Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Fix wazuh install in unify-unattended script #1072

Merged
merged 17 commits into from
Dec 21, 2021
Merged

Fix wazuh install in unify-unattended script #1072

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
17 commits
Select commit Hold shift + click to select a range
e25b51c
add reporelease
myu1d157h0u54nd Dec 13, 2021
6eece82
fix path for config file, in configureFilebeat
myu1d157h0u54nd Dec 13, 2021
9ff35cd
Merge branch 'unify-unattended' into 1036-unify-unattended-fix-wazuh_…
myu1d157h0u54nd Dec 13, 2021
767a10b
fix path for config file
myu1d157h0u54nd Dec 13, 2021
d72a717
fix getHelp, add checkPrerequisites, and remove repetition of: checkS…
myu1d157h0u54nd Dec 14, 2021
b14d8c2
fix path for config file
myu1d157h0u54nd Dec 14, 2021
ff5f251
create checkPrerequisites(), fix Setting the Wazuh repository to prod…
myu1d157h0u54nd Dec 14, 2021
d3be30f
Merge branch 'unify-unattended' into 1036-unify-unattended-fix-wazuh_…
myu1d157h0u54nd Dec 16, 2021
95fbd07
fix path for config file
myu1d157h0u54nd Dec 16, 2021
8d16637
fix missing ]
myu1d157h0u54nd Dec 16, 2021
b5f513b
remove logger
myu1d157h0u54nd Dec 20, 2021
5fcf93d
Simplify code. Correct messages in logger.
myu1d157h0u54nd Dec 20, 2021
908652a
Correct messages in logger.
myu1d157h0u54nd Dec 20, 2021
84212d5
Correct messages in logger.
myu1d157h0u54nd Dec 20, 2021
187a75a
Merge branch 'unify-config-yml' of github.com:wazuh/wazuh-packages in…
alberpilot Dec 21, 2021
25825a0
Removed repeated functions call
alberpilot Dec 21, 2021
d755da6
Moved checkSystem, installPrerequisites,addWazuhrepo Calls
alberpilot Dec 21, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
29 changes: 18 additions & 11 deletions unattended_scripts/install_functions/opendistro/common.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,10 +7,12 @@

repogpg="https://packages.wazuh.com/key/GPG-KEY-WAZUH"
repobaseurl="https://packages.wazuh.com/4.x"
reporelease="stable"

if [ -n "${development}" ]; then
repogpg="https://packages-dev.wazuh.com/key/GPG-KEY-WAZUH"
repobaseurl="https://packages-dev.wazuh.com/pre-release"
reporelease="unstable"
fi

getConfig() {
Expand Down Expand Up @@ -48,7 +50,7 @@ checkArch() {
}

installPrerequisites() {
logger "Installing all necessary utilities for the installation..."
logger "Installing all necessary utilities for the installation."

if [ ${sys_type} == "yum" ]; then
eval "yum install curl unzip wget libcap -y ${debug}"
Expand All @@ -69,7 +71,7 @@ installPrerequisites() {
}

addWazuhrepo() {
logger "Adding the Wazuh repository..."
logger "Adding the Wazuh repository."

if [ -n ${development} ]; then
if [ ${sys_type} == "yum" ]; then
Expand All @@ -90,7 +92,7 @@ addWazuhrepo() {
eval "echo -e '[wazuh]\ngpgcheck=1\ngpgkey=${repogpg}\nenabled=1\nname=EL-\$releasever - Wazuh\nbaseurl='${repobaseurl}'/yum/\nprotect=1' | tee /etc/zypp/repos.d/wazuh.repo ${debug}"
elif [ ${sys_type} == "apt-get" ]; then
eval "curl -s ${repogpg} --max-time 300 | apt-key add - ${debug}"
eval "echo "deb '${repobaseurl}'/apt/ stable main" | tee /etc/apt/sources.list.d/wazuh.list ${debug}"
eval "echo "deb '${repobaseurl}'/apt/ '${reporelease}' main" | tee /etc/apt/sources.list.d/wazuh.list ${debug}"
eval "apt-get update -q ${debug}"
fi
else
Expand All @@ -113,6 +115,7 @@ restoreWazuhrepo() {
fi
eval "sed -i 's/-dev//g' ${file} ${debug}"
eval "sed -i 's/pre-release/4.x/g' ${file} ${debug}"
eval "sed -i 's/unstable/stable/g' ${file} ${debug}"
logger "Done"
fi
}
Expand Down Expand Up @@ -273,7 +276,8 @@ healthCheck() {
logger -e "Your system does not meet the recommended minimum hardware requirements of 4Gb of RAM and 2 CPU cores. If you want to proceed with the installation use the -i option to ignore these requirements."
exit 1;
else
logger "Starting the installation..."
logger "Check recommended minimum hardware requirements for Elasticsearch done."
logger "Starting the installation."
fi
;;

Expand All @@ -282,7 +286,8 @@ healthCheck() {
logger -e "Your system does not meet the recommended minimum hardware requirements of 4Gb of RAM and 2 CPU cores. If you want to proceed with the installation use the -i option to ignore these requirements."
exit 1;
else
logger "Starting the installation..."
logger "Check recommended minimum hardware requirements for Kibana done."
logger "Starting the installation."
fi
;;
"wazuh")
Expand All @@ -291,7 +296,8 @@ healthCheck() {
logger -e "Your system does not meet the recommended minimum hardware requirements of 2Gb of RAM and 2 CPU cores . If you want to proceed with the installation use the -i option to ignore these requirements."
exit 1;
else
logger "Starting the installation..."
logger "Check recommended minimum hardware requirements for Wazuh Manager done."
logger "Starting the installation."
fi
;;
"AIO")
Expand All @@ -300,7 +306,8 @@ healthCheck() {
logger -e "Your system does not meet the recommended minimum hardware requirements of 4Gb of RAM and 2 CPU cores. If you want to proceed with the installation use the -i option to ignore these requirements."
exit 1;
else
logger "Starting the installation..."
logger "Check recommended minimum hardware requirements for AIO done."
logger "Starting the installation."
fi
;;
esac
Expand All @@ -321,7 +328,7 @@ rollBack() {
fi

if [ -n "${wazuhinstalled}" ]; then
logger -w "Removing the Wazuh manager..."
logger -w "Removing the Wazuh manager."
if [ "${sys_type}" == "yum" ]; then
eval "yum remove wazuh-manager -y ${debug}"
elif [ "${sys_type}" == "zypper" ]; then
Expand All @@ -333,7 +340,7 @@ rollBack() {
fi

if [ -n "${elasticsearchinstalled}" ]; then
logger -w "Removing Elasticsearch..."
logger -w "Removing Elasticsearch."
if [ "${sys_type}" == "yum" ]; then
eval "yum remove opendistroforelasticsearch -y ${debug}"
eval "yum remove elasticsearch* -y ${debug}"
Expand All @@ -351,7 +358,7 @@ rollBack() {
fi

if [ -n "${filebeatinstalled}" ]; then
logger -w "Removing Filebeat..."
logger -w "Removing Filebeat."
if [ "${sys_type}" == "yum" ]; then
eval "yum remove filebeat -y ${debug}"
elif [ "${sys_type}" == "zypper" ]; then
Expand All @@ -365,7 +372,7 @@ rollBack() {
fi

if [ -n "${kibanainstalled}" ]; then
logger -w "Removing Kibana..."
logger -w "Removing Kibana."
if [ "${sys_type}" == "yum" ]; then
eval "yum remove opendistroforelasticsearch-kibana -y ${debug}"
elif [ "${sys_type}" == "zypper" ]; then
Expand Down
13 changes: 6 additions & 7 deletions unattended_scripts/install_functions/opendistro/elasticsearch.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@

installElasticsearch() {

logger "Installing Open Distro for Elasticsearch..."
logger "Installing Open Distro for Elasticsearch."

if [ ${sys_type} == "yum" ]; then
eval "yum install opendistroforelasticsearch-${opendistro_version}-${opendistro_revision} -y ${debug}"
Expand Down Expand Up @@ -46,7 +46,7 @@ copyCertificatesElasticsearch() {

configureElasticsearchAIO() {

logger "Configuring Elasticsearch..."
logger "Configuring Elasticsearch."

eval "getConfig elasticsearch/elasticsearch_unattended.yml /etc/elasticsearch/elasticsearch.yml ${debug}"
eval "getConfig elasticsearch/roles/roles.yml /usr/share/elasticsearch/plugins/opendistro_security/securityconfig/roles.yml ${debug}"
Expand Down Expand Up @@ -80,7 +80,7 @@ configureElasticsearchAIO() {
eval "chown root:elasticsearch /etc/elasticsearch/jvm.options.d/disabledlog4j.options ${debug}"

startService "elasticsearch"
logger "Initializing Elasticsearch..."
logger "Initializing Elasticsearch."
until $(curl -XGET https://localhost:9200/ -uadmin:admin -k --max-time 120 --silent --output /dev/null); do
sleep 10
done
Expand All @@ -91,7 +91,7 @@ configureElasticsearchAIO() {
}

configureElasticsearch() {
logger "Configuring Elasticsearch..."
logger "Configuring Elasticsearch."

eval "getConfig elasticsearch/elasticsearch_unattended_distributed.yml /etc/elasticsearch/elasticsearch.yml ${debug}"
eval "getConfig elasticsearch/roles/roles.yml /usr/share/elasticsearch/plugins/opendistro_security/securityconfig/roles.yml ${debug}"
Expand All @@ -108,7 +108,6 @@ configureElasticsearch() {
echo ' - CN='${einame}',OU=Docu,O=Wazuh,L=California,C=US' >> /etc/elasticsearch/elasticsearch.yml
else
echo "node.name: ${einame}" >> /etc/elasticsearch/elasticsearch.yml

echo "cluster.initial_master_nodes:" >> /etc/elasticsearch/elasticsearch.yml
for i in ${elasticsearch_node_names[@]}; do
echo ' - "'${$i}'"' >> /etc/elasticsearch/elasticsearch.yml
Expand Down Expand Up @@ -174,9 +173,9 @@ initializeElasticsearch() {

logger "Elasticsearch installed."

logger "Starting Elasticsearch..."
logger "Starting Elasticsearch."
startService "elasticsearch"
logger "Initializing Elasticsearch..."
logger "Initializing Elasticsearch."

until $(curl -XGET https://${elasticsearch_node_ips[pos]}:9200/ -uadmin:admin -k --max-time 120 --silent --output /dev/null); do
sleep 10
Expand Down
4 changes: 2 additions & 2 deletions unattended_scripts/install_functions/opendistro/filebeat.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,7 +12,7 @@ installFilebeat() {
exit 1;
fi

logger "Installing Filebeat..."
logger "Installing Filebeat."

if [ ${sys_type} == "zypper" ]; then
eval "zypper -n install filebeat-${elasticsearch_oss_version} ${debug}"
Expand Down Expand Up @@ -51,7 +51,7 @@ configureFilebeat() {
eval "cp ${base_path}/certs/root-ca.pem /etc/filebeat/certs/ ${debug}"

logger "Done"
logger "Starting Filebeat..."
logger "Starting Filebeat."
startService filebeat
}

Expand Down
2 changes: 1 addition & 1 deletion unattended_scripts/install_functions/opendistro/kibana.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@

installKibana() {

logger "Installing Open Distro for Kibana..."
logger "Installing Open Distro for Kibana."
if [ ${sys_type} == "zypper" ]; then
eval "zypper -n install opendistroforelasticsearch-kibana=${opendistro_version} ${debug}"
else
Expand Down
6 changes: 3 additions & 3 deletions unattended_scripts/install_functions/opendistro/wazuh-cert-tool.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -174,7 +174,7 @@ generateAdmincertificate() {

generateElasticsearchcertificates() {

logger_cert "Creating the Elasticsearch certificates..."
logger_cert "Creating the Elasticsearch certificates."

i=0
while [ ${i} -lt ${#elasticsearch_node_names[@]} ]; do
Expand All @@ -189,7 +189,7 @@ generateElasticsearchcertificates() {

generateFilebeatcertificates() {

logger_cert "Creating Wazuh server certificates..."
logger_cert "Creating Wazuh server certificates."

i=0
while [ ${i} -lt ${#wazuh_servers_node_names[@]} ]; do
Expand All @@ -203,7 +203,7 @@ generateFilebeatcertificates() {

generateKibanacertificates() {

logger_cert "Creating Kibana certificate..."
logger_cert "Creating Kibana certificate."

i=0
while [ ${i} -lt ${#kibana_node_names[@]} ]; do
Expand Down
2 changes: 1 addition & 1 deletion unattended_scripts/install_functions/opendistro/wazuh.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@

installWazuh() {

logger "Installing the Wazuh manager..."
logger "Installing the Wazuh manager."
if [ ${sys_type} == "zypper" ]; then
eval "zypper -n install wazuh-manager=${wazuh_version}-${wazuh_revision} ${debug}"
else
Expand Down
40 changes: 20 additions & 20 deletions unattended_scripts/wazuh_install.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -67,7 +67,7 @@ getHelp() {
echo -e " -l, --local"
echo -e " Use local files."
echo -e ""
echo -e " -d, --dev"
echo -e " -d, --development"
echo -e " Use development repository."
echo -e ""
echo -e " -h, --help"
Expand Down Expand Up @@ -99,15 +99,15 @@ logger() {

importFunction() {
if [ -n "${local}" ]; then
if [ -f ./$functions_path/$1 ]; then
cat ./$functions_path/$1 |grep 'main $@' > /dev/null 2>&1
if [ -f ${base_path}/$functions_path/$1 ]; then
cat ${base_path}/$functions_path/$1 |grep 'main $@' > /dev/null 2>&1
has_main=$?
if [ $has_main = 0 ]; then
sed -i 's/main $@//' ./$functions_path/$1
sed -i 's/main $@//' ${base_path}/$functions_path/$1
fi
. ./$functions_path/$1
. ${base_path}/$functions_path/$1
if [ $has_main = 0 ]; then
echo 'main $@' >> ./$functions_path/$1
echo 'main $@' >> ${base_path}/$functions_path/$1
fi
else
error=1
Expand All @@ -123,7 +123,7 @@ importFunction() {
fi
fi
if [ "${error}" = "1" ]; then
logger -e "Unable to find resource $1. Exiting"
logger -e "Unable to find resource $1. Exiting."
exit 1
fi
}
Expand Down Expand Up @@ -167,7 +167,7 @@ main() {
debug='2>&1 | tee -a /var/log/wazuh-unattended-installation.log'
shift 1
;;
"-d"|"--dev")
"-d"|"--development")
development=1
shift 1
;;
Expand All @@ -193,10 +193,6 @@ main() {
importFunction "wazuh-cert-tool.sh"

checkArch

if [ -n "${certificates}" ] || [ -n "${AIO}" ]; then
createCertificates
fi

if [ -z ${AIO} ]; then
readConfig
Expand All @@ -205,32 +201,34 @@ main() {
addWazuhrepo
fi

if [ -n "${certificates}" ] || [ -n "${AIO}" ]; then
createCertificates
fi

if [ -n "${elasticsearch}" ]; then

importFunction "elasticsearch.sh"

if [ -n "${ignore}" ]; then
logger -w "Health-check ignored."
logger -w "Health-check ignored for Elasticsearch."
else
healthCheck elasticsearch
fi
installElasticsearch
configureElasticsearch
restoreWazuhrepo
fi

if [ -n "${kibana}" ]; then

importFunction "kibana.sh"

if [ -n "${ignore}" ]; then
logger -w "Health-check ignored."
logger -w "Health-check ignored for Kibana."
else
healthCheck kibana
fi
installKibana
configureKibana
restoreWazuhrepo
fi

if [ -n "${wazuh}" ]; then
Expand All @@ -239,7 +237,7 @@ main() {
importFunction "filebeat.sh"

if [ -n "${ignore}" ]; then
logger -w "Health-check ignored."
logger -w "Health-check ignored for Wazuh manager."
else
healthCheck wazuh
fi
Expand All @@ -249,7 +247,6 @@ main() {
fi
installFilebeat
configureFilebeat
restoreWazuhrepo
fi

if [ -n "${AIO}" ]; then
Expand All @@ -260,10 +257,11 @@ main() {
importFunction "kibana.sh"

if [ -n "${ignore}" ]; then
logger -w "Health-check ignored."
logger -w "Health-check ignored for AIO."
else
healthCheck AIO
fi

checkSystem
installPrerequisites
addWazuhrepo
Expand All @@ -274,8 +272,10 @@ main() {
configureFilebeatAIO
installKibana
configureKibanaAIO
restoreWazuhrepo
fi

restoreWazuhrepo

}

main "$@"