Change logs for Rudder 6.1

Rudder 6.1 is currently a maintained version of Rudder.

This page provides a summary of changes for each version. Previous beta

[Private] Rudder 6.1.16 (2021-09-03)

Changes

This version is only available for extended support subscription

Packaging

  • Optimize ldap binaries with -O2 (#19648)

Bug fixes

Packaging

  • Fixed: Update openssl to 1.1.1l (#19854)

  • Fixed: Fail on elm build error (#19689)

Documentation

  • Fixed: Document that a "rudder agent server-keys-reset" is necessary to move a node to another policy server (#19761)

  • Fixed: Wrong procedure for import of configuration (#19712)

System integration

  • Fixed: Git error when deleting a node or archiving everything, and very slow git (#19398)

  • Fixed: Rudder fails to stop on boot error (#19567)

Miscellaneous

  • Fixed: Error about cfengine key when deleting a node (#19571)

  • Fixed: NoSuchFileException: /var/rudder/policy-generation-info/node-configuration-hashes.json (#19589)

Relay server or API

  • Fixed: Data race in crossbeam-deque (#19833)

  • Fixed: Relayd deadlocks when trying to forward a shared-file (#19547)

  • Fixed: Prevent race condition in relayd tests (#19569)

Architecture - Internal libs

  • Fixed: RunNuCommandTest fails with timeout on CI (#19828)

Security

  • Fixed: Two vulnerabilities in hyper (#19731)

Web - Nodes & inventories

  • Fixed: Incorrect pattern matching leads to error in inventory parsing (#19632)

Web - Config management

  • Fixed: It is impossible to read properties with a read-only account (#19631)

  • Fixed: Can’t access filesystem type from group criteria (#19559)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Gaëtan Chagneau

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

[Private] Rudder 6.1.15 (2021-07-20)

Changes

This version is only available for extended support subscription

Bug fixes

Miscellaneous

  • Fixed: Or selector for property Name=Value selector returns 0 elements (#19538)

Documentation

  • Fixed: Correctly name LICENSES folder in repo (#19535)

Security

  • Fixed: CVE in jsonpath dependency (#19530)

Release notes

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

[Private] Rudder 6.1.14 (2021-07-09)

Changes

This version is only available for extended support subscription

Packaging

  • Add ci checks for packages (#19362)

  • Improve pylint config and add formatter to rudder-pkg (#19441)

  • rudder-pkg test should use python3 (#19405)

  • Backport typos checks to 6.1 (#19359)

  • Clean workspace at the end of Rust builds (#19246)

  • Clean workspace at the end of Rust builds (#19246)

  • Add ci check for techniques (#19355)

  • Add ci checks on rudder-agent repo (#19354)

Documentation

  • Add ci check for typos in docs (#19360)

Bug fixes

Agent

  • Fixed: rudder-agent-postinst fails in 7.0 while closing fd (#19429)

  • Fixed: Rudder agent check should check if certificate matches private key (#19392)

Packaging

  • Fixed: Broken agent postinst script (#19406)

  • Fixed: Broken short hostname in agent certificate (#19447)

  • Fixed: Api doc publish does not require docs label (#19408)

Documentation

  • Fixed: Remove wrong doc about services passwords (#19493)

  • Fixed: Fix docs about HTTPS reporting in non-compliant mode (#19437)

  • Fixed: Update Ansible integration link to Rudder inventory script (#19420)

  • Fixed: Document minimum version of JDK (8u92) (#19280)

  • Fixed: Missing 'settings' layer in the allowed_networks API doc (#19502)

  • Fixed: Add name to LDAP pool to help debugging (#19284)

Security

  • Fixed: Lack of HTML escaping in nodes list (#19456)

  • Fixed: Vulnerability in spring-security (#19503)

  • Fixed: Enforce stricter restriction on authorized node id and hostname (#19457)

  • Fixed: Command injection in plugins repository file names (#19442)

  • Fixed: CVE in spring dependency (#19407)

  • Fixed: Update snakeyaml dependency for security (#19400)

  • Fixed: rudder.auth.admin.pass should be stored in bcrypt format (#19308)

  • Fixed: Ignore security alert for unused js embeded in scala lib (#19272)

Performance and scalability

  • Fixed: Inefficient comparision of strings in Rudder (#19467)

  • Fixed: Improve NodeInfo cache (#19399)

  • Fixed: Move use of cache outside of semaphore in NodeInfoService (#19396)

  • Fixed: Semaphore on Nodeinfoservice is not working (#19351)

Relay server or API

  • Fixed: Prevent parameter option injection in remote run (#19455)

  • Fixed: relayd on relays fails to retry inventories upload (#19375)

System techniques

  • Fixed: Missing cleanup of /var/rudder/reports/failed (#19435)

Web - Config management

  • Fixed: Inventory with updated properties doesn’t always start a policy generation (#19414)

  • Fixed: Semaphore in APIAccountRepository,GitArchiverUtils and maybe PolicyServerManagementService are not semaphoring (#19363)

Web - Nodes & inventories

  • Fixed: When a node is totally deleted, cache in NodeInfoService can’t know about it (#19394)

  • Fixed: In inventory, if there are two "rudder" tag, uuid are concatenated (#19305)

  • Fixed: Error when processing old inventories with davfs temporary files (#19268)

API

  • Fixed: Info API is not documented (#19395)

  • Fixed: API shows only part of the memory information (#19374)

  • Fixed: Remove reference to x-www-form-urlencoded in API commands (#19276)

System integration

  • Fixed: Confusing message when we disable non-compliant-report log (#19381)

Techniques

  • Fixed: Policy validation at the end of policy generation spends too much time evaluating things (#19477)

  • Fixed: File content always reports repair when "Replace content" is selected (#19445)

  • Fixed: Invalid reporting in file content technique (#19431)

  • Fixed: cron management doesn’t support multiline entry correctly (#19336)

  • Fixed: When configuring a comment in ssh key in technique ssh key distribution, 6 spaces are added at start of comment line (#19335)

  • Fixed: User Management technique tries to always change user gid when forcing the check of user gid everytime (#19269)

  • Fixed: Group management technique doesn’t correctly honor gid option (#19266)

CI

  • Fixed: Hardcod the output of the style test TestClassPrefix in success cases (#19404)

  • Fixed: Add typos check to CI config (#19343)

  • Fixed: Force pylint3 instead of pylint in qa-test (#19390)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Lars Koenen

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.13 (2021-05-18)

Changes

Packaging

  • Improve script linter in rudder repo (#19243)

  • Improve script linter in rudder repo (#19243)

  • Set CVSS limit for failing webapp dependency check (#19214)

  • Add maven deploy task to pipeline (#19197)

  • Add scripts to setup Rust build environements in CI (#19184)

Miscellaneous

  • Improve linter and test configuration (#19177)

Security

  • Use https repos in maven config (#19164)

Bug fixes

Generic methods - File Management

  • Fixed: The Generic Method "File copy from Rudder shared Folder" ignores Audit policy mode (#19144)

  • Fixed: Condition is ignored after "File from remote template" (#19212)

Packaging

  • Fixed: Shared file broken on upgraded servers with SELinux enabled (#19188)

  • Fixed: Update reflections to remove vulnerable guava dependency (#19216)

  • Fixed: Allow building without sccache (#19225)

  • Fixed: postinstall fails on machines with long hostname (#19185)

Web - Config management

  • Fixed: Empty /var/rudder/policy-generation-info/node-configuration-hashes.json after a policy generation that changed nothing (#19248)

  • Fixed: AUTHORIZED_NETWORKS system variable must be multivalued (#19217)

  • Fixed: Lots of files are created in /var/rudder/inventories/debug (#19171)

  • Fixed: Cannot load file browser if subfolders of the shared-folder contain dead symlinks (#19158)

Miscellaneous

  • Fixed: relay package fails to build on rhel7 (#19247)

  • Fixed: API documentation is missleading for properties (#19202)

  • Fixed: Policy generation does change technique resource files when it should not (#19222)

  • Fixed: setting a job with schedule_simple in catchup mode does not honor the schedule (#19227)

API

  • Fixed: Undocumented API rudder_verify_certificates (#19235)

  • Fixed: Missing documentation for POST allowedNetwords API (#18506)

Security

  • Fixed: Check dependence fails with NPE (#19231)

Web - UI & UX

  • Fixed: Date picker in search (last inventory) is broken (#19228)

Performance and scalability

  • Fixed: Slow computation of dynamic groups on large system (#18981)

  • Fixed: backup file are not copied correctly when the destination directory is on another FS (#19218)

  • Fixed: Put node cache info into a file in place of LDAP (#19213)

Architecture - Dependencies

  • Fixed: Some java dependencies have security warning and should be updated (#19211)

Web - Technique editor

  • Fixed: Techniques using a condition containing a variable are not canonified correctly with dsc agent (#19199)

Web - Compliance & node report

  • Fixed: Webapp tests fail if repository path contains an '@' (#19186)

Plugins management

  • Fixed: Detection of dependencies for plugin can fail if the python lib of another distrib is present (#19187)

  • Fixed: when we install a plugin, if the dependency (package manager) is not met, it still tries to install it and fails (#18999)

Agent

  • Fixed: Command "rudder agent policy-server <server ip>" return code = 1 when ok (#19157)

  • Fixed: cannot upgrade directives because curl checks certificates (#19175)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Jean Cardona

  • Lars Koenen

  • Axel Bouet

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.12 (2021-04-15)

Changes

Packaging

  • Split cargo-deny from qa-test (#19083)

Bug fixes

Packaging

  • Fixed: Update openssl to 1.1.1k (#19090)

  • Fixed: Vulnerability in relayd dependencies diesel and generic-array (#19087)

Documentation

  • Fixed: Incorrect option in pg_restore for archive (#19036)

Web - Config management

  • Fixed: Allow to put empty value in technique parameters (#19115)

Web - UI & UX

  • Fixed: Syntax helper in the parameter page is outdated (#19108)

API

  • Fixed: Add more tests for API (directives, techniques, parameters) (#19086)

  • Fixed: Missing example for server key reset (#19065)

Security

  • Fixed: Vulnerabilities in relayd hyper dependency (#18903)

Agent

  • Fixed: Typo in agent error message (#19130)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Lars Koenen

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.11 (2021-03-19)

Changes

Bug fixes

System integration

  • Fixed: Upgrade script fails in system technique update (empty commit) (#19044)

Web - Config management

  • Fixed: Cannot load file browser when shared-folder contains dead symlinks (#18200)

Web - UI & UX

  • Fixed: Custom bar and logo are not displayed in the login form while option is enabled in the Branding plugin (#19040)

Web - Technique editor

  • Fixed: Technique editor error when an class is not correctly defined (#19039)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Nicolas Ecarnot

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.10 (2021-03-18)

Release Notes

Change of behavior for empty technique parameters

Previously, when adding a new parameter to a technique in the technique editor, all directives based on this technique were still valid and used an empty value for the new parameter. This leads to unexpected behaviors, and makes adding parameters to techniques potentially dangerous.

To prevent this type of problems (in the scope of a patch release) we had to totally prevent passing empty parameters to techniques from the technique editor. This makes missing parameters a policy generation error, allowing to safely provide them to directives after modifying the source technique.

This may break existing directives that rely on an expression which evaluates to an empty value, like a property containing an empty string, or a property value with an empty default. In this case, you can pass a specific value like None or a space char to indicate an empty value, and modify the technique to handle the special case as a workaround.

We will work on a better solution in a future version, allowing to make the difference between new parameters and intentionally blank ones.

(#18832)

Policy server reload

We fixed a known issue is the way we reload the policy server (the service that distributes policies to Unix systems).

Previously, when adding a node or modifying allowed networks, a configuration reload was triggered, but it was only effective when the service became idle. On loaded Rudder servers or relays, this may totally prevent service reload, and thus prevent the new nodes from connecting.

We replaced the reload by a graceful restart mechanism which takes effect immediately. This should not cause any visible changes, except that two cf-serverd processes might be running at the same time (on handling existing connections until completion, one handling the new ones).

(#18893)

Other important fixes

  • We fixed lock issues in Rudder server logic, this should make Rudder safer and faster and thus we recommend all users to update to 6.2.3 (#18983)

  • In rare cases, the agent inventory processes could pile up, exhausting resources of the machine. This has been fixed, another important reason to update to 6.2.3 (#18832)

  • OOM exception now stops Rudder correctly with information logs either in rudder-jetty service or in webapp logs, but some JVM, especially old Java 8, still don’t log anything (#18955). As a consequence, Rudder now requires at least OpenJDK 1.8.0-92.

Changes

Packaging

  • Update embedded openssl (#18913)

Web - Config management

  • Add a settings to delay start of policy generation (#18845)

Techniques

  • Add an "upgrade only" option to the technique packageManagement (#18909)

Generic methods - File Management

  • Document usage of sys.ipv4 var in jinja (#18905)

Bug fixes

Packaging

  • Fixed: Upgrade failed from 5.0.20 to 6.1.9 on SLES (#18891)

System integration

  • Fixed: Fatal exception doesn’t cause rudder to stop anymore (#18955)

Server components

  • Fixed: After the promises generation, cf-serverd config may not be reloaded, preventing new nodes from connecting (#8351)

Agent

  • Fixed: Error logs about "Method '…​' failed in some repairs" are useless and should be at verbose level instead (#18914)

  • Fixed: Agent run schedule problem (#18846)

  • Fixed: Agent run schedule problem (#18846)

  • Fixed: Rudder Agent consumes complete Memory because of fdisk (#18832)

Documentation

  • Fixed: Update some plugin documentation (#18962)

  • Fixed: Missing licence info in pom.xml (#18978)

  • Fixed: rudder api doc doesn’t list nodes/pending (#18940)

Performance and scalability

  • Fixed: We don’t know when generation hooks takes more time than expected, massively impacting generation time (#18915)

  • Fixed: A writeLock must never be in a read lock for LDAP repo (#18983)

API

  • Fixed: Inherited node properties are not returned in API (#18959)

  • Fixed: nodes API with include managementTechnologyDetails leads to error 500 response (#18926)

Web - Nodes & inventories

  • Fixed: FileUploadBaseSizeLimitExceededException with an 10MB inventory (#19004)

  • Fixed: purge software batch sometime terminate in error without log message (#18873)

Web - Config management

  • Fixed: Missing mandatory directive parameter doesn’t fail policy generation (#18995)

  • Fixed: Missing exception details in change request update (#18900)

  • Fixed: Workflow rights are not used for rules (#18876)

Web - UI & UX

  • Fixed: Error message when editing properties in the interface (#18902)

  • Fixed: Save button moves when switching of compliance reporting mode (#18849)

Miscellaneous

  • Fixed: Error in postCommit pipeline with processor 'post_commit_inventory:pending_node_for_deleted_server' (#18899)

System techniques

  • Fixed: Rsync command for shared-files is incorrect (#18943)

Generic methods - File Management

  • Fixed: Value replacement in "File key-value present" and "File keys-values present" methods doesn’t work correctly in some cases. (#18944)

Generic methods

  • Fixed: ncf unit tests do not generate any log file (#18928)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Andras Miko

  • Anton Yakimov

  • Lars Koenen

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.9 (2021-01-28)

Changes

Bug fixes

Packaging

  • Fixed: Inventories are rejected due to missing dependency on Centos 8 (#18862)

Documentation

  • Fixed: Update windows plugin documentation (#18836)

Performance and scalability

  • Fixed: Backport new inventory priorisation, software deletion API and log correction in 6.1 (#18839)

API

  • Fixed: id parameter is ignored in rule category creation API and rule tags are lost on update (#18867)

Web - Config management

  • Fixed: Event logs are not written when fields are set to empty (ie short description) (#18856)

Plugins integration

  • Fixed: rudder package upgrade-all does not upgrade each plugin independently (#18841)

Release notes

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.8 (2021-01-19)

Changes

API

  • Add API tests for rules (#18770)

Bug fixes

Web - Maintenance

  • Fixed: Make more clear error message when several rudder.war are present (#18835)

API

  • Fixed: Broken API doc build (#18823)

  • Fixed: Clone rule API fails with "rule already exists with that id" (#18777)

Relay server or API

  • Fixed: Security advisories for relayd dependencies (#18824)

Web - Compliance & node report

  • Fixed: Error log about duplicates entries when saving node compliance levels (#18814)

Web - Nodes & inventories

  • Fixed: Accepting a node by API or UI doesn’t do the same things exactly (#18677)

Web - Config management

  • Fixed: Global parameters format is not preserved when editing (#18556)

Web - UI & UX

  • Fixed: Message on save for group must appear only when button is disabled (#18738)

  • Fixed: Markdown documentation rendering is inconsistent (#18750)

Techniques

  • Fixed: Define suse classes on sled (#18775)

Documentation

  • Fixed: Lots of methods are missing a documentation (#18724)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • I C

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.7 (2020-12-18)

Changes

Documentation

  • Add documentation about set-force-audit in audit/enforce chapter (#18707)

  • Add a link to rudder-by-example in windows doc (#12622)

Agent

  • Rudder server relay install should use the up-to-date commands and not deprecated ones (#18639)

Web - Nodes & inventories

  • API to totally erase a node everywhere (#18035)

API

  • Missing a PATCH API for allowed networks (#18508)

Architecture - Internal libs

  • Skip performance test (#18563)

Bug fixes

Packaging

  • Fixed: package cache ignores architecture (#18759)

  • Fixed: missing python3-setuptools dependency on relay on sles15 and rhel8 (#18747)

  • Fixed: agent fails to build on aix (#18624)

  • Fixed: rudder-metrics-reporting doesn’t work with 5 000 nodes (#16675)

Agent

  • Fixed: backport fix on background command execution on agent (#18732)

  • Fixed: Fix metrics-reporting script (#18568)

Plugins integration

  • Fixed: rudder_synchronize uses the wrong API to retrieve techniques (#18421)

  • Fixed: Link to plugins in Rudder interface should point directly to plugins list (#18658)

Documentation

  • Fixed: Improve documentation on disk space requirement (#18532)

  • Fixed: Correct documentation about arrray merge for node properties (#18467)

  • Fixed: Search window appears behind "dev version warning" bar (#18524)

  • Fixed: Update file from remote template doc (#18632)

  • Fixed: Doc about "Condition from variable existence" is wrong (#18458)

Relay server or API

  • Fixed: Security vulnerability in arc-swap (#18766)

  • Fixed: Too many open files in relayd when disk is full (#18437)

  • Fixed: Broken report parser on some info messages (#18497)

Web - Config management

  • Fixed: Agent run frequency must not be configurable on policy servers (#18330)

  • Fixed: We don’t know which hook timeout when it happens (#18530)

  • Fixed: If a second rollback starts when a first is processing, system group/technique may be lost (#17720)

Web - Compliance & node report

  • Fixed: Reporting error when using twice " File from local source" with parameter and without parameter in rudder 6.x (#18686)

API

  • Fixed: API ACL order is lost for users (#18664)

  • Fixed: API message when a node details is not found is extremely misleading (#18654)

  • Fixed: Bad file name in api-doc: some more errors (#18622)

  • Fixed: Typo in API doc (#18457)

Architecture - Internal libs

  • Fixed: semaphore guarding LDAP repos are created each time (#18584)

  • Fixed: If LDAP server does not support subtree deletion, we get error when entry does not exists (#18529)

  • Fixed: ifTrace/Debug/etcIsEnabled on pure logger does nothings (#18528)

Performance and scalability

  • Fixed: Batch of new nodes can overflow rudder server with inventories (#16773)

Server components

  • Fixed: Error when refusing a node (#16739)

System techniques

  • Fixed: bootstrap policies report OK if there is no server (#18748)

  • Fixed: Jinja2 UTF-8 rendering Problem (#18552)

  • Fixed: file augeas set class parameter should be path rather than lens (#18442)

Techniques

  • Fixed: ssh key distribution techniques doesn’t accept - in user login (#18449)

Generic methods

  • Fixed: Regex constraint must not contain escaped chars (#18764)

  • Fixed: ncf uses its own cfengine port instead of rudder defined one (#18704)

  • Fixed: variable iterator should accept whitespace as separator (#18562)

  • Fixed: variable from command does not always report an error when the command failed (#18512)

  • Fixed: when sum of length of parameter is larger than 1000 characters, reporting leaks too much from one method to another (#18505)

  • Fixed: techniques in audit don’t report correctly for editing values in files (#18451)

  • Fixed: Jinja2 templating fails with python 3 with unicode data (#18441)

Generic methods - File Management

  • Fixed: On sles system augtool requires a terminating break line to run a command passed via pipe (#18719)

  • Fixed: calling file_key_value_present_in_ini_section on a yum repo definition loops (#18705)

  • Fixed: Create a file from remote template generic method (#18384)

  • Fixed: Flag the file_augeas_set to stagging since the method does not work as intended (#18570)

  • Fixed: File_augeas_set method does not report as expected (#18536)

  • Fixed: Document the permissions recursive and permissions type recursive methods (#18447)

  • Fixed: Permissions recursive method uses an undefined "recursion" variable in its report string (#18446)

  • Fixed: jinja templating script uses python3 even if jinja2 is not installed in python3 but is in python2 (#18416)

Web - Technique editor

  • Fixed: Code blocks in the technique editor are not rendered correctly (#18547)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Alexander Brunhirl

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.6 (2020-10-28)

Changes

Containers

  • Reorganize dockerfiles and start documentation (#17752)

Bug fixes

System integration

  • Fixed: systemctl restart rudder-server does nothing (#18404)

  • Fixed: Intermittent failure test on certificate inventory (#18353)

Packaging

  • Fixed: Replace apache config in /opt/rudder/etc on upgrade (#18333)

Documentation

  • Fixed: USEMETHODREPORTING is missing in metadata documentation (#18427)

  • Fixed: Advise to not desinstall rudder server if possible (#17803)

  • Fixed: Add a documentation page on how to manually distribute plugin licenses (#18391)

  • Fixed: Add agent-server troubleshooting section (#18190)

  • Fixed: Broken API doc build (#18383)

Web - UI & UX

  • Fixed: Group description button should not be clickable in read_only (#17634)

  • Fixed: Broken display of error icon in menu when there is a plugin error (#18265)

Architecture - Refactoring

  • Fixed: Duplicated code from a merge #16513 (#18377)

Web - Technique editor

  • Fixed: Technique parameter description is not valid in technique.cf file (#18370)

Server components

  • Fixed: Make the group option to include the Rudder server or not in the group clearer (#18346)

API

  • Fixed: Format of lastRunDate/lastInventoryDate has changed in api response in 6.0.0 (#18337)

  • Fixed: Improve documentation on how to change a key for a node by stating that \n is mandatory around begin and end (#18336)

Security

  • Fixed: Webdav allows get on inventory and reports (#18325)

  • Fixed: Agents fail to check their policy server’s identity (#18286)

Web - Config management

  • Fixed: Missing system variable "POLICY_SERVER_KEY" (#18289)

  • Fixed: Error log about duplicates entries when saving node compliance levels (#18188)

Plugins integration

  • Fixed: rudder package throws exceptions when the connection timeouts (#18308)

Relay server or API

  • Fixed: Calling the relay-api to trigger a remote run on all nodes do an infinite loop on root server, killing it (#18303)

  • Fixed: null value in status API on simple relay (#18282)

Techniques

  • Fixed: Selecting "latest" version for package installation in techniques Packages only checks for existence (#18260)

  • Fixed: apt configuration issue - add apost-check to validate generated line (#13741)

System techniques

  • Fixed: Incorrect configuration when the database is not hosted on the rudder server itself (#18279)

Agent

  • Fixed: commands from error message are launched due to backticks (#18174)

  • Fixed: rudder-agent check sleep and process pile-up in 6.0 (#18339)

Technique editor - UI/UX

  • Fixed: Alert user if they named a technique with a name that already exists in provided techniques (#18098)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Florian Heigl

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.5 (2020-10-07)

Changes

Documentation

  • Add a page for technical stack doc (#18223)

  • Add svg logos to the repo (#18232)

Bug fixes

Documentation

  • Fixed: Document that JDK 15 is not supported because of nashorn removing (#18214)

  • Fixed: Missing menu link to "contribute" (#18173)

  • Fixed: compatible OS typo (#18171)

Web - Config management

  • Fixed: Array as root json are seens as string (#18285)

  • Fixed: Uncommitted rudder_reporting.cf when creating a technique with a condition (#18266)

Relay server or API

  • Fixed: Broken url for local api in relay api doc (#18283)

  • Fixed: relayd should accept to listen on an hostname and not only an IP (#18269)

System techniques

  • Fixed: Webapp does not regerate policies when webdav password is changed, breaking inventories after 5.0 → 6.0 upgrade (#17250)

  • Fixed: In HTTPS+Syslog, syslog config is not removed if agent supports https (#18222)

Web - Nodes & inventories

  • Fixed: Optionally accept node with same hostname as an already accepted one (#18272)

API

  • Fixed: Resources API error for subcategories (#18259)

Web - Technique editor

  • Fixed: It should be forbidden to create a user technique with the same name as n existing technique (#15024)

Performance and scalability

  • Fixed: Possible deadlock when connection pool is full (#18224)

System integration

  • Fixed: Fiber error when postgres is unavaible breaks generation forever (#18227)

Technique editor - API

  • Fixed: Method with empty curly braces are not recognized as valid (#18268)

Generic methods - Package Management

  • Fixed: Zypper module does not work on python2 (#18143)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Victor Héry

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.4 (2020-09-16)

Changes

Documentation

  • Migrate general questions from the faq into the doc (#18117)

  • Improve docs consistency (#18109)

Bug fixes

System integration

  • Fixed: LDAP index inconsistency on update cause error with allowed networks (#17998)

  • Fixed: Logs from all nodes are always reported in all.log (#18205)

  • Fixed: directive list tells you to upgrade the server if it didn’t yet connect. (#16663)

Packaging

  • Fixed: if configuration files are replaced during upgrade, rudder-upgrade fails on both postgresql checks and plugins disabling (#18139)

Documentation

  • Fixed: Unclear upgrade nodes about 5.0.16+ (#18212)

  • Fixed: Improve policy ordering doc (#17903)

  • Fixed: Move cf-serverd verbosity config into an appropriate section (#18104)

  • Fixed: The documentation should mention more obviously that upgrades from 4.3 to 6.0 are not supported (#17982)

Web - Config management

  • Fixed: Groups are not committed in configuration-repository on modification (#18207)

  • Fixed: SUSE is spelled SuSE in the webapp (#16319)

  • Fixed: Techniques with conditions on tasks with very long parameters report "missing" parts on the dashboard (#18100)

  • Fixed: "error: Only functions returning scalars can be used as arguments" in verbose output (#18101)

Web - Technique editor

  • Fixed: Resources are lost during an upgrade from 6.0 to 6.1 (#18192)

Web - Nodes & inventories

  • Fixed: Group query with OR composition and searching for Node properties return all nodes in place of none (#18172)

  • Fixed: Group query with OR composition and searching for Node properties return less results than expected (#18133)

API

  • Fixed: "id" setting is silently ignored for new group created through the REST API. (#10216)

  • Fixed: Rudder directive API seem to take key-value order into account in json POST request (#14934)

Miscellaneous

  • Fixed: orchestrateur-5 (root) inventory are send to demo/snapshot/dev server, breaking their inventory preventing to use them (#18130)

  • Fixed: Error displayed when switching from full access to read only (#18052)

Performance and scalability

  • Fixed: duplicate parsing for hostname in inventory processing (#18097)

Techniques

  • Fixed: Technique shared folder on WIndows use invalid md5 hash instead of sha256 (#18176)

  • Fixed: No flush key report on sshKeyDistribution when there is not yet an ssh key configured (#16516)

  • Fixed: Technique resources should not be committed on server upgrade (#18213)

Agent

  • Fixed: Unparsable techniques when there are error in cf-promises (cf-promises outputs error in stdout) (#18178)

Generic methods

  • Fixed: Method shared folder should not state that you can use md5 as hash method (#18177)

  • Fixed: File from local source with check: diff error (#17303)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Florian Heigl

  • Alexander Brunhirl

  • Dmitry Svyatogorov

  • PB LO

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.3 (2020-08-04)

Changes

Bug fixes

Web - Config management

  • Fixed: Broken technique resources in 6.1.2 (#18085)

Release notes

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.2 (2020-07-31)

Changes

Packaging

  • Solaris package script should take a version as an argument (#17988)

  • Preliminary support for macosx (#17847)

Documentation

  • Add a rudder by example for group properties (#18061)

  • Optimize images in the doc (#18024)

  • CVE plugin api documentation (#17940)

API

  • Add request examples to API doc (#18021)

Rudder language

  • replace var keyword by let (#17937)

Agent

  • Add debug information when sending reports (#17981)

  • Add an option to exit with an error code if here was an application error (#17689)

Generic methods

  • Add a method for osquery-based audit (#17651)

Bug fixes

Packaging

  • Fixed: Broken relay postinst due to missing shared-folder (#18070)

  • Fixed: When rudder-webapp postinstall fails, everything fails (#18045)

  • Fixed: rudder-reports-postinst errors during upgrade from 6.1.0 to 6.1.1 (#18014)

  • Fixed: solaris package always downloads 6.0 (#18004)

  • Fixed: All package scripts should be set -e (#17687)

Security

  • Fixed: Rudder app and docs should not be indexable by search engines (#18019)

Web - Nodes & inventories

  • Fixed: In SLES 15, SP is view as part of rudder agent version (#17736)

  • Fixed: Historization of node count reports inverts pending and accepted (#17856)

  • Fixed: Number of groups on the dashboard in incorrect (#17202)

Relay server or API

  • Fixed: SELinux perms on relay forbid to retrieve files from shared-folder (Windows DSC) (#17770)

Documentation

  • Fixed: Update links to ansible inventory plugin (#18080)

  • Fixed: Add DSC based node in the network flow schema in the documentation (#18041)

  • Fixed: http in place of https in install doc for zypper subscription repo (#18055)

  • Fixed: Fix doc build after nodejs upgrade (#18056)

  • Fixed: Documentation is wrong about default values for data retention (#17935)

  • Fixed: Broken formatting in methods doc (#17999)

API

  • Fixed: Generic method are not sorted by alpha-num order (#18044)

  • Fixed: Fix swagger warnings in api doc (#18020)

System integration

  • Fixed: Test fails because takes too long (#18050)

  • Fixed: When rudder agent health stops all service because there aren’t any space left, if should state it in the log (and which fs) (#17472)

Web - Config management

  • Fixed: Use node properties as path for node properties (#18025)

  • Fixed: na reports for Windows techniques on Linux generate broken condition (#18027)

  • Fixed: Missing interpolator in error message for allowed networks (#17967)

  • Fixed: Incorrect error message when a resource is not found (#17944)

Rudder language

  • Fixed: compiler error is not helpful in certain cases (#17992)

  • Fixed: testing loop should report an error when rudderc does (#17950)

  • Fixed: Error during translate in CIS techniques (#17910)

  • Fixed: rudderc is way too slow (#17912)

Web - Technique editor

  • Fixed: Remove technique from technique tree when deleting technique in the technique editor (#18015)

  • Fixed: Resource automatically added on newly created technique - since 6.1 upgrade (#17977)

  • Fixed: Long error message are not displayed in technique editor (#18046)

  • Fixed: Keep resource information from api when saving technique (#17881)

Web - UI & UX

  • Fixed: Cannot set Compliance reporting mode on "Non compliant only" in settings tab (#16402)

  • Fixed: Error when trying to enable a disabled Technique in the technique tree (#17906)

Techniques

  • Fixed: Description of Technique is partially garbled because of markdown rendering (#17942)

System techniques

  • Fixed: If gzip is not installed the inventory is not sent (#17891)

  • Fixed: On debian, package with new dependencies is not upgraded to latest available version (#17917)

Agent

  • Fixed: hostname command may not exist (#18018)

  • Fixed: grep -E doesn’t work on solaris (#17932)

  • Fixed: When a node is in bootstrap mode there is no understandable way to unlock it from this state (#16825)

  • Fixed: rudder agent health fails on aix (#17933)

  • Fixed: rudder agent factory reset fails on solaris (#17930)

  • Fixed: "rudder agent check" always raises errors (#17928)

  • Fixed: rudder agent check fails on macosx (#17894)

Technique editor - UI/UX

  • Fixed: Change cursor to pointer when we choose an action (#17707)

  • Fixed: Add left margin to DSC icon in generic method name (#17706)

  • Fixed: Add margin for OS input condition in generic method (#17756)

  • Fixed: CSS problem on OS condition for generic methods (#17877)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Nicolas Ecarnot

  • Frédéric COSTANT

  • Bas B

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.1 (2020-07-03)

Changes

Documentation

  • Add a Rudder by example for using Rudder server/relays as file mirror (for repos) (#17858)

  • Add docs about configuration-repository, how to sync it and what can be modified or not from outside (#17865)

  • Add doc about network resiliency (#17880)

  • Improve documentation about communication security (#17834)

  • Add a rudder-by-example for git sync in shared-files (#17840)

  • Document how to use custom certificates (#14206)

  • Document how to use custom certificates (#14206)

  • Missing uninstall doc for agent (#17790)

  • Add screenshots for technique editor with annotation in get started documentation (#17781)

Web - UI & UX

  • Inconsistent fonts in technical logs (#16032)

Rudder language

  • add doc about logs and generated techniques (#17738)

Techniques

Bug fixes

Web - Technique editor

  • Fixed: Can’t access on technique editor (#17883)

  • Fixed: "unsaved changed" technique editor pop-up appears when not needed (#17750)

  • Fixed: Resource path of a technique with a category different thant default category are wrong (#17747)

  • Fixed: When removing and adding a new method, the save button is disabled (#17776)

Packaging

  • Fixed: SLES12 upgrade error 6.0 to 6.1 (#17873)

  • Fixed: some errors when upgrading from 5.0.18nightly to 6.1-nightly on debian9 and 10 (#17644)

  • Fixed: Optimize elm application (#17888)

  • Fixed: shared-files acls are incorrect on relays, preventing the windows nodes from downloading them (#17802)

Documentation

  • Fixed: Add support of Ubuntu 20 in doc (#17874)

  • Fixed: Typo in network resiliency documentation (#17892)

  • Fixed: Add trigger agent run feature from UI in get started (#17855)

  • Fixed: remove pg_repack from documentation (#17839)

  • Fixed: Update screenshots in usage doc section (#17843)

  • Fixed: Missing doc about root-relay communication flows (#17837)

  • Fixed: Missing ressources feature in technique editor doc (#17787)

  • Fixed: Broken link in apply advanced configuration get started doc (#17792)

  • Fixed: Missing markdown support for description in technique editor doc (#17788)

  • Fixed: Missing parameters feature in technique editor doc (#17786)

  • Fixed: Add link to further information in get started section (#17771)

  • Fixed: Replace deprecated generic methods in technique editor documentation usage (#17768)

  • Fixed: Documentation should state that SSD is recommended for more than 50 nodes (#17761)

  • Fixed: Refresh screenshots for technique editor (#17746)

Miscellaneous

  • Fixed: Typos in directive documentation (#17762)

  • Fixed: Typos in technique editor documentation (#17760)

Relay server or API

  • Fixed: Shared-files correction in postinst must be recursive (#17882)

Rudder language

  • Fixed: make use of parameters instead of args (#17885)

  • Fixed: fix nasty random generation failure (#17811)

  • Fixed: handle techniques location path properly (#17737)

  • Fixed: error about rudder-lang in logs (#17724)

Web - Config management

  • Fixed: Wrong error message when policy server of a Node is not found during generation (#17851)

  • Fixed: Trying to add a group property with change request plugin enabled lead to blank property (#17804)

  • Fixed: Upgrading from rudder 5.0 to 6.0 leads to distributePolicy not available error (#17836)

  • Fixed: Updating property merge them in place of replacing them (#17830)

  • Fixed: When there is a serialisation error for parameter, their edit screen is unavaible (#17702)

  • Fixed: Duplicate category name error when saving a new user technique (#17774)

  • Fixed: Uncommitted generic_methods.json in configuration repo (#17775)

  • Fixed: Auto-archive gitRepo.git failure warning is not actionnable, should be info or debug (#17777)

  • Fixed: description of global parameter "rudder" is misleading (#17700)

API

  • Fixed: Missing doc for group properties and json global parameters (#17818)

  • Fixed: Group API compatibility broken as it now always expects "properties" (#17815)

  • Fixed: 'policyMode' vs. 'policy' in node settings API (#17817)

Web - Compliance & node report

  • Fixed: Node details summary compliance contains system rules (#17660)

Web - UI & UX

  • Fixed: user with read_only right has button that allows write actions (#17725)

  • Fixed: Select node state in settings is confusiing for read_only user (#17627)

  • Fixed: when we create a group, we should go directly to the criteria page (#17678)

  • Fixed: Content in header of plugin page overflows when custom from branding is activate (#17731)

Performance and scalability

  • Fixed: table nodes contains on entry per node per generation, which is too much (#17778)

  • Fixed: table nodes contains on entry per node per generation, which is too much (#17778)

Techniques

  • Fixed: clockConfiguration is not compatible with systemd-based systems (#6772)

System techniques

  • Fixed: Rudder 6 check postgresql process failes (#17145)

  • Fixed: error when installing rudder server root on debian 9 - 6.1 (#17765)

  • Fixed: Initial promises warning during agent setup (#17722)

Technique editor - UI/UX

  • Fixed: Save button is disable when a technique is imported (#17897)

  • Fixed: Gear icon in save button always displayed (#17745)

Technique editor - Techniques

  • Fixed: Importing technique leads to a blocked editor (#17793)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Tristan Le Chanony

  • Alexander Brunhirl

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.0 (2020-06-17)

Changes

Miscellaneous

  • Add a 'Rudder by example' best practice use case (#17715)

  • Add a 'Rudder by example' best practice use case (#17715)

  • Add a 'Rudder by example' best practice use case (#17715)

  • Add a 'Rudder by example' best practice use case (#17715)

Documentation

  • Prepare doc for final 6.1 release (#17648)

Containers

  • Dockerize Rudder Relay Server (#17732)

  • Dockerize Rudder Relay Server (#17732)

Bug fixes

Packaging

  • Fixed: systemd detection fails when init has parameters (#17717)

Documentation

  • Fixed: broken doc build because of spaces in file name (#17751)

  • Fixed: Broken links in rudder-by-example (#17735)

  • Fixed: Missing documentation for overriding jetty system properties in start.ini (#17719)

  • Fixed: Document access to ipv4[eth0] system variable (#17705)

  • Fixed: Add a rudder-by-example for rudder-agent package update (#17686)

Technique editor - UI/UX

  • Fixed: Filter on agent type also filter generic methods in technique (#17749)

Release notes

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.0.rc4 (2020-06-11)

Changes

Bug fixes

Packaging

  • Fixed: Rudder-agent needs libxml-treepp-perl dependency to work on minimal Debian (#17699)

  • Fixed: /opt/rudder/etc/rudder-pkg comes with the wrong permissions (#17695)

  • Fixed: All package script should be set -e (#17687)

  • Fixed: Upgrade to 6.1 fails on httpd start beacause of old ncf conf is still present on rpm (#17681)

  • Fixed: gpg import error in rudder-pkg (#17692)

  • Fixed: package key is not trusted by rudder-pkg (#17675)

  • Fixed: Error in technique editor just after install: No such file or directory: '/var/rudder/configuration-repository/ncf/generic_methods.json' (#17573)

System integration

  • Fixed: An error in during upgrade to 6.1 breaks rudder upgrade and everything (#17659)

  • Fixed: Bad init value for param rudder_file_edit_header (#17701)

  • Fixed: Cannot download licenses if there is a trailing slash in rudder package config url (#17673)

Web - Config management

  • Fixed: Error in technique editor "could not get generic method metadata" after upgrade from 6.0 (#17683)

Web - Compliance & node report

  • Fixed: Global parameter "string" doesn’t escape json (#17674)

API

  • Fixed: API doc build silently fails (#17656)

Plugins integration

  • Fixed: Improve rudder package error message when an update is needed (#17626)

Technique editor - UI/UX

  • Fixed: Deprecated method filter is broken (#17647)

  • Fixed: Still some technique diverge popup after you added a new method (#17654)

Generic methods

  • Fixed: Syntax error in shared_file_to_node (#17667)

  • Fixed: no reports from sharedfile to node if file is already there (#17661)

Web - Technique editor

  • Fixed: The technique editor struggles to display long line as component (#17392)

Release notes

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.0.rc3 (2020-06-08)

Changes

Miscellaneous

  • Dockerizing Rudder agent (#17604)

  • Dockerizing Rudder agent (#17604)

  • Dockerizing Rudder agent (#17604)

  • Dockerizing Rudder agent (#17604)

  • Dockerizing Rudder agent (#17604)

Rudder language

  • Improve rudder-lang doc (#16944)

Bug fixes

Packaging

  • Fixed: error at install of rudder 6.1 on debian9 (#17636)

  • Fixed: AIX builds fails on invalid or condition (#17635)

  • Fixed: Agent uses "cmp" command but it is not a dependency (#17606)

  • Fixed: The webapp is unable to start after a fresh install (#17591)

  • Fixed: ruder package command fails to run in automated setup (#17645)

  • Fixed: ruder package command fails to run in automated setup (#17645)

Documentation

  • Fixed: Update documentation about variable (condition) (#17629)

Web - UI & UX

  • Fixed: Clicking on the warning icon is node list should lead to system status page (#17646)

  • Fixed: Group value should only display value for that element in main table (#17625)

  • Fixed: Plugin expiration warning misalignement problem (#17619)

  • Fixed: Overridden pop-up top is missing (#17623)

  • Fixed: tooltip for node properties does not show (#17550)

  • Fixed: when searching nodes, on the search page, the checkbox "Include Rudder server components" if briefly checked and unchecked (#17575)

  • Fixed: Rudder logo appears in remote-run error message (#17556)

Security

  • Fixed: description in directives and groups are evaluated, and we can inject whatever we want (#17641)

Rudder language

  • Fixed: doc conflicting with tests (#17649)

  • Fixed: fix doc configuration files (#17614)

Web - Compliance & node report

  • Fixed: text explaining hierarchy of groups always shows up for system group (#17638)

  • Fixed: policy generation fails if we put a " in the directive name (#17628)

Plugins integration

  • Fixed: rudder package logs are inconsistent (#17600)

Web - Nodes & inventories

  • Fixed: compilation error in 6.0 because of absence of typo in Inconsistency (#17605)

  • Fixed: no policy generation after accepting many nodes in 6.1 (#17594)

Web - Maintenance

  • Fixed: NPE when agent key is malformed (#17597)

Web - Config management

  • Fixed: when a policy generation is triggered by a dynamic group update, it states in event logs "Manually update policies" (#17595)

Web - Technique editor

  • Fixed: User with some to access technique editor api (#17596)

System techniques

  • Fixed: system techniques start rudder-relayd before setting postgresql passwords (#17612)

  • Fixed: inventory should be copied to /var/rudder/inventories/accepted-nodes-updates rather than uploaded on root server (#17616)

Agent

  • Fixed: error at install of rudder 6.1 server on debian 9 (#17637)

  • Fixed: Warning message in relayd logs when reloading (#17630)

  • Fixed: rudder server root tries to set initial promises while they are not installed (#17611)

  • Fixed: possible use of undefined variable in lib/common.sh (#17610)

Release notes

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.0.rc2 (2020-06-04)

Changes

Rudder language

  • refactoring io usage and configuration (#17403)

Plugins integration

  • Rudder package list should display plugin status (#16793)

Bug fixes

Packaging

  • Fixed: Apache reload error during root server setup (#17565)

  • Fixed: apache acl are still empty after installation (#17564)

  • Fixed: rudder init syntax error (#17560)

  • Fixed: postgresl client in relayd tries to read krb conf (#17518)

  • Fixed: First inventory fails when installing root server (#17567)

Relay server or API

  • Fixed: old rudder-node-to-relay fails to redirect to new one (#17566)

Web - Config management

  • Fixed: Multiple problems with inherited (group, node) properties (#17547)

  • Fixed: Property error message for group with parent group (#17549)

  • Fixed: error in webapp log after upgrade to 6.1-rc1 (#17555)

Web - Technique editor

  • Fixed: Allow to regenerate generic methods when there is a new one (#17568)

  • Fixed: No techniques in technique editor after upgrade from 5.0.18 to 6.1-rc1 on debian9 (#17572)

  • Fixed: GM documentation is not rendered anymore (#17563)

Rudder language

  • Fixed: documentation quick update (#17583)

Web - UI & UX

  • Fixed: Plugin names are not displayed (#17544)

  • Fixed: Broken appearance of hover details in node details (#17553)

  • Fixed: Group property inherited tooltip is not visible (#17546)

System techniques

  • Fixed: rudder agent reset fails on root server (#17580)

Agent

  • Fixed: rudder agent run should not always return ok when there is no log (#17571)

  • Fixed: rudder agent stop displays the list of service event when quiet is required (#17561)

Release notes

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.0.rc1 (2020-05-28)

Changes

Documentation

  • Add a banner on the docs of non-released/deprecated versions (#17485)

  • Small fixes in variables page (#17353)

  • Add Branding endpoints in API documentation (#17437)

Packaging

  • Strip rust release binaries (#14697)

  • Use cargo-deny to replace cargo-audit (#17308)

Architecture - Internal libs

  • Add a feature switch for rudder-lang test loop (#17412)

Rudder language

  • improve documentation coverage (#17148)

  • update reserved keywords list (#17355)

  • add contributing documentation (#17289)

Relay server or API

  • Update relayd dependencies to remove unmaintained "spin" crate (#17384)

Web - UI & UX

  • Improve notification display in Rudder (#17383)

API

  • Missing info about if a node is a relay in API and capabilities need to to in management technologie (#17367)

Generic methods

  • move all abort bundle in a dedicated lib file under 20_cfe_basics (#17519)

  • Allow forcing a "None" component in reporting (#17095)

Generic methods - File Management

  • Improve Augeas generic methods documentation (#17464)

  • Improve Augeas generic methods documentation (#17464)

Technique editor - UI/UX

  • Keep the original name of a Generic Method displayed (#16937)

Bug fixes

Packaging

  • Fixed: when upgrading to 6.1, ldap indexing should be normal and not quick (#17532)

  • Fixed: Missing context on relayd binary on CentOS7 (#17522)

  • Fixed: Apache must be restarted after acl change in rudder-init (#17515)

  • Fixed: apache acl are empty after installation (#17495)

  • Fixed: #17395 should not be in 6.1 (#17474)

  • Fixed: Warn users if scale-out-relay plugin is not installed when promoting node through script (#17429)

  • Fixed: cf-agent writes a lot of times to cf_lock db (#17336)

  • Fixed: Python scripts on rhel7 are set to use python3 which is not available (#17433)

  • Fixed: Missing dependencies between server services (#17402)

  • Fixed: Error while upgrading rudder from 6.0.5 to 6.1 nightly on debian (#17397)

  • Fixed: SELinux policy for technique editor is not applied anymore after upgrade on RHEL/Centos server (#17395)

  • Fixed: We use the "service" command (on CentOS7) do not not depend on the package providing it (#17386)

  • Fixed: Missing dependency on iproute2 making rudder-init fails on minimal install (#17356)

  • Fixed: Remote-run does not work anymore with SELinux (#17516)

  • Fixed: remove progressive output from postinstall (#17525)

  • Fixed: Upgrading Rudder from 5.0.18 to 6.1-nightly does not update techniques (#17313)

  • Fixed: Allow httpd to serve policy files for windows (#17488)

Plugins integration

  • Fixed: add rudder-synchonize within Rudder (#17345)

Agent

  • Fixed: Debug script is broken in 6.0 (#17380)

  • Fixed: remove progressive output from agent check (#17526)

  • Fixed: Add doc about return codes to agent man page (#17281)

Performance and scalability

  • Fixed: Agent consuming lots of IO and resources at each run (#17371)

  • Fixed: when running cf-promises, list-compatible-inputs is ran 8 times (#17481)

Documentation

  • Fixed: Inconsistent commands for service management (#17529)

  • Fixed: Images from private plugins are not visible (#17498)

  • Fixed: wrong url to download.rudder.io on 6.1 (#17484)

  • Fixed: Broken links in docs (#17389)

  • Fixed: Add explanation to setup technique editor in development environement in 6.1 (#17502)

  • Fixed: Missing validated user endpoints in change validation api doc (#17434)

Web - Config management

  • Fixed: error when a technique with a directive attached change in 6.1 blocks all technique updates (#17523)

  • Fixed: A repaired in system policies should not be seen as a problem for warning display in nodes list (#17521)

  • Fixed: Inherited properties don’t appear anymore (#17496)

  • Fixed: Global parameter which are a comment string are ignored (#17491)

  • Fixed: Ignored node lead to an error log during generation (#17441)

  • Fixed: Ignored node lead to an error log during generation (#17441)

  • Fixed: We can’t choose between string and json for global parameters (#17325)

  • Fixed: err17: can not update attribute in parameter (#17396)

Miscellaneous

  • Fixed: When no User rules are defined on a node, compliance tab on node details shows an error (#17527)

  • Fixed: add debug to makefile (#17191)

  • Fixed: Fail password confirmation in BCrypt lead to an user with empty password in file (#17424)

Web - Nodes & inventories

  • Fixed: inventory watcher should ignore uuid.hive file (#17507)

  • Fixed: Change message in case of udefined certificate for a node (#17487)

  • Fixed: Purge of unreferenced software may still fail on very large system (#17176)

  • Fixed: Add log about node group update failure because of inconsistency (#17421)

  • Fixed: Group property UX is unclear regarding saving (#17312)

  • Fixed: Some inventories are not correctly noticed by inotify file watcher (#15422)

  • Fixed: Inventory upload is not distributed uniformly (#7290)

Web - Maintenance

  • Fixed: Nashorn deprecation should be "info" level (#17524)

  • Fixed: Parameters are not restored from archive (#17457)

  • Fixed: Webapp block at start on inventory processing (#17482)

  • Fixed: Historization of node count reports wrong value for pending nodes (#17372)

Web - UI & UX

  • Fixed: When adding tags, if anything is wrong in the directive form, all unsaved tags are wiped out (#15557)

  • Fixed: OS logo is missing in summary node (#16454)

  • Fixed: Move "System status" tab before technical logs (#17486)

  • Fixed: Technique doc is not formatted when clicking on technique in tree (#17413)

  • Fixed: Ignored (disabled) nodes are show as enabled in details (#17440)

  • Fixed: Separate system rules from user-defined rules in node compliance display (#17427)

  • Fixed: Missing information that markdown is supported for technique documentation (#17415)

Architecture - Refactoring

  • Fixed: Build broke in 6.1 due to faulty merge (#17490)

Web - Compliance & node report

  • Fixed: Error log about duplicates entries when saving node compliance levels (#17410)

Relay server or API

  • Fixed: Ignore invalid hash in nodeslist (#17458)

  • Fixed: Inventories from new nodes should be sent using the "rudder" password and not generated one (#17416)

System integration

  • Fixed: rudder package command fails when not run from a terminal (#17453)

API

  • Fixed: API documentation on Rules is missing explanation on how to update rule category (#17409)

  • Fixed: Bad JSON answer for api PUT /rules (#17388)

Architecture - Internal libs

  • Fixed: Stacktrace in test introduce in #17341 (#17411)

Rudder language

  • Fixed: translate should not use hardcoded path for libraries (#17252)

  • Fixed: fix compilation failure (#17405)

System techniques

  • Fixed: Error when setting classes for agent capabilities (#17480)

  • Fixed: properties loading needs to be done in a common bundle (#17478)

Techniques

  • Fixed: Rsync commands for shared files are broken (#17468)

Web - Technique editor

  • Fixed: Modifying a method parameter does not trigger the save button (#17494)

  • Fixed: Technique description is displayed two times in the technique editor (#17393)

  • Fixed: Category for new technique are not sorted (#17414)

  • Fixed: Technique diverge popup when coming back to a techniques because of a change of category (#17400)

  • Fixed: Popup saying that technique change still happens in 6.1 (#17319)

Technique editor - Techniques

  • Fixed: Move Markdown message in icon tooltip (#17503)

Generic methods

  • Fixed: ncf_def should be bundle common (#17477)

  • Fixed: remove non-rudder logger from ncf (#17354)

Technique editor - API

  • Fixed: techniques files are parsed twice (#17425)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Janos Mattyasovszky

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.0.beta3 (2020-05-11)

Changes

Documentation

  • Documentation for group properties (#17282)

Web - Config management

  • Prevent removal of 'system' global and group properties (#17227)

Packaging

  • Add auto reload of welcome page (#17317)

Bug fixes

Packaging

  • Fixed: strip calls fail on aix (#17365)

  • Fixed: rpm build logs are huge (#17360)

  • Fixed: 6.1 fails to build on aix (#17357)

  • Fixed: create migration script for LDAP indexes (#17215)

  • Fixed: create migration script for LDAP indexes (#17215)

  • Fixed: rudder fails to build in 6.0 (#17339)

  • Fixed: Package cache is updated at each run (#17337)

  • Fixed: cf-agent writes a lot of times to performance db (#17335)

  • Fixed: At relay install time, if the domain is not defined the server certificate can not be issued (#17332)

Documentation

  • Fixed: Move variables doc into "usge" category (#17368)

  • Fixed: improve documentation on "default" for variable to state that it should be quoted (#17352)

  • Fixed: Doc about missing uuid.hive at upgrade was not upmerged (#17299)

Web - Compliance & node report

  • Fixed: Inconsistent syntax for global parameter in directive incompatible with JSON values (#17350)

  • Fixed: JSON global parameter are inherited as string (#17326)

Technique editor - API

  • Fixed: When defining a category for a new technique, the files are not placed on the correct path in the git repo (#17338)

Web - UI & UX

  • Fixed: The generic methods documentation is no longer accessible from the technique editor (#17321)

  • Fixed: main parameter of a method is not displayed anymore, and result classes are not ok anymore (#17329)

API

  • Fixed: when importing a technique with /api/internal/techniques, the order of parameters is not respected (#17348)

Web - Config management

  • Fixed: Data for reporting plugin are not generated anymore (#17341)

  • Fixed: Property name aren’t limited to ascii (#17334)

  • Fixed: Group properties inheritance error when it should not (#17324)

System techniques

  • Fixed: Disable sending old reports from relayd (#17349)

Web - Technique editor

  • Fixed: Resource manager should talk about saved/unsaved and not committed/not committed (#17328)

Technique editor - UI/UX

  • Fixed: Tooltips not showing up (#17333)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.0.beta2 (2020-05-04)

Changes

Documentation

  • Document that Rudder servers should not be exposed on the Internet (#17316)

Rudder language

  • rename stdlib to resourcelib (#17254)

  • rename stdlib to resourcelib (#17254)

Bug fixes

Packaging

  • Fixed: jq is not available in the base repositories on SLES15 and should be embedded with the agent package (#17318)

  • Fixed: installing rudder server 6.1.0~beta1 on debian 9 fails (#17280)

  • Fixed: openssl fails to build on aix (#17262)

API

  • Fixed: API documentation omits the policymode parameter of directives (#17301)

Web - UI & UX

  • Fixed: Page for node not found is too minimalist (#16515)

  • Fixed: RuleID is not trimmed when copied from the GUI (#17290)

Security

  • Fixed: exception in ldap search are not correctly caught (#17267)

Documentation

  • Fixed: API documentation is lacking of a Json based update of rule/directive (#17292)

Agent

  • Fixed: rudder agent run returns exit code 1 when everything is ok (#17268)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Victor Héry

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 6.1.0.beta1 (2020-04-28)

Changes

Packaging

  • Embed openssl 1.1.1 on every OS (#17233)

  • Do not embed openssl and curl on distribution with a recent openssl (#17231)

  • Replace node-to-relay script from rudder-package (#17217)

  • Replace node-to-relay script from rudder-package (#17217)

  • add jq to rudder agent (#17139)

  • Add systemd hardening config for slapd (#17055)

  • Upgrade Jetty to latest version (#16905)

  • It should be impossible to connect with "admin" password with default config (#16732)

  • Display Rust tooling version in build (#16969)

  • Use SPDX headers in relay (#16834)

Performance and scalability

  • review index for LDAP (#17128)

  • Do not compute dynamic groups if nothing changed in LDAP (#17237)

  • By default we should not archive reports (#16931)

  • Don’t replace RudderUniqueId in generated policies with a replace, but with StringTemplate (#16856)

Agent

  • Make agents preserve perm on copy to keep previous behavior (patch for CFEngine 3.15) (#17124)

  • Update agent to CFEngine 3.15.1 (#16734)

  • Add a command to set policy server on agents (#16529)

  • Add support for HTTP reporting in changes-only mode (#17153)

Documentation

  • Improve doc related to plugins/subscriptions (#17144)

  • Update doc for initial user account (#17174)

  • Prepare doc for 6.1 (#17130)

  • Update content of docs menus (#17033)

  • Improve accessibility of documentation site’s menu (#16984)

  • Update get-started for 6.0 (#16986)

  • Update screenshots in "Install relay server" section (#16945)

  • Update screenshot in the documentation (#16752)

  • Add upgrade note to document how to switch from previous hash function to BCrypt (#16729)

  • Add Bcrypt support informations (#16724)

  • Adapt doc for 6.1 (#15846)

  • Add promote to relay endpoint in API documentation (#17162)

  • Clarify webapp contributing documentation (#16914)

  • Add spdx licenses for api doc (#16883)

  • Documentation is outdated for development (#16932)

Web - Config management

  • Initialize rudder global parameter to default value at boot (#17251)

  • Display node properties inherited from group/global (#17173)

  • Display technique description in directive form as markdown (#17238)

  • Rudder should be able to read techniques by itself and not rely on legacy ncf rest api (#17133)

  • Add JSON support for global parameters (#16301)

  • Group properties (#16347)

Architecture - Refactoring

  • Update some libraries for 6.1 (#17224)

  • Dead code: com.normation.rudder.domain.system (#17189)

  • Clarify code of rollback events parsing (#16603)

Web - UI & UX

  • Update links in login page (#17218)

  • Beautify banner warning for expired plugin (#16910)

  • Display a warning in place of login form if no user are defined (#17070)

  • Display directive tags inside Compliance tables (#16869)

  • Display tags when listing directives (#16346)

  • Adapt user configuration file to remove default admin credentials (#16731)

  • Update users configuration file to add BCrypt support (#16730)

  • Update UI for group page to new template (#16473)

API

  • Add Usermanagement endpoints in API documentation (#17164)

  • Be able to save in LDAP a Policy Server Target (#16906)

  • Be able to save in LDAP a Policy Server Target (#16906)

System integration

  • Historize node count information (#17161)

Miscellaneous

  • Missing LDAP write operations to promote a node to relay (#17112)

  • Missing LDAP write operations to promote a node to relay (#17112)

Plugins integration

  • Add "technical preview" status for plugins (#17093)

Rudder language

  • make translate methods use stdlib rather than regexes (#17115)

  • logging adjustments for integration test loop (#17114)

  • test loop integration (#16902)

  • Full review of rudder-lang suported systems (#16974)

  • Rework os class translation into rudder-lang (#17052)

  • Implement metadata for enums (#17049)

  • Load all files from stdlib automatically (#17047)

  • Replace SourceList with a typed arena (#17046)

  • Cleanup rudder-lang tester (#17010)

  • non global items can have duplicate names (#16992)

  • Add enum aliases in rudder lang (#16972)

  • Add range to enum expressions (#16928)

  • rudder-lang packaging changes (#16967)

  • rudder-lang packaging update (#16886)

  • Fix clippy warnings in rudder-lang (#16943)

  • Improve compiler options (#16938)

  • Prepare documentation layout for rudder-lang (#16934)

  • Prepare documentation layout for rudder-lang (#16934)

  • Reimplement enums (#16924)

  • tests changes to prepare rudder-lang integration (#16846)

  • rl add cfengine_core to libs, which declares global variables (#16807)

  • rl add an optional path for compilation and translation (#16775)

  • rl allow splitted global variables declaration (#16774)

  • rl enchance variables handling (#16728)

  • rl enchance variables handling (#16728)

  • rl generate enum mappings from os tree (#16717)

  • rl improve output fidelity of generated cf files (#16658)

  • rl add non terminating errors and related integration tests (#16616)

  • format entire rudderlang code according to style guidelines (#16614)

Web - Nodes & inventories

  • Agent capabilities in inventory are not parsed (#12109)

Relay server or API

  • Add support for parsing HTTP logs from Windows (#17073)

Security

  • Allow content to be shown in iframe (#17072)

  • We should use BCrypt by default for storing user’s local password (#16674)

  • Add a command to generate user accounts after installation (#16620)

Architecture - Internal libs

  • Upgrade to ZIO RC18 (#16892)

Techniques

  • Delete deprecated techniques, and deprecate techniques in 6.1 (#17159)

Generic methods - Package Management

  • Make the package_module bodies configurable (#9110)

Technique editor - UI/UX

  • Define the category of a technique (#16345)

  • Add description of technique parameters (#17239)

  • Improve UX for technique resource files (#17078)

Generic methods

  • Sync stdlib with 3.15.1 (#17229)

  • Add verbosity level in the rudder logger (#15126)

Web - Technique editor

  • Add fully qualified name of technique parameter (#17029)

Bug fixes

Packaging

  • Fixed: Our agent package contains CFEngine systemd units (#16790)

  • Fixed: We need to stop apache before removing ncf-api-venv user (#17198)

  • Fixed: rudderlang makefile integration (#17187)

  • Fixed: package fails to build jq (#17175)

  • Fixed: jq fails to build on old distro (#17169)

  • Fixed: make clean should not remove source in rudder-packages (#17140)

  • Fixed: rudder-webapp fails to build on 6.1 (#17125)

  • Fixed: After server install, the "no user" login page link to a 404 documentation page (#17163)

  • Fixed: After server install, the "no user" login page link to a 404 documentation page (#17163)

Agent

  • Fixed: Update embedded openssl version to 1.1.1g (#17178)

  • Fixed: When in changes-only and nothing needs to be sent an empty invalid report is sent (#17193)

  • Fixed: Restart the webapp after creating a user (#17190)

  • Fixed: HTTP report PUT prints useless messages at the end of the run (#16112)

Documentation

  • Fixed: Add a link to upgrade notes at the beginning of each upgrade doc page (#17219)

  • Fixed: Fix 6.1 doc build (#17207)

  • Fixed: Fix links in 6.1 homepage (#17200)

  • Fixed: Plugins menu in the documentation should be in alphabetical order (#16808)

  • Fixed: Add Create Node endpoint in API documentation (#17183)

Web - Maintenance

  • Fixed: Rudder 6.1 does not start anymore (#17228)

  • Fixed: Rudder 6.1 does not start anymore (#17228)

Web - Nodes & inventories

  • Fixed: when a node is removed from a dynamc group, it log "adding nothing, removing nothing" (#17220)

  • Fixed: Concurrent access to node info cache cause exception to be thrown when accessing cache content (#17172)

  • Fixed: Search does not work in group criteria (#17203)

Web - Config management

  • Fixed: TechniqueVersion ordering algorithm is incorrect (#17157)

  • Fixed: cannot add directives to a rules (#17099)

  • Fixed: Don’t fail generation for HTTPS only reports with DSC/6.1 (#17085)

Performance and scalability

  • Fixed: chmod at the end of policy generation is painfully slow (#17214)

Web - UI & UX

  • Fixed: rudder version is wrong in the login page (#17201)

  • Fixed: Not all tags have the same appearance (#16897)

Architecture - Refactoring

  • Fixed: Remove warning and "Inconsistency" typo compilation error (#17156)

  • Fixed: Inconsistency error is misspelled (#17110)

Security

  • Fixed: cannot login in Rudder 6.1 (#17108)

Rudder language

  • Fixed: Compilation output file is not generated when input file is a path (#17094)

  • Fixed: translation into rudder-lang doesn’t handle any class (#17075)

  • Fixed: Use Pin tu fix source code address (#16998)

  • Fixed: fix generation of parameters and conditions from cfengine files (#16878)

  • Fixed: rl compile fix enum logical expressions (#16713)

  • Fixed: rl translate add exception for kernel_module resource parsing (#16711)

System techniques

  • Fixed: Runlog catchup does not work on linux (#17192)

Technique editor - UI/UX

  • Fixed: Text & Boxes jump when displaying missing inputs (#16235)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Florian Heigl

This is a bug fix release in the 6.1 series and therefore all installations of 6.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

and rc versions are listed below for convenience.


← Release notes aix →