afb57ff041
Fixes CVE-2023-31417, CVE-2023-31418, CVE-2023-31419, CVE-2023-46673 and CVE-2023-46674. Security announces: https://www.elastic.co/guide/en/security/7.17/release-notes-header-7.17.0.html#release-notes-7.17.16 Release notes: https://www.elastic.co/guide/en/elasticsearch/reference/7.17/release-notes-7.17.16.html https://www.elastic.co/guide/en/elasticsearch/reference/7.17/release-notes-7.17.15.html https://www.elastic.co/guide/en/elasticsearch/reference/7.17/release-notes-7.17.14.html https://www.elastic.co/guide/en/elasticsearch/reference/7.17/release-notes-7.17.13.html https://www.elastic.co/guide/en/elasticsearch/reference/7.17/release-notes-7.17.12.html https://www.elastic.co/guide/en/elasticsearch/reference/7.17/release-notes-7.17.11.html
60 lines
2.1 KiB
Nix
60 lines
2.1 KiB
Nix
{ lib, fetchFromGitHub, elk7Version, buildGoModule, libpcap, nixosTests, systemd, config }:
|
|
|
|
let beat = package: extraArgs: buildGoModule (rec {
|
|
pname = package;
|
|
version = elk7Version;
|
|
|
|
src = fetchFromGitHub {
|
|
owner = "elastic";
|
|
repo = "beats";
|
|
rev = "v${version}";
|
|
hash = "sha256-0qwWHRIDLlnaPOCRmiiFGg+/jdanWuQtggM2QSaMR1o=";
|
|
};
|
|
|
|
vendorHash = "sha256-rwCCpptppkpvwQWUtqTjBUumP8GSpPHBTCaj0nYVQv8=";
|
|
|
|
subPackages = [ package ];
|
|
|
|
meta = with lib; {
|
|
homepage = "https://www.elastic.co/products/beats";
|
|
license = licenses.asl20;
|
|
maintainers = with maintainers; [ fadenb basvandijk dfithian ];
|
|
platforms = platforms.linux;
|
|
};
|
|
} // extraArgs);
|
|
in
|
|
rec {
|
|
auditbeat7 = beat "auditbeat" { meta.description = "Lightweight shipper for audit data"; };
|
|
filebeat7 = beat "filebeat" {
|
|
meta.description = "Lightweight shipper for logfiles";
|
|
buildInputs = [ systemd ];
|
|
tags = [ "withjournald" ];
|
|
postFixup = ''
|
|
patchelf --set-rpath ${lib.makeLibraryPath [ (lib.getLib systemd) ]} "$out/bin/filebeat"
|
|
'';
|
|
};
|
|
heartbeat7 = beat "heartbeat" { meta.description = "Lightweight shipper for uptime monitoring"; };
|
|
metricbeat7 = beat "metricbeat" {
|
|
meta.description = "Lightweight shipper for metrics";
|
|
passthru.tests =
|
|
lib.optionalAttrs config.allowUnfree (
|
|
assert metricbeat7.drvPath == nixosTests.elk.unfree.ELK-7.elkPackages.metricbeat.drvPath;
|
|
{
|
|
elk = nixosTests.elk.unfree.ELK-7;
|
|
}
|
|
);
|
|
};
|
|
packetbeat7 = beat "packetbeat" {
|
|
buildInputs = [ libpcap ];
|
|
meta.description = "Network packet analyzer that ships data to Elasticsearch";
|
|
meta.longDescription = ''
|
|
Packetbeat is an open source network packet analyzer that ships the
|
|
data to Elasticsearch.
|
|
|
|
Think of it like a distributed real-time Wireshark with a lot more
|
|
analytics features. The Packetbeat shippers sniff the traffic between
|
|
your application processes, parse on the fly protocols like HTTP, MySQL,
|
|
PostgreSQL, Redis or Thrift and correlate the messages into transactions.
|
|
'';
|
|
};
|
|
}
|