Humio Server 1.38.2 LTS (2022-06-13)
Version? | Type? | Release Date? | Availability? | End of Support | Security Updates | Upgrades From? | Config. Changes? |
---|---|---|---|---|---|---|---|
1.38.2 | LTS | 2022-06-13 | Cloud | 2023-03-31 | No | 1.26.0 | No |
Hide file hashes
JAR Checksum | Value |
---|---|
MD5 | c00de7af24633422654b3d16a764d753 |
SHA1 | 6c3043c27e5c7b3c7353f0f0e5e3e5b876319314 |
SHA256 | 6770856e5dcf19eee5384eecc40617fed15d92e2c2872ff7432f63bf43867c4a |
SHA512 | 7660d46ca1700336ce6fd2390e4b6de5b15963693499a6313513ff63ee9cedb6f99e1f595465ae3b1c420d0ba9b4626abe0ba81450f3bd7e92d528b0b1f51c6d |
Docker Image | SHA256 Checksum |
---|---|
humio | 1290b8e98ae3553b092879867a433077a1eb7ff626c989d01d14f71218644072 |
humio-core | 4a9c5aa23b7842034e34dda4aaffcb12f6f23a8e1c2cf04933b44a8cdafbe74d |
kafka | 04d14b84378ac9f6787af1b8477a0d2cbd6979da283bde177470d1af85a01637 |
zookeeper | 46aa8bbcaa2c64cfa7afdb6e07df0783658b4983a6727ca6670989364e687477 |
Download: https://repo.humio.com/repository/maven-releases/com/humio/server/1.38.2/server-1.38.2.tar.gz
These notes include entries from the following previous releases: 1.38.0, 1.38.1
Updated dependencies with security fixes and weakness.
New features and improvements
Falcon Data Replicator
Improved performance of FDRJob.
UI Changes
Minor UX improvements (ie. accessibility) on the queries panel.
On the time, bar and pie charts you can hold the
ALT
/OPTION
key to display long legend titles.When changing focus inside a dialog with the keyboard, the focus will no longer move outside the dialog while it is open.
Added a quick-fix for unknown escape sequences in the search field.
When using the table visualisation in dark mode, empty table cells are now clearly discernible.
First row entry in the statistics table on the repo page is now a table header and added hidden content to the empty table header in the new view page.
Added a warning for unknown escape sequences in the search field.
Hover information in the search field is shown despite an overlapping warning.
Reworked the hover message layout and changed the hover information on text (in the search field).
Better accessibility for queries panel. You can now tab to focus individual queries, and open a details panel. From here you can also access all actions in the details panel by tabbing.
Added a quick-fix to convert non-ASCII quotes to ASCII quotes in the search field.
Fixed a bug where the Package Marketplace would redirect to unsupported package versions on older Humio instances.
Hover over parameter names and arguments in the search field now includes the default value.
The Cluster Nodes table has been redesigned to allow for easier overview and copying the version-number.
Fixed an issue where queries with
tail()
would behave in an unexpected manner when an event is focused.The bar and pie charts now support holding the SHIFT key to display unformatted numeric values.
Visually hidden clipboard field is now hidden for assistive technologies/keyboard users.
The search page now has focus states on the Language Syntax, Event List Widget and buttons.
Pop-ups and drop-downs will now close automatically when focus leaves them.
GraphQL API
The
PERMISSION_MODEL_MODE
config option has been removed. All graphql related schema has also been removed.Fixed a bug in the response from calling the installPackageFromZip GraphQL mutation. Previously, the response type exposed a deprecated clientmutationid that could not be selected. Also now if form fields are missing they are properly reported in the response.
Deprecates the ReadContents view action, in favor of ReadEvents. This also means ReadEvents has been undeprecated, as we have slightly changed how we consider read rights, and want the action names to match this.
Configuration
The Property
inter.broker.protocol.version
inkafka.properties
now defaults to 2.4 if not specified. Users upgrading Kafka can either setinter.broker.protocol.version
manually inkafka.properties
, or passDEFAULT_INTER_BROKER_PROTOCOL_VERSION
as an environment variable to Docker when launching the container. Please follow Kafka's upgrade guidelines when upgrading a Kafka cluster to avoid data loss https://kafka.apache.org/documentation/#upgrade_3_1_0.Reduce default value of
INGESTQUEUE_COMPRESSION_LEVEL
, the ingest queue compression level from 1 to 0. This reduces time spent compressing before inserting into the ingest queue by roughly 4x at the expense of a 10-20% increase in size required in Kafka for the ingest queue topic.Added new configuration
NATIVE_FALLOCATE_SUPPORT
(defaulttrue
) to allow turning off the use offallocate
andftruncate
internally.Added config
RDNS_DEFAULT_SERVER
for specifying what DNS server is the default for therdns
query function.Added new settings for how uploads to bucket storage are validated. In the case that validation with etags are not available, content length can be used instead.
When Kafka topic configuration is managed by Humio (default true) set
max.message.bytes
on the topics to the value of ConfigTOPIC_MAX_MESSAGE_BYTES
, default is 8388608 (8 MB). Minimum value is 2 MB.Added new configuration
NATIVE_FADVICE_SUPPORT
(defaulttrue
) to allow turning off the use of fadvice internally.Added config
IP_FILTER_RDNS
for specifying what IP addresses can be queried using therdns
query function.Added config
IP_FILTER_RDNS_SERVER
for specifying what DNS servers can be allowed in therdns()
query function.Added the config
CORS_ALLOWED_ORIGINS
a comma separated list for CORS allowed origins, default allows all origins.Fixed a bug where
TLS_KEYSTORE_TYPE
andTLS_TRUSTSTORE_TYPE
would only recognize lower-case values.
Functions
Fixed an issue where
tail()
could produce results inconsistent with other query functions, when used in a live query.
Other
Fixed an issue with epoch and offsets not always being stripped from segments.
Ensure only a cluster leader that still holds cluster leadership can force digesters to release partition leadership. This could cause spurious reboots in clusters where leadership was under contention.
For HTTP Event Collector (HEC) the input field sourcetype is now also stored in @sourcetype.
Published new versions of the Humio Kafka Docker containers for Kafka 3.1.0.
Added a new system-level permission that allows changing usernames of users.
During identity provider configuration, it's possible to fetch SAML configuration from an endpoint.
Improved off-heap memory handling. Humio now typically uses only 1 GB on systems with 32 vCPUs, down from typically 16 GB. This leaves more memory for other processes and page cache for data.
Fixed a compatibility issue with LogStash 7.16+ and 8.0.0 when using the Elasticsearch output plugin.
Improved the performance of deletes from global.
Do not run the Global snapshot consistency check on stateless ingest nodes.
Fixed an issue where users could be shown in-development feature on the client when running a local installation of Humio.
Fixed a bug in the Sankey chart such that it now updates on updated query results.
Added tombstoning to uploaded files, which helps with avoiding data loss.
Allow cluster managers access to settings for personal sandboxes and to block and kill queries in them.
Fixed an issue where top(max) could throw an exception when given values large enough to be represented as positive infinity.
Fixed an issue where live queries would sometimes double-count parts of the historic data.
Warn at startup if
CORES
>AvailableProcessorCount
as seen by the JVM.Fixed a bug where the
button on the Fields panel would do nothingFixed an issue where queries of the form #someTagField != someValue ... would sometimes produce incorrect results.
Fixed a bug where providing a bad view/repository name when blocking queries would block the query in all views and repositories.
Fixed a compatibility issue with FileBeat 8.0.0.
Fixed several issues where users could add invalid query filters via the
context button after selecting text in the Event List.Fixed an ingest bug where under some circumstances we would reverse the order of events in a batch.
During Digest startup, abort fetching segments from other nodes if the assigned partition set changes while fetching.
Fixed an issue where negated functions could lose their negation.
Fixed an issue where
percentile()
would crash on inputs larger than ~1.76e308.Previously a package could be updated with another package with the same name and version, but with different content. This is no longer allowed, and any attempt do so will be rejected and fail.
The Kafka client has been upgraded to 3.1.0 from 2.8.1. 3.1.0 enables the idempotent producer by default, which implies acks=all. Clusters that set acknowledgements to a different number via
EXTRA_KAFKA_CONFIGS_FILE
should update their config to also specifyenable.idempotence=false
.LSP warnings don't crash queries any more.
Ensure a digester can only acquire or release partition leadership if no other digester has leadership of that partition. This could cause spurious reboots if digester leadership became contended.
Fixed in this release
Security
Updated dependencies to fix vulnerabilities to CVE-2021-22573.
Summary
Updated java script dependencies to fix vulnerabilities.
Updated java script dependencies to fix vulnerabilities.
Updated dependencies to Jackson to fix a vulnerability.
Other
Use latest version of Java 1.13 on Docker image.
Use latest version of Alpine on Docker image.