Change logs for Rudder 7.0

Rudder 7.0.8 (2022-09-05)

Changes

Bug fixes

Documentation

  • Fixed: Installation documentation for Server has a section about sles12 but we only support sles15 as of 7.0 (#21420)

Web - Config management

  • Fixed: missing list of inpacted rules when creating a directive and applying it to a rule (#21671)

  • Fixed: generated policies are invalid when using a generic method that doesn’t exist on linux (#21686)

API

  • Fixed: API documentation on how to query node is invalid (#21690)

Web - UI & UX

  • Fixed: rollback button in even log can be clicked several time in a row and error are stacked in other screens (#21429)

  • Fixed: Node certificate expiration date does not follow the same format than the others dates in the UI (#21367)

Agent

  • Fixed: rudder package command fails on amazon linux (#21654)

Release notes

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

[Private] Rudder 7.0.7 (2022-08-31)

Changes

This version is only available for extended support subscription

Bug fixes

Web - UI & UX

  • Fixed: Delete group category popup and directive creation popup are not closing (#21666)

Release notes

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.0.6 (2022-08-25)

Changes

Agent

  • Add a disable syslog option to cfengine (#20449)

Security

  • Skip CVE-2022-31197 in checks (#21602)

Bug fixes

Web - UI & UX

  • Fixed: when validating change in directive, a popup appear, but the background is only half grayed out (#18575)

  • Fixed: once we setup the Rudder server, we have an option to go to the getting started…​ which doesn’t work (#21488)

  • Fixed: Filter in URL doest work on tab list of nodes (#21558)

Web - Technique editor

  • Fixed: When we change the status of a technique parameter from required to may be empty, it returns to required after saving (#21560)

  • Fixed: result condition are not correct in the technique editor when using properties or variables (#21515)

  • Fixed: Cannot delete technique in the technique editor if it contains a space in its name (#21491)

Relay server or API

  • Fixed: Unsoundness in "owning_ref" (#21538)

Performance and scalability

  • Fixed: Improve group node computation (#20758)

System integration

  • Fixed: Correct BOM file in ps1.st used in test (#21498)

Web - Config management

  • Fixed: Concurrent delete of policy backup directory can lead to useless error (#21482)

Documentation

  • Fixed: improve contributing doc to state how to generate inventories (#21476)

System techniques

  • Fixed: Broken reload command in apache logrotate configuration (#21612)

Techniques

  • Fixed: cron configuration restarts cron every 5 minutes on ubuntu22 (#21600)

Miscellaneous

  • Fixed: Improve handling of certificates not matching the key (#21616)

Generic methods

  • Fixed: rudder agent run man git-stash (#21525)

Release notes

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.0.5 (2022-07-26)

Changes

Bug fixes

Packaging

  • Fixed: Missing dependency on gpg breaks "rudder package" command fails on minimal installs (#21061)

Security

  • Fixed: Update embedded openssl to 1.1.1q (#21360)

  • Fixed: URL with "%3B" (ie ';') leads to a stacktrace (#21463)

  • Fixed: JSESSIONID cookie should have a SameSite policy (#21445)

Performance and scalability

  • Fixed: API to fetch nodes + software times out on large instance (#21241)

CI

  • Fixed: Ignore rudder-lang repos in script checks (#21364)

Miscellaneous

  • Fixed: Remove unused variable newCall in JRTechniqueElem (#21355)

Web - Compliance & node report

  • Fixed: In HTTPS mode, we may have errors in logs about duplicate messages that are totally legit (#21352)

Web - UI & UX

  • Fixed: Impossible to put a Rule in a subcategory (#21175)

Web - Technique editor

  • Fixed: Prevent adding carriage return in the condition in technique editor (#21126)

Web - Nodes & inventories

  • Fixed: Using '{' in node property lead to error (#21322)

Documentation

  • Fixed: Some reponses are missing in technique api doc (#21304)

Agent

  • Fixed: Deprecation warning with package methods on Ubuntu 22.04 LTS (#21206)

Release notes

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.0.4 (2022-06-22)

Changes

Documentation

  • Add documentation to install Rudder server on Amazon linux 2 (#21183)

Bug fixes

Packaging

  • Fixed: parsing of system fusioninventory is invalid (#21211)

Documentation

  • Fixed: Typo in documentation to change ports used by rudder (#21210)

  • Fixed: Missing API documentation for technique (#21254)

Relay server or API

  • Fixed: Allow .ocs files as inventory (#21270)

  • Fixed: Missing encoding of postgresql password (#21203)

  • Fixed: Query seems to be ignored for pendings nodes (#20281)

Techniques

  • Fixed: When upgrading to 7.1, techniques are not upgraded to the new format and reporting issue occur (#21220)

Security

  • Fixed: Ignore CVE CVE-2022-22978 that will not be fixed in 6.1/6.2 dependencies (#21263)

  • Fixed: Upgrade spring-security to 5.5.8 to fix CVE 2022-22978 (#21237)

Web - Config management

  • Fixed: GetMetadataContent does not correctly retrieve content when a revision is given (#21260)

Architecture - Internal libs

  • Fixed: Query string is not correctly parsed in test API framework (#21253)

Web - Technique editor

  • Fixed: When a technique is not in the active techique tree, it can’t be deleted in editor (#21119)

Web - UI & UX

  • Fixed: Missing icon in technical logs for error messages (#18918)

Performance and scalability

  • Fixed: Improve performance of display for agent version on homepage (#21230)

  • Fixed: Adapt rule details to have the list of directives/nodes that appear faster (#21081)

rudderc

  • Fixed: During upgrade of techniques, rudderc is used even if disabled (#21229)

CI

  • Fixed: Race condition between elm builds (#21156)

Generic methods

  • Fixed: The mustache template examples in our documentation do not respect the mustache standard (#21286)

Release notes

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.0.3 (2022-05-31)

Changes

Web - UI & UX

  • Update css related to the change validation plugin (#21052)

Server components

  • allow a user to pass a password to server create-user command (#20675)

Bug fixes

Documentation

  • Fixed: Documentation about certificate handling during uprade is not great (#21129)

  • Fixed: Fix the relayd logging documentation (#20985)

Miscellaneous

  • Fixed: Document that port 5309 can be disable in node configuration (#20982)

Relay server or API

  • Fixed: Huge broken logs in relayd (#21157)

Security

  • Fixed: security checks fails because of request to sonatype oss index (#21179)

  • Fixed: Fix some cve in dependencies (#21169)

  • Fixed: Ignore some CVE that cannot be fixed in 6.1 branch (#21103)

  • Fixed: Ignore some CVE that cannot be fixed in 6.1 branch (#21103)

  • Fixed: Don’t display oauth/oidc client secret in logs (#21077)

  • Fixed: Ignore CVEs for spring-ldap-core (#21027)

  • Fixed: Update spring and logback version because of new CVE (#21022)

System integration

  • Fixed: Root log explain_compliance is in debug by default (#21166)

  • Fixed: rudder package does not sort plugin version correctly (#21121)

Web - Nodes & inventories

  • Fixed: Criteria not working when filter on IP adress and GoupID in group page (#21144)

  • Fixed: Sometime inventory processing is not done when inventory is receveived (#19585)

  • Fixed: List of nodes by version does not include windows nodes (#17728)

  • Fixed: Two same envvar modulo a space at begining of name leads to LDAP error when saving inventory (#20984)

Web - Technique editor

  • Fixed: Filter on agent type on technique editor is not correctly shown (#21160)

  • Fixed: The display of the DSC icon is broken in the technical editor (#21016)

  • Fixed: Unable to open a block within a block when it has just been drop from the list (#20787)

  • Fixed: When cloning a block with two identical methods, only one is cloned (#21001)

API

  • Fixed: Directive and rule revision is not parsed in API (#21150)

  • Fixed: Rudder incorectly parse URL with a '+' in the path into spaces (#20943)

  • Fixed: Deleting a rule’s category leeds to an error (#21080)

  • Fixed: Update api doc tool chain (#21073)

  • Fixed: Generation not started when modifying authorized network via API (#20979)

Packaging

  • Fixed: Backup ca.cert like other cert files (#21143)

Web - Config management

  • Fixed: condition from windows node does not take condition from blocks (#21108)

  • Fixed: Revision are taken into account during generation (#20929)

Architecture - Refactoring

  • Fixed: Scala does not really supports [_:P] syntax (#21107)

  • Fixed: Update TechniqueVersion to conform to method visibility (#21106)

Web - Compliance & node report

  • Fixed: Compliance percentage computation in ComplianceLevel is not correct, and performance is not correct (#20998)

  • Fixed: Compliance percentage computation in ComplianceLevel is not correct, and performance is not correct (#20998)

  • Fixed: Techniques with no component define have no reporting (#21007)

Web - UI & UX

  • Fixed: Fold and unfold all categories button not working in rules page (#21079)

  • Fixed: In Nodes table, the "Edit columns" button should be renamed when activated (#21013)

  • Fixed: Sort by status does not work on rules table (#21010)

Performance and scalability

  • Fixed: The way groups are fetched when responding to API compliance is inefficient (#21028)

Web - Maintenance

  • Fixed: Download as zip in archives page returns a 404 (#20903)

System techniques

  • Fixed: Error in relay policies when disabling file sharing in policies (#21125)

  • Fixed: Rudder server 7.X generates invalid configuration for 6.X relayd (#21122)

  • Fixed: When updating allowed networks of a relay, rudder-cf-serverd service does not seem to be restarted (#20993)

  • Fixed: when database is not on the root server, policy generation fails (#20986)

Techniques

  • Fixed: wrong spelling of wily in apt package manager settings (#21113)

CI

  • Fixed: Ci does not properly clean its test files (#21178)

  • Fixed: Improve cleanup of root-owned files in tests (#21130)

Generic methods

  • Fixed: report_if_condition method does not support expressions in its input (#21011)

  • Fixed: multiple calls to file_from_template_jinja2 in audit fails (#20913)

Release notes

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.0.2 (2022-04-08)

Changes

Packaging

  • We should detect malformed patch in the packaging to disallow building incorrect packages (#9810)

Documentation

  • Windows support should be documented as the other agents (#20835)

  • Add a compatibilty table for agent relay server in the documentation (#20621)

Web - UI & UX

  • Glitch in node compliance details (#20693)

Architecture - Internal libs

  • Add name for spring security main auth configuration bean to be used by oauth2 (#20886)

Language

  • Document the rudder-lang and technique editor incompatibilities (#20766)

Techniques

  • Reformat all the statements in userManagement technique (#20878)

Generic methods - File Management

  • Improve File from HTTP server method documentation (#20810)

Bug fixes

Packaging

  • Fixed: rudder-webapp requires rsync to build for RHEL (#20974)

Agent

  • Fixed: Lower the log level of the "Skipping adding class […​] as its name is equal or longer than 1024" message (#20960)

  • Fixed: In SLES 15, SP is view as part of version - Rudder 7.0 (#20950)

Security

  • Fixed: Update embedded openssl to 1.1.1n (#20894)

  • Fixed: Update jdbc postgres driver to 4.2.25 for CVE-2022-21724 (#20969)

  • Fixed: Vulnerability in the regex crate (#20872)

Documentation

  • Fixed: Broken list of compatible OS in 7.0 (#20942)

  • Fixed: Correct doc on windows KB update (#20891)

  • Fixed: backup/restore doc is incomplete (#20888)

Miscellaneous

  • Fixed: Show more details in exception when parsing an invalid technique version (#20976)

  • Fixed: Update spring to 5.2.20 to fix CVE-2022-22965 (#20972)

  • Fixed: Update spring to 5.2.20 to fix CVE-2022-22965 (#20972)

  • Fixed: "Disable reporting" for windows method calls does produce unexpected reports (#20897)

  • Fixed: Compilation warning on branche 6.2 (#20874)

Web - Technique editor

  • Fixed: Correct minor version condition for Ubuntu in technique editor (#20973)

  • Fixed: When editing files with the technique editor resources manager, newlines at the end of file are trimmed (#19319)

  • Fixed: Suppressed techniques coming back to life forever (#19006)

Web - UI & UX

  • Fixed: Hide action buttons if the user does not have write permission on the Rules (#20961)

  • Fixed: Edit mode should be enabled by default when creating a rule (#20954)

  • Fixed: In the technical logs table of a node, mouse cursor should not change when hovering a Status badge (#20953)

  • Fixed: Wrong redirect url for system group in rule page (#20782)

  • Fixed: Applied directive doesn’t show up when there is no node (#20856)

  • Fixed: Displays a warning icon for directives that are not used by any rule. (#20692)

  • Fixed: We cannot filter rules by tag anymore (#20848)

  • Fixed: We cannot filter rules by tag anymore (#20848)

Web - Config management

  • Fixed: Starting policy generation by hand fails if node-configuration-hashes.json (#20926)

API

  • Fixed: Some api response have an id field but should’nt have one (#20871)

  • Fixed: Broken allowed network curl example (#20844)

Architecture - Internal libs

  • Fixed: Duplicate classes RudderUserDetails (#20734)

CI

  • Fixed: Don’t skip tests in webapp publish (#20812)

  • Fixed: Missing clean in webapp publish (#20772)

Architecture - Refactoring

  • Fixed: NodeAndPolicyServerReturnType name is misleading for search that include root server (#20802)

Performance and scalability

  • Fixed: Improve dynamic group computation speed and fix inverted searched (#20716)

Web - Nodes & inventories

  • Fixed: List of directive for the pending node is invalid (#20736)

Techniques

  • Fixed: post hook for copyGitFile on windows don’t report (#20909)

  • Fixed: dsc techniques have invalid parameters when calling generic method (#20907)

  • Fixed: Unexpected reporting in userManagement in audit when user is not present (#19427)

  • Fixed: Patch dsc techniques according to #20830 (#20832)

  • Fixed: When upgrading from 6.2 to 7.0, the previous rudder logrotate configuration is not removed (#20792)

System integration

  • Fixed: Logrotate configuration for relayd is broken (#20791)

Generic methods

  • Fixed: Variable string from command fails when command contains control structures (#20128)

  • Fixed: All classes manipulations are ineffeccient because there are repeated 3 times (#20885)

  • Fixed: No report from sysctl generic method (#20612)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Alexis TARUSSIO

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.0.1 (2022-02-18)

Changes

Packaging

  • Update to CFEngine 3.18.1 (#20329)

Language

  • Add block syntax in the rudder-lang documentation (#20762)

Web - UI & UX

  • Add a link on the Directives and Groups to their own page (#20753)

  • cloning a generic method creates the method at the end of the technique (#20703)

  • Improve directives and groups selection in Rules UI (#20625)

Web - Nodes & inventories

  • kernel version doesn’t show in the node page (#20721)

Documentation

  • Replacement of the screenshot in the README (#20708)

Bug fixes

Packaging

  • Fixed: Missing augeas dependency on rpm (#20687)

  • Fixed: sleep in postinst agent check (#20673)

  • Fixed: Missing fusion patches for windows agent (#20670)

Documentation

  • Fixed: Documentation about properties usage on windows node uses an incorrect syntax (#20731)

  • Fixed: Upgrade notes from 6.1|6.2 → 7.0 title is not clear enough (#20659)

  • Fixed: Missing v14 api description for 7.0 (#20654)

Language

  • Fixed: In some cases, generate_lib rudder-lang utility does throw exception instead of properly parsing the error (#20761)

  • Fixed: Style fixes in language doc (#20729)

Web - Technique editor

  • Fixed: Ressource not found when creating a draft and comming back to it to save it as a technique (#20184)

  • Fixed: Creating a technique with a name normalized to generic method id breaks technique editor (#20710)

  • Fixed: when clicking on "show docs" on a generic method in the middle part of technique editor, it doesn’t unfold the right part (#19720)

  • Fixed: Once we decided on which generic method we focus report in a block, it shows the uuid rather than its name (#20738)

  • Fixed: Tooltips remains when we remove a generic method (#20557)

  • Fixed: Draft infos remaining after deletion (#20631)

API

  • Fixed: Factor out trait for api test in yaml (#20759)

  • Fixed: No clear error message when calling api with curl and data are not url-encoded (#10915)

Web - UI & UX

  • Fixed: Broken hover when condition is long (#20679)

  • Fixed: when a rule is disabled we cannot see its associated directives (#20713)

  • Fixed: Opening and closing generic method in the technique editor is done in a different place (#20694)

  • Fixed: Tooltip on enforce/audit label in rules tree not working (#20501)

  • Fixed: Categories in the technique editor are flattened (#20453)

  • Fixed: Reccent changes count on rule tab (#20638)

  • Fixed: Selected technique is wrong after cloning (#20454)

  • Fixed: Highlight the rule on the tree when display details (#20630)

Web - Compliance & node report

  • Fixed: when there’s a disabled directive in a rule, it’s really hard to see (#18672)

  • Fixed: when there’s a disabled directive in a rule, it’s really hard to see (#18672)

Web - Config management

  • Fixed: Disable Reporting on a variable String method causes policy update errors (#20700)

Architecture - Dependencies

  • Fixed: Update xerces version (#20676)

Security

  • Fixed: Data race in thread-local relayd dependency (#20639)

Miscellaneous

  • Fixed: In 6.2.10 the plugin can not uninstall itself in some cases (#20392)

Techniques

  • Fixed: SNMP installation uses deprecated package method, and it reports an error even though it works (#16694)

Agent

  • Fixed: Excessive Agent restarts (Agent on Debian 11) (#20685)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • I C

  • Nigel Mundy

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.0.0 (2022-01-26)

Changes

Bug fixes

Server components

  • Fixed: rudder_synchronize fails to import technique (#20645)

Documentation

  • Fixed: Agent logs section is missing in doc (#20627)

  • Fixed: Mark 7.0 as final - docs (#20626)

  • Fixed: Some screenshots in documentation are too old (#20611)

  • Fixed: Debian emits a warning if we follow the documentation way of adding the private repository (#20543)

  • Fixed: API : URL ending with / are seen like /[empty string parameter] (#3881)

Plugins integration

  • Fixed: rudder-pkg can not parse nightly version (#20649)

Web - UI & UX

  • Fixed: Change the buttons color in the setup wizard (#20616)

Web - Technique editor

  • Fixed: generic method doc in technique editor in 7.0 doesn’t look great (#20608)

Release notes

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.0.0.rc3 (2022-01-20)

Changes

Documentation

  • Add a note about recent changes in upgrade notes (#20507)

  • Document how to automatically synchronize technique resources from an external repository (#20495)

  • Add upgrade notes for 7.0 (#20388)

  • Display images in release notes (#20464)

  • Update screenshot in api doc (#20586)

  • Update api-doc tooling (#20584)

Web - Technique editor

  • Speed up technique editor (#20552)

Web - Config management

  • Disable rudderc compilation of technique editor technique (#20529)

  • Delay policy generation until rudder app is fully boot (#20462)

Web - UI & UX

  • Add a warning in plugin page if a version mismatches rudder patch one (#20261)

  • Add a warning in plugin page if a version mismatches rudder patch one (#20261)

  • Bring back recent changes to life. (#20440)

CI

  • Dockerize technique tests (#20386)

Agent

  • Allow rudder agent check to stop at any step (#20569)

Bug fixes

Packaging

  • Fixed: webapp preinst should run rudder agent check (#20539)

  • Fixed: webapp installation produces a warning about initial branch name (#20537)

  • Fixed: rudder-agent-postinst doesn’t close file descriptors anymore (#20522)

  • Fixed: /etc/cron.d/rudder-agent is a conffile (#20268)

  • Fixed: Separate openldap cache between nightly and release builds - 6.2 (#20450)

  • Fixed: Update openssl to 1.1.1m (#20428)

  • Fixed: rpm python API incompatible in python3 (#20602)

Agent

  • Fixed: Improve agent-side messages when download is refused (#20521)

  • Fixed: when rudder agent check changes something it should resend an inventory (#20538)

Documentation

  • Fixed: Add a note about relay upgrade order (#20505)

  • Fixed: apt-key is deprecated (#20518)

  • Fixed: Add a complex example of node search API request (#20577)

  • Fixed: documentation of method schedule_ is broken (#20605)

Web - Technique editor

  • Fixed: Expand/Hide in technique editor tree not working (#20492)

  • Fixed: It’s not possible to select a condition with the dropdownlist on technique editor in rudder 7 (#20420)

  • Fixed: block still disapear in technique editor when we put a method in it (#20551)

  • Fixed: Add loading effect for technique editor tree (#20493)

  • Fixed: The technique editor allows saving methods with missing parameters (#20415)

  • Fixed: Error message in technique editor doesn’t help (#20491)

  • Fixed: Technique editor allows id with only case difference, do an error, but still save technique (#20133)

  • Fixed: when trying to put a generic method within a block, it can replace the whole block (#20306)

  • Fixed: Resources in drafts are not displayed and saved (#20486)

  • Fixed: When we move a technique in editor, resources are not moved (#20445)

  • Fixed: When we move a technique in editor, resources are not moved (#20445)

  • Fixed: Broken technique resources in drafts (#20414)

  • Fixed: Error when writing techniques via the technique editor (#20437)

API

  • Fixed: Missing api rights (#20609)

  • Fixed: State is missing from node api (#20582)

Architecture - Refactoring

  • Fixed: Remove warning messages (#20606)

Web - UI & UX

  • Fixed: Loading effect on rules tree (#20595)

  • Fixed: Underlining of links is cut in firefox (#20596)

  • Fixed: Redesign the login page with the new graphic charter (#20581)

  • Fixed: Compliance of rules should not be rounded to the nearest hundredth (#20573)

  • Fixed: Compliance by nodes in the Rules page shows the node id rather than it’s name (#20490)

  • Fixed: Sub categories have too many "|-" displaed in select box (#20559)

  • Fixed: Tables look weird when empty in Rules UI (#20467)

  • Fixed: In a directive the technique documentation button is not visibled enough (#20436)

  • Fixed: we can save a rule without a name (#19789)

  • Fixed: Missing rounding of rules compliance percentage (#20532)

  • Fixed: We can save a technique with a missing component name for a nested block (#20497)

  • Fixed: metrics are still present in wizard, and wizard doesn’t end (#20478)

  • Fixed: Cancel button is missing when deleting a technique (#20487)

  • Fixed: Wrong technique name displayed in deletion message (#20488)

  • Fixed: The left menu is under the menu bar’s shadow (#20030)

  • Fixed: It’s hard to know how to edit a block/method in editor (#20344)

  • Fixed: icons on login page are not centered (#19887)

  • Fixed: when we hit enter key on rule category creation,page is reloaded (#20365)

  • Fixed: buttons on rule creation page don’t have the same width (#20364)

Web - Config management

  • Fixed: No na reporting generated by webapp (#20591)

  • Fixed: Missing rule Id in rule details (#19876)

  • Fixed: If a rule is in a category that no longer exists, it can’t be accessed in rule tree (#20095)

  • Fixed: Sometimes the webapp fails to generate the reporting file of new techniques (#20513)

  • Fixed: error in webapp log at start, and group allPolicyServers not showing up in group tree (#20479)

  • Fixed: Missing special target in group selection for rules (#20348)

  • Fixed: Invalid attribute 'special:all_servers_with_role' (or special:all_nodes_without_role) for entry ruleTarget (#20460)

  • Fixed: Value 'focus:48137400-7f48-48bd-a888-9522167b5b81' is not a valid reporting composition rule (#20459)

Web - Compliance & node report

  • Fixed: Unexpected reports when using nested blocks (#20540)

  • Fixed: First node name is used for all nodes in rule compliance details "by node" (#20585)

  • Fixed: Compliance bar of a node with no policy applied is red / error 100% (#20558)

  • Fixed: compliance from API doesn’t always adds up to 100% (#20373)

  • Fixed: Compliance issue in 7.0 because of invalid expected reports (#20498)

  • Fixed: error on system status tabs when there are missing reports (#20474)

  • Fixed: webapp doesn’t start after upgrade from 6.2 to 7.0 (#20390)

Security

  • Fixed: Update spring-core (#20571)

  • Fixed: Use a proper CSPRNG to generate API tokens (#20512)

Relay server or API

  • Fixed: It is impossible to read group properties with a read-only account (#20567)

  • Fixed: Don’t insert partial runs as run logs (#20446)

Performance and scalability

  • Fixed: We are recreating ldap object while we could duplicate them, leading to suboptimal perf (#20535)

Miscellaneous

  • Fixed: Compliance api miss audit state (#20531)

Language

  • Fixed: generate_lib outputs a debug line (#20471)

Techniques

  • Fixed: Confusing log message in cron technique hook (#20515)

  • Fixed: deprecate techniques in 7.0 (#20277)

System techniques

  • Fixed: Skipping inventory run when another one is already running should not throw an error (#20511)

Release notes

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.0.0.rc2 (2021-12-17)

Changes

Documentation

  • Add debian 11 server support to documentation (#20379)

  • Better documentation of the windows update technique (#20360)

CI

Web - Technique editor

  • Add a worst-case, weighted sum for block compliance mode (#20342)

  • Add a worst-case, weighted sum for block compliance mode (#20342)

Relay server or API

  • Add relayd man page build to Jenkinsfile (#20327)

Bug fixes

Security

  • Fixed: Do not display the jetty version number (#19163)

  • Fixed: Upgrade logback version for LOGBACK-1591 / JNDI (#20421)

Packaging

  • Fixed: rudder-webapp 6.2 on debian11 generate a dbgsym package (#20376)

  • Fixed: When upgrading from 6.2 → 7.0 on centos8, old system technique are still present, and break policy generation (#20356)

  • Fixed: System techniques upgrade is broken (#20337)

  • Fixed: Database connection test is broken since the rules table has been removed (#20335)

  • Fixed: rudder-webapp on debian11 generate a dbgsym package (#20319)

  • Fixed: System technique migration fails on old server (#20351)

  • Fixed: Refactor apache configuration for easy separation between agent and web flows (#20349)

Documentation

  • Fixed: Clean rudder-packages README (#20330)

  • Fixed: 7.0 install documentation installs a 6.2 version (#20402)

  • Fixed: Improve windows patch management technique doc (#20369)

Web - UI & UX

  • Fixed: css of generation status is dubious in 7.0 (#20395)

  • Fixed: Upgrade jquery to 3.6.0 (#20430)

  • Fixed: Block and component compliance display in Rules page (#20302)

  • Fixed: Remove metrics section from wizard (#20394)

  • Fixed: User name invisible (#20384)

  • Fixed: Loading and first connection pages don’t use new rudder 7.0 theme (#20231)

Relay server or API

  • Fixed: Query seems to be ignored for pendings nodes (#20281)

  • Fixed: Test that the distributed config files are valid (#20416)

Plugins integration

  • Fixed: Plugins upgrade broken in 7.0 rc (#20385)

Architecture - Dependencies

  • Fixed: Rudder build when skipping tests (#20410)

Web - Technique editor

  • Fixed: when we edit the content of a generic method in 7.0, there is no way to know which method it is (#20308)

Web - Config management

  • Fixed: Non system technique appears in "System status tab" (#20383)

  • Fixed: multiple save buttons on rule page (#20286)

Performance and scalability

  • Fixed: Improve performance of getUserAndSystemNodeStatusReports by exploring only once cache (#20318)

  • Fixed: Improve performance of getUserAndSystemNodeStatusReports by exploring only once cache (#20318)

  • Fixed: Method getByRulesCompliance used by API is highly inefficient (#20310)

  • Fixed: Method getByRulesCompliance used by API is highly inefficient (#20310)

  • Fixed: Method getByRulesCompliance used by API is highly inefficient (#20310)

  • Fixed: Method getByRulesCompliance used by API is highly inefficient (#20310)

Miscellaneous

  • Fixed: Mount elm tmp dir in tmpfs to avoid lock failure on concurrent builds (#20361)

CI

  • Fixed: Rudder-pkg tests timeout sometimes (#20354)

  • Fixed: Broken 7.0 tests due to missing user_id variable in Jenkinsfile (#20339)

  • Fixed: Only run compatibility tests during the night (#20323)

  • Fixed: Split test and build tasks in Jenkins file (#20320)

System integration

  • Fixed: gitgc is always run at start whatever its schedule is and run every 3~4 min (#20350)

  • Fixed: Bad logs for migration error when technique is missing (#20336)

Architecture - Refactoring

  • Fixed: Empty value for certificate should not kill rudder (#20341)

API

  • Fixed: Wrong deprecation information in technique (#20333)

Web - Nodes & inventories

  • Fixed: group page is not scrollable, so we can’t see the full list of nodes in 7.0 (#20293)

System techniques

  • Fixed: .pgpass file cannot use remote postgresql (#19659)

  • Fixed: unexpected report after upgrading Rudder from 6.2 to 7.0 (#20381)

  • Fixed: rudder is restarted in first agent run after upgrade from 6.2 to 7.0 (#20382)

  • Fixed: rsyslog.d/rudder.conf left after 7.0 upgrade (#20340)

Agent

  • Fixed: Don’t use a passphrase anymore in agent check (#20331)

Release notes

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.0.0.rc1 (2021-11-29)

Changes

Documentation

  • Update supported platform list in documentation (#20125)

  • Document windows update technique (#20265)

  • Dockerify api-doc test, build and publication (#20272)

Web - UI & UX

  • Make the rows of the compliance tables foldable to show more levels of compliance in Rules UI (#20236)

  • Allow to customize in which menu plugins are set (#20264)

System techniques

  • It’s not possible to make the agent listen on a specific port (#20113)

Bug fixes

Packaging

  • Fixed: Separate openldap cache between nightly and release builds (#20315)

  • Fixed: error in rudder-agent cron file in packaging (#20267)

Web - UI & UX

  • Fixed: wrong write for rule page (#20299)

  • Fixed: Redirection does not work on rule page (#20298)

Web - Nodes & inventories

  • Fixed: by default, group condition should not be displayed (#20297)

  • Fixed: Alma Linux is detected as CentOS (#20237)

CI

  • Fixed: Add redirect to latest API doc version to Jenkinsfile (#20291)

  • Fixed: Language docs publication does not work (#20285)

  • Fixed: Missing elm 0.19.1 in 7.0 tests (#20283)

  • Fixed: Dockerify tests (#20275)

System integration

  • Fixed: Can’t use rudder with openjdk17: cannot access class sun.net.util.IPAddressUtil (#20289)

Miscellaneous

  • Fixed: Move to a new Url Technique api so anyone can create technique like the editor through api (#20242)

  • Fixed: Rudder agent factory-reset don’t regenerate inventory (#20282)

Web - Config management

  • Fixed: Error when creating a rule in 7.0 (#20278)

  • Fixed: Rule editor does not use webapp context path value (#19879)

Performance and scalability

  • Fixed: spurious "connection_read(9): no connection!" in /var/log/rudder/ldap/slapd.log (#19980)

  • Fixed: dashboard only shows the compliance of the nodes that really answer when logging on the test platform in 7.0 (#20273)

Web - Technique editor

  • Fixed: 404 error when opening a technique in the technique editor (#20183)

Relay server or API

  • Fixed: Vulnerability in tokio (#20269)

Documentation

  • Fixed: Missing documentation for relay to node demote API (#20262)

Architecture - Internal libs

  • Fixed: Add mock in test lib for secrets eventlogs (#20256)

Release notes

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.0 is currently the next version of Rudder.

Rudder 7.0.0.beta3 (2021-11-18)

Changes

Documentation

  • Add support for Alma and Rocky Linux (#20220)

  • Document HTTP port change (#20132)

Web - Config management

  • Remove SKIPIDENTIFY system variable (#19782)

  • Don’t historize names of nodes, rules & groups in the database (#20229)

  • Make consistant id+revision format accross rule, directive, techniques in API (#20190)

Web - UI & UX

  • Display Groups list in the 'Compliance by nodes' tab (#20243)

Web - Technique editor

  • Update OS conditions in the technique editor (#20223)

Miscellaneous

  • Missing data for Rule page (#20127)

Bug fixes

Miscellaneous

  • Fixed: There is no cfengine-systemd patch anymore thus making package build faild (#20255)

System integration

  • Fixed: Git warning about branch name in install logs (#20232)

Packaging

  • Fixed: upgrade jetty dependency (#20222)

  • Fixed: Upgrade to openldap 2.4.59 for rudder 7.0 (#20221)

  • Fixed: some build generate _dbgsym packages (#20193)

  • Fixed: error in logs at install about policy-server.pem (#19737)

  • Fixed: error at upgrade of rudder to 7.0 (#20031)

Documentation

  • Fixed: Documentation about collection access in jinja2 template is incorect (#20234)

  • Fixed: Document that HTTP port is not configurable with SELinux policies (#20200)

  • Fixed: Remove old logo from Rudder docs (#20189)

  • Fixed: Complete documentation on how to set up dev environment for 7.0 (#20195)

Performance and scalability

  • Fixed: Do a git gc periodically (#17767)

  • Fixed: Improve compliance computation efficiency (#20254)

  • Fixed: improve compliance computation efficiency (#20253)

Web - UI & UX

  • Fixed: Improve compliance bars display in Rules UI (#20197)

  • Fixed: source map missing in 7.0 (#19935)

  • Fixed: Fix a css issue in the Technique Editor tree (#20214)

  • Fixed: "Save changes" button on the policy mode form is broken. (#20210)

  • Fixed: Status displayed in the rules table is incorrect (#20202)

  • Fixed: Can’t get over page "Getting Started" (#20207)

  • Fixed: Rule table scroll the whole page and not the rule table section when there is too much Rule (#20201)

  • Fixed: Display policy mode in Rule lists (#20140)

  • Fixed: Edit mode should be enabled by default when creating a new rule (#20194)

  • Fixed: When creating a rule, the Select Directives and Select Groups buttons do not work (#20188)

Language

  • Fixed: technique cannot be compile if name contains \\"x (#19888)

  • Fixed: rudderc doesn’t support multiline text (#19900)

Web - Nodes & inventories

  • Fixed: Rocky Linux is not recognized (#20239)

Web - Technique editor

  • Fixed: Technique draft should be deleted on save (#20241)

  • Fixed: it’s not possible to reorder method in a block in technique editor (#19954)

  • Fixed: it’s not possible to reorder method in a block in technique editor (#19954)

  • Fixed: Cannot save a technique with a block with reporting focused on one method (#19769)

Plugins integration

  • Fixed: when upgrading from 6.2 to 7.0 with the dsc plugin, webapp doesn’t work (#20204)

System techniques

  • Fixed: /root/.pgpass and /opt/rudder/etc/rudder-web.properties have rudder_parameters.rudder_file_edit_header on Rudder 7.0 (#19929)

Generic methods

  • Fixed: Document that "package_verify" is deprecated (#20151)

Release notes

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.0 is currently the next version of Rudder. == Rudder 7.0.0.beta2 (2021-10-23)

Changes

Documentation

  • Apply the new graphic charter to the documentation (#20145)

  • Update the doc for external database setup (#19849)

  • Use the new favicon for docs.rudder.io (#19914)

  • Make a nice index page for logos (#20036)

System integration

  • Add a feature switch for rudderc use during generation (#20099)

Plugins integration

  • Rudder package should try to install nightly plugins when Rudder is installed as a nightly version (#20134)

Language

  • rudder language generate_lib should use the existing ncf python library instead of implement itself the ncf methods parsing (#20130)

  • Support reporting logic metadata in language (#19926)

Web - UI & UX

  • Display the 'Compliance by Nodes' table (#19880)

  • Display directive tags in rule details (#20111)

  • Add filters on Groups in rule details (#20024)

Miscellaneous

  • Missing API and data for Rule page: special targets and node compliance (#20112)

Web - Compliance & node report

  • Add revision to rule (#20081)

Web - Technique editor

  • Introduce technique drafts (#19995)

  • Make the technique editor more integrated and accessible (#19985)

Web - Config management

  • Improve rudder package output (#19967)

Web - Nodes & inventories

  • Remove all.log setting (#19951)

Architecture - Refactoring

  • Remove exception classes (#19946)

Packaging

  • Improve rust build times (#19915)

CI

  • Change the slack notification form the ncf tests (#20143)

Generic methods

  • We should be able to return an arbitrary report from the technique editor (#20007)

  • Improve parameter naming (#18868)

Bug fixes

Packaging

  • Fixed: ubuntu 13 doesn’t support tlsv1.2 (#20122)

  • Fixed: Some package still download sources from rudder-project (#20072)

  • Fixed: File /tmp/rudder-plugins-upgrade is never cleaned during an upgrade, so running again rudder-upgrade causes trouble on plugins (#20069)

  • Fixed: old distro build fail to get source (#20063)

  • Fixed: techniques distributePolicy and server-roles are not removed from /var/rudder/configuration-repository/techniques/system when upgrading from 6.2 to 7.0 (#20060)

  • Fixed: create migration script for database change in 7.0 (#20021)

  • Fixed: SELinux error when upgrading from 6.2 to 7.0 on centos8 (#20035)

  • Fixed: Agent key does not work for HTTP on migrations (#20070)

Plugins integration

  • Fixed: Rudder patch upgrade fails on plugin upgrade (#20098)

  • Fixed: Don’t allow directory traversal through plugin URL (#19969)

Web - Maintenance

  • Fixed: don’t show wizard after an upgrade (#20094)

  • Fixed: Error when unserializing ChangeRequest modifying Directives based on Techniques that have been deleted (#3783)

Documentation

  • Fixed: Properly use lato in docs (#20166)

  • Fixed: Improve search bar visibility and appearance (#20168)

  • Fixed: Convert text to vector paths in the Rudder documentation logo (#20167)

  • Fixed: Fix lato usage in api docs (#20171)

  • Fixed: Use standard formatting for GPLv3 (#20061)

Web - Config management

  • Fixed: cannot create or modify a rule (#20186)

  • Fixed: Add a way to load/unload rule revision in LDAP (#20097)

  • Fixed: Rules can’t be accessed directly by url, all redirection broken (#19872)

  • Fixed: rules sorting does not work and they are not sorted by default (#19871)

  • Fixed: Typo in log "deletedbut" (#19956)

Web - UI & UX

  • Fixed: Hide Technical logs tab (#20139)

  • Fixed: Make the tree categories foldable (#20164)

  • Fixed: Display tags in rule lists (#20149)

  • Fixed: Display directive tags inside Compliance table In Rule details (#20148)

  • Fixed: Getting started setup fails to send metrics (#20042)

  • Fixed: Allow categories to be moved in the Rules tree (#20116)

  • Fixed: Improve user experience when selecting Directives and Groups (#20090)

  • Fixed: Add filter to the directive lists in Rule details (#19987)

  • Fixed: Make the search bar of the Rules list work (#19971)

  • Fixed: Display the name of the groups of a rule instead of their id (#19981)

  • Fixed: Tags of a rule cannot be deleted (#19977)

  • Fixed: launch set-up wizard on first connection (#19898)

  • Fixed: Display the name of the groups of a rule instead of their id (#19981)

Web - Compliance & node report

  • Fixed: Duplicated expected reports leads to bad compliance for technique with blocks (#20124)

  • Fixed: No reporting on a fresh 7.0~beta2 install (#20104)

  • Fixed: Technique editor blocks do not report as expected (#19990)

  • Fixed: When 2 changes are close in time, expected report on the compliance page don’t show the new config (#19740)

Language

  • Fixed: DSC policies are generated without the conditions (#20083)

  • Fixed: disable variable methods that don’t work with language until we find a proper solution (#20146)

  • Fixed: Update generate lib to match new generic method parameters (#20062)

  • Fixed: Improve rudder language states documentation (#20107)

  • Fixed: Error on missing resource is not explicit (#20103)

  • Fixed: After migrating from 6.2 to 7.0, techniques that were totally valid may become invalid because of name collision in rudderc (#20065)

  • Fixed: disable reporting in the technique editor does nothing in rudderc (#20015)

  • Fixed: rudder-lang in 7.0 should use ncf 7.0 (#20041)

Relay server or API

  • Fixed: Add an exception to relayd license to allow linking statically with openssl (#20161)

  • Fixed: Vulnerability in chrono (#20160)

  • Fixed: Vulnerability in time crate (#20141)

  • Fixed: Make HTTP keep alive configurable in relayd (#20115)

Web - Technique editor

  • Fixed: Technique draft can’t be deleted (#20137)

  • Fixed: Migrate existing techniques to new naming of method parameters (#20019)

  • Fixed: error in technique editor in rudder 7 when copying class result from within a block (#19953)

  • Fixed: cannot remove a method within a block (#19959)

Web - Nodes & inventories

  • Fixed: confusing search option for Node: "Policy Node ID" (#20093)

  • Fixed: Number of CPU is wrongly reported (#19988)

  • Fixed: Persist revisions of node inventories in fact-repository (#19869)

API

  • Fixed: Missing rights/role mapping for 7.0 endpoints (#20051)

Performance and scalability

  • Fixed: Store processes of an inventory after storing the inventory (#20006)

Architecture - Internal libs

  • Fixed: In CI, technique migration test sometimes throw an NPE (#20009)

System integration

  • Fixed: Need a migration script about changes in system directives, groups and rules (#19650)

  • Fixed: Remove useless bootchecks in rudder 7.0 (#19960)

  • Fixed: Jetty is restarted 3 times during install (#19852)

Architecture - Refactoring

  • Fixed: Change format to call engines in properties (#19943)

Miscellaneous

  • Fixed: Copy to clipboard button for user creation command in login page (#19938)

Security

  • Fixed: there aren’t any authorizations on the rules pages (#19775)

System techniques

  • Fixed: Missing report for inventory (#20154)

  • Fixed: Broken reporting for webdav password when changing http port (#20153)

  • Fixed: Homogenize suse classes in system techniques (#20155)

  • Fixed: boostrap bundle should not be present on relays (#20136)

  • Fixed: Apache is not reloaded when the generated /var/rudder/lib/ssl/nodescerts.pem changes (#20096)

  • Fixed: slow policy generation in Rudder 7.0 (#19771)

Techniques

  • Fixed: sshKeyDistribution doesn’t correctly reports on missing home folder (#19944)

Agent

  • Fixed: rudder agent info should display port information (#20158)

Server components

  • Fixed: grep error in install logs (#20150)

Generic methods

  • Fixed: sharedfile methods don’t have consistent class parameter (#20126)

  • Fixed: Pass the zypper_pattern test in staging (#20108)

  • Fixed: Rename report_if to report_if_condition (#20038)

  • Fixed: generic method parameter name must not change between 6.2 and 7.0 (#20017)

  • Fixed: Fix augeas methods documentation (#19883)

  • Fixed: testinfra based tests should pass via the python executable and not py.test (#20001)

  • Fixed: error in file_key_value_present_in_ini_section (#19992)

  • Fixed: Strict mode of file_key_value_present_option does not introduce unwanted escpaing characters (#19908)

CI

  • Fixed: Remove ubuntu20 from the Jenkinsfile test since thehost is unstable atm (#20056)

  • Fixed: Cover all supported server OS in the PR automated tests. (#19979)

  • Fixed: Add ncf tests to the repo Jenkinsfile (#19970)

Release notes

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.0.0.beta1 (2021-09-08)

Changes

Packaging

  • Package db initialisation script with webapp (#19845)

  • Remove rudder-init.sh link (#19847)

  • Remove check-rudder-agent (#19811)

  • Remove slapd pre-systemd migration logic (#19754)

  • Remove useless log messages from packages scripts (#19749)

  • Harden LDAP hardening compiler options (#19647)

  • CFEngine 3.18 LTS on 7.0 (#19483)

  • Add debian 11 support (#19332)

  • Remove C client build (#19289)

  • Remove unused relay dependencies (#19106)

  • Add cross compile option to agent build (#19098)

  • Add rudder-api-client as a dependency on rudder server (#19060)

  • Package network client on Unix agent (#18974)

  • Embed rudder version into packages (#18932)

  • Remove upgrade path from 5.0 and before (#18917)

  • Remove rsyslog dependency from 7.0 (#18144)

  • Embed augeas in the agent 7.0 and later (#18615)

  • Require at least postgresql 9.6 in 7.0 (#18145)

  • Makefile should fail if no rudder version is provided (#18007)

  • Use rpm %{make} instead of make (#17984)

  • Create a configure to make the agent package (#17941)

  • rudder package makefile should not install things on the system (#17291)

  • Move SELinux policy application into postinst script (#19746)

  • Redirect everything to https (#19733)

  • Update elm to 0.19.1 (#19658)

  • Update Rust to 1.54.0 (#19626)

  • Use Rust 1.51.0 (#19080)

  • Add windows support to http client build (#19046)

  • Build client everywhere (#19007)

  • update rust to stable (1.47) (#18455)

System integration

  • Graceful restart should not wait for 10s (#19035)

  • Remove server roles in webapp and add support for remote postgres (#19625)

Security

  • Improve hardening flags for our C dependencies (#13812)

  • Force TLS 1.2+ in cf-serverd config (#19780)

Documentation

  • Prepare doc for 7.0 (#19842)

  • Add a link to rudder-lang doc in reference manual (#18992)

  • Add lato font to the docs (#19796)

  • Make 7.0 doc build properly (#19791)

  • Add new rudder agent output to release notes (#19475)

  • Update build documentation for 7.0 (#19347)

  • Add a rudder-by-example for post-provisionning reboot (#18074)

  • Build 6.2 embedded doc (#17962)

  • Update doc for new versioning policy (#17147)

  • Rename master branch doc to 6.2 (#17210)

  • New logo for 7.0 (#19837)

  • API documentation for secret variable feature (#19730)

  • New style for language doc (#19805)

  • New style for API docs (#19794)

  • 7.0 has API version 14 (#19793)

  • Add typos check to CI config (#19328)

  • Add an arch doc for certificate changes in 7.0 (#19126)

  • Add rudder-lang publication to Jenkinsfile (#19195)

Web - UI & UX

  • Display number of techniques in the editor (#19913)

  • Update the favicon with the new logo (#19838)

  • Replace the main colours of the interface with those of the new graphic charter (#19809)

  • Update Rules UI (#18264)

  • Make an onboarding wizard in Elm (#18853)

  • Port technique editor in elm (#18953)

  • Upgrade js dependencies to latest version (#18720)

Plugins integration

  • Secrets variables event log (#19646)

  • Make rudder package command use version files (#19476)

  • Adapt rudder package to support new versionning scheme (#18557)

Relay server or API

  • Improve relayd compilation time by 30-40% (#19834)

  • nom 7.0 (#19832)

  • Warn in check config when relayd has an insecure configuration (#19784)

  • Store hashes as bytes (#19528)

  • Update relayd to tokio 1.0 (#18818)

  • Replace stats API by a prometheus endpoint (#18781)

  • Update relayd to tokio 0.2 (#16477)

Web - Maintenance

  • Update certificate validation setting for 7.0 (#19652)

Architecture - Dependencies

  • Update all java dependencies to latests version for Rudder 7.0 (#19612)

  • Upgrade to ZIO 1.0.1 (#18149)

Web - Config management

  • Add a way to disable/enable reporting of a method in technique editor (#19558)

  • Be able to group reporting and methods so that we have clearer techniques and a better reporting (#19323)

  • Move allowed network data to settings (#18730)

  • Use rudderc to compile technique from the editor instead of rudder logic (#19061)

  • Add HTTPS_POLICY_DISTRIBUTION_PORT system variable (#19259)

  • Directly generate policies with correct rights (#18375)

Language

  • Fix language documentation (#19472)

  • Add a lint option to rudderc (#19471)

  • Rename rudder language and extension (#19468)

  • Enable language tests (#19207)

  • replace library metadata by is_dependency based on cli parameters (#19048)

  • add a metadata to generated lib to link deprecated gms to rebranded ones (#18782)

  • DSC: implement diff checker and fix generator (#18566)

  • handle resources that do not have particular state (#18670)

  • impl exception for condition resource conditions (#18450)

  • update backtrace with better performance in parser (#18484)

  • add backtrace to parser (#18478)

  • upgrade testing loop to match new actions and dsc integration (#18300)

  • refactoring DSC generator (#18119)

  • internally use a more secured version type for techniques version (#18275)

  • Split Number in Integer and Float (#18138)

  • command line rework (#18168)

  • Add tests to ir (#18161)

  • Rename ast to IR ans split it (#18152)

  • Implement resource level variables (#18136)

  • Implement case within variable declaration (#18105)

  • Order states in rl doc (#18135)

  • Improve stdlib doc generation (#18129)

  • cargo fmt (#18121)

  • Technique from AST (#18096)

  • remove cf-monitord variables (#18116)

  • update json tests and doc to match new format (#18095)

  • impl serialized Technique struct (#18067)

  • Generate documentation for the stdlib (#18088)

  • move toml data into rudderlang stdlib (#18081)

  • Switch rudder-lang metadata format to toml (#18075)

  • Minor rudder-lang doc fixup (#18071)

  • Parse log_* keywords (#18069)

  • Add source information in enum expression (#18068)

  • Add proper generation for log and fail methods in CFEngine (#18066)

  • add a backtrace option for error handling (#17994)

  • Fix warnings and update dependencies (#18064)

  • Display rudder-lang source in cfengine comments (#18063)

  • Add a source context to statements (#18062)

  • Add na reporting to CFEngine generator (#17955)

  • Switch to nom_locate 2 (#18051)

  • tests clean 2 (#18047)

  • make use of conditional and flow statements for dsc (#17904)

  • clean tests (#18042)

  • differenciate classic and dsc generic methods (#17821)

  • differenciate classic and dsc generic methods (#17821)

  • Improve CFEngine code generation (#17925)

  • Improve CFEngine code generation (#17925)

  • dsc integration (#17585)

  • fix fmt and warnings (#17796)

API

  • Directive tree API (#19440)

  • Remove unused API setting use_reverse_dns (#19236)

Architecture - Refactoring

  • Test zio-json in place of lift-json (#18879)

System techniques

  • Remove CFEngine enterprise specific policies (#19827)

  • Only reload relayd when a restart is not needed (#19704)

  • Force TLS 1.2 in all CFEngine communication (#19634)

  • Remove automatic roles management (#19541)

  • Use agent certificate in place of rudder.crt (#19496)

  • Call common client to speak http with the server (#19179)

  • Remove most absolute hardcoded path in the bundle common g (#19050)

  • homogenize class parameters names and descriptions for each resource (#18439)

Techniques

  • Read nodecerts.pem on simple relayd (#19681)

Miscellaneous

  • Refactor the system techniques by component (#19037)

Agent

  • Improve agent commands output (#19778)

  • Add certificate pinning information to rudder agent info output (#19623)

  • Add proxy and port change support to rudder agent (#19205)

  • Add proxy and port configuration to https client (#19515)

  • Rudder agent log and history are missing options (#19423)

  • Add rudder http client to rudder agent (#19178)

  • Use embedded version file in rudder agent version (#19155)

  • Add a CN to our agent certificate (#18808)

Generic methods

  • Sync masterfiles with 3.18.0 upstream (#19484)

Bug fixes

Agent

  • Fixed: Error in agent about empty file backup (#19830)

  • Fixed: rudder-agent-postinst fails in 7.0 while closing fd (#19429)

  • Fixed: run inventory should not include /etc/profile (#18026)

  • Fixed: rudder packages refuses to install -SNAPSHOT plugins (#19690)

  • Fixed: Client fails to validate certs on some systems (#19101)

  • Fixed: Add tests for Rudder client (#18998)

  • Fixed: Implement missing calls in network client (#18976)

  • Fixed: Add a curl/openssl wrapper for sending file to policy server without validating host (#18844)

  • Fixed: rudder-agent check sleep and process pile-up (#16859)

  • Fixed: Stop using removed system API (#19825)

  • Fixed: server key reste should also remove HTTP pin (#19783)

  • Fixed: Wrong variable name for server key hash (#19619)

  • Fixed: Inventory fails because rudder-client fails because it needs /opt/rudder/etc/agent.conf (#19583)

  • Fixed: /opt/rudder/share/lib/common.sh fails when the api-token file does not exist (#19563)

Packaging

  • Fixed: Remove rudder-root-rename from webapp package (#19812)

  • Fixed: default cron contains a mustache variable (#19668)

  • Fixed: Add /var/rudder/lib/ssl to agent package (#19638)

  • Fixed: webapp package depends on rust (#19393)

  • Fixed: rsync is a build dependency (#19387)

  • Fixed: Remove build of tomlc99 (#19373)

  • Fixed: rpm-build is a build dependency on sles 12 (#19325)

  • Fixed: Fusion rudder agent certificate patch fails on windows (#19309)

  • Fixed: Rudder 7.0 fails to build when not run from build-task script (#19291)

  • Fixed: embedded version file is not complete (#19154)

  • Fixed: versions file doesn’t contain any commit (#19055)

  • Fixed: init script present on systemd systems (#19054)

  • Fixed: rpmvercmp is missing in 7.0 package (#19053)

  • Fixed: Wrong dependency on augeas (#19052)

  • Fixed: Rudder 7.0 fails to build (#19002)

  • Fixed: %make macro doesn’t exist in rpmbuild (#18996)

  • Fixed: Regenerate Makefile for new dependency (#18949)

  • Fixed: create migration script to remove index on keyvalue (#18111)

  • Fixed: syntax error in solaris package script for 6.2 (#18005)

  • Fixed: Update openssl embedded in relayd to 1.1.1l (#19856)

  • Fixed: Refactor apache configs (#19821)

  • Fixed: Missing changes in SELinux configuration (#19736)

  • Fixed: Missing nodescerts.pem during postinst (#19710)

  • Fixed: warning when upgrading from 7.0 nightly to 7.0 nightly (#19649)

  • Fixed: Fix certificate configuration for httpd (#19504)

  • Fixed: Missing folder exclusion in shell tests (#19265)

  • Fixed: Do not pass xFLAGS as environment (#19012)

System integration

  • Fixed: Fusion inventory cannot read text files that contain BOM (#19315)

  • Fixed: Missing default value for HTTPS port (#19416)

  • Fixed: Warning: Nashorn engine is planned to be removed from a future JDK release (#14753)

  • Fixed: Warning: Nashorn engine is planned to be removed from a future JDK release (#14753)

  • Fixed: rudder agent run does not actually send the inventory (#19594)

Documentation

  • Fixed: Error when building dev site (#18373)

  • Fixed: Rudderify doc rudder-lang doc theme (#18991)

  • Fixed: Symlink to rudder-api-client is not documented to use rtf (#18947)

  • Fixed: Fix doc title level (#19473)

Miscellaneous

  • Fixed: wrong option name in rudder package command (#19923)

  • Fixed: Filter on generic methods name should not be case sensitive (#19565)

  • Fixed: Specify relayd as user agent (#19232)

Web - UI & UX

  • Fixed: Saving groups in the rules UI is broken (#19881)

  • Fixed: Refresh the list of Rules after saving (#19743)

  • Fixed: there is no indication on column sorting in nodes table in rudder 7.0 (#19666)

  • Fixed: Display of configuration of nodes table column is not great in 7.0 (#19665)

  • Fixed: typo in onboarding program for metrics (#19682)

  • Fixed: JS error while initializing Elm app since we upgrade elm to 0.19.1 (#19662)

  • Fixed: Broken group properties (#19654)

  • Fixed: Multiples UI error on 7.0 (#19562)

  • Fixed: all small icons are broken in 7.0 (#19620)

  • Fixed: Rename settings menu to administration (#19617)

  • Fixed: Display of DataTables' pagination buttons is broken. (#18881)

  • Fixed: Upgrade font awesome to latest version (#18728)

  • Fixed: Group property inherited tooltip is not visible (#17546)

Web - Technique editor

  • Fixed: disable reporting option is not saved in technique editor (#19719)

  • Fixed: Technique editor allows empty technique name (#19865)

  • Fixed: documentation of generic methods is broken in 7.0 - and t cannot be selected / copy/pasted (#19717)

  • Fixed: minor & major versions for conditions don’t work in technique editor in rudder 7 (#19718)

  • Fixed: On technique editor, the Categories section doesnt look great (#19714)

  • Fixed: The information pointer on generic method doesn’t display information (#19819)

  • Fixed: generic method group link has the wrong cursor (#19818)

  • Fixed: result condition are canonifying variables (#19776)

  • Fixed: Saving a technique fails when a resource was unchanged (should be untouched) (#19802)

  • Fixed: copy to clipboard button of resource in Technique editor doesn’t copy to clipboard (#19801)

  • Fixed: result condition in the technique editor are wrong (#19773)

  • Fixed: generated bundle name of technique is invalid, as it is postfixed by _technique (#19739)

  • Fixed: Add timing logger to technique editor (#19748)

  • Fixed: technique editor uses .rl extension instead of .rd (#19697)

  • Fixed: technique editor uses too many quotes to calls rudderc (#19694)

  • Fixed: "reporting based on" is duplicated on component (#19605)

  • Fixed: error getting techniques when coming back on technique page (#19600)

Plugins integration

  • Fixed: Rudder package should accept plugins with same minor version, not just patch version (#19868)

  • Fixed: rudder-pkg version parsing does not support version numbers containing a git hash (#19413)

  • Fixed: rudder package should now look for rpkg.index in the dedicated plugin repository instead of its root (#18829)

Web - Config management

  • Fixed: When we delete a directive, it’s not removed from the rules (#19786)

  • Fixed: importing directives from rudder 6.2 breaks everything in 7.0 (#19892)

  • Fixed: Saving a rule with deleted directives/groups does not correct it (#19873)

  • Fixed: When we save a rule, the directives are not saved (#19744)

  • Fixed: node properties writen in policies is invalid (#19723)

  • Fixed: versionning is too technical on the directive tree (#19609)

  • Fixed: Broken pom after merge (#19180)

  • Fixed: Add empty technique parameter in technique editor (7.0) (#19123)

Performance and scalability

  • Fixed: debug_timing debug log is polluted by cache last run hashmap (#19894)

Language

  • Fixed: rudderc fails to read blocks in techniques (#19858)

  • Fixed: language cannot use resource parameter (#19855)

  • Fixed: cli tests are ignored in rudderc (#19725)

  • Fixed: rudderc adds .rd to every files it generates (#19724)

  • Fixed: rudderc cannot save technique editor data (#19695)

  • Fixed: language tests fail (#19692)

  • Fixed: Language tests ignore method unique id (#19691)

  • Fixed: Missing lint section in rudderc config file (#19588)

  • Fixed: cis technique compiler fixes (#19009)

  • Fixed: Properly locate entity errors if the source has metadatas attached (#18669)

  • Fixed: ensure state definitions include specific metadatas (#19043)

  • Fixed: ensure state definitions include specific metadatas (#19043)

  • Fixed: Rudder-lang doc misses a mkdir (#18990)

  • Fixed: condition_from fix (#18895)

  • Fixed: handle external variables in conditions (#18827)

  • Fixed: accept enum aliases when checking CF diff (#18816)

  • Fixed: lib generation does not handle gm parameters order properly (#18866)

  • Fixed: fix invalid escape in parameter strings (#18800)

  • Fixed: addd sled to rudderlang supported os list (#18799)

  • Fixed: fix doc generation (#18798)

  • Fixed: generation should work whatever order gm parameters are received (#18696)

  • Fixed: fix makefile (#18649)

  • Fixed: fix ci tests (#18581)

  • Fixed: interpolated variable in conditions should not treat dots as AND operators (#18486)

  • Fixed: add NA logs to cfengine generation (#18440)

  • Fixed: fix makefile test (#18468)

  • Fixed: Rudder-lang doc build broken by ncf parameter (#18371)

  • Fixed: delete tmp file added by mistake (#18342)

  • Fixed: fix version for serde and rudderlang techniques (#18193)

  • Fixed: rudder-lang fails to test its documentation examples (#18169)

  • Fixed: Sort the generated lib (#18128)

  • Fixed: rudder-lang tests fail on system with python2 (#18126)

  • Fixed: Broken generate_lib with python 2 (#18114)

Architecture - Internal libs

  • Fixed: Move elm test in the webapp step to avoid concurrent builds (#19829)

Relay server or API

  • Fixed: File watchers on inventories do not work (#19813)

  • Fixed: Rudder-server-relay postinstall script fails to modify the certificate paths in the apache configuration (#19550)

  • Fixed: Memory corruption in tokio (#19520)

  • Fixed: relayd fails to start because of incorrect default logging config handling (#19497)

  • Fixed: Broken reports watcher in 7.0 (#19479)

  • Fixed: Missing catchup limit in 7.0 (#19478)

  • Fixed: Cargo update is needed (#19292)

  • Fixed: Allow verifying upstream server certificate when forwarding files (#18851)

  • Fixed: Update relayd after reporting changes in webapp (#18412)

  • Fixed: Do not fail on missing config id (#18189)

  • Fixed: Add ReportsExecution insertion in relayd (#18124)

  • Fixed: Use cargo-deny to replace cargo-audit (#18123)

  • Fixed: Shared-files correction in postinst must be recursive (#17882)

  • Fixed: Configure relayd to check certificates (#19622)

System techniques

  • Fixed: Allowed networks are not saved for the Relay (#19779)

  • Fixed: relayd is not reloaded when a node is added under a relay (#19826)

  • Fixed: on relay, policies complains about missing /opt/rudder/etc/rudder-passwords.conf that is not on relay (#19788)

  • Fixed: Inventories are not accepted by relays. Need to restart apache2 to make them accept it (#19787)

  • Fixed: Relayd does not start on relays due to missing db config (#19781)

  • Fixed: Invalid /root/.pgpass file in rudder 7 (#19655)

  • Fixed: unexpected reports in rudder-service-relayd (#19606)

  • Fixed: no reports are inserted in database in rudder 7.0 (#19603)

  • Fixed: when the password are updated by the policies, rudder-jetty and rudder-slapd are not restarted (#19584)

  • Fixed: Typo in inventory technique file (#19433)

Security

  • Fixed: Don’t fill system variable with sensitive info on non root server (#19680)

Web - Compliance & node report

  • Fixed: Compliance problem in 7.0 (#19615)

  • Fixed: Broken rules list in directive form (#19651)

Web - Nodes & inventories

  • Fixed: Remove server roles in node details (#19614)

  • Fixed: Properties tab is broken in rudder 7.0 (#19597)

API

  • Fixed: Remove API v1 endpoints (#18511)

Architecture - Refactoring

  • Fixed: webapp build broken in 7.0 (#18825)

  • Fixed: AgentRunsTest and ReportsTest not passing on master (#18151)

Techniques

  • Fixed: delete all deprecated techniques for 7.0 (#19610)

  • Fixed: HTTP download technique should not try to use minicurl (#17261)

Server components

  • Fixed: Rudder server reload-techniques does not work in 7.0 (#19448)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Marek Haluska

  • GaĆ«tan POBLON

This is a bug fix release in the 7.0 series and therefore all installations of 7.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.


← Release notes aix →