2.38.2

Notes

  • This release is currently only available for the Kubernetes scheduler.

Changes

2.38.1

Changes

Bug Fixes

  • Fixed an issue where an app release’s required status would not sync after replicated first downloaded the release.
  • All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.

2.38.0

New Features

  • Replicated Embedded Kubernetes has been upgraded to Kubernetes 1.15.0.
  • It is now possible to upload airgap bundles directly to the server from the Admin Console UI on the /releases page. Previously a user had to copy the file manually via SSH or FTP.

Changes

  • Replicated will no longer warn in preflight checks when the Docker patch version is greater than the version expected.
  • Replicated with the Kubernetes scheduler now prunes objects of all resource types from older releases. Previously Replicated would not prune ConfigMaps, Secrets, and CustomResources.
  • The version of Weave installed with Replicated Embedded Kubernetes has changed from 2.5.1 to 2.5.2.
  • The version of Rook installed with Replicated Embedded Kubernetes has changed from 1.0.0 to 1.0.3.
  • The version of Contour installed with Replicated Embedded Kubernetes has changed from 0.11.0 to 0.13.0 and the version of Envoy has changed from 1.9.1 to 1.10.0.
  • The version of Docker installed with Replicated Embedded Kubernetes has changed from 18.06.3 to 18.09.7.

Bug Fixes

  • Fixed an issue that could result in a required release being bypassed when multiple releases are queued for installation.
  • Fixed an issue that caused an an application to fail to deploy when empty files are included of the type “scheduler-kubernetes”.
  • Fixed an issue that may cause the “replicated” container to crash on when a timeout occurs when collecting a V1 Support Bundle.
  • Fixed an issue that would cause the “replicated-operator” container to use excessive resources when an application container is in a restart loop.
  • Added error handling for unexpected responses from the Replicated API.
  • Fixed an issue that could prevent programmable test procedures from running in high availability mode on the Kubernetes scheduler.
  • Added a timeout to the Job responsible for syncing airgapped bundle files across all masters on high availability Kubernetes installations.
  • Fixed an issue that could cause the Statsd metrics to stop reporting in Replicated if the container DNS changes.
  • Fixed an issue that would prevent Swarm Compose YAML from referencing license field values via template functions, resulting in an error when installing a license.
  • The Replicated UI will now show the error returned by the Kubernetes API server when attempting to apply invalid YAML that results in a 422 response.
  • Replicated will no longer attempt to delete and re-create PersistentVolumeClaims when the Kubernetes API returns a 422 error for an apply operation.
  • Replicated will no longer perform a full Provisioning API identity re-sync when the POST /v1/reset route is not implemented and the identity.enable_reset_request property of the YAML is set to false.
  • Fixed an issue that prevented Kubernetes applications with DaemonSets from stopping.
  • Fixed DNS failures when running Replicated Embedded Kubernetes on Ubuntu 18 with systemd-resolver enabled.
  • Fixed a Cross-Site Scripting vulnerability on the 404 Not Found route in the Auditlog API.
  • All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.

2.37.1

Bug Fixes

  • Fixed an issue that prevented Replicated from starting after upgrades due to a failure to decode task objects in the local database.

2.37.0

New Features

Changes

  • The base image of the Replicated containers has been changed from Alpine to Debian Stretch Slim.

Bug Fixes

  • Improved resiliency of multi-master airgapped Replicated Embedded Kubernetes installations following the loss of a master node.
  • Fixed an issue when running with the Swarm scheduler that would result in image pull failures when docker hub images are included in the compose spec.
  • Fixed an issue that could cause the support bundle to timeout when collecting Swarm logs due to Docker issue https://github.com/moby/moby/issues/38640.
  • Docker 18.06.1 will now be installed on Ubuntu 14.04 in order to fix an issue with Docker on some 3.X kernels. Previously 18.06.2 was installed.
  • Fixed an issue with multi-line ExecStart commands in /etc/systemd/system/docker.service.d/replicated-registry.conf, which may be created to allow local registries to run with http on airgapped Replicated Embedded Kubernetes installations.
  • Upgraded vulnerable npm packages including fstream, marked, sshpk, and tar.
  • All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.

2.36.0

New Features

Changes

  • The version of Rook bundled with Replicated Embedded Kubernetes has been upgraded to 1.0 with Ceph Nautilus v14. This improves resiliency of the cluster when nodes are lost in HA mode as well as after reboot in all modes.
  • A Replicated Embedded Kubernetes operator deployment has been added to the default namespace to manage cluster storage and nodes.
  • TLS 1.0 and TLS 1.1 are now disabled on the Retraced API service endpoint.
  • The CLI command replicatedctl task ls is now ordered by created date descending.
  • DaemonAuthenticationPassword is no longer present in the params export in the support bundle.
  • Default license field values are now included in the application airgap bundle and will be saved on installation of the release.

Bug Fixes

  • Fixed an issue that would prevent CPU and memory graphs from reloading on the dashboard on an application update without reloading the browser window.
  • Fixed an issue that could cause the snapshot server to become unresponsive in some situations requiring a restart of the Replicated container.
  • Fixed an issue that could cause application updates to fail due to duplicate update tasks running in parallel.
  • Fixed an issue that resulted in empty support bundles when a collect timeout occurs.
  • Fixed a race condition that could cause an automated installation to fail to start the application with an error indicating that not enough nodes are connected.
  • Fixed an issue that will force the Statsd container to restart when upgraded from the release 2.32.2. Graphs were not visible on the dashboard in this release due to a known issue.
  • Fixed an issue that would prevent application upgrades of airgapped installations when a new license field is added and used in a container when condition when running with the Native scheduler.
  • Fixed an issue that prevented some special characters from being included in the DaemonAuthenticationPassword field of the replicated.conf file.
  • All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.

2.35.1

Bug Fixes

  • The yaml configuration for the Contour Ingress controller included with Replicated Embedded Kubernetes has been updated to be compatible with Contour v0.11.0.

2.35.0

Changes

Bug Fixes

  • Content-Security-Policy, X-Frame-Options, and X-XSS-Protection headers have been added to the On-Prem Admin Console to prevent XSS attacks and clickjacking.
  • Pulling images will no longer count against the timeout when running Programmable Preflight Checks or Test Procedures on the Native scheduler, preventing command timeout errors.
  • Fixed an issue that prevented an application from starting when a Swarm service was included in “replicated” mode with replicas set to zero.
  • Fixed an issue that resulted in a 404 error when running the replicatedctl snapshot restore command when using Replicated Embedded Kubernetes.
  • Fixed an issue with the Native scheduler that prevented the Replicated Operator from reconnecting after a disconnection, requiring an Operator restart.
  • The Replicated Embedded Kubernetes install script will ensure a properly configured storage class is present every time it is run.
  • The Native easy install scripts will no longer re-prompt the user with a Firewalld warning.
  • Fixed an issue that caused Swarm auto-upgrades to revert HTTP_PROXY and NO_PROXY settings.
  • The Swarm airgapped “Add Node” modal in the On-Prem Admin Console now correctly references the script included in airgapped bundles.
  • Custom certificates uploaded to airgapped Replicated Embedded Kubernetes installations will no longer be overwritten when upgrading Replicated from versions prior to 2.34.
  • Fixed a bug that allowed multiple snapshot restores to run in parallel, resulting in failed snapshots.
  • All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.

2.34.1

Bug Fixes

  • Fixed an issue introduced in version 2.34.0 that prevents Native applications from starting when the spec contains a container with the cluster_instance_count.inital property set to a value greater than 1.
  • The native to Kubernetes migration script will no longer exit early when activation is required.
  • Fixed an issue that caused Replicated to overwrite custom TLS cert and key with generated ones on restart.

2.34.0

New Features

Changes

  • The Admin Console started (server.start) event in the audit log now includes the Replicated version.
  • Replicated Embedded Kubernetes will now set the storageClassName of the audit log’s Persistent Volume Claim.
  • Application config is now included in the support bundle at replicated/internal/app-config.json. Password fields are redacted.
  • More info level logging has been added when a Replicated Embedded Kubernetes application is starting up.
  • The command replicated app <id> rm has been removed.
  • Replicated Embedded Kubernetes will now mark its StorageClass as the default StorageClass for the cluster by setting the storageclass.kubernetes.io/is-default-class annotation.

Bug Fixes

  • Fixed an issue that prevented upgrading an application alongside an auto-update of Replicated when that spec was incompatible with the previous Replicated version due to unsupported template functions.
  • Fixed an issue that could cause airgapped updates to fail due to application YAML corruption when running with the Swarm or Kubernetes schedulers.
  • Fixed an issue that caused an error if a private image was being used in a Programmable Preflight Check in Swarm.
  • Fixed an issue that could cause settings to revert when syncing a license or updating an application when there is a replicated.conf ImportSettingsFrom file present. Replicated can be reverted to the previous behavior by setting ForceUseImportedSettings to true in the replicated.conf file.
  • When a custom TLS certificate/key cannot be parsed successfully, a new certificate and key will be generated automatically to avoid crashing Replicated.
  • CPU performance has been improved when running with the Native scheduler.
  • Replicated Embedded Kubernetes will now properly wait for StatefulSets when reporting application state.
  • Fixed an issue that prevents saving the application settings form when a password field is hidden from a when condition and a password manager is enabled in the browser.
  • Config groups will no longer be visible in the left navigation when only hidden items are present.
  • Fixed an issue with Kubelet on worker nodes of a Replicated Embedded Kubernetes cluster failing to detect Rook plugins. The node join script now has a wait-for-rook flag that will block until Rook is ready and then restart the Kubelet. The Replicated console will include this flag in its generated scripts when Rook is detected.
  • Fixed an issue that prevented restores with Replicated Embedded Kubernetes from completing when there were no PVCs specified in the backup.
  • Fixed handling of leading slashes in shared filesystem snapshot paths specified in backup.kubernetes.shared_fs_paths.
  • Fixed a confusing log line where Replicated Embedded Kubernetes claims to restore more PVCs than it actually does.
  • The command replicatedctl app-config set will now result in an error when attempting to set a non-existent config item.
  • Fixed a misleading error message in the support bundle errors.json file, when the command os.read-file was run and the file did not exist.
  • Fixed an issue that could cause an error when running Programmable Preflight Checks or Test Procedures multiple times in succession when using Replicated Embedded Kubernetes.
  • Fixed an error in the browser console that prevented the user from toggling on the Docker CLI option in the node add modal when using the Swarm scheduler.
  • Kubernetes resource type PodDisruptionBudget will now be removed and replaced when applying changes to the Kubernetes application spec.
  • Fixed an issue that could prevent the Preflight Checks page from loading in the Admin Console when no Operators are connected when using the Native scheduler.
  • Added a meaningful error message when no applications are found associated with the installed scheduler.
  • Added a meaningful error message when no channels are associated with a license.
  • All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.