4a931ae12e
Adds an ACL replication status endpoint.
2016-08-04 23:30:16 -07:00
796933b45b
Activates fallback to replicated ACLs.
2016-08-03 21:24:09 -07:00
9cece515c0
Adds basic ACL replication plumbing.
2016-08-03 21:24:04 -07:00
8358df599d
Merge pull request #2127 from hashicorp/b-remote-consuls-locking
...
Ensure locking of `Server`'s `remoteConsuls`.
2016-06-21 10:00:04 -07:00
ebdb72ce0a
Ensure locking of `Server`'s `remoteConsuls`.
2016-06-20 22:59:49 -07:00
9bf6e61655
Initialize a non-empty number of Consul Datacenters. No functional change.
2016-06-20 15:26:59 -07:00
ffcba3df58
Merge pull request #2028 from hashicorp/f-atomic-kv
...
Adds support for atomic transactions spanning multiple KV entries.
2016-05-15 13:46:05 -07:00
3756fb23a6
Remove unused peers variable from setupRaft().
2016-05-15 06:40:46 -07:00
d980cbcd9d
Moves txn code into a new endpoint, not specific to KV.
2016-05-10 21:58:02 -07:00
c16b1ca178
Add the list of Raft peers to Consul's Stats
...
```
% consul info
[snip]
raft:
[snip]
raft_peers = 127.0.0.1:8300
[snip]
```
Poached from: Nomad Project
2016-04-28 15:08:48 -07:00
5ae7835988
Rename server_details package to agent
2016-03-29 17:39:19 -07:00
f3a69c939d
Refactor consul.serverParts into server_details.ServerDetails
...
This may be short-lived, but it also seems like this is going to lead us down a path where ServerDetails is going to evolve into a more powerful package that will encapsulate more behavior behind a coherent API.
2016-03-23 16:15:47 -07:00
e4ca18089f
Removes leader from members and changes name since it's an address.
2016-03-18 17:07:11 -07:00
11b73bb1a5
#735 add information about leader to consul members
2016-03-18 17:05:40 -07:00
e3ac96679e
consul: address comments
2016-01-05 09:45:36 -08:00
689698eefa
consul: disable serf snapshots in dev mode
2015-12-26 20:39:49 -05:00
ce4cf8a542
consul: dev mode works
2015-12-26 20:19:36 -05:00
b209c2afe2
Adds an RPC endpoint injection method for testing.
2015-11-15 17:06:00 -08:00
09034a84bd
Adds prefix "prepared" to everything prepared query-related.
2015-11-15 17:06:00 -08:00
2183565d83
Adds basic structure for prepared queries (needs tests).
2015-11-15 17:06:00 -08:00
132e1d813b
Fixes configs now that Serf always caches coordinates.
2015-10-23 15:23:01 -07:00
aea2194ce3
Makes the default protocol 2 and lets 3 interoperate with 2.
2015-10-23 15:23:01 -07:00
f71c79c53f
Does some small cleanups based on PR feedback.
...
* Holds coordinate updates in map and gets rid of the update channel.
* Cleans up config variables a bit.
2015-10-23 15:23:01 -07:00
b6c31bdf2f
Flips the sense of the coordinate enable option.
2015-10-23 15:23:01 -07:00
edb9a119e2
Does a clean up pass on the Consul side.
2015-10-23 15:23:01 -07:00
b805215237
Address comments
2015-10-23 15:23:01 -07:00
213f5a15e6
Fix tests
2015-10-23 15:23:01 -07:00
eb599a1745
Address comments
2015-10-23 15:23:01 -07:00
b2cff43bb5
Complete logic for sending coordinates
2015-10-23 15:23:01 -07:00
b5bbe2bcfa
Adding tests and stuff
2015-10-23 15:23:01 -07:00
e54c8f2ea0
Start adding stuff
2015-10-23 15:23:01 -07:00
3f07f0685f
Nukes old state store's connection to FSM and RPC.
2015-10-15 14:59:09 -07:00
1463e6100a
Integrates new state store into leader and catalog/health endpoints.
2015-10-15 14:59:09 -07:00
c5168e1263
Fix a bunch of typos.
2015-09-15 13:22:08 +01:00
8d733b7fca
remove various typos
2015-09-11 12:29:54 -07:00
c0127e9932
Bumps protocol version back down as we've made memberlist smarter.
2015-08-31 11:16:34 -07:00
d2eac37579
agent: remove unnecessary EventFire function
2015-07-02 06:56:27 -07:00
6e9adae494
consul: use acl cache struct in server
2015-06-18 18:13:29 -07:00
7b8aae37cb
Bumps protocol version to 3 to get serf version 5.
2015-06-02 17:50:35 -07:00
9642384429
consul: support the new TLS wrapper
2015-05-11 15:15:36 -07:00
a1de4b17c2
consul: use tlsutil.Wrapper instead of tls.Config directly
2015-05-11 13:09:19 -07:00
41aa5aeb09
consul: swap over to raft-boltdb
2015-03-26 20:01:52 -07:00
275d99e1dc
consul: allow returning custom error for merge delegate
2015-02-22 18:24:10 -08:00
53afd77e2d
s/data center/datacenter/g
2015-02-19 17:45:47 -05:00
a695909a85
consul: Wait for RemovePeer in Leave as a follower
2015-01-20 16:19:54 -08:00
aec0dedd01
consul: remove ourself from raft peer set if we are the leader
2015-01-20 16:19:29 -08:00
133cf457a3
consul: Use new LogCache to improve write throughput
2015-01-14 15:49:58 -08:00
a66a765ca9
consul: Adding merge delegate to prevent mixing clusters
2015-01-06 15:48:46 -08:00
71c2c1468d
consul: Thread Tombstone GC through
2015-01-05 14:43:55 -08:00
6b9ace19cf
consul: Collect useful session metrics
2015-01-02 22:46:51 +05:30
f25566931f
consul: Make sessionTimersLock a plain mutex
2014-12-12 19:17:35 -08:00
b623af776b
Consul Session TTLs
...
The design of the session TTLs is based on the Google Chubby approach
(http://research.google.com/archive/chubby-osdi06.pdf ). The Session
struct has an additional TTL field now. This attaches an implicit
heartbeat based failure detector. Tracking of heartbeats is done by
the current leader and not persisted via the Raft log. The implication
of this is during a leader failover, we do not retain the last
heartbeat times.
Similar to Chubby, the TTL represents a lower-bound. Consul promises
not to terminate a session before the TTL has expired, but is allowed
to extend the expiration past it. This enables us to reset the TTL on
a leader failover. The TTL is also extended when the client does a
heartbeat. Like Chubby, this means a TTL is extended on creation,
heartbeat or failover.
Additionally, because we must account for time requests are in transit
and the relative rates of clocks on the clients and servers, Consul
will take the conservative approach of internally multiplying the TTL
by 2x. This helps to compensate for network latency and clock skew
without violating the contract.
Reference: https://docs.google.com/document/d/1Y5-pahLkUaA7Kz4SBU_mehKiyt9yaaUGcBTMZR7lToY/edit?usp=sharing
2014-12-07 12:38:22 -05:00
295f876923
command/agent: fix up gossip encryption indicator
2014-11-19 16:35:37 -08:00
96376212ff
consul: use rpc layer only for key management functions, add rpc commands
2014-11-19 16:30:21 -08:00
2bd0e8c745
consul.Config() helper to generate the tlsutil.Config{} struct, 30 second keepalive, use keepalive for HTTP and HTTPS
2014-11-18 17:56:48 -05:00
b4424a1a50
Moved TLS Config stuff to tlsutil package
2014-11-18 11:03:36 -05:00
0ea385579a
consul: Ensure FSM stores data in the data dir
2014-10-15 14:57:59 -07:00
88b53702f1
consul: Reduce mmap size on 32bit
2014-10-15 11:32:40 -07:00
b1cf52db01
consul: expose UserEvent from Serf
2014-08-26 18:50:03 -07:00
8153537e86
consul: Support management tokens
2014-08-18 15:46:23 -07:00
61b80e912c
consul: Use Etag for policy caching
2014-08-18 15:46:22 -07:00
bd124a8da3
consul: Pulling in ACLs
2014-08-18 15:46:21 -07:00
ea31f37dd6
consul: Adding ACL endpoint
2014-08-18 15:46:21 -07:00
ebae394863
consul: ACL setting passthrough
2014-08-18 15:46:20 -07:00
bf26a9160f
consul: Defer serf handler until initialized. Fixes #254 .
2014-07-22 09:36:58 -04:00
020802f7a5
Merge pull request #233 from nelhage/tls-no-subjname
...
Restore the 0.2 TLS verification behavior.
2014-07-01 13:41:00 -07:00
0a2476b20e
Restore the 0.2 TLS verification behavior.
...
Namely, don't check the DNS names in TLS certificates when connecting to
other servers.
As of golang 1.3, crypto/tls no longer natively supports doing partial
verification (verifying the cert issuer but not the hostname), so we
have to disable verification entirely and then do the issuer
verification ourselves. Fortunately, crypto/x509 makes this relatively
straightforward.
If the "server_name" configuration option is passed, we preserve the
existing behavior of checking that server name everywhere.
No option is provided to retain the current behavior of checking the
remote certificate against the local node name, since that behavior
seems clearly buggy and unintentional, and I have difficulty imagining
it is actually being used anywhere. It would be relatively
straightforward to restore if desired, however.
2014-06-28 13:32:42 -07:00
80b86c9ee9
Rename Expect to BootstrapExpect. Fixes #223 .
2014-06-19 17:08:55 -07:00
fff6546c75
Minor cleanup to logic and testsuite.
...
Signed-off-by: Robert Xu <robxu9@gmail.com>
2014-06-18 18:47:05 -04:00
a2fea2ce55
Utilise new raft.SetPeers() method, move expect logic to leader.go.
...
This way, we don't use EnableSingleMode, nor cause chaos adding peers.
Signed-off-by: Robert Xu <robxu9@gmail.com>
2014-06-18 12:03:30 -04:00
31c392813c
Add expect bootstrap '-expect=n' mode.
...
This allows for us to automatically bootstrap a cluster of nodes after
'n' number of server nodes join. All servers must have the same 'n' set, or
they will fail to join the cluster; all servers will not join the peer set
until they hit 'n' server nodes.
If the raft commit index is not empty, '-expect=n' does nothing because it
thinks you've already bootstrapped.
Signed-off-by: Robert Xu <robxu9@gmail.com>
2014-06-16 17:40:33 -04:00
ea054b8847
consul: Start RPC before Raft, wait to accept connecitons
2014-06-11 10:17:58 -07:00
1812eedad9
consul: start RPC after fully initialized. Fixes #160
2014-06-11 09:46:44 -07:00
2e18774c02
consul: Avoid network for server RPC. Fixes #148 .
2014-06-10 19:12:36 -07:00
b5bd20634a
consul: Gossip the build using Serf
2014-06-06 15:36:40 -07:00
f9766541e1
Merge pull request #173 from hashicorp/f-agent-self
...
Add `/v1/agent/self` and return local agent config
2014-05-29 11:18:19 -07:00
319ab05b8c
consul: Provide logger to yamux
2014-05-28 16:32:25 -07:00
74452a5ae0
consul: Add new protocol version for yamux
2014-05-28 16:32:24 -07:00
313f79913e
consul: Pass protocol version for leader forwarding
2014-05-28 16:32:24 -07:00
345efd74e4
consul: remove explicit leave, use reconciliation
2014-05-28 16:32:24 -07:00
589105eee4
consul: Store the protocol version for a server
2014-05-28 16:32:24 -07:00
a79c3d2103
consul: Pool client connections, support for yamux connections
2014-05-28 16:32:24 -07:00
a028c3ae93
Add `/v1/agent/self` and return local agent config
2014-05-27 01:15:33 +02:00
5fa10c912e
Support rejoin after leave. Fixes #110 .
2014-05-21 12:32:24 -07:00
e58e9bceb0
consul: First pass at Session RPC endpoints
2014-05-20 16:25:29 -07:00
f8898dce6e
consul: Disable conflict resolution. See #97 .
2014-05-16 14:11:53 -07:00
2d8b1f5b6f
consul: Avoid name conflict on WAN ring. Fixes #158 .
2014-05-16 14:07:53 -07:00
c54f53eaf7
consul: Remove RPC client tracking. Fixes #149 .
2014-05-14 17:34:24 -07:00
5c34e01d17
consul: Fixing for upstream API changes
2014-05-01 18:11:36 -07:00
d045335ca0
consul: Rename Misc RPC to Internal
2014-04-30 23:43:59 -04:00
702fe3afda
consul: Adding Misc RPC endpoint
2014-04-30 23:43:58 -04:00
ece6849cac
consul: Expose runtime stats for debugging
2014-04-29 10:55:42 -07:00
c1ae3d78ef
consul: Increase DB size on 64bit systems. Fixes #81 .
2014-04-28 17:07:59 -07:00
d581af7692
consul: Clear peer set on leave. Fixes #69
2014-04-23 11:39:45 -07:00
25e4e526ae
consul: Update to use raft-mdb package
2014-04-19 13:31:56 -07:00
37ad00d66d
consul: Ensure Raft also uses TLS connections
2014-04-07 15:06:59 -07:00
cb100af7b8
consul: Enable incoming TLS connections to server
2014-04-07 15:06:59 -07:00
f3a3492edc
consul: Server initializes pool with TLS settings
2014-04-07 15:06:59 -07:00
a55ebaa353
consul: Adding KVS RPC endpoint
2014-03-31 14:15:49 -07:00
3c911b3145
consul: Should not clear the peer set
2014-03-25 14:57:00 -07:00
James Phillips