Published on 2021-06-14 00:00:00

Humio 1.27.0

Improvements & Bug Fixes

Version

Type

Release Date

End of Support

Upgrades From

Data Migration

Config. Changes

1.27.0

Preview

2021-06-14

2021-06-15

1.16.0

No

Yes

JAR Checksum

Value

MD5

cce0478c744d183db8491e338949bdfe

SHA1

6dd0bf5c8e0d4ca1f74116e31f28f8cfa7b58323

SHA256

a3425e6141358cbc1115ab3c2691768c64d62f84cea3e018eb7b6debcb05f803

SHA512

ca63e89946e4a12422124adb052b59f8da30ca026b5c34b0bfe1ddcc35cf7546fedd4127d46def6c36b3e0f7278675cf4fe47362fe5070a6d7b29ffbcbd0bc49

TGZ Checksum

Value

MD5

cce0478c744d183db8491e338949bdfe

SHA1

6dd0bf5c8e0d4ca1f74116e31f28f8cfa7b58323

SHA256

a3425e6141358cbc1115ab3c2691768c64d62f84cea3e018eb7b6debcb05f803

SHA512

ca63e89946e4a12422124adb052b59f8da30ca026b5c34b0bfe1ddcc35cf7546fedd4127d46def6c36b3e0f7278675cf4fe47362fe5070a6d7b29ffbcbd0bc49

Change Log

  • Humio trial installations now require a trial license. To request a trial license go to getting-started

  • All users (including existing users) need to accept the privacy notice and terms and conditions <https://www.crowdstrike.com/terms-conditions/humio-self-hosted> before using Humio.

Improvements

  • In the time selector, you can now write “24” in the time-of-day field to denote the end of the day.

  • Debug logs which relate to the invocation of an action now contain an actionInvocationId. This trace id is the same for all logs generated by the same action invocation.

  • The event distribution chart would sometimes show a bucket span reported in milliseconds instead of a more appropriate unit, when those milliseconds did not add up cleanly (e.g. “1h”). Now the bucket span can be reported with multiple units (e.g. “1h 30m”)

  • The list of recent queries on the search page now has headers with the date the query was run.

  • The UI now consistently marks required field with a red asterisk across a number of dialogs.

  • The New Action dialog validates user input in a more indulgent fashion and provides all validation errors consistently.

  • Added button to delete the organization from the Organization Overview page

  • Automatically reduce the precision of world maps when they exceed a certain size limit

  • Inviting users on cloud now requires the invited user to accept the invitation before assigning permissions to him. Moreover, it is possible to invite users who are in another organization on cloud.

  • Reduced memory usage for groupBy() function, etc.; worst-case in particular but also average-case to some degree.

  • The Humio frontend no longer sends the Humio-Query-Session header to the backend, since it is no longer used.

  • Changed implementation of cluster host alive stats to attempt to reduce thread contention when threads are checking for host liveness.

  • Changed implementation of cluster host alive stats to trigger updates in the in-memory state based on changes in global, rather than running periodic updates.

  • Add a bit more debug logging to DataSnapshotLoader, for visibility around choice of global snapshot during boot

  • Slightly improve performance of id lookups in global

  • Reimplement several part of Humio to use a safer mechanism for listening to changes from global. This should eliminate a class of race condition that could cause nodes to ignore updates received during the boot process.

  • Improve thread safety of updates to global Hosts entities during bootup

  • Add a label to the empty option for default queries on the repository settings page.

  • Users with read repository permissions can now access and see files.

  • Working on merging of advanced and simple permission models, so that the roles can be added directly to users.

  • Added ability to set organization usage limits manually for cases where automatic synchronization is not possible.

  • The Alert and Scheduled Search dialogs have gotten a makeover.

  • Started internal work on memory quotas on queries’ aggregation states. This should not have any user-visible impact yet.

  • When assigning a role, all the user which need a new role are choosen, and then the same role is assigned to them all.

  • Improved styling of header on organization overview page

  • Added frontend validation on welcome page and invitation page fields

  • Removed requirement that SAML Id needs to be an URL (Now, only requirement is that the field is not empty)

  • Included both ws and wss in csp header

  • Added a quickfix feature for reserved keywords

  • Improved error messages when exporting invalid dashboards as templates

  • Updated the interactive tutorial with better descriptions

  • When looking at the details of an event, long field values will now extend beyond the viewport by default. Word wrapping can be enabled to stop it from extending outside the viewport.

  • With worldmap() function, you can now see the magnitude value by hovering marks on the map.

Configuration Changes

  • Limit how many times we’ll repeat a repeating regexp. The default max number of repetitions is 100 but the value is configurable between 50 and 500 by setting the MAX_REGEX_REPETITIONS env variable.

  • Removed the log4j2-stdout-json.xml configuration file. The replacement log4j2-json-stdout.xml has been available for a while, and we want everyone to move to the new configuration, as the old configuration produces logs incompatible with the Humio Insights package.

GraphQL

  • Deprecated GraphQL mutation setRecentQueries, use addRecentQuery in future. The mutation will be removed after 2021-10-01. While setRecentQueries will remain in the API to not break existing clients, it will not modify the set of recent queries.

  • Deprecated GraphQL field SearchDomain.recentQueries in favor of SearchDomain.recentQueriesV2.

Fixes

  • Fixed various bugs for the worldmap widget. The bug fixes may cause your world map marks to look different that previously, but should now work as intended and correcting it should be as simple as tweeking the style parameters.

  • Fixed an issue in timeChart() where the horizontal line did not showing up.

  • Fixed an issue in the Query State Cache that could fail a query on time intervals with a fixed timestamp as start and now as end.

  • Fixed an issue where it was possible to create an alert with an empty time interval or a blank name or throttle field.

  • Fixed a rare issue that could fail to trigger a JVM shutdown if the Kafka digest leader loop thread became nonfunctional.

  • Fixed an issue which caused queries to crash when “beta:repeating()” was used with a time interval ending before “now”.

  • Fixed a problem when some user-defined styles weren’t being applied to a chart after a page refresh or when exported to a dashboard widget

  • Fixed a problem where the global consistency check would report spurious inconsistencies because of trivial differences in the underlying JSON data

  • Fixed an issue where UI stalled on the “Data Sources” page

  • Fixed an issue for Firefox 78.10.1 ESR where the event list and event distribution chart would not be scrollable and resize incorrectly.

  • Fixed an issue where worldmap widgets would revert to event list widgets when changing styling options.

  • Fixed an OIDC group synchronization issue where users where denied access even though their group membership gave them access.

  • Fixed an issue with AuthenticationMethod.SetByProxy where the search page would constantly reload.

  • Fixed an issue where optimizeAndSaveQueryCoordinationPartitions could attempt to save a partitioning table to global with gaps in the partition list. This caused queries to fail, and repeated logging of a validation error.