Home Explore Help
Sign In
lqb
/
elasticsearch
mirror of https://gitee.com/mirrors/elasticsearch.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: f79d38fff0
Branches Tags
elasticsearch
/
libs
/
log4j
/
build.gradle

build.gradle 629 B
History Raw

12345678910111213141516171819202122232425262728 
  1. plugins {
    2. 

  2.   id 'base'
    3. 

  3.   id 'elasticsearch.repositories'
    4. 

  4. }
    5. 

  5. 

  6. configurations {
    7. 

  7.   log4j {
    8. 

  8.     transitive = false
    9. 

  9.   }
    10. 

  10. }
    11. 

  11. 

  12. dependencies {
    13. 

  13.   log4j "org.apache.logging.log4j:log4j-core:${versions.log4j}"
    14. 

  14. }
    15. 

  15. 

  16. // Strip out JndiLookup class to avoid any possibility of exploitation of CVE-2021-44228
    17. 

  17. // See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228
    18. 

  18. // See: https://issues.apache.org/jira/browse/LOG4J2-3201
    19. 

  19. def patchLog4j = tasks.register('patchLog4j', Zip) {
    20. 

  20.   archiveExtension = 'jar'
    21. 

  21.   from({ zipTree(configurations.log4j.singleFile) }) {
    22. 

  22.     exclude '**/JndiLookup.class'
    23. 

  23.   }
    24. 

  24. }
    25. 

  25. 

  26. artifacts {
    27. 

  27.   'default'(patchLog4j)
    28. 

  28. }
    29.