Replicated Release Notes

2.46.0

Released on 9 Jul 2020

New Features

Replicated Embedded Kubernetes can now be configured to provision storage on specific nodes at install time.
Support for RHEL/CentOS 7.8 has been added to Replicated Embedded Kubernetes.

Changes

Nodes will no longer be purged automatically on HA Replicated Embedded Kubernetes installations when unreachable for one hour. Instead pods on unreachable nodes will be force deleted after five minutes. This will decrease the time for pods with PVCs mounted to fail over from 1 hour to approximately 8 minutes.
The installer will now create a replicated-registry ClusterIP Service on Replicated Embedded Kubernetes online installations.

Bug Fixes

Fixed an issue that could cause a Replicated Embedded Kubernetes Control Plane node to come back as worker nodes when rejoining the cluster.
Fixed an issue on Native and Swarm airgapped installations that could cause the Support Bundle to fail on secondary nodes due to failures to push the Support Bundle image to the on-prem registry.
Fixed an issue on the Native Scheduler that could cause the Operator to disconnect and fail to reconnect after generating a support bundle.
Fixed an issue that could cause the Support Bundle docker.container-exec task to fail with the error “Exec command is already running”.
Fixed an issue that could cause Kubernetes API server certificates to be generated with incorrect SANs on secondary nodes after changing the API server load balancer and using a non-standard service CIDR.
Fixed an issue that would cause the Kubernetes Ceph dashboard to be inaccessible on servers with IPv6 disabled.
All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.

2.45.1

Released on 29 Jun 2020

Notes

This release is currently only available for the Kubernetes scheduler.

Bug Fixes

Fixed an issue that would cause the Kubernetes API server certificates to be generated with incorrect SANs when installed using an alternate Kubernetes Service CIDR.

2.45.0

Released on 17 Jun 2020

New Features

Support for managing HTTP proxy configuration in the console has been added for the Swarm and Kubernetes schedulers.
The RemoveImportSettingsFrom property has been added to /etc/replicated.conf. If set to true, Replicated will remove the ImportSettingsFrom file after use.

Changes

Public Docker images are now hosted on Docker Hub rather than Quay.io. This includes replicated/replicated, replicated/replicated-ui and replicated/replicated-operator.
The Replicated install scripts will no longer prompt for the public and private address on upgrades or when these addresses are already configured.
The Weave Pod network CIDR is now added to the NO_PROXY list of addresses when installing Replicated Embedded Kubernetes with an HTTP proxy.

Bug Fixes

Replicated will now prevent restoring a snapshot over a previously installed application, which would cause Replicated to get into a bad state.
Fixed an error that prevented the application from restarting after changing HTTP proxy configuration in the console on the Native Scheduler.
Fixed an issue that could cause Replicated Embedded Kubernetes to falsely report the application as started on initial installation.
Fixed an issue with the Native Scheduler that could prevent the Replicated Operator from disconnecting when the connection to the master is no longer active.
Fixed an issue that could cause liveness and readiness probes to fail when Replicated Embedded Kubernetes is installed and configured to use an HTTP proxy.
Fixed an issue that could cause the Replicated install scripts to fail when the Docker CLI is installed but not the Docker Daemon.
All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.

2.44.2

Released on 5 Jun 2020

Bug Fixes

Fixed a bug in setting snapshot configuration.

2.44.1

Released on 2 Jun 2020

New Features

Support for Ubuntu 20.04 LTS (Focal Fossa) has been added to the Native and Swarm schedulers.
NodeLocal DNSCache can now be enabled, to work around a bug resulting in DNS lookup delays of 5 or more seconds, by passing the nodelocal-dnscache flag to the Kubernetes install scripts.

Changes

The node join scripts generated on the /cluster page of the Admin Console will set the HTTP proxy if configured.
The Native scheduler will no longer remove application containers with the –force flag.
The default version of etcd bundled with Replicated Embedded Kubernetes has been upgraded from 3.3 to 3.4.
The container.stop_timeout property will now be passed to the container run command via the –stop-timeout flag in addition to the container stop command –time flag.

Bug Fixes

Fixed an issue in the Native scheduler that could cause application containers to be removed abruptly without sending a termination signal.
Fixed an issue that caused the Support Bundle to fail to collect when the Support Bundle Collect Spec is too long.
Fixed an issue that caused image layers from previous versions of the application to remain on disk in the Replicated Embedded Registry database after upgrade.
The Kubernetes install scripts will use UTC rather than the system time when creating the registry storage bucket.
The Kubernetes install scripts will now fail if there is a failure to create the registry storage bucket.
Fixed an issue in the Native scheduler that in some cases caused the Premkit container to fail with error “open /var/lib/replicated/secrets/premkit.crt: is a directory”.

2.44.0

Released on 22 May 2020

New Features

All Kubernetes Component Docker container images installed by the Replicated Embedded Kubernetes installer are now scanned and patched prior to each Replicated release.
Files can now be omitted from the Replicated Support Bundle using the files property of the meta.redact spec.

Changes

The Docker version on Native and Swarm installs will now default to 19.03.8.
Replicated Docker dependencies have been updated to version 19.03.8.
The swarm-default-address-pool flag has been added to the Swarm quick install scripts. This flag is used to specify the default subnet pools for global scope networks. The value is passed to the swarm init command via the --default-addr-pool flag.
The replication level of the Rook and Ceph storage pools used by Replicated Embedded Kubernetes will be set hourly. Previously the replication level was only set after changes to the cluster size.
Secrets will now be encrypted before being stored in the database using AES-GCM encryption with a per-installation 192-bit key generated at installation time.
When the Replicated database is corrupted it will automatically attempt to repair itself on next start.
The Docker Version Custom Preflight Check no longer requires a maximum version.
The LdapCopyAuthFrom template function now accepts the ServerType parameter to return the LDAP server type.
Metrics reporting has been disabled for the audit logging service on both Kubernetes and Swarm installations.
Task logs are now stored in the Replicated temp directory instead of the database.

Bug Fixes

Memory and disk space Custom Preflight Checks now properly differentiate between SI and binary units.
Fixed scaling of RGW metadata pools for clustered Kubernetes installations.
Fixed an issue that could cause Replicated to prompt the user to dismiss Preflight Checks twice on initial installation.
The Replicated container process will now respond to signals from the service manager and attempt to shut down in a clean manner.
Certain error messages encountered during app updates will now be shown in modals because they were previously rendered too quickly to be seen.
Improvements have been made to properly reflect the Pod deployment status on the Cluster page of the Replicated Embedded Kubernetes Admin Console.
Fixed an issue that prevented the end-user from changing the Kubernetes API load balancer address on Replicated Embedded Kubernetes airgapped installations.
Fixed an issue that caused Replicated Embedded Kubernetes installations to fail due to failed registry pushes when in airgapped mode and an HTTP proxy is configured.
Fixed an issue that caused Replicated Embedded Kubernetes installations to fail due to failed creation of the registry S3 bucket when in airgapped mode and an HTTP proxy is configured.
The Replicated statsd-graphite container will now be restarted on Native installations when the application is upgraded allowing for changes in port configuration to take effect.
The Replicated statsd-graphite container will now log to stdout and stderr.
Fixed an issue that could cause Replicated Embedded Kubernetes to crash when a pod takes too long to start.
Silenced noisy logs when querying the /ping endpoint of the Replicated UI service with a console password set.
Fixed Docker installation scripts on CentOS 6, RHEL 6 and Fedora 30.
Fixed discrepancy in number of audit log events returned by search and CSV export.
The shutdown service on Replicated Embedded Kubernetes will ensure the Replicated pod is not bound to the node that is being shutdown.
All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.

2.43.2

Released on 8 May 2020

Bug Fixes

Fixed a bug in setting snapshot configuration.

2.43.1

Released on 7 May 2020

Notes

This release is currently only available for the Swarm and Native schedulers.

Changes

The Native scheduler property ports[].public_port_initial has been added to prevent port collisions when exposing a public port when clustering is enabled and cluster_instance_count.initial is greater than one. This property functions the same as the public_port property but will be ignored by versions of Replicated prior to 2.43.1.

Bug Fixes

All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.

2.43.0

Released on 20 Apr 2020

New Features

Airgapped licenses can now be updated by uploading a file on the Console Settings (/console/settings) page of the Replicated Admin Console.
The optional flag taint-control-plane has been added when using the Replicated Embedded Kubernetes installation scripts to prevent Pods from running on master nodes alongside the control plane. This will add the node-role.kubernetes.io/master: NoSchedule taint to all master nodes.
The Replicated Native Scheduler will now map a range of ports when clustering is enabled and cluster_instance_count.initial is greater than one and a port.public_port is exposed explicitly on the host.
The command replicatedctl snapshot rm has been added to allow for the removal of a snapshot from the Replicated CLI.

Changes

Replicated Embedded Kubernetes will now make resource requests for all pods deployed by the installation scripts and Replicated including the Kubernetes Control Plane and the Replicated Admin Console.
Certificates for Kubernetes control plane components will be automatically rotated when expiring in less than 100 days.
The Replicated Embedded Kubernetes installation script will no longer prompt for the private IP address on upgrades.
Replicated Embedded Kubernetes will now use hostPath volume mounts for support bundle and temporary storage at the locations /var/lib/replicated/support-bundles and /var/lib/replicated/tmp respectively. Previously, these temporary files were stored in a Rook Ceph backed PVC mounted under the /opt/replicated/rook directory on the host.
Kubernetes previous Pod logs are now included in the Support Bundle for both Replicated and application pods.
Kubelets running on master nodes are now configured to use auto-renewed certificates instead of the certificate generated during installation.
The Docker registry used by Replicated Embedded Kubernetes is now highly available and backed by the Rook Ceph Object Gateway.
Preflight Checks will now prevent an application update, requiring the user to fix or dismiss errors before proceeding. Previous to this change, Preflights were automatically bypassed if no changes were made to the Preflight spec.

Bug Fixes

Fixed an issue that caused failures from the kubeadm init command to be ignored by the Replicated Embedded Kubernetes installation script.
Increased the minimum Ceph pool size on multi-node Replicated Embedded Kubernetes clusters to 2 to prevent data loss from the loss of a single node.
Fixed an issue that caused the Rook Ceph Object Gateway replication factor not to be applied, leading to data loss from the loss of a single node.
Fixed an issue that could prevent a Replicated Embedded Kubernetes application from starting when the application defines an APIService.
Fixed an issue when using the Native scheduler that could cause the application to restart when Replicated is updated.
Failure to meet the minimum replicated_api_version requirement will no longer prevent Replicated from downloading new versions of an application. An application update will still fail if the requirement is not met.
When running the command replicatedctl app-config set, Test Procs with the run_on_save property set to true will only run for items that are changing, no longer preventing the command from succeeding.
Snapshot restore now supports AWS Instance Profiles.
Fixed an issue that could cause the SFTP Snapshots temporary directory not to be properly cleaned up when a snapshot failure occurs.
Fixed an issue that could cause a Support Bundle to be empty when a task timeout occurs.
Weave container logs will now default to info level rather than debug level.
The Replicated Premkit container logs will now default to info level rather than debug level.
Silenced noisy TLS handshake errors from the Replicated UI server logs.
Silenced long errors from i18n in the Replicated Daemon logs when a template fails to evaluate.
All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.

2.42.6

Released on 18 Mar 2020

Bug Fixes

Fixed a bug in setting snapshot configuration.