----------------------------------------------------------- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/75217/ -----------------------------------------------------------
(Updated Sept. 27, 2024, 9:38 a.m.) Review request for ranger. Repository: ranger Description ------- Elasticsearch version 7.10.2 is affected by a high vulnerability CVE-2023-31418. You must upgrade to version 7.17.22 to fix this vulnerability. Diffs ----- embeddedwebserver/src/main/java/org/apache/ranger/server/tomcat/ElasticSearchIndexBootStrapper.java 15a16e41f pom.xml 7c2390fa8 ranger-elasticsearch-plugin-shim/src/main/java/org/apache/ranger/authorization/elasticsearch/plugin/RangerElasticsearchPlugin.java 2af13f87f Diff: https://reviews.apache.org/r/75217/diff/1/ Testing (updated) ------- ElasticSearchAccessAuditsServiceTest Write Test -> 11:37:55.892 [main] INFO org.apache.ranger.audit.destination.AuditDestination -- AuditDestination() enter 11:37:55.900 [main] INFO org.apache.ranger.audit.provider.BaseAuditHandler -- BaseAuditProvider.init() 11:37:55.900 [main] INFO org.apache.ranger.audit.provider.BaseAuditHandler -- propPrefix=ranger.audit.elasticsearch 11:37:55.926 [main] DEBUG org.apache.ranger.audit.provider.MiscUtil -- ==> MiscUtil.initLocalHost() 11:37:55.938 [main] DEBUG org.apache.ranger.audit.provider.MiscUtil -- <== MiscUtil.initLocalHost() 11:37:55.938 [main] INFO org.apache.ranger.audit.provider.BaseAuditHandler -- Using providerName from property prefix. providerName=elasticsearch 11:37:55.938 [main] INFO org.apache.ranger.audit.provider.BaseAuditHandler -- providerName=elasticsearch 11:37:55.938 [main] INFO org.apache.ranger.audit.provider.BaseAuditHandler -- xasecure.audit.log.status.log.enabled=false 11:37:55.938 [main] INFO org.apache.ranger.audit.provider.BaseAuditHandler -- xasecure.audit.log.status.log.interval.sec=300 11:37:55.938 [main] INFO org.apache.ranger.audit.provider.BaseAuditHandler -- ranger.audit.elasticsearch.status.log.enabled=false 11:37:55.938 [main] INFO org.apache.ranger.audit.provider.BaseAuditHandler -- ranger.audit.elasticsearch.status.log.interval.sec=300 11:37:55.939 [main] INFO org.apache.ranger.audit.destination.ElasticSearchAuditDestination -- Connecting to ElasticSearch: User:elastic, http://localhost:9200/ranger_audits log4j:WARN No appenders could be found for logger (org.apache.http.impl.nio.client.MainClientExec). log4j:WARN Please initialize the log4j system properly. log4j:WARN See http://logging.apache.org/log4j/1.2/faq.html#noconfig for more info. 11:37:57.298 [main] DEBUG org.apache.ranger.audit.destination.ElasticSearchAuditDestination -- Index exists 11:37:57.602 [main] DEBUG org.apache.ranger.audit.destination.ElasticSearchAuditDestination -- Indexed Read test -> 11:36:57.967 [main] INFO org.apache.ranger.elasticsearch.ElasticSearchAccessAuditsServiceTest -- Running searchXAccessAudits: 11:36:57.980 [main] INFO org.apache.ranger.elasticsearch.ElasticSearchMgr -- Initializing ElasticSearch User:elastic, http://localhost:9200/ranger_audits 11:36:58.002 [main] DEBUG org.apache.ranger.audit.provider.MiscUtil -- ==> MiscUtil.initLocalHost() 11:36:58.018 [main] DEBUG org.apache.ranger.audit.provider.MiscUtil -- <== MiscUtil.initLocalHost() log4j:WARN No appenders could be found for logger (org.apache.http.impl.nio.client.MainClientExec). log4j:WARN Please initialize the log4j system properly. log4j:WARN See http://logging.apache.org/log4j/1.2/faq.html#noconfig for more info. 11:36:59.868 [main] INFO org.apache.ranger.elasticsearch.ElasticSearchAccessAuditsServiceTest -- searchXAccessAudits results (0 items): Thanks, Fernando Arribas
