Humio Server 1.27.0 Preview (2021-06-14)

Version?Type?Release Date?Availability?End of Support

Security

Updates

Upgrades

From?

JDK

Compatibility?

Req. Data

Migration

Config.

Changes?
1.27.0Preview2021-06-14

Cloud

On-Prem

2022-06-30No1.16.011NoYes
JAR ChecksumValue
MD5cce0478c744d183db8491e338949bdfe
SHA16dd0bf5c8e0d4ca1f74116e31f28f8cfa7b58323
SHA256a3425e6141358cbc1115ab3c2691768c64d62f84cea3e018eb7b6debcb05f803
SHA512ca63e89946e4a12422124adb052b59f8da30ca026b5c34b0bfe1ddcc35cf7546fedd4127d46def6c36b3e0f7278675cf4fe47362fe5070a6d7b29ffbcbd0bc49

Bug fixes and updates.

Deprecation

Items that have been deprecated and may be removed in a future release.

  • Deprecated GraphQL mutation setRecentQueries, use addRecentQuery in future. The mutation will be removed after 2021-10-01. While setRecentQueries will remain in the API to not break existing clients, it will not modify the set of recent queries.

Improvements, new features and functionality

  • Automation and Alerts

    • Fixed an issue where it was possible to create an alert with an empty time interval or a blank name or throttle field.

    • The Alert and Scheduled Search dialogs have gotten a makeover.

  • GraphQL API

    • Deprecated GraphQL field SearchDomain.recentQueries in favor of SearchDomain.recentQueriesV2.

  • Configuration

    • Removed the log4j2-stdout-json.xml configuration file. The replacement log4j2-json-stdout.xml has been available for a while, and we want everyone to move to the new configuration, as the old configuration produces logs incompatible with the Insights Package.

    • Limit how many times we'll repeat a repeating regexp. The default max number of repetitions is .0 but the value is configurable between 50 and .0 by setting the MAX_REGEX_REPETITIONS env variable.

  • Functions

    • With worldMap() function, you can now see the magnitude value by hovering marks on the map.

    • Fixed an issue in timeChart() where the horizontal line did not showing up.

    • Reduced memory usage for groupBy() function, etc.; worst-case in particular but also average-case to some degree.

  • Other

    • Inviting users on cloud now requires the invited user to accept the invitation before assigning permissions to him. Moreover, it is possible to invite users who are in another organization on cloud.

    • Fixed an issue where worldmap widgets would revert to event list widgets when changing styling options.

    • Working on merging of advanced and simple permission models, so that the roles can be added directly to users.

    • Fixed a problem when some user-defined styles weren't being applied to a chart after a page refresh or when exported to a dashboard widget

    • Improve thread safety of updates to global Hosts entities during bootup

    • Started internal work on memory quotas on queries' aggregation states. This should not have any user-visible impact yet.

    • Changed implementation of cluster host alive stats to attempt to reduce thread contention when threads are checking for host liveness.

    • Removed requirement that SAML Id needs to be an URL (Now, only requirement is that the field is not empty)

    • Fixed an issue which caused queries to crash when "beta:repeating()" was used with a time interval ending before "now".

    • The New Action dialog validates user input in a more indulgent fashion and provides all validation errors consistently.

    • Add a label to the empty option for default queries on the repository settings page.

    • Fixed an issue with AuthenticationMethod.SetByProxy where the search page would constantly reload.

    • Users with read repository permissions can now access and see files.

    • Added button to delete the organization from the Organization Overview page

    • Reimplement several part of Humio to use a safer mechanism for listening to changes from global. This should eliminate a class of race condition that could cause nodes to ignore updates received during the boot process.

    • The UI now consistently marks required field with a red asterisk across a number of dialogs.

    • When looking at the details of an event, long field values will now extend beyond the viewport by default. Word wrapping can be enabled to stop it from extending outside the viewport.

    • Improved error messages when exporting invalid dashboards as templates

    • Changed implementation of cluster host alive stats to trigger updates in the in-memory state based on changes in global, rather than running periodic updates.

    • Updated the interactive tutorial with better descriptions

    • Fixed an issue where UI stalled on the "Data Sources" page

    • When assigning a role, all the user which need a new role are choosen, and then the same role is assigned to them all.

    • Added frontend validation on welcome page and invitation page fields

    • Improved styling of header on organization overview page

    • Fixed various bugs for the worldmap widget. The bug fixes may cause your world map marks to look different that previously, but should now work as intended and correcting it should be as simple as tweeking the style parameters.

    • The list of recent queries on the search page now has headers with the date the query was run.

    • Added ability to set organization usage limits manually for cases where automatic synchronization is not possible.

    • Automatically reduce the precision of world maps when they exceed a certain size limit

    • Fixed an issue for Firefox 78.10.1 ESR where the event list and event distribution chart would not be scrollable and resize incorrectly.

    • The Humio frontend no longer sends the Humio-Query-Session header to the backend, since it is no longer used.

    • Fixed an issue where optimizeAndSaveQueryCoordinationPartitions could attempt to save a partitioning table to global with gaps in the partition list. This caused queries to fail, and repeated logging of a validation error.

    • The event distribution chart would sometimes show a bucket span reported in milliseconds instead of a more appropriate unit, when those milliseconds did not add up cleanly (e.g. "1h"). Now the bucket span can be reported with multiple units (e.g. "1h 30m")

    • Add a bit more debug logging to DataSnapshotLoader, for visibility around choice of global snapshot during boot

    • In the time selector, you can now write "24" in the time-of-day field to denote the end of the day.

    • Debug logs which relate to the invocation of an action now contain an actionInvocationId. This trace id is the same for all logs generated by the same action invocation.

    • Fixed an issue in the Query State Cache that could fail a query on time intervals with a fixed timestamp as start and now as end.

    • Fixed an OIDC group synchronization issue where users where denied access even though their group membership gave them access.

    • Included both ws and wss in csp header

    • Fixed a problem where the global consistency check would report spurious inconsistencies because of trivial differences in the underlying JSON data

    • Added a quickfix feature for reserved keywords

    • Fixed a rare issue that could fail to trigger a JVM shutdown if the Kafka digest leader loop thread became nonfunctional.

    • Slightly improve performance of id lookups in global

Bug Fixes

  • Other

    • Humio trial installations now require a trial license. To request a trial license go to getting-started

    • All users (including existing users) need to accept the privacy notice and terms and conditions <https://www.crowdstrike.com/terms-conditions/humio-self-hosted> before using Humio.