Skip to main content

39 posts tagged with "anynines-deployment"

View All Tags

· 5 min read

Added

  • a9s MariaDB: a9s MariaDB SPI: Add a new custom parameter grant_performance_schema_permissions that grants the user the necessary permissions to access the performance_schema feature.
  • docs: Application Developer: a9s MariaDB: Extend the "Custom Parameter" page with information regarding the new parameter grant_performance_schema_permissions. For more information, see a9s MariaDB - Custom Parameters.
  • docs: Platform Operator: all services: Add missing ports between a9s Backup Manager and a9s Service Broker to the corresponding tables. For more information, see a9s Platform Required Ports.

Changed

  • all services: Adapt the prepare.sh script to not fail, when a9s-pg is not deployed.
  • all services: a9s Bee: Update internal go dependencies to the latest minor version.
  • all services: Update
    • bpm to v1.4.20.
    • nginx to v1.28.0.
    • routing to v0.338.0.
  • all services: a9s Service Broker:
    • Update Rails to v7.2.
    • Update to the newest database field encryption method. After deploying the newest version, the migrate-service-broker-encrypted-database-fields errand needs to be run for each Data Service.
    • The errand migrate-service-broker-encrypted-database-fields is now part of the broker instance group and therefore its dedicated instance group has been removed.
  • a9s-pg: a9s Logstash: Logstash 8: Update logstash8 to v8.18.1.
  • a9s Backup Manager:
    • Update ruby on rails to v7.2.
    • Update to the newest database field encryption method. After deploying the newest version, the migrate-backup-manager-encrypted-database-fields errand needs to be run.
    • The errand migrate-backup-manager-encrypted-database-fields is now part of the backup-manager instance group and therefore its dedicated instance group is removed.
  • a9s Billing:
    • Update Ruby to v3.4.1.
    • Add missing Consul job to the Add a9s Invoices Ops File to fix connection problems with a9s-pg.
    • Add missing bpm job to the grafana instance group of the Add Grafana Route Ops File to fix an issue with the route_registrar.
  • a9s CF Service Guard: Update Rails to v7.2.
  • a9s KeyValue: a9s Logstash: Logstash 8: Update logstash8 to v8.18.1.
  • a9s MariaDB: Update
    • a9s Logstash: logstash8 to v8.18.1.
    • MariaDB 10.6: MariaDB 10.6.22.
    • MariaDB 10.11: MariaDB 10.11.12
  • a9s Messaging: a9s Logstash: Update logstash8 to v8.18.1.
  • a9s MongoDB: Update
    • a9s Logstash:
      • logstash8 to v8.18.1.
    • a9s MongoDB 7:
      • mongodb to v7.0.20.
      • mongosh to v2.5.1.
  • a9s PostgreSQL: a9s Logstash: Update logstash8 to v8.18.1.
  • a9s Prometheus: Update
    • prometheus2:
      • grafana to v10.4.18.
      • bosh_exporter to v3.7.0
    • prometheus-legacy:
      • bosh_exporter to v3.7.0
    • promgraf2:
      • bosh_exporter to v3.7.0
  • a9s Redis: Update
    • a9s Redis 6:
      • redis to v6.2.18
    • a9s Redis 7:
      • redis to v7.2.8
  • a9s Search: a9s Logstash: Update logstash8 to v8.18.1.
  • docs: all services: Fix multiple links, typos, metadata issues and leftover anchors from the recent documentation restructuring.
  • docs: all services: Update all the a9s Data Services logos across all affected index pages to the new style.
  • docs: Application Developer: a9s Prometheus: Fix cross-reference links between the "a9s Prometheus - Service Instance Access" page and the "Grafana Dashboard" page. For more information, see a9s Prometheus - Grapahana Dashboard.
  • docs: Application Developer: a9s Search: Rename misleading id in the "a9s Search - Service Instance Access" page's metadata. For more information, see a9s Search - Service Instance Access.
  • docs: Platform Operator: Update the EOL in Vendor column. For more information, see a9s Platform Operator - Sunrise Sunset.
  • docs: Platform Operator: all services: Fix erroneous a9s Billing Command in "Getting Started" section. For more information, see a9s Data Services Installation - 12. Deploy a9s Billing (optional).
  • docs: Platform Operator: a9s PostgreSQL: Add instructions on how to handle unarchived WAL files after a cluster, with Continuous Archiving enabled, crashes. For more information, see a9s PostgreSQL - Cluster Recovery.
  • BOSH stemcell: all services: Update Jammy stemcell to version 1.824 for internal tests of all supported services.

Removed

  • a9s Prometheus: Remove PostgresDatabaseSize alert as it, due to its misconfiguration, was triggered based on a global threshold for all Service Plans, which can cause premature alerts on Service Instances with large disks.

Security

  • all services: a9s Backup Agent: Fix CVEs:
    • CVE-2025-46727
    • CVE-2025-32414
    • CVE-2025-32415
  • all services: a9s BOSH Deployer: Fix CVEs:
    • CVE-2025-32414
    • CVE-2025-32415
  • all services: a9s Service Broker: Fix CVEs:
    • CVE-2025-27610
    • CVE-2025-27788
    • CVE-2025-46727
    • CVE-2025-32414
    • CVE-2025-32415
    • CVE-2025-24855
    • CVE-2024-55549
  • all services: a9s Smoke Tests: Fix CVEs:
    • CVE-2025-22869
    • CVE-2025-46727
  • all services: a9s Deployment Updater: Fix CVE: CVE-2025-46727
  • all services: a9s SSO Proxy: Fix CVE: CVE-2025-46727
  • all services: a9s Bee: Fix CVE: CVE-2025-22869
  • all services: a9s CF Service Guard: Fix CVEs:
    • CVE-2025-46727
    • CVE-2025-32414
    • CVE-2025-32415
  • a9s-pg: Fix CVE: CVE-2025-22869
  • a9s Backup Services:
    • a9s Backup Monit: Fix CVEs:
      • CVE-2025-46727
      • CVE-2025-32414
      • CVE-2025-32415
    • a9s Backup Manager: Fix CVEs:
      • CVE-2025-46727
      • CVE-2025-32414
      • CVE-2025-32415
  • a9s Billing: Fix CVEs:
    • CVE-2024-55549
    • CVE-2025-24855
  • a9s KeyValue: a9s KeyValue SPI: Fix CVE: CVE-2025-46727
  • a9s LogMe2: a9s LogMe2 SPI: Fix CVE: CVE-2025-46727
  • a9s MariaDB:
    • a9s MariaDB 10.11: Fix CVE: CVE-2025-22869
    • a9s MariaDB 10.6: Fix CVE: CVE-2025-22869
    • a9s MariaDB SPI: Fix CVE: CVE-2025-46727
  • a9s Messaging: a9s Messaging SPI: Fix CVE: CVE-2025-46727
  • a9s MongoDB: a9s MongoDB SPI: Fix CVE: CVE-2025-46727
  • a9s PostgreSQL: a9s PostgreSQL SPI: Fix CVE: CVE-2025-46727
  • a9s Prometheus: a9s Prometheus SPI: Fix CVE: CVE-2025-46727
  • a9s Redis:
    • a9s Redis SPI: Fix CVE: CVE-2025-46727
    • a9s Redis 7: Fix CVE: CVE-2025-21605
  • a9s Search: a9s Search SPI: Fix CVE: CVE-2025-46727

· 5 min read

Added

  • all services: a9s Template Uploader Errand: Replace Logstash6 with Logstash8 in the a9s MariaDB templates.
  • docs: Application Developer: all services: Add list of a9s Data Services that require the legacy syslog custom parameter. For more information, see Set Up Monitoring - Add a Syslog Endpoint.
  • docs: Platform Operator: Add a page to detail concerns regarding scalability with a9s Consul, particularly with the amount of Consul client agents, as well as the recommended actions for such cases. For more information, see a9s Consul - Known Issues.
  • docs: Platform Operator: all services: Update the "Prepare Environment" section to reflect the latest changes of the prepare.sh script. For more information, see Prepare Environment.

Changed

  • breaking change all services: a9s Smoke Tests: Change Graphite metrics tests to no longer depend on an external Prometheus Service Instance.
  • breaking change a9s-pg: Modify the manifest of a9s-pg to use a9s PostgreSQL 15 by default. It requires the manual upgrade of a9s-pg from a9s PostgreSQL 11 to a9s PostgreSQL 15, if not already executed. Otherwise, the update to anynines-deployment v60.0.0 will be aborted automatically, as a forced and unattended update of a9s-pg could lead to misbehavior and data loss. The necessary steps to upgrade a9s-pg are described in our documentation.
  • all services: Update
    • bpm to v1.4.17.
    • nginx to v1.27.5.
    • routing to v0.334.0.
  • all services: a9s DS API Gateway: Update
    • krakend-custom-plugins to v2.9.4.
    • krakend to v2.9.4.
  • a9s-pg: a9s Logstash: Logstash 8: Update logstash8 to v8.17.4.
  • a9s KeyValue:
    • a9s Logstash: Logstash 8: Update logstash8 to v8.17.4.
    • a9s KeyValue 8: Update valkey to v8.1.0.
  • a9s MariaDB: a9s Logstash: Logstash 8: Update logstash8 to v8.17.4.
  • a9s Messaging:
    • a9s Logstash: Update logstash8 to v8.17.4.
    • a9s Messaging 3.12: Update erlang to v25.3.2.20.
    • a9s Messaging 3.13: Update erlang to v26.2.5.11.
    • a9s Messaging 4.0: Update
      • erlang to v26.2.5.11.
      • rabbitmq to v4.1.0.
  • a9s MongoDB: a9s Logstash:
    • Logstash 8:
      • Update logstash8 to v8.17.4.
    • a9s MongoDB 7:
      • Update mongodb to v7.0.18.
      • Update mongosh to v2.5.0.
  • a9s PostgreSQL:
    • a9s Logstash: Logstash 8:
      • Update logstash8 to v8.17.4.
    • a9s PostgreSQL 13:
      • Update cmake3 v3.31.7.
  • a9s Prometheus: a9s Prometheus SPI: Update dependencies.
  • a9s Search: a9s Logstash: Logstash 8: Update logstash8 to v8.17.4.
  • docs: Application Developer: a9s PostgreSQL: Add missing information regarding Forking via Disaster Recovery feature. For more information, see a9s PostgreSQL Forking & Migration.
  • docs: Platform Operator: Extend the certificate rotation admonition of the TLS Encryption documentation to urge the Platform Operator to rotate and clean up before the certificates expire. For more information, see TLS Encryption.
  • docs: Platform Operator: Update ports used by a9s Smoke Tests. For more information, see a9s Platform Required Ports.
  • docs: Platform Operator: a9s-pg: Update the documentation of a9s-pg to set a9s PostgreSQL 15 as the new default.
  • BOSH stemcell: all services: Update Jammy stemcell to version 1.822 for internal tests of all supported services.

Unsupported

  • a9s-pg: End of Support: Terminate support for the a9s Data Service Framework Component a9s-pg using a9s PostgreSQL 11, as PostgreSQL 11 has been marked as end-of-life by their vendor since November 2023.

    The a9s-pg Data Service Framework Component needs to be upgraded to use a9s PostgreSQL v15 before the update to anynines-deployment v60.0.0 can be done. The necessary steps to upgrade a9s-pg are described in our documentation.

    Important: Please note that an attempt to upgrade to anynines-deployment v60.0.0 will be aborted automatically if a9s-pg is still using a9s PostgreSQL v11, as a forced and unattended update of a9s-pg could lead to misbehavior and data loss.

  • a9s MongoDB: End of Support: Terminate support for the following deprecated a9s Data Service version:

    • a9s MongoDB 5: MongoDB 5 has been marked as end-of-life by their vendor since October 2024.

    The creation of new a9s Data Service Instances for this deprecated version is now disabled by default in the a9s Data Service Bundle, and we no longer provide regular support for this version. The corresponding documentation has been removed.

    Although we will not intentionally break running Service Instances of this unsupported version, it cannot be guaranteed that they still work as expected after an update to this release.

Removed

  • docs: all services: Remove outdated information about a9s MongoDB 5 within the scope of unsupporting a9s MongoDB 5.

Fixed

  • a9s Backup Services: a9s Backup Manager: Fix the population of the msg field for BackupAgentTask, to ensure the error messages do not return as nil.

Upcoming

  • all services: Ubuntu Bionic stemcell: End of Support: Terminate support, starting from anynines deployment v63.0.0 (expected end of July 2025), for the following deprecated Stemcell version:

    • Ubuntu Bionic Stemcell: Ubuntu Bionic has been marked as end-of-life by their vendor since April 2023.

    The creation of new a9s Data Service Instances for this deprecated version will be disabled by default in the a9s Data Service Bundle, and we will not provide regular support for this stemcell anymore. The corresponding documentation will also be removed. We strongly recommend migrating to a newer Stemcell (Jammy).

    Although we will not intentionally break running Service Instances using this stemcell, it cannot be guaranteed that they still work as expected after an update to v63.0.0.

· 13 min read

Added

  • breaking change a9s PostgreSQL: We consider PostgreSQL 17 as stable now. You have to set the following properties:
    • postgresql_service.services.a9s-postgresql17.name
    • postgresql_service.services.a9s-postgresql17.guid
    • postgresql_service.services.a9s-postgresql17.description
    • postgresql_service.services.a9s-postgresql17.label
    • postgresql_service.services.a9s-postgresql17.version
    • postgresql_service.services.a9s-postgresql17.bindable
    • postgresql_service.services.a9s-postgresql17.requires
    • postgresql_service.services.a9s-postgresql17.tags
    • postgresql_service.services.a9s-postgresql17.documentation_url
    • postgresql_service.services.a9s-postgresql17.metadata
    • postgresql_service.services.a9s-postgresql17.dashboard_client.id
    • postgresql_service.services.a9s-postgresql17.plans-to-test
    • postgresql_service.services.a9s-postgresql17.planupdates-to-test
  • all services: a9s Bee: Add NGINX as reverse proxy in front of a9s Bee to handle handle TLS termination in the future.
  • all services: a9s BOSH Deployer: Add NGINX as reverse proxy in front of a9s BOSH Deployer to handle TLS termination.
  • all services: a9s Service Broker: Add NGINX as reverse proxy in front of a9s Service Broker to handle TLS termination.
  • all services: a9s SPIs: Add NGINX as reverse proxy in front of a9s SPIs to handle TLS termination.
  • a9s Backup Services: a9s Backup Manager: Extend the response of the Public API v1 endpoint list_backups to return the backup_id, which can be used to specify a backup to restore from, via the Disaster Recovery API or CF Plugin.
  • a9s Backup Services: a9s Backup Manager: Update dependencies.
  • a9s CF Service Guard: Add NGINX as reverse proxy in front of a9s CF Service Guard to handle TLS termination.
  • a9s MariaDB: a9s MariaDB SPI: Introduce reconcile logic to update the value of the default_database attribute in the a9s Service Broker database after restoring an external backup. This enables the Disaster Recovery feature.
  • a9s Prometheus: Introduce a static landing page for the dashboard URL, providing quick access to the following web UIs: Alert Manager, Grafana, and Prometheus.
  • docs: Application Developer: Add a page detailing how Data Service Forking via the Disaster Recovery funcionality works, as there are small but critical differences between them. For more information, see Forking a Service Instancce.
  • docs: Application Developer: all services: Add a "Getting Started" section to host the common functionality from across the a9s Data Services documents. For more information, see Getting Started.
  • docs: Platform Operator: all services: Add a "Getting Started" section to host the overall installation of the a9s Data Services and its framework. For more information, see Getting Started.
  • docs: Platform Operator: a9s PostgreSQL: Add a9s PostgreSQL 17 as a9s General Availability. For more information, see a9s Platform Operator Sunrise Sunset.
  • docs: Platform Operator: a9s PostgreSQL: Add information about the wal_receivers parameter. For more information, see Cluster Status - Status Script.

Changed

  • all services: Extract the renaming of the a9s Service Broker endpoint for the a9s Service DashboardRefactor from the ops/rename-service-deployment.yml Ops file into the dedicated ops/dashboard-rename-broker-endpoint.yml.
  • all services:
    • a9s DS API Gateway:
      • Update KrakenD to v2.9.3.
      • Update krakend-custom-plugins to v2.9.3.
    • Update bpm to v1.4.16.
    • Update routing to v0.331.0.
  • all services: a9s Backup Agent: Update Ruby to v3.4.1.
  • all services: a9s Backup Agent: Extend the support for special characters when setting the backup encryption key via the a9s Dashboard or the a9s Public API v1.
  • all services: a9s Bee: Change the bind_address property to listen only on localhost, following the introduction of NGINX as reverse proxy in front of it.
  • all services: a9s BOSH Deployer: Update Ruby to v3.4.1.
  • all services: a9s BOSH Deployer: Change the bind_address property to listen only on localhost, following the introduction of NGINX as reverse proxy in front of it.
  • all services: a9s CF Service Guard: Update Ruby to v3.4.1.
  • all services: a9s Deployment Updater Errand: Update Ruby to v3.4.1.
  • all services: a9s Logstash: Logstash 6: Update Ruby to v3.4.1.
  • all services: a9s Service Broker: Update Ruby to v3.4.1.
  • all services: a9s Service Broker: Change the bind_address property to listen only on localhost, following the introduction of NGINX as reverse proxy in front of it.
  • all services: a9s SSO Proxy: Update Ruby to v3.4.1.
  • all services: a9s Smoke Tests: Update Ruby to v3.4.1.
  • all services: a9s SPIs: Change the bind_address property to listen only on localhost, following the introduction of NGINX as reverse proxy in front of them.
  • all services: a9s SPIs: Update dependencies.
  • all services: a9s Template Uploader Errand: Replace Logstash6 with Logstash8 in the a9s MongoDB templates.
  • all services: a9s Template Uploader Errand: Update Ruby to v3.4.1.
  • a9s-pg: a9s Logstash:
    • Logstash 8:
      • Update logstash8 to v8.17.3.
      • Update Ruby to v3.4.1.
  • a9s Backup Services: a9s Backup Manager: Update Ruby to v3.4.1.
  • a9s Backup Services: a9s Backup Monit: Update Ruby to v3.4.1.
  • a9s Backup Services: a9s Backup Monit: Change the bind_address property to listen only on localhost, following the introduction of NGINX as reverse proxy in front of it, and adapt the related Logstash configuration accordingly.
  • a9s Backup Services: a9s Backup Monit: Update a9s Backup Manager related configuration to use the TLS encrypted port for communication.
  • a9s CF Service Guard: Change the bind_address property to listen only on localhost, following the introduction of NGINX as reverse proxy in front of it.
  • a9s KeyValue: a9s Logstash:
    • Logstash 8:
      • Update logstash8 to v8.17.3.
      • Update Ruby to v3.4.1.
  • a9s LogMe2:
    • Fluentd:
      • Update Ruby to v3.4.1.
  • a9s MariaDB:
    • MariaDB 10.6: Update Ruby to v3.4.1.
    • MariaDB 10.11: Update Ruby to v3.4.1.
  • a9s Messaging:
    • a9s Logstash:
      • Logstash 8:
        • Update logstash8 to v8.17.3.
        • Update Ruby to v3.4.1.
    • a9s Messaging 4: Update rabbitmq to v4.0.7.
  • a9s MongoDB: Replace Logstash6 with Logstash8.
  • a9s MongoDB:
    • a9s MongoDB 7: Update mongosh to v2.4.2.
  • a9s PostgreSQL:
    • a9s Logstash:
      • Logstash 8:
        • Update logstash8 to v8.17.3.
        • Update Ruby to v3.4.1.
    • a9s PostgreSQL SPI: Update rack to v3.1.12.
    • a9s PostgreSQL 17: Update PostgreSQL to v17.4.
    • a9s PostgreSQL 13: Update PostgreSQL to v3.13.0.
  • a9s Prometheus:
    • prometheus2: Update
      • alertmanager to v0.28.1.
      • blackbox_exporter to v0.26.0.
      • cadvisor to v0.52.1.
      • elasticsearch_exporter to v1.9.0.
      • mysqld_exporter to v0.17.2.
      • postgres_exporter to v0.17.1.
      • prometheus to v2.53.4.
    • prometheus-legacy: Update
      • alertmanager to v0.28.1.
      • blackbox_exporter to v0.26.0.
      • cadvisor to v0.52.1.
      • elasticsearch_exporter to v1.9.0.
      • mysqld_exporter to v0.17.2.
      • postgres_exporter to v0.17.1.
      • prometheus to v2.53.4.
    • promgraf2: Update
      • alertmanager to v0.28.1.
      • blackbox_exporter to v0.26.0.
      • cadvisor to v0.52.1.
      • elasticsearch_exporter to v1.9.0.
      • mysqld_exporter to v0.17.2.
      • postgres_exporter to v0.17.1.
      • prometheus to v2.53.4.
  • a9s Redis: a9s Redis SPI: Update Ruby to v3.4.1.
  • a9s Search: a9s Logstash:
    • Logstash 8: Update
      • logstash8 to v8.17.3.
      • opensearch2 to v2.24.0.
      • Ruby to v3.4.1.
  • docs: Application Developer: Add a9s MariaDB to the list of Data Services that support the Disaster Recovery feature. For more information, see Disaster Recovery.
  • docs: Application Developer: Add backup_id property description to the list_backup endpoint of the Public API V1 with examples of the response. For more information, see API V1 Endpoints - List All Backups.
  • docs: Application Developer: all services: Restructure overall layout and provide more granularity to each a9s Data Services section. For more information, see Application Developer.
  • docs: Application Developer: a9s KeyValue: Reorganize the Custom Parameters page into topics rather than using the parameters themselves as sections. For more information, see Custom Parameters.
  • docs: Application Developer: a9s PostgreSQL: Improve the information regarding a9s PostgreSQL migration caveats.
  • docs: Application Developer: a9s Prometheus: Add information about the newly added index page that enables easier access to the Service Instance's dashboards. For more information, see Service Instance Access.
  • docs: Platform Operator: Add a9s MariaDB to the list of Data Services that support the Disaster Recovery feature. For more information, see Disaster Recovery.
  • docs: Platform Operator: Extend the TLS Encryption with a list of the certificates in use, and a detailed overview of the different use cases for certificate rotation. For more information, see TLS Encryption.
  • docs: Platform Operator: all services: Extend the "Block Automatic Updates" documentation by cross-referencing the individual pages in the a9s Service Broker and a9s Service Dashboard sections. For more information, see a9s Service Broker - Block Automatic Updates and a9s Service Dashboard - Allow Automatic Updates.
  • docs: Platform Operator: all services: Restructure overall layout and provide more granularity to all major components and the general configuration of the a9s Data Services. For more information, see Platform Operator.
  • docs: Platform Operator: a9s Backup Monit: Add link to the Retention Policy section in the a9s Backup Manager Metrics. For more information, see Retention Policy.
  • docs: Platform Operator: a9s Backup Services: Improve the Retention Policy section by adding information about the backup deletion process, fixing typos, and restructuring the section. For more information, see Retention Policy.
  • docs: Platform Operator: a9s PostgreSQL: Add information about resource requirements in face of piled-up WAL files. For more information, see a9s PostgreSQL - Resource Considerations.
  • BOSH stemcell: all services: Update Jammy stemcell to version 1.785 for internal tests of all supported services.

Deprecated

  • a9s Messaging: Deprecation: Deprecate the following a9s Data Service versions:

    • a9s Messaging 3.12: RabbitMQ 3.12 is end-of-life by their vendor since June 2024
    • a9s Messaging 3.13: RabbitMQ 3.13 is end-of-life by their vendor since Sept 2024

    Please ensure that you organize the migration of your existing Service Instances to a more up-to-date version of the same a9s Data Service:

    • for a9s Messaging 3.12: a9s Messaging 4.0 is available as GA version.
    • for a9s Messaging 3.13: a9s Messaging 4.0 is available as GA version.

    This deprecation follows the announcement in v56.0.0. The deprecation phase is planned to last until v62.0.0 (expected end of June 2024), in which the unsupport phase of the deprecated versions will start. The creation of new a9s Data Service Instances for these particular versions will then be disabled by default in the a9s Data Service Bundle and we will not provide regular support for these versions. The corresponding documentation will also be removed. Therefore, we strongly recommend that you start your migrations to a supported GA version as soon as possible and complete them until the end of the deprecation phase. For more information see a9s Platform Operator - Sunrise Sunset.

    To inquire about extended support for a deprecated version, please get in contact with our sales department at sales@anynines.com.

Unsupported

  • a9s MySQL: End of Support: Terminate support for the following deprecated a9s Data Service version:

    • a9s MySQL 10.4: MariaDB 10.4 is end-of-life by their vendor since June 2024

    The creation of new a9s Data Service Instances for this deprecated version is now disabled by default in the a9s Data Service Bundle and we no longer provide regular support for this version. The corresponding documentation has been removed.

    Although we will not intentionally break running Service Instances of this unsupported version, it cannot be guaranteed that they still work as expected after an update to this release.

Removed

  • docs: all services: Remove outdated information about a9s MySQL within the scope of unsupporting a9s MySQL.

Fixed

  • a9s-pg: a9s PostgreSQL 15: Fix race condition in the a9s PostgreSQL Info Webservice Switchover, where during the switchover operation, the checkpoint LSN location would change while a9s PostgreSQL Info Webservice is executing the election to promote a new node to primary. This could cause an extended downtime during the deployment update and could even lead, in some situations, to an unhealthy cluster after a failover.
  • a9s-pg: a9s PostgreSQL: Fix race condition between the a9s PostgreSQL Info Webservice Failover Monitor and repmgrd, where during a repmgrd failover that could make repmgrd lose track of the correct view cluster sometimes led to a broken cluster with a standby that is not able to follow the new primary.
  • a9s PostgreSQL: a9s PostgreSQL 17: Fix the issue where, during the failover, the checkpoint LSN location would change while repmgrd is executing the election to promote a new node to primary, this could cause an extended downtime during the deployment update, and could even lead, in some situations, to an unhealthy cluster after a failover. This is fixed by enabling repmgr's standby_disconnect_on_failover configuration property.
  • a9s PostgreSQL: a9s Logstash: Fix connection initialization logic causing the Logstash process in a9s PostgreSQL Service Instances to fail during upgrades from single Service Instances to cluster Service Instances. This issue prevented instances from being marked healthy from the director, and occurred during the time in which the replica nodes synchronize with the primary node in the cluster.
  • a9s PostgreSQL: Fix race condition between the a9s PostgreSQL Info Webservice Failover Monitor and repmgrd, where a repmgrd failover could cause repmgrd to lose track of the correct view of the cluster, potentially led to a broken cluster with a standby that is not able to follow the new primary.
  • a9s PostgreSQL: Fix race condition in the a9s PostgreSQL Info Webservice Switchover, where during the switchover operation, the checkpoint LSN location would change while a9s PostgreSQL Info Webservice is executing the election to promote a new node to primary. This could cause an extended downtime during the deployment update and could even lead, in some situations, to an unhealthy cluster after a failover.
  • docs: Application Developer: all services: Fix recurring typos across all the a9s Data Services' index pages.

Security

  • all services: a9s Backup Agent: Fix CVEs:
    • CVE-2024-56171
    • CVE-2025-24928
    • CVE-2025-27610
    • CVE-2025-27788
  • all services: a9s BOSH Deployer: Fix CVEs:
    • CVE-2024-56171
    • CVE-2025-24928
    • CVE-2025-27788
  • all services: a9s CF Service Guard: Fix CVEs:
    • CVE-2024-56171
    • CVE-2025-24928
    • CVE-2025-27610
  • all services: a9s Deployment Updater:
    • CVE-2025-27788
  • all services: a9s Service Broker: Fix CVEs:
    • CVE-2024-56171
    • CVE-2025-24928
  • all services: a9s Smoke-Tests: Fix CVEs:
    • CVE-2025-27610
    • CVE-2025-27788
  • all services: a9s SSO Proxy: Fix CVEs:
    • CVE-2025-27610
    • CVE-2025-27788
  • a9s Backup Services: a9s Backup Monit: Fix CVEs:
    • CVE-2024-56171
    • CVE-2025-24928
    • CVE-2025-27610
    • CVE-2025-27788
  • a9s Backup Services: a9s Backup Manager: Fix CVEs:
    • CVE-2025-27788
    • CVE-2025-27610
  • a9s Billing: Fix CVEs:
    • CVE-2024-56171
    • CVE-2025-24928
  • a9s KeyValue: a9s KeyValue SPI: Fix CVEs:
    • CVE-2025-27610
    • CVE-2025-27788
  • a9s LogMe2: a9s LogMe2 SPI: Fix CVEs:
    • CVE-2025-27610
    • CVE-2025-27788
  • a9s MariaDB: a9s MariaDB SPI: Fix CVEs:
    • CVE-2025-27610
    • CVE-2025-27788
  • a9s Messaging: a9s Messaging SPI: Fix CVEs:
    • CVE-2025-27610
    • CVE-2025-27788
  • a9s MongoDB: a9s MongoDB SPI: Fix CVEs:
    • CVE-2025-27610
    • CVE-2025-27788
  • a9s PostgreSQL: a9s PostgreSQL SPI: Fix CVEs:
    • CVE-2025-27610
    • CVE-2025-27111
    • CVE-2025-25184
  • a9s Prometheus: a9s Prometheus SPI: Fix CVEs:
    • CVE-2025-27610
    • CVE-2025-27788
  • a9s Redis: a9s Redis SPI: Fix CVEs:
    • CVE-2025-27610
    • CVE-2025-27788
  • a9s Search: a9s Search SPI: Fix CVEs:
    • CVE-2025-27610
    • CVE-2025-27788

· 6 min read

Added

  • all services: a9s Deployment Updater Errand: Add a new property to allow the configuration of the amount of retries when a Service Instance's update is blocked due to already running operations. For more information, see a9s Deployment Updater - Properties.
  • all services: a9s Service Broker: Ensure that a Service Instance has no running backup or restore actions when starting an update for said Service Instance. For more information, see a9s Service Broker - Update a Service Instance.
  • a9s MongoDB: a9s MongoDB SPI: Add new custom parameter set_stream_parameters that allows the user to configure the cluster parameters. The only supported cluster parameter is changeStreamOptions.preAndPostImages.expireAfterSeconds. For more information, see Using a9s MongoDB - MongoDB Custom Parameters.
  • docs: Platform Operator: a9s KeyValue: Add missing Valkey-Sentinel port to the list of required ports. For more information, see a9s Platform Required Ports.
  • docs: Platform Operator: a9s Redis®*: Add missing table for the required ports of a9s Redis®. For more information, see a9s Platform Required Ports - a9s-redis7-instance.
  • docs: Platform Operator: a9s Redis®: Add the Redis®-Sentinel port to the list of required ports. For more information, see a9s Platform Required Ports.
  • INTERNAL RELEASE a9s Backup Services: a9s Backup Manager: Add a new API endpoint that allows the a9s Service Broker to verify if any of its Service Instances is currently running a backup or restore action.

Changed

  • all services:
    • BPM to v1.4.15.
    • routing to v0.330.0.
  • all services: a9s Logstash: a9s Logstash 8: Update Logstash to v8.17.1.
  • all services: a9s Service Dashboard: Update NodeJS to v22.13.1.
  • all services: a9s SSO Proxy: Update
    • NGINX to v1.27.4.
    • PCRE2 to v10.45.
  • all services: a9s Deployment Updater Errand: Update Ruby to v3.4.1.
  • all services: a9s Service Broker: Update Ruby to v3.4.1.
  • a9s-pg: Improve cleanup after in-place major upgrade.
  • consul-dns: Dnsmasq: Update Ruby to v3.4.1.
  • a9s Backup Services: a9s Backup Manager: Extend list of the logs' allowed keys to facilitate analysis.
  • a9s Backup Services: a9s Backup Manager: Update Ruby to v3.4.1.
  • a9s Elasticsearch: a9s Elasticsearch SPI: Update Ruby to v3.4.1.
  • a9s KeyValue: a9s KeyValue SPI: Update Ruby to v3.4.1.
  • a9s LogMe: a9s LogMe SPI: Update Ruby to v3.4.1.
  • a9s LogMe2: a9s LogMe2 SPI: Update Ruby to v3.4.1.
  • a9s MariaDB:
    • a9s MariaDB 10.11: Update mariadb to v10.11.11.
    • a9s MariaDB 10.6: Update mariadb to v10.6.21.
    • a9s MariaDB SPI: Update Ruby to version 3.4.1.
  • a9s Messaging:
    • a9s Messaging 3.12: Update erlang to v25.3.2.18.
    • a9s Messaging 3.13: Update erlang to v26.2.5.9.
    • a9s Messaging 4.0: Update
      • erlang to v26.2.5.9.
      • rabbitmq to v4.0.6.
    • a9s Messaging SPI: Update Ruby to version 3.4.1.
  • a9s MongoDB:
    • a9s MongoDB 5: Update mongosh to v5.0.31.
    • a9s MongoDB 7: Update mongosh to v2.4.0.
    • a9s MongoDB SPI: Update Ruby to version 3.4.1.
  • a9s MySQL: a9s MySQL SPI: Update Ruby to version 3.4.1.
  • a9s PostgreSQL:
    • a9s PostgreSQL 13: Update
      • cmake to v3.31.5.
      • PostgreSQL to v13.20.
    • a9s PostgreSQL 15: Update PostgreSQL to v15.12.
    • a9s postgreSQL 17: Update PostgreSQL to v17.3.
    • a9s PostgreSQL SPI: Update Ruby to version 3.4.1.
  • a9s Prometheus:
    • a9s Prometheus SPI: Update Ruby to version 3.4.1.
    • prometheus-legacy: Update
      • mysqld_exporter to v0.17.1.
      • postgres_exporter to v0.17.0.
      • stackdriver_exporter to v0.18.0.
    • prometheus2: Update
      • grafana to v10.4.16.
      • mysqld_exporter to v0.17.1.
      • postgres_exporter to v0.17.0.
      • stackdriver_exporter to v0.18.0.
    • promgraf2: Update
      • mysqld_exporter to v0.17.1.
      • postgres_exporter to v0.17.0.
      • stackdriver_exporter to v0.18.0.
  • a9s Search: a9s Search SPI: Update Ruby to version 3.4.1.
  • docs: Platform Operator: a9s MongoDB: Extend the Custom Parameter documentation with information regarding the new parameter set_cluster_parameter. For more information, see Default Custom Parameter Configuration.
  • docs: Platform Operator: Update the Vendor DS Version. For more information, see a9s Platform Operator - Sunrise Sunset.
  • BOSH stemcell: all services: Update Jammy stemcell to version 1.737 for internal tests of all supported services.

Removed

  • docs: Platform Operator: all services: Remove obsolete memory limit threshold documentation.

Fixed

  • all services: a9s Backup Agent: Fix issue with a9s LogMe2 and a9s Search where the a9s Backup Agent could not connect to the underlying OpenSearch because the leaf certificate could not be verified when a certificate chain with intermediate certificates was used.
  • a9s-pg: Fix the handling of the version lock directory, where after the upgrade from a9s PostgreSQL 11 to a9s PostgreSQL 15 the previous version lock directory (/var/vcap/store/postgresql11-locks) would be kept. This directory is now properely removed.
  • a9s-pg: a9s PostgreSQL 15: Fix the issue where, during the failover, the checkpoint LSN location would change while the repmgrd is executing the election to promote a new node to primary, this could cause an extended downtime during the deployment update, and could even lead in some situations to an unhealthy cluster after a failover. This is fixed by enabling the repmgr standby_disconnect_on_failover configuration property.
  • a9s PostgreSQL: a9s PostgreSQL 15: Fix the issue where, during the failover, the checkpoint LSN location would change while the repmgrd is executing the election to promote a new node to primary, this could cause an extended downtime during the deployment update, and could even lead in some situations to an unhealthy cluster after a failover. This is fixed by enabling the repmgr standby_disconnect_on_failover configuration property.
  • docs: all services: Fix admonitions, internal guidelines non-conformities, and typos across all documentation pages.

Security

  • all services: a9s Service Dashboard: Fix CVEs:
    • CVE-2025-1094
    • CVE-2025-23083
    • CVE-2025-23084
    • CVE-2025-23085
  • a9s-pg: a9s PostgreSQL 15: Give SUPERUSER privileges to the role used by repmgrd to ensure that, during an failover, the cluster is not led to an unhealthy state. For more information, see the Fixed section of this CHANGELOG.
  • a9s PostgreSQL: a9s PostgreSQL 15: Give SUPERUSER privileges to the role used by repmgrd to ensure that, during an failover, the cluster is not led to an unhealthy state. For more information, see the Fixed section of this CHANGELOG.

· 7 min read

Added

  • all services: a9s Template Uploader Errand: Add parameter to configure general archive timeout for a9s PostgreSQL.
  • all services: a9s Template Uploader Errand: Add templates for a9s PostgreSQL 17.
  • a9s PostgreSQL: Add configuration global_syslog_endpoints to allow global specification of syslog endpoints. Use the Ops file ops/global-syslog-endpoints.yml to set these for Service Instances.
  • a9s PostgreSQL: a9s PostgreSQL SPI: Add BOSH properties to control general archive timeout.
  • a9s PostgreSQL: a9s PostgreSQL SPI: Add custom parameters to control general archive timeout (max_standby_archive_delay, max_standby_streaming_delay, wal_receiver_timeout).
  • a9s PostgreSQL: Add example config for a9s PostgreSQL 17 to config/postgresql.yml.example.
  • a9s PostgreSQL: Release a9s PostgreSQL 17 as an Release Candidate (RC). For more information, see a9s Platform Operator - Sunrise Sunset.
  • docs: Application Developer: a9s PostgreSQL: Add general archive timeout custom parameters. For more information, see: PostgreSQL Custom Parameters.
  • docs: Platform Operator: a9s PostgreSQL: Add entries for general archive timeout custom parameters, and describe how to allow them to be configured and how to set up default values. For more information, see Custom Parameter Configuration.
  • docs: Platform Operator: a9s PostgreSQL: Add the available templates for the a9s PostgreSQL 17 Data Service. For more information, see Available Templates.
  • docs: Platform Operator: a9s PostgreSQL: Add the required ports for the a9s PostgreSQL 17 Data Service. For more information, see a9s Platform Required Ports.

Changed

  • all services: a9s Deployment Updater: Extend the recreate strategy of the a9s Deployment Updater Errand to allow filtering by state the Service Instances that will be recreated in the operation. For more information, see a9s Deployment Updater.
  • all services:
    • bpm 1.4.12
    • routing 0.329.0
    • a9s DS API Gateway:
      • KrakenD to v2.9.1
      • krakend-custom-plugins to v2.9.1
    • a9s Logstash:
      • Logstash8:
        • Logstash to v8.17.1
      • Update internal dependencies
  • a9s-pg: Replace Logstash6 with Logstash8.
  • a9s Backup Services: a9s Backup Manager: Improve the handling of the status returned by the a9s Backup Agent when triggering a backup or restore request. This change prevents an issue where the a9s Backup Manager would wait forever for a task that is already finished on the a9s Backup Agent.
  • a9s Backup Services: a9s Backup Manager: Adapt the clockwork process to properly release the database connection when it is done with its task. This change prevents the database connections cannot be properly renewed when the connection to the database drops.
  • a9s Backup Services: a9s Backup Manager: Extend and improve TaskHandler logging.
  • a9s Billing:
    • cf-cli to v8.9.0
  • a9s KeyValue:
    • a9s KeyValue 8:
      • valkey to v8.0.2
  • a9s MariaDB: Update internal dependencies.
  • a9s Messaging:
    • a9s Messaging 4.0:
      • Golang to v1.23
    • a9s Messaging 3.13:
      • Golang to v1.23
    • a9s Messaging 3.12:
      • Golang to v1.23
  • a9s MongoDB:
    • a9s MongoDB 7:
      • mongosh to v2.3.8
  • a9s PostgreSQL:
    • a9s PostgreSQL SPI:
      • a9s-spi-utils to v2.2.1
      • pg to v1.5.4
      • puma to v6.5.0
      • rack to v3.1
      • sinatra to v4.1.1
      • sinatra-contrib to v4.1.1
    • a9s PostgreSQL 15
      • Replace Logstash6 with Logstash8
    • a9s PostgreSQL 13
      • Replace Logstash6 with Logstash8
  • a9s PostgreSQL: SPI: Add support to PostgreSQL v17.
  • a9s Prometheus:
    • prometheus-legacy:
      • alertmanager to v0.28.0
    • prometheus2:
      • alertmanager to v0.28.0
    • promgraf2:
      • alertmanager to v0.28.0
  • a9s Redis:
    • a9s Redis 6:
      • redis to v6.2.17
    • a9s Redis 7:
      • redis to v7.2.7
  • docs: Application Developer: a9s PostgreSQL: Adapt the Migration page to include a9s PostgreSQL 17. For more information, see Migration Matrix.
  • docs: Application Developer: a9s PostgreSQL: Adapt the Overview page to include a9s PostgreSQL 17. For more information, see a9s PostgreSQL - Overview.
  • docs: Application Developer: a9s PostgreSQL: Adapt the Using a9s PostgreSQL page for version a9s PostgreSQL 17. For more information, see Using a9s PostgreSQL.
  • docs: Application Developer: a9s PostgreSQL: Extend syslog endpoint format to allow specification of endpoints with TLS encryption. For more information, see Add a Syslog Endpoint.
  • docs: Platform Operator: all services: Adapt the example configurations to include the correct settings required by the a9s Backup Agent. For more information, see Disaster Recovery.
  • docs: Platform Operator: a9s PostgreSQL: Adapt the a9s PostgreSQL Manual Backup Recovery pages to support PostgreSQL 17. We are also making the described steps more robust, including clean-up steps. For more information, see a9s PostgreSQL Manual Logical Backup Recovery and a9s PostgreSQL Manual Point-in-Time Recovery.
  • docs: Platform Operator: a9s PostgreSQL: Adapt the Template Uploader Errand page to include a9s PostgreSQL 17. For more information, see Template Folders.
  • BOSH stemcell: all services: Update Jammy stemcell to version 1.719 for internal tests of all supported services.

Unsupported

  • a9s Messaging: End of Support: Terminate support for the following deprecated a9s Data Service version:

    • a9s Messaging v3.10: RabbitMQ 3.10 is end-of-life by their vendor since July 2023

    The creation of new a9s Data Service Instances for this deprecated version is now disabled by default in the a9s Data Service Bundle and we no longer provide regular support for this version. The corresponding documentation has been removed.

    Although we will not intentionally break running Service Instances of this unsupported version, it cannot be guaranteed that they will still work as expected after an update to this release.

Removed

  • all services: a9s SPIs: Remove outdated restart-above-memory-usage feature to prevent unnecessary restarts of the a9s SPI processes.
  • a9s Bee: Remove outdated restart-above-memory-usage feature to prevent unnecessary restarts of the a9s Bee process.
  • a9s Billing: Remove outdated restart-above-memory-usage feature to prevent unnecessary restarts of the a9s Billing processes.
  • a9s BOSH Deployer: Remove outdated restart-above-memory-usage feature to prevent unnecessary restarts of the a9s BOSH Deployer process.
  • a9s DS API Gateway: Remove outdated restart-above-memory-usage feature to prevent unnecessary restarts of the a9s DS API Gateway processes.
  • a9s Service Broker: Remove outdated restart-above-memory-usage feature to prevent unnecessary restarts of the a9s Service Broker monit process and its process dependencies.

Fixed

  • a9s Backup Manager: Fix the loading of the Disaster Recovery storage configuration when using a different storage than the default one. For more information, see Disaster Recovery.

Security

  • all services: a9s Bee: Fix CVEs:
    • CVE-2024-24786
    • CVE-2023-45288
    • CVE-2024-45337
  • all services: a9s Smoke Tests: Fix CVEs:
    • CVE-2024-24786
    • CVE-2024-45337
  • a9s-pg: Fix CVEs:
    • CVE-2023-44487
    • CVE-2023-39325
    • CVE-2024-24786
    • CVE-2023-45288
    • CVE-2024-45337
  • a9s MariaDB: Fix CVEs:
    • CVE-2024-45338
  • a9s Messaging: Fix CVEs:
    • CVE-2024-45338
  • a9s Redis: Fix CVEs:
    • CVE-2024-46981

Upcoming

  • a9s-pg: End of Support: Terminate support, starting from anynines deployment v60.0.0 (expected end of April 2025), for the a9s Data Service Framework Component a9s-pg using a9s PostgreSQL 11, because PostgreSQL 11 is end-of-life by their vendor since November 2023.

    The a9s-pg Data Service Framework Component needs to be upgraded to use a9s PostgreSQL v15 until the unsupport is executed. The steps to upgrade a9s-pg are described in our documentation.

    Important: Please note that an attempt to upgrade to anynines-deployment v60.0.0 will be aborted automatically if a9s-pg is still using a9s PostgreSQL v11, as a forced and unattended update of a9s-pg could lead to misbehavior and data loss.

  • a9s MongoDB: End of Support: Terminate support, starting from anynines deployment v60.0.0 (expected end of April 2025), for the following deprecated a9s Data Service version:

    • a9s MongoDB v5: MongoDB 5 is end-of-life by their vendor since October 2024

    The creation of new a9s Data Service Instances for this deprecated version will be disabled by default in the a9s Data Service Bundle and we will not provide regular support for this version. The corresponding documentation will also be removed.

    Although we will not intentionally break running Service Instances of this unsupported version, it cannot be guaranteed that they will still work as expected after an update to v60.0.0.

· 10 min read

Added

  • breaking change a9s KeyValue: We consider KeyValue8 as stable now. You have to set the following properties:
    • keyvalue_service.services.a9s-keyvalue8.name
    • keyvalue_service.services.a9s-keyvalue8.guid
    • keyvalue_service.services.a9s-keyvalue8.description
    • keyvalue_service.services.a9s-keyvalue8.label
    • keyvalue_service.services.a9s-keyvalue8.version
    • keyvalue_service.services.a9s-keyvalue8.bindable
    • keyvalue_service.services.a9s-keyvalue8.requires
    • keyvalue_service.services.a9s-keyvalue8.tags
    • keyvalue_service.services.a9s-keyvalue8.documentation_url
    • keyvalue_service.services.a9s-keyvalue8.metadata
    • keyvalue_service.services.a9s-keyvalue8.dashboard_client.id
    • keyvalue_service.services.a9s-keyvalue8.plans
    • keyvalue_service.services.a9s-keyvalue8.plans-to-test
    • keyvalue_service.services.a9s-keyvalue8.planupdates-to-test
  • a9s MariaDB: Add a9s-parachute2 BOSH release. For more information, see a9s Parachute v2.
  • a9s MariaDB: Add plugins for a9s-parachute2 to the MariaDB BOSH releases.
  • a9s Messaging: Add the WebSTOMP and WebMQTT plugins to a9s Messaging 4.0.
  • docs: Application Developer: all services: Extend the Graphite Metrics documentation with a chapter about the a9s Parachute metrics. For more information, see Graphite Metrics - a9s Parachute Metrics.
  • docs: Application Developer: a9s Messaging: Update documentation regarding the WebSTOMP and WebMQTT plugins. For more information, see Using a9s Messaging.
  • docs: Platform Operator: a9s-pg: Add admonition recommending the execution of the ANALYZE command after migrating the running a9s-pg to a higher version, as this will ensure a better execution by updating the database's statistics. For more information, see a9s-pg Major Upgrade - Run the Upgrade.
  • docs: Platform Operator: a9s Messaging: Update the required ports for the a9s Messaging 4.0 Data Service. For more information, see a9s Platform Required Ports
  • docs: Platform Operator: a9s Parachute: Add a page describing the a9s Parachute metrics. For more information, see a9s Parachute Metrics.
  • docs: Platform Operator: a9s Parachute: Add documentation for a9s Parachute v2. For more information, see a9s Parachute v2.

Changed

  • all services:
    • bpm 1.4.8
    • nginx v1.27.3
    • routing 0.326.0
  • all services: a9s DS API Gateway:
    • KrakenD to v2.8.0
    • krakend-custom-plugins to v2.8.0
  • all services: a9s Service Broker: Adapt all delayed jobs to properly release their connections after termination.
  • all services: a9s Service Broker: Fix mixed up guid_at_tenant and deployment_name in the instance-information script.
  • all services: a9s Service Dashboard: Update internal dependencies.
  • all services: a9s Logstash: Integrate a9s Parachute metrics. For more information, see a9s Parachute Metrics.
  • all services: a9s Smoke Tests: Extend prometheus_streaming tests with tests for a9s Parachute metrics.
  • all services: a9s Template Uploader Errand: Add a9s-parachute2 to the templates for a9s MariaDB 10.11.
  • all services: a9s Template Uploader Errand: Extend the Logstash configuration with new configuration values for a9s Parachute metrics in the Service Instance templates. For more information, see Graphite Metrics - a9s Parachute Metrics.
  • a9s KeyValue:
    • a9s KeyValue 8:
      • logstash v8.17.0
  • a9s KeyValue: Change Logstash to use .txt as the file extension for its logs.
  • a9s KeyValue: Update the config/keyvalue.yml.example to include more Service Plans.
  • a9s LogMe2: Change OpenSearch to use .txt as the file extension for its logs.
  • a9s Messaging:
    • a9s Messaging 3.12:
      • erlang to v25.3.2.16
    • a9s Messaging 3.13:
      • erlang to v26.2.5.6
    • a9s Messaging 4.0:
      • erlang to v26.2.5.6
      • rabbitmq to v4.0.5
    • logstash to v8.17.0
  • a9s Messaging: Change Logstash to use .txt as the file extension for its logs.
  • a9s MongoDB:
    • mongodb70sspl:
      • mongodb to v7.0.16
      • mongosh to v2.3.6
  • a9s PostgreSQL:
    • a9s PostgreSQL:
      • CMake to v3.31.3
  • a9s Prometheus: Update graphite_mapping.conf with the matching rules for the values of the a9s Parachute metrics.
  • a9s Prometheus:
    • prometheus2:
      • grafana to v10.4.10
  • a9s Search:
    • logstash to v8.17.0
  • a9s Search: Change Logstash to use .txt as the file extension for its logs.
  • a9s Search: Change OpenSearch to use .txt as the file extension for its logs.
  • docs: all services: Add Trademark to all mentions of Redis®* in documentation.
  • docs: Application Developer: all services: Extend the list of cross reference links to include all a9s Data Services. For more information, see Graphite Metrics - Other Metrics.
  • docs: Application Developer: a9s KeyValue: Add a caution admonition explaining the potential compatibility issues between a9s KeyValue and the Redis® client Libraries. For more information, see Using a9s KeyValue.
  • docs: Application Developer: a9s Messaging: Add a caution admonition explaining syslog usage for RabbitMQ < 4.0. For more information, see a9s Messaging Syslog - Add a syslog Endpoint.
  • docs: Application Developer: a9s PostgreSQL: Add admonition describing the restrictions of the CREATEROLE permission. For more information, see Using a9s PostgreSQL.
  • docs: Application Developer: a9s Service Dashboard: Update examples and screenshots. For more information, see Using a9s Service Dashboard.
  • docs: Platform Operator: all services: Add cross reference links to a9s Backup Monit and a9s Parachute metrics. For more information, see Metrics - Other Metrics.
  • docs: Platform Operator: all services: Update a9s-pg Manual Logical Backup Recovery page to reflect the correct instruction for PostgreSQL v11 as well as v15. For more information, see: a9s-pg Manual Logical Backup Recovery - Recover Backup.
  • docs: Platform Operator: all services: Fix typos and rephrase instructions for a better readability in a9s-pg Manual Logical Backup Recovery page. For more information, see: a9s-pg Manual Logical Backup Recovery.
  • docs: Platform Operator: a9s Messaging: Update the a9s Messaging Vendor EOL dates. For more information, see a9s Platform Operator - Sunrise Sunset.
  • docs: Platform Operator: a9s Parachute: Restructure the contents of the a9s Parachute documentation. For more information, see a9s Parachute.
  • docs: Platform Operator: a9s PostgreSQL: Add admonition describing the restrictions of the CREATEROLE permission. For more information, see a9s PostgreSQL SPI Configuration.
  • BOSH stemcell: all services: Update Jammy stemcell to version 1.682 for internal tests of all supported services.

Unsupported

  • a9s PostgreSQL: End of Support: Terminate support for the following deprecated a9s Data Service version:

    • a9s PostgreSQL v11: PostgreSQL 11 is end-of-life by their vendor since November 2023

    The creation of new a9s Data Service Instances for this deprecated version is now disabled by default in the a9s Data Service Bundle and we no longer provide regular support for this version. The corresponding documentation has been removed.

    Although we will not intentionally break running Service Instances of this unsupported version, it cannot be guaranteed that they still work as expected after an update to this release.

  • a9s Prometheus: End of Support: Terminate support for the following deprecated a9s Data Service versions:

    • a9s Prometheus Grafana 5: Grafana 5 is end-of-life by their vendor since May 2020
    • a9s Prometheus Grafana 8: Grafana 8 is end-of-life by their vendor since June 2023

    The creation of new a9s Data Service Instances for these deprecated versions is now disabled by default in the a9s Data Service Bundle and we no longer provide regular support for these versions. The corresponding documentation has been removed.

    Although we will not intentionally break running Service Instances of these unsupported versions, it cannot be guaranteed that they still work as expected after an update to this release.

  • a9s Redis: End of Support: Terminate support for the following deprecated a9s Data Service version:

    • a9s Redis v6.2: Redis 6.2 is end-of-life by their vendor since September 2023

    The creation of new a9s Data Service Instances for this deprecated version is now disabled by default in the a9s Data Service Bundle and we no longer provide regular support for this version. The corresponding documentation has been removed.

    Although we will not intentionally break running Service Instances of this unsupported version, it cannot be guaranteed that they still work as expected after an update to this release.

Removed

  • docs: Platform Operator: a9s PostgreSQL: Remove a9s PostgreSQL 11 from the "a9s Data Service Release Lifecycle Table" page. For more information, see a9s Platform Operator Sunrise Sunset - a9s Data Services Life-Cycle Stages.
  • docs: Platform Operator: a9s Redis: Remove a9s Redis 6.2 from the "a9s Data Service Release Lifecycle Table" page. For more information, see a9s Platform Operator Sunrise Sunset - a9s Data Services Life-Cycle Stages.

Fixed

  • a9s KeyValue: Ensure Logstash uses the default Log4j2 config file from the vendor as the base configuration. This change allows BOSH's logrotate and Log4j2 to properly rotate their assigned logs, instead of overlapping each other.
  • a9s LogMe2: Ensure OpenSearch uses the default Log4j2 config file from the vendor as the base configuration. This change allows BOSH's logrotate and Log4j2 to properly rotate their assigned logs, instead of overlapping each other.
  • a9s Messaging: Ensure Logstash uses the default Log4j2 config file from the vendor as the base configuration. This change allows BOSH's logrotate and Log4j2 to properly rotate their assigned logs, instead of overlapping each other.
  • a9s Messaging: Fix syslog configuration incompatibility between Logstash v6 and Logstash v8.
  • a9s PostgreSQL: a9s PostgreSQL 15: Ensure that the lock directory (/var/vcap/store/postgresql15-locks) permissions are reset during updates.
  • a9s Search: Ensure Logstash uses the default Log4j2 config file from the vendor as the base configuration. This change allows BOSH's logrotate and Log4j2 to properly rotate their assigned logs, instead of overlapping each other.
  • a9s Search: Ensure OpenSearch uses the default Log4j2 config file from the vendor as the base configuration. This change allows BOSH's logrotate and Log4j2 to properly rotate their assigned logs, instead of overlapping each other.

Security

  • a9s Service Dashboard: Fix CVEs:
    • CVE-2024-21538
    • CVE-2024-45296
    • CVE-2024-45590
    • CVE-2024-52798

Upcoming

  • a9s Messaging: Deprecation: Prepare for the upcoming deprecation phase, planned for the release v59.0.0 (expected end of March 2025), of the following a9s Data Service versions:

    • a9s Messaging v3.12: RabbitMQ 3.12 is end-of-life by their vendor since June 2024
    • a9s Messaging v3.13: RabbitMQ 3.13 is end-of-life by their vendor since Sept 2024

    Please ensure that you organize the migration of your existing Service Instances to a more up-to-date version of the same a9s Data Service:

    • for a9s Messaging v3.12: a9s Messaging v4.0 is available as GA version.
    • for a9s Messaging v3.13: a9s Messaging v4.0 is available as GA version.

    The deprecation phase is planned to last until v62.0.0 (expected end of June 2025), in which the unsupport phase of the deprecated versions will start. The creation of new a9s Data Service Instances for these particular versions will then be disabled by default in the a9s Data Service Bundle and we will not provide regular support for these versions. The corresponding documentation will also be removed. Therefore, we strongly recommend that you start your migrations to a supported GA version as soon as possible and complete them until the end of the deprecation phase. For more information, see a9s Platform Operator - Sunrise Sunset.

    To inquire about extended support for a deprecated version, please get in contact with our sales department at sales@anynines.com.

  • a9s MySQL: End of Support: Terminate support, starting from anynines deployment v59.0.0 (expected end of March 2025), for the following deprecated a9s Data Service version:

    • a9s MySQL v10.4: MySQL 10.4 is end-of-life by their vendor since June 2024

    The creation of new a9s Data Service Instances for this deprecated version will be disabled by default in the a9s Data Service Bundle and we will not provide regular support for this version. The corresponding documentation will also be removed.

    Although we will not intentionally break running Service Instances of this unsupported version, it cannot be guaranteed that they still work as expected after an update to v59.0.0.

· 12 min read

Added

  • breaking change a9s Messaging: We consider Messaging 4.0 as stable now. You have to set the following properties:
    • rabbitmq_service.services.a9s-messaging40.name
    • rabbitmq_service.services.a9s-messaging40.guid
    • rabbitmq_service.services.a9s-messaging40.description
    • rabbitmq_service.services.a9s-messaging40.label
    • rabbitmq_service.services.a9s-messaging40.version
    • rabbitmq_service.services.a9s-messaging40.bindable
    • rabbitmq_service.services.a9s-messaging40.requires
    • rabbitmq_service.services.a9s-messaging40.tags
    • rabbitmq_service.services.a9s-messaging40.documentation_url
    • rabbitmq_service.services.a9s-messaging40.metadata
    • rabbitmq_service.services.a9s-messaging40.dashboard_client.id
    • rabbitmq_service.services.a9s-messaging40.plans-to-test
    • rabbitmq_service.services.a9s-messaging40.planupdates-to-test
  • all services: Add Ops file ops/global-syslog-endpoints.yml to set a global syslog specification. Note: This ops file only works with the following services:
    • a9s KeyValue
    • a9s Messaging
    • a9s Search
  • all services: a9s Backup Manager: Adjust the a9s Backup Manager so to that it informs the a9s Service Broker when a restore operation has finished, so that it can properly reconcile the Service Instance's state.
  • all services: a9s Service Broker: Extend the a9s Service Broker so that it can reconcile a Service Instance's state.
  • a9s Billing: Fix Add a9s Invoices Ops File to enable the export to a9s Invoices.
  • a9s KeyValue: Add ops/enable_rc_services/keyvalue.ymlwith the following properties to introduce a9s Keyvalue 1.0.0 as an a9s Release Candidate:
    • keyvalue_service.services.a9s-keyvalue8.name
    • keyvalue_service.services.a9s-keyvalue8.guid
    • keyvalue_service.services.a9s-keyvalue8.description
    • keyvalue_service.services.a9s-keyvalue8.label
    • keyvalue_service.services.a9s-keyvalue8.version
    • keyvalue_service.services.a9s-keyvalue8.bindable
    • keyvalue_service.services.a9s-keyvalue8.requires
    • keyvalue_service.services.a9s-keyvalue8.tags
    • keyvalue_service.services.a9s-keyvalue8.documentation_url
    • keyvalue_service.services.a9s-keyvalue8.metadata
    • keyvalue_service.services.a9s-keyvalue8.dashboard_client.id
    • keyvalue_service.services.a9s-keyvalue8.plans
    • keyvalue_service.services.a9s-keyvalue8.plans-to-test
    • keyvalue_service.services.a9s-keyvalue8.planupdates-to-test
  • a9s KeyValue: Release a9s KeyValue 8 as RC. For more information, see a9s Platform Operator - Sunrise Sunset.
  • a9s Messaging: Add configuration global_syslog_endpoints to allow global specification of syslog endpoints. Use the Ops file ops/global-syslog-endpoints.yml to set these for Service Instances.
  • a9s MongoDB: a9s Backup Agent: Implement logic to execute reconfiguration scripts after an external restore has been completed.
  • a9s MongoDB: a9s MongoDB SPI: Introduce reconcile logic to update the value of the default_database attribute in the Service Broker database after an external restore has been completed.
  • a9s MongoDB:
    • a9s MongoDB 7 SSPL: Add functionality to make the cluster operational after an external restore. These changes enable the Disaster Recovery feature.
  • a9s Search: Add new Configuration global_syslog_endpoints to allow global specification of syslog endpoints. Use the Ops file ops/global-syslog-endpoints.yml to set these for Service Instances.
  • docs: Application Developer: all services: Add disk metrics to Graphite metrics documentation. For more information, see Graphite Metrics.
  • docs: Application Developer: all services: Add subsection referencing system metrics in the metrics section. For more information, see for example a9s PostgreSQL Metrics.
  • docs: Application Developer: a9s KeyValue: Add a note explaining the behavior of a9s KeyValue in non-persistent mode. For more information, see Change RDB Persistence Settings.
  • docs: Application Developer: a9s PostgreSQL: Add a migration matrix to visually display the allowed migration paths to the a9s PostgreSQL's Migration page. For more information, see Migration - Migration Matrix.
  • docs: Platform Operator: a9s KeyValue: Add a note explaining the behavior of a9s KeyValue in non-persistent mode. For more information, see Reserved Disk Space.
  • docs: Platform Operator: a9s MariaDB: Extend the Custom Parameters Configuration documentation to include a reference to the Custom Parameters configuration per Service plan. For more information, see Custom Parameter Configuration per Service Plan.
  • docs: Platform Operator: a9s Messaging: Add a9s Messaging 4.0 as a9s General Availability. For more information, see a9s Platform Operator Sunrise Sunset.
  • docs: Platform Operator: Service Catalog: Extend the Custom Parameters Configuration per Service Plan documentation to include a reference to the MariaDB SPI configuration documentation. For more information, see Custom Parameter Configuration.

Changed

  • all services: a9s Backup Agent: Update internal dependencies.
  • all services: a9s BOSH Deployer: Update internal dependencies.
  • all services: a9s CF Service Guard: Update internal dependencies.
  • all services: a9s Deployment Updater: Update internal dependencies.
  • all services: a9s DS API Gateway: Refactor internal components to remove redundant vendored packages.
  • all services: a9s Service Broker: Update internal dependencies.
  • all services: a9s Smoke Tests: Update internal dependencies.
  • all services: a9s Template Uploader Errand: Update internal dependencies.
  • all services:
    • bpm 1.4.5
    • routing 0.321.0
  • a9s Backup Services: a9s Backup Manager: Update internal dependencies.
  • a9s Backup Services: a9s Backup Monit: Update internal dependencies.
  • a9s KeyValue: a9s KeyValue SPI: Update internal dependencies.
  • a9s KeyValue:
    • a9s KeyValue 8:
      • logstash v8.16.1
  • a9s LogMe2:
    • Fluentd:
      • aws-eventstream v1.3.0
      • aws-partitions v1.1004.0
      • aws-sdk-core v3.212.0
      • aws-sigv4 v1.10.1
      • concurrent-ruby v1.3.4
      • cool.io v1.9.0
      • excon v0.112.0
      • faraday v2.12.0
      • faraday-excon v2.2.0
      • faraday-net_http v3.3.0
      • fluent-plugin-opensearch v1.1.5
      • fluentd v1.17.1
      • json v2.8.1
      • logger v1.6.1
      • msgpack v1.7.5
      • net-http v0.5.0
      • opensearch-ruby v3.4.0
      • rexml v3.3.9
      • serverengine v2.4.0
      • tzinfo-data v1.2024.2
      • uri v1.0.1
      • webrick v1.9.0
    • OpenSearch
      • OpenSearch v2.18.0
      • OpenSearch Dashboards v2.18.0
      • OpenSearch Plugin Repository Azure v2.18.0
      • OpenSearch Plugin Repository S3 v2.18.0
  • a9s LogMe2: a9s LogMe2 SPI: Update internal dependencies.
  • a9s MariaDB: a9s MariaDB SPI: Update internal dependencies.
  • a9s MariaDB:
    • a9s MariaDB 10.11:
      • mariadb v10.11.10
    • a9s MariaDB 10.6:
      • mariadb v10.6.20
  • a9s Messaging: a9s RabbitMQ SPI: Update internal dependencies.
  • a9s Messaging: a9s RabbitMQ SPI: Update SPI to allow new Syslog Parameters.
  • a9s Messaging:
    • a9s Messaging 4.0:
      • logstash v8.16.1
  • a9s MongoDB: SPI: Update dependencies in the a9s MongoDB SPI.
  • a9s MongoDB:
    • mongodb70sspl:
      • mongodb v7.0.15
      • mongosh v2.3.3
    • mongodb50sspl
      • mongodb v5.0.30
  • a9s PostgreSQL: SPI: Update dependencies in the a9s PostgreSQL SPI.
  • a9s PostgreSQL: a9s PostgreSQL 15: Refactor logging of the a9s PostgreSQL service and improve log messages by logging also debug information when the a9s PostgreSQL process is started.
  • a9s PostgreSQL:
    • a9s PostgreSQL 13:
      • CMake v3.31.1
      • PostgreSQL v13.18
    • a9s PostgreSQL 15:
      • PostgreSQL v15.10
  • a9s Prometheus: SPI: Update dependencies in the a9s Prometheus SPI.
  • a9s Prometheus:
    • promgraf2:
      • prometheus to v2.53.3
      • bosh_exporter to v3.6.5
      • postgres_exporter to v0.16.0
      • memcached_exporter to v0.15.0
      • mysqld_exporter to v0.16.0
      • collectd_exporter to v0.7.0
      • consul_exporter to v0.13.0
      • stackdriver_exporter to v0.17.0
      • cadvisor to v0.51.0
      • graphite_exporter to v0.16.0
      • influxdb_exporter to v0.12.0
    • prometheus-legacy:
      • prometheus to v2.53.3
      • bosh_exporter to v3.6.5
      • postgres_exporter to v0.16.0
      • memcached_exporter to v0.15.0
      • mysqld_exporter to v0.16.0
      • collectd_exporter to v0.7.0
      • consul_exporter to v0.13.0
      • stackdriver_exporter to v0.17.0
      • cadvisor to v0.51.0
      • graphite_exporter to v0.16.0
      • influxdb_exporter to v0.12.0
    • prometheus2:
      • prometheus to v2.53.3
      • bosh_exporter to v3.6.5
      • postgres_exporter to v0.16.0
      • memcached_exporter to v0.15.0
      • mysqld_exporter to v0.16.0
      • collectd_exporter to v0.7.0
      • consul_exporter to v0.13.0
      • stackdriver_exporter to v0.17.0
      • cadvisor to v0.51.0
      • graphite_exporter to v0.16.0
      • influxdb_exporter to v0.12.0
  • a9s Redis: SPI: Update dependencies in the a9s Redis SPI.
  • a9s Search:
    • logstash v8.16.1
    • OpenSearch v2.18.0
    • OpenSearch Dashboards v2.18.0
    • OpenSearch Plugin Repository Azure v2.18.0
    • OpenSearch Plugin Repository S3 v2.18.0
  • docs: Application Developer: all services: Update the Disaster Recovery Documentation to add information related to a9s MongoDB's Disaster Recovery. For more information, see Disaster Recovery.
  • docs: Application Developer: a9s KeyValue: Extend syslog endpoint format to allow specification of endpoints with TLS encryption. For more information, see Add a Syslog Endpoint.
  • docs: Application Developer: a9s KeyValue: Fix general typos. For more information, see Using a9s KeyValue.
  • docs: Application Developer: a9s Messaging: Extend syslog endpoint format to allow specification of endpoints with TLS encryption. For more information, see Add a Syslog Endpoint.
  • docs: Application Developer: a9s MongoDB: Extend the forking guide of the "Using a9s MongoDB" page to include the steps to fork an a9s MongoDB Service Instance via the Disaster Recovery feature. For more information, see Using a9s MongoDB - Creating a Fork of a Service Instance.
  • docs: Application Developer: a9s Redis: Fix general typos. For more information, see Using a9s Redis.
  • docs: Application Developer: a9s Search: Change syslog endpoint format to allow specification of endpoints with TLS encryption. For more information, see Add a Syslog Endpoint.
  • docs: Platform Operator: all services: Update the list of Data Services that support the Disaster Recovery feature to include a9s Messaging and a9s MongoDB. For more information, see Disaster Recovery.
  • docs: Platform Operator: a9s KeyValue: Fix general typos. For more information, see a9s KeyValue Resources Considerations.
  • docs: Platform Operator: a9s KeyValue: Update a9s Data Services Release Cycles and a9s Data Service Release Lifecycle Table. For more information, see a9s Data Services Release Cycles.
  • docs: Platform Operator: a9s Messaging: Add the required port 5671 for AMQPS of the a9s Messaging Data Service. For more information, see a9s Platform Required Ports
  • docs: Platform Operator: a9s Redis: Fix general typos. For more information, see a9s Redis Resources Considerations.
  • docs: Platform Operator: a9s Template Uploader Errand: Add global_syslog_endpoints parameter for template_uploader_errand. In contrast to global_syslog_endpoint, this parameter supports multiple endpoints with optional TLS encryption. For more information, see Syslog Endpoints Configuration With TLS Support.
  • BOSH stemcell: all services: Update Jammy stemcell to version 1.651 for internal tests of all supported services.
  • INTERNAL RELEASE a9s MongoDB: a9s MongoDB SSPL: Removed monit_debugger from monit tool.

Unsupported

  • a9s Messaging: End of Support: Terminate support for the following deprecated data service versions:

    • a9s Messaging 3.7
    • a9s Messaging 3.8

    The creation of new a9s Data Service Instances for these deprecated versions is now disabled by default in the a9s Data Service Bundle and we no longer provide regular support for these versions. The corresponding documentation has been removed.

    Although we will not intentionally break running a9s Data Service Instances of these unsupported versions, it cannot be guaranteed that they still work as expected after an update to this release.

  • a9s Redis: End of Support: Terminate support for the following deprecated a9s Data Service version:

    • a9s Redis 5.0

    The creation of new a9s Data Service Instances for this deprecated version is now disabled by default in the a9s Data Service Bundle and we no longer provide regular support for this version. The corresponding documentation has been removed.

    Although we will not intentionally break running a9s Data Service Instances of this unsupported version, it cannot be guaranteed that they still work as expected after an update to this release.

Removed

  • docs: Application Developer: all services: Remove unusable parameter interval when setting syslog endpoint via a Custom Parameter. For more information, see for example Using a9s PostgreSQL - Add a Syslog Endpoint.
  • docs: Platform Operator: all services: Remove the a9s Backup Manager and a9s Backup Agent memory threshold configuration. For more information, see Memory Limit Thresholds.
  • docs: Platform Operator: all services: Remove Setup a Global Syslog Endpoint via Runtime Plugin page.

Fixed

  • all services: a9s Backup Agent: Fix parsing of the backup store's endpoint URL when using a generic S3 backup store.
  • all services: a9s Backup Agent: Fix storage connection timeouts that could happen while restoring big backups. The fix will only apply for backups created after the update of the a9s Backup Agent.
  • all services: a9s Backup Agent: Allow multiple CAs to verify the a9s Backup Manager server certificate. This is particularly necessary for a CA certificate rotation, as both the new and the old certificate must be available to verify the server certificate during the rotation.
  • a9s Backup Manager: Fix parsing of the backup store's endpoint URL when using a generic S3 backup store.
  • a9s Backup Manager: Remove outdated restart-above-memory-usage feature to prevent unnecessary restarts of the a9s Backup Manager processes, which could cause delays in backup scheduling.
  • a9s Backup Manager: Allow multiple CAs to verify the a9s Backup Agents' server certificates. This is particularly necessary for a CA certificate rotation, as both the new and the old certificate must be available to verify the server certificate during the rotation.
  • a9s Backup Monit: Fix parsing of the backup store's endpoint URL when using a generic S3 backup store.
  • a9s Backup Monit: Remove outdated restart-above-memory-usage feature to prevent unnecessary restarts of the a9s Backup Monit process.
  • a9s KeyValue: Fix an issue where data was incorrectly restored after restarting the ValKey process with the persistence feature disabled.

Security

  • all services: a9s Backup Agent: Fix CVEs:
    • CVE-2024-49761
  • all services: a9s BOSH Deployer: Fix CVEs:
    • CVE-2024-41123
    • CVE-2024-34459
    • CVE-2024-28103
    • CVE-2024-49761
  • all services: a9s CF Service Guard: Fix CVEs:
    • CVE-2024-41123
    • CVE-2024-34459
    • CVE-2024-28103
    • CVE-2024-49761
  • all services: a9s Deployment Updater: Fix CVEs:
    • CVE-2024-41123
    • CVE-2024-41946
    • CVE-2024-49761
  • all services: a9s Service Broker: Fix CVEs:
    • CVE-2024-41123
    • CVE-2024-34459
    • CVE-2024-28103
    • CVE-2024-49761
    • CVE-2024-41946
  • all services: a9s Service Dashboard: Fix CVE-2024-21536
  • all services: a9s Smoke Tests: Fix CVEs:
    • CVE-2024-34459
    • CVE-2024-28103
  • all services: a9s Template Uploader Errand: Fix CVEs:
    • CVE-2024-41123
    • CVE-2024-41946
    • CVE-2024-49761
  • a9s Backup Manager: Fix CVEs:
    • CVE-2024-49761
  • a9s Backup Monit: Fix CVEs:
    • CVE-2024-34459
    • CVE-2024-41123
    • CVE-2024-41946
    • CVE-2024-49761
  • a9s KeyValue: SPI: Fix CVEs:
    • CVE-2024-41123
    • CVE-2024-41946
    • CVE-2024-49761
  • a9s LogMe2: SPI: Fix CVEs:
    • CVE-2024-41123
    • CVE-2024-41946
    • CVE-2024-49761
  • a9s MariaDB: SPI: Fix CVEs:
    • CVE-2024-41123
    • CVE-2024-41946
    • CVE-2024-49761
  • a9s Messaging: SPI: Fix CVEs:
    • CVE-2024-41123
    • CVE-2024-41946
    • CVE-2024-49761
  • a9s MongoDB: SPI: Fix CVEs:
    • CVE-2024-41123
    • CVE-2024-41946
    • CVE-2024-49761
  • a9s PostgreSQL: SPI: Fix CVEs:
    • CVE-2024-41123
    • CVE-2024-41946
    • CVE-2024-49761
  • a9s Prometheus: SPI: Fix CVEs:
    • CVE-2024-41123
    • CVE-2024-41946
    • CVE-2024-49761
  • a9s Redis: SPI: Fix CVEs:
    • CVE-2024-41123
    • CVE-2024-41946
    • CVE-2024-49761

· 5 min read

Added

  • all services: a9s Template Uploader Errand: Add templates for a9s Messaging 4.0.
  • a9s Messaging: Introduce a9s Messaging 4.0 as an a9s Release Candidate.
  • a9s Messaging: Add ops/enable_rc_services/messaging40.yml with the following new properties to introduce a9s Messaging 4.0 as an a9s Release Candidate:
    • rabbitmq_service.services.a9s-messaging40.name
    • rabbitmq_service.services.a9s-messaging40.guid
    • rabbitmq_service.services.a9s-messaging40.description
    • rabbitmq_service.services.a9s-messaging40.label
    • rabbitmq_service.services.a9s-messaging40.version
    • rabbitmq_service.services.a9s-messaging40.bindable
    • rabbitmq_service.services.a9s-messaging40.requires
    • rabbitmq_service.services.a9s-messaging40.tags
    • rabbitmq_service.services.a9s-messaging40.documentation_url
    • rabbitmq_service.services.a9s-messaging40.metadata
    • rabbitmq_service.services.a9s-messaging40.dashboard_client.id
    • rabbitmq_service.services.a9s-messaging40.plans
    • rabbitmq_service.services.a9s-messaging40.plans-to-test
    • rabbitmq_service.services.a9s-messaging40.planupdates-to-test
  • a9s Messaging: Add example config for a9s Messaging 4.0 to rabbitmq.yml.example.
  • a9s Messaging: Add Disaster Recovery support for a9s Messaging 3.13 and 4.0
  • a9s Messaging: Add Logstash8 to a9s Messaging 4.0.
  • docs: Platform Operator: a9s Messaging: Add the available templates for the a9s Messaging 4.0 Data Service. For more information, see Available Templates.
  • docs: Platform Operator: a9s Messaging: Add the required ports for the a9s Messaging 4.0 Data Service. For more information, see a9s Platform Required Ports

Changed

  • all services:
    • bpm 1.4.1
    • nginx v1.27.2
    • routing 0.317.0
  • all services: a9s Service Dashboard: Update internal dependencies.
  • a9s Backup Manager: Adapt the a9s Backup Manager to better differentiate between Disaster Recovery and normal restore.
  • a9s KeyValue:
    • a9s KeyValue 8:
      • Valkey 8.0.1
      • logstash v8.15.3
  • a9s LogMe2:
    • OpenSearch v2.17.1
    • OpenSearch Dashboards v2.17.1
    • OpenSearch Plugin Repository Azure v2.17.1
    • OpenSearch Plugin Repository S3 v2.17.1
  • a9s Messaging:
    • a9s Messaging 3.13:
      • rabbitmq 3.13.7
      • erlang v25.3.2.14
      • Python 3.12.6
    • a9s Messaging 3.12:
      • erlang v25.3.2.14
      • Python 3.12.6
  • a9s Messaging: a9s Messaging SPI: Update internal dependencies.
  • a9s MongoDB:
    • mongodb70sspl:
      • mongosh v2.3.2
  • a9s PostgreSQL:
    • a9s PostgreSQL 13:
      • cmake3 v3.30.4
  • a9s Prometheus:
    • prometheus2:
      • statsd_exporter v0.27.2
    • promgraf2:
      • statsd_exporter v0.27.2
    • prometheus-legacy:
      • statsd_exporter v0.27.2
  • a9s Redis:
    • a9s Redis 7:
      • Redis 7.2.6
    • a9s Redis 6:
      • Redis 6.2.16
  • a9s Search:
    • OpenSearch v2.17.1
    • OpenSearch Dashboards v2.17.1
    • OpenSearch Plugin Repository Azure v2.17.1
    • OpenSearch Plugin Repository S3 v2.17.1
  • docs: Application Developer: Mention a9s Messaging as an a9s Data Service supporting Disaster Recovery. For more information, see Disaster Recovery.
  • docs: Application Developer: a9s Messaging: Extend the a9s Messaging documentation to support a9s Messaging 4.0. For more information, see Using a9s Messaging.
  • docs: Application Developer: a9s Messaging: Extend the migration documentation to include a9s Messaging 4.0. For more information, see a9s Messaging Migration.
  • docs: Application Developer: a9s Messaging: Extend documentation to include the use of the Disaster Recovery function as both a migration and a Service Instance forking method. For more information, see Using a9s MariaDB - Fork an a9s Messaging Service Instance Using the Disaster Recovery Feature and a9s Messaging Migration.

Deprecated

  • a9s MongoDB: Deprecation: Deprecate the following a9s Data Service version:

    • a9s MongoDB 5

    Please ensure that you organize the migration of your existing instances to a more up-to-date version of the same a9s Data Service:

    • for a9s MongoDB: a9s MongoDB 7 is available as a GA version.

    This deprecation follows the announcement in v51.0.0. The deprecation phase is planned to last until v60.0.0 (expected end of April 2025), in which the deprecated version will become unsupported. The creation of new a9s Data Service instances for this particular version will then be disabled by default in the a9s Data Service Bundle and we will not provide regular support for this version. The corresponding documentation will also be removed. Therefore, we strongly recommend that you start your migrations to a supported GA version as soon as possible and complete them until the end of the deprecation phase. For more information, see a9s Platform Operator Sunrise Sunset.

    To inquire about extended support for a deprecated version, please get in contact with our sales department at sales@anynines.com.

Removed

  • maintenance: Remove a9s Harbor remnants from config examples and Ops files. This a9s Data Service is unsupported since anynines-deployment v37.0.0.
  • maintenance: Remove a9s Kubernetes remnants from config examples and Ops files. This a9s Data Service is unsupported since anynines-deployment v37.0.0.

Fixed

  • a9s KeyValue: Fix backup_manager_api_endpoint property in the templates-uploader errand.
  • docs: all services: Fix inconsistent links. For more information, see [a9s Data Services Installation](docs/ platform-operator/installation.mdx), [a9s Platform Operator - a9s PostgreSQL Switchover](docs/platform-operator/ a9s-postgresql/switchover.md).
  • docs: Application Developer: a9s KeyValue: Resize the a9s KeyValue logo displayed on the index page. For more information, see a9s KeyValue.
  • docs: Application Developer: a9s KeyValue: Improve documentation regrading SSH tunnels to SSL instances.
  • docs: Application Developer: a9s Redis: Improve documentation regrading SSH tunnels to SSL instances.

Security

  • a9s KeyValue: Fix CVEs:
    • CVE-2024-31449
    • CVE-2024-31228
    • CVE-2024-31227
  • a9s LogMe2: Fix CVE:
    • CVE-2024-45296
  • a9s Messaging: Fix CVEs:
    • CVE-2024-7592
    • CVE-2024-6232
  • a9s Redis: Fix CVEs:
    • CVE-2024-31449
    • CVE-2024-31228
    • CVE-2024-31227
  • a9s Service Dashboard: Fix CVEs:
    • CVE-2024-4067
    • CVE-2024-43788
    • CVE-2024-43796
    • CVE-2024-43800
    • CVE-2024-45296
    • CVE-2024-45590
    • CVE-2024-47068

Upcoming

  • a9s Messaging: End of Support: Terminate support, starting from anynines deployment v57.0.0 (expected end of January 2025), for the following deprecated a9s Data Service version:

    • a9s Messaging 3.10

    The creation of new a9s Data Service instances for this deprecated version will be disabled by default in the a9s Data Service Bundle and we will not provide regular support for this version. The corresponding documentation will also be removed.

    Although we will not intentionally break running instances of this unsupported version, it cannot be guaranteed that they still work as expected after an update to v57.0.0.

· 12 min read

Added

  • breaking change all services: a9s Backup Agent: Add a communication channel through port 3002 (mTLS) of the a9s Backup Manager, so that the a9s Backup Agent can push information to the a9s Backup Manager when necessary. For more information, see a9s Platform Required Ports.
  • a9s KeyValue: Introduce a9s KeyValue 8 as Beta. To enable it use the Ops file ops/enable_beta_services/keyvalue.yml where the following properties must be set:
    • keyvalue_service.services.a9s-keyvalue8.name
    • keyvalue_service.services.a9s-keyvalue8.guid
    • keyvalue_service.services.a9s-keyvalue8.description
    • keyvalue_service.services.a9s-keyvalue8.label
    • keyvalue_service.services.a9s-keyvalue8.version
    • keyvalue_service.services.a9s-keyvalue8.bindable
    • keyvalue_service.services.a9s-keyvalue8.requires
    • keyvalue_service.services.a9s-keyvalue8.tags
    • keyvalue_service.services.a9s-keyvalue8.documentation_url
    • keyvalue_service.services.a9s-keyvalue8.metadata
    • keyvalue_service.services.a9s-keyvalue8.dashboard_client.id
    • keyvalue_service.services.a9s-keyvalue8.plans
    • keyvalue_service.services.a9s-keyvalue8.plans-to-test
    • keyvalue_service.services.a9s-keyvalue8.planupdates-to-test For more information, see a9s Platform Operator Sunrise Sunset - Beta.
  • a9s KeyValue: Add an example config for a9s KeyValue 8 to config/keyvalue.yml.example.
  • a9s LogMe2: Add instances_fluentd as an optional property to the logme2-cluster template with a default value of 1. For more information, see Scale Fluentd Nodes.
  • docs: Application Developer: a9s KeyValue: Add initial documentation for a9s KeyValue. For more information, see a9s KeyValue.
  • docs: Application Developer: a9s KeyValue: Update existing common documentation with references to a9s KeyValue.
  • docs: Application Developer: a9s MariaDB: Provide an example on how to drop all the custom databases through the databases custom parameter. For more information, see Using a9s MariaDB - databases Parameter
  • docs: Application Developer: a9s Redis: Add further information about persistency behavior. For more information, see Using a9s Redis - Change RDB Persistence Settings.
  • docs: Application Developer: a9s Service Dashboard: Add information on how to allow/block automatic updates via the a9s Service Dashboard. For more information, see Using a9s Service Dashboard - Update the Service Instance
  • docs: Platform Operator: all services: Add documentation on how to access security logs. For more information, see Security Logs.
  • docs: Platform Operator: a9s-pg: Add a page detailing the cluster recovery process for a9s-pg. For more information, see a9s-pg Cluster Recovery.
  • docs: Platform Operator: a9s KeyValue: Add initial documentation for a9s KeyValue. For more information, see a9s KeyValue.
  • docs: Platform Operator: a9s KeyValue: Update existing common documentation with references to a9s KeyValue.
  • docs: Platform Operator: a9s PostgreSQL: Add a new step describing how to clean up the repmgr database. For more information, see a9s PostgreSQL Manual Logical Backup Recovery - Cleanup repmgr.

Changed

  • breaking change all services: a9s Backup Agent: Complete refactoring of the a9s Backup Agent and overhaul of the general backup system architecture to:
    • support mTLS as the only communication between the a9s Backup Agent and the a9s Backup Manager
    • speed up the communication between the a9s Backup Agent and a9s Backup Manager by pushing the necessary information as soon as the task has finished instead of polling the various states at defined intervals
    • improve error handling and logging, and increase the resilience of the entire a9s Backup Agent
  • breaking change a9s Backup Manager: Rename the deployment manifest variable, which stores the a9s Backup Manager Server certificate, from a9s_backup_manager_tls_cert to backup_manager_server_cert for consistency.
  • breaking change a9s Backup Manager: Change the Common Name (CN) of the a9s Backup Manager Server certificate from the Fully Qualified Domain Name (FQDN) to the generic string a9s Backup Manager TLS Certificate. As the CN can only contain a certain amount of characters, the FQDN can end up being too long, depending on the Consul domain configuration. With this we also follow the deprecation of the CN to verify the server identity as described in RFC2818.
  • breaking change a9s Backup Manager: Change the default port for the communication from the a9s Backup Manager to the a9s Backup Agent from 3000 (non-TLS) to 3001 (mTLS). For more information, see a9s Platform Required Ports.
  • breaking change a9s Billing: Disable the export of invoices to a9s Invoices by default, since this component is not included by default with a9s Billing. To enable the export once more, the add_a9s_invoices.yml ops-file has been extended to set cf_billing.export to true.
  • breaking change a9s LogMe2: Enable backup tests of the a9s Smoke Tests by default.
  • all services:
    • bpm v1.3.3
    • nginx to v1.27.1
    • routing v0.311.0
  • all services: a9s DS API Gateway:
    • Go to v1.22.7
    • KrakenD to v2.7.2
  • a9s Backup Manager: Adapt the a9s Backup Manager and overhaul of the general backup system architecture to:
    • support mTLS as the only communication between the a9s Backup Manager and the a9s Backup Agents
    • speed up the communication between the a9s Backup Manager and the a9s Backup Agents by pushing the necessary information as soon as the task has finished instead of polling the various states at defined intervals
    • improve the resilience of the entire backup system in error cases
  • a9s Backup Services:
    • nginx to v1.27.1
  • a9s Messaging: a9s Messaging SPI: Update dependencies.
  • a9s MongoDB:
    • mongodb50sspl:
      • mongodb to v5.0.29
    • mongodb70sspl:
      • mongodb to v7.0.14
      • mongosh to v2.3.1
  • a9s PostgreSQL:
    • a9s PostgreSQL 13:
      • cmake3 to v3.30.3
  • a9s PostgreSQL: Optimize the backup and restore of WAL files for Service Instances with continuous archiving enabled. In combination with the adaptation of the backup system architecture, a major increase of the amount of archived WAL files per minute can be achieved.
  • a9s Prometheus:
    • prometheus2:
      • cadvisor to v0.50.0
      • consul_exporter to v0.12.1
      • graphite_exporter to v0.15.2
      • influxdb_exporter to v0.11.7
      • prometheus to v2.53.2
      • stackdriver_exporter to v0.16.0
      • statsd_exporter to v0.27.1
    • promgraf2:
      • cadvisor to v0.50.0
      • consul_exporter to v0.12.1
      • graphite_exporter to v0.15.2
      • influxdb_exporter to v0.11.7
      • prometheus to v2.53.2
      • stackdriver_exporter to v0.16.0
      • statsd_exporter to v0.27.1
    • prometheus-legacy:
      • cadvisor to v0.50.0
      • consul_exporter to v0.12.1
      • graphite_exporter to v0.15.2
      • influxdb_exporter to v0.11.7
      • prometheus to v2.53.2
      • stackdriver_exporter to v0.16.0
      • statsd_exporter to v0.27.1
  • a9s Search:
    • a9s Search 2:
      • opensearch to v2.16.0
      • opensearch-dashboards to v2.16.0
      • opensearch-plugin-repository-azure to v2.16.0
      • opensearch-plugin-repository-s3 to v2.16.0
  • docs: Application Developer: Update the links in the Disaster Recovery documentation to use the a9s Public API v1 and fix some broken links. For more information, see Disaster Recovery.
  • docs: Application Developer: Mention a9s KeyValue as an a9s Data Service supporting Disaster Recovery. For more information, see Disaster Recovery.
  • docs: Application Developer: a9s Prometheus: Update the links related to the telegraf-buildpack, as the existing version's stack was deprecated. Additionally, include a screenshot of an example dashboard to visualize the metrics being streamed from the application. For more information, see Using a Sidecar to Collect Application Metrics With a9s Prometheus.
  • docs: Platform Operator: Clean up the "a9s Platform Required Ports" page. For more information, see a9s Platform Required Ports.
  • docs: Platform Operator: all services: Extend documentation to clarify the handling of expired certificates. For more information, see Generated Certificates.
  • docs: Platform Operator: a9s PostgreSQL: Enhance the guide on how to identify the cluster primary during the cluster recovery process. For more information, see a9s PostgreSQL Cluster Recovery - 0. Identify the Cluster Primary and Cluster Status - Identifying Current Valid Primary of the Cluster.
  • BOSH stemcell: all services: Update Jammy stemcell to version 1.572 for internal tests of all supported services.

Deprecated

  • a9s MariaDB: Deprecation: Deprecate the following a9s Data Service version:

    • a9s MariaDB 10.4

    Please ensure that you organize the migration of your existing instances to a more up-to-date version of the same a9s Data Service:

    • for a9s MariaDB: a9s MariaDB 10.6 and 10.11 are available as GA versions.

    This deprecation follows the announcement in v50.0.0 . The deprecation phase is planned to last until v56.0.0 (expected end of December 2024), in which the deprecated version will become unsupported. The creation of new a9s Data Service instances for this particular version will then be disabled by default in the a9s Data Service Bundle and we will not provide regular support for this version. The corresponding documentation will also be removed. Therefore, we strongly recommend that you start your migrations to a supported GA version as soon as possible and complete them until the end of the deprecation phase. For more information, see a9s Platform Operator Sunrise Sunset.

    To inquire about extended support for a deprecated version, please get in contact with our sales department at sales@anynines.com.

Unsupported

  • a9s PostgreSQL: End of Support: Terminate support for the following deprecated a9s Data Service version:

    • a9s PostgreSQL 10

    The creation of new a9s Data Service instances for this deprecated version is now disabled by default in the a9s Data Service Bundle and we no longer provide regular support for this version. The corresponding documentation has been removed.

    Although we will not intentionally break running instances of this unsupported version, it cannot be guaranteed that they still work as expected after an update to this release.

Removed

  • breaking change a9s Backup Manager: Remove obsolete variables from the deployment manifest.
  • docs: Application Developer: a9s Service Dashboard: Remove unnecessary header from the "Using a9s Service Dashboard" page. For more information, see Using a9s Service Dashboard.
  • docs: Platform Operator: a9s PostgreSQL: Remove a9s PostgreSQL 10 from the "a9s Data Service Release Lifecycle Table" page. For more information, see a9s Platform Operator Sunrise Sunset - a9s Data Services Life-Cycle Stages.
  • REMOVAL OF OFFERING a9s Elasticsearch: Remove the offering of a9s Elasticsearch 2 from the a9s Data Services, as this version is now unsupported on account of it reaching its EOL on February 2018. We removed the files, version specific examples, references and documentation that relate to the unsupported version.
  • REMOVAL OF OFFERING a9s Messaging: Remove the offering of a9s Messaging 3.6 from the a9s Data Services, as this version is now unsupported on account of it reaching its EOL on May 2018. We removed the files, version specific examples, references and documentation that relate to the unsupported version.
  • REMOVAL OF OFFERING a9s MySQL: Remove the offering of a9s MySQL 10.1 from the a9s Data Services, as this version is now unsupported on account of it reaching its EOL on Octobre 2020. We removed the files, version specific examples, references and documentation that relate to the unsupported version.
  • REMOVAL OF OFFERING a9s Redis: Remove the offering of a9s Redis 3.2 from the a9s Data Services, as this version is now unsupported on account of it reaching its EOL on January 2017. We removed the files, version specific examples, references and documentation that relate to the unsupported version.
  • REMOVAL OF OFFERING a9s Redis: Remove the offering of a9s Redis 4.0 from the a9s Data Services, as this version is now unsupported on account of it reaching its EOL on January 2019. We removed the files, version specific examples, references and documentation that relate to the unsupported version.

Fixed

  • all services: a9s BOSH Deployer: Improve error handling.
  • all services: a9s DS API Gateway: Forward Content-Type and Accept header to the corresponding backends. This is necessary so that the respective backends can interpret the request correctly.
  • a9s-pg: Fix issue disabling reindex on major upgrade that would cause pre-start on the bootstrap node to fail.
  • a9s-pg: Fix potential exposure to data loss when executing a major upgrade. Data inserted to a blocked cluster would be discarded during the upgrade, causing data loss. The fix ensures the bootstrap node is up-to-date with the primary before moving on with the update procedure.
  • a9s-pg: Fix scenario with two primaries during a major upgrade. This occured when the last node to be updated was promoted to primary. This caused the update to fail and left the nodes unable to identify the current primary of the cluster.
  • a9s LogMe2: Ensure that the OpenSearch VM is updated first in order to prevent potential downtime in the OpenSearch Dashboards VM.
  • a9s MariaDB: a9s MariaDB SPI: Introduce connection timeouts to help prevent the SPI from being locked due to misbehaving Service Instances.
  • a9s PostgreSQL: Fix the panic message, occuring when archiving WAL files, in logs on Service Instances with continuous archiving enabled.
  • a9s Redis: a9s Redis 7: Fix an inconsistency in post-start that could incorrectly configure the cluster. This issue specifically affected clustered Service Instances with persistence enabled.
  • docs: all services: Fix several broken relative links under the Platform Developer and Application Developer paths to reflect the trailing slash configuration change.
  • docs: Application Developer: a9s DS API Gateway: Amend minor errors in the example cURL command of multiple endpoint. For more information, see a9s Public API.
  • docs: Application Developer: a9s DS API Gateway: Fix general typos. For more information, see a9s Public API.
  • docs: Application Developer: a9s LogMe2: Fix broken admonition in the "Using a9s LogMe2" page. For more information, see Using a9s LogMe2 - Supported Protocols and Limitations.
  • docs: Platform Operator: a9s Parachute: Update information regarding interdependency with ext4 file system reserved blocks. For more information, see a9s Parachute Concerns.
  • Add-on: a9s MongoDB SSPL: Adapt post-deploy script to ensure proper waiting for cluster initialization.

Security

  • a9s Backup Manager: Fix CVEs:
    • CVE-2024-28103
    • CVE-2024-41123
    • CVE-2024-41946
  • a9s Service Dashboard: Fix CVEs:
    • CVE-2024-22018
    • CVE-2024-22020
    • CVE-2024-27980
    • CVE-2024-36138

Upcoming

  • a9s Prometheus: End of Support: Terminate support, starting from anynines deployment v56.0.0 (expected end of December 2024), for the following deprecated a9s Data Service versions:

    • a9s Prometheus: Grafana 5
    • a9s Prometheus: Grafana 8

    The creation of new a9s Data Service instances for these deprecated versions will be disabled by default in the a9s Data Service Bundle and we will not provide regular support for these versions. The corresponding documentation will also be removed.

    Although we will not intentionally break running instances of these unsupported versions, it cannot be guaranteed that they still work as expected after an update to v56.0.0.

  • a9s Redis: End of Support: Terminate support, starting from anynines deployment v56.0.0 (expected end of December 2024), for the following deprecated a9s Data Service version:

    • a9s Redis 6.2

    The creation of new a9s Data Service instances for this deprecated version will be disabled by default in the a9s Data Service Bundle and we will not provide regular support for this version. The corresponding documentation will also be removed.

    Although we will not intentionally break running instances of this unsupported version, it cannot be guaranteed that they still work as expected after an update to v56.0.0.

· 5 min read

Added

  • breaking change a9s MariaDB: We consider MariaDB 10.11 as stable now. You have to set the following properties:
    • mariadb_service.services.a9s-mariadb1011.name
    • mariadb_service.services.a9s-mariadb1011.guid
    • mariadb_service.services.a9s-mariadb1011.description
    • mariadb_service.services.a9s-mariadb1011.label
    • mariadb_service.services.a9s-mariadb1011.version
    • mariadb_service.services.a9s-mariadb1011.bindable
    • mariadb_service.services.a9s-mariadb1011.requires
    • mariadb_service.services.a9s-mariadb1011.tags
    • mariadb_service.services.a9s-mariadb1011.documentation_url
    • mariadb_service.services.a9s-mariadb1011.metadata
    • mariadb_service.services.a9s-mariadb1011.dashboard_client.id
    • mariadb_service.services.a9s-mariadb1011.plans-to-test
    • mariadb_service.services.a9s-mariadb1011.planupdates-to-test
  • a9s-pg: Add optional support to upgrade a9s PostgreSQL from v11 to v15. For more information, see a9s-pg Major Upgrade.
  • a9s-pg: Specify the stemcell used in the new iaas.a9s_pg_jammy.stemcell property in the IaaS configuration file, which is used when upgrading to a9s PostgreSQL 15. See the config/iaas-config.yml.example for an example.
  • a9s LogMe2: Configure the number of workers in Fluentd based on the number of available CPUs.
  • docs: Application Developer: a9s MariaDB: Add new cluster-related metrics. For more information, see a9s MariaDB Metric Groups.
  • docs: Platform Operator: Add the "a9s Data Services Maintenance Policy" section to the "a9s Data Service Sunrise/Sunset for Major Versions" page. For more information, see a9s Platform Operator - Sunrise Sunset.
  • docs: Platform Operator: a9s MariaDB: Add a9s MariaDB 10.11 as a9s General Availability. For more information, see a9s Platform Operator Sunrise Sunset.
  • docs: Platform Operator: a9s PostgreSQL: Add a "Known Issue" page detailing how the execution of PostgreSQL's VACUUM command can potentially trigger a9s Parachute, and how to prevent it. For more information, see Vacuum and WAL Files Creation.
  • INTERNAL RELEASE a9s MariaDB:
    • a9s MariaDB 10.11: Include pt-stalk debugging tool with the MariaDB release.
  • INTERNAL RELEASE a9s PostgreSQL:
    • a9s PostgreSQL 11: Add endpoints to control node accessibility during major version upgrade.
    • a9s PostgreSQL 15: Add support to upgrade from v11 to v15, used for a9s-pg only.

Changed

  • consul-dns: Use default value for the allow_stale property. Default value was modified from false, to the default Consul version when not explicitly declared, true. The behavior has been modified to avoid a small downtime that while updating the leader of the Consul server. Value can be overwritten via the property consul.allow_stale.
  • a9s LogMe2:
    • Fluentd
      • rexml v3.3.5
  • a9s MariaDB:
    • a9s MariaDB 10.6:
      • mariadb v10.6.19
    • a9s MariaDB 10.11:
      • mariadb v10.11.9
  • a9s MongoDB:
    • mongodb70sspl:
      • mongosh v2.2.15
  • a9s PostgreSQL:
    • a9s PostgreSQL 13:
      • PostgreSQL v13.16
      • cmake3 v3.30.0
    • a9s PostgreSQL 15:
      • PostgreSQL v15.8
  • docs: Platform Operator: Adapt the "a9s-pg Major Upgrade" page. For more information, see a9s-pg Major Upgrade.
  • docs: Platform Operator: Extend the "a9s Data Services Installation" page to include information on how to handle a fresh installation using a9s PostgreSQL 15 directly. For more information, see Deploy a9s-pg.

Removed

  • docs: Platform Operator: Remove the "a9s-pg Major Upgrade from v9.4 to v11" page as this upgrade is no longer supported.
  • INTERNAL RELEASE a9s PostgreSQL:
    • a9s PostgreSQL 10: Removed unused internal code to support in-place major version upgrade.
    • a9s PostgreSQL 11: Removed unused internal code to support in-place major version upgrade.
    • a9s PostgreSQL 13: Removed unused internal code to support in-place major version upgrade.

Fixed

  • all services: a9s SPI: Fix the propagation of CAs in the first step of the rotation process. This allows both the old and new CA to be properly distributed and thus rotated out/in successfully.
  • a9s Messaging: Fix misconfigured a9s Service Dashboard client secret in the a9s Service Broker configuration.
  • a9s PostgreSQL:
    • a9s PostgreSQL 15: Fix duplicate cloning across clusters.
  • a9s Search: SPI: Ensure that unbinding or deleting a service key succeeeds if the user has been already deleted from the OpenSearch server.
  • docs: Platform Operator: Fix typos in the "a9s Data Service Sunrise/Sunset for Major Versions" page. For more information, see a9s Platform Operator - Sunrise Sunset.
  • docs: Platform Operator: Update and refactor the contents of the "a9s Data Services Release Lifecycle Table". For more information, see a9s Platform Operator Sunrise Sunset.

Upcoming

  • a9s Messaging: End of Support: Terminate support, starting from anynines deployment v55.0.0 (expected end of November), for the following deprecated a9s Data Service versions:

    • a9s Messaging 3.7
    • a9s Messaging 3.8

    The creation of new a9s Data Service instances for these deprecated versions will be disabled by default in the a9s Data Service Bundle and we will not provide regular support for these versions. The corresponding documentation will also be removed.

    Although we will not intentionally break running instances of these unsupported versions, it cannot be guaranteed that they still work as expected after an update to v55.0.0.

  • a9s PostgreSQL: End of Support: Terminate support, starting from anynines deployment v55.0.0 (expected end of November), for the following deprecated a9s Data Service version:

    • a9s PostgreSQL 11

    The creation of new a9s Data Service instances for this deprecated version will be disabled by default in the a9s Data Service Bundle and we will not provide regular support for this version. The corresponding documentation will also be removed.

    Although we will not intentionally break running instances of this unsupported version, it cannot be guaranteed that they still work as expected after an update to v55.0.0.

  • a9s Redis: End of Support: Terminate support, starting from anynines deployment v55.0.0 (expected end of November), for the following deprecated a9s Data Service version:

    • a9s Redis 5.0

    The creation of new a9s Data Service instances for this deprecated version will be disabled by default in the a9s Data Service Bundle and we will not provide regular support for this version. The corresponding documentation will also be removed.

    Although we will not intentionally break running instances of this unsupported version, it cannot be guaranteed that they still work as expected after an update to v55.0.0.