commit | d85e0c18f48982685da3373f1ec8aa8679055c8c | [log] [tgz] |
---|---|---|
author | Luca Milanesio <luca.milanesio@gmail.com> | Wed Dec 22 21:54:19 2021 +0000 |
committer | Kaushik Lingarkar <kaushik.lingarkar@linaro.org> | Thu Sep 01 22:03:35 2022 +0000 |
tree | 374f10a0068982e8a6400c906ebd847e564a71d4 | |
parent | ac9cb0162d13e808b3c11bd5eae2b981a990fde2 [diff] |
Remove support for vulnerable ES versions Vulnerable ES versions older than v7.16 are removed[1] as they don't have fix for the Log4J v2 vulnerability CVE-2021-44228[2]. Elasticsearch docker image for tests are unchanged. See the justification in I951ce5e6. [1] https://discuss.elastic.co/t/apache-log4j2-remote-code-execution-rce-vulnerability-cve-2021-44228-esa-2021-31/291476 [2] https://nvd.nist.gov/vuln/detail/CVE-2021-44228 Bug: Issue 15481 Change-Id: I5bfb8971efea1be787de52addec5cab37d38133f
Indexing backend libModule for Gerrit Code Review based on ElasticSearch.
This module was originally part of Gerrit core and then extracted into a separate component from v3.5.0-rc3 as part of Change-Id: Ib7b5167ce.
Note that, ElasticSearch source code is no longer Apache 2.0-licensed for versions 7.11 and newer. See ElasticSearch 2021 license change for more information.
This libModule is built like a Gerrit in-tree plugin, using Bazelisk. See the build instructions for more details.
See the setup instructions for how to install the index-elasticsearch module.
For further information and supported options, refer to the config documentation.
This libModule runs tests like a Gerrit in-tree plugin, using Bazelisk. See the test instructions for more details.