Try to revert changes in network traffic

go.mod

@@ -217,3 +217,5 @@ require (
 	sigs.k8s.io/structured-merge-diff/v4 v4.4.1 // indirect
 	sigs.k8s.io/yaml v1.4.0 // indirect
 )
+
+replace github.com/elastic/elastic-package => github.com/jsoriano/elastic-package v0.66.1-0.20240909114932-d115a79b285c

go.sum

@@ -108,8 +108,6 @@ github.com/dustin/go-humanize v1.0.1 h1:GzkhY7T5VNhEkwH0PVJgjz+fX1rhBrR7pRT3mDkp
 github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto=
 github.com/elastic/elastic-integration-corpus-generator-tool v0.10.0 h1:sx1lpZuTG5suJuvgix4FWQFCLFFbzkoOmPoHWYOPLCY=
 github.com/elastic/elastic-integration-corpus-generator-tool v0.10.0/go.mod h1:2/30n+2QRzRzus4TPVUV1T3U/j8g2ItUgvP0pcpjLGk=
-github.com/elastic/elastic-package v0.103.0 h1:iGfZCnt5jbBWvuwCAgqZ0aNCqgQhfrdaR5hwfoER0lQ=
-github.com/elastic/elastic-package v0.103.0/go.mod h1:X3pav1fywMMWSy+k5WsqxW4SItsCiYWC+kTymDnw+Cw=
 github.com/elastic/go-elasticsearch/v7 v7.17.10 h1:TCQ8i4PmIJuBunvBS6bwT2ybzVFxxUhhltAs3Gyu1yo=
 github.com/elastic/go-elasticsearch/v7 v7.17.10/go.mod h1:OJ4wdbtDNk5g503kvlHLyErCgQwwzmDtaFC4XyOxXA4=
 github.com/elastic/go-licenser v0.4.2 h1:bPbGm8bUd8rxzSswFOqvQh1dAkKGkgAmrPxbUi+Y9+A=
@@ -278,6 +276,8 @@ github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8Hm
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
 github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
 github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
+github.com/jsoriano/elastic-package v0.66.1-0.20240909114932-d115a79b285c h1:Vi+dlvh1VjTajJiNYiGJq/MENnyZufT4aD+MMDnsYek=
+github.com/jsoriano/elastic-package v0.66.1-0.20240909114932-d115a79b285c/go.mod h1:X3pav1fywMMWSy+k5WsqxW4SItsCiYWC+kTymDnw+Cw=
 github.com/kballard/go-shellquote v0.0.0-20180428030007-95032a82bc51 h1:Z9n2FFNUXsshfwJMBgNA0RU6/i7WVaAegv3PtuIHPMs=
 github.com/kballard/go-shellquote v0.0.0-20180428030007-95032a82bc51/go.mod h1:CzGEWj7cYgsdH8dAjBGEr58BoE7ScuLd+fwFZ44+/x8=
 github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8=

packages/network_traffic/changelog.yml

@@ -1,9 +1,4 @@
 # newer versions go on top
-- version: "1.32.1"
-  changes:
-    - description: Add missing definitions for fields from DNS answers
-      type: bugfix
-      link: https://github.com/elastic/integrations/pull/10919
 - version: "1.31.1"
   changes:
     - description: Add `event.module` to datastreams

packages/network_traffic/data_stream/dns/fields/protocol.yml

@@ -108,36 +108,3 @@
     - name: opt.udp_size
       type: long
       description: Requestor's UDP payload size (in bytes).
-
-    - name: answers.algorithm
-      type: keyword
-    - name: answers.digest_type
-      type: keyword
-    - name: answers.expiration
-      type: long
-    - name: answers.expire
-      type: long
-    - name: answers.inception
-      type: keyword
-    - name: answers.key_tag
-      type: keyword
-    - name: answers.labels
-      type: keyword
-    - name: answers.minimum
-      type: keyword
-    - name: answers.original_ttl
-      type: keyword
-    - name: answers.preference
-      type: keyword
-    - name: answers.refresh
-      type: long
-    - name: answers.retry
-      type: long
-    - name: answers.rname
-      type: keyword
-    - name: answers.serial
-      type: keyword
-    - name: answers.signer_name
-      type: keyword
-    - name: answers.type_covered
-      type: keyword

packages/network_traffic/docs/README.md

@@ -1608,27 +1608,11 @@ Fields published for DNS packets.
 | dns.additionals.type | The type of data contained in this resource record. | keyword |
 | dns.additionals_count | The number of resource records contained in the `dns.additionals` field. The `dns.additionals` field may or may not be included depending on the configuration of Packetbeat. | long |
 | dns.answers | An array containing an object for each answer section returned by the server. The main keys that should be present in these objects are defined by ECS. Records that have more information may contain more keys than what ECS defines. Not all DNS data sources give all details about DNS answers. At minimum, answer objects must contain the `data` key. If more information is available, map as much of it to ECS as possible, and add any additional fields to the answer objects as custom fields. | group |
-| dns.answers.algorithm |  | keyword |
 | dns.answers.class | The class of DNS data contained in this resource record. | keyword |
 | dns.answers.data | The data describing the resource. The meaning of this data depends on the type and class of the resource record. | keyword |
-| dns.answers.digest_type |  | keyword |
-| dns.answers.expiration |  | long |
-| dns.answers.expire |  | long |
-| dns.answers.inception |  | keyword |
-| dns.answers.key_tag |  | keyword |
-| dns.answers.labels |  | keyword |
-| dns.answers.minimum |  | keyword |
 | dns.answers.name | The domain name to which this resource record pertains. If a chain of CNAME is being resolved, each answer's `name` should be the one that corresponds with the answer's `data`. It should not simply be the original `question.name` repeated. | keyword |
-| dns.answers.original_ttl |  | keyword |
-| dns.answers.preference |  | keyword |
-| dns.answers.refresh |  | long |
-| dns.answers.retry |  | long |
-| dns.answers.rname |  | keyword |
-| dns.answers.serial |  | keyword |
-| dns.answers.signer_name |  | keyword |
 | dns.answers.ttl | The time interval in seconds that this resource record may be cached before it should be discarded. Zero values mean that the data should not be cached. | long |
 | dns.answers.type | The type of data contained in this resource record. | keyword |
-| dns.answers.type_covered |  | keyword |
 | dns.answers_count | The number of resource records contained in the `dns.answers` field. | long |
 | dns.authorities | An array containing a dictionary for each authority section from the answer. | flattened |
 | dns.authorities.class | The class of DNS data contained in this resource record. | keyword |

packages/network_traffic/manifest.yml

@@ -1,7 +1,7 @@
 format_version: "3.0.0"
 name: network_traffic
 title: Network Packet Capture
-version: "1.32.1"
+version: "1.31.1"
 description: Capture and analyze network traffic from a host with Elastic Agent.
 type: integration
 categories: