← Back to the front page

2.35.0

Released on 30 Apr 2019

Changes

The version of Kubernetes bundled with Replicated Embedded Kubernetes has been upgraded from 1.13.0 to 1.13.5 for Replicated versions >= 2.31.0. Airgapped installations of Replicated 2.31.0 to 2.34.1 will continue to install the 1.13.0 version of Kubernetes they were bundled with.
The Contour ingress controller bundled with Replicated Embedded Kubernetes has been upgraded from v0.8.0 with Envoy 1.7.0 to v0.11.0 with Envoy 1.9.1.
The Weave CNI plugin bundled with Replicated Embedded Kubernetes has been upgraded from 2.5.0 to 2.5.1.
Replicated Embedded Kubernetes will now delete and re-create objects that cannot be updated due to changes to immutable fields.
Replicated Native will now allow application containers to log to Journald when configured globally in Docker. It will continue to hardcode the JSON File logging driver when configured for any other drivers.
Replicated Swarm will now run all services specified in a Programmable Preflight or Test Procedure Compose Spec. Replicated will only watch and collect output from the service with name specified in the Preflight or Test Procedure command.
Kubernetes node join tokens generated from the UI or CLI will now have a TTL set to 30 minutes. Previously, these were not set to expire.
The PKI bundle nonce for the Replicated Embedded Kubernetes master join script will now have a TTL of 30 minutes. The TTL was previously set to 10 minutes.

Bug Fixes

Content-Security-Policy, X-Frame-Options, and X-XSS-Protection headers have been added to the On-Prem Admin Console to prevent XSS attacks and clickjacking.
Pulling images will no longer count against the timeout when running Programmable Preflight Checks or Test Procedures on the Native scheduler, preventing command timeout errors.
Fixed an issue that prevented an application from starting when a Swarm service was included in “replicated” mode with replicas set to zero.
Fixed an issue that resulted in a 404 error when running the replicatedctl snapshot restore command when using Replicated Embedded Kubernetes.
Fixed an issue with the Native scheduler that prevented the Replicated Operator from reconnecting after a disconnection, requiring an Operator restart.
The Replicated Embedded Kubernetes install script will ensure a properly configured storage class is present every time it is run.
The Native easy install scripts will no longer re-prompt the user with a Firewalld warning.
Fixed an issue that caused Swarm auto-upgrades to revert HTTP_PROXY and NO_PROXY settings.
The Swarm airgapped “Add Node” modal in the On-Prem Admin Console now correctly references the script included in airgapped bundles.
Custom certificates uploaded to airgapped Replicated Embedded Kubernetes installations will no longer be overwritten when upgrading Replicated from versions prior to 2.34.
Fixed a bug that allowed multiple snapshot restores to run in parallel, resulting in failed snapshots.
All known CVEs with fixes have been patched in all images distributed by Replicated at the time of the release. For more information see this article.