2.46.1

Notes

  • This release is currently only available for the Swarm and Native schedulers.

Bug Fixes

  • Fixed an issue that would cause airgapped installations to fail on older versions of Docker including 1.13.1.

2.46.0

New Features

Changes

Bug Fixes

  • Fixed an issue that could cause a Replicated Embedded Kubernetes Control Plane node to come back as worker nodes when rejoining the cluster.
  • Fixed an issue on Native and Swarm airgapped installations that could cause the Support Bundle to fail on secondary nodes due to failures to push the Support Bundle image to the on-prem registry.
  • Fixed an issue on the Native Scheduler that could cause the Operator to disconnect and fail to reconnect after generating a support bundle.
  • Fixed an issue that could cause the Support Bundle docker.container-exec task to fail with the error “Exec command is already running”.
  • Fixed an issue that could cause Kubernetes API server certificates to be generated with incorrect SANs on secondary nodes after changing the API server load balancer and using a non-standard service CIDR.
  • Fixed an issue that would cause the Kubernetes Ceph dashboard to be inaccessible on servers with IPv6 disabled.
  • All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.

2.45.1

Notes

  • This release is currently only available for the Kubernetes scheduler.

Bug Fixes

  • Fixed an issue that would cause the Kubernetes API server certificates to be generated with incorrect SANs when installed using an alternate Kubernetes Service CIDR.

2.45.0

New Features

  • Support for managing HTTP proxy configuration in the console has been added for the Swarm and Kubernetes schedulers.
  • The RemoveImportSettingsFrom property has been added to /etc/replicated.conf. If set to true, Replicated will remove the ImportSettingsFrom file after use.

Changes

  • Public Docker images are now hosted on Docker Hub rather than Quay.io. This includes replicated/replicated, replicated/replicated-ui and replicated/replicated-operator.
  • The Replicated install scripts will no longer prompt for the public and private address on upgrades or when these addresses are already configured.
  • The Weave Pod network CIDR is now added to the NO_PROXY list of addresses when installing Replicated Embedded Kubernetes with an HTTP proxy.

Bug Fixes

  • Replicated will now prevent restoring a snapshot over a previously installed application, which would cause Replicated to get into a bad state.
  • Fixed an error that prevented the application from restarting after changing HTTP proxy configuration in the console on the Native Scheduler.
  • Fixed an issue that could cause Replicated Embedded Kubernetes to falsely report the application as started on initial installation.
  • Fixed an issue with the Native Scheduler that could prevent the Replicated Operator from disconnecting when the connection to the master is no longer active.
  • Fixed an issue that could cause liveness and readiness probes to fail when Replicated Embedded Kubernetes is installed and configured to use an HTTP proxy.
  • Fixed an issue that could cause the Replicated install scripts to fail when the Docker CLI is installed but not the Docker Daemon.
  • All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.

2.44.2

Bug Fixes

  • Fixed a bug in setting snapshot configuration.

2.44.1

New Features

  • Support for Ubuntu 20.04 LTS (Focal Fossa) has been added to the Native and Swarm schedulers.
  • NodeLocal DNSCache can now be enabled, to work around a bug resulting in DNS lookup delays of 5 or more seconds, by passing the nodelocal-dnscache flag to the Kubernetes install scripts.

Changes

  • The node join scripts generated on the /cluster page of the Admin Console will set the HTTP proxy if configured.
  • The Native scheduler will no longer remove application containers with the –force flag.
  • The default version of etcd bundled with Replicated Embedded Kubernetes has been upgraded from 3.3 to 3.4.
  • The container.stop_timeout property will now be passed to the container run command via the –stop-timeout flag in addition to the container stop command –time flag.

Bug Fixes

  • Fixed an issue in the Native scheduler that could cause application containers to be removed abruptly without sending a termination signal.
  • Fixed an issue that caused the Support Bundle to fail to collect when the Support Bundle Collect Spec is too long.
  • Fixed an issue that caused image layers from previous versions of the application to remain on disk in the Replicated Embedded Registry database after upgrade.
  • The Kubernetes install scripts will use UTC rather than the system time when creating the registry storage bucket.
  • The Kubernetes install scripts will now fail if there is a failure to create the registry storage bucket.
  • Fixed an issue in the Native scheduler that in some cases caused the Premkit container to fail with error “open /var/lib/replicated/secrets/premkit.crt: is a directory”.

2.44.0

New Features

  • All Kubernetes Component Docker container images installed by the Replicated Embedded Kubernetes installer are now scanned and patched prior to each Replicated release.
  • Files can now be omitted from the Replicated Support Bundle using the files property of the meta.redact spec.

Changes

  • The Docker version on Native and Swarm installs will now default to 19.03.8.
  • Replicated Docker dependencies have been updated to version 19.03.8.
  • The swarm-default-address-pool flag has been added to the Swarm quick install scripts. This flag is used to specify the default subnet pools for global scope networks. The value is passed to the swarm init command via the --default-addr-pool flag.
  • The replication level of the Rook and Ceph storage pools used by Replicated Embedded Kubernetes will be set hourly. Previously the replication level was only set after changes to the cluster size.
  • Secrets will now be encrypted before being stored in the database using AES-GCM encryption with a per-installation 192-bit key generated at installation time.
  • When the Replicated database is corrupted it will automatically attempt to repair itself on next start.
  • The Docker Version Custom Preflight Check no longer requires a maximum version.
  • The LdapCopyAuthFrom template function now accepts the ServerType parameter to return the LDAP server type.
  • Metrics reporting has been disabled for the audit logging service on both Kubernetes and Swarm installations.
  • Task logs are now stored in the Replicated temp directory instead of the database.

Bug Fixes

  • Memory and disk space Custom Preflight Checks now properly differentiate between SI and binary units.
  • Fixed scaling of RGW metadata pools for clustered Kubernetes installations.
  • Fixed an issue that could cause Replicated to prompt the user to dismiss Preflight Checks twice on initial installation.
  • The Replicated container process will now respond to signals from the service manager and attempt to shut down in a clean manner.
  • Certain error messages encountered during app updates will now be shown in modals because they were previously rendered too quickly to be seen.
  • Improvements have been made to properly reflect the Pod deployment status on the Cluster page of the Replicated Embedded Kubernetes Admin Console.
  • Fixed an issue that prevented the end-user from changing the Kubernetes API load balancer address on Replicated Embedded Kubernetes airgapped installations.
  • Fixed an issue that caused Replicated Embedded Kubernetes installations to fail due to failed registry pushes when in airgapped mode and an HTTP proxy is configured.
  • Fixed an issue that caused Replicated Embedded Kubernetes installations to fail due to failed creation of the registry S3 bucket when in airgapped mode and an HTTP proxy is configured.
  • The Replicated statsd-graphite container will now be restarted on Native installations when the application is upgraded allowing for changes in port configuration to take effect.
  • The Replicated statsd-graphite container will now log to stdout and stderr.
  • Fixed an issue that could cause Replicated Embedded Kubernetes to crash when a pod takes too long to start.
  • Silenced noisy logs when querying the /ping endpoint of the Replicated UI service with a console password set.
  • Fixed Docker installation scripts on CentOS 6, RHEL 6 and Fedora 30.
  • Fixed discrepancy in number of audit log events returned by search and CSV export.
  • The shutdown service on Replicated Embedded Kubernetes will ensure the Replicated pod is not bound to the node that is being shutdown.
  • All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.

2.43.2

Bug Fixes

  • Fixed a bug in setting snapshot configuration.

2.43.1

Notes

  • This release is currently only available for the Swarm and Native schedulers.

Changes

  • The Native scheduler property ports[].public_port_initial has been added to prevent port collisions when exposing a public port when clustering is enabled and cluster_instance_count.initial is greater than one. This property functions the same as the public_port property but will be ignored by versions of Replicated prior to 2.43.1.

Bug Fixes

  • All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.

2.43.0

New Features

  • Airgapped licenses can now be updated by uploading a file on the Console Settings (/console/settings) page of the Replicated Admin Console.
  • The optional flag taint-control-plane has been added when using the Replicated Embedded Kubernetes installation scripts to prevent Pods from running on master nodes alongside the control plane. This will add the node-role.kubernetes.io/master: NoSchedule taint to all master nodes.
  • The Replicated Native Scheduler will now map a range of ports when clustering is enabled and cluster_instance_count.initial is greater than one and a port.public_port is exposed explicitly on the host.
  • The command replicatedctl snapshot rm has been added to allow for the removal of a snapshot from the Replicated CLI.

Changes

Bug Fixes

  • Fixed an issue that caused failures from the kubeadm init command to be ignored by the Replicated Embedded Kubernetes installation script.
  • Increased the minimum Ceph pool size on multi-node Replicated Embedded Kubernetes clusters to 2 to prevent data loss from the loss of a single node.
  • Fixed an issue that caused the Rook Ceph Object Gateway replication factor not to be applied, leading to data loss from the loss of a single node.
  • Fixed an issue that could prevent a Replicated Embedded Kubernetes application from starting when the application defines an APIService.
  • Fixed an issue when using the Native scheduler that could cause the application to restart when Replicated is updated.
  • Failure to meet the minimum replicated_api_version requirement will no longer prevent Replicated from downloading new versions of an application. An application update will still fail if the requirement is not met.
  • When running the command replicatedctl app-config set, Test Procs with the run_on_save property set to true will only run for items that are changing, no longer preventing the command from succeeding.
  • Snapshot restore now supports AWS Instance Profiles.
  • Fixed an issue that could cause the SFTP Snapshots temporary directory not to be properly cleaned up when a snapshot failure occurs.
  • Fixed an issue that could cause a Support Bundle to be empty when a task timeout occurs.
  • Weave container logs will now default to info level rather than debug level.
  • The Replicated Premkit container logs will now default to info level rather than debug level.
  • Silenced noisy TLS handshake errors from the Replicated UI server logs.
  • Silenced long errors from i18n in the Replicated Daemon logs when a template fails to evaluate.
  • All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.