cgroupslib: Consider CGroups OFF when essential controllers are missing [GH-19176]
cli: Add new option nomad setup vault -check to help cluster operators migrate to workload identities for Vault [GH-19720]
consul: Add fingerprint for Consul Enterprise admin partitions [GH-19485]
consul: Added support for Consul Enterprise admin partitions [GH-19665]
consul: Added support for failures_before_warning and failures_before_critical in Nomad agent services [GH-19336]
consul: Added support for failures_before_warning in Consul service checks [GH-19336]
drivers/exec: Added support for OOM detection in exec driver [GH-19563]
drivers: Enable configuring a raw_exec task to not have an upper memory limit [GH-19670]
identity: Added vault_role to JWT workload identity claims if specified in jobspec [GH-19535]
ui: Added group name to allocation tooltips on job status panel [GH-19601]
ui: Adds a warning message to pages in the Web UI when logs are disabled [GH-18823]
ui: Hide token secret upon successful login [GH-19529]
ui: when an Action has long output, anchor to the latest messages [GH-19452]
vault: Add allow_token_expiration field to allow Vault tokens to expire without renewal for short-lived tasks [GH-19691]
vault: Nomad clients will no longer attempt to renew Vault tokens that cannot be renewed [GH-19691]
BUG FIXES:
acl: Fixed a bug where 1.5 and 1.6 clients could not access Nomad Variables and Services via templates [GH-19578]
acl: Fixed auth method hashing which meant changing some fields would be silently ignored [GH-19677]
auth: Added new optional OIDCDisableUserInfo setting for OIDC auth provider [GH-19566]
client: Fixed a bug where where the environment variable / file for the Consul token weren't written. [GH-19490]
consul (Enterprise): Fixed a bug where the group/task Consul cluster was assigned "default" when unset instead of the namespace-governed value
core: Ensure job HCL submission data is persisted and restored during the FSM snapshot process [GH-19605]
namespaces: Failed delete calls no longer return success codes [GH-19483]
rawexec: Fixed a bug where oom_score_adj would be inherited from Nomad client [GH-19515]
server: Fix panic when validating non-service reschedule block [GH-19652]
server: Fix server not waiting for workers to submit nacks for dequeued evaluations before shutting down [GH-19560]
state: Fixed a bug where purged jobs would not get new deployments [GH-19609]
ui: Fix rendering of allocations table for jobs that don't have actions [GH-19505]
vault: Fixed a bug that could cause errors during leadership transition when migrating to the new JWT and workload identity authentication workflow [GH-19689]
vault: Fixed a bug where allow_unauthenticated was enforced when a default_identity was set [GH-19585]
cgroupslib: Consider CGroups OFF when essential controllers are missing [GH-19176]
cli: Add new option nomad setup vault -check to help cluster operators migrate to workload identities for Vault [GH-19720]
consul: Add fingerprint for Consul Enterprise admin partitions [GH-19485]
consul: Added support for Consul Enterprise admin partitions [GH-19665]
consul: Added support for failures_before_warning and failures_before_critical in Nomad agent services [GH-19336]
consul: Added support for failures_before_warning in Consul service checks [GH-19336]
drivers/exec: Added support for OOM detection in exec driver [GH-19563]
drivers: Enable configuring a raw_exec task to not have an upper memory limit [GH-19670]
identity: Added vault_role to JWT workload identity claims if specified in jobspec [GH-19535]
ui: Added group name to allocation tooltips on job status panel [GH-19601]
ui: Adds a warning message to pages in the Web UI when logs are disabled [GH-18823]
ui: Hide token secret upon successful login [GH-19529]
ui: when an Action has long output, anchor to the latest messages [GH-19452]
vault: Add allow_token_expiration field to allow Vault tokens to expire without renewal for short-lived tasks [GH-19691]
vault: Nomad clients will no longer attempt to renew Vault tokens that cannot be renewed [GH-19691]
BUG FIXES:
acl: Fixed a bug where 1.5 and 1.6 clients could not access Nomad Variables and Services via templates [GH-19578]
acl: Fixed auth method hashing which meant changing some fields would be silently ignored [GH-19677]
auth: Added new optional OIDCDisableUserInfo setting for OIDC auth provider [GH-19566]
client: Fixed a bug where where the environment variable / file for the Consul token weren't written. [GH-19490]
consul (Enterprise): Fixed a bug where the group/task Consul cluster was assigned "default" when unset instead of the namespace-governed value
core: Ensure job HCL submission data is persisted and restored during the FSM snapshot process [GH-19605]
namespaces: Failed delete calls no longer return success codes [GH-19483]
rawexec: Fixed a bug where oom_score_adj would be inherited from Nomad client [GH-19515]
server: Fix panic when validating non-service reschedule block [GH-19652]
server: Fix server not waiting for workers to submit nacks for dequeued evaluations before shutting down [GH-19560]
state: Fixed a bug where purged jobs would not get new deployments [GH-19609]
ui: Fix rendering of allocations table for jobs that don't have actions [GH-19505]
vault: Fixed a bug that could cause errors during leadership transition when migrating to the new JWT and workload identity authentication workflow [GH-19689]
vault: Fixed a bug where allow_unauthenticated was enforced when a default_identity was set [GH-19585]
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps github.com/hashicorp/nomad from 1.7.2 to 1.7.3.
Release notes
Sourced from github.com/hashicorp/nomad's releases.
Changelog
Sourced from github.com/hashicorp/nomad's changelog.
Commits
60ee328
Generate files for 1.7.3 releasee7e24ab
backport of commit d62280941d3530d6cd021d15d02d972e16f1b5a3 (#19742)dc73c83
backport of commit 40bbddf3d8d16f51d5abe51fd474de254fcf4055 (#19739)ca3780e
backport of commit e1e80f383ec5a784a9bfad11937ba3fe143b4ec3 (#19730)0843561
backport of commit 5d12ca4f57510287c07deee5fbed7217183008b9 (#19725)6a1936c
backport of commit b2aa6ffd050656316d8b88b8f3ec56df8e97f907 (#19722)67d03ef
backport of commit 8d0a46900013371b2f74bab68c7100df942843d0 (#19719)e05b0e8
drivers/raw_exec: enable configuring raw_exec task to have no memory limit (#...5772ed6
build: use setup-golang@v3 to handle auto caching (#19707) (#19708)0b4cc93
backport of commit aad932eeee22208d21eb5ad698b1bbc0f10144bd (#19716)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show