All Versions
160
Latest Version
Avg Release Cycle
28 days
Latest Release
383 days ago
Changelog History
Page 1
Changelog History
Page 1
-
v1.4.3 Changes
November 21, 2022๐ IMPROVEMENTS:
- api: Added an API for counting evaluations that match a filter [GH-15147]
- ๐ cli: Improved performance of eval delete with large filter sets [GH-15117]
- ๐ฒ consul: add trace logging around service registrations [GH-6115]
- โก๏ธ deps: Updated github.com/aws/aws-sdk-go from 1.44.84 to 1.44.126 [GH-15081]
- โก๏ธ deps: Updated github.com/docker/cli from 20.10.18+incompatible to 20.10.21+incompatible [GH-15078]
- exec: Allow running commands from mounted host volumes [GH-14851]
- โฑ scheduler: when multiple evaluations are pending for the same job, evaluate the latest and cancel the intermediaries on success [GH-14621]
- server: Add a git
revision
tag to the serf tags gossiped between servers. [GH-9159] - template: Expose per-template configuration for
error_on_missing_key
. This allows jobspec authors to specify that a 0๏ธโฃ template should fail if it references a struct or map key that does not exist. The default value is false and should be fully backward compatible. [GH-14002] - ๐ท ui: Adds a "Pack" tag and logo on the jobs list index when appropriate [GH-14833]
- โก๏ธ ui: add consul connect service upstream and on-update info to the service sidebar [GH-15324]
- ๐ป ui: allow users to upload files by click or drag in the web ui [GH-14747]
๐ BUG FIXES:
- api: Ensure all request body decode errors return a 400 status code [GH-15252]
- ๐ autopilot: Fixed a bug where autopilot would try to fetch raft stats from other regions [GH-15290]
- ๐ cleanup: fixed missing timer.Reset for plan queue stat emitter [GH-15134]
- ๐ client: Fixed a bug where tasks would restart without waiting for interval [GH-15215]
- ๐ณ client: fixed a bug where non-
docker
tasks with network isolation would leak network namespaces and iptables rules if the client was restarted while they were running [GH-15214] - client: prevent allocations from failing on client reconnect by retrying RPC requests when no servers are available yet [GH-15140]
- ๐ csi: Fixed race condition that can cause a panic when volume is garbage collected [GH-15101]
- ๐ device: Fixed a bug where device plugins would not fingerprint on startup [GH-15125]
- ๐ drivers: Fixed a bug where one goroutine was leaked per task [GH-15180]
- ๐ง drivers: pass missing
propagation_mode
configuration for volume mounts to external plugins [GH-15096] - ๐ event_stream: fixed a bug where dynamic port values would fail to serialize in the event stream [GH-12916]
- ๐จ fingerprint: Ensure Nomad can correctly fingerprint Consul gRPC where the Consul agent is running v1.14.0 or greater [GH-15309]
- ๐ keyring: Fixed a bug where a missing key would prevent any further replication. [GH-15092]
- โช keyring: Fixed a bug where replication would stop after snapshot restores [GH-15227]
- keyring: Re-enabled keyring garbage collection after fixing a bug where keys would be garbage collected even if they were used to sign a live allocation's workload identity. [GH-15092]
- โก๏ธ scheduler: Fixed a bug that prevented disconnected allocations to be updated after they reconnect. [GH-15068]
- โฑ scheduler: Prevent unnecessary placements when disconnected allocations reconnect. [GH-15068]
- ๐ template: Fixed a bug where template could cause agent panic on startup [GH-15192]
- ๐ท ui: Fixed a bug where the task log sidebar would close and re-open if the parent job state changed [GH-15146]
- ๐ variables: Fixed a bug where a long-running rekey could hit the nack timeout [GH-15102]
- โฌ๏ธ wi: Fixed a bug where clients running pre-1.4.0 allocations would erase the token used to query service registrations after upgrade [GH-15121]
-
v1.4.2 Changes
October 26, 2022๐ SECURITY:
- ๐ event stream: Fixed a bug where ACL token expiration was not checked when emitting events [GH-15013]
- ๐ variables: Fixed a bug where non-sensitive variable metadata (paths and raft indexes) was exposed via the template
nomadVarList
function to other jobs in the same namespace. [GH-15012]
๐ IMPROVEMENTS:
- ๐ท cli: Added
-id-prefix-template
option tonomad job dispatch
[GH-14631] - cli: add nomad fmt to the CLI [GH-14779]
- โก๏ธ deps: update go-memdb for goroutine leak fix [GH-14983]
- ๐ณ docker: improve memory usage for docker_logger [GH-14875]
- event stream: Added ACL role topic with create and delete types [GH-14923]
- โฑ scheduler: Allow jobs not requiring network resources even when no network is fingerprinted [GH-14300]
- ๐ป ui: adds searching and filtering to the topology page [GH-14913]
๐ BUG FIXES:
- acl: Callers should be able to read policies linked via roles to the token used [GH-14982]
- acl: Ensure all federated servers meet v.1.4.0 minimum before ACL roles can be written [GH-14908]
- ๐ acl: Fixed a bug where Nomad version checking for one-time tokens was enforced across regions [GH-14912]
- cli: prevent a panic when the Nomad API returns an error while collecting a debug bundle [GH-14992]
- client: Check ACL token expiry when resolving token within ACL cache [GH-14922]
- ๐ client: Fixed a bug where Nomad could not detect cores on recent RHEL systems [GH-15027]
- ๐ง client: Fixed a bug where network fingerprinters were not reloaded when the client configuration was reloaded with SIGHUP [GH-14615]
- client: Resolve ACL roles within client ACL cache [GH-14922]
- ๐ consul: Fixed a bug where services continuously re-registered [GH-14917]
- consul: atomically register checks on initial service registration [GH-14944]
- โก๏ธ deps: Update hashicorp/consul-template to 90370e07bf621811826b803fb633dadbfb4cf287; fixes template rerendering issues when only user or group set [GH-15045]
- โก๏ธ deps: Update hashicorp/raft to v1.3.11; fixes unstable leadership on server removal [GH-15021]
- event stream: Check ACL token expiry when resolving tokens [GH-14923]
- event stream: Resolve ACL roles within ACL tokens [GH-14923]
- ๐ keyring: Fixed a bug where
nomad system gc
forced a root keyring rotation. [GH-15009] - ๐ keyring: Fixed a bug where if a key is rotated immediately following a leader election, plans that are in-flight may get signed before the new leader has the key. Allow for a short timeout-and-retry to avoid rejecting plans. [GH-14987]
- โฌ๏ธ keyring: Fixed a bug where keyring initialization is blocked by un-upgraded federated regions [GH-14901]
- ๐ง keyring: Fixed a bug where root keyring garbage collection configuration values were not respected. [GH-15009]
- ๐ keyring: Fixed a bug where root keyring initialization could occur before the raft FSM on the leader was verified to be up-to-date. [GH-14987]
- ๐ keyring: Fixed a bug where root keyring replication could make incorrectly stale queries and exit early if those queries did not return the expected key. [GH-14987]
- ๐ keyring: Fixed a bug where the root keyring replicator's rate limiting would be skipped if the keyring replication exceeded the burst rate. [GH-14987]
- ๐ keyring: Removed root key garbage collection to avoid orphaned workload identities [GH-15034]
- nomad native service discovery: Ensure all local servers meet v.1.3.0 minimum before service registrations can be written [GH-14924]
- โฑ scheduler: Fixed a bug where version checking for disconnected clients handling was enforced across regions [GH-14912]
- ๐ท servicedisco: Fixed a bug where job using checks could land on incompatible client [GH-14868]
- ๐ง services: Fixed a regression where check task validation stopped allowing some configurations [GH-14864]
- โก๏ธ ui: Fixed line charts to update x-axis (time) where relevant [GH-14814]
- ๐ป ui: Fixes an issue where service tags would bleed past the edge of the screen [GH-14832]
- ๐ variables: Fixed a bug where Nomad version checking was not enforced for writing to variables [GH-14912]
- ๐ variables: Fixed a bug where getting empty results from listing variables resulted in a permission denied error. [GH-15012]
-
v1.4.1 Changes
October 06, 2022๐ BUG FIXES:
- โฌ๏ธ keyring: Fixed a panic that can occur during upgrades to 1.4.0 when initializing the keyring [GH-14821]
-
v1.4.0 Changes
October 04, 2022๐ FEATURES:
- ACL Roles: Added support for ACL Roles. [GH-14320]
- Nomad Native Service Discovery: Add built-in support for checks on Nomad services [GH-13715]
- Variables: Added support for storing encrypted configuration values. [GH-13000]
- ๐ป UI Services table: Display task-level services in addition to group-level services. [GH-14199]
๐ฅ BREAKING CHANGES:
- ๐ audit (Enterprise): fixed inconsistency in event filter logic [GH-14212]
- ๐ cli:
eval status -json
no longer supports listing all evals in JSON. Useeval list -json
. [GH-14651] - ๐ core: remove support for raft protocol version 2 [GH-13467]
๐ SECURITY:
- client: recover from panics caused by artifact download to prevent the Nomad client from crashing [GH-14696]
๐ IMPROVEMENTS:
- acl: ACL tokens can now be created with an expiration TTL. [GH-14320]
- api: return a more descriptive error when /v1/acl/bootstrap fails to decode request body [GH-14629]
- โฌ๏ธ autopilot: upgrade to raft-autopilot library [GH-14441]
- ๐ cli: Removed deprecated network quota fields from
quota status
output [GH-14468] - cli:
acl policy info
output format has changed to improve readability with large policy documents [GH-14140] - cli:
operator debug
now writes newline-delimited JSON files for large collections [GH-14610] - cli: ignore
-hcl2-strict
when -hcl1 is set. [GH-14426] - โก๏ธ cli: warn destructive update only when count is greater than 1 [GH-13103]
- ๐ client: Add built-in support for checks on nomad services [GH-13715]
- client: re-enable nss-based user lookups [GH-14742]
- ๐ท connect: add namespace, job, and group to Envoy stats [GH-14311]
- connect: add nomad environment variables to envoy bootstrap [GH-12959]
- ๐ง consul: Allow interpolation of task environment values into Consul Service Mesh configuration [GH-14445]
- consul: Enable setting custom tagged_addresses field [GH-12951]
- core: constraint operands are now compared numerically if operands are numbers [GH-14722]
- โก๏ธ deps: Update fsouza/go-dockerclient to v1.8.2 [GH-14112]
- โก๏ธ deps: Update go.etcd.io/bbolt to v1.3.6 [GH-14025]
- โก๏ธ deps: Update google.golang.org/grpc to v1.48.0 [GH-14103]
- โก๏ธ deps: Update gopsutil for improvements in fingerprinting on non-Linux platforms [GH-14209]
- ๐ deps: Updated
github.com/armon/go-metrics
tov0.4.1
which includes a performance improvement for Prometheus sink [GH-14493] - โก๏ธ deps: Updated
github.com/hashicorp/go-version
tov1.6.0
[GH-14364] - ๐ deps: remove unused darwin C library [GH-13894]
- fingerprint: Add node attribute for number of reservable cores:
cpu.num_reservable_cores
[GH-14694] - ๐จ fingerprint: Consul and Vault attributes are no longer cleared on fingerprinting failure [GH-14673]
- ๐ท jobspec: Added
strlen
HCL2 function to determine the length of a string [GH-14463] - ๐ฒ server: Log when a node's eligibility changes [GH-14125]
- ๐ท ui: Display different message when trying to exec into a job with no task running. [GH-14071]
- ๐ท ui: add service discovery, along with health checks, to job and allocation routes [GH-14408]
- ๐ ui: adds a sidebar to show in-page logs for a given task, accessible via job, client, or task group routes [GH-14612]
- ๐ท ui: allow deep-dive clicks to tasks from client, job, and task group routes. [GH-14592]
- ๐ป ui: attach timestamps and a visual indicator on failure to health checks in the Web UI [GH-14677]
๐ BUG FIXES:
- ๐ api: Fixed a bug where the List Volume API did not include the
ControllerRequired
andResourceExhausted
fields. [GH-14484] - ๐ท cli: Ignore Vault token when generating job diff. [GH-14424]
- ๐ cli: fixed a bug in the
operator api
command where the HTTPS scheme was not always correctly calculated [GH-14635] - ๐ท cli: return exit code
255
whennomad job plan
fails job validation. [GH-14426] - cli: set content length on POST requests when using the
nomad operator api
command [GH-14634] - ๐ client: Fixed bug where clients could attempt to connect to servers with invalid addresses retrieved from Consul. [GH-14431]
- core: prevent new allocations from overlapping execution with stopping allocations [GH-10446]
- ๐ csi: Fixed a bug where a volume that was successfully unmounted by the client but then failed controller unpublishing would not be marked free until garbage collection ran. [GH-14675]
- ๐ csi: Fixed a bug where the server would not send controller unpublish for a failed allocation. [GH-14484]
- ๐ csi: Fixed a data race in the volume unpublish endpoint that could result in claims being incorrectly marked as freed before being persisted to raft. [GH-14484]
- ๐ helpers: Fixed a bug where random stagger func did not protect against negative inputs [GH-14497]
- ๐ง jobspec: Fixed a bug where an
artifact
withheaders
configuration would fail to parse when using HCLv1 [GH-14637] - โฑ metrics: Update client
node_scheduling_eligibility
value with server heartbeats. [GH-14483] - โก๏ธ quotas (Enterprise): Fixed a server crashing panic when updating and checking a quota concurrently.
- ๐ท rpc (Enterprise): check for spec changes in all regions when registering multiregion jobs [GH-14519]
- ๐ scheduler (Enterprise): Fixed bug where the scheduler would treat multiregion jobs as paused for job types that don't use deployments [GH-14659]
- ๐ template: Fixed a bug where the
splay
timeout was not being applied whenchange_mode
was set toscript
. [GH-14749] - ๐ ui: Remove extra space when displaying the version in the menu footer. [GH-14457]
-
v1.3.8 Changes
November 21, 2022๐ BUG FIXES:
- api: Ensure all request body decode errors return a 400 status code [GH-15252]
- ๐ cleanup: fixed missing timer.Reset for plan queue stat emitter [GH-15134]
- ๐ client: Fixed a bug where tasks would restart without waiting for interval [GH-15215]
- ๐ณ client: fixed a bug where non-
docker
tasks with network isolation would leak network namespaces and iptables rules if the client was restarted while they were running [GH-15214] - client: prevent allocations from failing on client reconnect by retrying RPC requests when no servers are available yet [GH-15140]
- ๐ csi: Fixed race condition that can cause a panic when volume is garbage collected [GH-15101]
- ๐ device: Fixed a bug where device plugins would not fingerprint on startup [GH-15125]
- ๐ drivers: Fixed a bug where one goroutine was leaked per task [GH-15180]
- ๐ง drivers: pass missing
propagation_mode
configuration for volume mounts to external plugins [GH-15096] - ๐ event_stream: fixed a bug where dynamic port values would fail to serialize in the event stream [GH-12916]
- ๐จ fingerprint: Ensure Nomad can correctly fingerprint Consul gRPC where the Consul agent is running v1.14.0 or greater [GH-15309]
- โก๏ธ scheduler: Fixed a bug that prevented disconnected allocations to be updated after they reconnect. [GH-15068]
- โฑ scheduler: Prevent unnecessary placements when disconnected allocations reconnect. [GH-15068]
- ๐ template: Fixed a bug where template could cause agent panic on startup [GH-15192]
-
v1.3.7 Changes
October 26, 2022๐ IMPROVEMENTS:
- โก๏ธ deps: update go-memdb for goroutine leak fix [GH-14983]
- ๐ณ docker: improve memory usage for docker_logger [GH-14875]
๐ BUG FIXES:
- ๐ acl: Fixed a bug where Nomad version checking for one-time tokens was enforced across regions [GH-14911]
- ๐ client: Fixed a bug where Nomad could not detect cores on recent RHEL systems [GH-15027]
- ๐ consul: Fixed a bug where services continuously re-registered [GH-14917]
- consul: atomically register checks on initial service registration [GH-14944]
- โก๏ธ deps: Update hashicorp/raft to v1.3.11; fixes unstable leadership on server removal [GH-15021]
- nomad native service discovery: Ensure all local servers meet v.1.3.0 minimum before service registrations can be written [GH-14924]
- โฑ scheduler: Fixed a bug where version checking for disconnected clients handling was enforced across regions [GH-14911]
-
v1.3.6 Changes
October 04, 2022๐ SECURITY:
- client: recover from panics caused by artifact download to prevent the Nomad client from crashing [GH-14696]
๐ IMPROVEMENTS:
- api: return a more descriptive error when /v1/acl/bootstrap fails to decode request body [GH-14629]
- cli: ignore
-hcl2-strict
when -hcl1 is set. [GH-14426] - โก๏ธ cli: warn destructive update only when count is greater than 1 [GH-13103]
- ๐ง consul: Allow interpolation of task environment values into Consul Service Mesh configuration [GH-14445]
- ๐ท ui: Display different message when trying to exec into a job with no task running. [GH-14071]
๐ BUG FIXES:
- ๐ api: Fixed a bug where the List Volume API did not include the
ControllerRequired
andResourceExhausted
fields. [GH-14484] - ๐ท cli: Ignore Vault token when generating job diff. [GH-14424]
- ๐ cli: fixed a bug in the
operator api
command where the HTTPS scheme was not always correctly calculated [GH-14635] - ๐ท cli: return exit code
255
whennomad job plan
fails job validation. [GH-14426] - cli: set content length on POST requests when using the
nomad operator api
command [GH-14634] - ๐ client: Fixed bug where clients could attempt to connect to servers with invalid addresses retrieved from Consul. [GH-14431]
- ๐ csi: Fixed a bug where a volume that was successfully unmounted by the client but then failed controller unpublishing would not be marked free until garbage collection ran. [GH-14675]
- ๐ csi: Fixed a bug where the server would not send controller unpublish for a failed allocation. [GH-14484]
- ๐ csi: Fixed a data race in the volume unpublish endpoint that could result in claims being incorrectly marked as freed before being persisted to raft. [GH-14484]
- ๐ helpers: Fixed a bug where random stagger func did not protect against negative inputs [GH-14497]
- ๐ง jobspec: Fixed a bug where an
artifact
withheaders
configuration would fail to parse when using HCLv1 [GH-14637] - โฑ metrics: Update client
node_scheduling_eligibility
value with server heartbeats. [GH-14483] - โก๏ธ quotas (Enterprise): Fixed a server crashing panic when updating and checking a quota concurrently.
- ๐ท rpc: check for spec changes in all regions when registering multiregion jobs [GH-14519]
- ๐ scheduler: Fixed bug where the scheduler would treat multiregion jobs as paused for job types that don't use deployments [GH-14659]
- ๐ template: Fixed a bug where the
splay
timeout was not being applied whenchange_mode
was set toscript
. [GH-14749] - ๐ ui: Remove extra space when displaying the version in the menu footer. [GH-14457]
-
v1.3.5 Changes
August 31, 2022๐ IMPROVEMENTS:
- cgroups: use cgroup.kill interface file when using cgroups v2 [GH-14371]
- consul: Reduce load on Consul leader server by allowing stale results when listing namespaces. [GH-12953]
๐ BUG FIXES:
- ๐ท cli: Fixed a bug where forcing a periodic job would fail if the job ID prefix-matched other periodic jobs [GH-14333]
- ๐ template: Fixed a bug that could cause Nomad to panic when using
change_mode = "script"
[GH-14374] - โช ui: Revert a change that resulted in UI errors when ACLs were not used. [GH-14381]
-
v1.3.4 Changes
August 25, 2022๐ IMPROVEMENTS:
- api: HTTP server now returns a 429 error code when hitting the connection limit [GH-13621]
- โก๏ธ build: update to go1.19 [GH-14132]
- cli:
operator debug
now outputs current leader to debug bundle [GH-13472] - ๐ cli:
operator snapshot state
supports-filter
expressions and avoids writing large temporary files [GH-13658] - client: add option to restart all tasks of an allocation, regardless of lifecycle type or state. [GH-14127]
- client: only start poststop tasks after poststart tasks are done. [GH-14127]
- โก๏ธ deps: Updated
github.com/hashicorp/go-discover
to latest to allow setting the AWS endpoint definition [GH-13491] - ๐ณ driver/docker: Added config option to disable container healthcheck [GH-14089]
- ๐ง qemu: Added option to configure
drive_interface
[GH-11864] - sentinel: add the ability to reference the namespace and Nomad acl token in policies [GH-14171]
- template: add script change_mode that allows scripts to be executed on template change [GH-13972]
- ๐ป ui: Add button to restart all tasks in an allocation. [GH-14223]
- ๐ป ui: add general keyboard navigation to the Nomad UI [GH-14138]
๐ BUG FIXES:
- api: cleanup whitespace from failed api response body [GH-14145]
- ๐ท cli: Fixed a bug where job validation requeset was not sent to leader [GH-14065]
- ๐ cli: Fixed a bug where the memory usage reported by Allocation Resource Utilization is zero on systems using cgroups v2 [GH-14069]
- ๐ cli: Fixed a bug where vault token not respected in plan command [GH-14088]
- ๐ client/logmon: fixed a bug where logmon cannot find nomad executable [GH-14297]
- ๐ client: Fixed a bug where cpuset initialization would not work on first agent startup [GH-14230]
- ๐ client: Fixed a bug where user lookups would hang or panic [GH-14248]
- ๐ client: Fixed a problem calculating a services namespace [GH-13493]
- ๐ csi: Fixed a bug where volume claims on lost or garbage collected nodes could not be freed [GH-13301]
- โฌ๏ธ template: Fixed a bug where job templates would use
uid
andgid
0 after upgrading to Nomad 1.3.3, causing tasks to fail with the errorfailed looking up user: managing file ownership is not supported on Windows
. [GH-14203] - ๐ป ui: Fixed a bug that caused the allocation details page to display the stats bar chart even if the task was pending. [GH-14224]
- ๐ ui: Removes duplicate breadcrumb header when navigating from child job back to parent. [GH-14115]
- ๐ง vault: Fixed a bug where Vault clients were recreated when the server configuration was reloaded, even if there were no changes to the Vault configuration. [GH-14298]
- ๐ง vault: Fixed a bug where changing the Vault configuration
namespace
field was not detected as a change during server configuration reload. [GH-14298]
-
v1.3.3 Changes
August 05, 2022๐ IMPROVEMENTS:
- โก๏ธ build: Update go toolchain to 1.18.5 [GH-13956]
- csi: Add
stage_publish_base_dir
field tocsi_plugin
block to support plugins that require a specific staging/publishing directory for mounts [GH-13919] - qemu: use shorter socket file names to reduce the chance of hitting the max path length [GH-13971]
- ๐ง template: Expose consul-template configuration options at the client level for
nomad_retry
. [GH-13907] - ๐ template: Templates support new uid/gid parameter pair [GH-13755]
- ๐ ui: Reorder and apply the same style to the Evaluations list page filters to match the Job list page. [GH-13866]
๐ BUG FIXES:
- ๐ acl: Fixed a bug where the timestamp for expiring one-time tokens was not deterministic between servers [GH-13737]
- ๐ deployments: Fixed a bug that prevented auto-approval if canaries were marked as unhealthy during deployment [GH-14001]
- ๐ metrics: Fixed a bug where blocked evals with no class produced no dc:class scope metrics [GH-13786]
- ๐ namespaces: Fixed a bug that allowed deleting a namespace that contained a CSI volume [GH-13880]
- โช qemu: restore the monitor socket path when restoring a QEMU task. [GH-14000]
- ๐ท servicedisco: Fixed a bug where non-unique services would escape job validation [GH-13869]
- ๐ป ui: Add missing breadcrumb in the Evaluations page. [GH-13865]
- ๐ป ui: Fixed a bug where task memory was reported as zero on systems using cgroups v2 [GH-13670]