api: Added an API for counting evaluations that match a filter [GH-15147]
cli: Improved performance of eval delete with large filter sets [GH-15117]
consul: add trace logging around service registrations [GH-6115]
deps: Updated github.com/aws/aws-sdk-go from 1.44.84 to 1.44.126 [GH-15081]
deps: Updated github.com/docker/cli from 20.10.18+incompatible to 20.10.21+incompatible [GH-15078]
exec: Allow running commands from mounted host volumes [GH-14851]
scheduler: when multiple evaluations are pending for the same job, evaluate the latest and cancel the intermediaries on success [GH-14621]
server: Add a git revision tag to the serf tags gossiped between servers. [GH-9159]
template: Expose per-template configuration for error_on_missing_key. This allows jobspec authors to specify that a
template should fail if it references a struct or map key that does not exist. The default value is false and should be
fully backward compatible. [GH-14002]
ui: Adds a "Pack" tag and logo on the jobs list index when appropriate [GH-14833]
ui: add consul connect service upstream and on-update info to the service sidebar [GH-15324]
ui: allow users to upload files by click or drag in the web ui [GH-14747]
BUG FIXES:
api: Ensure all request body decode errors return a 400 status code [GH-15252]
autopilot: Fixed a bug where autopilot would try to fetch raft stats from other regions [GH-15290]
cleanup: fixed missing timer.Reset for plan queue stat emitter [GH-15134]
client: Fixed a bug where tasks would restart without waiting for interval [GH-15215]
client: fixed a bug where non-docker tasks with network isolation would leak network namespaces and iptables rules if the client was restarted while they were running [GH-15214]
client: prevent allocations from failing on client reconnect by retrying RPC requests when no servers are available yet [GH-15140]
csi: Fixed race condition that can cause a panic when volume is garbage collected [GH-15101]
device: Fixed a bug where device plugins would not fingerprint on startup [GH-15125]
drivers: Fixed a bug where one goroutine was leaked per task [GH-15180]
drivers: pass missing propagation_mode configuration for volume mounts to external plugins [GH-15096]
event_stream: fixed a bug where dynamic port values would fail to serialize in the event stream [GH-12916]
fingerprint: Ensure Nomad can correctly fingerprint Consul gRPC where the Consul agent is running v1.14.0 or greater [GH-15309]
keyring: Fixed a bug where a missing key would prevent any further replication. [GH-15092]
keyring: Fixed a bug where replication would stop after snapshot restores [GH-15227]
keyring: Re-enabled keyring garbage collection after fixing a bug where keys would be garbage collected even if they were used to sign a live allocation's workload identity. [GH-15092]
scheduler: Fixed a bug that prevented disconnected allocations to be updated after they reconnect. [GH-15068]
scheduler: Prevent unnecessary placements when disconnected allocations reconnect. [GH-15068]
template: Fixed a bug where template could cause agent panic on startup [GH-15192]
ui: Fixed a bug where the task log sidebar would close and re-open if the parent job state changed [GH-15146]
variables: Fixed a bug where a long-running rekey could hit the nack timeout [GH-15102]
wi: Fixed a bug where clients running pre-1.4.0 allocations would erase the token used to query service registrations after upgrade [GH-15121]
v1.4.2
1.4.2 (October 26, 2022)
SECURITY:
event stream: Fixed a bug where ACL token expiration was not checked when emitting events [GH-15013]
api: Added an API for counting evaluations that match a filter [GH-15147]
cli: Improved performance of eval delete with large filter sets [GH-15117]
consul: add trace logging around service registrations [GH-6115]
deps: Updated github.com/aws/aws-sdk-go from 1.44.84 to 1.44.126 [GH-15081]
deps: Updated github.com/docker/cli from 20.10.18+incompatible to 20.10.21+incompatible [GH-15078]
exec: Allow running commands from mounted host volumes [GH-14851]
scheduler: when multiple evaluations are pending for the same job, evaluate the latest and cancel the intermediaries on success [GH-14621]
server: Add a git revision tag to the serf tags gossiped between servers. [GH-9159]
template: Expose per-template configuration for error_on_missing_key. This allows jobspec authors to specify that a
template should fail if it references a struct or map key that does not exist. The default value is false and should be
fully backward compatible. [GH-14002]
ui: Adds a "Pack" tag and logo on the jobs list index when appropriate [GH-14833]
ui: add consul connect service upstream and on-update info to the service sidebar [GH-15324]
ui: allow users to upload files by click or drag in the web ui [GH-14747]
BUG FIXES:
api: Ensure all request body decode errors return a 400 status code [GH-15252]
autopilot: Fixed a bug where autopilot would try to fetch raft stats from other regions [GH-15290]
cleanup: fixed missing timer.Reset for plan queue stat emitter [GH-15134]
client: Fixed a bug where tasks would restart without waiting for interval [GH-15215]
client: fixed a bug where non-docker tasks with network isolation would leak network namespaces and iptables rules if the client was restarted while they were running [GH-15214]
client: prevent allocations from failing on client reconnect by retrying RPC requests when no servers are available yet [GH-15140]
csi: Fixed race condition that can cause a panic when volume is garbage collected [GH-15101]
device: Fixed a bug where device plugins would not fingerprint on startup [GH-15125]
drivers: Fixed a bug where one goroutine was leaked per task [GH-15180]
drivers: pass missing propagation_mode configuration for volume mounts to external plugins [GH-15096]
event_stream: fixed a bug where dynamic port values would fail to serialize in the event stream [GH-12916]
fingerprint: Ensure Nomad can correctly fingerprint Consul gRPC where the Consul agent is running v1.14.0 or greater [GH-15309]
keyring: Fixed a bug where a missing key would prevent any further replication. [GH-15092]
keyring: Fixed a bug where replication would stop after snapshot restores [GH-15227]
keyring: Re-enabled keyring garbage collection after fixing a bug where keys would be garbage collected even if they were used to sign a live allocation's workload identity. [GH-15092]
scheduler: Fixed a bug that prevented disconnected allocations to be updated after they reconnect. [GH-15068]
scheduler: Prevent unnecessary placements when disconnected allocations reconnect. [GH-15068]
template: Fixed a bug where template could cause agent panic on startup [GH-15192]
ui: Fixed a bug where the task log sidebar would close and re-open if the parent job state changed [GH-15146]
variables: Fixed a bug where a long-running rekey could hit the nack timeout [GH-15102]
wi: Fixed a bug where clients running pre-1.4.0 allocations would erase the token used to query service registrations after upgrade [GH-15121]
1.4.2 (October 26, 2022)
SECURITY:
event stream: Fixed a bug where ACL token expiration was not checked when emitting events [GH-15013]
variables: Fixed a bug where non-sensitive variable metadata (paths and raft indexes) was exposed via the template nomadVarList function to other jobs in the same namespace. [GH-15012]
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps github.com/hashicorp/nomad from 1.4.1 to 1.4.3.
Release notes
Sourced from github.com/hashicorp/nomad's releases.
... (truncated)
Changelog
Sourced from github.com/hashicorp/nomad's changelog.
... (truncated)
Commits
f464aca
Generate files for 1.4.3 releaseead7e54
backport of commit 424a7ca06b4a782dca74c8fe966352a11e7ed5e3 (#15354)037e18b
Backport of client: accommodate Consul 1.14.0 gRPC and agent self changes. in...79f0250
consul: add trace logging around service registrations (#15311) (#15339)64f90d1
Backport of [ui] Show Consul Connect upstreams / on update info in sidebar in...7623043
Backport of api: ensure ACL role upsert decode error returns a 400 status cod...bd38820
Backport of api: ensure all request body decode error return a 400 status cod...8a3e637
backport of commit e8fe3324a3bb1274f3711fdb8a41bc1e659fcd76 (#15317)9a373d1
backport of commit 5e6caef0795fd3f89859cc0520ba069434fed770 (#15310)34af863
backport of commit 44943bfd9fe908b64e55e607d6173e8b3e450e1d (#15305)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)