Google Git
Sign in
gerrit/modules/index-elasticsearch/d85e0c18f48982685da3373f1ec8aa8679055c8c
commit
d85e0c18f48982685da3373f1ec8aa8679055c8c
[log] [tgz]
author
Luca Milanesio <luca.milanesio@gmail.com>
Wed Dec 22 21:54:19 2021 +0000
committer
Kaushik Lingarkar <kaushik.lingarkar@linaro.org>
Thu Sep 01 22:03:35 2022 +0000
tree
374f10a0068982e8a6400c906ebd847e564a71d4
parent
ac9cb0162d13e808b3c11bd5eae2b981a990fde2 [diff]
Remove support for vulnerable ES versions

Vulnerable ES versions older than v7.16 are removed[1] as they
don't have fix for the Log4J v2 vulnerability CVE-2021-44228[2].

Elasticsearch docker image for tests are unchanged. See the
justification in I951ce5e6.

[1] https://discuss.elastic.co/t/apache-log4j2-remote-code-execution-rce-vulnerability-cve-2021-44228-esa-2021-31/291476
[2] https://nvd.nist.gov/vuln/detail/CVE-2021-44228

Bug: Issue 15481
Change-Id: I5bfb8971efea1be787de52addec5cab37d38133f
3 files changed
tree: 374f10a0068982e8a6400c906ebd847e564a71d4
  1. src/
  2. BUILD
  3. external_plugin_deps.bzl
  4. Jenkinsfile
  5. LICENSE
  6. README.md
README.md

Index backend for Gerrit, based on ElasticSearch

Indexing backend libModule for Gerrit Code Review based on ElasticSearch.

This module was originally part of Gerrit core and then extracted into a separate component from v3.5.0-rc3 as part of Change-Id: Ib7b5167ce.

Note that, ElasticSearch source code is no longer Apache 2.0-licensed for versions 7.11 and newer. See ElasticSearch 2021 license change for more information.

How to build

This libModule is built like a Gerrit in-tree plugin, using Bazelisk. See the build instructions for more details.

Setup

See the setup instructions for how to install the index-elasticsearch module.

For further information and supported options, refer to the config documentation.

Integration test

This libModule runs tests like a Gerrit in-tree plugin, using Bazelisk. See the test instructions for more details.