Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Config failure when upgrading manager to v4.8 through a .rpm package #2706

Closed
Damian-Mangold opened this issue Dec 19, 2023 · 1 comment · Fixed by #2711
Closed

Config failure when upgrading manager to v4.8 through a .rpm package #2706

Damian-Mangold opened this issue Dec 19, 2023 · 1 comment · Fixed by #2711
Assignees
@jftuduri
Labels
level/task Subtask issue type/bug Bug issue

Comments

@Damian-Mangold
Copy link
Member

Wazuh version Install type Action performed Platform
< v4.8 Manager Upgrade Debian and derived

Description

After the analysis in wazuh/wazuh#20695, it was discovered that the upgrade from v4.7 to v4.8 finishes with a config error (see wazuh/wazuh#20695 (comment)).

This is because the v4.8 version comes with two new configuration blocks: vulnerability-detection and indexer and the upgrade is not replacing the old config block with these.

Related issue: wazuh/wazuh#20694

Steps to reproduce

  • Install Wazuh manager v4.7.
  • Generate package for v4.8.
  • Launch upgrade and start Wazuh manager.

Expected behavior

Manager launches without any issues and with the new configuration.

Current behavior

[root@vagrant ~]# rpm --upgrade /home/vagrant/wazuh-manager-4.8.0-1.x86_64.rpm 
warning: /var/ossec/etc/ossec.conf created as /var/ossec/etc/ossec.conf.rpmnew
[root@vagrant ~]# rpm -qi wazuh-manager 
Name        : wazuh-manager
Version     : 4.8.0
Release     : 1
Architecture: x86_64
Install Date: lun 11 dic 2023 14:23:30 UTC
Group       : System Environment/Daemons
Size        : 728347164
License     : GPL
Signature   : (none)
Source RPM  : wazuh-manager-4.8.0-1.src.rpm
Build Date  : lun 11 dic 2023 12:13:06 UTC
Build Host  : e3d157616c40
Relocations : (not relocatable)
Packager    : Wazuh, Inc <[email protected]>
Vendor      : Wazuh, Inc <[email protected]>
URL         : https://www.wazuh.com/
Summary     : Wazuh helps you to gain security visibility into your infrastructure by monitoring hosts at an operating system and application level. It provides the following capabilities: log analysis, file integrity monitoring, intrusions detection and policy and compliance monitoring
Description :
Wazuh helps you to gain security visibility into your infrastructure by monitoring
hosts at an operating system and application level. It provides the following capabilities:
log analysis, file integrity monitoring, intrusions detection and policy and compliance monitoring
[root@vagrant ~]# /var/ossec/bin/wazuh-control start
2023/12/11 14:25:35 wazuh-csyslogd: ERROR: (1230): Invalid element in the configuration: 'vulnerability-detector'.
2023/12/11 14:25:35 wazuh-csyslogd: ERROR: (1202): Configuration error at 'etc/ossec.conf'.
2023/12/11 14:25:35 wazuh-csyslogd: CRITICAL: (1202): Configuration error at 'etc/ossec.conf'.
wazuh-csyslogd: Configuration error. Exiting
@Damian-Mangold Damian-Mangold added level/task Subtask issue type/bug Bug issue labels Dec 19, 2023
@jftuduri jftuduri self-assigned this Dec 20, 2023
@jftuduri jftuduri mentioned this issue Dec 20, 2023
Merged
@jftuduri
Copy link
Member

Update

  • Fix implemented
  • Fix validated (see PR)
  • Moved to in review

@LucioDonda LucioDonda mentioned this issue Jan 18, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jftuduri jftuduri

Labels
level/task Subtask issue type/bug Bug issue
Projects
No open projects
Release 4.8.0
Status: Done
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Ensure <indexer> config is present in ossec.conf after upgrade via rpm wazuh/wazuh-packages
2 participants
@jftuduri @Damian-Mangold