Checkmk git commits January 2023

checkmk-commits@lists.checkmk.com

1 participants
642 discussions

[tribe29/checkmk] f09cdb: 15064 Agent updater checks for certificate validity

by Maximilian

Branch: refs/heads/master Home: https://github.com/tribe29/checkmk Commit: f09cdb4666d632309e038889d912f34c19ffefdd https://github.com/tribe29/checkmk/commit/f09cdb4666d632309e038889d912f34c1… Author: Maximilian Wirtz <maximilian.wirtz(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: A .werks/15064 M cmk/base/api/agent_based/render.py M cmk/base/plugins/agent_based/checkmk_agent.py M cmk/base/plugins/agent_based/utils/checkmk.py M tests/unit/cmk/base/plugins/agent_based/test_checkmk_agent.py Log Message: ----------- 15064 Agent updater checks for certificate validity The agent updater now reports about the status of the trusted certificates for agent signatures. The status of those certificates is then checked by the service Check_MK Agent as follows: LI: Warn if a certificate is corrupt LI: Warn if a certificate is not valid anymore LI: Warn if a certificate is about to become invalid LI: Crit if there is no trusted certificate LI: Warn/Crit if there will be no valid cert in 90/30 days. Change-Id: Iece90fe4acc6f734915304e4d0ddc80dd21505e4

1 year, 8 months

[tribe29/checkmk] d695ea: 15065 SEC Path-Traversal in MKP storing

by Maximilian

Branch: refs/heads/2.0.0 Home: https://github.com/tribe29/checkmk Commit: d695ea23f05750ac947d7e1e2e5523ee34d8e4b5 https://github.com/tribe29/checkmk/commit/d695ea23f05750ac947d7e1e2e5523ee3… Author: Maximilian Wirtz <maximilian.wirtz(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: A .werks/15065 M cmk/utils/packaging.py Log Message: ----------- 15065 SEC Path-Traversal in MKP storing Previous to this Werk it was possible that an authenticated user with admin rights uploads a malicious MKP leading to a file creation with an attacker controlled path. We thank Niko Wenselowsk (SVA) for reporting this issue. Affected versions are: LI: 2.0.0 previous to this Werk LI: 2.1.0 previous to this Werk LI: 1.6.0 is not affected Detection possibilities: A audit log is written when an extension package is uploaded. You can look for a entry with <tt>Uploaded extension package</tt> follwed by a package name and version containing sequences of <tt>../</tt>. Vulnerability Management: We have rated the issue with a CVSS Score of 3.5 (low) with the following CVSS vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L. We assigned CVE-2022-4884 to this vulnerability. FEED-7598 Change-Id: I80f9e0047546a609e4d12aba30b353e201cfab1d

1 year, 8 months

[tribe29/checkmk] 7feb81: Fixed typo.

by Sergey Kipnis

Branch: refs/heads/master Home: https://github.com/tribe29/checkmk Commit: 7feb81a646ebf613c8c12e0d345e8fb49c06be35 https://github.com/tribe29/checkmk/commit/7feb81a646ebf613c8c12e0d345e8fb49… Author: Sven Panne <sven.panne(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: M livestatus/src/Makefile.am Log Message: ----------- Fixed typo. Change-Id: Idc0287acd25fae13f2b19e2a9a22f716f6a76053 Commit: 0bfdc8017d531616fddbbcbf0d15ae03ea973d74 https://github.com/tribe29/checkmk/commit/0bfdc8017d531616fddbbcbf0d15ae03e… Author: Sergey Kipnis <sergey.kipnis(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: M packages/livestatus/.vscode/tasks.json Log Message: ----------- update vs code C++ json settings #2 Change-Id: I8519769bf44c01b18e4364c7899309d4457aaebe Commit: 259876022db57529eaae6a520c1e29ab9f7f7a8f https://github.com/tribe29/checkmk/commit/259876022db57529eaae6a520c1e29ab9… Author: Sergey Kipnis <sergey.kipnis(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: M packages/livestatus/.vscode/settings.json Log Message: ----------- workaround for regression in vs code cmake extension Change-Id: Ia81038a6a006318a425299dbf51302f623304788 Compare: https://github.com/tribe29/checkmk/compare/28f7661d9294...259876022db5

1 year, 8 months

[tribe29/checkmk] b77c1d: 15056 REST API: aux_tags: rest-api endpoint implem...

by Lars

Branch: refs/heads/2.1.0 Home: https://github.com/tribe29/checkmk Commit: b77c1d6235764fef51526ab8de4ec1ffa903a102 https://github.com/tribe29/checkmk/commit/b77c1d6235764fef51526ab8de4ec1ffa… Author: Gav <gavin.mcguigan(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: A .werks/15056 M cmk/gui/fields/__init__.py A cmk/gui/fields/custom_fields.py A cmk/gui/plugins/openapi/endpoints/aux_tags/__init__.py A cmk/gui/plugins/openapi/endpoints/aux_tags/schemas.py M cmk/gui/plugins/openapi/restful_objects/request_schemas.py M cmk/gui/plugins/openapi/restful_objects/type_defs.py M cmk/gui/wato/pages/tags.py M cmk/gui/watolib/tags.py M cmk/utils/tags.py M tests/testlib/rest_api_client.py A tests/unit/cmk/gui/plugins/openapi/test_openapi_auxtags.py Log Message: ----------- 15056 REST API: aux_tags: rest-api endpoint implementation Change-Id: I960418d80c2f5b5d3d2d1a4626f116a7cc445ddf

1 year, 8 months

[tribe29/checkmk] f52d53: Move asio to third_party/.

by Sven Panne

Branch: refs/heads/master Home: https://github.com/tribe29/checkmk Commit: f52d53a3532f847f7840a4aa083d539f28137acd https://github.com/tribe29/checkmk/commit/f52d53a3532f847f7840a4aa083d539f2… Author: Sven Panne <sven.panne(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: M Makefile M agents/wnx/Makefile M livestatus/src/Makefile.am M omd/Licenses.csv R omd/packages/asio/asio-1.24.0-patched.tar.gz R omd/packages/asio/asio.diff R omd/packages/asio/create-archive M packages/livestatus/src/CMakeLists.txt A third_party/asio/asio-1.24.0-patched.tar.gz A third_party/asio/asio.diff A third_party/asio/create-archive Log Message: ----------- Move asio to third_party/. Change-Id: I952f2b5d2e2a6ced2ddd46c601b04c6b2b21dfc6 Commit: 28f7661d9294d96809982f3ea960dd4cab63522d https://github.com/tribe29/checkmk/commit/28f7661d9294d96809982f3ea960dd4ca… Author: Sven Panne <sven.panne(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: M buildscripts/scripts/stages.yml Log Message: ----------- Added missing dependencies. Change-Id: Ifd49e0d254dcbf848ce79d1adf353a004ef6b613 Compare: https://github.com/tribe29/checkmk/compare/5e4d9381873c...28f7661d9294

1 year, 8 months

[tribe29/checkmk] 5e4d93: Switch AgentUpdate-Section to JSON

by Maximilian

Branch: refs/heads/master Home: https://github.com/tribe29/checkmk Commit: 5e4d9381873cf96515280b3ceba9ae72b730b723 https://github.com/tribe29/checkmk/commit/5e4d9381873cf96515280b3ceba9ae72b… Author: Maximilian Wirtz <maximilian.wirtz(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: M cmk/base/plugins/agent_based/checkmk_agent.py A cmk/base/plugins/agent_based/cmk_update_agent_status.py M cmk/base/plugins/agent_based/utils/checkmk.py M tests/unit/cmk/base/plugins/agent_based/test_checkmk_agent.py Log Message: ----------- Switch AgentUpdate-Section to JSON So we can add new data more easily. Change-Id: Id30ed3c8d12a8a5e0bafe3320f50ecebdfc01de8

1 year, 8 months

[tribe29/checkmk] 55ab4d: 15065 SEC Path-Traversal in MKP storing

by Maximilian

Branch: refs/heads/2.1.0 Home: https://github.com/tribe29/checkmk Commit: 55ab4d74652f811b3a9407446d93eeb51f0724a3 https://github.com/tribe29/checkmk/commit/55ab4d74652f811b3a9407446d93eeb51… Author: Maximilian Wirtz <maximilian.wirtz(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: A .werks/15065 M cmk/utils/packaging.py Log Message: ----------- 15065 SEC Path-Traversal in MKP storing Previous to this Werk it was possible that an authenticated user with admin rights uploads a malicious MKP leading to a file creation with an attacker controlled path. We thank Niko Wenselowsk (SVA) for reporting this issue. Affected versions are: LI: 2.0.0 previous to this Werk LI: 2.1.0 previous to this Werk LI: 1.6.0 is not affected Detection possibilities: A audit log is written when an extension package is uploaded. You can look for a entry with <tt>Uploaded extension package</tt> follwed by a package name and version containing sequences of <tt>../</tt>. Vulnerability Management: We have rated the issue with a CVSS Score of 3.5 (low) with the following CVSS vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L. We assigned CVE-2022-4884 to this vulnerability. FEED-7598 Change-Id: I80f9e0047546a609e4d12aba30b353e201cfab1d

1 year, 8 months

[tribe29/checkmk] d089d8: Reserved 5 Werk IDS

by anthonyh209

Branch: refs/heads/master Home: https://github.com/tribe29/checkmk Commit: d089d89570460869994a0765279e590faad514f3 https://github.com/tribe29/checkmk/commit/d089d89570460869994a0765279e590fa… Author: Wontek Hong <wontek.hong(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: M .werks/first_free Log Message: ----------- Reserved 5 Werk IDS Change-Id: Iab3f0d74274f8f4c2b55d9af67d57d7fb627a3df

1 year, 8 months

[tribe29/checkmk] f4b3bf: Use IWYU's own wrapper.

by Sven Panne

Branch: refs/heads/master Home: https://github.com/tribe29/checkmk Commit: f4b3bf7564dd71ca4cb9792d1044001043d2c0ec https://github.com/tribe29/checkmk/commit/f4b3bf7564dd71ca4cb9792d104400104… Author: Sven Panne <sven.panne(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: M Makefile M livestatus/src/Makefile.am M packages/livestatus/run-ci M scripts/find-python-files R scripts/iwyu_tool.py Log Message: ----------- Use IWYU's own wrapper. Change-Id: If98022c7133fa03540deeb5602204c50fd099670 Commit: 7ccb003bc3fce97380a23dce16867e26b441ccf0 https://github.com/tribe29/checkmk/commit/7ccb003bc3fce97380a23dce16867e26b… Author: Sven Panne <sven.panne(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: M packages/livestatus/src/CMakeLists.txt Log Message: ----------- Consistently use root_repo_dir. Change-Id: I9c5abc0fee9eec5303737ae7be65941eb536a26b Commit: 4d12f32d6a0d19274a7546adec52cafc0c20f47d https://github.com/tribe29/checkmk/commit/4d12f32d6a0d19274a7546adec52cafc0… Author: Sven Panne <sven.panne(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: M Makefile M agents/wnx/scripts/unpack_all.cmd M agents/wnx/scripts/unpack_package.cmd M livestatus/src/Makefile.am M omd/Licenses.csv R omd/packages/googletest/create-archive R omd/packages/googletest/googletest-71140c3ca7-patched.tar.gz R omd/packages/googletest/googletest.diff M packages/livestatus/test/CMakeLists.txt A third_party/googletest/create-archive A third_party/googletest/googletest-71140c3ca7-patched.tar.gz A third_party/googletest/googletest.diff Log Message: ----------- Move googletest to third_party/. Change-Id: I255d9acd34e68a038b7816d6e9ec9f8cd23ed1c0 Compare: https://github.com/tribe29/checkmk/compare/aacb2030df00...4d12f32d6a0d

1 year, 8 months

[tribe29/checkmk] aacb20: Use Clang's own clang-tidy wrapper.

by Sven Panne

Branch: refs/heads/master Home: https://github.com/tribe29/checkmk Commit: aacb2030df0046a2950eaf1333dcdfc95aae2136 https://github.com/tribe29/checkmk/commit/aacb2030df0046a2950eaf1333dcdfc95… Author: Sven Panne <sven.panne(a)tribe29.com> Date: 2023-01-09 (Mon, 09 Jan 2023) Changed paths: M livestatus/src/Makefile.am M packages/livestatus/run-ci M scripts/find-python-files R scripts/run-clang-tidy.py Log Message: ----------- Use Clang's own clang-tidy wrapper. Change-Id: I1e8565de02dabc3f5b964aeb71deb12e103e66f4

1 year, 8 months

← Newer
1
...
49
50
51
52
53
54
55
...
65
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

Checkmk git commits January 2023