Change logs for Rudder 7.3

Rudder 7.3.16 (2024-07-02)

Changes

Documentation

  • Specify which repo to use in compatible os page (#24901)

Architecture - Code maintenance

  • pylint test failing on rudder package (#24982)

Architecture - Internal libs

  • Add hotswap agent conf file to gitignore to prevent surprises in production site (#24961)

Generic methods

  • Missing a generic method "command_execution_as_user' (#22904)

Bug fixes

Packaging

  • Fixed: Detection of remote database url in postinstallation script is not correct (#24969)

  • Fixed: rudder server debug fails on almalinux 8 (#21941)

Security

  • Fixed: Escape ids to avoid XSS in rules and directives page (#25050)

  • Fixed: Ignore braces DoS in 7.3 (#24995)

Web - UI & UX

  • Fixed: Error message when getting campaign through API (#24959)

Release notes

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.15 (2024-06-05)

Changes

Bug fixes

Packaging

  • Fixed: cross compiled packages cache may interfere with other ones (#24932)

Web - UI & UX

  • Fixed: The Directive button in pending nodes table has an old appearance (#24948)

Miscellaneous

  • Fixed: Option to force validation of change requests cannot be set via API (#24845)

Security

  • Fixed: Creating elements with custom IDs can lead to inconsistent behavior (#24856)

  • Fixed: We cannot login with a user login containing uppercase letter if the option case-sensitivity is set to false (#24839)

API

  • Fixed: Never return a password for plugin settings (#24828)

Plugins integration

  • Fixed: When there are more nodes than supported by licenses, no logs in webapp states it (#24817)

Relay server or API

  • Fixed: relayd stop runlog processing on invalid run info (#24792)

Release notes

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.14 (2024-04-25)

Changes

Web - Compliance & node report

  • Document stopping process before Postgres restore maintenance to avoid primary key constrain get corrupted (#9752)

Web - Config management

  • Have a reset-keys button on the node screen (#12791)

Web - UI & UX

  • Plugin information is too empty when there is no plugin (#24352)

Architecture - Code maintenance

  • Scala 3 syntax - branch 7.3 - core (#24532)

Bug fixes

Documentation

  • Fixed: Add warning for properties not case sensitive on Windows (#24234)

  • Fixed: Fix typo in file replace lines (#24609)

Web - Compliance & node report

  • Fixed: Directives applied twice don’t show in rule details (they should be skipped) (#22525)

Web - Maintenance

  • Fixed: Webapp can fail to start with null sessionid error (#24017)

  • Fixed: Missing event for Relay Demote preventing demotion (#24596)

Performance and scalability

  • Fixed: ExpiredCompliance events are pilling up (#24712)

Security

  • Fixed: Disabled provisioned users can still login and use Rudder (#24691)

  • Fixed: Ignore RUSTSEC-2024-0332 (#24678)

  • Fixed: Update dependencies to manage CVE-2024-1597 CVE-2024-22257 and CVE-2024-22243 (#24607)

  • Fixed: npm dep security checks are ignored (#24522)

  • Fixed: Ignore angularjs DoS in 7.3 (#24517)

Web - Nodes & inventories

  • Fixed: Number of nodes in rule badge is not correct with tenants (#24665)

Web - UI & UX

  • Fixed: Typos in node state description (#24668)

  • Fixed: Broken policy mode badge in rule header (#24643)

  • Fixed: Directive errors section is not consistent and always redirects to first tab (#24590)

Relay server or API

  • Fixed: Teach relayd about a new report file name (#24564)

  • Fixed: Vulnerability in mio (#24516)

API

  • Fixed: API export of groups doesn’t export the categories as dependencies (#24295)

  • Fixed: Async tests are failing for node certificates (#24520)

Web - Config management

  • Fixed: Rudder should finish to migrate all techniques when booting instead of stopping on first error (#24515)

System integration

  • Fixed: Missing primary key statement for user sessions table creation when migrating (#24456)

Miscellaneous

  • Fixed: Existing deleted user managed by file cannot be reactivated (#24318)

Techniques

  • Fixed: The services technique is not compatible with Windows (#24763)

System techniques

  • Fixed: Add a unique component to inventory and inventory signature file name (#24560)

Generic methods

  • Fixed: Regex in file replace line must not match the string used as replacement (#24537)

Web - Technique editor

  • Fixed: sysctl value generic method is not reporting (#20853)

Release notes

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.13 (2024-03-11)

Changes

Bug fixes

Documentation

  • Fixed: Documentation on Windows installation misses the dependency on dsc plugin on the rudder server (#24229)

Architecture - Internal libs

  • Fixed: windows Node in tests has invalid certificate, failing test in plugin windows (#24289)

API

  • Fixed: Merge user-management feature branch to 7.3 (#24342)

  • Fixed: Empty role in users file is logged as warning (#24285)

CI

  • Fixed: Adapt Jenkinsfile after warning-ng plugin upgrade (#24301)

Release notes

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.12 (2024-02-29)

Changes

Architecture - Code maintenance

  • Prepare migration to Scala 3 - Version 7.3 part 1 (#24171)

Bug fixes

Packaging

  • Fixed: Rudder upgrade may fail on postgres script (#24232)

Miscellaneous

  • Fixed: Incorrect error message about change request creation failure when it is not needed (#24278)

Plugin manager cli

  • Fixed: Pylint test fails with an exception (#24205)

Architecture - Code maintenance

  • Fixed: Make spotless only check source of current project (#24177)

Web - Config management

  • Fixed: We must not generate policies for nodes without a well formed certificate (#24112)

Web - Maintenance

  • Fixed: Archiving allows to read inconsistent active technique category ids (#24011)

API

  • Fixed: Bad description for serialNumber attribute of machine (#24141)

  • Fixed: For delete API for node, add a message for node already deleted (#24129)

Web - Technique editor

  • Fixed: Action dropdown list in technique editor goes under parameters (#24122)

Release notes

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.11 (2024-02-02)

Changes

Agent

  • We should log an error when a hook timeouts (#23936)

API

  • Add manufacturer field in create node API (#24091)

Web - UI & UX

  • Display the list of pending change requests related to the selected rule (#21931)

Architecture - Code maintenance

  • Remove early return to prepare to Scala3 migration in box sequence/traverse (#23948)

Bug fixes

Packaging

  • Fixed: RHEL9 policies have an incompatible sh shebang (#24057)

  • Fixed: Embed openssl cli on 7.3 (#24019)

  • Fixed: Abort server build if rudder.war is less than 1Mb (#23958)

Documentation

  • Fixed: Fixed ref in documentation for centralized page (#23917)

  • Fixed: Debian source list should force architecture (#23731)

  • Fixed: case-sensitivity parameter of rudder-user.xml is not documented (#24024)

Web - UI & UX

  • Fixed: Fix small ui error in the rules information tab (#24079)

  • Fixed: New campaigns button does not conform to our graphic charter (#23938)

  • Fixed: A new group display no nodes while all linux are selected (#22170)

  • Fixed: The health check page has an unnecessary "Show check list" button (#23891)

  • Fixed: The "Category" field in the technique editor is displayed as a mandatory field even if it is an unmutable one (#23883)

  • Fixed: Rename the "Create global property" button in "Create" (#23878)

Security

  • Fixed: Ignore cve on ext-js (unused dependency) (#24071)

  • Fixed: DoS vuln in h2 lib in relayd (#24068)

  • Fixed: Unaffected CVE on jgit and logback (#23982)

API

  • Fixed: If REST url ends with .com, then the .com is removed from path segments (#24036)

Performance and scalability

  • Fixed: Healthcheck on file descriptor should be max 64000 (#24006)

Web - Config management

  • Fixed: Static group which depends on dynamic subgroup must be forbiden (#18952)

  • Fixed: Rudder agent scheduled runs are not triggered at regular interval (#23956)

Server components

  • Fixed: Waning log spam when disabled rudder_compute_changes setting (#23969)

Web - Nodes & inventories

  • Fixed: Missing icon for windows 2022 (#23972)

  • Fixed: We can accept a node with an existing hostname even if node_accept_duplicated_hostname is false (#22197)

Architecture - Internal libs

  • Fixed: Plugin license implementation is not coherent with interface (#23932)

Miscellaneous

  • Fixed: Change request on special:all_nodes_without_role lead to error (#23446)

Techniques

  • Fixed: File content directive add 4 spaces at the beginning of the line (#24022)

  • Fixed: FileTemplate technique fails with an error on the Directory-Create method call (#23954)

Agent

  • Fixed: Prompt warning and ask confirmation for factory reset (#23978)

  • Fixed: when a node has capitals in its hostname agent history doesn’t show manual runs (#23740)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Alexis TARUSSIO

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.10 (2023-12-14)

Changes

Packaging

  • Upgrade curl to 8.5.0 (#23841)

  • Update to OpenSSL 3.0 & CFEngine 3.21 (#23717)

Bug fixes

Agent

  • Fixed: Backport fix for random process killing (#23713)

  • Fixed: Backport fix for random process killing (#23713)

Web - Maintenance

  • Fixed: Event log migration should not be done every time (#23836)

Web - Nodes & inventories

  • Fixed: Update the error message for failed inventory signature check (#23827)

Web - UI & UX

  • Fixed: Sometimes, tooltips in the directives tree remain displayed (#23819)

  • Fixed: Fix typos in error message in technique editor (#23800)

  • Fixed: In Technique Editor, the quicksearch window still appears behind the navigation menu (#23588)

  • Fixed: Technique saving is blocked because of localstorage of drafts (#23475)

  • Fixed: Using deprecated chart.js options generates errors in the console (#23747)

Web - Technique editor

  • Fixed: Content of warning tooltip for unknow method should not overflow (#23801)

rudderc

  • Fixed: rudderc method parsing breaks when method contains several bundles (#23798)

Web - Config management

  • Fixed: Copy the certificates directly without calling the agent after generation (#23783)

Miscellaneous

  • Fixed: Compiler warnings should prevent build (#23657)

Security

  • Fixed: Unescape SQL in eventlog filter (#23724)

Architecture - Code maintenance

  • Fixed: Software DAO can lead to NoSuchElement exception (#23701)

Release notes

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.9 (2023-11-07)

Changes

Bug fixes

Documentation

  • Fixed: Install command with variable $releasever lead to error (#22779)

  • Fixed: Import key section in AIX agent install doc is empty (#23312)

Web - Maintenance

  • Fixed: Event log migration takes too long (#23699)

API

  • Fixed: rudder node api documentation doesn’t mention the softwareUpdate (#23441)

Release notes

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.8 (2023-10-30)

Changes

Packaging

  • Update curl to 8.4.0 (#23559)

Web - UI & UX

  • The "Required/May be empy" button in the parameters of a technique is not intuitive enough (#23610)

  • After creating a change request, give the user a redirection link to its details (#23443)

API

  • Lint shell code examples (#23653)

Architecture - Internal libs

  • Add a test on JDK21 (#23486)

Bug fixes

Packaging

  • Fixed: Openssl embedded in too many OSes (#23678)

  • Fixed: Revert jetty upgrade to 10.0.17 for now (#23648)

  • Fixed: Ensure different cache when embedded various differences (#23533)

  • Fixed: Allow forcing embedding openssl in RPM packages (#23516)

  • Fixed: silent error when upgrading Rudder 8.0-nightly to 8.0-nightly on sles15sp4 (#23480)

  • Fixed: tar is not an explicit dependency of the Rudder server (#22930)

  • Fixed: Dependency on rudder-api-client should be versioned (#23449)

Agent

  • Fixed: Agent uses hardcoded /bin/getent (#23623)

  • Fixed: Memory corruption when inheriting from bodies containing global variables (#23478)

  • Fixed: Function cache can return incorrect results (#23437)

  • Fixed: Don’t try to send reports in initial policies (#23531)

Security

  • Fixed: Several low impact CVE in Jetty 10.0.12 (#23608)

  • Fixed: Assessments of several low impact CVE in current 7.3.x reported by contrastsecurity tool (#23609)

Documentation

  • Fixed: Broken links in docs hmepage (#23643)

  • Fixed: remove all "starting with version <old>" from docs (#23628)

  • Fixed: documentation tells to edit /opt/rudder/etc/rudder-pkg/rudder-pkg.conf to set credential (#23398)

Web - UI & UX

  • Fixed: The tooltip in the compliance bar does not appear when the mouse is hovered over it (#23612)

  • Fixed: When we are logged out, the logout button doesn’t work (#23010)

  • Fixed: Search bar will not work with filters (#23665)

  • Fixed: In technique editor, the "Name" field appears to be optional, whereas it is not. (#23611)

  • Fixed: Recent changes drop down cannot be read (#22518)

  • Fixed: Search bar doesn’t work for group properties (#22516)

  • Fixed: When we search by "is defined" in the group search, we get the previous search value displayed (#16094)

  • Fixed: Typo in warning message (#23592)

  • Fixed: Always display generic method name (#23564)

Web - Nodes & inventories

  • Fixed: On the nodes list, the filter does not work on property based column (#23535)

Miscellaneous

  • Fixed: Last modified attribute of change request is always "unknown" (#19317)

  • Fixed: PostgreSQL error doobie.util.invariant$UnexpectedEnd$ (#22527)

Web - Config management

  • Fixed: Tag are not displayed with a nice diff in eventLog (#15019)

  • Fixed: Quotes in group name generate JS errors when using GroupId criteria (#23320)

Web - Technique editor

  • Fixed: user with read_only right has button that allows to create a technique (#17813)

Plugins integration

  • Fixed: rudder package should not totally fail when parsing index if one entry (#23524)

API

  • Fixed: Add an enum for campaign type in post request doc (#23501)

Web - Compliance & node report

  • Fixed: Focus reporting is not working (#23466)

Generic methods

  • Fixed: Condition_from_string_match fails to be executed multiple times with same inputs (#23554)

  • Fixed: schedule_generic breaks the agent run when the periodicity of a job is null (#23540)

Release notes

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.7 (2023-09-19)

Changes

Bug fixes

Release notes

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.6 (2023-09-15)

Changes

Web - UI & UX

  • Add a placeholder description for groups page like for techniques and directives (#23184)

  • When drag’n drop, the selected method and the targeted drop zone should be more highlighted (#23303)

Relay server or API

  • Update embedded openssl to 3.1 in relayd (#23383)

Web - Nodes & inventories

  • When I enter the "Create a new item" popup to create a group the default field should be Name (#2677)

Documentation

  • Arch doc for policy update (#22589)

Bug fixes

Packaging

  • Fixed: Bump to openssl 1.1.1w (#23410)

  • Fixed: Server install fails with postgresql encoding error (#23388)

  • Fixed: Stop removing the openssl test folder (#23355)

  • Fixed: Don’t build openssl tests (#23255)

Agent

  • Fixed: Wrong source detection on some apt systems (#23387)

Miscellaneous

  • Fixed: Make writing node state to fact repos optionnal (#23424)

Web - UI & UX

  • Fixed: Tables in Rudder UI are sorted alphabetically but should also follow a numerical sort - nodes page (#23427)

  • Fixed: Add a way to set a message if "change audit logs" setting is enabled (#23372)

  • Fixed: Add a way to set a message if "change audit logs" setting is enabled (#23372)

  • Fixed: We can choose the format of the value on deletion in global parameter (#23183)

  • Fixed: Tables in Rudder UI are sorted alphabetically but should also follow a numerical sort (#23335)

  • Fixed: Inconsitency background color in generic method section in technique editor (#23170)

  • Fixed: Inconsistent color of save button in directives (#23196)

Relay server or API

  • Fixed: Allow underscore in file_id in shared-files (#23392)

  • Fixed: Broken log for file_id in shared-files API (#23390)

Web - Maintenance

  • Fixed: Plugin cannot add custom roles or it will be overwritten by boot custom roles (#23098)

Architecture - Code maintenance

  • Fixed: When custom role permission list is empty, reload lead to stack trace (#23305)

Web - Technique editor

  • Fixed: Error when we try to save a draft with a missing parameter name in technique editor (#23256)

Web - Config management

  • Fixed: Error when updating policies on relays when no files has been shared between nodes (#17143)

Techniques

  • Fixed: When the user technique change a password it doesn’t update the date of last change (#23338)

Security

  • Fixed: The "shared_file_to_node" method does not verify its policy server’s certificate with default configuration (#23290)

Generic methods

  • Fixed: When generic method change a password it doesn’t update the date of last change (#23339)

  • Fixed: "Variable string from command" creates empty files in /var/rudder/modified-files (#22584)

Documentation

  • Fixed: Document when a parameter can be a regex (#10713)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Marc Evans

  • Jonathan CLARKE

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.5 (2023-08-11)

Changes

Web - UI & UX

  • After deleting a node, the user should be redirected to nodes list page (#7008)

Bug fixes

Packaging

  • Fixed: Hide postrm script warnings (#23251)

  • Fixed: Rudder Server 7.3.4 doesn’t install on SLES 15 SP4 (#23186)

  • Fixed: Actually allow uninstalling the agent (#23146)

  • Fixed: Agent uninstall fails on Ubuntu 22.04 (#23145)

  • Fixed: relayd build broken (#23247)

  • Fixed: Update spring security (#23221)

  • Fixed: Update embedded openssl to 1.1.1v - relayd (#23217)

  • Fixed: Package install after uninstall only restores uuid (#23239)

Agent

  • Fixed: When we uninstall and reinstall an agent, the agent is not correctly activated (#22413)

Security

  • Fixed: Update openssl and curl (#23192)

  • Fixed: CVE-2016-1000027 false positive detection (#23231)

Documentation

  • Fixed: doc for external db is not very clear (#23245)

  • Fixed: Wrong OS for amazon linux 2023 server install (#23242)

  • Fixed: correct rudder server requirements in doc (#23131)

Plugin manager cli

  • Fixed: rudder package doesn’t upgrade openscap, and it brings a lot of chaos (#23224)

Miscellaneous

  • Fixed: Update Rust compiler to 1.71.1 for security fix (#23216)

  • Fixed: Version 2.0.3 of ZIO cause OutOfMemory error and high CPU load (#23147)

System integration

  • Fixed: Windows agent cannot get immediatly its policies right after being accepted (#23218)

Web - Config management

  • Fixed: Message “Error getting directive compliance” when creating new directive (#22830)

Generic methods

  • Fixed: N/A report message when a block expression is not valid is not rendered correctly (#23212)

Web - Technique editor

  • Fixed: in the technique editor, the drop down list for condition is truncated (#23177)

Web - UI & UX

  • Fixed: Inventory variable that are Json types are listed as plain string types in the UI (#23087)

  • Fixed: Interface color inconsistency for non compliance display (#23004)

Server components

  • Fixed: Broken "server create-user" command when auth file has different formating (#23203)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Florian Heigl

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.4 (2023-07-21)

Changes

Packaging

  • rhel7 server build should depends on python3-pip and python3 (#23083)

  • Repair rhel7 agent build (#23080)

Documentation

  • Document how to script the windows agent install (#23066)

Performance and scalability

  • Make commiting nodes to fact-repo optionnal (#23045)

Web - UI & UX

  • Remove heartbeat configuration from the settings (#22659)

  • Beautify no permission page when user have no rights (#22626)

API

  • Remove "no access" permission in token authorization (#23014)

Agent

  • Add a trust option to rudder agent policy-server (#22629)

Bug fixes

Web - Nodes & inventories

  • Fixed: Missing information in Oracle linux inventory (#23029)

  • Fixed: 502 - Proxy Error when triggering Rudder agent (#22998)

Documentation

  • Fixed: Add relevent items from jetty config to the webapp conf section (#23026)

  • Fixed: Document the report mode setting (#13289)

  • Fixed: Windows agent installation : Documentation improvement (#23018)

  • Fixed: documentation on how to configure rsync relay synchroinisation is missing (#22891)

  • Fixed: Documentation on how to upgrade Rudder to 7.2 is invalid on zypper (#22621)

Web - Compliance & node report

  • Fixed: Bad report maching when reportid are present (#22388)

  • Fixed: Multiline string in component name or value breaks pattern comparison for expected report (#23090)

Miscellaneous

  • Fixed: Generation not queued when one already started (#23074)

Web - Technique editor

  • Fixed: When changes messages are mandatory and saving a technique we have an error message about missing info but technique is saved (#23000)

Web - UI & UX

  • Fixed: There is a blank space above almost every Rudder page (#23042)

  • Fixed: Directives tooltips go under navigation menu (#22530)

Architecture - Code maintenance

  • Fixed: Cache most current Version number to save lots of memory (#22978)

Server components

  • Fixed: Grammar correction in error message (#23027)

Techniques

  • Fixed: Update user management to manage secondary group of user (#22846)

  • Fixed: Update user management to manage secondary group of user (#22846)

Agent

  • Fixed: Hard to understand set-force-audit help (#23008)

Release notes

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.3 (2023-07-03)

Changes

Web - Config management

  • Display inventory variables and values in node details (#22864)

Web - Technique editor

  • Improving the display of Generic Methods in the Technique Editor for a better UX (#22896)

Web - Nodes & inventories

  • OS and hardware inventory information are not discoverable (#22807)

Generic methods

  • Add a methd to force the secondary groups of a user (#22722)

Bug fixes

Packaging

  • Fixed: slackware postinst fails because library links are made too late (#22974)

  • Fixed: slackware doesn’t install initscript (#22962)

  • Fixed: openssl 1.1.1 fails to build on debian 12 armhf (#22954)

  • Fixed: Update embedded openssl to 1.1.1u (#22886)

  • Fixed: build-cache share cache between different rudder versions (#22850)

  • Fixed: Disable http2 in embedded curl (#22809)

  • Fixed: Missing python3 on AL2 leads to missing generic methods in technique editor and big red error (#22551)

  • Fixed: Useless python sed for rhel7 agent package (#22804)

  • Fixed: git is a build dependency for rudder-server package (#22782)

  • Fixed: perl dependencies are missing on AL 2023 (#22765)

  • Fixed: docopt completion is installed in /usr/local/bin (#22868)

  • Fixed: Typos-cli does not build anymore (#22924)

Agent

  • Fixed: Use dist-upgrade on apt systems to see list of pending upgrades (#22839)

Performance and scalability

  • Fixed: resources sent to the browser are not compressed when using a custom cetificate (#22749)

  • Fixed: When we arrive on the node search page with a query pre-filed, the query is done twice (#21236)

Documentation

  • Fixed: Inventory variable doc is wrong about evaluation process (#22956)

  • Fixed: Remove AL2023 from menu doc for server install (#22955)

  • Fixed: Missing postgres version in requirement (#22901)

  • Fixed: Documentation for windows node inventory variable is false (#22865)

  • Fixed: Documentation for windows node inventory variable is false (#22865)

  • Fixed: Missing documentation for AmazonLinux 2023 install for the agent (#22778)

  • Fixed: API doc loads files from cdn.redoc.ly (#22843)

  • Fixed: missing parameters in ruledetails api response (#22783)

Architecture - Code maintenance

  • Fixed: Spurious test error about length of generated password (#22967)

  • Fixed: error in node variable parser for policy server (#22958)

  • Fixed: Exception in page when the user rights list is empty (#22908)

  • Fixed: API are not logged anymore (#22877)

CI

  • Fixed: add label to rudder docker images (#22914)

  • Fixed: add label to rudder-techniques docker images (#22922)

  • Fixed: add label to ncf docker images (#22913)

Web - Maintenance

  • Fixed: NodeProperties value are not correctly serialized in event log (#22946)

  • Fixed: Too many "Policy Update Started" in event logs (#22879)

Server components

  • Fixed: Disable post-generation remote-run by default (#22871)

  • Fixed: Use 8080 port to talk with the webapp in hooks (#22870)

Web - UI & UX

  • Fixed: diff on node properties in event log (at least) is broken (#22933)

  • Fixed: Long change request diff is unusable (#22919)

  • Fixed: JS diff library stop working (#22911)

  • Fixed: TODOs in the UI (#22880)

  • Fixed: Button to add/remove more entries indirectives are inside entries (#22654)

Miscellaneous

  • Fixed: Update relayd rust-openssl dependency due to RUSTSEC-2023-0044 (#22943)

Web - Nodes & inventories

  • Fixed: When we clone a group in Rudder 7.2, newly added properties are not cloned (#22702)

  • Fixed: NPE gz inventory file is corrupted (#22874)

Security

  • Fixed: Directive CSV compliance is not correctly quote-escaped (#22801)

Techniques

  • Fixed: Method calls using a condition are not properly generated when a variable is used in the condition expression (#22785)

Generic methods

  • Fixed: Add a full class prefix in user_secondary_group (#22866)

Release notes

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.2 (2023-05-18)

Changes

Packaging

  • Add debian12 support to agent package (#22747)

Architecture - Internal libs

  • Backport scala 2.13 change for scala 3.0 migration (#22723)

Web - Nodes & inventories

  • VM type is missing in group criteria (#19803)

Bug fixes

Server components

  • Fixed: silent rudder-upgrade failure / plugins were not upgraded when upgrading from 7.2.5 to 7.3.1~nightly (#22689)

Agent

  • Fixed: Errors with Rudder agent on unprivileged containers (LXC) (#15636)

  • Fixed: A node update in bootstrap/initial policies should not fail (#20996)

System integration

  • Fixed: Postgresql is not created with the UTF8 encoding (#20937)

Packaging

  • Fixed: Missing dependency on ps command on RHEL8+ (#22727)

  • Fixed: pip3 refuses to install modules in a system with packages python modules (#22763)

Documentation

  • Fixed: proxy documentation is lost in rudder 7.3 documentation (#22767)

  • Fixed: Backup/restore documentation is missing some important folder backups when using plugins (#22756)

  • Fixed: Installation documentation should use ' instead of " to avoid unwanted bash string interpretation (#22737)

Web - Nodes & inventories

  • Fixed: No local account shown on windows (#22387)

Security

  • Fixed: Error when trying to save a property using xml tags but property actually saved (#19519)

  • Fixed: Healthcheck notification is displayed when a user have no right (#22625)

Web - UI & UX

  • Fixed: Inconsistent colors in hover on the dashboard (#22671)

  • Fixed: Inconsistent colors in hover on the dashboard (#22671)

Web - Compliance & node report

  • Fixed: Warn sign in nodes list for disabled nodes (#19545)

Generic methods

  • Fixed: Reporting error when using a dash for SSH authorized keys method (#22724)

  • Fixed: condition from variable match does not work with node properties (#21026)

  • Fixed: file augeas set doesn’t when value have space (#22725)

  • Fixed: Method File augeas set does not clean augnew files (#22718)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Stefan Schmitt

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.1 (2023-05-04)

Changes

Documentation

  • Add documentation about optional anonymous data collection (#22673)

  • Add install docs for Amazon Linux 2023 (#22628)

CI

  • Notify different channel for security dependency check (#22687)

Web - Nodes & inventories

  • Display sha256 key hash in node details (#22633)

Bug fixes

Packaging

  • Fixed: Rudder agent force a lot of dependencies on RHEL9 (#22610)

Miscellaneous

  • Fixed: Ignore CVE 2023-20860 (#22708)

  • Fixed: Missing "latest" in archive API tests leads to error with upmerge (#22636)

Security

  • Fixed: Vulnerability in decode-uri-component (#22707)

  • Fixed: Ignore RUSTSEC-2023-0034 in relayd (#22706)

  • Fixed: upgrade postgresql drive for CVE CVE-2022-41946 (#22637)

  • Fixed: Stackoverflow if {} used in place of [] for properties in node create api (#22617)

Web - Campaigns

  • Fixed: We should initialize campaign service after plugin were added or else current events will be skipped (before being added again) (#22646)

Architecture - Internal libs

  • Fixed: A deadlock can occur at boot (also a cause of slow initialization) (#22645)

Web - UI & UX

  • Fixed: It’s hard to understand which authentication backend failed when a fallback happens (#20396)

  • Fixed: There are unused css classes due to wrong css class name (#22669)

  • Fixed: Pending nodes History Tab shows duplicate entries (#19258)

  • Fixed: Remove AdminLTE script from login page (#22644)

  • Fixed: Tooltip on enforce/audit label in rules title not working (#20788)

  • Fixed: rules/directives/cancel button doesn’t work (#22517)

Documentation

  • Fixed: Fix typos in system-updates api doc (#22667)

  • Fixed: Relay API documentation is quite hard to find (#22648)

  • Fixed: Update screenshot of the dashboard (#22634)

Web - Maintenance

  • Fixed: JGitInternalError on HistorizeNodeCountService (#22616)

Architecture - Dependencies

  • Fixed: Update spring to 5.3.27 and spring-security 5.7.8 (#22668)

Relay server or API

  • Fixed: Broken shared-files cleanup when file id contains a dot (#22652)

System integration

  • Fixed: Log in hook should got to /var/log and not /tmp (#22649)

Web - Config management

  • Fixed: Error log at boot: Can not find active technique with id 'test_import_export_archive}' (#22614)

Web - Technique editor

  • Fixed: In technique editor, technique with missing generic method need a warning icon (#12282)

System techniques

  • Fixed: Always send start/end reports even in changes-only mode (#22655)

Agent

  • Fixed: Allow skipping reporting when it is disabled (#22653)

Generic methods

  • Fixed: Augeas set method does not correctly handle successive calls (#22677)

  • Fixed: report_if_condition report contain twice "was correct" (#22665)

  • Fixed: Missleading use of parameter variable_name in method condition_from_variable_match (#22620)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Lars Koenen

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.0 (2023-04-07)

Changes

Packaging

  • Add amazon linux to support to specfiles (#22578)

Documentation

  • Document 7.3 windows specific changes (#22613)

  • Arch doc for frontend security (#22512)

  • Update network security arch doc for 7.3 and migration cases (#22505)

  • Update network security arch doc for 7.3 and migration cases (#22505)

  • Update network security arch doc for 7.3 and migration cases (#22505)

Web - Nodes & inventories

  • Add tests for linux inventory signature with certificate (#22528)

rudderc

  • Render methods docs as html (#22538)

  • Add a JSON schema validation (#22489)

Web - Config management

  • Persisted rule should have sorted groups/directives (#18215)

Techniques

  • Deprecate System update technique (#22611)

Generic methods

  • Explain flag mechanisme for "once" method (#22596)

Bug fixes

Packaging

  • Fixed: missing dependencies on amazon linux server (#22615)

  • Fixed: rudder-init replaces rudder-db password at postinst (#22608)

  • Fixed: Amazon linux doesn’t provide postgresql-server (#22593)

  • Fixed: rudder-server-postinst fails to update rudder-web.properties (#22495)

  • Fixed: Error when installing Rudder 6.2.13 on almalinux 8 (#21252)

Agent

  • Fixed: rudder-sign says "hostname: command not found" (#22452)

  • Fixed: Connection timeout to server are too long (#22540)

Server components

  • Fixed: "reportid" missing in PostgreSQL database after upgrade from v6.2.12 to v7.2.3 (#22315)

Documentation

  • Fixed: Update doc for 7.3 (#22607)

  • Fixed: Add rudder agent verbose command in windows install (#22598)

  • Fixed: Typo in windows msiexec command in documentation (#22554)

  • Fixed: Problem in Server backup and migration documentation (#22313)

  • Fixed: Typo in windows install documentation (#22558)

  • Fixed: Provide info to user about java-openjdk11-headless alternatives for AL2 (#22499)

  • Fixed: Broken doc build after plugins doc change (#22490)

  • Fixed: document in the getting started that virtualbox needs a list of authorized IP (#21485)

  • Fixed: API Documentation errors for trigger agent run (#22565)

  • Fixed: Improve introduction of relay arch docs (#22509)

Web - UI & UX

  • Fixed: when we save a rule category, the button save never stops saving (#22524)

  • Fixed: there is a space before all texts in the node details page, so copy and paste include it (#21417)

  • Fixed: System group preview description are not displayed (#18583)

  • Fixed: Rule list doesn’t appear anymore in a rule category (#22103)

  • Fixed: When shared folder file list is too long the selector fail (#22110)

  • Fixed: Change name parameter "Rudder ID" for group id (#22581)

  • Fixed: Technique ID and group ID are juste listed as "ID" in the UI when other IDs are listed with their long name (#21369)

  • Fixed: Rule is in mixed mode even though she has only one directive in audit (#21731)

  • Fixed: Shadow overlapping on first menu entry (#21683)

  • Fixed: Missing tooltip on unused directives icon (#22428)

Web - Maintenance

  • Fixed: password=LDAP produces error logs in webapp (#21978)

Web - Compliance & node report

  • Fixed: General improvements on Directive compliance API (#22552)

  • Fixed: HTML tag in compliance hover (#22560)

  • Fixed: Sorting by Compliance doesn’t sort in the rule details (#21182)

API

  • Fixed: List Managed Nodes API with any of the fields listed in the "full" never answer (#22534)

Security

  • Fixed: Update spring-core to 5.3.26 (#22586)

  • Fixed: Allow iframes from the same origin (#22522)

  • Fixed: Update openssl crate to fix several vulnerabilities (#22532)

Techniques

  • Fixed: Mustache template is not capable to render technique parameters (#22535)

rudderc

  • Fixed: Allow BSD-2-Clause licences (#22543)

  • Fixed: Fix escaping in rudderc (#22468)

Web - Config management

  • Fixed: Policy generation broken when defining a group with invert result of inclusion of another group (#21924)

  • Fixed: Directive detail is really slow to load in 7.3 (#22392)

Web - Technique editor

  • Fixed: There is one more minus in deleted resources counter within technique editor (#22475)

Web - Nodes & inventories

  • Fixed: On "Node search" page, we can click on "Create node group from this query" even if there were no query (#19986)

System integration

  • Fixed: server-create-user uses old role attribte in place of new permissions one (#22498)

  • Fixed: Parent fix does not work: Fusioninventory is not tracked by check-rudder-health (#11102)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Lars Koenen

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.0.rc1 (2023-03-17)

Changes

Agent

  • Remove the fallback on "rudder" host when no policy server is configued (#22407)

Documentation

  • Add bcrypt param doc in main doc (#22429)

  • Prepare 7.3 doc (#22368)

  • Prepare 7.3 doc (#22368)

  • Prepare 7.3 doc (#22368)

  • Add missing documentation for CVE API (#22446)

  • Add missing documentation for CVE API (#22446)

Web - UI & UX

  • Edit properties is not intuitive (#21918)

  • Missing a loading info when a technique it is being saved (#21929)

API

  • Remove usage of redoc-cli which is deprecated (#22447)

System integration

  • Make specs2 test console output more detailed (#22419)

Architecture - Internal libs

  • Fix version maven-resources-plugin to 3.1.0, instead of relying on maven default version (#22403)

Performance and scalability

  • Make parsing "process" in inventory optional (#22359)

Web - Config management

  • Avoid sync group when importing a rule archive (#22333)

Security

  • Allow iframes from the same origin (#22374)

Bug fixes

System integration

  • Fixed: Rudder-jetty timeout is the systemd default one and may be short (#22377)

Packaging

  • Fixed: Cleanup prerm scripts (#22203)

Documentation

  • Fixed: Bad documentation leads to package build failing when building for armhf (#17868)

  • Fixed: doc about configuring repositories on debian is confusing for the rudder server (#22396)

  • Fixed: Remove outdated stuff about the technique editor (#22420)

  • Fixed: Broken link to rudder-announce ML (#22416)

  • Fixed: versions in Rudder doc are invalid (#21750)

  • Fixed: List of authentication backend is invalid in the documentation (includes Radius) (#22406)

  • Fixed: Backport hardening guide to 7.2 (#22405)

  • Fixed: Hardening guide for Rudder (#21877)

  • Fixed: documentation about default login/password is invalid (#22367)

  • Fixed: documentation about default login/password is invalid (#22367)

  • Fixed: network requirement in documentation are invalid (#22366)

  • Fixed: Inconsistency in API doc for allowed network (#22467)

Web - UI & UX

  • Fixed: typo about licensed plugin (#22463)

  • Fixed: Empty dashboard doesn’t look good (#21255)

  • Fixed: Add an animation when the rules table loads (#22449)

  • Fixed: Show all in technical details table doesn’t work (#22107)

  • Fixed: Plugins-repository URL from plugins pages redirect to home page (#21346)

Web - Maintenance

  • Fixed: Update rudder-user.xml to use permissions in place of roles attribute (#22457)

API

  • Fixed: Invalid openapi definition (#20629)

  • Fixed: Directive compliance API version is 10 in place of 17 (#22435)

Web - Nodes & inventories

  • Fixed: Inventory error when missing tag POLICY_SERVER_UUID talk about POLICY_SERVER (#22453)

  • Fixed: Add Raspbian to the list of recognized OS (#22345)

Security

  • Fixed: RUSTSEC-2023-0018 in remove_dir_all (#22432)

  • Fixed: RUSTSEC-2023-0018 in remove_dir_all (#22432)

  • Fixed: RUSTSEC-2023-0018 in remove_dir_all (#22432)

  • Fixed: RUSTSEC-2023-0018 in remove_dir_all (#22432)

Miscellaneous

  • Fixed: Update commons fileupload dependency to prevent CVE-2023-24998 (#22433)

  • Fixed: Healthcheck on file descriptor should be max 64000 (#22430)

Architecture - Refactoring

  • Fixed: Remove pattern matching warning (#22424)

Web - Compliance & node report

  • Fixed: missing report in change only (#22371)

  • Fixed: Nodes not answering are seen in "missing" rather than in "no reports" (#22375)

  • Fixed: Refactor Directive compliance to handle blocks (#22376)

Web - Config management

  • Fixed: Generate policies for campaigns before it starts officially, delete them after it stops (1 hour delay each) (#22378)

  • Fixed: User should be able to accept change request even with divergences (#22363)

Relay server or API

  • Fixed: File from shared folder method does not support special characters in the source path (#20834)

System techniques

  • Fixed: A 6.2 relay cannot talk to a 7.2 server through HTTPS (#22402)

  • Fixed: Changes only does not support campaign reports (#22240)

Generic methods

  • Fixed: file key value parameter in list accepts entries without separator (#22322)

  • Fixed: Descriptin of permissions dirs recursive is misleading (#17122)

Agent

  • Fixed: "Using the default value 'true' for attribute rxdirs" waning in agent run output (#22393)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Nicolas Ecarnot

  • Alexis TARUSSIO

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.0.beta1 (2023-02-09)

Changes

Packaging

  • Remove useless configure flags from openldap (#22265)

  • Remove readline library from aix package (#22234)

  • Add zip as a server dependency (#22116)

  • Update server dependencies for 7.3 (#22070)

  • Update agent dependencies (#22071)

  • Update to CFEngine 3.18.3 (#22068)

  • Update the toml crate to 0.6 (#22300)

  • Build frontend files with gulp (#22094)

  • Use a lock file for api doc build dependencies (#22136)

  • Use npm for managing js dependencies (#22081)

Documentation

  • Update windows agent installation documentation (#22330)

  • Remove 6.2 and 7.0 from doc menu (#22031)

  • Use docsearch v3 for search integration (#21989)

  • Start docs for new technique yaml format (#21961)

System integration

  • Allow user to define custom roles in rudder-user.xml (#22206)

Security

  • Update to Rust 1.66.1 (#22293)

  • Improve npm audit (#22217)

  • Add security headers in Lift config (#21795)

rudderc

  • Windows policy generation (#22239)

  • Add a first hardening technique draft (#22268)

  • Make rudderc techniques work in edge cases (#22179)

  • Tags entry in yaml technique (#22156)

  • Don’t require resources to be listed in yaml technique (#22147)

  • Rename resources in rudderc (#22142)

  • Generate a proper metadata.xml (#22054)

  • Remove rudder-lang code (#22040)

  • Use resource type information in rudderc (#21308)

Web - UI & UX

  • Use npm to maintain jqueryui (#22244)

  • Update elm dependencies (#22051)

API

  • API for directive compliance (#22150)

Miscellaneous

  • Make authorization and rights pluggable (#22198)

Architecture - Dependencies

  • Update scala dependencies to latest version (#22049)

  • Port code to ZIO2 (#21825)

CI

  • Update Rust for 7.3 (#21875)

Web - Maintenance

  • Cleanup rudder-lang settings (#21866)

System techniques

  • Disable agent syslog logging by default (#21970)

Agent

  • Cleanup remote run command for relay (#22231)

Generic methods

  • Add agent support metadata (#21939)

Bug fixes

Packaging

  • Fixed: Remove git from build dependencies of rudder-server (#22356)

  • Fixed: patch fusioninventory to detect correctly rockylinux (#22334)

  • Fixed: Remove message of cfengine trying to load enterprise module (#22236)

  • Fixed: readline fails to build on aix (#22228)

  • Fixed: Dev version of perl used (#22215)

  • Fixed: Add content in rudder’s robots.txt (#21798)

Web - UI & UX

  • Fixed: Redirect / to /rudder/secure to avoid login form if already connected (#21807)

  • Fixed: Remove useless headers (#21797)

  • Fixed: Update outdated npm packages (#22336)

  • Fixed: Directive creation process is counter intuitive in 7.3.0~alpha (#22254)

  • Fixed: Display of Target Rules is broken (#22305)

  • Fixed: Use npm to maintain gauge.js (#22270)

  • Fixed: Use npm to maintain angularJS (#22252)

  • Fixed: Top menu bar display is broken (#22245)

  • Fixed: Remove AdminLTE theme (#22204)

  • Fixed: Transform tabs of the directives into real tabs (#22086)

  • Fixed: Dont redirect other tabs to login form when session cookie is replaced (#21808)

  • Fixed: Impossible to move groups (#21755)

Documentation

  • Fixed: Wrong Table name inside documentation (#22128)

  • Fixed: Remove beta header from 7.2 docs (#21879)

Security

  • Fixed: Ignore CVE-2023-22895 in relayd (#22354)

  • Fixed: Update the embedded openssl to 1.1.1t (#22351)

  • Fixed: Ignore DoS in npm dependencies (#22324)

  • Fixed: Ignore RUSTSEC-2022-0082 (#22328)

  • Fixed: Fix npm security alerts (#22307)

  • Fixed: Rudder sessions never expire when the browser stays connected (#21806)

  • Fixed: Stop using UUIDs as system token (#21669)

Web - Campaigns

  • Fixed: New filters on campaign queries to get several campaign types in one request (#22346)

Web - Nodes & inventories

  • Fixed: some nodes are called "localhost" since #8022 (#22326)

Web - Config management

  • Fixed: Hook timeout may not have the good value (#22339)

API

  • Fixed: Cannot list directives with API (#22314)

rudderc

  • Fixed: Various metadata.xml fixes (#22153)

CI

  • Fixed: Add authorized license Unicode-DFS-2016 in relayd (#21914)

Server components

  • Fixed: All rudder commands using the API don’t detect the port of the webapp when we configure a virtualhost with a different port (#21216)

Generic methods

  • Fixed: Remove ncf scripts (#21950)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Alexis TARUSSIO

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.


← Release notes aix →