From 7c914fbad168d7082b72296af8f7eed592f0b2c4 Mon Sep 17 00:00:00 2001 From: Orion Moore Date: Sun, 18 Jan 2026 21:33:56 -0700 Subject: [PATCH 1/5] OpsCenter 6.8.48 release notes --- OpsCenter_6.8_Release_Notes.md | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) diff --git a/OpsCenter_6.8_Release_Notes.md b/OpsCenter_6.8_Release_Notes.md index e8909b8..2f24c1c 100644 --- a/OpsCenter_6.8_Release_Notes.md +++ b/OpsCenter_6.8_Release_Notes.md @@ -1,5 +1,24 @@ # Release notes for OpsCenter +# Release Notes for OpsCenter 6.8.48 +19 January 2026 + +## Backup Service +* Fixed OpsCenter OOM issue by clearing backup status tracking data after each backup finishes. (OPSC-17773) +* Updated the version of the java aws sdk used by OpsCenter. (OPSC-17745) + +## Best Practice Service +* The authentication error triggered when a cluster connection attempt is initiated by a Best Practice rule has been downgraded to a non-blocking debug message, preventing false failure notifications. (OPSC-16230) + +## Core +* Added a new configuration parameter, `extra_user_search_bases`, in the [ldap] section of the opscenterd.conf file. This parameter allows specifying additional LDAP user search bases for authentication, enabling users from multiple Organizational Units (OUs) to authenticate. The parameter accepts a semicolon-separated list of LDAP search bases. This parameter is optional and backward-compatible with existing configurations. (OPSC-17753) + +## Monitoring +* Fixed an issue where hints-on-disk alerts triggered continuously even with zero hints, disabled alerts, or deleted alerts. (OPSC-17763) + +## UI +* Removed the deprecated DataStax public repository option from LCM as the service is being shutdown. (OPSC-17766) + # Release Notes for OpsCenter 6.8.47 13 November 2025 From 6855fd923b09af133dfa6c8df226325814abe911 Mon Sep 17 00:00:00 2001 From: Orion Moore Date: Tue, 3 Mar 2026 16:15:41 -0700 Subject: [PATCH 2/5] Updated release notes to include work done since January and several items there were previously missed. --- OpsCenter_6.8_Release_Notes.md | 24 ++++++++++++++++++------ 1 file changed, 18 insertions(+), 6 deletions(-) diff --git a/OpsCenter_6.8_Release_Notes.md b/OpsCenter_6.8_Release_Notes.md index 2f24c1c..92d478a 100644 --- a/OpsCenter_6.8_Release_Notes.md +++ b/OpsCenter_6.8_Release_Notes.md @@ -1,23 +1,35 @@ # Release notes for OpsCenter # Release Notes for OpsCenter 6.8.48 -19 January 2026 +5 March 2026 ## Backup Service -* Fixed OpsCenter OOM issue by clearing backup status tracking data after each backup finishes. (OPSC-17773) * Updated the version of the java aws sdk used by OpsCenter. (OPSC-17745) +* Fixed a bug that could cause the backup status of a node to be switched from “completed” to “running” preventing cleanup from running. (OPSC-17775) +* Fixed an issue where backup location validation would fail for non-Azure locations. (OPSC-17780) ## Best Practice Service * The authentication error triggered when a cluster connection attempt is initiated by a Best Practice rule has been downgraded to a non-blocking debug message, preventing false failure notifications. (OPSC-16230) - -## Core -* Added a new configuration parameter, `extra_user_search_bases`, in the [ldap] section of the opscenterd.conf file. This parameter allows specifying additional LDAP user search bases for authentication, enabling users from multiple Organizational Units (OUs) to authenticate. The parameter accepts a semicolon-separated list of LDAP search bases. This parameter is optional and backward-compatible with existing configurations. (OPSC-17753) +* The "Use prepared statements" best practice rule has been updated to correctly handle bind markers, preventing false failures when querying the OpsCenter events table. (OPSC-17777) ## Monitoring * Fixed an issue where hints-on-disk alerts triggered continuously even with zero hints, disabled alerts, or deleted alerts. (OPSC-17763) +* Fixed an issue with notification emails sent with TLS disabled. (OPSC-17735) ## UI -* Removed the deprecated DataStax public repository option from LCM as the service is being shutdown. (OPSC-17766) +* Removed the deprecated "DataStax public repository" option from LCM as the service is being shut down. (OPSC-17766) + +## Core +* Fixed CVE-2023-6378 by upgrading logback library to 1.2.13 (OPSC-17791) +* Fixed CVE-2023-2976 by upgrading Google Guava to 32.0.0-jre (OPSC-17792) +* Fixed CVE-2025-48924 by upgrading org.apache.commons:commons-lang to 3:3.20.0 (OPSC-17784) +* Upgraded the Cassandra driver used by opscenterd and the agent to 4.x. Local datacenter is now auto-detected. If auto-detection fails, configure `local_dc_pref` in the cluster configuration or via the new "Data Center" field in the UI. (OPSC-17253) +* Added SSL truststore and client certificate support to the PostUrl event plugin for secure integration with external HTTPS alerting systems. For full SSL support including SNI, set `enable_curl=True`. (OPSC-17422) +* Added `azcopy_upload_with_sync` to the agent config with a default of false. When set to true uploads done with azcopy will use a sync command instead of a copy adding another layer of insurance that files will not be uploaded if they are already present on the destination. When using this option it is strongly recommended that the `backup_tmp_dir` be on the cassandra data partition as limitations with azcopy prevent the use of symlinks when staging the files for upload. (OPSC-17716) +* Fixed an issue where an agent would continuously retry startup if the API port was already in use. (OPSC-17204) +* Fixed an issue where sessions configured with timeout=0 were unexpectedly garbage-collected under heap pressure. (OPSC-17762) +* Added a new configuration parameter, `extra_user_search_bases`, in the [ldap] section of the opscenterd.conf file. This parameter allows specifying additional LDAP user search bases for authentication, enabling users from multiple Organizational Units (OUs) to authenticate. The parameter accepts a semicolon-separated list of LDAP search bases. This parameter is optional and backward-compatible with existing configurations. (OPSC-17753) +* Fixed an issue where OpsCenter crashed with “index out of range: 1” when agents sent IPs in a single-element list format. (OPSC-17779) # Release Notes for OpsCenter 6.8.47 13 November 2025 From 750cf447d231ba147a062707318d5fa52c5a6ef2 Mon Sep 17 00:00:00 2001 From: Orion Moore Date: Wed, 4 Mar 2026 19:23:17 -0700 Subject: [PATCH 3/5] Review updates --- OpsCenter_6.8_Release_Notes.md | 25 +++++++++++++------------ 1 file changed, 13 insertions(+), 12 deletions(-) diff --git a/OpsCenter_6.8_Release_Notes.md b/OpsCenter_6.8_Release_Notes.md index 92d478a..23ecc75 100644 --- a/OpsCenter_6.8_Release_Notes.md +++ b/OpsCenter_6.8_Release_Notes.md @@ -4,31 +4,32 @@ 5 March 2026 ## Backup Service -* Updated the version of the java aws sdk used by OpsCenter. (OPSC-17745) -* Fixed a bug that could cause the backup status of a node to be switched from “completed” to “running” preventing cleanup from running. (OPSC-17775) +* Updated the version of the Java AWS SDK that OpsCenter uses. (OPSC-17745) +* Fixed a bug that could cause the backup status of a node to be switched from “completed” to “running” and thus prevent cleanup from running. (OPSC-17775) * Fixed an issue where backup location validation would fail for non-Azure locations. (OPSC-17780) ## Best Practice Service -* The authentication error triggered when a cluster connection attempt is initiated by a Best Practice rule has been downgraded to a non-blocking debug message, preventing false failure notifications. (OPSC-16230) -* The "Use prepared statements" best practice rule has been updated to correctly handle bind markers, preventing false failures when querying the OpsCenter events table. (OPSC-17777) +* The authentication error triggered when a cluster connection attempt is initiated by a Best Practice rule is downgraded to a non-blocking debug message to prevent false failure notifications. (OPSC-16230) +* The "Use prepared statements" best practice rule is updated to correctly handle bind markers and prevent false failures when querying the OpsCenter events table. (OPSC-17777) ## Monitoring -* Fixed an issue where hints-on-disk alerts triggered continuously even with zero hints, disabled alerts, or deleted alerts. (OPSC-17763) +* Fixed an issue where 'hints-on-disk' alerts triggered continuously even with zero hints, disabled alerts, or deleted alerts. (OPSC-17763) * Fixed an issue with notification emails sent with TLS disabled. (OPSC-17735) ## UI * Removed the deprecated "DataStax public repository" option from LCM as the service is being shut down. (OPSC-17766) ## Core -* Fixed CVE-2023-6378 by upgrading logback library to 1.2.13 (OPSC-17791) -* Fixed CVE-2023-2976 by upgrading Google Guava to 32.0.0-jre (OPSC-17792) -* Fixed CVE-2025-48924 by upgrading org.apache.commons:commons-lang to 3:3.20.0 (OPSC-17784) -* Upgraded the Cassandra driver used by opscenterd and the agent to 4.x. Local datacenter is now auto-detected. If auto-detection fails, configure `local_dc_pref` in the cluster configuration or via the new "Data Center" field in the UI. (OPSC-17253) +* Fixed CVE-2023-6378 by upgrading logback library to v1.2.13. (OPSC-17791) +* Fixed CVE-2023-2976 by upgrading Google Guava to version 32.0.0-jre. (OPSC-17792) +* Fixed CVE-2025-48924 by upgrading org.apache.commons:commons-lang to version 3:3.20.0. (OPSC-17784) +* Fixed CVE-2025-5115 and CVE-2024-6763 by upgrading the jetty-server version pulled in by ring-jetty-adapter to 9.4.58.v20250814. (DSP-24855) +* Upgraded the Cassandra driver used by 'opscenterd' and the agent to v4.x. Local datacenter is now auto-detected. If auto-detection fails, configure `local_dc_pref` in the cluster configuration or through the new "Data Center" field in the User Interface (UI). (OPSC-17253) * Added SSL truststore and client certificate support to the PostUrl event plugin for secure integration with external HTTPS alerting systems. For full SSL support including SNI, set `enable_curl=True`. (OPSC-17422) -* Added `azcopy_upload_with_sync` to the agent config with a default of false. When set to true uploads done with azcopy will use a sync command instead of a copy adding another layer of insurance that files will not be uploaded if they are already present on the destination. When using this option it is strongly recommended that the `backup_tmp_dir` be on the cassandra data partition as limitations with azcopy prevent the use of symlinks when staging the files for upload. (OPSC-17716) +* Added `azcopy_upload_with_sync` to the agent configuration with a default of 'false'. When set to 'true' an 'azcopy' upload uses a 'sync' rather than a 'copy. This adds another layer of insurance that no files are uploaded if they are already present on the destination. When using this option it is strongly recommended that the `backup_tmp_dir` be on the 'cassandra' data partition because limitations with 'azcopy' prevent the use of symlinks when staging the files for upload. (OPSC-17716) * Fixed an issue where an agent would continuously retry startup if the API port was already in use. (OPSC-17204) -* Fixed an issue where sessions configured with timeout=0 were unexpectedly garbage-collected under heap pressure. (OPSC-17762) -* Added a new configuration parameter, `extra_user_search_bases`, in the [ldap] section of the opscenterd.conf file. This parameter allows specifying additional LDAP user search bases for authentication, enabling users from multiple Organizational Units (OUs) to authenticate. The parameter accepts a semicolon-separated list of LDAP search bases. This parameter is optional and backward-compatible with existing configurations. (OPSC-17753) +* Fixed an issue where sessions configured with 'timeout=0' were unexpectedly garbage-collected under heap pressure. (OPSC-17762) +* Added a new configuration parameter, `extra_user_search_bases`, in the [ldap] section of the 'opscenterd.conf' file. Specify additional LDAP user search bases for authentication with this parameter to enable users from multiple Organizational Units (OUs) to authenticate. The parameter accepts a semicolon-separated list of LDAP search bases. This parameter is optional and backward-compatible with existing configurations. (OPSC-17753) * Fixed an issue where OpsCenter crashed with “index out of range: 1” when agents sent IPs in a single-element list format. (OPSC-17779) # Release Notes for OpsCenter 6.8.47 From 9dcd5e58fb7955a6a8c028888c24bc41cf9789ce Mon Sep 17 00:00:00 2001 From: Orion Moore Date: Fri, 6 Mar 2026 09:27:43 -0700 Subject: [PATCH 4/5] Added warning about compatibility problems with the update of the aws sdk --- OpsCenter_6.8_Release_Notes.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/OpsCenter_6.8_Release_Notes.md b/OpsCenter_6.8_Release_Notes.md index 23ecc75..f096df4 100644 --- a/OpsCenter_6.8_Release_Notes.md +++ b/OpsCenter_6.8_Release_Notes.md @@ -4,7 +4,7 @@ 5 March 2026 ## Backup Service -* Updated the version of the Java AWS SDK that OpsCenter uses. (OPSC-17745) +* Updated the version of the Java AWS SDK that OpsCenter uses due to EOL of the previous version. WARNING: Some generic s3 providers only support the older version of the SDK. OpsCenter will not be able to back up to those providers. A work around is planned for OpsCenter 6.8.49. (OPSC-17745) * Fixed a bug that could cause the backup status of a node to be switched from “completed” to “running” and thus prevent cleanup from running. (OPSC-17775) * Fixed an issue where backup location validation would fail for non-Azure locations. (OPSC-17780) From 6cab1f84a35e4e5817c14a9467379d3f9a072054 Mon Sep 17 00:00:00 2001 From: Orion Moore Date: Fri, 6 Mar 2026 10:35:08 -0700 Subject: [PATCH 5/5] Review update to sdk warning --- OpsCenter_6.8_Release_Notes.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/OpsCenter_6.8_Release_Notes.md b/OpsCenter_6.8_Release_Notes.md index f096df4..e3f520e 100644 --- a/OpsCenter_6.8_Release_Notes.md +++ b/OpsCenter_6.8_Release_Notes.md @@ -4,7 +4,7 @@ 5 March 2026 ## Backup Service -* Updated the version of the Java AWS SDK that OpsCenter uses due to EOL of the previous version. WARNING: Some generic s3 providers only support the older version of the SDK. OpsCenter will not be able to back up to those providers. A work around is planned for OpsCenter 6.8.49. (OPSC-17745) +* Updated the version of the Java AWS SDK that OpsCenter uses due to EOL of the previous version. WARNING: Some generic s3 providers only support the older version of the SDK. OpsCenter is not yet able to back up to providers using the older SDK version. (OPSC-17745) * Fixed a bug that could cause the backup status of a node to be switched from “completed” to “running” and thus prevent cleanup from running. (OPSC-17775) * Fixed an issue where backup location validation would fail for non-Azure locations. (OPSC-17780)