Skip to content

VM² Releases

Upgrade instructions

Prior to upgrading VM Squared first review:

VM Squared 2.6.1

Release Date: May 3, 2025

Bug Remediation:
(Including internal SoftIron CVEs)

  • Resolved an issue where under certain conditions a UEFI-enabled VM may fail to boot due to an error parsing the firmware
  • Resolved an issue where running a total cluster live reboot may hang due to maintenance flags not being unset on the software defined storage
  • Resolved an issue where upgrades to subsequent releases may fail due to running out of space to store the upgrade bundle
  • Resolved an issue where the bundled software license information was missing packages that are in the cluster debug pack

VM Squared 2.6.0

Release Date: April 26, 2025

New Features:

  • Added support for PCI passthrough of NVIDIA and some AMD GPUs
  • Added support for NVIDIA GRID (GRID 16 LTS / Release 535 is supported)
  • Added support for configuring the syslog destination protocol to be UDP
  • Added support for viewing multipath status from the restricted shell
  • Added in-browser, secure, air-gapped AI chatbot capability to the Glasshouse web UI
  • Added support for PCI passthrough of Qualcomm Cloud AI Inference Processors
  • Added support for in-VM PCIe Peer-to-Peer for Qualcomm Cloud AI Inference Processors
  • Added support for specifying NVIDIA GRID Profiles for vGPUs passed into VMs
  • Added support for live migration of VMs with vGPUs attached
  • Added support for UEFI Secure Boot for VM workloads
  • Added support for TPM 2.0 (Q35 machine type VMs will now receive a TPM by default)
  • Added support for Windows 11 and Windows Server 2025 as VM guests
  • Added support for selecting BIOS and UEFI firmware type to the Glasshouse web UI
  • Added initial support for next-generation SoftIron network interconnects
  • Added support for managing escrow keys via the "manage-disk-encryption" tool
  • Added support for updating configuration of existing VM in the Glasshouse web UI
  • Added SoftIron's storage benchmarking tool (sibench) to the debug tool package
  • Added network benchmarking tool (iPerf) to the debug tool package
  • Added advanced template editing to the Glasshouse web UI

Bug Remediation:
(Including internal SoftIron CVEs)

  • Resolved an issue with BLOCKIOSIZE_LOGICAL and BLOCKIOSIZE_PHYSICAL not being set when hot-attaching a disk with these attributes set
  • Resolved an issue where cluster topology information may persist from legacy naming of nodes in the cluster
  • Resolved an issue where signed kernel modules may report the kernel version magic with a "dirty" tag
  • Resolved an issue where backend Orchestrator database checks may sometimes fail
  • Resolved an issue where the "Start Script", if present, did not show up in the Glasshouse web UI
  • Resolved an issue where the image persistence flag may be incorrect in the Glasshouse web UI
  • Resolved an issue where archive snapshot backups over TLS would fail
  • Resolved an issue where assigned user groups could not be changed in the Glasshouse web UI
  • Resolved an issue where CLI logging could not properly parse ED25519 or ECDSA SSH keys
  • Resolved an issue where stat graphs are incorrect in the Glasshouse web UI
  • Resolved an issue where nodes not running DHCP may erroneously report stopping the DHCP client on halt or reboot
  • Resolved an issue where the Glasshouse web UI reported all costs with the euro symbol (€)
  • Resolved an issue where VirtIO-SCSI disks were not properly detected by UEFI VMs at boot

Enhancements:

  • Updated restricted shell to require extra confirmation before entering expert mode, and access is now permanently logged
  • Removed Kyber post-quantum cryptographic algorithm support because ML-KEM is the final standard and Kyber is no longer supported by mainstream client software
  • Updated Orchestrator restart process to properly reference service name
  • Updated Software Defined Storage configuration to no longer buffer write, as it causes a performance reduction for most workloads
External Library Security Remediations:
(Fixed or verified inapplicability)
CVE-2016-9840 CVE-2023-1079 CVE-2023-1513 CVE-2023-1855
CVE-2023-1859 CVE-2023-1990 CVE-2023-1998 CVE-2023-2162
CVE-2023-23039 CVE-2023-2430 CVE-2023-28328 CVE-2023-2985
CVE-2023-30456 CVE-2023-3161 CVE-2023-3220 CVE-2023-3268
CVE-2023-33288 CVE-2023-3358 CVE-2023-3359 CVE-2023-3389
CVE-2023-47233 CVE-2023-52340 CVE-2023-52485 CVE-2023-52585
CVE-2023-52586 CVE-2023-52590 CVE-2023-52591 CVE-2023-52596
CVE-2023-52624 CVE-2023-52625 CVE-2023-52634 CVE-2023-52751
CVE-2023-52770 CVE-2023-52857 CVE-2023-52920 CVE-2024-10976
CVE-2024-10979 CVE-2024-13176 CVE-2024-24857 CVE-2024-24858
CVE-2024-24860 CVE-2024-24861 CVE-2024-25739 CVE-2024-25741
CVE-2024-26596 CVE-2024-26647 CVE-2024-26656 CVE-2024-26669
CVE-2024-26677 CVE-2024-26691 CVE-2024-26699 CVE-2024-26719
CVE-2024-26739 CVE-2024-26740 CVE-2024-26756 CVE-2024-26767
CVE-2024-26770 CVE-2024-26783 CVE-2024-26842 CVE-2024-26866
CVE-2024-26876 CVE-2024-26944 CVE-2024-26945 CVE-2024-26982
CVE-2024-27079 CVE-2024-28757 CVE-2024-35784 CVE-2024-35788
CVE-2024-35790 CVE-2024-35887 CVE-2024-35904 CVE-2024-35937
CVE-2024-35945 CVE-2024-35946 CVE-2024-36476 CVE-2024-36899
CVE-2024-36903 CVE-2024-36921 CVE-2024-36927 CVE-2024-38625
CVE-2024-40945 CVE-2024-40973 CVE-2024-41023 CVE-2024-42067
CVE-2024-42107 CVE-2024-42122 CVE-2024-44940 CVE-2024-44949
CVE-2024-45490 CVE-2024-45778 CVE-2024-45779 CVE-2024-45780
CVE-2024-45782 CVE-2024-47141 CVE-2024-47726 CVE-2024-47736
CVE-2024-47754 CVE-2024-47809 CVE-2024-48875 CVE-2024-49919
CVE-2024-49923 CVE-2024-49926 CVE-2024-49989 CVE-2024-49994
CVE-2024-49998 CVE-2024-50009 CVE-2024-50010 CVE-2024-50014
CVE-2024-50017 CVE-2024-50047 CVE-2024-50055 CVE-2024-50061
CVE-2024-50090 CVE-2024-50146 CVE-2024-50164 CVE-2024-50242
CVE-2024-50246 CVE-2024-50304 CVE-2024-52559 CVE-2024-53068
CVE-2024-53095 CVE-2024-53099 CVE-2024-53124 CVE-2024-53128
CVE-2024-53166 CVE-2024-53168 CVE-2024-53170 CVE-2024-53177
CVE-2024-53179 CVE-2024-53187 CVE-2024-53203 CVE-2024-53209
CVE-2024-53216 CVE-2024-53218 CVE-2024-53221 CVE-2024-53224
CVE-2024-54683 CVE-2024-56538 CVE-2024-56544 CVE-2024-56549
CVE-2024-56551 CVE-2024-56582 CVE-2024-56588 CVE-2024-56599
CVE-2024-56608 CVE-2024-56611 CVE-2024-56631 CVE-2024-56647
CVE-2024-56657 CVE-2024-56664 CVE-2024-56692 CVE-2024-56712
CVE-2024-56719 CVE-2024-56729 CVE-2024-56742 CVE-2024-56757
CVE-2024-56758 CVE-2024-56759 CVE-2024-56763 CVE-2024-56765
CVE-2024-56766 CVE-2024-56767 CVE-2024-56769 CVE-2024-56775
CVE-2024-56782 CVE-2024-56784 CVE-2024-56786 CVE-2024-57795
CVE-2024-57798 CVE-2024-57802 CVE-2024-57807 CVE-2024-57841
CVE-2024-57857 CVE-2024-57872 CVE-2024-57882 CVE-2024-57887
CVE-2024-57890 CVE-2024-57892 CVE-2024-57895 CVE-2024-57896
CVE-2024-57900 CVE-2024-57906 CVE-2024-57907 CVE-2024-57908
CVE-2024-57910 CVE-2024-57911 CVE-2024-57912 CVE-2024-57916
CVE-2024-57938 CVE-2024-57940 CVE-2024-57949 CVE-2024-57950
CVE-2024-57951 CVE-2024-57977 CVE-2024-57982 CVE-2024-57984
CVE-2024-58002 CVE-2024-58005 CVE-2024-58012 CVE-2024-58089
CVE-2024-9287 CVE-2025-0678 CVE-2025-21631 CVE-2025-21634
CVE-2025-21635 CVE-2025-21649 CVE-2025-21658 CVE-2025-21665
CVE-2025-21666 CVE-2025-21667 CVE-2025-21669 CVE-2025-21671
CVE-2025-21672 CVE-2025-21673 CVE-2025-21675 CVE-2025-21676
CVE-2025-21680 CVE-2025-21682 CVE-2025-21683 CVE-2025-21684
CVE-2025-21693 CVE-2025-21694 CVE-2025-21696 CVE-2025-21697
CVE-2025-21699 CVE-2025-21714 CVE-2025-21723 CVE-2025-21729
CVE-2025-21739 CVE-2025-21751 CVE-2025-21756 CVE-2025-21759
CVE-2025-21786 CVE-2025-21844 CVE-2025-21846 CVE-2025-21848
CVE-2025-21853 CVE-2025-21855 CVE-2025-21858 CVE-2025-21859
CVE-2025-21861 CVE-2025-21862 CVE-2025-21863 CVE-2025-21864
CVE-2025-21865 CVE-2025-21866

VM Squared 2.5.0 (stable)

Released Dec 31, 2024

Important Notes:

  • Release family 2.5.x will be the last release to support the NIST draft Kyber standard. Starting with 2.6.0, the final ML-KEM standard will be the only supported post-quantum key encapsulation mechanism supported.

New Features:

  • Added support for post-quantum full disk encryption. Implementation uses a hybrid of RSA and ML-KEM to encrypt secrets that are used to derive a symmetric cipher key. If PQC FDE is enabled, AES-XTS-512 is used as the symmetric mode. Requires hardware token support for a token that can store a ML-KEM public/private keypair. A Yubikey 5-series token is the only supported hardware token for post-quantum cryptography. Added manage-disk-encryption tool for managing cluster-wide PIN or asymmetric cryptography keys if the hardware token is supported for key management. A Yubikey 5-series token is the only supported hardware token for key management.

  • Added support for synchronizing SSH keys from users in the admin group "0" with the backend cluster management. SSH keys no longer have to be manually entered cluster-wide if SSH access is desired for cluster-level admins.

  • Added support for managing cluster-wide configuration (such as cluster name, SSH keys, and dashboard network configuration) via the Manifold "sifi" API and the Glasshouse Web UI.
  • Added support for configuring UEFI boot for VMs via the Glashouse Web UI. To boot a UEFI-enabled VM, simply select the appropriate firmware in the "OS & CPU" tab when configuring a VM or template.
  • Added support for logging all VM Squared shell commands to syslog, similar to HyperCloud's root shell logging functionality.
  • Added additional license compliance status information via the SSH console, specifically noting that the dashboard will be halted if license compliance is not reached.

Bug Remediation: (including internal SoftIron CVEs):

  • Resolved an issue where non-admin, but authenticated users can create data pools. This is CVE-2024-13058. See "https://nvd.nist.gov/vuln/detail/CVE-2024-13058".
  • Resolved erroneous mcelog errors on non-Intel machines. Updated machine check event logging user-space daemon to only start on machines with Intel processes. AMD processors are handled in kernel-space.
  • Resolved issue with the software defined storage subsystem's auto scaler and auto balancer where they would no longer function if non-default storage classes are configured.
  • Resolved issue where the EC data and triple-replicated metadata pools may have a different number of placement groups, when created using the Manifold "sifi" RESTful API.
  • Resolved issue where "Apps" downloaded via the Glasshouse Web UI were always owned by the admin user and group.
  • Resolved issue where VM Squared backend nodes may erroneously configure IPv6 global addresses, if physically on a network that support Stateless Address Auto-configuration (SLAAC).
External Library Security Remediations: (Fixed or verified inapplicability)
CVE-2024-49767CVE-2023-52812CVE-2023-52920CVE-2024-26595
CVE-2024-26962CVE-2024-27010CVE-2024-27011CVE-2024-27042
CVE-2024-35866CVE-2024-35929CVE-2024-40965CVE-2024-42122
CVE-2024-42134CVE-2024-42135CVE-2024-42139CVE-2024-42151
CVE-2024-42156CVE-2024-42252CVE-2024-43913CVE-2024-44940
CVE-2024-44949CVE-2024-44950CVE-2024-44955CVE-2024-44963
CVE-2024-46809CVE-2024-46841CVE-2024-47745CVE-2024-49861
CVE-2024-49891CVE-2024-49897CVE-2024-49898CVE-2024-49899
CVE-2024-49906CVE-2024-49909CVE-2024-49911CVE-2024-49914
CVE-2024-49915CVE-2024-49917CVE-2024-49925CVE-2024-49926
CVE-2024-49929CVE-2024-49934CVE-2024-49939CVE-2024-49950
CVE-2024-49951CVE-2024-49974CVE-2024-49996CVE-2024-50010
CVE-2024-50055CVE-2024-50067CVE-2024-50106CVE-2024-50126
CVE-2024-50177CVE-2024-50217CVE-2024-50226CVE-2024-50248
CVE-2024-50258CVE-2024-50275CVE-2024-53089CVE-2024-53090
CVE-2024-53091CVE-2024-53094CVE-2024-53096CVE-2024-53098
CVE-2024-53099CVE-2024-53108CVE-2024-53114CVE-2024-53124
CVE-2024-53126CVE-2024-53128CVE-2024-53133CVE-2024-53134
CVE-2024-53141CVE-2024-53142

VM Squared 2.4.3

Released Dec 3, 2024

Bug Remediation: (including internal SoftIron CVEs):

  • Resolved issue with block device detection where workloads using ZFS may erroneously break OSD device detection.
  • Resolved issue where system executable directories may erroneously have incorrect permissions.
  • Resolved issue where upgrade process was still reporting the version upgrading to as "255.255" rather than the correct version.
External Library Security Remediations: (Fixed or verified inapplicability)
CVE-2024-26952CVE-2024-36478CVE-2024-38553CVE-2024-44949
CVE-2024-49974CVE-2024-50176CVE-2024-50178CVE-2024-50179
CVE-2024-50180CVE-2024-50181CVE-2024-50182CVE-2024-50187
CVE-2024-50188CVE-2024-50189CVE-2024-50192CVE-2024-50193
CVE-2024-50194CVE-2024-50195CVE-2024-50196CVE-2024-50198
CVE-2024-50242CVE-2024-50269CVE-2024-50271CVE-2024-50272
CVE-2024-50273CVE-2024-50275CVE-2024-50277CVE-2024-50278
CVE-2024-50279CVE-2024-50284CVE-2024-50285CVE-2024-50296
CVE-2024-50298CVE-2024-50302CVE-2024-50304CVE-2024-53042
CVE-2024-53063CVE-2024-53066CVE-2024-53072CVE-2024-53079
CVE-2024-53081CVE-2024-53084

VM Squared 2.4.2

Released Nov 9, 2024

New Features:

  • Added support for post-quantum key exchange for SSH endpoints. Supports the hybrid ML-KEM 768 + X25519 + SHA-256 key exchange algorithm as well as traditional SSH key exchange algorithms as a fallback.
  • Added support for managing marketplaces in Glasshouse, the next-generation web UI.
  • Added support for cryptographically signed kernel code. All code loaded into the kernel is now required to be signed. Per-version, ephemeral build keys are used for this purpose. Kernel-mode code is now immutable once a version of software is released.
  • Added support for Broadcom NetXtreme-E 10Gb/25Gb NICs.
  • Added support for NFSv2/NFSv3 in addition to existing NFSv4 support for external datastores.

Enhancements:

  • Updated Glasshouse web UI to support setting cache mode "none".
  • Updated the kernel to support FIPS mode. Booting the system in FIPS mode (setting fips=1 on the boot line) applies to the kernel operating mode in addition to the previous behavior.

Bug Remediation: (including internal SoftIron CVEs):

  • Resolved issue where storage services may not come online in the event the cluster is running in an unsupported, 2 monitor configuration.
  • Resolved issue where cluster control facts may get out of sync in the event facts are changed very quickly.
  • Resolved issue where iSCSI event triggers may not be processed.

External Library Security Remediations: (Fixed or verified inapplicability)

  • CVE-2024-9143

VM Squared 2.4.1

Released Oct 10, 2024

Enhancements:

  • Updated cURL to support displaying whether post-quantum curves are being used in its verbose output.

External Library Security Remediations: (Fixed or verified inapplicability)

  • CVE-2024-6197
  • CVE-2024-7264

VM Squared 2.4.0

Released Oct 7, 2024

New Features:

  • Added support for post-quantum cryptography for data-in-transit. TLS endpoints for web GUI (Glasshouse and Legacy (where applicable)), APIs (RESTful, Legacy (where applicable), and Metadata), and S3 object storage (where applicable) are supported. They support key-exchange using hybrid KEMs supported by many clients today (X25519+ML-KEM 768, NIST P-Curve+ML-KEM 768 (FIPS 186+203), and X25519+Kyber768), pure PQC KEMs that are FIPS 203 compliant (ML-KEM 1024 and ML-KEM 768), as well as traditional ECC (X25519 and NIST P-Curve) as a legacy fallback.
  • Added support for monitoring global storage health via the next-generation web GUI, Glasshouse.
  • Next-generation GUI, Glasshouse, is now marked as "Stable" in HyperCloud.
  • Added support for running on devices with up to 8192 CPU threads.
  • Added support for resizing existing VMs in the next-generation GUI, Glasshouse.
  • Added support for using external NFS storage as a datastore for VM images.
  • Updated iSCSI implementation to use unified external networking management added with NFS support.

Bug Remediation: (including internal SoftIron CVEs):

  • Fixed issue where pools created with Glasshouse or the Manifold RESTful API may erroneously have a minimum writable size set to "1".
  • Fixed an issue where non-persistent images in EC datastores end up in the replicated metadata pool rather than the backend EC data pool.
  • Fixed an issue where cluster backend floating services may migrate even if a node doesn't go down.
  • Fixed an issue where disks used for object storage may not be completely wiped with decommissioning.
  • Fixed an issue where the "sifi" command may erroneously time out before returning data.
  • Fixed an issue where iSCSI LUNs may not properly be registered on storage nodes as object storage devices.
  • Fixed an issue where VM Metadata services were not reachable from within VMs.
  • Fixed an issue where ISO may be unbootable on UEFI systems without CDROM emulation support.
  • Fixed an issue where the default password may not be set properly for the Storage Management UI, if entered during install.
  • Fixed an issue where backend software defined storage may consume too much host RAM.

Enhancements:

  • Updated default NIC to be set to VirtIO.
External Library Security Remediations: (Fixed or verified inapplicability)
CVE-2014-9157CVE-2019-3016CVE-2019-3819CVE-2019-3887
CVE-2020-27815CVE-2021-3564CVE-2021-20194CVE-2021-46705
CVE-2022-2785CVE-2022-3533CVE-2022-3606CVE-2022-3715
CVE-2022-38096CVE-2022-48303CVE-2022-48872CVE-2023-0160
CVE-2023-0394CVE-2023-0615CVE-2023-1079CVE-2023-1192
CVE-2023-1193CVE-2023-1513CVE-2023-1855CVE-2023-1859
CVE-2023-1990CVE-2023-1998CVE-2023-2002CVE-2023-2124
CVE-2023-2162CVE-2023-2194CVE-2023-2430CVE-2023-2985
CVE-2023-3161CVE-2023-3220CVE-2023-3268CVE-2023-3338
CVE-2023-3358CVE-2023-3359CVE-2023-3389CVE-2023-3567
CVE-2023-3863CVE-2023-4133CVE-2023-4194CVE-2023-4273
CVE-2023-4569CVE-2023-4611CVE-2023-5090CVE-2023-6531
CVE-2023-6915CVE-2023-23039CVE-2023-28328CVE-2023-28866
CVE-2023-30456CVE-2023-30772CVE-2023-31315CVE-2023-33203
CVE-2023-33288CVE-2023-35823CVE-2023-35824CVE-2023-37453
CVE-2023-37454CVE-2023-38409CVE-2023-39191CVE-2023-39198
CVE-2023-42752CVE-2023-42755CVE-2023-42756CVE-2023-44466
CVE-2023-46343CVE-2023-46813CVE-2023-47233CVE-2023-50431
CVE-2024-0340CVE-2024-0607CVE-2024-1151CVE-2024-4603
CVE-2024-4741CVE-2024-5535CVE-2024-6119CVE-2024-6232
CVE-2024-6387CVE-2024-7348CVE-2024-7592CVE-2024-25741
CVE-2024-25744CVE-2024-36478CVE-2024-38381CVE-2024-38630
CVE-2024-40965CVE-2024-40969CVE-2024-40973CVE-2024-40982
CVE-2024-41096CVE-2024-41098CVE-2024-42122CVE-2024-42123
CVE-2024-42144CVE-2024-42228CVE-2024-42252CVE-2024-42314
CVE-2024-43819CVE-2024-43824CVE-2024-43850CVE-2024-43859
CVE-2024-43872CVE-2024-43884CVE-2024-43892CVE-2024-43897
CVE-2024-43913CVE-2024-44931CVE-2024-44938CVE-2024-44939
CVE-2024-44940CVE-2024-44941CVE-2024-44946CVE-2024-44947
CVE-2024-44956CVE-2024-44957CVE-2024-44974CVE-2024-44983
CVE-2024-44985CVE-2024-44986CVE-2024-44987CVE-2024-44989
CVE-2024-44990CVE-2024-44995CVE-2024-44998CVE-2024-44999
CVE-2024-45000CVE-2024-45002CVE-2024-45006CVE-2024-45009
CVE-2024-45010CVE-2024-45011CVE-2024-45015CVE-2024-45016
CVE-2024-45018CVE-2024-45019CVE-2024-45021CVE-2024-45022
CVE-2024-45025CVE-2024-45026CVE-2024-45028CVE-2024-45029
CVE-2024-46673CVE-2024-46674CVE-2024-46675CVE-2024-46676
CVE-2024-46677CVE-2024-46678CVE-2024-46679CVE-2024-46681
CVE-2024-46685CVE-2024-46686CVE-2024-46689CVE-2024-46694
CVE-2024-46695CVE-2024-46700CVE-2024-46702CVE-2024-46705
CVE-2024-46707CVE-2024-46710CVE-2024-46711CVE-2024-46714
CVE-2024-46719CVE-2024-46720CVE-2024-46721CVE-2024-46722
CVE-2024-46723CVE-2024-46724CVE-2024-46725CVE-2024-46726
CVE-2024-46727CVE-2024-46728CVE-2024-46730CVE-2024-46731
CVE-2024-46732CVE-2024-46735CVE-2024-46737CVE-2024-46738
CVE-2024-46739CVE-2024-46740CVE-2024-46742CVE-2024-46743
CVE-2024-46744CVE-2024-46746CVE-2024-46747CVE-2024-46749
CVE-2024-46750CVE-2024-46751CVE-2024-46755CVE-2024-46756
CVE-2024-46757CVE-2024-46758CVE-2024-46759CVE-2024-46760
CVE-2024-46761CVE-2024-46762CVE-2024-46763CVE-2024-46765
CVE-2024-46770CVE-2024-46772CVE-2024-46773CVE-2024-46781
CVE-2024-46782CVE-2024-46784CVE-2024-46786CVE-2024-46791
CVE-2024-46795CVE-2024-46798CVE-2024-46800

VM Squared 2.3.5

Released June 10, 2024

New Features:

  • Added support for HTTP to HTTPS redirection by default.
  • Added support for Mellanox mlx5-based NICs.
  • Added support for Microchip Smart Storage (smartpqi)-based storage HBAs.
  • Added support for checking license expiration via the CLI.
  • Added support for using a portion of the boot drive as a storage device for the cluster in the installation phase. This allows for a small amount of storage for backend use, while all VM data could live on external storage.
  • Added link to documentation from the Glasshouse Web UI.

Bug Remediation: (including internal SoftIron CVEs):

  • Resolved misspelling of certain backend nodes after the "si-*" node name transition in a prior release.
  • Resolved an issue where cluster control facts (such as license or authorized SSH keys) may be overwritten when the dashboard is rebooted.
  • Resolved issue where changing dashboard network details without NTP configured may result in losing connectivity to the dashboard.
  • Resolved issue where the dashboard backend database may not be able to handle more connection requests on a very large, busy cluster.
  • Resolved Manifold API CLI client timeout issues.
  • Resolved an issue where unsupported reboot scripts were bundled in the distribution. While undocumented, users may find this inclusion confusing.
  • Resolved issues with migration of backend floating services. This may also have impacted upgrades from previous releases.
  • Resolved an issue where stray storage devices may be erroneously added to the cluster, while not backed by a real physical storage device.
  • Resolved an issue where duplicate compute nodes may be erroneously added to the cluster, despite the node already existing in the node database.
  • Resolved an issue where the cluster may complain about a changed SSH key for nodes during the upgrade process.
  • Resolved an issue where the license keys pasted via the web GUI may not be properly parsed.
  • Resolved an issue where the restricted shell didn't properly support job control.

Enhancements:

  • Updated full disk encryption service to support longer key lengths. RSA keys of 1024, 2048, 3072, and 4096 may be used.
  • Updated compression library for xz, improving performance of some daemons such as the dashboard startup.
  • Updated cluster reboot process to check for and resolve stray storage devices, in the event stray devices were added to the cluster be a previously resolved bug.
  • Updated back-end hypervisor orchestration to more quickly boot virtual machines. Previously, the deploy and boot process may take up to two minutes. This has been reduced to 30 seconds or less.
  • Updated external iSCSI integration to have a more robust configuration and network mechanisms.
  • Updated SMART database to latest release, improving support for more local storage devices.
  • Updated the cluster upgrade process to have more pre-flight checks before beginning such that the process does not hang forever.

VM Squared 2.3.4

Released May 18, 2024

This represents the first GENERAL AVAILABILITY release. From Partner Beta 3 or 4, you may upgrade using the upgrade bundle. From Partner Beta 1 or 2 please wipe existing nodes and reinstall. The baked-in license key expires on 27-MAY-2024.

New Features:

  • Added support for up to 1024 nodes in a single unified cluster.
  • Added (BETA) support for iSCSI as the back-end storage for the built-in Software Defined Storage.

Enhancements:

  • Updated the VM Squared installer to restart if installation fails for any reason rather than simply rebooting the node.
  • Updated the VM Squared installer to add a preamble screen prior to installation. This will help clarify what we are about to do to the system you are running the installer on prior to any execution.
  • Updated the LDAP configuration utility's text editor to ignore control characters from user input.
  • Updated the LDAP configuration utility to validate YAML configuration after editing.
  • Updated the cluster reboot process to now notify the user if there are insufficient nodes present for a live reboot. In addition, some service stopping messages have been updated to reduce confusion. Updated the Legacy BIOS installer to remove some legacy boot options that are no longer used.

Bug Remediation: (including internal SoftIron CVEs)

  • Resolved issue where the next-generation UI, Glasshouse, would report your session expired when an incorrect password is entered.
  • Resolved an issue where some erroneous text may be printed to the console during a cluster-wide reboot.
  • Resolved an issue where downloading a marketplace appliance may erroneously report the incorrect product name.
  • Resolved an issue in the next-generation UI, Glasshouse, where some functions would be non-functional due to expiring back-end authentication tokens without any user feedback.
  • Resolved issue where "Infrastructure Management Network" would fail to have the VLAN ID if a tagged network was used for the dashboard rather than the untagged network.
  • Resolved an issue where the LDAP configuration utility may not completely wipe a configuration.
  • Resolved a number of verbiage inconsistencies in the LDAP configuration utility.
  • Resolved a number of issues with decom-node where back-end storage commands would fail.
  • Resolved an issue where cluster-reboot may erroneously report that a cluster does not have the minimum number of nodes for a fully-redundant reboot.
  • Resolved a number of issues where cluster-reboot would sometimes fail.
  • Resolved an issue where the cluster upgrade process would erroneously always pick the first image.
  • Resolved an issue where the restricted shell's glob expansion and tab completion would result in exposing the underlying filesystem. As a result, glob expansion and tab completion are disabled on the restricted shell.
  • Resolved an issue where multipathing may not properly find some paths and path recovery may fail without a reboot.

VM Squared 2.3.3 (Partner-available Beta 4)

Released May 2, 2024

New Features:

  • Added support for managing external authentication from the CLI via a new manage-ldap tool.
  • Added support for displaying license compliance status via the Glasshouse UI.

External library and security remediations:

(Fixed or verified inapplicability)

  • CVE-2024-2201 ("InSpectre Gadget")

Bug Remediation:

(Including internal SoftIron CVEs)

  • Resolved a race condition where an image upload's temporary files may be cleaned up before the image is actually imported to the datastore via the Glasshouse GUI.
  • Resolved an issue where the built-in account passwords could erroneously be changed via the Glasshouse GUI.
  • Resolved an issue in the Glasshouse GUI where some graphs were being improperly displayed.
  • Resolved an issue where confusing data may be displayed in the Glasshouse GUI for some attributes of marketplaces and datastores.
  • Resolved an issue where creation of a blank image may fail in the Glasshouse UI.
  • Resolved an issue where cluster-upgrade may attempt an upgrade before a bundle is in the "READY" state.
  • Resolved an issue where the CLI may inform the user that the cluster is improperly licensed even when properly licensed.
  • Resolved an issue where a user may be able to erroneously see underlying files from the restricted shell via tab completion. This does have the side-effect of disabling tab completion via the CLI.

VM Squared 2.3.2 (Partner-available Beta 3)

Released April 29, 2024

New Features:

  • Adds upgrade command to the Dashboard, adding a supported method for direct upgrades to new releases without a reinstall.
  • Adds support for placing the dashboard on a tagged VLAN. This is useful in the event the backend cluster network needs to be protected or segregated from the rest of the LAN.
  • Added support for rebooting the entire cluster from the Dashboard's shell via the cluster-reboot command.
  • Added support for built-in multi-pathing (MPIO). Useful for hosts with multiple paths to SAS disks or Fibre Channel LUNs.
  • Added support for querying a default admin password of cluster during install. If left blank, an auto-generated password will still be used.
  • Added API endpoints for License compliance status. Fields include compliance status, the reason message, and the license expiration date. The beta license has been updated to expire on 27-MAY-2024.
  • Added code signing certificates for signature verification of future upgrades.

Enhancements:

  • Updated dashboard-console command to provide more feedback.
  • Updated various Dashboard shell commands to provide more feedback if the Orchestrator service is not yet up, as opposed to simply printing errors to the screen.
  • Updated installer to inform the user if there are no disks on which to install the software.

External library and security remediations:

(Fixed or verified inapplicability)

  • CVE-2024-2511

Bug Remediation: (Including internal SoftIron CVEs)

  • Resolved an issue with uploading large files in the next-gen Glasshouse GUI.
  • Resolved an issue where the reboot command may fail if no virtual machines are running on a node.
  • Resolved issue where NTP may fail to properly configure on the Dashboard.
  • Resolved multiple issues that may result in automatic reboot of VMs not occurring in the event of a host failure in the cluster.
  • Resolved issue where the assigned disk BUS field may be populated with incorrect data when choosing a device prefix (such as vd for VirtIO, sd for SCSI, or hd for IDE).
  • Resolved issue where some Dashboard commands may cut off part of the compute node hostnames.
  • Resolved issue where manage-admin-password accepts a NULL entry.
  • Resolved issues with Catalyst (previously esx2hc or esx2si) tool copying multiple disks in parallel.

VM Squared 2.3.1 (Partner-available Beta 2)

Released April 14, 2024

External Library Security Remediations: (Fixed or verified inapplicability)

  • CVE-2023-30590

Bug Remediation: (Including internal SoftIron CVEs)

  • Resolved data corruption issue with creating template and image from existing VM via "save as" function.
  • Resolved version reporting issue with some internal tools.
  • Resolved image upload issues with next-generation UI, "Glasshouse". This includes both "image" and "file" uploads.
  • Resolved issue where cluster is temporarily in an unsupported storage state when transitioning from one to three nodes for a fully redundant storage cluster. Now, a second cluster "monitor" daemon does not come online until there are at least three hosts available to avoid potential cluster split-brain, preventing the cluster from coming back up in the event of a failure during this migration.
  • Resolved hang on boot, when time synchronization fails due to network unavailability.
  • Resolved issue where auto-respawn of workloads, if a compute node fails, would not properly trigger.
  • Resolved issue where the syslog data may contain binary data.
  • Resolved issue where the storage SMART daemon may log excessive and erroneous temperature data.
  • Resolved issue where arguments to hypervisor kernel module would not properly be passed.
  • Resolved lockup issue with HP ProLiant Gen7/8/9 servers equipped with iLO 4.
  • Updated installer to more verbosely inform the user of disks being wiped.
  • Resolved issue bringing up non-LACP networking on some Mellanox NICs.
  • Resolved compatibility issue with SoftIron "Catalyst" migration tool (formerly esx2si).
  • Updated legacy boot loader boot string to be less confusing to the end user.

Enhancements:

  • Removed ability to rename nodes from the next-gen UI. This is not a supported action.
  • Removed "automatic VLAN ID" support from next-gen UI. This is not a supported action.
  • Updated "halt" and "reboot" commands to print impact of performing these actions on nodes running workloads.
  • Updated kernel to no longer panic on first OOPS to aid troubleshooting. Instead, we don't panic until 10,000 OOPS events.

VM Squared 2.3.0 (Partner-available Beta 1)

Released April 1, 2024

New Features:

  • Initial release available external to SoftIron

    • License-enforcement enabled by default. Beta key is baked into product with an expiration of 02-MAY-2024. After the license expires, the dashboard will enter into a reboot loop and will get bounced every 30 minutes.
    • SSH access is restricted to the VM Squared CLI. expert mode is available for troubleshooting only! Usage outside of the context of SoftIron support will be logged and the cluster will be in an UNSUPPORTED state!

  • Unified multiple SoftIron products to share a common base of libraries, including:

  • HyperCloud
  • VM Squared
  • Cloud Appliance Images
    • Load Balancer
    • Gateway
    • iSCSI
    • MinIO
  • Added next-generation UI from SoftIron, Glasshouse. This is the default UI in VM Squared, but is also available for use in HyperCloud.

Enhancements:

  • Enabled per-process accounting to allow for more granular resource utilization tracking.
  • Updated user-interactive processes to have higher preemption priority over background tasks to improve user interface responsiveness.
  • Improved handling of memory pressure on all node types.

Bug Remediation: (including internal SoftIron CVEs)

  • Resolved issue where backend storage placement groups may get stuck in a peering state forever.
  • Resolved issue with hypercloud and vmsquared CLI wrappers when arguments have spaces.