Checkmk git commits May 2023

checkmk-commits@lists.checkmk.com

3 participants
491 discussions

[Checkmk/checkmk] 7111ea: 15489 FIX Fix error message if limit for combined ...

by rb

Branch: refs/heads/2.1.0 Home: https://github.com/Checkmk/checkmk Commit: 7111ea8f4598ab80566b750d5d597e4a7bca939b https://github.com/Checkmk/checkmk/commit/7111ea8f4598ab80566b750d5d597e4a7… Author: Ronny Bruska <ronny.bruska(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: A .werks/15489 M cmk/gui/dashboard.py M cmk/gui/plugins/dashboard/graph.py M cmk/gui/plugins/metrics/utils.py Log Message: ----------- 15489 FIX Fix error message if limit for combined graphs is exceeded SUP-13780 Change-Id: I3d270e1a11f64f868afe2dd424371fc4e520c531

1 year, 4 months

[Checkmk/checkmk] dd6da1: Adapt formatting of yml file

by Jörg Herbel

Branch: refs/heads/master Home: https://github.com/Checkmk/checkmk Commit: dd6da10bd54075dd1b2ec177cd821a53fefef8a8 https://github.com/Checkmk/checkmk/commit/dd6da10bd54075dd1b2ec177cd821a53f… Author: Torsten Engler <torsten.engler(a)tribe29.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M .github/workflows/cla.yml Log Message: ----------- Adapt formatting of yml file Change-Id: I25b609a9c78d5b4d3269b4683de632c31ea3c936 Commit: 9c875cf0c437a1355bfe0c37cde9b7fae21a22f1 https://github.com/Checkmk/checkmk/commit/9c875cf0c437a1355bfe0c37cde9b7fae… Author: Joerg Herbel <joerg.herbel(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: A .werks/15731 M cmk/gui/valuespec.py Log Message: ----------- 15731 FIX Agent controller auto-registration rules: Avoid error when updating remote sites with active configuration replication CMK-13029 Change-Id: I34399a128114e937bd20f71af6ff4e422d75c8da Compare: https://github.com/Checkmk/checkmk/compare/85955f8f2aec...9c875cf0c437

1 year, 4 months

[Checkmk/checkmk] 259e8a: 15673 Logfile pattern analyzer: improve rule overview

by Jörg Herbel

Branch: refs/heads/2.2.0 Home: https://github.com/Checkmk/checkmk Commit: 259e8a70880c1a30fe2bee478c7d7c6453d35600 https://github.com/Checkmk/checkmk/commit/259e8a70880c1a30fe2bee478c7d7c645… Author: Lisa Pichler <lisa.pichler(a)tribe29.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: A .werks/15673 M cmk/gui/wato/pages/pattern_editor.py M cmk/gui/wato/pages/rulesets.py M cmk/gui/watolib/rulesets.py M tests/unit/cmk/gui/wato/pages/test_rulesets.py M tests/unit/cmk/gui/watolib/test_gui_rulesets.py Log Message: ----------- 15673 Logfile pattern analyzer: improve rule overview CMK-6813 Change-Id: I866e7c3f5b21fec7db105a53a0e589e1f0104e70 Commit: 300009e5e36913dc44bed1b04f7eb9695c136dbb https://github.com/Checkmk/checkmk/commit/300009e5e36913dc44bed1b04f7eb9695… Author: Joerg Herbel <joerg.herbel(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: A .werks/15731 M cmk/gui/valuespec.py Log Message: ----------- 15731 FIX Agent controller auto-registration rules: Avoid error when updating remote sites with active configuration replication CMK-13029 Change-Id: I34399a128114e937bd20f71af6ff4e422d75c8da Compare: https://github.com/Checkmk/checkmk/compare/232eb57290d7...300009e5e369

1 year, 4 months

[Checkmk/checkmk] ff1346: 15673 Logfile pattern analyzer: improve rule overview

by Jörg Herbel

Branch: refs/heads/master Home: https://github.com/Checkmk/checkmk Commit: ff134637fe350dd7420ea934901bbb64d4d6f6f0 https://github.com/Checkmk/checkmk/commit/ff134637fe350dd7420ea934901bbb64d… Author: Lisa Pichler <lisa.pichler(a)tribe29.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: A .werks/15673 M cmk/gui/wato/pages/pattern_editor.py M cmk/gui/wato/pages/rulesets.py M cmk/gui/watolib/rulesets.py M tests/unit/cmk/gui/wato/pages/test_rulesets.py M tests/unit/cmk/gui/watolib/test_gui_rulesets.py Log Message: ----------- 15673 Logfile pattern analyzer: improve rule overview CMK-6813 Change-Id: I866e7c3f5b21fec7db105a53a0e589e1f0104e70 Commit: ec1d9c76788efae17b1ed150121f9ce043a963c6 https://github.com/Checkmk/checkmk/commit/ec1d9c76788efae17b1ed150121f9ce04… Author: Benedikt Seidl <benedikt.seidl(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/gui/werks.py Log Message: ----------- Fix GUI Crawler Somehow the GUI Crawler has inconstant state. But if the GUI Crawler can have this state, users may also, so we fix this. Change-Id: I4900e490f6ff2ded2cc9c130b8109d9ea4b6b480 Commit: 2328a66ac6d39e0fd786f5b97e486c07054eba79 https://github.com/Checkmk/checkmk/commit/2328a66ac6d39e0fd786f5b97e486c070… Author: Hannes Rantzsch <hannes.rantzsch(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/base/diagnostics.py Log Message: ----------- suppress bandit timeout warning Change-Id: Ia7ae2d5cdbf58976caf3f08fecca98409c409f8c Commit: 85955f8f2aec67c5ba39497b1728d4fd0229fa26 https://github.com/Checkmk/checkmk/commit/85955f8f2aec67c5ba39497b1728d4fd0… Author: Joerg Herbel <joerg.herbel(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M omd/packages/omd/skel.permissions A omd/packages/omd/skel/etc/omd/site.conf Log Message: ----------- Fix permissions of etc/omd/ This should at least fix the integration tests. Not sure if this is correct though. Change-Id: Ia37bf9cecd965eeaa83f09134812f04223d3f85a Compare: https://github.com/Checkmk/checkmk/compare/9dc01ec3e052...85955f8f2aec

1 year, 4 months

[Checkmk/checkmk] 010a48: 15484 FIX Fix encoding of special characters in "M...

by Moritz

Branch: refs/heads/master Home: https://github.com/Checkmk/checkmk Commit: 010a484e34d8dd9b817832d7088a7e5501d9c0f1 https://github.com/Checkmk/checkmk/commit/010a484e34d8dd9b817832d7088a7e550… Author: Ronny Bruska <ronny.bruska(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: A .werks/15484 M cmk/gui/autocompleters.py Log Message: ----------- 15484 FIX Fix encoding of special characters in "Move to other folder" FEED-7865 Change-Id: Icb603beb2bb4bcc18fd6cb1b3343af88f3a1b937 Commit: 9f520cb0d26a3021fb4a1ed66faa71faf9c42e22 https://github.com/Checkmk/checkmk/commit/9f520cb0d26a3021fb4a1ed66faa71faf… Author: Matteo Stifano <matteo.stifano(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/base/api/agent_based/register/export.py Log Message: ----------- Fix typos and linelength in docstrings Line length is adapted following PEP8 suggestion (79 characters) Change-Id: I9af736e33e125b112fe63b2f61217ce7b7e2aa91 Commit: b78deaea1cf592a9067fdc223def873d27818639 https://github.com/Checkmk/checkmk/commit/b78deaea1cf592a9067fdc223def873d2… Author: Moritz Kiemer <moritz.kiemer(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M checks/cmctc_ports Log Message: ----------- resolve snmp info triples: cmctc_ports Change-Id: I4c13f6b39faa6c67e62a89c068f125c9d852dad8 Commit: 1d289a39521b5cc5f67b6cc708440355174e91f6 https://github.com/Checkmk/checkmk/commit/1d289a39521b5cc5f67b6cc7084403551… Author: Moritz Kiemer <moritz.kiemer(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M checks/cmctc_psm_m Log Message: ----------- cmctc_psm_m: add parse function Change-Id: Ic048a07963e8e985f2775b69b56d792d851fa6fa Commit: e47b93ca69b3b20805f7fc1c2d68b60204bc2665 https://github.com/Checkmk/checkmk/commit/e47b93ca69b3b20805f7fc1c2d68b6020… Author: Moritz Kiemer <moritz.kiemer(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M checks/cmctc_psm_m Log Message: ----------- resolve snmp info triples: cmctc_psm_m Change-Id: Ia7f19fdefd7284c6791f6bb0f7bc1a1aa7ba3b6a Commit: 9dc01ec3e0529dc283f340317b1f58b4e5e1274e https://github.com/Checkmk/checkmk/commit/9dc01ec3e0529dc283f340317b1f58b4e… Author: Moritz Kiemer <moritz.kiemer(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/base/api/agent_based/register/section_plugins_legacy/__init__.py M tests/unit/cmk/base/api/agent_based/register/test_section_plugins_legacy_snmp_tree.py Log Message: ----------- remove dead automigration code Change-Id: I471c8d83ac8d5b4f5a96dce26e9758bd9f4cc93f Compare: https://github.com/Checkmk/checkmk/compare/0eee86e9ca3f...9dc01ec3e052

1 year, 4 months

[Checkmk/checkmk] b0bd06: 15484 FIX Fix encoding of special characters in "M...

by rb

Branch: refs/heads/2.1.0 Home: https://github.com/Checkmk/checkmk Commit: b0bd06e35d0219c56180475b7e0db7cde65e19a6 https://github.com/Checkmk/checkmk/commit/b0bd06e35d0219c56180475b7e0db7cde… Author: Ronny Bruska <ronny.bruska(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: A .werks/15484 M cmk/gui/plugins/webapi/autocompleters.py Log Message: ----------- 15484 FIX Fix encoding of special characters in "Move to other folder" FEED-7865 Change-Id: Icb603beb2bb4bcc18fd6cb1b3343af88f3a1b937

1 year, 4 months

[Checkmk/checkmk] 89b83a: fix typo: Not all werks are NOT_COMPATIBLE

by SoloJacobs

Branch: refs/heads/master Home: https://github.com/Checkmk/checkmk Commit: 89b83afc27e7d4c9811c481cc6fe5251f6bf44fa https://github.com/Checkmk/checkmk/commit/89b83afc27e7d4c9811c481cc6fe5251f… Author: Benedikt Seidl <benedikt.seidl(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/utils/werks/werkv1.py Log Message: ----------- fix typo: Not all werks are NOT_COMPATIBLE Change-Id: I71aee915ec0b54d6a020a9b8cec2db8f058be418 Commit: 0ffe9fd2831998be765a72275af46b0fb2408bea https://github.com/Checkmk/checkmk/commit/0ffe9fd2831998be765a72275af46b0fb… Author: Benedikt Seidl <benedikt.seidl(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M CHANGES Log Message: ----------- Update CHANGES Change-Id: If2166e33c12f3aff19dcf27d047ad4742a87c7a9 Commit: e458e6fddbf2cece6801dd94b7c814f01cf2be3e https://github.com/Checkmk/checkmk/commit/e458e6fddbf2cece6801dd94b7c814f01… Author: Hannes Rantzsch <hannes.rantzsch(a)tribe29.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: A .werks/15189 M cmk/base/diagnostics.py Log Message: ----------- 15189 SEC Don't log automation user credentials when generating performance graph diagnostics Prior to this Werk, creating a Support Diagnostic report including the option "Performance Graphs of Checkmk Server" caused the automation secret of the user "automation" to be logged to the site Apache access log file (var/log/apache/access_log). This affected both creating the diagnostic report via the GUI (Setup > Maintenance > Support diagnostics) and via the command line (cmk --create-diagnostics-dump --performance-graphs). With this Werk the credentials are no longer written to the log file. Note that no automatic sanitization of the log file is attempted by applying this patch. This issue was discovered during internal review. Affected Versions: - 2.2.0 (beta) - 2.1.0 - 2.0.0 Mitigations: Users are advised to change the secret of the user "automation" via the User Management UI. If this is not an option for you, delete or manually sanitize the Apache access log file and any backup of the file. Remove any line that contains a POST to <your site URL>/report.py?_username=automation&_secret=<...>. Refrain from using the affected functionality before applying this patch or manually sanitize the file afterwards. Vulnerability Management: We have rated the issue with a CVSS Score of 4.4 (Medium) with the following CVSS vector: <tt>CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N</tt>. We have assigned CVE-2023-31207. Change-Id: I5b903fb3c1d186219f7718acf3d6efa498e9f5cf Commit: ad9de1d7ef2bb8f58bda1c1f001e59b0470bc2ca https://github.com/Checkmk/checkmk/commit/ad9de1d7ef2bb8f58bda1c1f001e59b04… Author: Joerg Herbel <joerg.herbel(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/gui/watolib/activate_changes.py M omd/packages/omd/skel.permissions R omd/packages/omd/skel/etc/omd/allocated_ports M tests/integration/omd/test_permissions.py M tests/unit/cmk/gui/watolib/test_activate_changes.py Log Message: ----------- Purge remainders of allocated_ports In 2.2, we have an update action to remove this file. Hence, when a user will update to 2.3, this file will not be present, which means that we can now completely purge the last remainders. FEED-7861 Change-Id: I59bcec08a83103f77a541c74e8226d5901cc9987 Commit: 1dd13a068067a359a565cec1cd2f16aacfd21b52 https://github.com/Checkmk/checkmk/commit/1dd13a068067a359a565cec1cd2f16aac… Author: Joerg Herbel <joerg.herbel(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M omd/packages/apache-omd/APACHE_TCP_PORT M omd/packages/check_mk/AGENT_RECEIVER_PORT M omd/packages/mk-livestatus/LIVESTATUS_TCP_PORT A omd/packages/omd/next_free_port M omd/packages/omd/omd.make R omd/packages/omd/port_is_used Log Message: ----------- Give better name to script which finds next free port Change-Id: Iaf1f978ae5c8c13d395ede9e17d75d621644ec28 Commit: 7279e22687bb1c84133810c7c62f1211b9ce41c6 https://github.com/Checkmk/checkmk/commit/7279e22687bb1c84133810c7c62f1211b… Author: Solomon Jacobs <solomon.jacobs(a)tribe29.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/special_agents/agent_kube.py M cmk/special_agents/utils_kubernetes/api_server.py M cmk/special_agents/utils_kubernetes/query.py Log Message: ----------- kube: introduce requests session as api_client I This commit prepares the making the calls to the Kubernetes API server asynchronous. The Kubernetes Python client does offer an async option itself. With this option, the HTTP requests not be executed in the main thread. However, they will still be blocking each other. Moreover, the client cannot be pickled, thus multiprocessing is also not possible. Therefore, we now move to a different option. This change modifies the smallest of the API classes. More updates will follow. CMK-12359 Change-Id: Ia111cb8d320257162823aed3604657d19b6da9c2 Commit: 8858a1c748d240e5448831d57a2b1d1c02ab39f4 https://github.com/Checkmk/checkmk/commit/8858a1c748d240e5448831d57a2b1d1c0… Author: Solomon Jacobs <solomon.jacobs(a)tribe29.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/base/plugins/agent_based/kube_cluster_api_health.py M cmk/base/plugins/agent_based/kube_node_kubelet.py M cmk/base/plugins/agent_based/utils/kube.py M cmk/special_agents/utils_kubernetes/api_server.py M cmk/special_agents/utils_kubernetes/schemata/api.py M tests/unit/cmk/base/plugins/agent_based/test_inventory_kube_node.py M tests/unit/cmk/base/plugins/agent_based/test_kube_cluster_api_health.py M tests/unit/cmk/base/plugins/agent_based/test_kube_node_kubelet.py M tests/unit/cmk/special_agents/utils_kubernetes/test_api_server.py Log Message: ----------- kube: delete unnecessary secondary query Based on the Kubernetes source https://github.com/kubernetes/kubernetes/blob/release-1.22/staging/src/k8s.… our logic duplicates what Kubernetes does internally anyway. This was confirmed with two separate kinds of Kubelet errors. CMK-12359 Change-Id: I6b83358db172d9ced596086097c2eac1b956858c Commit: c7a8be4d9bb5f3b76537dc377e55ab0ea055b1dd https://github.com/Checkmk/checkmk/commit/c7a8be4d9bb5f3b76537dc377e55ab0ea… Author: Solomon Jacobs <solomon.jacobs(a)tribe29.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/special_agents/utils_kubernetes/api_server.py M tests/unit/cmk/special_agents/utils_kubernetes/test_api_server.py Log Message: ----------- kube: introduce requests session as api_client II This commit prepares the making the calls to the Kubernetes API server asynchronous. The Kubernetes Python client does offer an async option itself. With this option, the HTTP requests not be executed in the main thread. However, they will still be blocking each other. Moreover, the client cannot be pickled, thus multiprocessing is also not possible. Therefore, we now move to a different option. This change modifies the CoreAPI calls, which did not use the client for deserialization. CMK-12359 Change-Id: Ieac2633aa7db94e53ab89d3cd16369409a732974 Commit: 3cbc44d54eb3456dea75a81fd8e67d3980a124da https://github.com/Checkmk/checkmk/commit/3cbc44d54eb3456dea75a81fd8e67d398… Author: Solomon Jacobs <solomon.jacobs(a)tribe29.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/special_agents/agent_kube.py M cmk/special_agents/utils_kubernetes/api_server.py Log Message: ----------- kube: introduce requests session as api_client III This commit prepares the making the calls to the Kubernetes API server asynchronous. The Kubernetes Python client does offer an async option itself. With this option, the HTTP requests not be executed in the main thread. However, they will still be blocking each other. Moreover, the client cannot be pickled, thus multiprocessing is also not possible. Therefore, we now move to a different option. This change completes the transition. It also introduces a new way of calling the Kubernetes client to still perform the deserialization. CMK-12359 Change-Id: I0cd8f14f4d6c79b6abb602533d57fb0ccd5445f7 Commit: 0eee86e9ca3f0e98ea0bab1d0618130239d6a8b2 https://github.com/Checkmk/checkmk/commit/0eee86e9ca3f0e98ea0bab1d061813023… Author: Solomon Jacobs <solomon.jacobs(a)tribe29.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/special_agents/utils_kubernetes/api_server.py Log Message: ----------- kube: centralize kubelet calls CMK-12359 Change-Id: Ieadc7ac66bcd3a457d4d32eed93865b473a148bb Compare: https://github.com/Checkmk/checkmk/compare/f67967b775fb...0eee86e9ca3f

1 year, 4 months

[Checkmk/checkmk] 9ba37b: 15189 SEC Don't log automation user credentials wh...

by rb

Branch: refs/heads/2.2.0 Home: https://github.com/Checkmk/checkmk Commit: 9ba37b2f6f721b1d06e4a85e6e4c41e797a59cd5 https://github.com/Checkmk/checkmk/commit/9ba37b2f6f721b1d06e4a85e6e4c41e79… Author: Hannes Rantzsch <hannes.rantzsch(a)tribe29.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: A .werks/15189 M cmk/base/diagnostics.py Log Message: ----------- 15189 SEC Don't log automation user credentials when generating performance graph diagnostics Prior to this Werk, creating a Support Diagnostic report including the option "Performance Graphs of Checkmk Server" caused the automation secret of the user "automation" to be logged to the site Apache access log file (var/log/apache/access_log). This affected both creating the diagnostic report via the GUI (Setup > Maintenance > Support diagnostics) and via the command line (cmk --create-diagnostics-dump --performance-graphs). With this Werk the credentials are no longer written to the log file. Note that no automatic sanitization of the log file is attempted by applying this patch. This issue was discovered during internal review. Affected Versions: - 2.2.0 (beta) - 2.1.0 - 2.0.0 Mitigations: Users are advised to change the secret of the user "automation" via the User Management UI. If this is not an option for you, delete or manually sanitize the Apache access log file and any backup of the file. Remove any line that contains a POST to <your site URL>/report.py?_username=automation&_secret=<...>. Refrain from using the affected functionality before applying this patch or manually sanitize the file afterwards. Vulnerability Management: We have rated the issue with a CVSS Score of 4.4 (Medium) with the following CVSS vector: <tt>CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N</tt>. We have assigned CVE-2023-31207. Change-Id: I5b903fb3c1d186219f7718acf3d6efa498e9f5cf Commit: 76a99c7da37a1f9ddd4e992c4704a50b35513849 https://github.com/Checkmk/checkmk/commit/76a99c7da37a1f9ddd4e992c4704a50b3… Author: Solomon Jacobs <solomon.jacobs(a)tribe29.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/special_agents/agent_kube.py M cmk/special_agents/utils_kubernetes/query.py M tests/unit/checks/test_agent_kube.py Log Message: ----------- kube: make_api_client moved to query.py CMK-12359 Change-Id: I19f283be6b89f7b91426121cb7cc6a3bdf0b5695 Commit: 763ca1be9d885b2c31bf3271854224608a4d25aa https://github.com/Checkmk/checkmk/commit/763ca1be9d885b2c31bf3271854224608… Author: Solomon Jacobs <solomon.jacobs(a)tribe29.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/special_agents/agent_kube.py M cmk/special_agents/utils_kubernetes/query.py M tests/unit/checks/test_agent_kube.py Log Message: ----------- kube: type ApiClient arguments CMK-12359 Change-Id: I352746f5b5fdae1447b488f4dede0065afdd2273 Commit: fcbe7f6721e24ca1cb9b974dddf5aac8a89627fc https://github.com/Checkmk/checkmk/commit/fcbe7f6721e24ca1cb9b974dddf5aac8a… Author: Solomon Jacobs <solomon.jacobs(a)tribe29.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/special_agents/utils_kubernetes/api_server.py Log Message: ----------- kube: centralize kubelet calls CMK-12359 Change-Id: Ieadc7ac66bcd3a457d4d32eed93865b473a148bb Commit: 5e64ccd08e07c3fabb75097e6b4a256242402429 https://github.com/Checkmk/checkmk/commit/5e64ccd08e07c3fabb75097e6b4a25624… Author: Solomon Jacobs <solomon.jacobs(a)tribe29.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: M cmk/special_agents/agent_kube.py M cmk/special_agents/utils_kubernetes/api_server.py Log Message: ----------- kube: allow handling pool of ApiClient with contextmanager CMK-12359 Change-Id: I8b166a5589b89e171fbca47dc9b5055eba829f0e Commit: 232eb57290d7f3b115ecd79a75fefe057d8e7cd4 https://github.com/Checkmk/checkmk/commit/232eb57290d7f3b115ecd79a75fefe057… Author: Ronny Bruska <ronny.bruska(a)checkmk.com> Date: 2023-05-04 (Thu, 04 May 2023) Changed paths: A .werks/15484 M cmk/gui/autocompleters.py Log Message: ----------- 15484 FIX Fix encoding of special characters in "Move to other folder" FEED-7865 Change-Id: Icb603beb2bb4bcc18fd6cb1b3343af88f3a1b937 Compare: https://github.com/Checkmk/checkmk/compare/4ee9847e6df1...232eb57290d7

1 year, 4 months

[Checkmk/checkmk] aa5930: Ignore agents/plugins/*.checksum during permission...

by Hannes Rantzsch

Branch: refs/heads/2.0.0 Home: https://github.com/Checkmk/checkmk Commit: aa59306cd7e3eaae37d6a4367d5a44ecf5c18a05 https://github.com/Checkmk/checkmk/commit/aa59306cd7e3eaae37d6a4367d5a44ecf… Author: Lars Michelsen <lm(a)tribe29.com> Date: 2023-05-03 (Wed, 03 May 2023) Changed paths: M tests/unit/test_permissions.py Log Message: ----------- Ignore agents/plugins/*.checksum during permission test Change-Id: Iab09529d6cb43ec5df8015dbffb17bd2804120da Commit: 89085cb8c47c65071a1af9858e5e9ef45ae93209 https://github.com/Checkmk/checkmk/commit/89085cb8c47c65071a1af9858e5e9ef45… Author: Hannes Rantzsch <hannes.rantzsch(a)tribe29.com> Date: 2023-05-03 (Wed, 03 May 2023) Changed paths: A .werks/15189 M cmk/base/diagnostics.py Log Message: ----------- 15189 SEC Don't log automation user credentials when generating performance graph diagnostics Prior to this Werk, creating a Support Diagnostic report including the option "Performance Graphs of Checkmk Server" caused the automation secret of the user "automation" to be logged to the site Apache access log file (var/log/apache/access_log). This affected both creating the diagnostic report via the GUI (Setup > Maintenance > Support diagnostics) and via the command line (cmk --create-diagnostics-dump --performance-graphs). With this Werk the credentials are no longer written to the log file. Note that no automatic sanitization of the log file is attempted by applying this patch. This issue was discovered during internal review. Affected Versions: - 2.2.0 (beta) - 2.1.0 - 2.0.0 Mitigations: Users are advised to change the secret of the user "automation" via the User Management UI. If this is not an option for you, delete or manually sanitize the Apache access log file and any backup of the file. Remove any line that contains a POST to <your site URL>/report.py?_username=automation&_secret=<...>. Refrain from using the affected functionality before applying this patch or manually sanitize the file afterwards. Vulnerability Management: We have rated the issue with a CVSS Score of 4.4 (Medium) with the following CVSS vector: <tt>CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N</tt>. We have assigned CVE-2023-31207. Change-Id: I5b903fb3c1d186219f7718acf3d6efa498e9f5cf Compare: https://github.com/Checkmk/checkmk/compare/c3a85dba3f64...89085cb8c47c

1 year, 4 months

[Checkmk/checkmk]

by Checkmk CI

Branch: refs/tags/v2.1.0p27 Home: https://github.com/Checkmk/checkmk

1 year, 4 months

← Newer
1
...
41
42
43
44
45
46
47
...
50
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

Checkmk git commits May 2023