services: Clients older than 1.5.0 will fail to read Nomad native services via template blocks [GH-23910]
tls: Removed deprecated tls.prefer_server_cipher_suites field from agent configuration [GH-23712]
SECURITY:
security: Fixed a bug in client FS API where the check to prevent reads from the secrets dir could be bypassed on case-insensitive file systems [GH-24125]
IMPROVEMENTS:
cli: Added redaction options to operator snapshot commands [GH-24023]
cli: Increase default log level and duration when capturing logs with operator debug [GH-23850]
deps: Upgraded yamux to v0.1.2 to fix a bug where RPC connections could deadlock [GH-24058]
docker: Use official docker SDK instead of a 3rd party client [GH-23966]
identity: Added filepath parameter to identity block for persisting workload identities [GH-24038]
jobs: Added Version Tags to job versions, to prevent them from being garbage collected and allow for diffs [GH-24055]
keyring: Stored wrapped data encryption keys in Raft [GH-23977]
metrics: introduce client config to include alloc metadata as part of the base labels [GH-23964]
networking: Added an option to ignore static port collisions when scheduling, for programs that use the SO_REUSEPORT unix socket option [GH-23956]
networking: IPv6 can now be enabled on the Nomad bridge network mode [GH-23882]
quotas (Enterprise): Added the possibility to set device count limits [GH-23894]
raft: Bump raft to v1.7.1 which includes pre-vote. This should make servers more stable after network partitions [GH-24029]
BUG FIXES:
bug: Allow client template config block to be parsed when using json config [GH-24007]
cli: Fixed a bug in job status command where -t would act as though -json was also set [GH-24054]
scaling: Fixed a bug where scaling policies would not get created during job submission unless namespace field was set in jobspec [GH-24065]
state: Fixed a bug where compatibility updates for node topology for nodes older than 1.7.0 were not being correctly applied [GH-24127]
task: adds node.pool attribute to interpretable values in task env [GH-24052]
template: Fixed a panic on client restart when using change_mode=script [GH-24057]
ui: Fixes an issue where variables paths would not let namespaced users write variables unless they also had wildcard namespace variable write permissions [GH-24073]
v1.9.0-beta.2
SECURITY:
security: Fixed a bug in client FS API where the check to prevent reads from the secrets dir could be bypassed on case-insensitive file systems [GH-24125]
IMPROVEMENTS:
metrics: introduce client config to include alloc metadata as part of the base labels [GH-23964]
services: Clients older than 1.5.0 will fail to read Nomad native services via template blocks [GH-23910]
tls: Removed deprecated tls.prefer_server_cipher_suites field from agent configuration [GH-23712]
SECURITY:
security: Fixed a bug in client FS API where the check to prevent reads from the secrets dir could be bypassed on case-insensitive file systems [GH-24125]
IMPROVEMENTS:
cli: Added redaction options to operator snapshot commands [GH-24023]
cli: Increase default log level and duration when capturing logs with operator debug [GH-23850]
deps: Upgraded yamux to v0.1.2 to fix a bug where RPC connections could deadlock [GH-24058]
docker: Use official docker SDK instead of a 3rd party client [GH-23966]
identity: Added filepath parameter to identity block for persisting workload identities [GH-24038]
jobs: Added Version Tags to job versions, to prevent them from being garbage collected and allow for diffs [GH-24055]
keyring: Stored wrapped data encryption keys in Raft [GH-23977]
metrics: introduce client config to include alloc metadata as part of the base labels [GH-23964]
networking: Added an option to ignore static port collisions when scheduling, for programs that use the SO_REUSEPORT unix socket option [GH-23956]
networking: IPv6 can now be enabled on the Nomad bridge network mode [GH-23882]
quotas (Enterprise): Added the possibility to set device count limits [GH-23894]
raft: Bump raft to v1.7.1 which includes pre-vote. This should make servers more stable after network partitions [GH-24029]
BUG FIXES:
bug: Allow client template config block to be parsed when using json config [GH-24007]
cli: Fixed a bug in job status command where -t would act as though -json was also set [GH-24054]
scaling: Fixed a bug where scaling policies would not get created during job submission unless namespace field was set in jobspec [GH-24065]
state: Fixed a bug where compatibility updates for node topology for nodes older than 1.7.0 were not being correctly applied [GH-24127]
task: adds node.pool attribute to interpretable values in task env [GH-24052]
template: Fixed a panic on client restart when using change_mode=script [GH-24057]
ui: Fixes an issue where variables paths would not let namespaced users write variables unless they also had wildcard namespace variable write permissions [GH-24073]
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps github.com/hashicorp/nomad from 1.8.4 to 1.9.0.
Release notes
Sourced from github.com/hashicorp/nomad's releases.
... (truncated)
Changelog
Sourced from github.com/hashicorp/nomad's changelog.
Commits
7ad3685Generate files for 1.9.0 releasedc45066[ui] Separate Diffs and Versions from the /versions endpoint as far as Ember ...1ba9cc2docs: Link directly to podman's --network option (#24149)4562b9aRelease/1.9.0 beta.27d7a88dPrepare for next release668a827Generate files for 1.9.0-beta.2 release3f1bba1Prepare release 1.9.0-beta.27531b7afix data race in node upsert (#24127)1c76dd9update example device readme (#24124)b7595c6alloc fs: use case-insensitive check for reads of secret/private dir (#24125)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show