./sysutils/consul, Tool for service discovery, monitoring and configuration

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 1.2.3nb3, Package name: consul-1.2.3nb3, Maintainer: fhajny

Consul is a tool for service discovery and configuration. Consul
is distributed, highly available, and extremely scalable.

Required to build:
[pkgtools/cwrappers] [lang/go111]

Master sites:

SHA1: c507e1c0b31fa02dd5ba3f8a3a981e6f7b0c464d
RMD160: 33260dd044973a76673f3694d693ac3b16964542
Filesize: 17996.673 KB

Version history: (Expand)

CVS history: (Expand)

   2019-01-24 11:00:46 by Benny Siegert | Files touched by this commit (144) | Package updated
Log message:
Revbump Go packages after lang/go111 update.
   2018-12-19 16:47:12 by Benny Siegert | Files touched by this commit (141) | Package updated
Log message:
Revbump all Go packages after go111 update.
   2018-12-15 22:12:25 by Thomas Klausner | Files touched by this commit (67) | Package updated
Log message:
*: update email for fhajny
   2018-11-04 19:38:09 by Benny Siegert | Files touched by this commit (122) | Package updated
Log message:
Revbump all Go packages after go111 update.
   2018-09-14 11:53:25 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
sysutils/consul: Update to 1.2.3.


- agent: New Cloud Auto-join provider: Kubernetes (K8S)
- http: Added support for "Authorization: Bearer" head in addition to
  the X-Consul-Token header.
- dns: Added a way to specify SRV weights for each service instance to
  allow weighted DNS load-balancing.
- dns: Include EDNS-ECS options in EDNS responses where appropriate:
  see RFC 7871
- ui: Add markers/icons for external sources


- ui: Switch to fullscreen layout for lists and detail, left aligned
- connect: TLS certificate readiness now performs x509 certificate
  verification to determine whether the cert is usable.
- ui: The syntax highlighting/code editor is now on by default
- ui: Fallback to showing `Node.Address` if `Service.Address` is not
- gossip: Improvements to Serf and memberlist improving gossip
  stability on very large clusters (over 35k tested)

- agent: Avoid returning empty data on startup of a non-leader server
- agent: Fixed a panic when serf_wan port was -1 but a
  reconnect_timeout_wan value was set.
- agent: Fixed a problem where errors regarding DNS server creation
  where never shown.
- agent: Start with invalid http configuration again, even though the
  build-in proxy for connect won't start in that case.
- catalog: Allow renaming nodes with IDs.
- dns: Fixes a bug with the DNS recursor, where we would not move onto
  the next provided recursor if we encounter a SERVFAIL or REFUSED
- server: Fixed a memory leak in blocking queries against /event/list.
- snapshot: Fixed a bug where node metadata wasn't being included in
  or restored from the snapshots.
- connect: Fixed a bug where managed proxy instances registered for
  instances with different name and ID and with restrictive ACL would
  not be allowed.
- connect: Fixed a bug where built-in CA state was not correctly
  restored from a snapshot
- connect: Fixed a bug where Checks with
  `deregister_critical_service_after` would deregister the service but
  not remove the managed proxy
- connect: Fixed a bug that would output an error about pruning CAs
  every hour on the leader and might cause some CA configurations not
  to be pruned correctly
- raft: Update raft vendoring to pull in a fix for a potential memory
- license: (Consul Enterprise) Fix an issue with the license not being
  reloaded from snapshots.
- license: (Consul Enterprise) Fix an issue with encoding/decoding of
  the license package type from the /v1/operator/license endpoint.
- cli: Correctly exit with error code 1 when failing to list DCs with
  the catalog command
- ui: Improve layout on screens of a large portrait orientation
- ui: Various browser layout bugs for various vendors/setups
   2018-07-31 14:34:55 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
sysutils/consul: Update to 1.2.2

## 1.2.2 (July 30, 2018)

- acl: Fixed an issue where writes operations on the Keyring and
  Operator were being allowed with a default allow policy even when
  explicitly denied in the policy.


- **Alias Checks:** Alias checks allow a service or node to alias the
  health status of another service or node in the cluster.
- agent: New Cloud Auto-join providers: vSphere and Packet.net.
- cli: Added `-serf-wan-port`, `-serf-lan-port`, and `-server-port`
  flags to CLI for cases where these can't be specified in config
  files and `-hcl` is too cumbersome.
- connect: The TTL of leaf (service) certificates in Connect is now


- proxy: With `-register` flag, heartbeat failures will only log once
  service registration succeeds.
- http: 1.0.3 introduced rejection of non-printable chars in HTTP URLs
  due to a security vulnerability. Some users who had keys written
  with an older version which are now dissallowed were unable to delete
  them. A new config option disable_http_unprintable_char_filter is
  added to allow those users to remove the offending keys. Leaving this
  new option set long term is strongly discouraged as it bypasses
  filtering necessary to prevent some known vulnerabilities.
- agent: Allow for advanced configuration of some gossip related
- agent: Make some Gossip tuneables configurable via the config file
- ui: Included searching on `.Tags` when using the freetext search
- ui: Service.ID's are now shown in the Service detail page and (only
  if it is different from the service name) the Node Detail >
  [Services] tab.


- acl/connect: Fix an issue that was causing managed proxies not to
  work when ACLs were enabled.
- connect: Fix issue with managed proxies and watches attempting to
  use a client addr that is or ::
- connect: Allow Native and Unmanaged proxy configurations via config
- connect: Fix bug causing 100% CPU on agent when Connect is disabled
  but a proxy is still running
- proxy: Don't restart proxies setup in a config file when Consul
- ui: Display the Service.IP address instead of the Node.IP address in
  the Service detail view.
- ui: Watch for trailing slash stripping 301 redirects and forward the
  user to the correct location.
- connect: Fixed an issue in the connect native HTTP client where it
  failed to resolve service names.

## 1.2.1 (July 12, 2018)


- acl: Prevented multiple ACL token refresh operations from occurring
- acl: Add async-cache down policy mode to always do ACL token
  refreshes in the background to reduce latency.
- proxy: Pass through HTTP client env vars to managed proxies so that
  they can connect back to Consul over HTTPs when not serving HTTP.
- connect: Persist intermediate CAs on leader change.


- api: Intention APIs parse error response body for error message.
- agent: Intention read endpoint returns a 400 on invalid UUID
- agent: Service registration with "services" does not error on
  Connect upstream configuration.
- dns: Ensure that TXT RRs dont get put in the Answer section for
  A/AAAA queries.
- dns: Ensure that only 1 CNAME is returned when querying for services
  that have non-IP service addresses.
- api: Fixed issue where `Lock` and `Semaphore` would return earlier
  than their requested timeout when unable to acquire the lock.
- watch: Fix issue with HTTPs only agents not executing watches
- agent: Managed proxies that bind to now get a health check
  on a sane IP
- server: (Consul Enterprise) Fixed an issue causing Consul to panic
  when network areas were used
- license: (Consul Enterprise) Fixed an issue causing the snapshot
  agent to log erroneous licensing errors
   2018-07-03 14:14:30 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
sysutils/consul: Update to 1.2.0.


- Connect Feature Beta: This version includes a major new feature for
  Consul named Connect. Connect enables secure service-to-service
  communication with automatic TLS encryption and identity-based
  - Connect must be enabled explicitly in configuration so upgrading a
    cluster will not affect any existing functionality until it's
  - This is a Beta feature, we don't recommend enabling this in
    production yet. Please see the documentation for more information.
- dns: Enable PTR record lookups for services with IPs that have no
  registered node
- ui: Default to serving the new UI. Setting the `CONSUL_UI_LEGACY`
  environment variable to `1` or `true` will revert to serving the old


- agent: A Consul user-agent string is now sent to providers when
  making retry-join requests
- client: Add metrics for failed RPCs
- agent: Add configuration entry to control including TXT records for
  node meta in DNS responses
- client: Make RPC rate limit configuration reloadable


- agent: Fixed an issue where watches were being duplicated on reload.
- agent: Fixed an issue with Agent watches on a HTTPS only agent would
  fail to use TLS.
- agent: Fixed bug that would cause unnecessary and frequent logging
  yamux keepalives
- dns: Re-enable full DNS compression
   2018-06-12 19:50:29 by Benny Siegert | Files touched by this commit (102) | Package updated
Log message:
Revbump all Go packages after lang/go update.