LATEST VERSION: 2.1 - CHANGELOG
Pivotal Cloud Foundry v1.12

PCF Ops Manager v1.12 Release Notes

Pivotal Cloud Foundry is certified by the Cloud Foundry Foundation for 2018.

Read more about the certified provider program and the requirements of providers.


How to Upgrade

The Upgrading Pivotal Cloud Foundry topic contains instructions for upgrading to Pivotal Cloud Foundry (PCF) Ops Manager v1.12.

1.12.21

  • [Security Fix] Bumps stemcell to 3445.48.
  • [Bug Fix] Helps alleviate Ruby’s susceptibility to high memory usage. May prevent the Ops Manager VM from running out of memory during a long VM lifecycle.
  • [Bug Fix] Ops Manager UI shows product job log download link only once per instance group rather than for all instances.
  • [Bug Fix] The Ops Manager API endpoint /api/v0/deployed/certificates now lists all RSA certificates.

Ops Manager v1.12.21 uses the following component versions:

Component Version
Stemcell3445.48*
BOSH Director263.10
CredHub1.3.5
UAA45.8*
AWS CPI69
Azure CPI34
GCP CPI25.9.0
OpenStack CPI35
vSphere CPI45.1.0

1.12.20

  • [Feature] Makes Azure network and resource group matchers case-insensitive.
  • [Bug Fix] Backports GET /api/v0/staged/director/networks to older releases.

Ops Manager v1.12.20 uses the following component versions:

Component Version
Stemcell3445.45*
BOSH Director263.10
CredHub1.3.5
UAA45.8*
AWS CPI69
Azure CPI34
GCP CPI25.9.0
OpenStack CPI35
vSphere CPI45.1.0

1.12.19

  • [Security Fix] Bumps stemcell to 3445.45
  • [Bug Fix] The credentials API endpoints for deployed products do not include secrets. For more information about these API endpoints, see Viewing available credentials and Fetching credentials in the Ops Manager API documentation.

Ops Manager v1.12.19 uses the following component versions:

Component Version
Stemcell3445.45*
BOSH Director263.10
CredHub1.3.5
UAA45.8*
AWS CPI69
Azure CPI34
GCP CPI25.9.0
OpenStack CPI35
vSphere CPI45.1.0
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.18

  • [Security Fix] Bumps stemcell to 3445.42
  • [Bug Fix] Adds support to nested credentials when you GET from the product credentials /api/v0/deployed/products/:product_guid/credentials endpoint in the Ops Manager API. In addition, when you GET from the credential reference /api/v0/deployed/products/:product_guid/credentials/:credential_reference endpoint and specify a nested credential in the :credential_reference, the output returns a value. For more information about the API endpoints resolved in this bug, see Viewing available credentials and Fetching Credentials from the Ops Manager API documentation.
  • Bumps UAA to 45.8
  • Bumps BOSH Director to 263.10

Ops Manager v1.12.18 uses the following component versions:

Component Version
Stemcell3445.42*
BOSH Director263.10*
CredHub1.3.5
UAA45.8*
AWS CPI69
Azure CPI34
GCP CPI25.9.0
OpenStack CPI35
vSphere CPI45.1.0
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.17

  • [Security Fix] Bumps Stemcell to 3445.32.
  • [Feature] You are now able to fetch availability zones (AZs) from the Ops Manager API. For more information, see Fetching availability zones in the Ops Manager API documentation.

Ops Manager v1.12.17 uses the following component versions:

Component Version
Stemcell3445.32*
BOSH Director263.9.0
CredHub1.3.5
UAA45.7
AWS CPI69
Azure CPI34
GCP CPI25.9.0
OpenStack CPI35
vSphere CPI45.1.0
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.16

  • [Security Fix] Bumps Stemcell to 3445.30.
  • [Feature] The BOSH CLI is now upgraded to v3 in Ops Manager. You can now split cloud config and other configurations into multiple files. This change allows you to manage and evolve configurations separately. For more information on configuration management in BOSH, see Configs in the BOSH documentation.
  • [Bug Fix] Ops Manager sets a consistent entity ID in both SAML and non-SAML cases.

Ops Manager v1.12.16 uses the following component versions:

Component Version
Stemcell3445.30*
BOSH Director263.9.0
CredHub1.3.5
UAA45.7
AWS CPI69
Azure CPI34
GCP CPI25.9.0
OpenStack CPI35
vSphere CPI45.1.0
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.15

  • Bumps BOSH Director to 263.9.0.
  • More disk storage options for Persistent Disk Type in the Resource Config pane.
  • [Bug Fix] cloud_config now does not change during a director-only deploy.
  • [Bug Fix] Default value for max_connections is increased from 100 to 200. This change avoids errors related to the database running out of connection slots.
  • [Bug Fix] Ops Manager API endpoint /api/v0/deployed/products/{guid}/status no longer returns a 500 error when a VM is being rebooted. Instead, the API returns a 200 error with more information.

Ops Manager v1.12.15 uses the following component versions:

Component Version
Stemcell3445.28
BOSH Director263.9.0*
CredHub1.3.5
UAA45.7
AWS CPI69
Azure CPI34
GCP CPI25.9.0
OpenStack CPI35
vSphere CPI45.1.0
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.13

  • [Security Fix] Bumps stemcell to 3445.28.
  • Bumps BOSH Director to 263.7.0.

Ops Manager v1.12.13 uses the following component versions:

Component Version
Stemcell3445.28*
BOSH Director263.7.0*
CredHub1.3.5
UAA45.7
AWS CPI69
Azure CPI34
GCP CPI25.9.0
OpenStack CPI35
vSphere CPI45.1.0
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.12

  • [Security Fix] Bumps stemcell to 3445.24.
  • Increases connection timeout to accommodate large installation exports.

Ops Manager v1.12.12 uses the following component versions:

Component Version
Stemcell3445.24*
BOSH Director263.6.0
CredHub1.3.5
UAA45.7
AWS CPI69
Azure CPI34
GCP CPI25.9.0
OpenStack CPI35
vSphere CPI45.1.0
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.11

  • [Security Fix] Bumps stemcell to 3445.23.

Ops Manager v1.12.11 uses the following component versions:

Component Version
Stemcell3445.23*
BOSH Director263.6.0
CredHub1.3.5
UAA45.7
AWS CPI69
Azure CPI34
GCP CPI25.9.0
OpenStack CPI35
vSphere CPI45.1.0
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.10

  • [Security Fix] Bumps stemcell to 3445.22.
  • Bumps UAA to v45.7.

Ops Manager v1.12.10 uses the following component versions:

Component Version
Stemcell3445.22*
BOSH Director263.6.0
CredHub1.3.5
UAA45.7*
AWS CPI69*
Azure CPI34
GCP CPI25.9.0
OpenStack CPI35
vSphere CPI45.1.0
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.9

  • Bumps AWS CPI to v69.
  • Bumps OpenStack CPI to v35.
  • Bumps vSphere CPI to v45.1.0.

Ops Manager v1.12.9 uses the following component versions:

Component Version
Stemcell3445.19
BOSH Director263.5
CredHub1.3.5
UAA45.5
AWS CPI69*
Azure CPI34
GCP CPI25.9.0
OpenStack CPI35*
vSphere CPI45.1.0*
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.8

  • [Feature Improvement] Allows s3 blobstore credentials to be uploaded for deployed director.
  • Internet connected checkbox for Azure is off by default.
  • Bumps Azure CPI to 34.

Ops Manager v1.12.8 uses the following component versions:

Component Version
Stemcell3445.19
BOSH Director263.5
CredHub1.3.5
UAA45.5
AWS CPI66
Azure CPI34*
GCP CPI25.9.0
OpenStack CPI35
vSphere CPI44
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.7

  • [Security Fix] Bumps stemcell to 3445.19.

Ops Manager v1.12.7 uses the following component versions:

Component Version
Stemcell3445.19*
BOSH Director263.5
CredHub1.3.5
UAA45.5
AWS CPI66
Azure CPI29
GCP CPI25.9.0
OpenStack CPI35
vSphere CPI44
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.6

  • [Bug Fix] Allows the network to ping the Ops Manager VM when installing a tile.
  • [Security Fix] Bumps stemcell to 3445.17.
  • Bumps BOSH Director to 263.5.
  • Bumps CredHub to 1.3.5.
  • Bumps OpenStack CPI to 35.

Ops Manager v1.12.6 uses the following component versions:

Component Version
Stemcell3445.17*
BOSH Director263.5*
CredHub1.3.5*
UAA45.5
AWS CPI66
Azure CPI29
GCP CPI25.9.0
OpenStack CPI35*
vSphere CPI44
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.5

  • [Bug Fix] Updates the fog client to address an OpenStack installation bug.
  • [Feature Improvement] Adds performance improvements to decrease Ops Manager dashboard load time.
  • Bumps UAA to 45.5.

Ops Manager v1.12.5 uses the following component versions:

Component Version
Stemcell3445.16
BOSH Director263.4
CredHub1.3.4
UAA45.5*
AWS CPI66
Azure CPI29
GCP CPI25.9.0
OpenStack CPI32
vSphere CPI44
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.4

  • [Security Fix] Bumps stemcell to 3445.16.
  • Bumps BOSH Director to 263.4.
  • Bumps UAA to 45.4.

Ops Manager v1.12.4 uses the following component versions:

Component Version
Stemcell3445.16*
BOSH Director263.4*
CredHub1.3.4
UAA45.4*
AWS CPI66
Azure CPI29
GCP CPI25.9.0
OpenStack CPI32
vSphere CPI44
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.3

  • Bumps Azure CPI to 29.
  • Bumps CredHub to 1.3.4.

Ops Manager v1.12.3 uses the following component versions:

Component Version
Stemcell3445.11
BOSH Director263.2
CredHub1.3.4*
UAA45
AWS CPI66
Azure CPI29*
GCP CPI25.9.0
OpenStack CPI32
vSphere CPI44
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.2

  • [Feature] Ops Manager supports uploading Windows 2016 stemcells.
  • [Feature] Tile authors can set the default instance count for an errand to zero.

Ops Manager v1.12.2 uses the following component versions:

Component Version
Stemcell3445.11
BOSH Director263.2
CredHub1.3.2
UAA45
AWS CPI66
Azure CPI27
GCP CPI25.9.0
OpenStack CPI32
vSphere CPI44
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.1

  • [Security Fix] Bumps stemcell to 3445.11 to address USN-3420-2.
  • Bumps CredHub to 1.3.2.

Ops Manager v1.12.1 uses the following component versions:

Component Version
Stemcell3445.11*
BOSH Director263.2
CredHub1.3.2*
UAA45
AWS CPI66
Azure CPI27
GCP CPI25.9.0
OpenStack CPI32
vSphere CPI44
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.

1.12.0

Version 1.12.0 of Ops Manager consists of the following component versions:

Component Version
Stemcell3445.7
BOSH Director263.2
CredHub1.3.0
UAA45
AWS CPI66
Azure CPI27
GCP CPI25.9.0
OpenStack CPI32
vSphere CPI44
* Components marked with an asterisk have been patched to resolve security vulnerabilities or fix component behavior.


New Features in Ops Manager v1.12.0

Faster Upgrade and Installation Export

Ops Manager decreases the time required to upgrade by reducing the size of the file produced by Export Installation Settings by several orders of magnitude.

For upgrade instructions, see Upgrading Pivotal Cloud Foundry.

The exported installation file is smaller because Ops Manager no longer retains releases between upgrades if it has already uploaded them to BOSH. When backing up PCF, you must take this into account by backing up the BOSH blobstore that contains the uploaded releases. BOSH Backup and Restore (BBR) backs up the BOSH blobstore. For more information, see Backing Up Pivotal Cloud Foundry with BBR.

WARNING: CFOps assumed that the Ops Manager installation settings artifact contained all necessary releases, which is no longer the case in PCF v1.12. CFOps should not be used to back up and restore PCF v1.12.

Google Shared Virtual Private Cloud

Google Shared Virtual Private Cloud (VPC), formerly known as Google Cross-Project Networking (XPN), enables you to assign GCP resources to individual projects within an organization but allows communication and shared services between projects. For more information about this feature, see the Configuring a Shared VPC on GCP topic.

AWS GovCloud (US)

Operators can deploy Ops Manager v1.12 to AWS GovCloud (US). For more information about deploying AWS GovCloud (US), see the following AWS installation topics:

Migrate Non-Configurable Secrets to CredHub

Tile Authors can write a JavaScript migration to move their existing non-configurable secrets into CredHub. Ops Manager v1.12 supports migrating secret, simple_credential, rsa_pkey_credential, and salted_credential types.

For more information about this feature, see the Migrating Existing Credentials to CredHub topic in the PCF Tile Developers Guide.

Commit GET and DELETE Endpoints

Ops Manager v1.12.0 adds two API endpoints for operators who deploy PCF manually. If you use Ops Manager to generate manifests that you deploy on your own with BOSH, the /commit endpoint fails when a tile upgrade contains CredHub credential variables.

Before upgrading a tile, use the GET endpoint to retrieve a file that contains the credentials. Migrate the credentials to CredHub using the CredHub CLI, then use the DELETE endpoint to delete the credentials staged in installation.yml.

For more information, see the corresponding Knowledge Base article.

BOSH CLI v2

Ops Manager v1.12.0 uses the new version of the BOSH CLI.

Breaking Change: BOSH CLI output formatting has changed. If your deployment uses scripts that rely on BOSH output, you must refactor them to interpret BOSH CLI v2 command output.

The Ops Manager VM includes both versions of the BOSH CLI. You can run BOSH CLI v1 commands using bosh and BOSH CLI v2 commands using bosh2, but many BOSH CLI v1 commands are incompatible with the BOSH Director. See the corresponding Knowledge Base article for more information.

In the Credentials tab in Ops Manager, click the link to Bosh2 Commandline Credentials for a command that you can copy and paste to log in to the bosh2 CLI.

For more information about the differences between the old and new versions of the BOSH CLI, see the BOSH documentation.

OpenStack Network Changes

Ops Manager v1.12.0 uses OpenStack CPI v32. In this version, you must select either Nova or Neutron as the Network Type on the OpenStack Config page of the Director tile. Pivotal recommends that you use Neutron for compatibility with future versions of the OpenStack CPI.

For more information about the two network types, see the OpenStack documentation.

Support for Empty Arrays in Double Parentheses

Ops Manager now supports empty arrays in double parentheses. For more information, see the Double-Parentheses Expressions section of the Property Reference topic.

Bug Fixes

  • Ops Manager v1.12.0 fixes a bug where configuring a thin-provisioned ephemeral disk in Ops Manager created a thick-provisioned disk in vSphere.
  • Ops Manager v1.12.0 fixes a bug where the entity ID was not unique if UAA was configured with SAML.
  • Ops Manager v1.12.0 fixes a bug where POST /api/v0/setup did not expose the http, https, and no_proxy fields.

Known Issues

CredHub Requires Director Certificate Rotation

If your original Elastic Runtime deploy was PCF 1.6 or earlier, you must regenerate the non-configurable Director certificates to deploy CredHub. CredHub attempts to verify the connection to UAA on the BOSH Director with the Ops Manager certificate Subject Alternative Name (SAN) during a deploy. Ops Manager 1.6 and earlier generated non-configurable certificate SANs in a format CredHub does not understand.

For more information, see the corresponding Knowledge Base article.

For more information about certificate rotation, see Regenerating and Rotating Non-Configurable TLS/SSL Certificates.

PCF Log Search Unsupported

If your deployment contains PCF Log Search, you must remove the product tile before upgrading. Failure to remove this product prior to upgrade may cause issues with your deployment.

For more information, see the Upgrading Pivotal Cloud Foundry topic.

On-Demand Services Require Dedicated Service Networks

If you use any service tile that offers both on-demand and not on-demand modes of operation, clicking Apply Changes in Ops Manager fails if you did not define a dedicated service network for the tile.

To work around this issue, use one of the following methods:

  • Create a services network on your IaaS for each affected service tile
  • Create a dummy network in Ops Manager, reserve a block of IP ranges, and disable smoke tests for the on-demand service

For more information, see the corresponding Knowledge Base article.

Create a pull request or raise an issue on the source for this page in GitHub