Next | Query returned 37 messages, browsing 1 to 10 | Previous

History of commit frequency

CVS Commit History:


   2018-09-14 11:53:25 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
sysutils/consul: Update to 1.2.3.

FEATURES:

- agent: New Cloud Auto-join provider: Kubernetes (K8S)
- http: Added support for "Authorization: Bearer" head in addition to
  the X-Consul-Token header.
- dns: Added a way to specify SRV weights for each service instance to
  allow weighted DNS load-balancing.
- dns: Include EDNS-ECS options in EDNS responses where appropriate:
  see RFC 7871
- ui: Add markers/icons for external sources

IMPROVEMENTS:

- ui: Switch to fullscreen layout for lists and detail, left aligned
  forms
- connect: TLS certificate readiness now performs x509 certificate
  verification to determine whether the cert is usable.
- ui: The syntax highlighting/code editor is now on by default
- ui: Fallback to showing `Node.Address` if `Service.Address` is not
  set
- gossip: Improvements to Serf and memberlist improving gossip
  stability on very large clusters (over 35k tested)

BUG FIXES:
- agent: Avoid returning empty data on startup of a non-leader server
- agent: Fixed a panic when serf_wan port was -1 but a
  reconnect_timeout_wan value was set.
- agent: Fixed a problem where errors regarding DNS server creation
  where never shown.
- agent: Start with invalid http configuration again, even though the
  build-in proxy for connect won't start in that case.
- catalog: Allow renaming nodes with IDs.
- dns: Fixes a bug with the DNS recursor, where we would not move onto
  the next provided recursor if we encounter a SERVFAIL or REFUSED
  status.
- server: Fixed a memory leak in blocking queries against /event/list.
- snapshot: Fixed a bug where node metadata wasn't being included in
  or restored from the snapshots.
- connect: Fixed a bug where managed proxy instances registered for
  instances with different name and ID and with restrictive ACL would
  not be allowed.
- connect: Fixed a bug where built-in CA state was not correctly
  restored from a snapshot
- connect: Fixed a bug where Checks with
  `deregister_critical_service_after` would deregister the service but
  not remove the managed proxy
- connect: Fixed a bug that would output an error about pruning CAs
  every hour on the leader and might cause some CA configurations not
  to be pruned correctly
- raft: Update raft vendoring to pull in a fix for a potential memory
  leak.
- license: (Consul Enterprise) Fix an issue with the license not being
  reloaded from snapshots.
- license: (Consul Enterprise) Fix an issue with encoding/decoding of
  the license package type from the /v1/operator/license endpoint.
- cli: Correctly exit with error code 1 when failing to list DCs with
  the catalog command
- ui: Improve layout on screens of a large portrait orientation
- ui: Various browser layout bugs for various vendors/setups
   2018-07-31 14:34:55 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
sysutils/consul: Update to 1.2.2

## 1.2.2 (July 30, 2018)

SECURITY:
- acl: Fixed an issue where writes operations on the Keyring and
  Operator were being allowed with a default allow policy even when
  explicitly denied in the policy.

FEATURES:

- **Alias Checks:** Alias checks allow a service or node to alias the
  health status of another service or node in the cluster.
- agent: New Cloud Auto-join providers: vSphere and Packet.net.
- cli: Added `-serf-wan-port`, `-serf-lan-port`, and `-server-port`
  flags to CLI for cases where these can't be specified in config
  files and `-hcl` is too cumbersome.
- connect: The TTL of leaf (service) certificates in Connect is now
  configurable.

IMPROVEMENTS:

- proxy: With `-register` flag, heartbeat failures will only log once
  service registration succeeds.
- http: 1.0.3 introduced rejection of non-printable chars in HTTP URLs
  due to a security vulnerability. Some users who had keys written
  with an older version which are now dissallowed were unable to delete
  them. A new config option disable_http_unprintable_char_filter is
  added to allow those users to remove the offending keys. Leaving this
  new option set long term is strongly discouraged as it bypasses
  filtering necessary to prevent some known vulnerabilities.
- agent: Allow for advanced configuration of some gossip related
  parameters.
- agent: Make some Gossip tuneables configurable via the config file
- ui: Included searching on `.Tags` when using the freetext search
  field.
- ui: Service.ID's are now shown in the Service detail page and (only
  if it is different from the service name) the Node Detail >
  [Services] tab.

BUG FIXES:

- acl/connect: Fix an issue that was causing managed proxies not to
  work when ACLs were enabled.
- connect: Fix issue with managed proxies and watches attempting to
  use a client addr that is 0.0.0.0 or ::
- connect: Allow Native and Unmanaged proxy configurations via config
  file
- connect: Fix bug causing 100% CPU on agent when Connect is disabled
  but a proxy is still running
- proxy: Don't restart proxies setup in a config file when Consul
  restarts
- ui: Display the Service.IP address instead of the Node.IP address in
  the Service detail view.
- ui: Watch for trailing slash stripping 301 redirects and forward the
  user to the correct location.
- connect: Fixed an issue in the connect native HTTP client where it
  failed to resolve service names.

## 1.2.1 (July 12, 2018)

IMPROVEMENTS:

- acl: Prevented multiple ACL token refresh operations from occurring
  simultaneously.
- acl: Add async-cache down policy mode to always do ACL token
  refreshes in the background to reduce latency.
- proxy: Pass through HTTP client env vars to managed proxies so that
  they can connect back to Consul over HTTPs when not serving HTTP.
- connect: Persist intermediate CAs on leader change.

BUG FIXES:

- api: Intention APIs parse error response body for error message.
- agent: Intention read endpoint returns a 400 on invalid UUID
- agent: Service registration with "services" does not error on
  Connect upstream configuration.
- dns: Ensure that TXT RRs dont get put in the Answer section for
  A/AAAA queries.
- dns: Ensure that only 1 CNAME is returned when querying for services
  that have non-IP service addresses.
- api: Fixed issue where `Lock` and `Semaphore` would return earlier
  than their requested timeout when unable to acquire the lock.
- watch: Fix issue with HTTPs only agents not executing watches
  properly
- agent: Managed proxies that bind to 0.0.0.0 now get a health check
  on a sane IP
- server: (Consul Enterprise) Fixed an issue causing Consul to panic
  when network areas were used
- license: (Consul Enterprise) Fixed an issue causing the snapshot
  agent to log erroneous licensing errors
   2018-07-03 14:14:30 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
sysutils/consul: Update to 1.2.0.

FEATURES:

- Connect Feature Beta: This version includes a major new feature for
  Consul named Connect. Connect enables secure service-to-service
  communication with automatic TLS encryption and identity-based
  authorization.
  - Connect must be enabled explicitly in configuration so upgrading a
    cluster will not affect any existing functionality until it's
    enabled.
  - This is a Beta feature, we don't recommend enabling this in
    production yet. Please see the documentation for more information.
- dns: Enable PTR record lookups for services with IPs that have no
  registered node
- ui: Default to serving the new UI. Setting the `CONSUL_UI_LEGACY`
  environment variable to `1` or `true` will revert to serving the old
UI

IMPROVEMENTS:

- agent: A Consul user-agent string is now sent to providers when
  making retry-join requests
- client: Add metrics for failed RPCs
- agent: Add configuration entry to control including TXT records for
  node meta in DNS responses
- client: Make RPC rate limit configuration reloadable

BUG FIXES:

- agent: Fixed an issue where watches were being duplicated on reload.
- agent: Fixed an issue with Agent watches on a HTTPS only agent would
  fail to use TLS.
- agent: Fixed bug that would cause unnecessary and frequent logging
  yamux keepalives
- dns: Re-enable full DNS compression
   2018-06-12 19:50:29 by Benny Siegert | Files touched by this commit (102) | Package updated
Log message:
Revbump all Go packages after lang/go update.
   2018-05-14 18:12:41 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
sysutils/consul: Update to 1.1.0.

FEATURES:

- UI: The web UI has been completely redesigned and rebuilt and is in
  an opt-in beta period.
- api: Added support for Prometheus client format in metrics endpoint
  with `?format=prometheus` (see docs)
- agent: New Cloud Auto-join provider: Joyent Triton.
- agent: (Consul Enterprise) Implemented license management with
  license propagation within a datacenter.

BREAKING CHANGES:

- agent: The following previously deprecated fields and config options
  have been removed
  - `CheckID` has been removed from config file check definitions (use
    `id` instead).
  - `script` has been removed from config file check definitions (use
    `args` instead).
  - `enableTagOverride` is no longer valid in service definitions (use
    `enable_tag_override` instead).
  - The deprecated set of metric names (beginning with
    `consul.consul.`) has been removed along with the
    `enable_deprecated_names` option from the metrics configuration.

IMPROVEMENTS:

- agent: Improve DNS performance on large clusters
- agent: `start_join`, `start_join_wan`, `retry_join`,
  `retry_join_wan` config params now all support go-sockaddr templates
- server: Added new configuration options `raft_snapshot_interval` and
  `raft_snapshot_threshold` to allow operators to  configure how often
  servers take raft snapshots. The default values for these have been
  tuned for large and busy clusters with high write load.

BUG FIXES:

- agent: Only call signal.Notify once during agent startup
- agent: Add support for the new Service Meta field in agent config
- api: Add support for the new Service Meta field in API client
- agent: Updated serf library for two bug fixes - allow enough time
  for leave intents to propagate
- agent: When node-level checks (e.g. maintenance mode) were deleted,
  some watchers currently in between blocking calls may have missed
  the change in index.
   2018-04-16 14:36:12 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
sysutils/consul: Update to 1.0.7.

IMPROVEMENTS:

- build: Bumped Go version to 1.10
- agent: Blocking queries on service-specific health and catalog
  endpoints now return a per-service `X-Consul-Index` improving watch
  performance on very busy clusters.
- agent: All endpoints now respond to OPTIONS requests.
- agent: List of supported TLS cipher suites updated to include newer
  options,
- agent: WAN federation can now be disabled by setting the serf WAN
  port to -1.
- agent: Added support for specifying metadata during service
  registration.
- agent: Added a new `discover-max-stale` config option to enable
  stale requests for service discovery endpoints.
- agent: (Consul Enterprise) Added a new option to the snapshot agent
  for configuring the S3 endpoint.
- dns: Introduced a new config param to limit the number of A/AAAA
  records returned.
- dns: Upgrade vendored DNS library to pick up bugfixes and
  improvements.
- server: Updated yamux library to pick up a performance improvement.
- server: Add near=\_ip support for prepared queries
- api: Add support for GZIP compression in HTTP responses.
- api: Add `IgnoreCheckIDs` to Prepared Query definition to allow
  temporarily bypassing faulty health checks

BUG FIXES:

- agent: Fixed an issue where the coordinate update endpoint was not
  correctly parsing the ACL token.
- agent: Fixed an issue where `consul monitor` couldn't be terminated
  until the first log line is delivered
- agent: Added warnings for when a node name isn't a valid DNS name
  and when the node name, a service name or service tags would exceed
  the allowed lengths for DNS names
- agent: Added truncation of TCP DNS responses to prevent errors for
  exceeding message size limits
- agent: Added -config-format flag to validate command to specify the
  syntax that should be used for parsing the config
- agent: HTTP Checks now report the HTTP method used instead of always
  reporting as a GET
- server: Fixed an issue where the leader could miss clean up after a
  leadership transition.
   2018-03-30 13:56:27 by Benny Siegert | Files touched by this commit (94) | Package updated
Log message:
Revbump all Go packages after 1.10.1 update.

ok wiz@ for committing during freeze
   2018-03-04 16:52:21 by Benny Siegert | Files touched by this commit (95) | Package updated
Log message:
Revbump all Go packages after Go 1.10 update.
   2018-02-27 12:37:44 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
sysutils/consul: Update to 1.0.6. Simplify Makefile.

## consul 1.0.6
- agent: Fixed a panic when using the Azure provider for retry-join.
- agent: Fixed a panic when querying Consul's DNS interface over TCP.
   2018-02-08 13:58:32 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
sysutils/consul: Update to 1.0.5.

SECURITY:

- dns: Updated DNS vendor library to pick up bug fix in the DNS server
  where an open idle connection blocks the accept loop.

FEATURES:

- agent: Added support for gRPC health checks that probe the standard
  gRPC health endpoint.

IMPROVEMENTS:

- agent: (Consul Enterprise) The `disable_update_check` option to
  disable Checkpoint now defaults to `true`
- build: Bumped Go version to 1.9.3.

BUG FIXES:

- agent: (Consul Enterprise) Fixed an issue where the snapshot agent's
  HTTP client config was being ignored in favor of the HTTP
  command-line flags.
- agent: Fixed an issue where health checks added to services with
  tags would cause extra periodic writes to the Consul servers, even
  if nothing had changed.
- agent: Fixed several areas where reading from catalog, health, or
  agent HTTP endpoints could make unintended mofidications to Consul's
  state in a way that would cause unnecessary anti-entropy syncs back
  to the Consul servers.
- agent: Fixed an issue where Serf events for failed Consul servers
  weren't being proactively processed by the RPC router.

Next | Query returned 37 messages, browsing 1 to 10 | Previous