Comments (3)
elasticmachine
commented on July 22, 2024
Pinging @elastic/sec-linux-platform (Team:Security-Linux Platform)
from beats.
nfritts
commented on July 22, 2024
@andrewkroh Do you know if there are existing pipelines that do something similar? It seems like the challenging part of this is that not call sequences in other encodings can always be converted to utf-8. ideally the failure mode would be consistent across other pipelines and similar
from beats.
andrewkroh
commented on July 22, 2024
Do you know if there are existing pipelines that do something similar?
I couldn't find any pipelines (as in Elasticsearch ingest node pipelines) that could accomplish this. Nor could I see any Painless features that could do this.
So I think it would need to be done on the Packetbeat. Filebeat is using https://pkg.go.dev/golang.org/x/text/encoding#Decoder for similar work. As for the failure modes, I think it would be consistent with the existing packetbeat HTTP parser to annotate the event with an error.message about the decoding failure.
from beats.
Related Issues (20)
- The integration test framework should test the DEB and RPM installations of Beats HOT 1
- Build 1051 for 7.17 with status FAILURE HOT 1
- Build 2390 for main with status FAILURE HOT 2
- Build 151 for 8.12 with status FAILURE HOT 1
- Build 41 for 8.13 with status FAILURE HOT 1
- Build 2391 for main with status FAILURE HOT 1
- Build 152 for 8.12 with status FAILURE HOT 1
- Build 1052 for 7.17 with status FAILURE HOT 1
- Build 153 for 8.12 with status FAILURE HOT 2
- Build 2392 for main with status FAILURE HOT 2
- Build 42 for 8.13 with status FAILURE HOT 2
- Build 2393 for main with status FAILURE HOT 1
- Build 1053 for 7.17 with status FAILURE HOT 1
- Build 43 for 8.13 with status FAILURE HOT 2
- Build 154 for 8.12 with status FAILURE HOT 2
- Build 2394 for main with status FAILURE HOT 2
- Build 2395 for main with status FAILURE HOT 2
- Build 44 for 8.13 with status FAILURE HOT 2
- Build 1054 for 7.17 with status FAILURE HOT 2
- Build 155 for 8.12 with status FAILURE HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from beats.