cab57edf7c
Harden reinstall_init and add post-saltify readiness gate
...
- setup/so-functions: dump pre-reinstall salt state (systemctl /
journalctl / ls /etc/salt / .rpmnew diff) to the setup log so a
failed reinstall leaves a usable post-mortem; swap the manual
rm -rf of /etc/salt/* for `dnf -y remove salt` so package configs
get cleaned up properly.
- setup/so-setup: replace the `sleep 2 / state.show_top / sleep 2`
dance after saltify with a readiness gate that waits for
/etc/salt/pki/master/master.pub, runs check_salt_master_status,
and then wait_for_minion_key_pending before salt-key -ya. Fixes
reinstalls on 3.x timing out on "Unable to sign_in to master".
- salt/common/tools/sbin/so-common: add wait_for_minion_key_pending
helper, polls `salt-key -l pre` until the minion appears.
2026-04-23 17:43:39 -04:00
cd6707a566
Merge pull request #15800 from Security-Onion-Solutions/feature/vm-raid-status
...
monitor raid for vms
2026-04-22 09:42:44 -04:00
edd207a9d5
soup update socloud.conf
2026-04-22 09:20:53 -04:00
06a555fafb
urlencode elasticsearch version
2026-04-21 14:01:31 -05:00
7411031e11
Merge pull request #15803 from Security-Onion-Solutions/jertel/wip
...
more error handling during image updates
2026-04-21 10:21:56 -04:00
247091766c
more error handling during image updates
2026-04-21 10:18:05 -04:00
7f93110d68
Merge remote-tracking branch 'origin/3/dev' into feature/vm-raid-status
2026-04-21 10:10:38 -04:00
33ef138866
Merge pull request #15797 from Security-Onion-Solutions/jertel/wip
...
fix template annotation
2026-04-20 17:14:53 -04:00
71da27dc8e
fix template annotation
2026-04-20 17:02:25 -04:00
ee437265fc
monitor raid for vms
2026-04-20 12:00:02 -04:00
ebb93b4fa7
add wait_for_so-elasticsearch state and split elasticsearch cluster configuration out of enabled.sls
2026-04-17 14:43:07 -05:00
8b6d11b118
Merge pull request #15780 from Security-Onion-Solutions/reyesj2-es932
...
supress noisy warning from ES 9.3.3
2026-04-16 14:42:46 -05:00
ba00ae8a7b
supress noisy warning from ES 9.3.3
2026-04-16 14:41:25 -05:00
7d22f7bd58
Merge pull request #15776 from Security-Onion-Solutions/foxtrot
...
ES 9.3.3
2026-04-15 16:29:34 -05:00
76a6997de2
Merge pull request #15775 from Security-Onion-Solutions/reyesj2-es932
...
check for addon-index templates dir before attempting to load addon i…
2026-04-14 19:27:02 -05:00
16a4a42faf
check for addon-index templates dir before attempting to load addon index templates
2026-04-14 19:26:37 -05:00
0e4623c728
Merge pull request #15772 from Security-Onion-Solutions/reyesj2-es932
...
soup to 3.1.0
2026-04-14 15:04:46 -05:00
d598e20fbb
soup 3.1.0
2026-04-14 14:55:33 -05:00
cf414423b1
Merge pull request #15770 from Security-Onion-Solutions/reyesj2-es932
...
enable elastic agent patch release for 9.3.3
2026-04-13 16:28:20 -05:00
0405a66c72
enable elastic agent patch release for 9.3.3
2026-04-13 16:27:28 -05:00
696a1a729c
Merge pull request #15768 from Security-Onion-Solutions/reyesj2-es932
...
ES 9.3.3
2026-04-13 15:02:19 -05:00
5634aed679
support minion node descriptions containing spaces
2026-04-13 15:19:39 -04:00
a232cd89cc
ES 9.3.3
2026-04-13 13:36:51 -05:00
dd40e44530
show when addon integrations are already loaded
2026-04-13 12:36:42 -05:00
47d226e189
Merge pull request #15765 from Security-Onion-Solutions/3/dev
...
3/dev
2026-04-13 10:40:38 -05:00
29e13b2c0b
elasticsearch ilm policy load script
2026-04-13 10:00:17 -05:00
abcad9fde0
addon statefile
2026-04-12 00:36:30 -05:00
a43947cca5
elasticsearch template load script -- for addon index templates
2026-04-12 00:23:26 -05:00
b0584a4dc5
only append "-mappings" to component template names as needed
2026-04-11 15:22:50 -05:00
6298397534
rework elasticsearch template load script -- for core templates
2026-04-11 04:40:47 -05:00
378d1ec81b
initialize vars
2026-04-09 18:41:40 -05:00
89e49d0bf3
rework elasticsearch index template generation
2026-04-09 16:44:51 -05:00
f0b67a415a
more filestream integration policy updates
2026-04-09 12:40:55 -05:00
81afbd32d4
Merge pull request #15742 from Security-Onion-Solutions/mwright/ai-query-length
...
Assistant: charsPerTokenEstimate
2026-04-09 11:28:37 -04:00
9ec4a26f97
define options in annotation files
2026-04-09 10:18:36 -04:00
28d31f4840
add charsPerTokenEstimate
2026-04-08 15:25:51 -04:00
2166bb749a
ensure max-files is 1 at minimum
2026-04-08 14:59:05 -04:00
dd56e7f1ac
filestream integration policy updates
2026-04-07 11:08:10 -05:00
8101bc4941
ES 9.3.2
2026-04-06 15:08:30 -05:00
5b3ca98b80
Fix JA4+ license link in soc_zeek.yaml
...
Updated the license link in the JA4+ fingerprinting description.
2026-04-06 10:12:37 -04:00
c91deb97b1
Update SOUP_BRANCH to use 3/main instead of 2.4/main
2026-03-31 15:07:23 -04:00
c7e865aa1c
Remove hardcoded index
2026-03-30 12:42:48 -04:00
922c008b11
ensure bool sliders soc
2026-03-27 15:02:54 -04:00
0a55592d7e
Make AI adapter settings visible
...
Changed 'advanced' field from True to False for AI adapters and available models.
2026-03-26 09:37:39 -04:00
9e53bd3f2d
update yara template
2026-03-24 15:56:26 -04:00
1f9bf45b66
Lowercase network transport
2026-03-24 11:24:59 -04:00
d4ac352b5a
Enable clean option for Zeek configuration
2026-03-24 09:54:49 -04:00
afcef1d0e7
Merge pull request #15661 from Security-Onion-Solutions/reyesj2-361
...
update stig profile v1r3
2026-03-23 18:09:33 -05:00
91b164b728
Merge pull request #15665 from Security-Onion-Solutions/delta
...
allow negation in suricata address-group vars
2026-03-23 17:34:21 -04:00
6a4501241d
allow negation in suricata address-group vars
2026-03-23 17:24:12 -04:00
Mike Reeves
Josh Patterson
reyesj2
Jason Ertel
Jason Ertel
Matthew Wright
Matthew Wright
Mike Reeves
Josh Brower