Change logs for Rudder 7.3

Rudder 7.3.2 (2023-05-18)

Changes

Packaging

  • Add debian12 support to agent package (#22747)

Architecture - Internal libs

  • Backport scala 2.13 change for scala 3.0 migration (#22723)

Web - Nodes & inventories

  • VM type is missing in group criteria (#19803)

Bug fixes

Server components

  • Fixed: silent rudder-upgrade failure / plugins were not upgraded when upgrading from 7.2.5 to 7.3.1~nightly (#22689)

Agent

  • Fixed: Errors with Rudder agent on unprivileged containers (LXC) (#15636)

  • Fixed: A node update in bootstrap/initial policies should not fail (#20996)

System integration

  • Fixed: Postgresql is not created with the UTF8 encoding (#20937)

Packaging

  • Fixed: Missing dependency on ps command on RHEL8+ (#22727)

  • Fixed: pip3 refuses to install modules in a system with packages python modules (#22763)

Documentation

  • Fixed: proxy documentation is lost in rudder 7.3 documentation (#22767)

  • Fixed: Backup/restore documentation is missing some important folder backups when using plugins (#22756)

  • Fixed: Installation documentation should use ' instead of " to avoid unwanted bash string interpretation (#22737)

Web - Nodes & inventories

  • Fixed: No local account shown on windows (#22387)

Security

  • Fixed: Error when trying to save a property using xml tags but property actually saved (#19519)

  • Fixed: Healthcheck notification is displayed when a user have no right (#22625)

Web - UI & UX

  • Fixed: Inconsistent colors in hover on the dashboard (#22671)

  • Fixed: Inconsistent colors in hover on the dashboard (#22671)

Web - Compliance & node report

  • Fixed: Warn sign in nodes list for disabled nodes (#19545)

Generic methods

  • Fixed: Reporting error when using a dash for SSH authorized keys method (#22724)

  • Fixed: condition from variable match does not work with node properties (#21026)

  • Fixed: file augeas set doesn’t when value have space (#22725)

  • Fixed: Method File augeas set does not clean augnew files (#22718)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Stefan Schmitt

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.1 (2023-05-04)

Changes

Documentation

  • Add documentation about optional anonymous data collection (#22673)

  • Add install docs for Amazon Linux 2023 (#22628)

CI

  • Notify different channel for security dependency check (#22687)

Web - Nodes & inventories

  • Display sha256 key hash in node details (#22633)

Bug fixes

Packaging

  • Fixed: Rudder agent force a lot of dependencies on RHEL9 (#22610)

Miscellaneous

  • Fixed: Ignore CVE 2023-20860 (#22708)

  • Fixed: Missing "latest" in archive API tests leads to error with upmerge (#22636)

Security

  • Fixed: Vulnerability in decode-uri-component (#22707)

  • Fixed: Ignore RUSTSEC-2023-0034 in relayd (#22706)

  • Fixed: upgrade postgresql drive for CVE CVE-2022-41946 (#22637)

  • Fixed: Stackoverflow if {} used in place of [] for properties in node create api (#22617)

Web - Campaigns

  • Fixed: We should initialize campaign service after plugin were added or else current events will be skipped (before being added again) (#22646)

Architecture - Internal libs

  • Fixed: A deadlock can occur at boot (also a cause of slow initialization) (#22645)

Web - UI & UX

  • Fixed: It’s hard to understand which authentication backend failed when a fallback happens (#20396)

  • Fixed: There are unused css classes due to wrong css class name (#22669)

  • Fixed: Pending nodes History Tab shows duplicate entries (#19258)

  • Fixed: Remove AdminLTE script from login page (#22644)

  • Fixed: Tooltip on enforce/audit label in rules title not working (#20788)

  • Fixed: rules/directives/cancel button doesn’t work (#22517)

Documentation

  • Fixed: Fix typos in system-updates api doc (#22667)

  • Fixed: Relay API documentation is quite hard to find (#22648)

  • Fixed: Update screenshot of the dashboard (#22634)

Web - Maintenance

  • Fixed: JGitInternalError on HistorizeNodeCountService (#22616)

Architecture - Dependencies

  • Fixed: Update spring to 5.3.27 and spring-security 5.7.8 (#22668)

Relay server or API

  • Fixed: Broken shared-files cleanup when file id contains a dot (#22652)

System integration

  • Fixed: Log in hook should got to /var/log and not /tmp (#22649)

Web - Config management

  • Fixed: Error log at boot: Can not find active technique with id 'test_import_export_archive}' (#22614)

Web - Technique editor

  • Fixed: In technique editor, technique with missing generic method need a warning icon (#12282)

System techniques

  • Fixed: Always send start/end reports even in changes-only mode (#22655)

Agent

  • Fixed: Allow skipping reporting when it is disabled (#22653)

Generic methods

  • Fixed: Augeas set method does not correctly handle successive calls (#22677)

  • Fixed: report_if_condition report contain twice "was correct" (#22665)

  • Fixed: Missleading use of parameter variable_name in method condition_from_variable_match (#22620)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Lars Koenen

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.0 (2023-04-07)

Changes

Packaging

  • Add amazon linux to support to specfiles (#22578)

Documentation

  • Document 7.3 windows specific changes (#22613)

  • Arch doc for frontend security (#22512)

  • Update network security arch doc for 7.3 and migration cases (#22505)

  • Update network security arch doc for 7.3 and migration cases (#22505)

  • Update network security arch doc for 7.3 and migration cases (#22505)

Web - Nodes & inventories

  • Add tests for linux inventory signature with certificate (#22528)

rudderc

  • Render methods docs as html (#22538)

  • Add a JSON schema validation (#22489)

Web - Config management

  • Persisted rule should have sorted groups/directives (#18215)

Techniques

  • Deprecate System update technique (#22611)

Generic methods

  • Explain flag mechanisme for "once" method (#22596)

Bug fixes

Packaging

  • Fixed: missing dependencies on amazon linux server (#22615)

  • Fixed: rudder-init replaces rudder-db password at postinst (#22608)

  • Fixed: Amazon linux doesn’t provide postgresql-server (#22593)

  • Fixed: rudder-server-postinst fails to update rudder-web.properties (#22495)

  • Fixed: Error when installing Rudder 6.2.13 on almalinux 8 (#21252)

Agent

  • Fixed: rudder-sign says "hostname: command not found" (#22452)

  • Fixed: Connection timeout to server are too long (#22540)

Server components

  • Fixed: "reportid" missing in PostgreSQL database after upgrade from v6.2.12 to v7.2.3 (#22315)

Documentation

  • Fixed: Update doc for 7.3 (#22607)

  • Fixed: Add rudder agent verbose command in windows install (#22598)

  • Fixed: Typo in windows msiexec command in documentation (#22554)

  • Fixed: Problem in Server backup and migration documentation (#22313)

  • Fixed: Typo in windows install documentation (#22558)

  • Fixed: Provide info to user about java-openjdk11-headless alternatives for AL2 (#22499)

  • Fixed: Broken doc build after plugins doc change (#22490)

  • Fixed: document in the getting started that virtualbox needs a list of authorized IP (#21485)

  • Fixed: API Documentation errors for trigger agent run (#22565)

  • Fixed: Improve introduction of relay arch docs (#22509)

Web - UI & UX

  • Fixed: when we save a rule category, the button save never stops saving (#22524)

  • Fixed: there is a space before all texts in the node details page, so copy and paste include it (#21417)

  • Fixed: System group preview description are not displayed (#18583)

  • Fixed: Rule list doesn’t appear anymore in a rule category (#22103)

  • Fixed: When shared folder file list is too long the selector fail (#22110)

  • Fixed: Change name parameter "Rudder ID" for group id (#22581)

  • Fixed: Technique ID and group ID are juste listed as "ID" in the UI when other IDs are listed with their long name (#21369)

  • Fixed: Rule is in mixed mode even though she has only one directive in audit (#21731)

  • Fixed: Shadow overlapping on first menu entry (#21683)

  • Fixed: Missing tooltip on unused directives icon (#22428)

Web - Maintenance

  • Fixed: password=LDAP produces error logs in webapp (#21978)

Web - Compliance & node report

  • Fixed: General improvements on Directive compliance API (#22552)

  • Fixed: HTML tag in compliance hover (#22560)

  • Fixed: Sorting by Compliance doesn’t sort in the rule details (#21182)

API

  • Fixed: List Managed Nodes API with any of the fields listed in the "full" never answer (#22534)

Security

  • Fixed: Update spring-core to 5.3.26 (#22586)

  • Fixed: Allow iframes from the same origin (#22522)

  • Fixed: Update openssl crate to fix several vulnerabilities (#22532)

Techniques

  • Fixed: Mustache template is not capable to render technique parameters (#22535)

rudderc

  • Fixed: Allow BSD-2-Clause licences (#22543)

  • Fixed: Fix escaping in rudderc (#22468)

Web - Config management

  • Fixed: Policy generation broken when defining a group with invert result of inclusion of another group (#21924)

  • Fixed: Directive detail is really slow to load in 7.3 (#22392)

Web - Technique editor

  • Fixed: There is one more minus in deleted resources counter within technique editor (#22475)

Web - Nodes & inventories

  • Fixed: On "Node search" page, we can click on "Create node group from this query" even if there were no query (#19986)

System integration

  • Fixed: server-create-user uses old role attribte in place of new permissions one (#22498)

  • Fixed: Parent fix does not work: Fusioninventory is not tracked by check-rudder-health (#11102)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Lars Koenen

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.0.rc1 (2023-03-17)

Changes

Agent

  • Remove the fallback on "rudder" host when no policy server is configued (#22407)

Documentation

  • Add bcrypt param doc in main doc (#22429)

  • Prepare 7.3 doc (#22368)

  • Prepare 7.3 doc (#22368)

  • Prepare 7.3 doc (#22368)

  • Add missing documentation for CVE API (#22446)

  • Add missing documentation for CVE API (#22446)

Web - UI & UX

  • Edit properties is not intuitive (#21918)

  • Missing a loading info when a technique it is being saved (#21929)

API

  • Remove usage of redoc-cli which is deprecated (#22447)

System integration

  • Make specs2 test console output more detailed (#22419)

Architecture - Internal libs

  • Fix version maven-resources-plugin to 3.1.0, instead of relying on maven default version (#22403)

Performance and scalability

  • Make parsing "process" in inventory optional (#22359)

Web - Config management

  • Avoid sync group when importing a rule archive (#22333)

Security

  • Allow iframes from the same origin (#22374)

Bug fixes

System integration

  • Fixed: Rudder-jetty timeout is the systemd default one and may be short (#22377)

Packaging

  • Fixed: Cleanup prerm scripts (#22203)

Documentation

  • Fixed: Bad documentation leads to package build failing when building for armhf (#17868)

  • Fixed: doc about configuring repositories on debian is confusing for the rudder server (#22396)

  • Fixed: Remove outdated stuff about the technique editor (#22420)

  • Fixed: Broken link to rudder-announce ML (#22416)

  • Fixed: versions in Rudder doc are invalid (#21750)

  • Fixed: List of authentication backend is invalid in the documentation (includes Radius) (#22406)

  • Fixed: Backport hardening guide to 7.2 (#22405)

  • Fixed: Hardening guide for Rudder (#21877)

  • Fixed: documentation about default login/password is invalid (#22367)

  • Fixed: documentation about default login/password is invalid (#22367)

  • Fixed: network requirement in documentation are invalid (#22366)

  • Fixed: Inconsistency in API doc for allowed network (#22467)

Web - UI & UX

  • Fixed: typo about licensed plugin (#22463)

  • Fixed: Empty dashboard doesn’t look good (#21255)

  • Fixed: Add an animation when the rules table loads (#22449)

  • Fixed: Show all in technical details table doesn’t work (#22107)

  • Fixed: Plugins-repository URL from plugins pages redirect to home page (#21346)

Web - Maintenance

  • Fixed: Update rudder-user.xml to use permissions in place of roles attribute (#22457)

API

  • Fixed: Invalid openapi definition (#20629)

  • Fixed: Directive compliance API version is 10 in place of 17 (#22435)

Web - Nodes & inventories

  • Fixed: Inventory error when missing tag POLICY_SERVER_UUID talk about POLICY_SERVER (#22453)

  • Fixed: Add Raspbian to the list of recognized OS (#22345)

Security

  • Fixed: RUSTSEC-2023-0018 in remove_dir_all (#22432)

  • Fixed: RUSTSEC-2023-0018 in remove_dir_all (#22432)

  • Fixed: RUSTSEC-2023-0018 in remove_dir_all (#22432)

  • Fixed: RUSTSEC-2023-0018 in remove_dir_all (#22432)

Miscellaneous

  • Fixed: Update commons fileupload dependency to prevent CVE-2023-24998 (#22433)

  • Fixed: Healthcheck on file descriptor should be max 64000 (#22430)

Architecture - Refactoring

  • Fixed: Remove pattern matching warning (#22424)

Web - Compliance & node report

  • Fixed: missing report in change only (#22371)

  • Fixed: Nodes not answering are seen in "missing" rather than in "no reports" (#22375)

  • Fixed: Refactor Directive compliance to handle blocks (#22376)

Web - Config management

  • Fixed: Generate policies for campaigns before it starts officially, delete them after it stops (1 hour delay each) (#22378)

  • Fixed: User should be able to accept change request even with divergences (#22363)

Relay server or API

  • Fixed: File from shared folder method does not support special characters in the source path (#20834)

System techniques

  • Fixed: A 6.2 relay cannot talk to a 7.2 server through HTTPS (#22402)

  • Fixed: Changes only does not support campaign reports (#22240)

Generic methods

  • Fixed: file key value parameter in list accepts entries without separator (#22322)

  • Fixed: Descriptin of permissions dirs recursive is misleading (#17122)

Agent

  • Fixed: "Using the default value 'true' for attribute rxdirs" waning in agent run output (#22393)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Nicolas Ecarnot

  • Alexis TARUSSIO

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 7.3.0.beta1 (2023-02-09)

Changes

Packaging

  • Remove useless configure flags from openldap (#22265)

  • Remove readline library from aix package (#22234)

  • Add zip as a server dependency (#22116)

  • Update server dependencies for 7.3 (#22070)

  • Update agent dependencies (#22071)

  • Update to CFEngine 3.18.3 (#22068)

  • Update the toml crate to 0.6 (#22300)

  • Build frontend files with gulp (#22094)

  • Use a lock file for api doc build dependencies (#22136)

  • Use npm for managing js dependencies (#22081)

Documentation

  • Update windows agent installation documentation (#22330)

  • Remove 6.2 and 7.0 from doc menu (#22031)

  • Use docsearch v3 for search integration (#21989)

  • Start docs for new technique yaml format (#21961)

System integration

  • Allow user to define custom roles in rudder-user.xml (#22206)

Security

  • Update to Rust 1.66.1 (#22293)

  • Improve npm audit (#22217)

  • Add security headers in Lift config (#21795)

rudderc

  • Windows policy generation (#22239)

  • Add a first hardening technique draft (#22268)

  • Make rudderc techniques work in edge cases (#22179)

  • Tags entry in yaml technique (#22156)

  • Don’t require resources to be listed in yaml technique (#22147)

  • Rename resources in rudderc (#22142)

  • Generate a proper metadata.xml (#22054)

  • Remove rudder-lang code (#22040)

  • Use resource type information in rudderc (#21308)

Web - UI & UX

  • Use npm to maintain jqueryui (#22244)

  • Update elm dependencies (#22051)

API

  • API for directive compliance (#22150)

Miscellaneous

  • Make authorization and rights pluggable (#22198)

Architecture - Dependencies

  • Update scala dependencies to latest version (#22049)

  • Port code to ZIO2 (#21825)

CI

  • Update Rust for 7.3 (#21875)

Web - Maintenance

  • Cleanup rudder-lang settings (#21866)

System techniques

  • Disable agent syslog logging by default (#21970)

Agent

  • Cleanup remote run command for relay (#22231)

Generic methods

  • Add agent support metadata (#21939)

Bug fixes

Packaging

  • Fixed: Remove git from build dependencies of rudder-server (#22356)

  • Fixed: patch fusioninventory to detect correctly rockylinux (#22334)

  • Fixed: Remove message of cfengine trying to load enterprise module (#22236)

  • Fixed: readline fails to build on aix (#22228)

  • Fixed: Dev version of perl used (#22215)

  • Fixed: Add content in rudder’s robots.txt (#21798)

Web - UI & UX

  • Fixed: Redirect / to /rudder/secure to avoid login form if already connected (#21807)

  • Fixed: Remove useless headers (#21797)

  • Fixed: Update outdated npm packages (#22336)

  • Fixed: Directive creation process is counter intuitive in 7.3.0~alpha (#22254)

  • Fixed: Display of Target Rules is broken (#22305)

  • Fixed: Use npm to maintain gauge.js (#22270)

  • Fixed: Use npm to maintain angularJS (#22252)

  • Fixed: Top menu bar display is broken (#22245)

  • Fixed: Remove AdminLTE theme (#22204)

  • Fixed: Transform tabs of the directives into real tabs (#22086)

  • Fixed: Dont redirect other tabs to login form when session cookie is replaced (#21808)

  • Fixed: Impossible to move groups (#21755)

Documentation

  • Fixed: Wrong Table name inside documentation (#22128)

  • Fixed: Remove beta header from 7.2 docs (#21879)

Security

  • Fixed: Ignore CVE-2023-22895 in relayd (#22354)

  • Fixed: Update the embedded openssl to 1.1.1t (#22351)

  • Fixed: Ignore DoS in npm dependencies (#22324)

  • Fixed: Ignore RUSTSEC-2022-0082 (#22328)

  • Fixed: Fix npm security alerts (#22307)

  • Fixed: Rudder sessions never expire when the browser stays connected (#21806)

  • Fixed: Stop using UUIDs as system token (#21669)

Web - Campaigns

  • Fixed: New filters on campaign queries to get several campaign types in one request (#22346)

Web - Nodes & inventories

  • Fixed: some nodes are called "localhost" since #8022 (#22326)

Web - Config management

  • Fixed: Hook timeout may not have the good value (#22339)

API

  • Fixed: Cannot list directives with API (#22314)

rudderc

  • Fixed: Various metadata.xml fixes (#22153)

CI

  • Fixed: Add authorized license Unicode-DFS-2016 in relayd (#21914)

Server components

  • Fixed: All rudder commands using the API don’t detect the port of the webapp when we configure a virtualhost with a different port (#21216)

Generic methods

  • Fixed: Remove ncf scripts (#21950)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Alexis TARUSSIO

This is a bug fix release in the 7.3 series and therefore all installations of 7.3.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.


← Release notes aix →