From 65d65c1193e32ba8c2507b3c4cae9cfece12576c Mon Sep 17 00:00:00 2001
From: phil <phil@systemausfall.org>
Date: Sat, 11 Dec 2021 18:25:52 +0100
Subject: [PATCH] =?UTF-8?q?Workaround=20f=C3=BCr=20Security-L=C3=BCcke?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 files/nolog4j0day.options | 1 +
 tasks/elastic.yml         | 5 +++++
 2 files changed, 6 insertions(+)
 create mode 100644 files/nolog4j0day.options

diff --git a/files/nolog4j0day.options b/files/nolog4j0day.options
new file mode 100644
index 0000000..5af9281
--- /dev/null
+++ b/files/nolog4j0day.options
@@ -0,0 +1 @@
+-Dlog4j2.formatMsgNoLookups=true
diff --git a/tasks/elastic.yml b/tasks/elastic.yml
index ff82c73..e79327a 100644
--- a/tasks/elastic.yml
+++ b/tasks/elastic.yml
@@ -29,6 +29,11 @@
     - 'http.max_content_length: 400mb'
     - 'indices.query.bool.max_clause_count: 2000'
 
+- name: "elastic | Kopiere Fix für CVE-2021-44228"
+  copy:
+    src: nolog4j0day.options
+    dest: /etc/elasticsearch/jvm.options.d/nolog4j0day.options
+
 - name: "elastic | Starte Dienst"
   systemd:
     name: elasticsearch