'opensearch' and wait for YELLOW clusterstate ...
Clustername: wazuh-indexer-cluster
Clusterstate: YELLOW
Number of nodes: 1
Number of data nodes: 1
.opendistro_security index already exists, so we do not need to create one.
Populate config from /tmp/Test_unattended_distributed_cases/B2078/unattended_installer
Force type: internalusers
Will update '/internalusers' with /etc/wazuh-indexer/backup/internal_users.yml
SUCC: Configuration for 'internalusers' created or updated
SUCC: Expected 1 config types for node {"updated_config_types":["internalusers"],"updated_config_size":1,"message":null} is 1 (["internalusers"]) due to: null
Done with success
22/12/2023 02:32:14 DEBUG: Passwords changed.
22/12/2023 02:32:14 INFO: --- Dependencies ---
22/12/2023 02:32:14 INFO: Removing lsof.
Loaded plugins: fastestmirror Resolving Dependencies --> Running transaction check ---> Package lsof.x86_64 0:4.87-6.el7 will be erased --> Finished Dependency Resolution Dependencies Resolved =======
========================================================================= Package Arch Version Repository Size ================================================================================ Removing
: lsof x86_64 4.87-6.el7 @base 927 k Transaction Summary ================================================================================ Remove 1 Package Installed size: 927 k Downloading packages: R
unning transaction check Running transaction test Transaction test succeeded Running transaction Erasing : lsof-4.87-6.el7.x86_64 1/1 Verifying : lsof-4.87-6.el7.x86_64 1/1 Removed: lsof.x86_64 0:4.87
-6.el7 Complete!
22/12/2023 02:32:15 DEBUG: Restoring Wazuh repository.
22/12/2023 02:32:15 INFO: Wazuh indexer cluster started.
Loading