Jump to content
limetech

Unraid OS version 6.8.3 available

198 posts in this topic Last Reply

Recommended Posts

This is a bug fix and security update release.

 

To upgrade:

  • If you are running any 6.4 or later release, click 'Check for Updates' on the Tools/Update OS page.
  • If you are running a pre-6.4 release, click 'Check for Updates' on the Plugins page.
  • If the above doesn't work, navigate to Plugins/Install Plugin, select/copy/paste this plugin URL and click Install:
    https://s3.amazonaws.com/dnld.lime-technology.com/stable/unRAIDServer.plg

Bugs: If you discover a bug or other issue in this release, please open a Stable Releases Bug Report.

 

Overview:

  • Added ability to rebalance a btrfs cache pool to different btrs-raid levels.
  • Support a nifty password strength checker (requires the "Dynamix Password Validator" plugin).
  • Fixed issue where vdisk paths on /mnt/user were not being de-referenced due to qemu change.
  • Added ability to specify whether share file and directory names should be case sensitive or not via SMB.
  • Add docker container VPN network support.
  • Updated kernel, several base packages.
  • Several other small bug fixes.

 

Version 6.8.3 2020-03-05 Changes vs. 6.8.2

Base distro:

  • btrfs-progs: version 5.4.1
  • cryptsetup: version 2.3.0
  • mozilla-firefox: version 73.0.1 (CVE-2020-6796, CVE-2020-6797, CVE-2020-6798, CVE-2020-6799, CVE-2020-6800, CVE-2020-6801)
  • libarchive: version 3.4.2
  • libwebsockets: version 3.2.2
  • smartmontools: version 7.1
  • ttyd: version 20200211
  • wireguard-tools: version 1.0.20200206 (build 2)
  • xfsprogs: version 5.4.0

Linux kernel:

  • version 4.19.108 (CVE-2020-2732)
  • kernel-firmware: version 20200207_6f89735
  • oot: wireguard: version 0.0.20200215

Management:

  • rc.docker: Allow host access to containers on IPv6 subnets other then /64
  • rc.inet1: add delay to allow bond initialization
  • smb: add case-sensitiviy config setting per share
  • webgui: removed obsolete 'Notify My Android' notification agent
  • webgui: Docker settings: updated help text
  • webgui: Added "Reboot Now" in banner when OS upgrade is available
  • webgui: dockerMan: Add Security as a category
  • webgui: Docker: added container vpn network support:
    - allow extra parameters using --net= to overrule default network assignment
    - add vpn containers are referenced by name in network assignment
    - add update containers reference when vpn container is updated
  • webgui: Updated: animated spinner logic
  • webgui: Fixed VM settings: allow to stop service when no hardware support
  • webgui: Fixed plugin manager - show correct version for "next" branch
  • webgui: remove 'nl-be' from VM keyboard types
  • webgui: Dont force single threaded VMs for AMD
  • webgui: VMs: enable cpu cache passthrough; AMD + multithreaded
  • webgui: Other miscellaneous updates and css style corrections
  • webgui: Array button renaming
  • webgui: Docker: curl connection time to 15s
  • webgui: Fixed cloning of share attributes
  • webgui: Updated VMs table styling
  • webgui: Updated icon fonts
  • webgui: dockerMan: Add Security as a category
  • webgui: Block referrals to 3rd Party Sites
  • webgui: Fix: /mnt/user path transpose for VM disks
  • webgui: Preserve Reboot Required Notifications across pages
  • webgui: dockerMan: Preserve \n on overview in basic mode
  • webgui: diagnostics: Remove plain-text VNC password
  • webgui: Device Info: added automatic status updating
  • webgui: Added BTRFS balance mode dropdown options
  • webgui: Disallow characters incompatible with FAT32 in share names
  • webgui: Support dropbox/zxcvbn password stregth meter (requires plugin)
  • webgiu: dockerMan: Security enhancements
  • webgui: Notifications: Add switch to not send a browser notification:
    - Will be utilized by CA to send a notification, but not have the notification appear on the browser but rather as a banner warning

 

Version 6.8.2 2020-01-26 Changes vs. 6.8.1

Base distro:

  • fuse3: version 3.9.0
  • php: version 7.3.14 (CVE-2020-7060, CVE-2020-7059)
  • rpcbind: version 1.2.5 (rebuilt with --enable-rmtcalls option)
  • ttyd: version 20200120
  • wireguard-tools: version 1.0.20200121

Linux kernel:

  • version 4.19.98 (CVE-2019-14615)
  • CONFIG_ENIC: Cisco VIC Ethernet NIC Support
  • removed: CONFIG_IGB: Intel(R) 82575/82576 PCI-Express Gigabit Ethernet support
  • removed: CONFIG_IGBVF: Intel(R) 82576 Virtual Function Ethernet support
  • kernel-firmware: version 20200122_1eb2408
  • oot: Intel igb: version 5.3.5.42
  • oot: wireguard: version 0.0.20200121

Management:

  • rc.docker: include missing changes to suppoort new setting "Host access to custom networks"
  • rc.nginx: support custom wildcard SSL certs
  • webgui: User password: hide base64 conversion
  • webgui: Select username field when login page is loaded
  • webgui: login: autocapitalize="none"
  • webgui: Passphrase printable charcaters only
  • webgui: Encryption: enforced keyfile selection/deletion when file exists
  • webgui: Use php json_encode to properly encode notifications
  • webgui: Changed Delete keyfile button placement
  • webgui: Detect missing key when keyfile is deleted
  • webgui: Add Network:VPN as an application category
  • webgui: further hardening in auth_request.php
  • webgui: Style adjustment: buttons min-width
  • webgui: login page favicon now matches the green/yellow/red icon from the other webgui pages
  • webgui: VM Manager: add 'virtio-win-0.1.173-2' to VirtIO-ISOs list
  • webgui: Add Network:VPN as an application category
  • webgui: Network settings: updated help text
  • webgui: Fix link for Password Recovery on login screen

 

Version 6.8.1 2020-01-10 Changes vs. 6.8.0

Base distro:

  • libuv: version 1.34.0
  • libvirt: version 5.10.0
  • mozilla-firefox: version 72.0.1 (CVE-2019-17026, CVE-2019-17015, CVE-2019-17016, CVE-2019-17017, CVE-2019-17018, CVE-2019-17019, CVE-2019-17020, CVE-2019-17021, CVE-2019-17022, CVE-2019-17023, CVE-2019-17024, CVE-2019-17025)
  • php: version 7.3.13 (CVE-2019-11044 CVE-2019-11045 CVE-2019-11046 CVE-2019-11047 CVE-2019-11049 CVE-2019-11050)
  • qemu: version 4.2.0
  • samba: version 4.11.4
  • ttyd: version 20200102
  • wireguard-tools: version 1.0.20200102

Linux kernel:

  • version 4.19.94
  • kernel_firmware: version 20191218_c4586ff (with additional Intel BT firmware)
  • CONFIG_THUNDERBOLT: Thunderbolt support
  • CONFIG_INTEL_WMI_THUNDERBOLT: Intel WMI thunderbolt force power driver
  • CONFIG_THUNDERBOLT_NET: Networking over Thunderbolt cable
  • oot: Highpoint rr3740a: version v1.19.0_19_04_04
  • oot: Highpoint r750: version v1.2.11-18_06_26 [restored]
  • oot: wireguard: version 0.0.20200105

Management:

  • add cache-busting params for noVNC url assets
  • emhttpd: fix cryptsetup passphrase input
  • network: disable IPv6 for an interface when its settings is "IPv4 only".
  • webgui: Management page: fixed typos in help text
  • webgui: VM settings: fixed Apply button sometimes not working
  • webgui: Dashboard: display CPU load full width when no HT
  • webgui: Docker: show 'up-to-date' when status is unknown
  • webgui: Fixed: handle race condition when updating share access rights in Edit User
  • webgui: Docker: allow to set container port for custom bridge networks
  • webgui: Better support for custom themes (not perfect yet)
  • webgui: Dashboard: adjusted table positioning
  • webgui: Add user name and user description verification
  • webgui: Edit User: fix share access assignments
  • webgui: Management page: remove UPnP conditional setting
  • webgui: Escape shell arg when logging csrf mismatch
  • webgui: Terminal button: give unsupported warning when Edge/MSIE is used
  • webgui: Patched vulnerability in auth_request
  • webgui: Docker: added new setting "Host access to custom networks"
  • webgui: Patched vulnerability in template.php

 

  • Like 4
  • Thanks 8

Share this post


Link to post

Has the plan changed to release a 6.9 for us needing a newer kernel than 4.19?

 

Alot of us are still stuck on 6.8 rc7 with kernel 5.3

Share this post


Link to post
12 minutes ago, Dazog said:

Has the plan changed to release a 6.9 for us needing a newer kernel than 4.19?

 

Alot of us are still stuck on 6.8 rc7 with kernel 5.3

Yes we are preparing a 6.9 beta release with 5.5.8 kernel, and then move to 5.6 kernel ultimately.

  • Like 5
  • Thanks 6

Share this post


Link to post
Posted (edited)

Upgraded from 6.8.2 without any issues.

 

Noticed one thing, the following change was introduced in 6.8.1, has this been removed in 6.8.3? 

 

image.png.f05c34413388677453d7362d9d5f02a6.png

 

I've got a private docker repo, which is now showing as there's an update available even if I try re-pulling the image. Think the above change in 6.8.1 fixed it for me but now it's back.

 

Edit: when I say it's showing as update available, I mean container name is in blue but It doesn't give me an option to update the container on right-click.

 

 

Edited by eafx

Share this post


Link to post

The docker container vpn network support and the rebalance cache pool to different raid levels are both great to see!

Share this post


Link to post
46 minutes ago, limetech said:

Yes we are preparing a 6.9 beta release with 5.5.8 kernel, and then move to 5.6 kernel ultimately.

Thanks again.

Share this post


Link to post
57 minutes ago, limetech said:

Yes we are preparing a 6.9 beta release with 5.5.8 kernel, and then move to 5.6 kernel ultimately.

Thanks I can't wait. Really need the new temp monitoring

Share this post


Link to post

Dear @limetech, I note the below line:  does it require us to reset up the vm template, or is it a kernel fix?  I vaguely recall something about an xml option that enabled this, but could be wrong.

 

webgui: VMs: enable cpu cache passthrough; AMD + multithreaded

 

Any info you can link us to?

 

Many thanks.

 

Marshalleq

Share this post


Link to post
1 hour ago, limetech said:

Yes we are preparing a 6.9 beta release with 5.5.8 kernel, and then move to 5.6 kernel ultimately.

@limetech - any rough eta. Also waiting for 5.x kernel for amd 3000 temp monitoring

Share this post


Link to post
1 hour ago, eafx said:

Upgraded from 6.8.2 without any issues.

 

Noticed one thing, the following change was introduced in 6.8.1, has this been removed in 6.8.3? 

 

image.png.f05c34413388677453d7362d9d5f02a6.png

 

I've got a private docker repo, which is now showing as there's an update available even if I try re-pulling the image. Think the above change in 6.8.1 fixed it for me but now it's back.

 

Edit: when I say it's showing as update available, I mean container name is in blue but It doesn't give me an option to update the container on right-click.

 

 

The update on the context menu should be there when on the docker page.  It's just not appearing correctly on the dashboard page.    (Or put another way, the dashboard's context menu would never allow you to update an app whereas the docker page would via the context menu)

Share this post


Link to post

How exactly do we setup this new container VPN feature?  Is the feature a way to create a VPN client connection and have any container route through that connection?

Share this post


Link to post
Posted (edited)
32 minutes ago, Squid said:

The update on the context menu should be there when on the docker page.  It's just not appearing correctly on the dashboard page.    (Or put another way, the dashboard's context menu would never allow you to update an app whereas the docker page would via the context menu)

Not bothered about the update not showing on the context menu. It's just if you're using a private repo, it will always show there's an update available for that container on the dashboard (i.e. the container name is in blue text) even though it's already up to date. This behaviour was fixed in 6.8.1 but now it's back with 6.8.3

Edited by eafx

Share this post


Link to post
8 minutes ago, eafx said:

Not bothered about the update not showing on the context menu. It's just if you're using a private repo, it will always show there's an update available for that container on the dashboard (i.e. the container name is in blue text) even though it's already up to date. This behaviour was fixed in 6.8.1 but now it's back with 6.8.3

What about on the docker page?  Does that one work correctly?  I put in a PR to change the code for the dashboard.

Share this post


Link to post
1 minute ago, Squid said:

What about on the docker page?  Does that one work correctly?  I put in a PR to change the code for the dashboard.

On the docker page for that container.
image.png.8c4bd96f25ca46d515c7b95ba5e22add.png

Share this post


Link to post

And Update is there or missing on the context menu?  It should be missing

 

Share this post


Link to post
3 minutes ago, Squid said:

And Update is there or missing on the context menu?

 

missing on the context menu.

Share this post


Link to post

Then your problem is fixed next release.  Thanks for reporting.

Share this post


Link to post
7 minutes ago, Squid said:

Then your problem is fixed next release.  Thanks for reporting.

Sweet! thanks! 🙂

Share this post


Link to post

VPN docker support, exactly what does that entail.

Thanks


Sent from my iPhone using Tapatalk

Share this post


Link to post

upgraded to 6.8.3 from 6.8.2. nice and uneventful :)

Share this post


Link to post
Posted (edited)

g morning, this time my update didnt worked out smooth, stuck on reboot here.

 

as the mashine didnt returned i took a look at the screen

 

here it was stuck

image.thumb.png.117156f7039f39184b9cf368bfd4a4c7.png

 

so i gracefully pushed power to see what happens, mashine did then power down after a while

image.thumb.png.8cf94b52d9b216eca10094dc64c3615e.png

 

turned power back on and all looks good now, just had to manually reboot (as mentioned above), i attached the latest 2 diagnostics, may helpful

 

i think the first is from the manual powerdown

alsserver-diagnostics-20200307-0613.zip alsserver-diagnostics-20200307-0622.zip

Edited by alturismo

Share this post


Link to post
3 hours ago, alturismo said:

g morning, this time my update didnt worked out smooth, stuck on reboot here.

Your screenshots show some plugins and/or scripts getting invoked at startup.

First thing to do is to start in safe mode and retest.

 

Share this post


Link to post
8 hours ago, Xcelsior86 said:

How exactly do we setup this new container VPN feature?  Is the feature a way to create a VPN client connection and have any container route through that connection?

See this 

 

 

Share this post


Link to post
8 hours ago, Squid said:

Then your problem is fixed next release.  Thanks for reporting.

Yeah, I overlooked that. Thanks for the correction

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.