All Versions
50
Latest Version
Avg Release Cycle
28 days
Latest Release
1028 days ago

Changelog History
Page 4

  • v5.5.0 Changes

    September 06, 2019

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ‘ท There is a new container placement strategy, limit-active-tasks. If you specify this strategy, the cluster will maintain a counter of the number of task containers currently running on each worker. Whenever it is time to run a new container, when this strategy is in use, the worker with the fewest active tasks containers will be chosen to run it.
      โฑ There is also an optional 'max active tasks per worker' configuration. If this is set to a positive integer, you will see the following behaviour: If all workers are at their active task limit, you will see the message All workers are busy at the moment, please stand-by. and the scheduler will re-try a minute later. This pattern will repeat each minute indefinitely, until a worker is available.
      Thanks to @aledeganopix4d for all their hard work on this feature! #4118, #4148, #4208, #4277, #4142, #4221, #4293, #4161, #4315

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿš€ We have changed our release notes flow! Now, contributors can add draft release notes right in their PRs, by modifying the release-notes/latest.md file in the concourse/concourse repo #4312.

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ— In the past, admins (owners of the main team) had permission to modify the auth configuration for other teams in the same cluster. Now, admins also have full control over pipelines, jobs, resources, builds, etc for all teams. Using fly, they can log in to any team on the cluster as though they are an owner #4238, #4273.

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ— We noticed after #4058 (where build steps are collapsed by default) that it wasn't very easy to see failing steps.
      Now a failing step has a red border around its header, an erroring step has an orange border, and a running step has a yellow border. #4164, #4250

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ”ง On particularly busy clusters, users have observed metrics events being dropped due to a full queue #3937. @rudolfv added a configurable buffer size for metrics emission, regardless of your configured emitter. This should allow operators to trade memory pressure on the web nodes for reliability of metric transmission.

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ”ง @rudolfv also added some features for the special case of InfluxDB metrics. To decrease the request load on InfluxDB, you can configure the number of events to batch into a single InfluxDB request, or you can specify a hardcoded interval at which to emit events, regardless of how many have accumulated #3937.

    ๐Ÿฑ ๐Ÿ”— feature

    • @nazrhom improved the output of fly targets to show an error message in the table if your token for a given target is invalid #4181, #4228.

    ๐Ÿฑ ๐Ÿ”— feature

    • 0๏ธโƒฃ Concourse admins can now run fly active-users and get a summary of all the users on the cluster, filtering by their last login time (the last 2 months by default) #4096.

    ๐Ÿฑ ๐Ÿ”— feature

    ๐Ÿฑ ๐Ÿ”— feature, breaking

    • ๐Ÿ— Now requests from the web nodes to the garden servers inside workers (i.e. when creating containers) will time out after 5 minutes. This means that if you have a lot of latency or your garden servers are slow, your builds and/or resource checks will start to fail. In general, we have found that failing earlier in cases like this is preferable to hanging forever or failing silently #4137.

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ”ง Fly has the ability to autocomplete certain configurations for certain shells. @cappyzawa added some more, allowing team and worker names to be autocompleted in fly commands #4087.

    ๐Ÿฑ ๐Ÿ”— feature

    ๐Ÿฑ ๐Ÿ”— feature

    • @mgsolid added a pre_without_version param to the get and put steps associated to the semver resource. This allows for notating pre-releases without an associated "RC number" (like the -SNAPSHOT suffix often seen on pre-release builds managed by Maven) concourse/semver-resource#94.

    ๐Ÿฑ ๐Ÿ”— feature

    ๐Ÿฑ ๐Ÿ”— feature

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿš€ The number of assets listed per release was raised by @oppegard from 30 to 100 on the Github release resource. This will hopefully prevent most issues where the resource would not have the full list of assets to download concourse/github-release-resource#85.

    ๐Ÿฑ ๐Ÿ”— feature

    ๐Ÿฑ ๐Ÿ”— feature

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ— Build step headers are now sticky, staying at the top of the body on the build page instead of scrolling out of sight as you navigate long logs. This should make it easier to keep track of which step you're inspecting in complicated jobs. #4230

    ๐Ÿฑ ๐Ÿ”— fix

    • When using the overlay volume driver, you would have to be cautious about preserving your mount table. If it had been cleared, you're volumes would appear empty. Baggageclaim now has the capability to recover missing mounts when the process restarts. #4264

    ๐Ÿฑ ๐Ÿ”— fix

    • @evanchaoli improved fly - when outputting sample commands to the terminal, the CLI is aware of the path from which it is being executed #4284.

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿ’ป The web UI used to silently break when your token (which includes a potentially-long JSON-encoded string detailing all the teams you are part of and what roles you have on them) was longer than the size of a single cookie (4096 bytes on most browsers!). This limit has been increased 15-fold, which should unblock most users on clusters with a lot of teams #4280.

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿš€ For the past few releases, the web nodes have allowed themselves to make up to 64 parallel connections to the database, to allow for parallelizing work like GC and scheduling within a single node. @ebilling has configured the web node's tolerance for idle connections to be more lenient: If a node has been using more than 32 of its available connections, up to 32 connections will be allowed to stay idly open. Anecdotally, CPU savings (resulting from less opening/closing of connections) of up to 30% have been observed on web nodes because of this change. Furthermore, the total max connection pool size has been made configurable - this should allow operators to avoid overloading the max connection limit on the database side #4232.

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿ›  @josecv found and fixed a subtle bug where, if you had a try step and you aborted while the hooked step was running, your whole web node would crash! Good catch #4252.

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿ @aledeganopix4d fixed an issue where the logs for a Windows or Darwin worker get populated with irrelevant error messages #4167.

    ๐Ÿฑ ๐Ÿ”— fix

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿš€ Since the pipeline-operator role was introduced in v5.2.0, the tag that appears on the dashboard pages has been improperly formatted. Thanks to @paroxp for noticing and fixing this #4170.

    ๐Ÿฑ ๐Ÿ”— fix

    ๐Ÿฑ ๐Ÿ”— fix

    • The get-team command for fly will now take team-name as an argument for the team name instead of just team. Thanks to @cappyzawa for finding this inconsistency! #4086

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿ›  @xavierzwirtz also fixed hg.pull by passing the sourceUri in the Mercurial resource. This could fix some issues where Mercurial wasn't saving the full uri in the hgrc file concourse/hg-resource#13.

    ๐Ÿฑ ๐Ÿ”— fix

    • 0๏ธโƒฃ Scrollbars have been given a touch of the Concourse design language. It should no longer use browser defaults. #4355

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿ›  Fixed a (probably-long-standing) issue where the pipelines in the sidebar could randomly rearrange #4375.

  • v5.4.1 Changes

    August 07, 2019

    This release is about fixing some unintended consequences of switching to Zstandard compression in v5.4.0. More specifically, having our Go code depend on C libraries caused a few failure modes.

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐ŸŽ When we first switched to using cgo to build fly (which was necessary in order to make use of Zstandard compression), unbeknownst to us, fly started to depend on a system library for DNS resolution. This meant that on systems that lacked this library (macOS in particular), fly would segfault. Furthermore, the system library has different features than the native Go version, so even on systems that had the library, fly would fail to resolve certain names. We fixed these problems by building fly in a way that would still use cgo but depend on the native Go DNS resolver concourse/ci#59.

    ๐Ÿฑ ๐Ÿ”— fix

    • On the server side, it turns out we had been a bit lax in freeing resources associated with volume streams, but because we had been using pure Go streaming and compression code, the Go garbage collector had helped us out. In switching to a C-based compression library, failing to manually release memory via Go APIs meant that the underlying memory allocated by the C code was never freed, and several folks have observed server-side memory leaks when using v5.4.0. We plugged those holes #4182, #4199.

  • v5.4.0 Changes

    July 19, 2019

    known Issues

    ๐Ÿš€ > We've observed a memory leak with this release. Please avoid upgrading to this release if you are using a multi-tenant concourse with heavy load. You can follow along with our investigation in #4150.

    ๐Ÿง > fly may segfault on execution when running on certain versions of Linux. Workaround steps can be found here: #4141 (comment)

    ๐Ÿฑ ๐Ÿ”— feature, breaking

    • We have switched to a more efficient algorithm for streaming volumes between various components of the system - the web and worker nodes now transmit volumes compressed with the Zstandard algorithm rather than Gzip - fly is affected, too (when uploading/downloading artifacts during fly execute). We're hoping this will resolve some general complaints of steps being slow to start or appearing to "hang" in clustered environments. note: this will require upgrading your workers #3880.

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ— Because of the efficiency gained from employing Zstandard compression to volume streaming, the CPU on the web and worker nodes is no longer a limiting factor. Now volumes will be streamed over multiple parallel connections, and we have seen some very exciting improvements in the time taken to initialize build steps. You can see some of our measurements in the discussion on this issue #3993.

    ๐Ÿฑ ๐Ÿ”— feature, breaking

    • ๐Ÿ— On the build page all steps are now collapsed by default. This means that the build page loads faster, but if you want to watch the logs in real time, you will need to click on the header of the running step #4058.

    ๐Ÿฑ ๐Ÿ”— feature

    • Improved the appearance of the sidebar (re-introduced in v5.2.0) in response to user feedback. Teams and pipelines are now easier to distinguish, and there are nicely styled tooltips for long items #4032.

    ๐Ÿฑ ๐Ÿ”— feature

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ— When you manually trigger a build through the web UI, the 'prep' section at the top of the build page now shows a spinner on the entries marked "discovering new versions of..." while the resource checks are in progress. As the checks resolve, the spinners will become checkmarks, so you'll have a better sense of what might be holding up your build #3970.

    ๐Ÿฑ ๐Ÿ”— feature

    ๐Ÿฑ ๐Ÿ”— feature

    • โฑ When you abort a pending build before it gets scheduled, the build page will now report it as 'cancelled' instead of showing a loading spinner forever #3922.

    ๐Ÿฑ ๐Ÿ”— feature

    • โšก๏ธ The CSS optimizer used in building the web UI has been upgraded, so the resulting CSS is slightly smaller, which should result in some faster page loads #4004.

    ๐Ÿฑ ๐Ÿ”— fix

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿ“‡ @robwhitby fixed an issue where re-checking a resource would cause the metadata from its latest version to be erased #4028.

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿ–จ @cappyzawa fixed up fly to behave like a sensible Unix tool when passing the -h or --help flag: it now prints the usage text on stdout and returns a successful status code #4064.

    ๐Ÿฑ ๐Ÿ”— fix

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿ›  Fixed a regression found recently involving momentum based scrolling on build pages on iOS browsers The fix was also applied to the sidebar and the dashboard #4050

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿš€ The BOSH Backup and Restore job for the database now works properly if you provide your database configuration via a BOSH link. Before, it would always use a hardcoded default if you didn't explicitly specify, causing BOSH links to be ignored concourse/concourse-bosh-release#41.

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿ›  Fixed a bug where, if your local machine is running Mac or Linux and you run fly execute with --input against a cluster with a mix of Linux and Windows workers, your files could get uploaded to a Windows worker, where ther permission metadata would be stripped off. Now fly execute makes sure only to upload user artifacts to workers matching the platform of the task being executed #4066.

  • v5.3.0 Changes

    June 11, 2019

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ”ง @rliebz added the ability for put steps to git resources with the parameter merge: true to be further configured with the parameter returning: unmerged, which will ensure that concurrent changes to the same remote branch do not affect downstream jobs concourse/git-resource#262.

    ๐Ÿฑ ๐Ÿ”— feature

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ— @stigtermichiel tuned our build process so that the size of the compressed frontend code is reduced by a factor of 3 - page loads should be accordingly faster #3915.

    ๐Ÿฑ ๐Ÿ”— feature

    If you want your web node to accept encrypted connections over HTTPS, you now have the option of connecting to an ACME server to automatically retrieve a certificate from an ACME server of your choice. By default it will reach the free public ACME service provided by Let's Encrypt.

    Thanks to @henderjm for the PR #3878!

    ๐Ÿฑ ๐Ÿ”— feature

    @agurney improved the info api endpoint (/api/v1/info) to return both the external URL and cluster name #3862.

    ๐Ÿ’ป Hopefully this will enable future improvements to fly and the web UI!

    ๐Ÿฑ ๐Ÿ”— feature

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ“Œ When you pin a resource through the web UI, your name and current local time will now be automatically added as the pin comment #3743.

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ”’ The 'password' field on the login page now has an HTML property that will be ignored by most browsers, but helps Concourse pass some automated security scans #3839.

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ— @tvon gave the highlighted lines on the build page a slightly darker color so they really pop #3866.

    ๐Ÿฑ ๐Ÿ”— fix

    ๐Ÿฑ ๐Ÿ”— fix

    Made the Concourse worker process systemd-aware. This fixed a subtle bug introduced in v5.0.0 that could, on rare occasions, cause container limits not to be enforced or prevent containers from being killed concourse/concourse-bosh-release#24, concourse/concourse-bosh-release#31.

    Thanks to @bodymindarts for contributing to this effort.

    ๐Ÿฑ ๐Ÿ”— fix

    • โž• Addressed a bug where in rare circumstances, fly intercept -c would find multiple check containers for the same resource #3983.

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿš€ In service of a refactor, task caches are now decoupled from the worker(s) they are stored on. As a result, you may find that in multi-worker deployments, pipelines making use of task caches may consume duplicate storage across workers #3830, #3965.

    ๐Ÿฑ ๐Ÿ”— fix

    • Corrected a surprising behaviour where, when a pipeline was paused for an extended period of time, many of its resources' versions would disappear #3963.

    ๐Ÿฑ ๐Ÿ”— fix

    • There was a long-standing bug on the dashboard, where the existence of circular pipelines would cause the browser to crash. This was fixed in v5.2.0, but the fix caused a performance regression, which is now also fixed #3870, #3901.

    ๐Ÿฑ ๐Ÿ”— fix

    • Fixed a bug, introduced in v5.1.0, where, on a build step with attempts: specified, only one attempt would be possible to view on the build page #3898.

    ๐Ÿฑ ๐Ÿ”— fix

    • @gaelL Fixed a bug, which had existed since at least v4.2.3, where operators were prevented from retiring team-scoped workers with the concourse retire-worker command #3929.

    ๐Ÿฑ ๐Ÿ”— fix

    ๐Ÿ“š A bug on the reaped build logs screen was fixed, where a link was pointing to deprecated documentation #3931.

    ๐Ÿ— This screen is visible when you visit a build that is older than its job's configured retention policy.

    ๐Ÿฑ ๐Ÿ”— fix

    • Fixed a problem with one of the database migrations introduced in v5.0.0 which could cause the web node startup to fail in some cases. This won't affect users who have kept up to date until now, but if this is the first version of Concourse you are deploying since before v5.0.0, the upgrade should be a little more resilient #3996.

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿ— @mockersf fixed a problem where timestamps weren't being properly returned when a get step or a put step finished. This caused some wacky durations to be displayed on build pages #3871.

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿ›  Fixed an issue with our build process that caused fly to stop working for some folks making use of a VPN with split DNS.

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿ›  Fixed a bug where the dashboard preview of a paused job with a pending build would show the color of the most recent build's status, when it should be blue #3718.

  • v5.3.0-rc.9

    May 30, 2019

  • v5.3.0-rc.8

    May 30, 2019

  • v5.2.8 Changes

    March 24, 2020

    ๐Ÿฑ ๐Ÿ”— fix

    • ๐Ÿ›  Fix an edge case of CVE-2018-15798 where redirect URI during login flow could be embedded with a malicious host.

    ๐Ÿฑ ๐Ÿ”— fix

    • โž• Added a flag, --disable-list-all-jobs. When this flag is passed, the /api/v1/jobs endpoint (which is known to have performance issues) will always return an empty JSON array instead of making complex and expensive database operations. The most significant end-user impact of this change should be that the dashboard will no longer display pipeline previews. #5340

  • v5.2.7 Changes

    February 27, 2020

    ๐Ÿฑ ๐Ÿ”— fix

    • โฌ†๏ธ Bump golang.org/x/crypto module from v0.0.0-20190313024323-a1f597ede03a to v0.0.0-20200220183623-bac4c82f6975 to address vulnerability in ssh package.

  • v5.2.6 Changes

    December 18, 2019

    ๐Ÿ”’ ๐Ÿ”— security

    • ๐Ÿš€ Updates the git resource to v1.6.3 to address a recently reported security vulnerability:
      • CVE-2019-19604:
      • Arbitrary command execution is possible in Git before 2.20.2, 2.21.x before 2.21.1, 2.22.x before 2.22.2, 2.23.x before 2.23.1, and 2.24.x before 2.24.1 because a "git submodule update" operation can run commands found in the .gitmodules file of a malicious repository.

  • v5.2.5 Changes

    November 15, 2019

    ๐Ÿฑ ๐Ÿ”— feature

    • ๐Ÿ’ป API endpoints have been changed to use a single transaction per request, so that they become "all or nothing" instead of holding data in memory while waiting for another connection from the pool. This could lead to snowballing and increased memory usage as requests from the web UI (polling every 5 seconds) piled up. #4494