Changelogs

The minimum supported version of SIMPL is now 6.11.2. (#443131)

Added a csar validate test that runs the same liveness checks as rvtconfig report-group-status. (#397932)

Added MDM status to csar validate tests and report-group-status. (#397933)

Added the same healthchecks done in csar validate as part of the healthchecks for csar update. (#406261)

Added a healthcheck script that runs before upgrade to ensure config has been uploaded for the uplevel version. (#399673)

Added a healthcheck script that runs before upgrade and enforces the use of rvtconfig enter-maintenance-window. (#399670)

rvtconfig upload-config and related commands now ignore specific files that may be in the input directory unnecessarily. (#386665)

An error message is now output when incorrectly formatted override yaml files are inputted rather than a lengthy stack trace. (#381281)

Added a service to the VMs to allow SIMPL VM to query their version information. (#230585)

CSARs are now named with a -v6 suffix for compatibility with version 6.11 of SIMPL VM. (#396587)

Fixed an issue where the new rvtconfig calculate-maintenance-window command raised a KeyError. (#364387)

Fixed an issue where rvtconfig could not delete a node type if no config had been uploaded. (#379137)

Improved logging when calls to MDM fail. (#397974)

Update initconf zip hashes to hash file contents and names. (#399675)

Fixed an issue where rvtconfig maintenance-window-status would report that a maintenance window is active when the end time had already passed. (#399670)

Config check is now done once per node rather than unnecessarily repeated when multiple nodes are updated. (#334928)

Fixed an issue where csar validate, update or heal could fail if the target VM’s disk was full. (#468274)

The --vm-version-source argument now takes the option sdf-version that uses the version in the SDF for a given node. There is now a check that the inputted version matches the SDF version and an optional argument --skip-version-check that skips this check. (#380063)

rvtconfig now checks for, and reports, unsupported configuration changes. (#404791)

Fixed Rhino not restarting automatically if it exited unexpectedly. (#397976)

Fixed an issue where Rhino management and audit logs would not be updated. (#377792)

Fixed an issue where upgrading clustered VMs might cause the last node’s Rhino process to terminate when the second-to-last node is upgraded. The workaround of upgrading the VMs in a specific order is no longer required. (#422006)

Updated system package versions of bind, bpftool, device-mapper-multipath, expat, krb5-devel, libkadm5 and python-ply to address security vulnerabilities. (#406275, #441719)

Updated system package versions of bpftool, kernel, perf, python and xz to address security vulnerabilities.

Fixed an issue where VMs would send DNS queries for the localhost hostname. (#206220)

Fixed issue that meant rvtconfig upload-config would fail when running in an environment where the input device is not a TTY. When this case is detected upload-config will default to non-interactive confirmation -y. This preserves 4.0.0-26-1.0.0 (and earlier versions) in environments where an appropriate input device is not available. (#258542)

Fixed an issue where scheduled tasks could incorrectly trigger on a reconfiguration of their schedules. (#167317)

Added rvtconfig compare-config command and made rvtconfig upload-config check config differences and request confirmation before upload. There is a new -f flag that can be used with upload-config to bypass the configuration comparison. -y flag can now be used with upload-config to provide non-interactive confirmation in the case that the comparison shows differences. (OPT-4517)

Added the rvt-gather_diags script to all node types. (#94043)

Increased bootstrap timeout from 5 to 15 minutes to allow time (10 minutes) to establish connectivity to NTP servers. (OPT-4917)

Make rvtconfig validate not fail if fields are present in the SDF it does not recognize. (OPT-4699)

Added 3 new traffic schemes: "all signaling together except SIP", "all signaling together except HTTP", and "all traffic types separated". (#60997)

Fixed an issue where updated routing rules with the same target were not correctly applied. (#169195)

Scheduled tasks can now be configured to run more than once per day, week or month; and at different frequencies on different nodes. (OPT-4373)

Updated subnet validation to be done per-site rather than across the entire SDF deployment. (OPT-4412)

Fixed an issue where unwanted notification categories can be sent to SNMP targets. (OPT-4543)

Hardened linkerd by closing the prometheus stats port and changing the proxy port to listen on localhost only. (OPT-4840)

Added an optional node types field in the routing rules YAML configuration. This ensures the routing rule is only attempted to apply to VMs that are of the specified node types. (OPT-4079)

initconf will not exit on invalid configuration. VM will be allowed to quiesce or upload new configuration. (OPT-4389)

rvtconfig now only uploads a single group’s configuration to that group’s entry in CDS. This means that initconf no longer fails if some other node type has invalid configuration. (OPT-4392)

Fixed a race condition that could result in the quiescence tasks failing to run. (OPT-4468)

The rvtconfig upload-config command now displays leader seed information as part of the printed config version summary. (OPT-3962)

Added rvtconfig print-leader-seed command to display the current leader seed for a deployment and group. (OPT-3962)

Enum types stored in CDS cross-level refactored to string types to enable backwards compatibility. (OPT-4072)

Updated system package versions of bind, dhclient, dhcp, bpftool, libX11, linux-firmware, kernel, nspr, nss, openjdk and perf to address security vulnerabilities. (OPT-4332)

Made ip-address.ip field optional during validation for non-RVT VNFCs. RVT and Custom VNFCs will still require the field. (OPT-4532)

Fix SSH daemon configuration to reduce system log sizes due to error messages. (OPT-4538)

Allowed the primary user’s password to be configured in the product options in the SDF. (OPT-4448)

Shut down Rhino more gracefully during quiesce for upgrade, to avoid a service impacting issue on the last upgraded node. Also, make quiescing for upgrade more resilient if Rhino is unresponsive. (OPT-4356)

Removed JVM CMSTriggerInterval option from Rhino JVM to ensure CMS does not happen too often under low load. (OPT-4486)

Added missing initconf SNMP alarms to REM node type. (OPT-4510)

Updated system package version of glib2 to address security vulnerabilities. (OPT-4198)

Updated NTP services to ensure the system time is set correctly on system boot. (OPT-4204)

Include deletion of leader-node state in rvtconfig delete-node-type, resolving an issue where the first node deployed after running that command wouldn’t deploy until the leader was re-deployed. (OPT-4213)

Rolled back SIMPL support to 6.6.3. (OPT-43176)

Added the site name to the SAS system name. (OPT-4214)

Fixed some missing traffic schemes that weren’t available when deploying custom nodes using the SIMPL VM. (OPT-4088)

Disk and service monitor notification targets that use SNMPv3 are now configured correctly if both SNMPv2c and SNMPv3 are enabled. (OPT-4054)

Fixed issue where initconf would exit (and restart 15 minutes later) if it received a 400 response from the MDM. (OPT-4106)

The Sentinel GAA Cassandra keyspace is now created with a replication factor of 3. (OPT-4080)

snmptrapd is now enabled even if no targets are configured for system monitor notifications, in order to log any notifications that would have been sent. (OPT-4102)

Fixed bug where the SNMPv3 user’s authentication and/or privacy keys could not be changed. (OPT-4102)

Making SNMPv3 queries to the VMs now requires encryption. (OPT-4102)

Fixed bug where system monitor notification traps would not be sent if SNMPv3 is enabled but v2c is not. Note that these traps are still sent as v2c only, even when v2c is not otherwise in use. (OPT-4102)

Removed support for the signaling and signaling2 traffic type names. All traffic types should now be specified using the more granular names, such as ss7. Refer to the page Traffic types and traffic schemes in the Install Guide for a list of available traffic types. (OPT-3820)

Ensured ntpd is in slew mode, but always step the time on boot before Cassandra, Rhino and OCSS7 start. (OPT-4131, OPT-4143)

Added validation to prevent Rhino restarts from being scheduled for invalid times. (OPT-4042)

Fixed issue where an alarm for a failed Rhino restart would not be raised or cleared. (OPT-4043)

Fixed issue where Rhino would start too early during the configuration process if scheduled restarts were configured. (OPT-4043)

The Rhino SNMP system name is now set to the VM’s hostname. (OPT-4078)

Changed the rvtconfig delete-node-type command to also delete OID mappings as well as all virtual machine events for the specified version from cross-level group state. (OPT-3745)

Fixed systemd units so that systemd does not restart Java applications after a systemctl kill. (OPT-3938)

Added additional validation rules for traffic types in the SDF. (OPT-3834)

Increased the severity of SNMP alarms raised by the disk monitor. (OPT-3987)

Added --cds-address and --cds-addresses aliases for the -c parameter in rvtconfig. (OPT-3785)

Added support for separation of traffic types onto different network interfaces. (OPT-3818)

Improved the validation of SDF and YAML configuration files, and the errors reported when validation fails. (OPT-3656)

Added logging of the instance ID of the leader while waiting during initconf. (OPT-3558)

Do not use YAML anchors/aliases in the example SDFs. (OPT-3606)

Fixed a race condition that could cause initconf to hang indefinitely. (OPT-3742)

Improved error reporting in rvtconfig.

Updated SIMPL VM dependency to 6.6.1. (OPT-3857)

Adjusted linkerd OOM score so it will no longer be terminated by the OOM killer (OPT-3780)

Disabled all yum repositories. (OPT-3781)

Disabled the TLSv1 and TLSv1.1 algorithms for Java. (OPT-3781)

Changed initconf to treat the reload-resource-adaptors flag passed to rvtconfig as an intrinsic part of the configuration, when determining if the configuration has been updated. (OPT-3766)

Updated system package versions of bind, bpftool, kernel, nettle, perf and screen to address security vulnerabilities. (OPT-3874)

Added an option to rvtconfig dump-config to dump the config to a specified directory. (OPT-3876)

Fixed the confirmation prompt for rvtconfig delete-node-type and rvtconfig delete-deployment commands when run on the SIMPL VM. (OPT-3707)

Corrected a regression and a race condition that prevented configuration being reapplied after a leader seed change. (OPT-3862)

Changed validation of input JDKs to allow Oracle JDKs. (OPT-3386)

Limit the number of Rhino persistence instances to 3. (OPT-3884)

Make initconf more resilient to management lock timeouts. (OPT-3920)

If Rhino is clustered, only import the downlevel SNMP OIDs on the leader node. (OPT-3921)

All SDFs are now combined into a single SDF named sdf-rvt.yaml. (OPT-2286)

Added the ability to set certain OS-level (kernel) parameters via YAML configuration. (OPT-3403)

Updated to SIMPL 6.5.0. (OPT-3358, OPT-3545)

Make the default gateway optional for the clustering interface. (OPT-3417)

initconf will no longer block startup of a configured VM if MDM is unavailable. (OPT-3206)

Enforce a single secrets-private-key in the SDF. (OPT-3441)

Made the message logged when waiting for config be more detailed about which parameters are being used to determine which config to retrieve. (OPT-3418)

Removed image name from example SDFs, as this is derived automatically by SIMPL. (OPT-3485)

Make systemctl status output for containerised services not print benign errors. (OPT-3407)

Added a command delete-node-type to facilitate re-deploying a node type after a failed deployment. (OPT-3406)

Updated system package versions of glibc, iwl1000-firmware, net-snmp and perl to address security vulnerabilities. (OPT-3620)

Renamed the example Rhino and REM users in the VM pool config files. (OPT-3503)

Changed the implementation of the Rhino systemd service to make it more robust to failures. (OPT-3455)

Ensure new config gets processed while waiting for Rhino convergence. (OPT-3476)

Fix bug (affecting 4.0.0-7-1.0.0 only) where rvtconfig was not reporting the public version string, but rather the internal build version (OPT-3268).

Update sudo package for CVE-2021-3156 vulnerability (OPT-3497)

Validate the product-options for each node type in the SDF. (OPT-3321)

Clustered MDM installations are now supported. Initconf will failover across multiple configured MDMs. (OPT-3181)

If YAML validation fails, print the filename where an error was found alongside the error. (OPT-3108)

Improved support for backwards compatibility with future CDS changes. (OPT-3274)

Change the report-initconf script to check for convergence since the last time config was received. (OPT-3341)

Improved exception handling when CDS is not available. (OPT-3288)

Change rvtconfig upload-config and rvtconfig initial-configure to read the deployment ID from the SDFs and not a command line argument. (OPT-3111)

Publish imageless CSARs for all node types. (OPT-3410)

Added message to initconf.log explaining some Cassandra errors are expected. (OPT-3081)

Updated system package versions of bpftool, dbus, kernel, nss, openssl and perf to address security vulnerabilities.

Updated to SIMPL 6.4.3. (OPT-3254)

When using a release version of rvtconfig, the correct this-rvtconfig version is now used. (OPT-3268)

All REM setup is now completed before restarting REM, to avoid unnecessary restarts. (OPT-3189)

Updated system package versions of bind-*, curl, kernel, perf and python-* to address security vulnerabilities. (OPT-3208)

Added support for routing rules on the Signaling2 interface. (OPT-3191)

Configured routing rules are now ignored if a VM does not have that interface. (OPT-3191)

Added support for absolute paths in rvtconfig CSAR container. (OPT-3077)

The existing Rhino OIDs are now always imported for the current version. (OPT-3158)

Changed behaviour of initconf to not restart resource adaptors by default, to avoid an unexpected outage. A restart can be requested using the --reload-resource-adaptors parameter to rvtconfig upload-config. (OPT-2906)

Changed the SAS resource identifier to match the provided SAS resource bundles. (OPT-3322)

Added information about MDM and SIMPL to the documentation. (OPT-3074)

Added list-config and describe-config operations to rvtconfig to list configurations already in CDS and describe the meaning of the special this-vm and this-rvtconfig values. (OPT-3064)

Renamed rvtconfig initial-configure to rvtconfig upload-config, with the old command remaining as a synonym. (OPT-3064)

Fixed rvtconfig pre-upgrade-init-cds to create a necessary table for upgrades from 3.1.0. (OPT-3048)

Fixed crash due to missing Cassandra tables when using rvtconfig pre-upgrade-init-cds. (OPT-3094)

rvtconfig pre-upgrade-init-cds and rvtconfig push-pre-upgrade-state now supports absolute paths in arguments. (OPT-3094)

Reduced timeout for DNS server failover. (OPT-2934)

Updated rhino-node-id max to 32767. (OPT-3153)

Diagnostics at the top of initconf.log now include system version and CDS group ID. (OPT-3056)

Random passwords for the Rhino client and server keystores are now generated and stored in CDS. (OPT-2636)

Updated to SIMPL 6.4.0. (OPT-3179)

Increased the healthcheck and decommision timeouts to 20 minutes and 15 minutes respectively. (OPT-3143)

Updated example SDFs to work with MDM 2.28.0, which is now the supported MDM version. (OPT-3028)

Added support to report-initconf for handling rolled over initconf-json.log files. The script can now read historic log files when building a report if necessary. (OPT-1440)

Fixed potential data loss in Cassandra when doing an upgrade or rollback. (OPT-3004)

Revised the way SAS system name, type and version are configured. In particular, the system type is now set to the image name, rather than just custom, and the system name will default to a combination of the image name and node ID (or VM index), rather than just Rhino. (OPT-3011)

Rhino SNMP OID mappings are now preserved automatically during upgrades. (OPT-2826)

Initconf now raises an alarm if a task could not be completed due to an uncaught exception. Following this the task will be retried up to five times, after which a further alarm will be raised and no more retries attempted. (OPT-2707)

It is now required to upload configuration for the uplevel VMs before performing a rolling upgrade. (OPT-2750)

Secrets are now automatically encrypted in the SDF and do not have to be encrypted using rvtconfig encrypt-secret. (OPT-2451, OPT-2574)

Logs are now archived on CDS when nodes are quiesced. (OPT-2671)

snmptrapd system SNMP notifications can now be disabled independently from Rhino SNMP notifications. (OPT-2932)

Fix an issue where SNMP notification target changes were not propagated correctly. (OPT-2495)

First release of the custom node