ID: 13714
Title: Avoid unnecessary Liveproxy Daemon restarts upon "Activate changes"
Component: Livestatus Proxy
Level: 1
Class: Bug fix
Version: 2.1.0i1
Depending on the configuration, the Liveproxy Daemon restarted upon every
"Activate changes", even if there were no relevant configuration changes.
ID: 13288
Title: Improve speed of activate changes by incremental activating changes
Component: Setup
Level: 2
Class: New feature
Version: 2.1.0i1
With this change the microcore and its helper processes are able to reuse parts of the previous configuration,
without compiling everything anew. Only actually changed hosts will be fully recompiled.
This can significantly reduce the waiting time for "Activate changes".
In addition, the workload during the compilation phase is also reduced, giving the monitoring core some room to breathe.
F+:
## Compilation time comparison using a demo config with 150k services ##
# Full compiliation of all hosts (default behaviour in all previous versions)
real 0m21.107s
user 2m10.626s
sys 0m2.581s
# Using new incremental activation
real 0m6.936s
user 0m24.366s
sys 0m1.492s
F-:
The incremental activation mechanism is used automatically when it is feasible.
Actions where hosts are changed (edit/add/remove/discovery) can make use of this new feature.
However, changes to rulesets require a complete recompilation of the entire configuration, just as in previous versions.
ID: 13719
Title: Remove report element "Paragraph of text fetched via HTTP(s)"
Component: Reporting & Availability
Level: 1
Class: Security fix
Version: 2.1.0i1
In previous versions one could add text from foreign websites into reports.
<i>Paragraph of text fetched via HTTP(s)</i> The functionality was very
limited since no parsing was done. This functionality broke with version
2.0.0.
Additionally this could enable a malicious actor to retrieve sensitive
information from systems accessible to the Checkmk server (SSRF). Therefore the
functionality is removed.
Existing report elements of type <i>Paragraph of text fetched via HTTP(s)</i>
will be converted to <i>Paragraph of text</i> elements with text refering to
the URL. Unfortunately no macros will be resolved.
ID: 13337
Title: Add Monitoring for Ciena Switch 5171 and 5142
Component: Checks & agents
Level: 1
Class: New feature
Version: 2.1.0i1
Currently, the following properties are monitored:
<ul>
<li>Tunnels together with their statuses</li>
<li>CFM services together with their statuses and byte transfer</li>
<li>Ports together with their signal power</li>
</ul>
ID: 13457
Title: Fix bug in discovery after update to Veeam v11
Component: Checks & agents
Level: 1
Class: Bug fix
Version: 2.1.0i1
After the update to Veeam v11 import of Veeam.Backup.PowerShell produced
a warning that lead to bug in service discovery.
With this fix, warning is suppressed and services are discovered as
before.
ID: 13615
Title: Add margin to Graph titles in reports
Component: Reporting & Availability
Level: 1
Class: Bug fix
Version: 2.1.0i1
Some graphs like "bandwith" display the unit of the vertical axis on the top
left coner of the graph instead of next to the values on the axis.
Werk 12998 resulted in an overlap between the unit of the graph and its title.
With this Werk an extra margin is added to the title on those graphs.
ID: 13521
Title: <tt>mcafee_av_client</tt>: Fix <tt>ValueError (time data u'search:' ...)</tt>
Component: Checks & agents
Level: 1
Class: Bug fix
Version: 2.1.0i1
The check plugin <tt>mcafee_av_client</tt>, which monitors the signature date
of McAfee AV clients on Windows hosts, crashed with
<tt>ValueError (time data u'search:' does not match format '%Y/%m/%d')</tt>
on some systems.
The reason for this was that the corresponding agent plugin (mcafee_av_client.bat)
delivered wrong data on these systems. For this fix to apply, you have to update
the agent on affected hosts.
ID: 13713
Title: Special agent for IPMI sensors: Fix privilege level configuration
Component: Setup
Level: 1
Class: Bug fix
Version: 2.1.0i1
There was a bug in the command line arguments of the special agent for
querying IPMI sensors. The valid choices for the privilege level were
"user", "operator", "admin". These choices are valid for FreeIPMI, but
not for IPMItool, which accepts "callback", "user", "operator",
"administrator". Now, the valid choices for the privilege level depend
on the chosen tool, as described above.
Furthermore, the rule for configuring the special agent has been
adjusted accordingly. Previously, the privilege level was configurable
via free text input. Now, there is a dropdown menu with tool-dependent
choices. Rules with now invalid choices have to be corrected manually.
However, note that such rules anyway crashed the special agent
(independently of this werk).
ID: 13667
Title: Fix label search for labels with same key
Component: Multisite
Level: 1
Class: Bug fix
Version: 2.1.0i1
If you used different labels with the same key, e.g. "foo:bar" and "foo:baz",
the label search with filters in views and dropdown input fields in rules only
showed one label, ignoring all other labels with the same key.
ID: 13523
Title: Validate configured rules when updating configuration
Component: Setup
Level: 1
Class: New feature
Version: 2.1.0i1
The Checkmk update procedure (<tt>cmk-update-config</tt>) now validates most of the configured
rules and logs "WARNING: Invalid rule configuration detected" in case of an error. If you
encounter such errors, your configuration contains rules that need to be corrected. We
recommend to open the affected rules in the GUI. Upon attempting to save them, any problematic
field will be highlighted.
Invalid rule values can for example originate from invalid regular expressions, which were
unfortunately still allowed in Python 2 but are forbidden in Python 3, see also
https://checkmk.com/de/werk/11974.