Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Remove unneeded Dockerfile from Zeek #597

Merged
merged 1 commit into from
Feb 1, 2021
Merged

Remove unneeded Dockerfile from Zeek #597

merged 1 commit into from
Feb 1, 2021

Conversation

andrewkroh
Copy link
Member

What does this PR do?

The sample logs can be copied between volumes rather than added
to a layer in the image via a Dockerfile.

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.

Related issues

Screenshots

Run asset tests for the package
--- Test results for package: zeek - START ---
╭─────────┬──────────────┬───────────┬───────────────────────────────────────────────────────────────────┬────────┬───────────────╮
│ PACKAGE │ DATA STREAM  │ TEST TYPE │ TEST NAME                                                         │ RESULT │  TIME ELAPSED │
├─────────┼──────────────┼───────────┼───────────────────────────────────────────────────────────────────┼────────┼───────────────┤
│ zeek    │              │ asset     │ dashboard zeek-7cbb5410-3700-11e9-aa6d-ff445a78330c is loaded     │ PASS   │ 20.357391814s │
│ zeek    │              │ asset     │ visualization zeek-1df7ea80-370d-11e9-aa6d-ff445a78330c is loaded │ PASS   │      15.011µs │
│ zeek    │              │ asset     │ visualization zeek-466e5850-370d-11e9-aa6d-ff445a78330c is loaded │ PASS   │       1.004µs │
│ zeek    │              │ asset     │ visualization zeek-649acd40-370d-11e9-aa6d-ff445a78330c is loaded │ PASS   │         475ns │
│ zeek    │              │ asset     │ visualization zeek-9436c270-370d-11e9-aa6d-ff445a78330c is loaded │ PASS   │         471ns │
│ zeek    │              │ asset     │ visualization zeek-bec2f0e0-370d-11e9-aa6d-ff445a78330c is loaded │ PASS   │       2.212µs │
│ zeek    │              │ asset     │ visualization zeek-e042fda0-370d-11e9-aa6d-ff445a78330c is loaded │ PASS   │       1.377µs │
│ zeek    │              │ asset     │ visualization zeek-f469f230-370c-11e9-aa6d-ff445a78330c is loaded │ PASS   │         750ns │
│ zeek    │              │ asset     │ visualization zeek-f8c40810-370d-11e9-aa6d-ff445a78330c is loaded │ PASS   │         834ns │
│ zeek    │ capture_loss │ asset     │ index_template logs-zeek.capture_loss is loaded                   │ PASS   │         822ns │
│ zeek    │ capture_loss │ asset     │ ingest_pipeline logs-zeek.capture_loss-0.4.0 is loaded            │ PASS   │         729ns │
│ zeek    │ connection   │ asset     │ index_template logs-zeek.connection is loaded                     │ PASS   │         584ns │
│ zeek    │ connection   │ asset     │ ingest_pipeline logs-zeek.connection-0.4.0 is loaded              │ PASS   │         458ns │
│ zeek    │ dce_rpc      │ asset     │ index_template logs-zeek.dce_rpc is loaded                        │ PASS   │         543ns │
│ zeek    │ dce_rpc      │ asset     │ ingest_pipeline logs-zeek.dce_rpc-0.4.0 is loaded                 │ PASS   │         456ns │
│ zeek    │ dhcp         │ asset     │ index_template logs-zeek.dhcp is loaded                           │ PASS   │         649ns │
│ zeek    │ dhcp         │ asset     │ ingest_pipeline logs-zeek.dhcp-0.4.0 is loaded                    │ PASS   │       1.552µs │
│ zeek    │ dnp3         │ asset     │ index_template logs-zeek.dnp3 is loaded                           │ PASS   │         727ns │
│ zeek    │ dnp3         │ asset     │ ingest_pipeline logs-zeek.dnp3-0.4.0 is loaded                    │ PASS   │         770ns │
│ zeek    │ dns          │ asset     │ index_template logs-zeek.dns is loaded                            │ PASS   │         566ns │
│ zeek    │ dns          │ asset     │ ingest_pipeline logs-zeek.dns-0.4.0 is loaded                     │ PASS   │         535ns │
│ zeek    │ dpd          │ asset     │ index_template logs-zeek.dpd is loaded                            │ PASS   │       1.192µs │
│ zeek    │ dpd          │ asset     │ ingest_pipeline logs-zeek.dpd-0.4.0 is loaded                     │ PASS   │       1.564µs │
│ zeek    │ files        │ asset     │ index_template logs-zeek.files is loaded                          │ PASS   │         613ns │
│ zeek    │ files        │ asset     │ ingest_pipeline logs-zeek.files-0.4.0 is loaded                   │ PASS   │         544ns │
│ zeek    │ ftp          │ asset     │ index_template logs-zeek.ftp is loaded                            │ PASS   │         542ns │
│ zeek    │ ftp          │ asset     │ ingest_pipeline logs-zeek.ftp-0.4.0 is loaded                     │ PASS   │         604ns │
│ zeek    │ http         │ asset     │ index_template logs-zeek.http is loaded                           │ PASS   │         534ns │
│ zeek    │ http         │ asset     │ ingest_pipeline logs-zeek.http-0.4.0 is loaded                    │ PASS   │         647ns │
│ zeek    │ intel        │ asset     │ index_template logs-zeek.intel is loaded                          │ PASS   │        1.48µs │
│ zeek    │ intel        │ asset     │ ingest_pipeline logs-zeek.intel-0.4.0 is loaded                   │ PASS   │         814ns │
│ zeek    │ irc          │ asset     │ index_template logs-zeek.irc is loaded                            │ PASS   │         625ns │
│ zeek    │ irc          │ asset     │ ingest_pipeline logs-zeek.irc-0.4.0 is loaded                     │ PASS   │         701ns │
│ zeek    │ kerberos     │ asset     │ index_template logs-zeek.kerberos is loaded                       │ PASS   │         612ns │
│ zeek    │ kerberos     │ asset     │ ingest_pipeline logs-zeek.kerberos-0.4.0 is loaded                │ PASS   │         451ns │
│ zeek    │ modbus       │ asset     │ index_template logs-zeek.modbus is loaded                         │ PASS   │         422ns │
│ zeek    │ modbus       │ asset     │ ingest_pipeline logs-zeek.modbus-0.4.0 is loaded                  │ PASS   │         464ns │
│ zeek    │ mysql        │ asset     │ index_template logs-zeek.mysql is loaded                          │ PASS   │         431ns │
│ zeek    │ mysql        │ asset     │ ingest_pipeline logs-zeek.mysql-0.4.0 is loaded                   │ PASS   │         409ns │
│ zeek    │ notice       │ asset     │ index_template logs-zeek.notice is loaded                         │ PASS   │         407ns │
│ zeek    │ notice       │ asset     │ ingest_pipeline logs-zeek.notice-0.4.0 is loaded                  │ PASS   │       2.173µs │
│ zeek    │ ntlm         │ asset     │ index_template logs-zeek.ntlm is loaded                           │ PASS   │         423ns │
│ zeek    │ ntlm         │ asset     │ ingest_pipeline logs-zeek.ntlm-0.4.0 is loaded                    │ PASS   │         416ns │
│ zeek    │ ocsp         │ asset     │ index_template logs-zeek.ocsp is loaded                           │ PASS   │         376ns │
│ zeek    │ ocsp         │ asset     │ ingest_pipeline logs-zeek.ocsp-0.4.0 is loaded                    │ PASS   │         433ns │
│ zeek    │ pe           │ asset     │ index_template logs-zeek.pe is loaded                             │ PASS   │         366ns │
│ zeek    │ pe           │ asset     │ ingest_pipeline logs-zeek.pe-0.4.0 is loaded                      │ PASS   │         410ns │
│ zeek    │ radius       │ asset     │ index_template logs-zeek.radius is loaded                         │ PASS   │         426ns │
│ zeek    │ radius       │ asset     │ ingest_pipeline logs-zeek.radius-0.4.0 is loaded                  │ PASS   │         425ns │
│ zeek    │ rdp          │ asset     │ index_template logs-zeek.rdp is loaded                            │ PASS   │         525ns │
│ zeek    │ rdp          │ asset     │ ingest_pipeline logs-zeek.rdp-0.4.0 is loaded                     │ PASS   │         503ns │
│ zeek    │ rfb          │ asset     │ index_template logs-zeek.rfb is loaded                            │ PASS   │         423ns │
│ zeek    │ rfb          │ asset     │ ingest_pipeline logs-zeek.rfb-0.4.0 is loaded                     │ PASS   │         460ns │
│ zeek    │ sip          │ asset     │ index_template logs-zeek.sip is loaded                            │ PASS   │         410ns │
│ zeek    │ sip          │ asset     │ ingest_pipeline logs-zeek.sip-0.4.0 is loaded                     │ PASS   │         551ns │
│ zeek    │ smb_cmd      │ asset     │ index_template logs-zeek.smb_cmd is loaded                        │ PASS   │         615ns │
│ zeek    │ smb_cmd      │ asset     │ ingest_pipeline logs-zeek.smb_cmd-0.4.0 is loaded                 │ PASS   │         592ns │
│ zeek    │ smb_files    │ asset     │ index_template logs-zeek.smb_files is loaded                      │ PASS   │       1.786µs │
│ zeek    │ smb_files    │ asset     │ ingest_pipeline logs-zeek.smb_files-0.4.0 is loaded               │ PASS   │         570ns │
│ zeek    │ smb_mapping  │ asset     │ index_template logs-zeek.smb_mapping is loaded                    │ PASS   │         600ns │
│ zeek    │ smb_mapping  │ asset     │ ingest_pipeline logs-zeek.smb_mapping-0.4.0 is loaded             │ PASS   │         370ns │
│ zeek    │ smtp         │ asset     │ index_template logs-zeek.smtp is loaded                           │ PASS   │         537ns │
│ zeek    │ smtp         │ asset     │ ingest_pipeline logs-zeek.smtp-0.4.0 is loaded                    │ PASS   │         431ns │
│ zeek    │ snmp         │ asset     │ index_template logs-zeek.snmp is loaded                           │ PASS   │         417ns │
│ zeek    │ snmp         │ asset     │ ingest_pipeline logs-zeek.snmp-0.4.0 is loaded                    │ PASS   │         471ns │
│ zeek    │ socks        │ asset     │ index_template logs-zeek.socks is loaded                          │ PASS   │         457ns │
│ zeek    │ socks        │ asset     │ ingest_pipeline logs-zeek.socks-0.4.0 is loaded                   │ PASS   │         363ns │
│ zeek    │ ssh          │ asset     │ index_template logs-zeek.ssh is loaded                            │ PASS   │         425ns │
│ zeek    │ ssh          │ asset     │ ingest_pipeline logs-zeek.ssh-0.4.0 is loaded                     │ PASS   │         463ns │
│ zeek    │ ssl          │ asset     │ index_template logs-zeek.ssl is loaded                            │ PASS   │         431ns │
│ zeek    │ ssl          │ asset     │ ingest_pipeline logs-zeek.ssl-0.4.0 is loaded                     │ PASS   │         382ns │
│ zeek    │ stats        │ asset     │ index_template logs-zeek.stats is loaded                          │ PASS   │         377ns │
│ zeek    │ stats        │ asset     │ ingest_pipeline logs-zeek.stats-0.4.0 is loaded                   │ PASS   │         446ns │
│ zeek    │ syslog       │ asset     │ index_template logs-zeek.syslog is loaded                         │ PASS   │         398ns │
│ zeek    │ syslog       │ asset     │ ingest_pipeline logs-zeek.syslog-0.4.0 is loaded                  │ PASS   │         433ns │
│ zeek    │ traceroute   │ asset     │ index_template logs-zeek.traceroute is loaded                     │ PASS   │         418ns │
│ zeek    │ traceroute   │ asset     │ ingest_pipeline logs-zeek.traceroute-0.4.0 is loaded              │ PASS   │         370ns │
│ zeek    │ tunnel       │ asset     │ index_template logs-zeek.tunnel is loaded                         │ PASS   │         380ns │
│ zeek    │ tunnel       │ asset     │ ingest_pipeline logs-zeek.tunnel-0.4.0 is loaded                  │ PASS   │         394ns │
│ zeek    │ weird        │ asset     │ index_template logs-zeek.weird is loaded                          │ PASS   │         384ns │
│ zeek    │ weird        │ asset     │ ingest_pipeline logs-zeek.weird-0.4.0 is loaded                   │ PASS   │         392ns │
│ zeek    │ x509         │ asset     │ index_template logs-zeek.x509 is loaded                           │ PASS   │         392ns │
│ zeek    │ x509         │ asset     │ ingest_pipeline logs-zeek.x509-0.4.0 is loaded                    │ PASS   │         427ns │
╰─────────┴──────────────┴───────────┴───────────────────────────────────────────────────────────────────┴────────┴───────────────╯
--- Test results for package: zeek - END   ---
Done
Run pipeline tests for the package
--- Test results for package: zeek - START ---
No test results
--- Test results for package: zeek - END   ---
Done
Run system tests for the package
--- Test results for package: zeek - START ---
╭─────────┬──────────────┬───────────┬───────────┬────────┬───────────────╮
│ PACKAGE │ DATA STREAM  │ TEST TYPE │ TEST NAME │ RESULT │  TIME ELAPSED │
├─────────┼──────────────┼───────────┼───────────┼────────┼───────────────┤
│ zeek    │ capture_loss │ system    │ default   │ PASS   │ 22.222268321s │
│ zeek    │ connection   │ system    │ default   │ PASS   │ 18.815471079s │
│ zeek    │ dce_rpc      │ system    │ default   │ PASS   │ 18.800937539s │
│ zeek    │ dhcp         │ system    │ default   │ PASS   │ 19.725526962s │
│ zeek    │ dnp3         │ system    │ default   │ PASS   │  22.63640694s │
│ zeek    │ dns          │ system    │ default   │ PASS   │ 18.798647188s │
│ zeek    │ dpd          │ system    │ default   │ PASS   │ 18.616793687s │
│ zeek    │ files        │ system    │ default   │ PASS   │   18.6028844s │
│ zeek    │ http         │ system    │ default   │ PASS   │ 18.978765147s │
│ zeek    │ intel        │ system    │ default   │ PASS   │ 23.407156365s │
│ zeek    │ irc          │ system    │ default   │ PASS   │ 18.808580199s │
│ zeek    │ kerberos     │ system    │ default   │ PASS   │ 18.784365791s │
│ zeek    │ modbus       │ system    │ default   │ PASS   │  18.73030838s │
│ zeek    │ mysql        │ system    │ default   │ PASS   │ 18.735521531s │
│ zeek    │ notice       │ system    │ default   │ PASS   │  22.85785856s │
│ zeek    │ ntlm         │ system    │ default   │ PASS   │ 18.743244677s │
│ zeek    │ pe           │ system    │ default   │ PASS   │ 19.702456621s │
│ zeek    │ radius       │ system    │ default   │ PASS   │ 18.700119906s │
│ zeek    │ rdp          │ system    │ default   │ PASS   │ 18.725021282s │
│ zeek    │ rfb          │ system    │ default   │ PASS   │ 18.725471015s │
│ zeek    │ sip          │ system    │ default   │ PASS   │ 18.911324548s │
│ zeek    │ smb_cmd      │ system    │ default   │ PASS   │ 18.762046156s │
│ zeek    │ smb_files    │ system    │ default   │ PASS   │ 18.754248752s │
│ zeek    │ smb_mapping  │ system    │ default   │ PASS   │ 18.751973584s │
│ zeek    │ smtp         │ system    │ default   │ PASS   │ 18.753226044s │
│ zeek    │ snmp         │ system    │ default   │ PASS   │  18.74597504s │
│ zeek    │ socks        │ system    │ default   │ PASS   │  18.77365112s │
│ zeek    │ ssh          │ system    │ default   │ PASS   │ 18.832855329s │
│ zeek    │ ssl          │ system    │ default   │ PASS   │ 19.020996587s │
│ zeek    │ stats        │ system    │ default   │ PASS   │ 18.519201183s │
│ zeek    │ traceroute   │ system    │ default   │ PASS   │ 18.666966996s │
│ zeek    │ tunnel       │ system    │ default   │ PASS   │  18.76860704s │
│ zeek    │ weird        │ system    │ default   │ PASS   │ 18.721886614s │
│ zeek    │ x509         │ system    │ default   │ PASS   │ 18.724406292s │
╰─────────┴──────────────┴───────────┴───────────┴────────┴───────────────╯
--- Test results for package: zeek - END   ---

@andrewkroh
Remove unneeded Dockerfile from Zeek
2663d09 
The sample logs can be copied between volumes rather than added
to a layer in the image via a Dockerfile.
@elasticmachine
Copy link

Pinging @elastic/security-external-integrations (Team:Security-External Integrations)

@elasticmachine
Copy link

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview

Expand to view the summary

Build stats

  • Build Cause: Pull request #597 opened

    • Start Time: 2021-01-31T19:11:35.521+0000

  • Duration: 28 min 55 sec

  • Commit: 2663d09

Test stats 🧪

Test Results
Failed 0
Passed 117
Skipped 0
Total 117

@andrewkroh andrewkroh merged commit 903aa7f into elastic:master Feb 1, 2021
eyalkraft pushed a commit to build-security/integrations that referenced this pull request Mar 30, 2022
@andrewkroh
Remove unneeded Dockerfile from Zeek (elastic#597)
a01adb7 
The sample logs can be copied between volumes rather than added
to a layer in the image via a Dockerfile.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@adriansr adriansr adriansr approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@andrewkroh @elasticmachine @adriansr