-
Notifications
You must be signed in to change notification settings - Fork 1.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Refactor or remove cluster configuration options to make it enabled by default #13351
Comments
ossec.conf
template
Status updateI have already removed these configuration options:
In addition, the default value of these options has been changed:
Right now, there is nothing required in the <cluster>
<node_type>worker</node_type>
<nodes>
<node>master-ip</node>
</nodes>
</cluster> Everything is working fine in my tests, although more changes and much deeper testing are still required. |
Status update1. Removing
|
Status updateToday I have hardly been able to work on this development. I have only verified that Regarding the |
Status update1. node_nameAfter analyzing the problem with
As a consequence, I have extended the following issue so a default value is used for 2. LoopbackThe cluster process will always be running now. However, if the user sets
There is also no need for a process pool, so child creation is disabled when API requests are queued and handled by the Local Server when they are originated in the master node itself. Therefore, these changes should not affect its behavior. In any case, a log is printed when starting the master if
3. To doThis issue is blocked until these are merged:
Once it is ready to go, unittests and AIT should be run and updated. |
Status updateI have resolved the conflicts after merging the two PRs that were blocking this development. I'm now updating unit tests to fix any errors and increase coverage on changed functions. To do
|
Description
As explained in #7108, we want to make the master enabled by default. That involves removing some configuration options and refactoring others to make it easier to understand and to set up. These are the current cluster options and their default value:
wazuh/framework/wazuh/core/cluster/utils.py
Lines 49 to 59 in 8b613b4
We should change the behavior of the cluster for the following options:
ossec.conf
. In this case its value would be0.0.0.0
or127.0.0.1
. If127.0.0.1
is used, it means that children process should not be created and some tasks likeLocal Integrity
orLocal agent-groups
should not be running, since workers won't be able to connect to the master.127.0.0.1
. It is necessary to test how this affects binaries like agent_groups.As seen above, the goal is not only the default cluster but also to make its configuration easier to understand.
Checks
wazuh/wazuh
framework/wazuh/core/cluster/tests/
&framework/wazuh/core/cluster/dapi/tests/
)framework/wazuh/core/tests/
)framework/wazuh/tests/
)framework/wazuh/rbac/tests/
)api/api/tests/
)api/test/integration/
):api/test/integration/mapping/integration_test_api_endpoints.json
)api/api/spec/spec.yaml
)framework/wazuh/core/exception.py
)CHANGELOG.md
)wazuh/wazuh-documentation
source/user-manual/api/equivalence.rst
)source/user-manual/api/rbac/reference.rst
)The text was updated successfully, but these errors were encountered: