932deab751
update the push map
2026-05-07 10:51:53 -04:00
1281f0ee37
Merge remote-tracking branch 'origin/3/dev' into saltthangs
2026-05-06 09:46:12 -04:00
652ac5d61f
fix regex
2026-05-05 14:26:04 -04:00
1c6574c694
ensure minion ids
2026-05-04 14:03:14 -04:00
7fcace34c4
add sensoroni to push map
2026-04-30 16:09:08 -04:00
9541024eb7
fix broken things
2026-04-30 15:35:24 -04:00
034711d148
Merge remote-tracking branch 'origin/3/dev' into saltthangs
2026-04-28 10:47:29 -04:00
21aeb68188
fix sominion_setup reactor
2026-04-27 14:30:41 -04:00
a0cf0489d6
reduce highstate frequency with active push for rules and pillars
...
- schedule highstate every 2 hours (was 15 minutes); interval lives in
global:push:highstate_interval_hours so the SOC admin UI can tune it and
so-salt-minion-check derives its threshold as (interval + 1) * 3600
- add inotify beacon on the manager + master reactor + orch.push_batch that
writes per-app intent files, with a so-push-drainer schedule on the manager
that debounces, dedupes, and dispatches a single orchestration
- pillar_push_map.yaml allowlists the apps whose pillar changes trigger an
immediate targeted state.apply (targets verified against salt/top.sls);
edits under pillar/minions/ trigger a state.highstate on that one minion
- host-batch every push orchestration (batch: 25%, batch_wait: 15) so rule
changes don't thundering-herd large fleets
- new global:push:enabled kill-switch tears down the beacon, reactor config,
and drainer schedule on the next highstate for operators who want to keep
highstate-only behavior
- set restart_policy: unless-stopped on 23 container states so docker
recovers crashes without waiting for the next highstate; leave registry
(always), strelka/backend (on-failure), kratos, and hydra alone with
inline comments explaining why
2026-04-10 15:43:16 -04:00
6d7066c381
add license
2025-07-02 16:20:30 -04:00
d003e1380f
ensure hypervisor is remove from salt cloud profiles when key is deleted
2025-07-02 16:14:43 -04:00
40531dd919
add LSHOSTNAME option to so-minion. use -L in sominion_setup reactor
2025-05-29 12:22:52 -04:00
ef436026d5
info to debug. remove old reactors
2025-05-06 11:51:59 -04:00
6246e25fbe
640 for pubkey and empty pillar
2025-04-29 10:19:01 -04:00
ae993c47c1
remove minion pillar files when a vm is destroyed
2025-03-11 11:12:45 -04:00
8047e196fe
fix pipeline workers, zeek/suricata lbprocs, CPUCORES and CORECOUNT
2025-02-28 17:21:06 -05:00
c6c979dc19
properly set memory and CPUCORES for minion pillars during vm setup
2025-02-28 16:12:28 -05:00
fd9a4966ec
move logic from reactor to orchestration
2025-02-23 14:07:51 -05:00
3246176c0a
comments
2025-02-21 14:34:08 -05:00
b68f561e6f
progress and hw tracking for soc hypervisor dynamic annotations
2025-02-21 09:50:01 -05:00
6367aed62a
reactor needs to match runner function parameter structure
2025-01-16 14:59:11 -05:00
0e0fb885d2
hypervisor highstate after image creation, not when key accepted
2025-01-16 11:13:36 -05:00
01ac1cdcca
check features and allowed/states
2025-01-15 14:13:12 -05:00
2e3c1adc63
runner to setup manager for first hypervisor
2025-01-14 16:20:21 -05:00
776afa4a36
setup items on manager when hypervisor joins the grid
2025-01-09 16:32:41 -05:00
267d1a27ac
use cron instead of schedule for vm init. ensure vm shutdown
2024-08-28 15:52:14 -04:00
9ddccba780
LSHEAP and pipeline workers for virt
2024-08-28 10:09:42 -04:00
21c3835322
salt3006.9, redo reactors, use virt.shutdown
2024-08-27 09:25:40 -04:00
205560cc95
updates
2024-08-20 08:31:46 -04:00
7698243caf
fix reactors
2024-08-16 13:37:44 -04:00
810be2c9d2
virt start
2024-07-31 15:19:29 -04:00
2bd9dd80e2
Move In Day
2022-09-07 09:06:25 -04:00
d020f1d1a1
Fix Fleet Custom Hostname Reactor
2021-03-19 08:15:47 -04:00
e7a927188b
Fleet Fixes - mysql race condition
2020-11-30 17:28:11 -05:00
0e19594c97
enable fleet in global pillars before running fleet state during setup https://github.com/Security-Onion-Solutions/securityonion/issues/1857
2020-11-09 15:25:11 -05:00
85969dc16d
add quotes and remove quotes
2020-09-29 16:29:05 -04:00
bf99bab6c0
add quotes and remove quotes
2020-09-29 16:26:45 -04:00
24ed92c9dc
minio and change to global
2020-08-04 15:54:03 -04:00
ba8395fc11
Fleet reactor fix
2020-07-14 13:04:29 -04:00
8f66a27f07
Refactor image repository to a single variable
2020-07-13 18:26:43 -04:00
3cf31e2460
https://github.com/Security-Onion-Solutions/securityonion/issues/404
2020-07-09 11:27:06 -04:00
3418f5748c
Fleet custom hostname regex fix
2020-06-17 13:08:47 -04:00
913c1a89bf
Fleet setup fixes
2020-06-08 13:28:27 -04:00
3f3990ac83
Merge remote-tracking branch 'remotes/origin/dev' into feature/fleet-setup
2020-06-08 08:30:37 -04:00
3d92145bb9
Fleet standalone - custom hostnames
2020-06-03 15:52:18 -04:00
e53e891bd6
Fleet reactor - Typo fix
2020-05-28 11:36:38 -04:00
11c641fd1b
Initial support - integrated Fleet setup
2020-05-27 15:34:14 -04:00
fafb469b5c
change from default to local - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/749
2020-05-26 11:59:00 -04:00
d0242c1da6
update references of /opt/so/saltstack to /opt/so/saltstack/default. use var default_salt_dir where appropriate - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/749
2020-05-21 10:54:47 -04:00
3db67de27a
osquery packages fix
2020-05-13 20:39:56 -04:00
Josh Patterson
Mike Reeves
Mike Reeves
Josh Brower
Jason Ertel