Change logs for Rudder 8.0

Rudder 8.0.6 (2024-02-29)

Changes

Packaging

  • Import new gpg key in rpm postinst (#24070)

Plugin manager cli

  • Rudder-package should log the package scripts outputs and errors (#24238)

Architecture - Code maintenance

  • Prepare migration to Scala 3 - Version 7.3 part 1 (#24171)

Web - UI & UX

  • Editing big properties in elm-based properties interface is very inconvenient (#23487)

Bug fixes

Packaging

  • Fixed: Rudder upgrade may fail on postgres script (#24232)

Miscellaneous

  • Fixed: Incorrect error message about change request creation failure when it is not needed (#24278)

Plugin manager cli

  • Fixed: rudder-pkg stops at first install error on the upgrade-all command (#24201)

  • Fixed: Pylint test fails with an exception (#24205)

rudderc

  • Fixed: rudderc canonifies already canonified condition expression resulting in loss of logic operators such as ) and | (#24226)

Web - Technique editor

  • Fixed: when we have conditions on blocks, the condition text is not correctly positionned when the block is opened (#24150)

  • Fixed: Technique import doesn’t refresh the list of method in technique editor (#24123)

  • Fixed: Action dropdown list in technique editor goes under parameters (#24122)

Architecture - Code maintenance

  • Fixed: Make spotless only check source of current project (#24177)

Web - Config management

  • Fixed: We must not generate policies for nodes without a well formed certificate (#24112)

Web - Maintenance

  • Fixed: Archiving allows to read inconsistent active technique category ids (#24011)

API

  • Fixed: Bad description for serialNumber attribute of machine (#24141)

  • Fixed: For delete API for node, add a message for node already deleted (#24129)

Web - UI & UX

  • Fixed: Unknown rule targets UI is missing icon and border (#24102)

Agent

  • Fixed: rudder agent modified misses some files (#24133)

Release notes

This is a bug fix release in the 8.0 series and therefore all installations of 8.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 8.0.5 (2024-02-02)

Changes

Agent

  • We should log an error when a hook timeouts (#23936)

API

  • Add manufacturer field in create node API (#24091)

Web - UI & UX

  • Display the list of pending change requests related to the selected rule (#21931)

Architecture - Code maintenance

  • Remove early return to prepare to Scala3 migration in box sequence/traverse (#23948)

rudderc

  • Update the rudderc technique json schema to match the minimal SchemaStore expectation (#23966)

Bug fixes

Packaging

  • Fixed: add apr-util-db as a dependency for al2023 (#24061)

  • Fixed: RHEL9 policies have an incompatible sh shebang (#24057)

  • Fixed: Embed openssl cli on 7.3 (#24019)

  • Fixed: Abort server build if rudder.war is less than 1Mb (#23958)

Documentation

  • Fixed: Fixed ref in documentation for centralized page (#23917)

  • Fixed: case-sensitivity parameter of rudder-user.xml is not documented (#24024)

Web - Config management

  • Fixed: when we import an archive and rules contains non existant targets, the targets can’t be removed from the rules (#24007)

  • Fixed: Static group which depends on dynamic subgroup must be forbiden (#18952)

  • Fixed: Rudder agent scheduled runs are not triggered at regular interval (#23956)

Architecture - Code maintenance

  • Fixed: Backport test correction for allowed networks (#24093)

Web - Technique editor

  • Fixed: 404 not found in technique editor resource manager Ajax query (#24084)

  • Fixed: Technique editor method filters are not aligned correctly (#23885)

Web - Compliance & node report

  • Fixed: lost audit/enforce on the node compliance page (#23930)

Web - UI & UX

  • Fixed: Fix small ui error in the rules information tab (#24079)

  • Fixed: In quicksearch, query error are not displayed which leads to infinite loading result (#23402)

  • Fixed: New campaigns button does not conform to our graphic charter (#23938)

  • Fixed: A new group display no nodes while all linux are selected (#22170)

  • Fixed: The health check page has an unnecessary "Show check list" button in 8.0 (#23916)

  • Fixed: The health check page has an unnecessary "Show check list" button (#23891)

  • Fixed: The "Category" field in the technique editor is displayed as a mandatory field even if it is an unmutable one (#23883)

  • Fixed: Remove the "Edit techniques" button from the directives webpage (#23877)

  • Fixed: Rename the "Create global property" button in "Create" (#23878)

Security

  • Fixed: Vulnerability in shlex Rust lib (#24069)

  • Fixed: Ignore cve on ext-js (unused dependency) (#24071)

  • Fixed: DoS vuln in h2 lib in relayd (#24068)

  • Fixed: Ignore CVE-2023-51074 (no impact, score too high) (#24005)

  • Fixed: Unaffected CVE on jgit and logback (#23982)

API

  • Fixed: If REST url ends with .com, then the .com is removed from path segments (#24036)

Performance and scalability

  • Fixed: Healthcheck on file descriptor should be max 64000 (#24006)

Server components

  • Fixed: Waning log spam when disabled rudder_compute_changes setting (#23969)

Web - Nodes & inventories

  • Fixed: Missing icon for windows 2022 (#23972)

  • Fixed: We can accept a node with an existing hostname even if node_accept_duplicated_hostname is false (#22197)

rudderc

  • Fixed: Improve rudderc error message when a parameter is missing from a method call (#23953)

  • Fixed: Improve rudderc test error message when no library is passed in the parameters (#23941)

  • Fixed: Parameters are not properly intepreted in method call conditions (#23925)

Architecture - Internal libs

  • Fixed: Plugin license implementation is not coherent with interface (#23932)

Miscellaneous

  • Fixed: Change request on special:all_nodes_without_role lead to error (#23446)

Techniques

  • Fixed: File content directive add 4 spaces at the beginning of the line (#24022)

  • Fixed: FileTemplate technique fails with an error on the Directory-Create method call (#23954)

Agent

  • Fixed: Prompt warning and ask confirmation for factory reset (#23978)

  • Fixed: when a node has capitals in its hostname agent history doesn’t show manual runs (#23740)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Alexis TARUSSIO

This is a bug fix release in the 8.0 series and therefore all installations of 8.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 8.0.4 (2023-12-14)

Changes

Packaging

  • Upgrade curl to 8.5.0 (#23841)

  • Update to jetty 10.0.18 (#23710)

  • Update to OpenSSL 3.0 & CFEngine 3.21 (#23717)

Performance and scalability

  • Add some services available to improve system update performance (#23804)

rudderc

  • Improve docs for techniques testing (#23810)

  • Add an env var pointing to reports test file (#23807)

  • Improve techniques tests (#23763)

  • Allow testing Windows techniques (#23721)

Architecture - Code maintenance

  • Rewrite Nodes compliance table in Elm (#23656)

Agent

  • Add a command to get list of modified files on the agent (#23822)

  • Add next run time in rudder agent info (#23598)

Bug fixes

Agent

  • Fixed: Backport fix for random process killing (#23713)

  • Fixed: Rudder agent modified fails to list some files and duplicates others (#23849)

Documentation

  • Fixed: Debian source list should force architecture (#23731)

Web - Maintenance

  • Fixed: Event log migration should not be done every time (#23836)

Web - UI & UX

  • Fixed: Adding property on nodes is not possible with role node_all (#23840)

  • Fixed: Change "Name" to something else in the technique editor (#23764)

  • Fixed: Sometimes, tooltips in the directives tree remain displayed (#23819)

  • Fixed: Fix typos in error message in technique editor (#23800)

  • Fixed: In Technique Editor, the quicksearch window still appears behind the navigation menu (#23588)

  • Fixed: Technique saving is blocked because of localstorage of drafts (#23475)

  • Fixed: Using deprecated chart.js options generates errors in the console (#23747)

rudderc

  • Fixed: Fail on more unknown fields (#23851)

  • Fixed: For technique parameter, name, id and doc are mixed up (#23847)

  • Fixed: Serde errors do not point to the correct line number (#23332)

  • Fixed: rudderc should export a technique with ids (#23802)

  • Fixed: rudderc method parsing breaks when method contains several bundles (#23798)

  • Fixed: Fix resources_dir definition on Windows (#23777)

Web - Nodes & inventories

  • Fixed: Update the error message for failed inventory signature check (#23827)

Web - Config management

  • Fixed: Import archive for an existing technique delete the previous technique (#23818)

  • Fixed: Copy the certificates directly without calling the agent after generation (#23783)

  • Fixed: Creating files with the file explorer fails when using invalid character (#23606)

Miscellaneous

  • Fixed: NA is not properly displayed in node compliance (#23820)

  • Fixed: Compiler warnings should prevent build (#23657)

System integration

  • Fixed: Exception when bad input for inventory duration config (#23735)

Web - Technique editor

  • Fixed: Content of warning tooltip for unknow method should not overflow (#23801)

Architecture - Code maintenance

  • Fixed: Test inventory files for 8.0 are invalid (#23742)

Security

  • Fixed: Unescape SQL in eventlog filter (#23724)

Release notes

This is a bug fix release in the 8.0 series and therefore all installations of 8.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 8.0.3 (2023-11-09)

Changes

Packaging

  • Update to jetty 10.0.18 (#23710)

Bug fixes

Agent

  • Fixed: Backport fix for random process killing (#23713)

rudderc

  • Fixed: Bundle name collision with cloned techniques (#23718)

  • Fixed: Add a cleanup step to techniques tests (#23703)

Architecture - Code maintenance

  • Fixed: Software DAO can lead to NoSuchElement exception (#23701)

Release notes

This is a bug fix release in the 8.0 series and therefore all installations of 8.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 8.0.2 (2023-11-07)

Changes

API

  • Import archive must refuse yaml technique with mismatch directory and id (#23688)

Agent

  • Add next run time in rudder agent info (#23598)

Bug fixes

Documentation

  • Fixed: Install command with variable $releasever lead to error (#22779)

  • Fixed: Import key section in AIX agent install doc is empty (#23312)

  • Fixed: Remove or reduce technique upgrade docs (#23670)

  • Fixed: 8.0 documentation of supported rudder-server OS is outdated (#23680)

Web - Maintenance

  • Fixed: Event log migration takes too long (#23699)

API

  • Fixed: Import archive does not support technique upgrade (#23655)

  • Fixed: rudder node api documentation doesn’t mention the softwareUpdate (#23441)

rudderc

  • Fixed: Fix doc for techniques import (#23689)

  • Fixed: Make the library path passed to CFEngine absolute (#23686)

  • Fixed: When a technique scope variable is used in a component key in a method call, logger fails to define the noop conditions in not_applicable cases (#23683)

Release notes

This is a bug fix release in the 8.0 series and therefore all installations of 8.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 8.0.1 (2023-10-30)

Changes

Web - UI & UX

  • The "Required/May be empy" button in the parameters of a technique is not intuitive enough (#23610)

  • Improve deleted directive screen (#23172)

API

  • Lint shell code examples (#23653)

Documentation

  • Update api doc tooling (#23651)

  • Update contributing doc for Rust projects (#23600)

Architecture - Internal libs

  • Add a test on JDK21 (#23486)

Bug fixes

Packaging

  • Fixed: Openssl embedded in too many OSes (#23678)

  • Fixed: Bump to openssl 3.0.12 (#23649)

  • Fixed: Revert jetty upgrade to 10.0.17 for now (#23648)

Agent

  • Fixed: Agent Pre-established trust not working with Rudder 8.0 agent RHEL 7 on CentOS 7 (#23635)

  • Fixed: Agent uses hardcoded /bin/getent (#23623)

System integration

  • Fixed: Wrong field used to get software source package and version on debian and ubuntu (#23634)

Security

  • Fixed: Several low impact CVE in Jetty 10.0.12 (#23608)

  • Fixed: Assessments of several low impact CVE in current 7.3.x reported by contrastsecurity tool (#23609)

Documentation

  • Fixed: Broken links in docs hmepage (#23643)

  • Fixed: remove all "starting with version <old>" from docs (#23628)

rudderc

  • Fixed: Incorrect rudderc binary download link in documentation (#23674)

Web - UI & UX

  • Fixed: The tooltip in the compliance bar does not appear when the mouse is hovered over it (#23612)

  • Fixed: When we are logged out, the logout button doesn’t work (#23010)

  • Fixed: Search bar will not work with filters (#23665)

  • Fixed: In technique editor, the "Name" field appears to be optional, whereas it is not. (#23611)

  • Fixed: Recent changes drop down cannot be read (#22518)

  • Fixed: Do not apply syntax highlighting to string properties (#23639)

  • Fixed: Search bar doesn’t work for group properties (#22516)

  • Fixed: When we search by "is defined" in the group search, we get the previous search value displayed (#16094)

  • Fixed: Rename "Parameters" menu entry to "Global properties" (#23618)

  • Fixed: Typo in warning message (#23592)

Web - Technique editor

  • Fixed: When a mandatory field in a technique is not defined, we can save a technique and we have a nasty error (#23607)

  • Fixed: user with read_only right has button that allows to create a technique (#17813)

API

  • Fixed: Add doc for OpenSCAP plugin API (#23645)

  • Fixed: Feature switch for archive API is still present (#23591)

Web - Nodes & inventories

  • Fixed: On the nodes list, the filter does not work on property based column (#23535)

Miscellaneous

  • Fixed: Last modified attribute of change request is always "unknown" (#19317)

Web - Config management

  • Fixed: Tag are not displayed with a nice diff in eventLog (#15019)

  • Fixed: Quotes in group name generate JS errors when using GroupId criteria (#23320)

  • Fixed: changing password from script to "Enter password + hash" in MD5 result in clear text (#23488)

Release notes

This is a bug fix release in the 8.0 series and therefore all installations of 8.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 8.0.0 (2023-10-18)

Changes

Documentation

  • Upgrade notes for 8.0 (#23577)

  • Upgrade notes for 8.0 (#23577)

rudderc

  • Mark yaml format as 1.0 (#23568)

Web - UI & UX

  • Compliance filter should be shared between the different tables of a same interface (#23539)

Bug fixes

Documentation

  • Fixed: Mark 8.0 as final in the docs (#23575)

  • Fixed: Bold appears like normal text in the docs (#23566)

Web - UI & UX

  • Fixed: Add checks and validation on parameter name (#23587)

  • Fixed: Missing UI for parameter name and description new format (#23586)

  • Fixed: Always display generic method name (#23564)

rudderc

  • Fixed: Broken parsing of some complex expressions (#23583)

  • Fixed: Missing NA report on Windows for methods only compatible with Unix (#23581)

  • Fixed: Broken double quote escaping in Windows policies (#23579)

Architecture - Code maintenance

  • Fixed: Rudderc error code interpretation is done at two places inconsistently (#23582)

Security

  • Fixed: Ignore CVE 2023-4759 (false positive in jgit 6.7.0.202309050840-r) (#23574)

Web - Technique editor

  • Fixed: Add new Windows OS conditions to the technique editor (#23541)

Release notes

This is a bug fix release in the 8.0 series and therefore all installations of 8.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 8.0.0.rc2 (2023-10-13)

Changes

Packaging

  • Update curl to 8.4.0 (#23559)

Documentation

  • Remove 7.2 from docs (#23561)

Bug fixes

Web - Config management

  • Fixed: Remove technique.json and rudder_reporting.cf when migrating technique to new format (#23547)

  • Fixed: Migration of techniques is failling when there is a resource. (#23546)

rudderc

  • Fixed: Broken handling of non-printable characters in techniques (#23551)

  • Fixed: Allow setting conditions in tests (#23557)

  • Fixed: Parameter name in metadata.xml should be its id (#23544)

Web - Nodes & inventories

  • Fixed: Override process of properties is very misleading at node level (#23553)

Generic methods

  • Fixed: Condition_from_string_match fails to be executed multiple times with same inputs (#23554)

Release notes

This is a bug fix release in the 8.0 series and therefore all installations of 8.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 8.0.0.rc1 (2023-10-08)

Changes

Bug fixes

Packaging

  • Fixed: Ensure different cache when embedded various differences (#23533)

  • Fixed: Missing dependency to perl-Digest-MD5 on 8.0 agents (#23532)

  • Fixed: Allow forcing embedding openssl in RPM packages (#23516)

Web - Config management

  • Fixed: Ansi color escape code in captured rudderc output (#23536)

Miscellaneous

  • Fixed: PostgreSQL error doobie.util.invariant$UnexpectedEnd$ (#22527)

Plugins integration

  • Fixed: rudder package should not totally fail when parsing index if one entry (#23524)

Web - UI & UX

  • Fixed: Compliance filter on node does not work as expected (#23522)

Web - Nodes & inventories

  • Fixed: String node poperties are displayed in quotes (#23517)

  • Fixed: Changing group property value displays spurious “renamed” message (#23514)

Agent

  • Fixed: Inventory ends in “warning 1 reports were not parsable.” (#23529)

  • Fixed: Don’t try to send reports in initial policies (#23531)

Generic methods

  • Fixed: schedule_generic breaks the agent run when the periodicity of a job is null (#23540)

Release notes

This is a bug fix release in the 8.0 series and therefore all installations of 8.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 8.0.0.beta3 (2023-10-01)

Changes

Packaging

  • Switch to OpenSSL 3.0 LTS instead of 3.1 (#23510)

  • Switch back to openssl 1.1 in relayd for now (#23447)

Security

  • Update OpenSSL to 3.1.3 (#23452)

Web - UI & UX

  • Add a compliance filter to directive compliance tables (#23499)

  • Node property webpage does not give any tips on how to use the properties (#23405)

  • Node properties are lacking JSON syntax highlighting (#23404)

  • Add filters on compliance tables to hide some kind of compliance (#8166)

  • After creating a change request, give the user a redirection link to its details (#23443)

  • Add a placeholder description for groups page like for techniques and directives (#23184)

Web - Config management

  • Ensure yaml technique id and technique directory path agree (#23474)

Architecture - Code maintenance

  • Undocomment/remove parameter rudder.nodes.delete.defaultMode (#23462)

Agent

  • Prevent agents <6.0 from running on a 8.X server (#23497)

Bug fixes

Packaging

  • Fixed: Java version is not detected on sles15sp4 (#23500)

  • Fixed: silent error when upgrading Rudder 8.0-nightly to 8.0-nightly on sles15sp4 (#23480)

  • Fixed: tar is not an explicit dependency of the Rudder server (#22930)

  • Fixed: Dependency on rudder-api-client should be versioned (#23449)

  • Fixed: Rudder 8.0 cannot be installed on sles15sp4 due to dependency error (#23436)

Agent

  • Fixed: Memory corruption when inheriting from bodies containing global variables (#23478)

  • Fixed: Function cache can return incorrect results (#23437)

  • Fixed: rudder agent run -l does not prevent update (#23458)

Documentation

  • Fixed: documentation tells to edit /opt/rudder/etc/rudder-pkg/rudder-pkg.conf to set credential (#23398)

Web - Technique editor

  • Fixed: Thumbnail are not available for all type of file in resource editor (#23512)

  • Fixed: Disable reporting option is ignored by the technique editor (#23490)

  • Fixed: LanguageTools module can prevent Yaml editor from extending (#23484)

  • Fixed: Unable to save a technique resource through the file manager (#23479)

Web - Nodes & inventories

  • Fixed: surprising ordering on values for properties (#23473)

  • Fixed: Editing and renaming a group property results in duplicate property (#23496)

  • Fixed: Error when trying to add a JSON property to node (#23482)

  • Fixed: error when create, modify or delete a properties on group (#23472)

Web - Compliance & node report

  • Fixed: Compliance filter is not clear enough when disabling a group of reports (#23492)

  • Fixed: Focus reporting is not working (#23466)

API

  • Fixed: Add an enum for campaign type in post request (#23501)

Web - UI & UX

  • Fixed: Calendar in token api creation is broken (#23268)

  • Fixed: import technique doesn’t show yaml files (#23483)

  • Fixed: Node property webpage makes it hard to uses JSON based properties (#23401)

  • Fixed: Tables in Rudder UI are sorted alphabetically but should also follow a numerical sort - nodes page (#23427)

Miscellaneous

  • Fixed: Update jgit to remove CVE-2023-4759 error message (#23495)

  • Fixed: Make writing node state to fact repos optionnal (#23424)

Techniques

  • Fixed: LONG_DESCRIPTION field of techniques seems to be ignored (#23491)

  • Fixed: Outdated warnings in ssh server technique (#23468)

Web - Config management

  • Fixed: Cannot override global property in Rudder 8.0 beta 3 (#23454)

  • Fixed: adapt policy generation hooks to prevent automatic update of policies for each rudder command (#23464)

System integration

  • Fixed: Missing new historical inventory clean-up properties in config file (#23461)

Generic methods

  • Fixed: Migrate the report_if_condition method to log v4 (#23502)

  • Fixed: Improve variable_string_from_command on 8.0+ agents (#23438)

Release notes

This is a bug fix release in the 8.0 series and therefore all installations of 8.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 8.0.0.beta2 (2023-09-15)

Changes

Bug fixes

Packaging

  • Fixed: Bump to openssl 1.1.1w (#23410)

Architecture - Code maintenance

  • Fixed: Clean-up acceptation inventory (#23406)

  • Fixed: Update to zio-json 0.6.2 (#23409)

  • Fixed: SQL logger is never called (#23414)

Web - UI & UX

  • Fixed: Add a way to set a message if "change audit logs" setting is enabled (#23372)

  • Fixed: Add a way to set a message if "change audit logs" setting is enabled (#23372)

Architecture - Dependencies

  • Fixed: Upgrade to scala 2.13.12 (#23417)

Web - Config management

  • Fixed: Error when updating policies on relays when no files has been shared between nodes (#17143)

Release notes

This is a bug fix release in the 8.0 series and therefore all installations of 8.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 8.0.0.beta1 (2023-09-07)

Changes

Packaging

  • Update agent dependencies (#23360)

  • rhel7 server build should depends on python3-pip and python3 (#23083)

  • Repair rhel7 agent build (#23080)

  • Update Rust dependencies (#23359)

  • Update frontend dependencies (#23362)

  • Cleanup old files in repo (#23353)

  • Build rust binaries with cargo auditable (#23175)

  • Remove cfe-red-button.sh from sources (#23130)

Agent

  • Missing variables in mustache rendering must be an error (#23068)

  • make rudder agent run -u the default (#23328)

  • Remove RUDDER_VERIFY_CERTIFICATES usage in agent (#23329)

  • Remove support for syslog reporting completely from agent (#23317)

  • Add a trust option to rudder agent policy-server (#22629)

Documentation

  • Update hardening guide for 8.0 (#23333)

  • Add release note for hashed api tokens (#23257)

  • Prepare doc for 8.0 (#23204)

  • Document how to script the windows agent install (#23066)

  • Arch doc for policy update (#22589)

Relay server or API

  • Update embedded openssl to 3.1 in relayd (#23383)

  • Use the secrecy crates for wrapping passwords (#23159)

Web - Technique editor

  • Allow to edit yaml in editor (#23381)

  • Display compilation output in technique details (#23357)

Web - Compliance & node report

  • Remove constraint on component name pattern for matching reports (#23084)

Web - Nodes & inventories

  • When I enter the "Create a new item" popup to create a group the default field should be Name (#2677)

Web - UI & UX

  • Remove angular leftovers (#23350)

  • Allow to edit files in file manager (#23349)

  • When drag’n drop, the selected method and the targeted drop zone should be more highlighted (#23303)

  • Improve some messages in the interface (#23275)

  • Speed up fadein animation of pages (#23274)

  • Use consistent fonts in Rudder interface (#23265)

  • After deleting a node, the user should be redirected to nodes list page (#7008)

  • Remove angularjs from Rudder (#23072)

  • Rewrite the 'technique-version' app in Elm (#22991)

Web - Config management

  • Improve password hash scheme names (#23283)

  • Remove old certificate verification option (#23287)

  • Rename "global parameters" to "global properties" (#22379)

  • Remove the rudderc "linux only" option from webapp (#23118)

Security

  • TLS 1.3 everywhere (#23292)

  • Use constant time comparison for system token (#23291)

API

  • Add last generation time on regenerate button (#23284)

  • Hash API tokens (#23234)

  • Prepare API doc for 8.0 (#23205)

Architecture - Code maintenance

  • Rewrite angular app "filters.js" in Elm (#23210)

  • Rewrite angular app "passwordForm" in JavaScript (#23060)

rudderc

  • Parse expressions for linting (#23190)

  • Don’t stop at first user error but display an many as possible (#23188)

  • Allow JSON output (#23185)

  • Switch to tracing for logging (#23180)

  • Add an option to start the agent in verbose mode (#23135)

  • Document JSON schema (#23134)

  • Improve testing features (#23102)

Performance and scalability

  • Make commiting nodes to fact-repo optionnal (#23045)

Generic methods

  • Improve variable_string_from_command by using execresult_as_data (#23347)

Bug fixes

Packaging

  • Fixed: Server install fails with postgresql encoding error (#23388)

  • Fixed: Stop removing the openssl test folder (#23355)

  • Fixed: Don’t build openssl tests (#23255)

  • Fixed: Hide postrm script warnings (#23251)

  • Fixed: Rudder Server 7.3.4 doesn’t install on SLES 15 SP4 (#23186)

  • Fixed: Install failed rudder-slapd does not start (#23165)

  • Fixed: Actually allow uninstalling the agent (#23146)

  • Fixed: Agent uninstall fails on Ubuntu 22.04 (#23145)

  • Fixed: rudder-server package can’t install on rpm in 8.0 (#23144)

  • Fixed: /var/log/rudder/ldap/slapd.log has incorrect permissions (#23142)

  • Fixed: Some cfengine patch don’t apply in 8.0 anymore (#23069)

  • Fixed: Some cfengine patch don’t apply in 8.0 anymore (#23069)

  • Fixed: relayd build broken (#23247)

  • Fixed: Update spring security (#23221)

  • Fixed: Remove unused Rust dependencies (#23219)

  • Fixed: Update embedded openssl to 1.1.1v - relayd (#23217)

  • Fixed: Install cargo-auditable before building (#23191)

  • Fixed: Package install after uninstall only restores uuid (#23239)

Agent

  • Fixed: Wrong source detection on some apt systems (#23387)

  • Fixed: When we uninstall and reinstall an agent, the agent is not correctly activated (#22413)

Security

  • Fixed: Update openssl and curl (#23192)

  • Fixed: Prevent API token logging by overriding toString implementation (#23228)

  • Fixed: Use token id in URLs (#23233)

  • Fixed: CVE-2016-1000027 false positive detection (#23231)

  • Fixed: Some internal APIs in the Web application bypass ACLs (#23227)

  • Fixed: File manager API is vulnerable to malicious input (#23225)

  • Fixed: Path traversal in relayd shared-folder HEAD call (#23226)

  • Fixed: The "shared_file_to_node" method does not verify its policy server’s certificate with default configuration (#23290)

Web - Nodes & inventories

  • Fixed: Missing information in Oracle linux inventory (#23029)

  • Fixed: 502 - Proxy Error when triggering Rudder agent (#22998)

  • Fixed: Don’t accept inventories from agent without a certificate (#23324)

  • Fixed: Change description of "All Linux nodes" group (#23179)

Documentation

  • Fixed: Fix version in menu for yaml tehcniques doc (#23259)

  • Fixed: doc for external db is not very clear (#23245)

  • Fixed: Wrong OS for amazon linux 2023 server install (#23242)

  • Fixed: correct rudder server requirements in doc (#23131)

  • Fixed: Add relevent items from jetty config to the webapp conf section (#23026)

  • Fixed: Document the report mode setting (#13289)

  • Fixed: Windows agent installation : Documentation improvement (#23018)

  • Fixed: Update api doc for new response format for /settings/allowed_networks (#23267)

  • Fixed: Document when a parameter can be a regex (#10713)

Web - UI & UX

  • Fixed: Elm webapp build is broken in 8.0 (#23394)

  • Fixed: We can choose the format of the value on deletion in global parameter (#23183)

  • Fixed: Tables in Rudder UI are sorted alphabetically but should also follow a numerical sort (#23335)

  • Fixed: Change the display of the new filemanager to match the previous one (#23285)

  • Fixed: Filter display is broken when a tag is added (#23346)

  • Fixed: In the quicksearch window, the link for a result is not applied to the entire line (#23345)

  • Fixed: In Technique Editor, the quicksearch window appears behind the navigation menu. (#23343)

  • Fixed: In quicksearch window, Warning message "please refine your query" is displayed even if there is less than 10 results (#23342)

  • Fixed: Inconsitency background color in generic method section in technique editor (#23170)

  • Fixed: Node property name is reset to the previous value when editing the value on creation (#23182)

  • Fixed: Inconsistent color of save button in directives (#23196)

  • Fixed: Cannot create group property because of missing UI (#23181)

  • Fixed: Inventory variable that are Json types are listed as plain string types in the UI (#23087)

  • Fixed: Password form in User directives does not works properly (#23200)

  • Fixed: Interface color inconsistency for non compliance display (#23004)

Relay server or API

  • Fixed: Allow underscore in file_id in shared-files (#23392)

  • Fixed: Broken log for file_id in shared-files API (#23390)

rudderc

  • Fixed: rudderc parses ncf_const.s as const.s (#23377)

  • Fixed: Rudderc silently accept unknown parameter constraints (#23380)

  • Fixed: Broken technique parameter serialization (#23358)

  • Fixed: Rudderc transform some method parameter name in an incorrect manner (#23341)

  • Fixed: Move "technique parameters" section at the beginning (#23334)

  • Fixed: Improve serde deserialization error messages (#23252)

  • Fixed: Rudderc does not escape correctly the double quotes in componentKey in windows techniques (#23246)

  • Fixed: Windows technique generated function name is incoherent with the generated directives (#23240)

  • Fixed: Fix JSON output of the lib command (#23195)

  • Fixed: Warn on deprecated methods (#23194)

  • Fixed: " are not correctly escaped in technique for classes_noop in rudder 8.0 (#23178)

  • Fixed: Conditions syntax broken on Windows (#23152)

  • Fixed: Allow booleans for condition fields (#23151)

  • Fixed: Sort bundles in CFEngine output (#23150)

  • Fixed: Broken reports when condition is not defined (#23149)

  • Fixed: Add versions to rudderc binaires (#23138)

  • Fixed: Rudderc fails to render block conditions (#23136)

  • Fixed: Improve technique JSON schema (#23132)

  • Fixed: Embed current version of the lib in rudderc (#23125)

  • Fixed: Add rich form types to yaml techniques (#23039)

Architecture - Code maintenance

  • Fixed: Clean-up unsuported old format for expected report and techniques (#23369)

  • Fixed: Add rudder 8.0 inventories to unit tests (#23319)

  • Fixed: Simplify YAML encoding workaround (#23325)

  • Fixed: When custom role permission list is empty, reload lead to stack trace (#23305)

  • Fixed: Rewrite angular app tags.js in Elm (#23201)

  • Fixed: Warning for unused vars in 8.0 compilation (#23093)

Web - Technique editor

  • Fixed: Import/Export yaml with technique editor (#23352)

  • Fixed: Technique editor throws errors when using blocks with the weighted default reporting option (#23244)

  • Fixed: Error when we try to save a draft with a missing parameter name in technique editor (#23256)

  • Fixed: in the technique editor, the drop down list for condition is truncated (#23177)

  • Fixed: When changes messages are mandatory and saving a technique we have an error message about missing info but technique is saved (#23000)

Web - Config management

  • Fixed: First regenerate methods then migrate to yaml (#23361)

  • Fixed: Regenerate yaml technique and filter generated files in rule archives (#23155)

  • Fixed: Message “Error getting directive compliance” when creating new directive (#22830)

  • Fixed: Temporary workaround for tag creation in rudder 8.0 alpha (#23148)

Architecture - Dependencies

  • Fixed: Update scala dependencies before beta (#23364)

Web - Maintenance

  • Fixed: Plugin cannot add custom roles or it will be overwritten by boot custom roles (#23098)

Plugin manager cli

  • Fixed: rudder package doesn’t upgrade openscap, and it brings a lot of chaos (#23224)

Miscellaneous

  • Fixed: Update Rust compiler to 1.71.1 for security fix (#23216)

  • Fixed: Version 2.0.3 of ZIO cause OutOfMemory error and high CPU load (#23147)

  • Fixed: Generation not queued when one already started (#23074)

System integration

  • Fixed: Windows agent cannot get immediatly its policies right after being accepted (#23218)

Generic methods

  • Fixed: N/A report message when a block expression is not valid is not rendered correctly (#23212)

  • Fixed: When generic method change a password it doesn’t update the date of last change (#23339)

  • Fixed: "Variable string from command" creates empty files in /var/rudder/modified-files (#22584)

CI

  • Fixed: Update compatibility test to JVM 20 (#23129)

Web - Compliance & node report

  • Fixed: Bad report maching when reportid are present (#22388)

  • Fixed: Multiline string in component name or value breaks pattern comparison for expected report (#23090)

Techniques

  • Fixed: When the user technique change a password it doesn’t update the date of last change (#23338)

  • Fixed: Deprecate some built-in techniques in 8.0 (#23044)

System techniques

  • Fixed: Broken report in 8.0 (#23143)

Server components

  • Fixed: Broken "server create-user" command when auth file has different formating (#23203)

Release notes

Special thanks go out to the following individuals who invested time, patience, testing, patches or bug reports to make this version of Rudder better:

  • Florian Heigl

  • Jonathan CLARKE

  • Marc Evans

This is a bug fix release in the 8.0 series and therefore all installations of 8.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Rudder 8.0.0.alpha1 (2023-07-18)

Changes

Packaging

  • Remove agent dependency on syslog (#22900)

  • Upgrade agent dependencies for 8.0 (#22840)

  • Use openldap 2.6.4 in rudder 8 (#22793)

  • Upgrade fusion inventory to 2.6 (#22791)

  • Remove transitional packages in Rudder 8.0 (#22748)

  • remove python2 support on rudder 8 (#22746)

  • Require postgresql 13 on rudder 8 (#22745)

  • Update cfengine to 3.21 (#22742)

Web - UI & UX

  • Switch quicksearch to elm (#23050)

  • Remove old IE 5 & 6 JS compatibility code (#23057)

  • Remove heartbeat configuration from the settings (#22659)

  • Removing deprecated AngularJs applications (#23036)

  • Beautify no permission page when user have no rights (#22626)

  • Rewrite angular app "ComplianceMode" in Elm (#22969)

  • Rewrite angular app "Node properties" in Elm (#22741)

  • Modify the hierarchy of elm applications to make their code shareable between them (#22647)

  • Rewrite the angular app "Policy mode" in Elm (#22427)

  • Rewrite the angular app "Policy mode" in Elm (#22427)

Architecture - Code maintenance

  • Rewrite angular app "textForm" in JavaScript (#23041)

  • Remove QueryTrait (#22678)

API

  • Remove "no access" permission in token authorization (#23014)

Web - Technique editor

  • Use rudderc in webapp to generate internal techniques (#22815)

rudderc

  • Generator for Windows policies (#22849)

  • Update rudderc documentation (#22721)

  • Fallback on /var/rudder/ncf/common for library (#22719)

  • Allow generating runnable techniques (#22573)

  • Improve HTML doc of methods (#22563)

  • Update Rust tooling for 8.0 (#22561)

  • Refactor CLI to work on a local directory (#22545)

Relay server or API

  • Remove md5 usage in relayd (#22909)

Security

  • Use cargo vet to check Rust dependencies (#22816)

Architecture - Dependencies

  • Update webapp dependencies (#22800)

System techniques

  • remove syslog configuration and associated restart in the agent (#22902)

  • remove log rotation for slapd logs (#22898)

Generic methods

  • Update CFEngine stdlib to 3.21.1 (#22818)

  • Add a 'Permissions POSIX ACLs entry parent' method (#22386)

Bug fixes

Packaging

  • Fixed: slapd cannot write in its log file (#23048)

  • Fixed: remove openssl 1.1.1 build hack un rudder 8.0 (#22961)

  • Fixed: accelerate rpm build when perl modules are already present (#22939)

  • Fixed: rpm build may fail on old centos (#22936)

  • Fixed: build fail on amazon linux 2023 (#22935)

  • Fixed: there is a hidden dependency on syslog service (#22899)

  • Fixed: Use system openssl for relayd (#22888)

  • Fixed: libxml2 sha256 is wrong (#22855)

  • Fixed: Failing patches of jetty (#22851)

  • Fixed: aix should continue to build 32 bits dependencies as before (#22837)

  • Fixed: old value aix-gcc doesn’t work on openssl3 (#22835)

  • Fixed: openssl3 configure script is deprecated (#22834)

  • Fixed: openssl3 is not detected at build time by curl (#22833)

  • Fixed: Document missing perl dependencies (#22812)

  • Fixed: 8.0 dependecny check is broken (#22872)

  • Fixed: docopt completion is installed in /usr/local/bin (#22868)

Performance and scalability

  • Fixed: use openssl 3 on very old and very recent OS in rudder 8 (#22817)

Miscellaneous

  • Fixed: Require Java 17 (#22732)

Documentation

  • Fixed: documentation on how to configure rsync relay synchroinisation is missing (#22891)

  • Fixed: Documentation on how to upgrade Rudder to 7.2 is invalid on zypper (#22621)

Architecture - Code maintenance

  • Fixed: Rudderc produces metadata.xml under target directory which breaks webapp (#23053)

  • Fixed: Rewrite file manager to an elm application (#22988)

  • Fixed: Cache most current Version number to save lots of memory (#22978)

  • Fixed: Rudder 8.0 compilation is broken (#22986)

  • Fixed: Snake-yaml dependency in zio-json is subjected to CVE (#22983)

Web - Config management

  • Fixed: Wrong command to call rudderc in webapp (#23049)

  • Fixed: Rudderc usage within Rudder webapp (#22845)

  • Fixed: Rudderc usage within Rudder webapp (#22845)

  • Fixed: Rudderc usage within Rudder webapp (#22845)

Web - UI & UX

  • Fixed: There is a blank space above almost every Rudder page (#23042)

  • Fixed: Directives tooltips go under navigation menu (#22530)

  • Fixed: Agent schedule and policy mode apps are not initialized anymore (#22853)

  • Fixed: Rewrite angular app "Agent schedule" in Elm (#22510)

Server components

  • Fixed: Grammar correction in error message (#23027)

rudderc

  • Fixed: Call rudderc with correct parameters (#22973)

  • Fixed: Windows generator generates invalid syntax (#22972)

  • Fixed: Broken test in rudderc (#22726)

  • Fixed: Check focus reporting has an existing id (#22720)

  • Fixed: Put images in src dir (#22572)

  • Fixed: Missing rsync to publish rudderc docs (#22570)

Security

  • Fixed: JS vulns in 8.0 (#22984)

  • Fixed: Fix our GitHub SECURITY file (#22964)

  • Fixed: Ignore DoS in npm dependencies (#22324)

Architecture - Dependencies

  • Fixed: Update elm dependencies (#22881)

API

  • Fixed: Change json structure returned for /settings/allowed_networks (#22456)

Techniques

  • Fixed: Update user management to manage secondary group of user (#22846)

  • Fixed: Update user management to manage secondary group of user (#22846)

System techniques

  • Fixed: there is no all.log anymore, remove log rotation (#22897)

Agent

  • Fixed: Hard to understand set-force-audit help (#23008)

Generic methods

  • Fixed: Remove reporting heartbeat implementation (#22660)

Release notes

This is a bug fix release in the 8.0 series and therefore all installations of 8.0.x should be upgraded when possible. When we release a new version of Rudder it has been thoroughly tested, and we consider the release enterprise-ready for deployment.

Change logs for Rudder 8.0


← Release notes aix →