Upgrade Groovy from
Integration of Winstone
4.0: Upgrade bundled Jetty from
9.4.5.v20170502. This removes support for the deprecated SPDY protocol. The
--spdy parameter has been removed accordingly and Jenkins may refuse to start if it's set.
Update Remoting from
3.10 adding opt-in support for work directories and improving logging in Jenkins agents.
2.0: Update from SSHD Core
0.14.0 to Apache MINA SSHD
1.6.0 in Jenkins core and Jenkins CLI.
Update the Mailer plugin version installed when updating from very old Jenkins releases to include the fix for SECURITY-372, the SSH Slaves plugin for SECURITY-161, and the Script Security plugin for SECURITY-258.
Freestyle projects may now list Pipeline jobs as downstream and trigger them, without needing to use the Parameterized Trigger plugin or reverse triggers ("Build after other projects are built").
Internal: Define enabling/disabling in
ParameterizedJob rather than
Internal: Offer default methods on
ParameterizedJob to have less boilerplate code.
Fixed Pipeline compatibility for a number of CLI commands (
set-build-display-name), as well as some issues affecting error reporting in other commands when used with Pipeline.
If you have the Authorize Project plugin installed and configured, its configuration will now be treated as final with respect to the behavior of Job/Build checks from Build other projects and Build after other projects are built. Formerly, if a Per-project configurable Build Authorization was enabled globally but some projects did not specify an Authorization, the two aforementioned checks would automatically fall back to checking as anonymous (typically denying build permission). To restore the former behavior, explicitly configure a Project default Build Authorization to be Run as anonymous. Note that this will affect all build-scoped permission checks, including for example Agent/Build.
Tasks.getAuthenticationOf now honors authentication contributed by
Update WinP from
1.25 to improve performance and diagnostics of issues like JENKINS-30782.
Moved agent port and protocol configuration out of "security" (authentication and authorization) block in Configure Global Security.
Add section headers for Markup Formatter and CSRF Protection in Configure Global Security form to make these options more obvious.
Use one-column layout for REST API documentation (.../api URLs).
Plugin Development: Jenkins now no longer publishes a
war-for-test artifact. Plugins using this or a later version of Jenkins as baseline need to use plugin parent POM 2.30 or later.
SSHD Module 2.0: Enable
aes256ctr ciphers if JVM supports unlimited-strength encryption.
4.1: Add Jetty HTTP/2 connector and corresponding options for Winstone-Jetty.
Don't reload user records from disk unless explicitly requested to improve performance of user record access.
Enable remoting work directories by default for newly created agents launched via JNLP (Java Web Start Launcher).
Always follow redirects for downloading update center metadata, so misbehaving plugins cannot break it.
Minor optimization to queue maintenance routines and printing of console notes, mainly for the benefit of Pipeline node blocks.
Avoid unnecessary locking to improve performance related to actions.
Improve performance when reading the console text of a build.
Add Polish translations for setup wizard.
Update Windows service wrapper from
2.1.2 and Windows Agent Installer from
Log name of the executor thread that died to improve diagnosability.
2.73+ SSH agent sometimes will not start if using passphrase-protected
Fix unability to launch SSH Slave since
$HOME is not writable on Master
9.4.5: Prevent the
400 Bad Host header error for
HttpChannelOverHttp when operating behind reverse proxy.
StackOverflowError in log recorder when Winstone-Jetty debug logging is enabled. (regression in
Update jnr-posix from
3.0.41 to pick up improvements and fixes in the POSIX platforms support.
Fix resource loading in plugins using the
PluginFirstClassLoader, e.g. loading Groovy classes from plugin resources.
Enable simpler syntax for
upstream build trigger in pipelines.
Internal: Update Annotation Indexer to
1.12 to work around JRE bug in tests.
Follow HTTP redirects while initiating CLI connection.
Fix version number shown in
2.0 upgrade wizard.
Correctly show or suppress warnings about undefined parameters based on
hudson.model.ParametersAction.keepUndefinedParameters system property.
Internal: Delete obsolete SECURITY-144-compat exclusion that can break tests.
Don't monitor response time on offline agents.
Reliably close build log file when using chained
JNLPLauncher configuration page to work around regression in Docker Plugin (regression in
Prevent caching of the item categories list by the browser to prevent stale data.
Improve robustness of the reverse build trigger ("Build after other projects are built").
Include culprits in XML and JSON API again (regression in
Button to validate proxy configuration in Manage Plugins now works correctly with NTLM authorization.