Skip to main content

Chef Backend release notes

Warning

Chef Backend is deprecated and no longer under active development. Contact your Chef account representative for information about migrating to Chef Automate HA.

Chef Backend 3.1.1

Bug Fixes

  • We fixed an issue where new nodes would fail to join a backend cluster installed with Chef Backend 3.0.0 (#770).

Security

OpenJDK 11.0.14

We updated OpenJDK from 11.0.13 to 11.0.14 to resolve the following CVEs:

  • CVE-2022-21248: Enhance cross VM serialization
  • CVE-2022-21283: Better String matching
  • CVE-2022-21291: Better verification of scan methods
  • CVE-2022-21293: Improve String constructions
  • CVE-2022-21294: Enhance construction of Identity maps
  • CVE-2022-21282: Better resolution of URIs
  • CVE-2022-21296: Improve SAX Parser configuration management
  • CVE-2022-21299: Improved scanning of XML entities
  • CVE-2022-21277: Improve TIFF file handling
  • CVE-2022-21305: Better array indexing
  • CVE-2022-21340: Verify Jar Verification
  • CVE-2022-21341: Improve serial forms for transport
  • CVE-2022-21360: Enhance BMP image support
  • CVE-2022-21365: Enhanced BMP processing

Chef Backend 3.0.0

Enhancements

Elasticsearch 6.8.23

We updated Elasticsearch from 5.6.16 to 6.8.23. This new version of Elasticsearch improves performance and reliability, and it adds many new capabilities. The 5.6.16 release of Elasticsearch is no longer supported by Elastic and doesn’t receive security updates.

Elasticsearch 6.8.23 resolves multiple CVEs and updates Log4j to 2.17.1, which resolves CVE-2021-44832, CVE-2021-45105, CVE-2021-45046, and CVE-2021-44228. While Elastic has stated that Elasticsearch isn’t vulnerable to these CVEs, we realize that many organizations have internal requirements to upgrade legacy Log4j installations.

Upgrading

You can upgrade to Chef Backend 3.0.0 directly from version 2.1.0 or later, using a rolling upgrade where one Chef Backend node is upgraded at a time. It doesn’t require a complete cluster shutdown to perform the upgrade. See the upgrade matrix below and our Chef Backend upgrade documentation for more information.

Upgrade WorkflowMethod
1.x -> 2.xMajor version upgrade
2.0.x -> 2.xRolling upgrade
2.1 and later -> 3.0Rolling upgrade
2.0 -> 3.0Direct upgrades aren’t supported at this time. You can upgrade to an intermediate version and then to 3.0.0. For example, 2.0.1 -> 2.3.16 -> 3.0.0. Both of these steps are rolling upgrades that don’t require downtime.

Chef Backend 2.3.16

Fixes

  • We’ve updated the Chef Infra Client, which is used in the chef-backend-ctl reconfigure command, from 15.x to 16.17 to resolve EOL warnings when running.

Enhancements

  • chef-backend-ctl backup no longer backs up the Elasticsearch cluster, which speeds up backup times. Users restoring a backed-up cluster can instead run chef-server-ctl reindex --all from a frontend node to generate new data in Elasticsearch.

Packaging

Newly Supported Platforms

We now produce Chef Backend packages for SLES 15, Amazon Linux 2, and Ubuntu 20.04.

Deprecated Platforms

We no longer produce Chef Backend packages for RHEL 6, as this platform is now end-of-life.

RPM Package Digests

We updated the file digest in Chef Backend RPM packages from MD5 to SHA256 to prevent failures from installing on some FIPS-enabled systems.

Security

Log4j Mitigation

We mitigated the Log4j vulnerability that’s outlined in CVE-2021-44228 by disabling message formatting within logging. Chef Backend isn’t vulnerable to this CVE in Log4j, but this change avoids security concerns with this CVE.

Ruby 2.7.5

We updated Ruby from 2.6.5 to 2.7.5 for improved performance and to resolve the following CVEs:

  • CVE-2021-41817
  • CVE-2021-41819
  • CVE-2021-31810
  • CVE-2021-32066
  • CVE-2021-31799
  • CVE-2020-25613
  • CVE-2021-28965
  • CVE-2020-10663
  • CVE-2020-10933

OpenSSL 1.0.2zb

We updated OpenSSL from 1.0.2v to 1.0.2zb to resolve issues with Let’s Encrypt certificates and to resolve the following CVEs:

  • CVE-2021-3712
  • CVE-2021-23841
  • CVE-2021-23840
  • CVE-2021-23839
  • CVE-2020-1971
  • CVE-2020-1968

OpenJDK 11.0.13+8

We updated OpenJDK from 11.0.7+10 to 11.0.13+8 to resolve the following CVEs:

  • CVE-2021-35550
  • CVE-2021-35565
  • CVE-2021-35556
  • CVE-2021-35559
  • CVE-2021-35561
  • CVE-2021-35564
  • CVE-2021-35567
  • CVE-2021-35578
  • CVE-2021-35586
  • CVE-2021-35603
  • CVE-2021-2341
  • CVE-2021-2369
  • CVE-2021-2388
  • CVE-2021-2163
  • CVE-2021-2161
  • CVE-2020-14779
  • CVE-2020-14781
  • CVE-2020-14782
  • CVE-2020-14792
  • CVE-2020-14796
  • CVE-2020-14797
  • CVE-2020-14798
  • CVE-2020-14803

PostgreSQL 9.5.25

We updated PostgreSQL from 9.5.19 to 9.5.25 to resolve the following CVEs:

  • CVE-2020-14350
  • CVE-2020-25695
  • CVE-2020-25694
  • CVE-2020-25696

Chef Backend 2.2.0

Improvements

Improve Health Checker

The health checker is now modified to reduce the number of unnecessary fail-overs. Changes to the health checker include:

  • The PostgreSQL health-check makes fewer calls to PostgreSQL.
  • All PostgreSQL failures are subject to health check retries (bug fix).
  • We removed the etcd health-check because the main leader election detects etcd failures first.

ionice Configuration Options

We’ve added new ionice settings for controlling the disk input/output scheduling class and set priority for the etcd process. etcd.ionice.class and etcd.ionice.level settings with the default values of 2 and 0 respectively. The default values mirror the current system defaults on Linux.

Leader Endpoint Caching

The /leader endpoint now serves a locally cached response. This change should reduce the possibility of timeouts returned to clients that are polling the /leader endpoint. The Chef Infra Server polls the /leader endpoint, and thus we believe this change will reduce some Chef Backend outages that resulted from /leader request timeouts.

Bug Fixes

  • We fixed a PostgreSQL validator problem that prevented join-cluster from running to completion.

Component Updates

Chef Infra Client 15.12.22

We’ve updated the embedded Chef Infra Client that’s used for Chef Backend configuration from 14.14.25 to 15.12.22.

Ruby 2.6.5

We’ve updated Ruby from 2.5.7 to 2.6.5 for improved performance.

Chef Backend 2.1.0

Improvements

OpenJDK

We’ve moved from OracleJDK to AdoptOpenJDK because Oracle has changed its license on newer versions of the JDK. The OpenJDK project is delivering security updates in a version with a more open-source-friendly licensing policy.

Increased Elasticsearch Memory Allocation

Elasticsearch is now allocated 1/3rd of the available memory up to 32GB, instead of 1/4th. Elasticsearch recommends using 1/2 of the available system memory, up to 32GB. We slightly reduced the allocated memory to allow room for other Chef Backend services.

Component Updates

Erlang 18.3

We’ve updated the Erlang language that’s used to build Chef Backend from 18.2 to 18.3 to improve reliability.

Etcd 2.3.8

We’ve updated Etcd from 2.3.7 to 2.3.8 to resolve bugs.

Chef Infra Client 14.14.25

We’ve updated the embedded Chef Infra Client that configures Chef Backend from 14.11.21 to 14.14.25.

Security Fixes

Elasticsearch 5.6.16

We’ve updated Elasticsearch from 5.4.1 to 5.6.16 to resolve a large number of bugs, improve performance, and resolve the following CVEs:

  • CVE-2017-8442
  • CVE-2019-7611

Ruby 2.5.7

We’ve updated Ruby from 2.4.4 to 2.5.7 for performance improvements and bug fixes, and to resolve the following CVEs:

  • CVE-2012-6708
  • CVE-2015-9251
  • CVE-2018-16395
  • CVE-2018-16396
  • CVE-2019-15845
  • CVE-2019-16201
  • CVE-2019-16254
  • CVE-2019-16255
  • CVE-2019-8320
  • CVE-2019-8321
  • CVE-2019-8322
  • CVE-2019-8323
  • CVE-2019-8324
  • CVE-2019-8325

PostgreSQL 9.5.19

We’ve updated PostgreSQL from 9.5.6 to 9.5.19 to resolve a large number of bugs and the following CVEs:

  • CVE-2017-12172
  • CVE-2017-15099
  • CVE-2017-7484
  • CVE-2017-7485
  • CVE-2017-7486
  • CVE-2017-7546
  • CVE-2017-7547
  • CVE-2017-7548
  • CVE-2018-1053
  • CVE-2018-1058
  • CVE-2018-10915
  • CVE-2018-10925
  • CVE-2019-10130
  • CVE-2019-10208

Packaging

New Platforms

  • We added support for RHEL 8.

Deprecations

  • We removed support for Ubuntu 14.04.
  • We removed support for SLES 11.

Chef Backend 2.0.30

Enhancements

Backup Timeout Control

The backup command now includes a new --timeout flag that controls the timeout duration in seconds. It defaults to 600 seconds.

Cluster Status

The cluster status command now reports leaders that are blocked and leaders that are eligible.

Elasticsearch Temporary Files

Elasticsearch temporary files are now stored in /var/opt/chef-backend/elasticsearch/tmp. You can change this value with a new elasticsearch['temp_directory'] configuration option.

The Elasticsearch tmp directory isn’t its own tmp directory.

Component Upgrades

Chef Infra Client 13.9.1

We’ve updated the embedded Chef Infra Client that configures Chef Backend from 13.3.42 to 13.9.1.

Security

SSL Ciphers

We’ve improved out-of-the-box SSL security by removing older and less secure SSL ciphers from the list of allowed SSL ciphers.

Ruby 2.4.4

We’ve updated Ruby from 2.3.5 to 2.4.4 to improve performance and to resolve the following CVEs:

  • CVE-2017-17405
  • CVE-2017-17742
  • CVE-2018-6914
  • CVE-2018-8777
  • CVE-2018-8778
  • CVE-2018-8779
  • CVE-2018-8780

Chef Backend 2.0.1

We’ve bumped the major version because of a breaking change in the upgrade procedure. Upgrading to this version requires full cluster downtime. Before upgrading, see our guide to upgrading to Chef Backend 2.

Enhancements

Elasticsearch 5

We now ship Elasticsearch 5 by default. This requires a full cluster downtime during the upgrade. See the upgrade instructions for this release for more details.

Improved Health Checking for demoted leaders

During demotion, the management service leaderl stops PostgreSQL. Previously, this would result in all health checks for PostgreSQL failing, which means that the node couldn’t resume leadership. Now, we track whether PostgreSQL is only down because of action taken by leaderl, which allows demoted leaders to resume leadership in some cases.

Bug Fixes

EPMD fails on certain IPv6 configurations

This build should fix issues that are related to the Erlang Port Mapper Daemon (EMPD) failing to start in some EPMD configurations.

Security Fixes

Java 8u144

We updated the version of Java to 8u144 to address CVE-2017-3526.

Ruby 2.3.5

We updated the version of Ruby to 2.3.5 to address multiple CVEs.

Chef Backend 1.4.6

Bug Fix

Update minimum_master_nodes on Elasticsearch node removal

This release fixes an issue when removing nodes from the cluster would not adapt the minimum node count that’s required for the Elasticsearch cluster that’s managed by Chef Backend, which leaves the cluster in an unrecoverable state.

Enhancements

Include disk status in health checks, and status output

When the available disk space for the log and data directories that are used by Chef Backend falls below a user-configurable value (default: 250MB). By default, disk space failures are considered non-fatal for the purposes of leaderl health checks. That is, low disk space won’t force a fail over. To make disk space failures fatal, set the following configuration option:

leaderl.health_check.fatal_system_checks true

The disk-space-related health status can be queried using:

chef-backend-ctl status disk

which is exposed through the status endpoint.

Improve robustness regarding EPMD

The Erlang Port Mapper Daemon (EMPD) is part of the Erlang runtime system. Typically, this service is started automatically by the first Erlang process to start on a machine. By promoting EPMD to a service under supervision, the service will now appear in chef-backend-ctl status and will be restarted on failure.

Further, leaderl will now periodically attempt to re-register itself with EPMD if EPMD has failed.

Security Updates

We’ve bumped zlib to 1.2.11.

Chef Backend 1.3.2

This release is a bug-fix release.

Bug Fixes

  • We’ve fixed multiple bugs in the backup and restore process. We recommend that all users take a new backup after upgrading. See our documentation for information about how to back up and restore your Chef Infra Server.

  • The pgsql-promote function now waits up to 5 minutes for recovery.done to appear. Previously, it would only wait 5 seconds.

Enhancements

  • We’ve reduced flicker on slower terminals when rendering progress indicators.

Chef Backend 1.2.5

This release fixes a number of stability issues with 1.1.2. We recommend that all users of Chef Backend 1.1.2 and prior upgrade.

Enhancements

  • Fail follower health check if the node falls too far behind leader. This is configurable with the leaderl.health_check.max_bytes_behind_leader option.

  • The following etcd configuration options are now available for customization in /etc/chef-backend/chef-backend.rb:

    • etcd.election_timeout
    • etcd.heartbeat_interval
    • etcd.snapshot_count

  • We’ve bumped etcd to 2.3.7.

  • We’ve upgraded to postgresql 9.5.5.

  • Health Checks can now fail up to a configurable number of times before triggering a failover. Users can configure the maximum failures for each service via the following configuration settings:

    • leaderl.health_check.max_elasticsearch_failures
    • leaderl.health_check.max_etcd_failures
    • leaderl.health_check.max_pgsql_failures

    If you have manually set these flags in chef-backend.rb, your overrides will still be respected. Please remove these options if you’d prefer to use the new defaults instead.

  • We’ve added a --force-basebackup option to the pgsql-follow command. This allows for a more straightforward recovery procedure in cases where human intervention is needed.

  • Report 503 from /leaderl if a user-specified number of followers haven’t initiated replication connections. This is tunable with the leaderl.required_active_followers configuration option (default: 0)

  • We no longer set shmmax sysctl’s because they’re no longer required by postgresql 9.5. If you are upgrading from a previous installation, remember to remove postgresql.shmmax and postgresql.shmall from your chef-backend.rb.

  • We’ve updated configuration defaults based on customer feedback. We’ve changed the following configuration defaults:

    • leaderl.health_check.interval_seconds from 2 to 5 seconds.
    • leaderl.leaderl_ttl_seconds from 10 to 30.
    • etcd.heartbeat_interval from 100 to 500 milliseconds.
    • etcd.election_timeout from 1000 to 5000 milliseconds.

    The new defaults have proven to reduce spurious failovers when deploying Chef Backend to various cloud providers. If you have manually set these flags in chef-backend.rb, your overrides will still be respected. Please remove these options if you’d prefer to use the new defaults instead.

Bug Fixes

  • chef-server-ctl cluster-status shouldn’t fail because of a missing leader key.

  • We’ve forced a checkpoint after promoting the local postgresql instance, which avoids some cases of postgresql followers failing to start synchronous replication after a failover.

  • chef-backend-ctl restore shouldn’t fail with a NoMethodError.

  • We’ve waited for postgresql to be started using a test connection, rather than a simple process check during the promotion and follow processes. This fixes a number of cases where postgresql would fail to promote during a failover event.

  • We’ve ensured that the leader key keeps the leader key as long as it’s still in the promoting state. This fixes some cases where the cluster would become leaderless after a failover event because the elected follower was slow to promote.

  • Don’t erroneously report etcd as down in chef-backend-ctl status in cases where etcd is up but there is no leaderl leader.

Chef Backend 1.1.2

Enhancements

  • cluster-status now shows which node a follower is following.
  • It’s now possible to clean up a partially added node with chef-backend-ctl remove-node.
  • We’ve made stability improvements in leader election.

Bug Fixes

  • We’ve ensured that elasticsearch uses the correct directory.
  • Don’t create recovery.conf on the leader.
  • We’ve gracefully handled failover while syncing.
  • We’ve retried etcd connections when chef-backend-ctl is waiting for the leader.
  • In multi-IP hosts, only test the specified IP and not all.
  • Don’t overwrite existing configuration.
  • Other: Misc code cleanups.

Thank you for your feedback!

×