ID: 14289
Title: Fix PermissionError during 'omd update' related to '/omd/apache' files
Component: Site Management
Level: 1
Class: Bug fix
Version: 2.2.0i1
When performing 'omd update' to 2.1.0p7 or newer, a PermissionError could occur, depending
on the umask settings of your system. A traceback like this was visible in this situation:
C+:
Traceback (most recent call last):
File "/omd/versions/2.1.0p8.cee/bin/omd", line 63, in <module>
omdlib.main.main()
File "/omd/versions/2.1.0p8.cee/lib/python3/omdlib/main.py", line 4665, in main
command.handler(version_info, site, global_opts, args, command_options)
File "/omd/versions/2.1.0p8.cee/lib/python3/omdlib/main.py", line 2726, in main_update
not is_apache_hook_up_to_date(site)
File "/omd/versions/2.1.0p8.cee/lib/python3/omdlib/system_apache.py", line 72, in is_apache_hook_up_to_date
with open(os.path.join(omdlib.utils.omd_base_path(), "omd/apache/%s.conf" % site.name)) as f:
PermissionError: [Errno 13] Permission denied: '/omd/apache/checkmk_test.conf'
C-:
The issue is fixed with this relase. However, you can workaround this issue by
executing <tt>chmod o+r /omd/apache/*.conf</tt> as root before executing 'omd
update'.
ID: 14546
Title: Fix 'Parameters for this service' in service dropdown menu
Component: Multisite
Level: 1
Class: Bug fix
Version: 2.2.0i1
The page showing the parameters configured for a given service, accessible via the service dropdown
menu, crashed.
ID: 14527
Title: Prevent from executing remotely fetched html when failing to activate changes in a remote site
Component: Multisite
Level: 1
Class: Bug fix
Version: 2.2.0i1
When there is an error in activating changes in a remote site, the
returned response will be rendered in the GUI and this will cause any
returned HTML code to be executed.
This werk fixes the issue by html-escaping the returned response.
SUP-9840
ID: 14367
Title: comments: New REST API endpoints implemented for host and service comments
Component: REST API
Level: 1
Class: New feature
Version: 2.2.0i1
This werk introduces the implementation of the comments' endpoints. Comments
can now be created, deleted and retrieved via the new endpoints on both services
and hosts.
ID: 14544
Title: Agent controller: Use host certificate store during registration
Component: agents
Level: 1
Class: Bug fix
Version: 2.2.0i1
In order to register at a Checkmk site, the agent controller (<tt>cmk-agent-ctl</tt>) needs to know,
among others, the name of the server where the site is running and a port. The port can either be
included in the server name argument (<tt>-s<tt>), or it can be left out. In case it is left out,
the agent controller tries to query the port from the REST API of the target site.
In case the communication with the REST API is HTTPS-secured, the agent controller is supposed to
use the certificate store of the host to verify the server certificate. This was however not the
case, which in particular affected setups with server certificates signed by a custom CA (where the
corresponding root certificate was correctly added to the certificate store of the host). The
resulting error message read:
C+:
$ cmk-agent-ctl register ...
...
Failed to discover agent receiver port from Checkmk REST API, both with http and https.
...
Error with https:
...
invalid peer certificate contents: invalid peer certificate: UnknownIssuer
C-:
Note that, as mentioned above, this only happened if no explicit port was given during the agent
registration.
ID: 13954
Title: REST API calls somtimes resulted in a 500 status code with a permissions error
Component: REST API
Level: 1
Class: Bug fix
Version: 2.2.0i1
Even though the operation succeeded, some REST API calls would result
in a 500 response status code, with a message saying,
"Permission mismatch. See the server logs for more information."
This is no longer the case and requires no further adjustments on the
user side.
ID: 14431
Title: fjdarye: Added support for DX600 device
Component: Checks & agents
Level: 1
Class: New feature
Version: 2.2.0i1
This change adds support for the ETERNUS DX600 device to the following checks: <br>
<li>fjdarye_ca_ports</li>
<li>fjdarye__ce_power_supply_units<li>
<li>fjdarye_channel_adapters</li>
<li>fjdarye_channel_modules</li>
<li>fjdarye_controller_enclosures</li>
<li>fjdarye_controller_modules_flash<li>
<li>fjdarye_controller_modules_memory</li>
<li>fjdarye_device_enclosures</li>
<li>fjdarye_disks</li>
<li>fjdarye_expanders<li>
<li>fjdarye_inlet_thermal_sensors<li>
<li>fjdarye_summary_status</li>
<li>fjdarye_system_capacitors</li>
<li>fjdarye_thermal_sensors</li>
ID: 14637
Title: oracle_performance: Fix implementation of discovery rules
Component: Checks & agents
Level: 1
Class: Bug fix
Version: 2.2.0i1
The implementation of the discovery rules of the plugin "Oracle Tablespaces: Perfomance Data" was not quite right.
If you see redundant output after this werk, please rediscover the affected services.
ID: 14656
Title: service discovery: addition of wait for completion endpoint
Component: REST API
Level: 1
Class: New feature
Version: 2.2.0i1
This werk introduces the wait for completion endpoint for a service discovery run.
The current redirect link in the "Execute a service discovery on a host" with mode
"refresh" which previously linked to the service_discovery_run object will be replaced
by this newly introduced endpoint.
ID: 14540
Title: service discovery: changing the documentation for the discovery mode
Component: REST API
Level: 1
Class: Bug fix
Version: 2.2.0i1
The previous documentation for the service discovery mode "refresh" caused some confusion
as its description was close to the GUI's "Remove all and find new" option. This werk therefore
overhauls the description of the discovery mode parameter.