Branch: refs/heads/master
Home: https://github.com/tribe29/checkmk
Commit: aa9633781f58a3c6e7d34a0dc6eeea349b070ab7
https://github.com/tribe29/checkmk/commit/aa9633781f58a3c6e7d34a0dc6eeea349…
Author: Christoph Rauch <christoph.rauch(a)tribe29.com>
Date: 2022-09-06 (Tue, 06 Sep 2022)
Changed paths:
M cmk/utils/version.py
Log Message:
-----------
Version._parse_daily_version: ignore pylint false positive
Change-Id: Ib64baa7e63d5ebbd97752d5b366d661607101e33
Commit: b2c43e84e467e80b27c140b56885c28e49087055
https://github.com/tribe29/checkmk/commit/b2c43e84e467e80b27c140b56885c28e4…
Author: Christoph Rauch <christoph.rauch(a)tribe29.com>
Date: 2022-09-06 (Tue, 06 Sep 2022)
Changed paths:
M Pipfile
M Pipfile.lock
M cmk/gui/ctx_stack.py
M cmk/gui/utils/flashed_messages.py
Log Message:
-----------
Upgrade Flask to 2.2.2
This is necessary, because Flask 2.0.2 has a bug in the testing
framework which makes it impossible to use app.test_client()
Change-Id: I6ae715ee4d75b3712dab1008103c52e58a356183
Commit: d0350f9d938163d87dbdd713ace0bec0bf17067a
https://github.com/tribe29/checkmk/commit/d0350f9d938163d87dbdd713ace0bec0b…
Author: Mathias Laurin <mathias.laurin(a)tribe29.com>
Date: 2022-09-06 (Tue, 06 Sep 2022)
Changed paths:
R cmk/gui/openapi.py
A cmk/gui/openapi/__init__.py
A cmk/gui/openapi/__main__.py
A cmk/gui/openapi/_openapi.py
M tests/Makefile
Log Message:
-----------
Remove one cycle over the openapi
This moves the `__main__` part out of `cmk.gui.openapi` without
changing the API.
This removes the following cycle under the `cmk.gui` namespace:
wsgi.applications.rest_api -> openapi -> utils.script_helpers -> wsgi.routing
which was principally caused by the `application_and_request_context`
import under `cmk.gui.openapi`.
CMK-11212
Change-Id: I732ffc4e3d23079bbf0ec39eeffa8c3959ec2d4a
Compare: https://github.com/tribe29/checkmk/compare/c738f4c3df10...d0350f9d9381
Branch: refs/heads/master
Home: https://github.com/tribe29/checkmk
Commit: c738f4c3df10f43d4e975d105179df5cef2eaf74
https://github.com/tribe29/checkmk/commit/c738f4c3df10f43d4e975d105179df5ce…
Author: Frans Fürst <frans.fuerst(a)tribe29.com>
Date: 2022-09-06 (Tue, 06 Sep 2022)
Changed paths:
M buildscripts/scripts/build-cmk-packages.groovy
M editions.json
Log Message:
-----------
Make build-cmk-packages script behave differently based on Testbuild role
With the new JJB generated Jenkins jobs we don't configure distros as
folder properties anymore and it's hard/impossible to give a job parameter
different default values based on the actual job. To still let the
Testbuild behave as before editions are now saved in editions.json for
all cases and using the OMD package cache get's disabled when the
script is used in Testbuild context.
#jjb-migration
Change-Id: Ibd735151b43a43fbca278ede7a420f23a2f2d7e5
Branch: refs/heads/master
Home: https://github.com/tribe29/checkmk
Commit: 6908509aaafecbe14616de58d12f0a6b7b7b0118
https://github.com/tribe29/checkmk/commit/6908509aaafecbe14616de58d12f0a6b7…
Author: Lars Michelsen <lm(a)tribe29.com>
Date: 2022-09-06 (Tue, 06 Sep 2022)
Changed paths:
A .werks/14293
M cmk/gui/utils/timeout_manager.py
M docker/docker-entrypoint.sh
M omd/packages/apache-omd/APACHE_TCP_ADDR
M omd/packages/apache-omd/APACHE_TCP_PORT
M omd/packages/apache-omd/skel/etc/apache/apache.conf
M omd/packages/omd/hooks/APACHE_MODE
M omd/packages/omd/omdlib/main.py
M omd/packages/omd/omdlib/system_apache.py
M tests/unit/omdlib/test_system_apache.py
Log Message:
-----------
14293 FIX Enforce use of new apache hooks before updating to 2.2
With #14281 a new system apache configuration hook for managing the system
apache reverse proxy config has been introduced.
In all previous versions the transition was highly recommended for security
reasons, but not enforced to stay compatible. As of Checkmk 2.2 the new
mechanism will be enforced.
If you try to update an existing site to 2.2 which has not been switched to the
new mechanism with <tt>omd update-apache-config [SITE]</tt>, then the update
will be aborted.
Change-Id: If692c210a2fa33d1e93d31f284b565e5313c3b12
Branch: refs/heads/master
Home: https://github.com/tribe29/checkmk
Commit: e3bd6c4b16fc87897e386cd7ac49c4f6bea8c1b3
https://github.com/tribe29/checkmk/commit/e3bd6c4b16fc87897e386cd7ac49c4f6b…
Author: Mathias Laurin <mathias.laurin(a)tribe29.com>
Date: 2022-09-06 (Tue, 06 Sep 2022)
Changed paths:
M cmk/gui/page_menu_utils.py
M cmk/gui/plugins/views/icons/builtin.py
M cmk/gui/plugins/views/icons/inventory.py
M cmk/gui/plugins/views/painters.py
M cmk/gui/plugins/views/utils.py
M cmk/gui/views/__init__.py
A cmk/gui/visual_link.py
Log Message:
-----------
Extract some visual code out of views.utils
Move most visual functions to a `visual_link` module.
All in all, we aim at removing the dependency of views.utils on
data_source in order to remove the cyclic dep there.
CMK-11212
Change-Id: I325935841e9a072de98905a001f72db2ed00ca37
Commit: ac35974f9850bb3887d74771f609ab8e5c3b5bba
https://github.com/tribe29/checkmk/commit/ac35974f9850bb3887d74771f609ab8e5…
Author: Mathias Laurin <mathias.laurin(a)tribe29.com>
Date: 2022-09-06 (Tue, 06 Sep 2022)
Changed paths:
M cmk/gui/data_source.py
M cmk/gui/plugins/views/layouts.py
M cmk/gui/plugins/views/mkeventd.py
M cmk/gui/plugins/views/utils.py
M cmk/gui/view_renderer.py
M cmk/gui/views/__init__.py
Log Message:
-----------
Remove direct deps on data_source from plugins.views.utils
CMK-11212
Change-Id: Ide44e889ae41e8de979887ff42afdd13b61ea714
Compare: https://github.com/tribe29/checkmk/compare/d2afc1790881...ac35974f9850
Branch: refs/heads/master
Home: https://github.com/tribe29/checkmk
Commit: 75c53b5d45527c8de0f463bacfc8cbb0ed1aa939
https://github.com/tribe29/checkmk/commit/75c53b5d45527c8de0f463bacfc8cbb0e…
Author: Lars Michelsen <lm(a)tribe29.com>
Date: 2022-09-06 (Tue, 06 Sep 2022)
Changed paths:
M tests/unit/cmk/gui/conftest.py
M tests/unit/cmk/special_agents/test_agent_bi.py
A tests/unit/cmk/update_config/plugins/actions/conftest.py
M tests/unit/cmk/update_config/plugins/actions/test_rulesets.py
M tests/unit/conftest.py
Log Message:
-----------
Cleanup last cmk.gui import from unit top level conftest
Change-Id: I95d036b106b01ca94527debfbafe06ea054b3277
Branch: refs/heads/master
Home: https://github.com/tribe29/checkmk
Commit: 677c99a64d1f2073fb1e4eea3bf3af98387852ec
https://github.com/tribe29/checkmk/commit/677c99a64d1f2073fb1e4eea3bf3af983…
Author: Mathias Laurin <mathias.laurin(a)tribe29.com>
Date: 2022-09-06 (Tue, 06 Sep 2022)
Changed paths:
M cmk/gui/command_utils.py
M cmk/gui/view_renderer.py
Log Message:
-----------
Move filter_selected_rows close to its only call-site
CMK-11212
Change-Id: I32f2df9902e0b6d819239ecd6ed0f2733fc27881
Commit: 5028f321b74f9b4cf784ed17418bdd88953ddb50
https://github.com/tribe29/checkmk/commit/5028f321b74f9b4cf784ed17418bdd889…
Author: Lars Michelsen <lm(a)tribe29.com>
Date: 2022-09-06 (Tue, 06 Sep 2022)
Changed paths:
M cmk/gui/dashboard.py
R cmk/gui/plugins/dashboard/static_text.py
Log Message:
-----------
Move dashlet to dashboard to prevent plugin import
The dashlet class will be referenced in cmk.gui.dashboard in the
next commit. To prevent a plugin import move the definition.
Change-Id: Ia04b522d28e4404457a1be901daa20e169d19386
Commit: 84459b82e40564327de69fcc2e39e5246de38d58
https://github.com/tribe29/checkmk/commit/84459b82e40564327de69fcc2e39e5246…
Author: Lars Michelsen <lm(a)tribe29.com>
Date: 2022-09-06 (Tue, 06 Sep 2022)
Changed paths:
M cmk/gui/plugins/dashboard/custom_url.py
M cmk/gui/plugins/dashboard/utils.py
Log Message:
-----------
Move custom_url specific code to url dashlet implementation
Change-Id: Ifbcb53ec94fca57719d439978d29ae26576b6d5f
Commit: 167c6f5a8aaa3db516c7310644908dd0f5cd8404
https://github.com/tribe29/checkmk/commit/167c6f5a8aaa3db516c7310644908dd0f…
Author: Lars Michelsen <lm(a)tribe29.com>
Date: 2022-09-06 (Tue, 06 Sep 2022)
Changed paths:
M cmk/gui/plugins/dashboard/utils.py
M cmk/gui/visuals.py
Log Message:
-----------
Simplify context_to_uri_vars
Change-Id: Ief612481609b675b1cebbd2ff8292dda8fd66b30
Commit: b728a00066ae7221fecd652e81a294460740a6ba
https://github.com/tribe29/checkmk/commit/b728a00066ae7221fecd652e81a294460…
Author: Lars Michelsen <lm(a)tribe29.com>
Date: 2022-09-06 (Tue, 06 Sep 2022)
Changed paths:
M cmk/gui/dashboard.py
M cmk/gui/plugins/dashboard/custom_url.py
M cmk/gui/plugins/dashboard/graph.py
M cmk/gui/plugins/dashboard/utils.py
M cmk/gui/plugins/dashboard/view.py
M cmk/gui/plugins/views/mkeventd.py
M tests/unit/cmk/gui/test_dashboard.py
Log Message:
-----------
Make DashletConfig typed dicts
There are some TODOs left. One cluster first needs to have a TypedDict
for the ViewSpec and the other needs a better typing for from_html_vars
of the Dictionary valuespecs which we may be able to improve with Python
3.11.
Change-Id: I594e1039790f197bd2f3f794205195de06737e30
Commit: a2f10098bc81e9e986b2c8540954baefa1b22b2c
https://github.com/tribe29/checkmk/commit/a2f10098bc81e9e986b2c8540954baefa…
Author: Maximilian Wirtz <maximilian.wirtz(a)tribe29.com>
Date: 2022-09-06 (Tue, 06 Sep 2022)
Changed paths:
A .werks/14485
Log Message:
-----------
14485 SEC Fix session cookie validation on RestAPI
Before this Werk expired sessions were still valid on the RestAPI, since the
RestAPI only vaildated the Cookie signature.
An attacker who was able to steal a session cookie could use that cookie on the
RestAPI even after the session expired. Some actions though require access to
the user session, these action fail due to the expired session. Some actions do
not access the session and are therefore possible.
<b>Affected Versions</b>:
All versions with the RestAPI are affected: 2.0, and 2.1.
<b>Mitigations</b>:
Immediate mitigations are not available.
<b>Indicators of Compromise</b>:
Review Apache and web.log for suspicious logs.
<b>Vulnerability Management</b>:
We have rated the issue with a CVSS Score of 5.6 (Medium) with the following
CVSS vector:
<tt>CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L</tt>.
A CVE has been requested.
This was originally fixed with 003e97510689587dc194115d43c58b2282ac0b17.
Change-Id: If2114e3ce59c66163b388b7bf634181ea972a174
Compare: https://github.com/tribe29/checkmk/compare/ffe006d0d0e5...a2f10098bc81