./sysutils/consul, Tool for service discovery, monitoring and configuration

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 1.0.5, Package name: consul-1.0.5, Maintainer: filip

Consul is a tool for service discovery and configuration. Consul
is distributed, highly available, and extremely scalable.


Required to build:
[lang/go] [pkgtools/cwrappers]

Master sites:

SHA1: 2e106bdd525487d9f6bfda00a7841ef3783a41b4
RMD160: 4d20e3eb4f9b3b9bcc9933df3de78bb1307daae8
Filesize: 8012.041 KB

Version history: (Expand)


CVS history: (Expand)


   2018-02-08 13:58:32 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
sysutils/consul: Update to 1.0.5.

SECURITY:

- dns: Updated DNS vendor library to pick up bug fix in the DNS server
  where an open idle connection blocks the accept loop.

FEATURES:

- agent: Added support for gRPC health checks that probe the standard
  gRPC health endpoint.

IMPROVEMENTS:

- agent: (Consul Enterprise) The `disable_update_check` option to
  disable Checkpoint now defaults to `true`
- build: Bumped Go version to 1.9.3.

BUG FIXES:

- agent: (Consul Enterprise) Fixed an issue where the snapshot agent's
  HTTP client config was being ignored in favor of the HTTP
  command-line flags.
- agent: Fixed an issue where health checks added to services with
  tags would cause extra periodic writes to the Consul servers, even
  if nothing had changed.
- agent: Fixed several areas where reading from catalog, health, or
  agent HTTP endpoints could make unintended mofidications to Consul's
  state in a way that would cause unnecessary anti-entropy syncs back
  to the Consul servers.
- agent: Fixed an issue where Serf events for failed Consul servers
  weren't being proactively processed by the RPC router.
   2018-02-07 17:14:38 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
Update sysutils/consul to 1.0.4.

- agent: Fixed several areas where reading from catalog, health, or
  agent HTTP endpoints could make unintended mofidications to Consul's
  state in a way that would cause unnecessary anti-entropy syncs back to
  the Consul servers
   2018-02-02 13:20:27 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
Update sysutils/consul to 1.0.3.

SECURITY:
- ui: Patched handlebars JS to escape `=` to prevent potential XSS
  issues.

BREAKING CHANGES:
- agent: Updated Consul's HTTP server to ban all URLs containing
  non-printable characters (a bad request status will be returned for
  these cases). This affects some user-facing areas like key/value entry
  key names which are carried in URLs.

FEATURES:
- agent: Added retry-join support for Azure Virtual Machine Scale
  Sets.

IMPROVEMENTS:

- agent: Added agent-side telemetry around Catalog APIs to provide
  insight on Consul's operation from the user's perspecive.
- agent: Added the `NodeID` field back to the /v1/agent/self
  endpoint's `Config` block.
- api: Added missing `CheckID` and `Name` fields to API client's
  `AgentServiceCheck` structure so that IDs and names can be set when
  registering checks with services.

BUG FIXES:
- agent: Fixed an issue where config file symlinks were not being
  interpreted correctly.
- agent: Ignore malformed leftover service/check files and warn about
  them instead of refusing to start.
- agent: Enforce a valid port for the Serf WAN since it can't be
  disabled.
- agent: Stopped looging messages about zero RTTs when updating
  network coordinates since they are not harmful to the algorithm.
  Since we are still trying to find the root cause of these zero
  measurements, we added new metrics counters so these are still
  observable.
- server: Fixed a crash when POST-ing an empty body to the /v1/query
  endpoint.
- server: (Consul Enterprise) Fixed an issue where unhealthy servers
  were not replaced in a redundancy zone by autopilot (servers
  previously needed to be removed in order for a replacement to occur).
- ui: Added a URI escape around key/value keys so that it's not
  possible to create unexpected partial key names when entering
  characters like `?` inside a key.
   2017-12-18 14:54:44 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
Update sysutils/consul to 1.0.2.

## 1.0.2 (December 15, 2017)

IMPROVEMENTS:

- agent: Updated Serf to activate a new feature that resizes its
  internal message broadcast queue size based on the cluster size.
- agent: Updates posener/complete library to 1.0, which allows
  autocomplete for flags after an equal sign, and simplifies
  autocomplete functions.

BUG FIXES:

- agent: Updated memberlist to pull in a fix for negative RTT
  measurements and their associated log messages about rejected
  coordinates.
- agent: Fixed an issue where node metadata specified via command line
  arguments overrode node metadata specified by configuration files
- agent: Fixed an issue with the /v1/session/create API where it
  wasn't possible to create a session without the `serfHealth` check.
- agent: Fixed an issue with anti-entropy syncing where checks for
  services with tags would cause periodic updates to the catalog, even
  when nothing had changed
- cli: Added missing support for `-base64` option to `consul kv get`
  command.
- server: Fixed an issue with KV store tombstone tracking where bin
  tracking was being confused by monotonic time information carried in
  time stamps, resulting in many unnecessary bins.
- server: (Consul Enterprise) Fixed an issue with Network Segments
  where servers would not properly flood-join each other into all
  segments.
- server: Fixed an issue where it wasn't possible to disable
  Autopilot's dead server cleanup behavior using configuration files.
- server: Removed the 60 second timeout when restoring snapshots,
  which could cause large restores to fail on slower servers.
- server: Fixed a goroutine leak during keyring operations when errors
  are encountered.

## 1.0.1 (November 20, 2017)

FEATURES:

- New Auto Join Cloud Providers: Retry join support was added for
  Aliyun (Alibaba Cloud), Digital Ocean, OpenStack, and Scaleway
- HTTP/2 Support: If TLS is enabled on a Consul agent it will
  automatically negotiate to use HTTP/2 for suitably configured
  clients accessing the client API

IMPROVEMENTS:

- agent: (Consul Enterprise) Added AWS KMS support for S3 snapshots
  using the snapshot agent.
- agent: Watches in the Consul agent can now be configured to invoke
  an HTTP endpoint instead of an executable.
- agent: Added a new `-config-format` command line option which can be
  set to `hcl` or `json` to specify the format of configuration files
- agent: DNS recursors can now be specified as go-sockaddr templates.
- agent: Serf snapshots no longer save network coordinate information.
  This enables recovery from errors upon agent restart.
- agent: Added defensive code to prevent out of range ping times from
  infecting network coordinates
- agent: The agent now warns when there are extra unparsed command
  line arguments and refuses to start.
- agent: Updated go-sockaddr library to get CoreOS route detection
  fixes and the new `mask` functionality.
- agent: Added a new `enable_agent_tls_for_checks` configuration
  option that allows HTTP health checks for services requiring 2-way
  TLS to be checked using the agent's credentials.
- agent: Made logging of health check status more uniform and moved
  log entries with full check output from DEBUG to TRACE level for
  less noise.
- build: Consul is now built with Go 1.9.2.

BUG FIXES:

- agent: Consul 1.0 shipped with an issue where `Args` was erroneously
  named `ScriptArgs` for health check definitions in the
  /v1/agent/check/register and /v1/agent/service/register APIs
- agent: Docker container checks running on Linux could get into a
  flapping state because the Docker agent seems to close the
  connection prematurely even though the body is transferred
- agent: Added new form of `consul.http.*` metrics that were
  accidentally left out of Consul 1.0.
- agent: Fixed an issue with the server manager where periodic server
  client connection rebalancing could select a failed server
- agent: IPv6 addresses without port numbers and without surrounding
  brackets are now properly handled for joins
- agent: Fixed a rare startup panic of the Consul agent related to the
  LAN Serf instance ordering with the router manager.
- agent: Added back an exception for the `snapshot_agent` config key
  so that those configs can again live alongside Consul's configs.
- dns: Fixed an issue where components of a host name near the
  datacenter could be quietly ignored
- server: Fixed an issue where performing rolling updates of Consul
  servers could result in an outage from old servers remaining in the
  cluster
- server: Fixed a deadlock where tombstone garbage collection for the
  KV store could block other KV operations, stalling writes on the
  leader.
   2017-10-17 13:39:57 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
Update sysutils/consul to 1.0.0

SECURITY:

- Fixed an XSS issue with Consul's built-in web UI where node names
  were not being properly escaped.

BREAKING CHANGES:

- Raft Protocol Now Defaults to 3
- Config Files Require an Extension
- Deprecated Options Have Been Removed
- `statsite_prefix` Renamed to `metrics_prefix`
- `advertise_addrs` Removed
- Escaping Behavior Changed for go-discover Configs
- HTTP Verbs are Enforced in Many HTTP APIs
- Unauthorized KV Requests Return 403
- Config Section of Agent Self Endpoint has Changed
- Deprecated `configtest` Command Removed
- Undocumented Flags in `validate` Command Removed
- Metric Names Updated
- Checks Validated On Agent Startup

FEATURES:

- Support for HCL Config Files
- Support for Binding to Multiple Addresses
- Support for RFC1434 DNS TXT records
- Support for Running Subproccesses Directly Without a Shell
- Sentinel Integration

IMPROVEMENTS:

- agent: Added support to detect public IPv4 and IPv6 addresses on
  AWS.
- agent: Improved /v1/operator/raft/configuration endpoint which
  allows Consul to avoid an extra agent RPC call for the `consul
  operator raft list-peers` command.
- agent: Improved ACL system for the KV store to support list
  permissions. This behavior can be opted in. For more information,
  see the ACL Guide].
- agent: Updates miekg/dns library to later version to pick up bug
  fixes and improvements.
- agent: Added automatic retries to the RPC path, and a brief RPC
  drain time when servers leave. These changes make Consul more robust
  during graceful leaves of Consul servers, such as during upgrades, and
  help shield applications from "no leader" errors. These are configured
  with new `performance` options.
- agent: Added a new `discard_check_output` agent-level configuration
  option that can be used to trade off write load to the Consul
  servers vs. visibility of health check output. This is reloadable so
  it can be toggled without fully restarting the agent.
- api: Updated the API client to ride out network errors when
  monitoring locks and semaphores.
- build: Updated Go toolchain to version 1.9.1.
- cli: `consul lock` and `consul watch` commands will forward `TERM`
  and `KILL` signals to their child subprocess.
- cli: Added support for autocompletion].
- server: Updated BoltDB to final version 1.3.1.
- server: Improved dead member reap algorithm to fix edge cases where
  servers could get left behind.

BUG FIXES:

- agent: Fixed an issue where disabling both the http and https
  interfaces would cause a watch-related error on agent startup, even
  when no watches were defined.
- agent: Added an additional step to kill health check scripts that
  timeout on all platforms except Windows, and added a wait so that
  it's not possible to run multiple instances of the same health check
  script at the same time.
- cli: If the `consul operator raft list-peers` command encounters an
  error it will now exit with a non-zero exit code.
- cli: CLI commands will now show help for all of their arguments.
- server: Fixed an issue where the leader server could get into a
  state where it was no longer performing the periodic leader loop
  duties and unable to serve consistent reads after a barrier timeout
  error.

Full (unabridged) changelog:

  https://github.com/hashicorp/consul/blo … ANGELOG.md
   2017-09-22 12:24:11 by Jonathan Perkin | Files touched by this commit (1)
Log message:
consul: Fix checksums.
   2017-09-11 13:53:06 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
Update sysutils/consul to 0.9.3.

FEATURES:
- LAN Network Segments: (Consul Enterprise) Added a new Network Segments
  capability which allows users to configure Consul to support segmented
  LAN topologies with multiple, distinct gossip pools.
- WAN Join for Cloud Providers: Added WAN support for retry join for
  cloud providers via go-discover, including Amazon AWS, Microsoft
  Azure, Google Cloud, and SoftLayer. This uses the same "provider" syntax
  supported for `-retry-join` via the `-retry-join-wan` configuration.
- RPC Rate Limiter: Consul agents in client mode have a new `limits`
  configuration that enables a rate limit on RPC calls the agent makes
  to Consul servers.

IMPROVEMENTS:
- agent: Switched to using a read lock for the agent's RPC dispatcher,
  which prevents RPC calls from getting serialized.
- agent: When joining a cluster, Consul now skips the unique node ID
  constraint for Consul members running Consul older than 0.8.5. This
  makes it easier to upgrade to newer versions of Consul in an existing
  cluster with non-unique node IDs.
- build: Upgraded Go version to 1.9.
- server: Consul servers can re-establish quorum after all of them
  change their IP addresses upon a restart.

BUG FIXES:
- agent: Fixed an issue with consul watches not triggering when ACLs are
  enabled.
- agent: Updated memberlist library for a deadlock fix.
- agent: Fixed a panic when retrieving NS or SOA records on Consul
  clients (non-servers). This also changed the Consul server list to
  come from the catalog and not the agent's local state when serving these
  requests, so the results are consistent across a cluster.
- cli: Updated the CLI library to pull in a fix that prevents all
  subcommands from being shown when showing the agent's usage list; now
  just top-level commands are shown.
- server: Fixed an issue with Consul snapshots not saving on Windows
  because of errors with the `fsync` syscall.
   2017-08-17 09:33:28 by Filip Hajny | Files touched by this commit (2) | Package updated
Log message:
Update sysutils/consul to 0.9.2.

## 0.9.2 (August 9, 2017)

BUG FIXES:

- agent: Fixed an issue where the old `-retry-join-{ec2,azure,gce}`
  command line flags were not being honored.
- server: Reverted the change that made unauthorized KV queries return
  403 instead of 404 because it had a minor bug that affected the
  operation of Vault, and in addition to fixing the bug, we identified an
  additional case that needed to be covered.

## 0.9.1 (August 9, 2017)

FEATURES:

- Secure ACL Token Introduction: It's now possible to manage Consul's
  ACL tokens without having to place any tokens inside configuration
  files.
    * A new `/v1/agent/token` API allows an agent's ACL tokens to be
    * introduced without placing them into config files, and to update
    * them without restarting the agent.
    * A new `/v1/acl/bootstrap` allows a cluster's first management
    * token to be created without using the `acl_master_token`
    * configuration.
- Metrics Viewing Endpoint: A new `/v1/agent/metrics` API displays the
  current values of internally tracked metrics.

IMPROVEMENTS:

- agent: Retry Join for Amazon AWS, Microsoft Azure, Google Cloud, and
  (new) SoftLayer is now handled through the
  https://github.com/hashicorp/go-discover library.
- agent: Reports a more detailed error message if the LAN or WAN Serf
  instance fails to bind to an address.
- agent: Added NS records and corrected SOA records to allow Consul's
  DNS interface to work properly with zone delegation.
- agent: Added support for sending metrics with labels/tags to supported
  backends.
- agent: Added a new `prefix_filter` option in the `telemetry` config to
  allow fine-grained allowing/blocking the sending of certain metrics by
  prefix.
- cli: Added a `-child-exit-code` option to `consul lock` so that it
  propagates an error code of 2 if the child process exits with an
  error.
- docs: Added a new Geo Failover Guide showing how to use prepared
  queries to implement geo failover policies for services.
- docs: Added a new Consul with Containers Guide showing critical
  aspects of operating a Consul cluster that's run inside containers.
- server: Added a `RemoveEmptyTags` option to prepared query templates
  which will strip out any empty strings in the tags list before
  executing a query.
- server: Implemented a much faster recursive delete algorithm for the
  KV store.

BUG FIXES:

- agent: Clean up temporary files during disk write errors when
  persisting services and checks.
- agent: Fixed an issue where DNS and client bind address templates were
  not being parsed via the go-sockaddr library.
- agent: Fixed status code on all KV store operations that fail due to
  an ACL issue. They now return a 403 status code, rather than a 404.
- agent: Fixed quoting issues in script health check on Windows.
- agent: Fixed an issue where `consul monitor` would exit on any empty
  log line.
- server: Updated raft library to fix issue with machine crashes causing
  snapshot files to not get saved to disk