From 2651bc53868dd533e1759bba0961372876271f68 Mon Sep 17 00:00:00 2001
From: Jose M <jm.garcia@wazuh.com>
Date: Mon, 9 Mar 2020 14:57:12 +0100
Subject: [PATCH 1/2] Revert "Merge pull request #381 from
 wazuh/remove_windows_md5_check"

This reverts commit 4cc3e077a01750a8386fd486dc7a72dd790a01c2, reversing
changes made to 52a81af988a00abd60483f1ccacab34ddd2c9b76.
---
 roles/wazuh/ansible-wazuh-agent/defaults/main.yml | 1 +
 roles/wazuh/ansible-wazuh-agent/tasks/Windows.yml | 9 +++++++++
 2 files changed, 10 insertions(+)

diff --git a/roles/wazuh/ansible-wazuh-agent/defaults/main.yml b/roles/wazuh/ansible-wazuh-agent/defaults/main.yml
index fbb278eb..c7014e2a 100644
--- a/roles/wazuh/ansible-wazuh-agent/defaults/main.yml
+++ b/roles/wazuh/ansible-wazuh-agent/defaults/main.yml
@@ -60,6 +60,7 @@ wazuh_winagent_config:
   auth_path: C:\Program Files\ossec-agent\agent-auth.exe
   # Adding quotes to auth_path_x86 since win_shell outputs error otherwise
   auth_path_x86: C:\'Program Files (x86)'\ossec-agent\agent-auth.exe
+  md5: 87ce22038688efb44d95f9daff472056
 wazuh_winagent_config_url: https://packages.wazuh.com/3.x/windows/wazuh-agent-3.11.4-1.msi
 wazuh_winagent_package_name: wazuh-agent-3.11.4-1.msi
 wazuh_agent_config:
diff --git a/roles/wazuh/ansible-wazuh-agent/tasks/Windows.yml b/roles/wazuh/ansible-wazuh-agent/tasks/Windows.yml
index 0b844d0a..dc9b8fe0 100644
--- a/roles/wazuh/ansible-wazuh-agent/tasks/Windows.yml
+++ b/roles/wazuh/ansible-wazuh-agent/tasks/Windows.yml
@@ -30,6 +30,15 @@
   when:
     - not wazuh_package_downloaded.stat.exists
 
+- name: Windows | Verify the Wazuh Agent installer
+  win_stat:
+    path: "{{ wazuh_winagent_config.download_dir }}{{ wazuh_winagent_package_name }}"
+    get_checksum: true
+    checksum_algorithm: md5
+  register: wazuh_agent_status
+  failed_when:
+    - wazuh_agent_status.stat.checksum != wazuh_winagent_config.md5
+
 - name: Windows | Install Agent if not already installed
   win_package:
     path: "{{ wazuh_winagent_config.download_dir }}{{ wazuh_winagent_package_name }}"

From 2cdc6fd7310990f74d4ae410b0cff152206e024a Mon Sep 17 00:00:00 2001
From: "Manuel J. Bernal" <manu.asi2@gmail.com>
Date: Tue, 24 Mar 2020 18:31:13 +0100
Subject: [PATCH 2/2] Updated elasticsearch template

---
 .../templates/wazuh-elastic7-template-alerts.json.j2           | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/roles/elastic-stack/ansible-elasticsearch/templates/wazuh-elastic7-template-alerts.json.j2 b/roles/elastic-stack/ansible-elasticsearch/templates/wazuh-elastic7-template-alerts.json.j2
index 06af6322..0b153fd4 100644
--- a/roles/elastic-stack/ansible-elasticsearch/templates/wazuh-elastic7-template-alerts.json.j2
+++ b/roles/elastic-stack/ansible-elasticsearch/templates/wazuh-elastic7-template-alerts.json.j2
@@ -531,6 +531,9 @@
           "sha1_before": {
             "type": "keyword"
           },
+          "hard_links": {
+            "type": "keyword"
+          },
           "sha1_after": {
             "type": "keyword"
           },