CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

[refactor] Rearrange docker_registry seed

Browse Source
This commit is contained in:
William Wernert
2020-04-18 18:18:41 -04:00
parent a4267fd28b
commit 2ab1fa75ee
1 changed files with 51 additions and 67 deletions
Download Patch File Download Diff File Expand all files Collapse all files

58
setup/so-functions
View File

@@ -582,72 +582,56 @@ docker_registry() {
} }
docker_seed_registry() { docker_seed_registry() {
VERSION="HH$SOVERSION" VERSION="HH$SOVERSION"
if [ $INSTALLTYPE != 'HELIXSENSOR' ]; then TRUSTED_CONTAINERS=(\
TRUSTED_CONTAINERS=( \
"so-acng:$VERSION" \
"so-core:$VERSION" \ "so-core:$VERSION" \
"so-filebeat:$VERSION" \
"so-logstash:$VERSION" \
"so-idstools:$VERSION" \
"so-redis:$VERSION" \
"so-steno:$VERSION" \
"so-suricata:$VERSION" \
"so-telegraf:$VERSION" \
"so-zeek:$VERSION"
)
if [ "$INSTALLTYPE" != 'HELIXSENSOR' ]; then
TRUSTED_CONTAINERS=("${TRUSTED_CONTAINERS[@]}" \
"so-acng:$VERSION" \
"so-thehive-cortex:$VERSION" \ "so-thehive-cortex:$VERSION" \
"so-curator:$VERSION" \ "so-curator:$VERSION" \
"so-domainstats:$VERSION" \ "so-domainstats:$VERSION" \
"so-elastalert:$VERSION" \ "so-elastalert:$VERSION" \
"so-elasticsearch:$VERSION" \ "so-elasticsearch:$VERSION" \
"so-filebeat:$VERSION" \
"so-fleet:$VERSION" \ "so-fleet:$VERSION" \
"so-fleet-launcher:$VERSION" \ "so-fleet-launcher:$VERSION" \
"so-freqserver:$VERSION" \ "so-freqserver:$VERSION" \
"so-grafana:$VERSION" \ "so-grafana:$VERSION" \
"so-idstools:$VERSION" \
"so-influxdb:$VERSION" \ "so-influxdb:$VERSION" \
"so-kibana:$VERSION" \ "so-kibana:$VERSION" \
"so-logstash:$VERSION" \
"so-mysql:$VERSION" \ "so-mysql:$VERSION" \
"so-navigator:$VERSION" \ "so-navigator:$VERSION" \
"so-playbook:$VERSION" \ "so-playbook:$VERSION" \
"so-redis:$VERSION" \
"so-soc:$VERSION" \ "so-soc:$VERSION" \
"so-kratos:$VERSION" \ "so-kratos:$VERSION" \
"so-soctopus:$VERSION" \ "so-soctopus:$VERSION" \
"so-steno:$VERSION" \
#"so-strelka:$VERSION" \
"so-suricata:$VERSION" \
"so-telegraf:$VERSION" \
"so-thehive:$VERSION" \ "so-thehive:$VERSION" \
"so-thehive-es:$VERSION" \ "so-thehive-es:$VERSION" \
"so-wazuh:$VERSION" \ "so-wazuh:$VERSION" \
"so-zeek:$VERSION" ) )
else
TRUSTED_CONTAINERS=( \
"so-core:$VERSION" \
"so-filebeat:$VERSION" \
"so-idstools:$VERSION" \
"so-logstash:$VERSION" \
"so-redis:$VERSION" \
#"so-sensoroni:$VERSION" \
"so-steno:$VERSION" \
"so-suricata:$VERSION" \
"so-telegraf:$VERSION" \
"so-zeek:$VERSION" )
fi fi
if [ ! -f /nsm/docker-registry/docker/so-dockers-$VERSION.tar ]; then if [ ! -f /nsm/docker-registry/docker/so-dockers-"$VERSION".tar ]; then
# Download the container from the interwebs for i in "${TRUSTED_CONTAINERS[@]}"; do
for i in "${TRUSTED_CONTAINERS[@]}"
do
# Pull down the trusted docker image # Pull down the trusted docker image
echo "Downloading $i" echo "Downloading $i"
docker pull --disable-content-trust=false docker.io/soshybridhunter/$i docker pull --disable-content-trust=false docker.io/soshybridhunter/"$i"
# Tag it with the new registry destination # Tag it with the new registry destination
docker tag soshybridhunter/$i $HOSTNAME:5000/soshybridhunter/$i docker tag soshybridhunter/"$i" "$HOSTNAME":5000/soshybridhunter/"$i"
docker push $HOSTNAME:5000/soshybridhunter/$i docker push "$HOSTNAME":5000/soshybridhunter/"$i"
done done
for i in "${TRUSTED_CONTAINERS[@]}" # Prune any images that aren't used by containers
do docker image prune -af
echo "Removing $i locally"
docker rmi soshybridhunter/$i
done
else else
# We already have the goods son
rm /nsm/docker-registry/docker/so-dockers-$VERSION.tar rm /nsm/docker-registry/docker/so-dockers-$VERSION.tar
fi fi