Change logs for Rudder 7.1

Rudder 7.1.6 (2022-09-05)

Changes

Bug fixes

Documentation

  • Fixed: Installation documentation for Server has a section about sles12 but we only support sles15 as of 7.0 (#21420)

Web - Config management

  • Fixed: missing list of inpacted rules when creating a directive and applying it to a rule (#21671)

  • Fixed: generated policies are invalid when using a generic method that doesn’t exist on linux (#21686)

API

  • Fixed: API documentation on how to query node is invalid (#21690)

Web - UI & UX

  • Fixed: rollback button in even log can be clicked several time in a row and error are stacked in other screens (#21429)

  • Fixed: Node certificate expiration date does not follow the same format than the others dates in the UI (#21367)

Agent

  • Fixed: rudder package command fails on amazon linux (#21654)

Techniques

  • Fixed: extra & at the end of systemUpdate technique (#21703)

Release notes

This is a bug fix release in the 7.1 series and therefore all installations of 7.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.1.5 (2022-08-31)

Changes

Bug fixes

Web - UI & UX

  • Fixed: Delete group category popup and directive creation popup are not closing (#21666)

Release notes

This is a bug fix release in the 7.1 series and therefore all installations of 7.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.1.4 (2022-08-25)

Changes

Agent

  • Add a disable syslog option to cfengine (#20449)

Security

  • Skip CVE-2022-31197 in checks (#21602)

Architecture - Internal libs

  • Port policy writting test to rudder 7.1 (#21477)

Techniques

  • Update techniques conditions for rhel9 (#21588)

Bug fixes

Packaging

  • Fixed: Postinst message on AIX about hostname rudder not found (#21626)

Web - UI & UX

  • Fixed: when validating change in directive, a popup appear, but the background is only half grayed out (#18575)

  • Fixed: when validating change in directive, a popup appear, but the background is only half grayed out (#18575)

  • Fixed: once we setup the Rudder server, we have an option to go to the getting started…​ which doesn’t work (#21488)

  • Fixed: Filter in URL doest work on tab list of nodes (#21558)

Web - Nodes & inventories

  • Fixed: Cannot edit/detele an empty group category (#21599)

Web - Technique editor

  • Fixed: When we change the status of a technique parameter from required to may be empty, it returns to required after saving (#21560)

  • Fixed: result condition are not correct in the technique editor when using properties or variables (#21515)

  • Fixed: Cannot delete technique in the technique editor if it contains a space in its name (#21491)

Relay server or API

  • Fixed: Unsoundness in "owning_ref" (#21538)

Architecture - Internal libs

  • Fixed: Some tests not run because of bad class name (#21534)

  • Fixed: Path.of is not available in java8/rudder 7.1 (#21524)

Performance and scalability

  • Fixed: Improve group node computation (#20758)

System integration

  • Fixed: Correct BOM file in ps1.st used in test (#21498)

Web - Config management

  • Fixed: Concurrent delete of policy backup directory can lead to useless error (#21482)

Documentation

  • Fixed: improve contributing doc to state how to generate inventories (#21476)

System techniques

  • Fixed: Permissions are not preserved in shared-files on the relays (#21617)

  • Fixed: Broken reload command in apache logrotate configuration (#21612)

Techniques

  • Fixed: cron configuration restarts cron every 5 minutes on ubuntu22 (#21600)

Miscellaneous

  • Fixed: Improve handling of certificates not matching the key (#21616)

Agent

  • Fixed: Properly display report_json reports in agent output (#21622)

Generic methods

  • Fixed: Broken jinja2 templating on ubuntu 22.04 (#21606)

  • Fixed: rudder agent run man git-stash (#21525)

Release notes

This is a bug fix release in the 7.1 series and therefore all installations of 7.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.1.3 (2022-07-26)

Changes

Bug fixes

Packaging

  • Fixed: Missing dependency on gpg breaks "rudder package" command fails on minimal installs (#21061)

Security

  • Fixed: Update embedded openssl to 1.1.1q (#21360)

  • Fixed: URL with "%3B" (ie ';') leads to a stacktrace (#21463)

  • Fixed: JSESSIONID cookie should have a SameSite policy (#21445)

  • Fixed: Add HSTS config (commented for now) (#21438)

Web - Nodes & inventories

  • Fixed: 502 - Proxy Error when triggering Rudder agent (#21170)

  • Fixed: Using '{' in node property lead to error (#21322)

Performance and scalability

  • Fixed: API to fetch nodes + software times out on large instance (#21241)

Web - UI & UX

  • Fixed: Refresh Button in Rules menu under Directives Tab is not working (#21264)

  • Fixed: Impossible to put a Rule in a subcategory (#21175)

  • Fixed: Cancel button not showed within disable rule menu (#21171)

Web - Config management

  • Fixed: Links to rules inside a directive webpage redirect to the general rule webpage (#21372)

CI

  • Fixed: Ignore rudder-lang repos in script checks (#21364)

Miscellaneous

  • Fixed: Remove unused variable newCall in JRTechniqueElem (#21355)

Web - Compliance & node report

  • Fixed: In HTTPS mode, we may have errors in logs about duplicate messages that are totally legit (#21352)

Architecture - Refactoring

  • Fixed: Tests fail due to policy mode definition in MockServices (#21336)

Web - Technique editor

  • Fixed: Prevent adding carriage return in the condition in technique editor (#21126)

Documentation

  • Fixed: Some reponses are missing in technique api doc (#21304)

Agent

  • Fixed: Deprecation warning with package methods on Ubuntu 22.04 LTS (#21206)

Release notes

This is a bug fix release in the 7.1 series and therefore all installations of 7.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.1.2 (2022-06-22)

Changes

Documentation

  • Add documentation to install Rudder server on Amazon linux 2 (#21183)

  • Update api doc tooling (#21232)

Bug fixes

Relay server or API

  • Fixed: relayd can’t connect to postgresql on Ubuntu 22.04 server (#21219)

  • Fixed: Missing SELinux rules for httpd on RockyLinux (#20263)

  • Fixed: relayd error messages about config files are lacking path information (#21279)

  • Fixed: Allow .ocs files as inventory (#21270)

  • Fixed: Missing encoding of postgresql password (#21203)

  • Fixed: Query seems to be ignored for pendings nodes (#20281)

Packaging

  • Fixed: parsing of system fusioninventory is invalid (#21211)

Documentation

  • Fixed: Typo in documentation to change ports used by rudder (#21210)

  • Fixed: Missing API documentation for technique (#21254)

Techniques

  • Fixed: When upgrading to 7.1, techniques are not upgraded to the new format and reporting issue occur (#21220)

  • Fixed: systemUpdate technique parameters should accept properties as input (#21291)

Security

  • Fixed: Ignore CVE CVE-2022-22978 that will not be fixed in 6.1/6.2 dependencies (#21263)

  • Fixed: Upgrade spring-security to 5.5.8 to fix CVE 2022-22978 (#21237)

Web - Config management

  • Fixed: GetMetadataContent does not correctly retrieve content when a revision is given (#21260)

Architecture - Internal libs

  • Fixed: Query string is not correctly parsed in test API framework (#21253)

Web - Technique editor

  • Fixed: When a technique is not in the active techique tree, it can’t be deleted in editor (#21119)

Web - UI & UX

  • Fixed: Missing icon in technical logs for error messages (#18918)

Performance and scalability

  • Fixed: Improve performance of display for agent version on homepage (#21230)

rudderc

  • Fixed: During upgrade of techniques, rudderc is used even if disabled (#21229)

CI

  • Fixed: Race condition between elm builds (#21156)

Generic methods

  • Fixed: The mustache template examples in our documentation do not respect the mustache standard (#21286)

Release notes

This is a bug fix release in the 7.1 series and therefore all installations of 7.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.1.1 (2022-05-31)

Changes

Plugins integration

  • Add windows support to the inventory software update section (#21067)

Web - UI & UX

  • Provide a version of the OS icons without text (#21071)

  • Update css related to the change validation plugin (#21052)

Server components

  • allow a user to pass a password to server create-user command (#20675)

Bug fixes

Packaging

  • Fixed: Embed openssl on ubuntu 22.04 (#21040)

  • Fixed: ubuntu22 build options are missing (#21036)

  • Fixed: Ubuntu 22 needs python3 as build dependency for rudder-agent (#21035)

  • Fixed: Backup ca.cert like other cert files (#21143)

Documentation

  • Fixed: Documentation about certificate handling during uprade is not great (#21129)

  • Fixed: Mark 7.1 as released in the docs (#21030)

Performance and scalability

  • Fixed: Adapt rule details to have the list of directives/nodes that appear faster (#21081)

  • Fixed: The way groups are fetched when responding to API compliance is inefficient (#21028)

Relay server or API

  • Fixed: Huge broken logs in relayd (#21157)

Security

  • Fixed: security checks fails because of request to sonatype oss index (#21179)

  • Fixed: Fix some cve in dependencies (#21169)

  • Fixed: Ignore some CVE that cannot be fixed in 6.1 branch (#21103)

  • Fixed: Ignore some CVE that cannot be fixed in 6.1 branch (#21103)

  • Fixed: Don’t display oauth/oidc client secret in logs (#21077)

  • Fixed: Ignore CVEs for spring-ldap-core (#21027)

  • Fixed: Update spring and logback version because of new CVE (#21022)

System integration

  • Fixed: Root log explain_compliance is in debug by default (#21166)

  • Fixed: rudder package does not sort plugin version correctly (#21121)

Web - Nodes & inventories

  • Fixed: Criteria not working when filter on IP adress and GoupID in group page (#21144)

  • Fixed: Sometime inventory processing is not done when inventory is receveived (#19585)

  • Fixed: List of nodes by version does not include windows nodes (#17728)

Web - Technique editor

  • Fixed: Filter on agent type on technique editor is not correctly shown (#21160)

API

  • Fixed: Directive and rule revision is not parsed in API (#21150)

  • Fixed: Rudder incorectly parse URL with a '+' in the path into spaces (#20943)

  • Fixed: Deleting a rule’s category leeds to an error (#21080)

  • Fixed: Update api doc tool chain (#21073)

  • Fixed: Generation not started when modifying authorized network via API (#20979)

Web - Config management

  • Fixed: condition from windows node does not take condition from blocks (#21108)

  • Fixed: Revision are taken into account during generation (#20929)

Architecture - Refactoring

  • Fixed: Scala does not really supports [_:P] syntax (#21107)

  • Fixed: Update TechniqueVersion to conform to method visibility (#21106)

Web - Compliance & node report

  • Fixed: Compliance percentage computation in ComplianceLevel is not correct, and performance is not correct (#20998)

  • Fixed: Compliance percentage computation in ComplianceLevel is not correct, and performance is not correct (#20998)

Web - UI & UX

  • Fixed: Fold and unfold all categories button not working in rules page (#21079)

  • Fixed: In Nodes table, the "Edit columns" button should be renamed when activated (#21013)

  • Fixed: Sort by status does not work on rules table (#21010)

System techniques

  • Fixed: Error in relay policies when disabling file sharing in policies (#21125)

  • Fixed: Rudder server 7.X generates invalid configuration for 6.X relayd (#21122)

  • Fixed: When updating allowed networks of a relay, rudder-cf-serverd service does not seem to be restarted (#20993)

Techniques

  • Fixed: wrong spelling of wily in apt package manager settings (#21113)

Generic methods

  • Fixed: Reporting issues when using multiple directives of the same technique on a node (#21088)

  • Fixed: multiple calls to file_from_template_jinja2 in audit fails (#20913)

CI

  • Fixed: Ci does not properly clean its test files (#21178)

  • Fixed: Improve cleanup of root-owned files in tests (#21130)

Release notes

This is a bug fix release in the 7.1 series and therefore all installations of 7.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.1.0 (2022-04-25)

Changes

Techniques

  • Add a system-update technique for classic agents (#20988)

Bug fixes

Documentation

  • Fixed: Fix the relayd logging documentation (#20985)

Miscellaneous

  • Fixed: Document that port 5309 can be disable in node configuration (#20982)

Web - Technique editor

  • Fixed: The display of the DSC icon is broken in the technical editor (#21016)

  • Fixed: Unable to open a block within a block when it has just been drop from the list (#20787)

  • Fixed: When cloning a block with two identical methods, only one is cloned (#21001)

Web - Compliance & node report

  • Fixed: Techniques with no component define have no reporting (#21007)

  • Fixed: Techniques with no component define have no reporting (#21007)

  • Fixed: Bad number of component for 2 block with same name same content (#21000)

Web - Maintenance

  • Fixed: Download as zip in archives page returns a 404 (#20903)

Web - Nodes & inventories

  • Fixed: Two same envvar modulo a space at begining of name leads to LDAP error when saving inventory (#20984)

System techniques

  • Fixed: when database is not on the root server, policy generation fails (#20986)

Generic methods

  • Fixed: report_if_condition method does not support expressions in its input (#21011)

Release notes

This is a bug fix release in the 7.1 series and therefore all installations of 7.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.1.0.rc1 (2022-04-08)

Changes

Packaging

  • We should detect malformed patch in the packaging to disallow building incorrect packages (#9810)

Documentation

  • Prepare doc for 7.1 (#20945)

Generic methods

  • Allow managing other types of systemd units (#18553)

Bug fixes

Packaging

  • Fixed: rudder-webapp requires rsync to build for RHEL (#20974)

Agent

  • Fixed: Lower the log level of the "Skipping adding class […​] as its name is equal or longer than 1024" message (#20960)

  • Fixed: In SLES 15, SP is view as part of version - Rudder 7.0 (#20950)

Documentation

  • Fixed: Broken list of compatible OS in 7.0 (#20942)

Miscellaneous

  • Fixed: Show more details in exception when parsing an invalid technique version (#20976)

  • Fixed: Update spring to 5.2.20 to fix CVE-2022-22965 (#20972)

  • Fixed: Update spring to 5.2.20 to fix CVE-2022-22965 (#20972)

  • Fixed: Add support for report id reporting with Windows agent (#20963)

  • Fixed: "Disable reporting" for windows method calls does produce unexpected reports (#20897)

Web - Technique editor

  • Fixed: Correct minor version condition for Ubuntu in technique editor (#20973)

Security

  • Fixed: Update jdbc postgres driver to 4.2.25 for CVE-2022-21724 (#20969)

Web - Compliance & node report

  • Fixed: Removed report in compliance when calling several times the command_execution with same value (#20880)

Web - UI & UX

  • Fixed: Hide action buttons if the user does not have write permission on the Rules (#20961)

  • Fixed: Edit mode should be enabled by default when creating a rule (#20954)

  • Fixed: In the technical logs table of a node, mouse cursor should not change when hovering a Status badge (#20953)

  • Fixed: Remove the transparent div that covers the Properties tab and prevents interaction with it. (#20951)

  • Fixed: Displays a warning icon for directives that are not used by any rule. (#20692)

API

  • Fixed: Add new software update fields to API doc (#20947)

System techniques

  • Fixed: Increase default value of maxconnections (#20946)

Generic methods

  • Fixed: Broken reporting for double nested method calls (#20944)

Release notes

This is a bug fix release in the 7.1 series and therefore all installations of 7.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.1.0.beta2 (2022-03-25)

Changes

Web - UI & UX

  • Glitch in node compliance details (#20693)

Architecture - Internal libs

  • Add name for spring security main auth configuration bean to be used by oauth2 (#20886)

Generic methods

  • Generic method to raise a reinventory (#5684)

Bug fixes

Security

  • Fixed: Update embedded openssl to 1.1.1n (#20894)

Documentation

  • Fixed: Correct doc on windows KB update (#20891)

  • Fixed: backup/restore doc is incomplete (#20888)

Web - Config management

  • Fixed: Starting policy generation by hand fails if node-configuration-hashes.json (#20926)

  • Fixed: Built in Techniques using generic methods have no reports with new report id (#20883)

Web - UI & UX

  • Fixed: Remove the AngularJs application from the API accounts page (#20901)

  • Fixed: Wrong redirect url for system group in rule page (#20782)

  • Fixed: Applied directive doesn’t show up when there is no node (#20856)

  • Fixed: We cannot filter rules by tag anymore (#20848)

  • Fixed: We cannot filter rules by tag anymore (#20848)

Web - Technique editor

  • Fixed: When editing files with the technique editor resources manager, newlines at the end of file are trimmed (#19319)

Miscellaneous

  • Fixed: Compilation warning on branche 6.2 (#20874)

System techniques

  • Fixed: Set a report id for all method called within new 7.1 system techniques (#20919)

Techniques

  • Fixed: post hook for copyGitFile on windows don’t report (#20909)

  • Fixed: dsc techniques have invalid parameters when calling generic method (#20907)

  • Fixed: Use report_data.component_key instead of value passed as parameter (#20918)

Generic methods

  • Fixed: Variable string from command fails when command contains control structures (#20128)

  • Fixed: Adapt new rudder report to work with techniques (#20882)

  • Fixed: All classes manipulations are ineffeccient because there are repeated 3 times (#20885)

  • Fixed: Broken reporting for double nested method calls (#20863)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Florian Heigl

  • Alexis TARUSSIO

This is a bug fix release in the 7.1 series and therefore all installations of 7.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.1.0.beta1 (2022-03-17)

Changes

Web - Nodes & inventories

  • Add available software updates in inventory (#20663)

Packaging

  • Remove the old technique editor (#20578)

  • Remove old migration logic from packaging (#19766)

  • Update rust to 1.58.0 (#20572)

Documentation

  • Windows support should be documented as the other agents (#20835)

  • Add a compatibilty table for agent relay server in the documentation (#20621)

  • Prepare 7.1 API doc (#20737)

Performance and scalability

  • Serialization of NodeConfigurations is fairly expensive (#16197)

Web - Compliance & node report

  • Use a unique id to identify reports (#20747)

  • Use a unique id to identify reports (#20747)

Language

  • Document the rudder-lang and technique editor incompatibilities (#20766)

Relay server or API

  • Update relayd dependencies (#20473)

  • Use gumdrop instead of structopt (#19790)

Techniques

  • Reformat all the statements in userManagement technique (#20878)

Generic methods - File Management

  • Improve File from HTTP server method documentation (#20810)

Bug fixes

Packaging

  • Fixed: broken rudder-upgrade in 7.1 (#20862)

  • Fixed: Delete virtualenv from webapp dependencies (#20733)

Security

  • Fixed: Vulnerability in the regex crate (#20872)

API

  • Fixed: Some api response have an id field but should’nt have one (#20871)

  • Fixed: Broken allowed network curl example (#20844)

Web - UI & UX

  • Fixed: Do not allow the creation of an account with an empty name or with the same name as another account (#20857)

  • Fixed: Rewrite the API account page in Elm (#20683)

Architecture - Internal libs

  • Fixed: Duplicate classes RudderUserDetails (#20734)

CI

  • Fixed: Don’t skip tests in webapp publish (#20812)

  • Fixed: Missing clean in webapp publish (#20772)

Web - Technique editor

  • Fixed: Suppressed techniques coming back to life forever (#19006)

Architecture - Refactoring

  • Fixed: NodeAndPolicyServerReturnType name is misleading for search that include root server (#20802)

Performance and scalability

  • Fixed: Improve dynamic group computation speed and fix inverted searched (#20716)

Web - Nodes & inventories

  • Fixed: List of directive for the pending node is invalid (#20736)

Architecture - Dependencies

  • Fixed: Maven needs <version> tag even if version is in <dependency-management> (#20727)

Techniques

  • Fixed: Unexpected reporting in userManagement in audit when user is not present (#19427)

  • Fixed: Patch dsc techniques according to #20830 (#20832)

  • Fixed: When upgrading from 6.2 to 7.0, the previous rudder logrotate configuration is not removed (#20792)

System integration

  • Fixed: Logrotate configuration for relayd is broken (#20791)

Generic methods

  • Fixed: use report_id for command_execution generic method (#20864)

  • Fixed: No report from sysctl generic method (#20612)

Release notes

This is a bug fix release in the 7.1 series and therefore all installations of 7.1.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.


← Release notes cve →