Overview All releases

Version History

v1.7.7 v1.7.6 v1.7.5 v1.7.4 v1.7.3 v1.7.2 v1.7.1 v1.7.0 v1.7.0-rc.1 v1.7.0-beta.2 v1.7.0-beta.1 v1.6.10 v1.6.9 v1.6.8 v1.6.7 v1.6.6 v1.6.5 v1.6.4 v1.6.3 v1.6.2 v1.6.1

v1.6.0

v1.6.0-rc.1 v1.6.0-beta.1 v1.5.17 v1.5.16 v1.5.15 v1.5.14 v1.5.13 v1.5.12 v1.5.11 v1.5.10 v1.5.9 v1.5.8 v1.5.7 v1.5.6 v1.5.5 v1.5.4 v1.5.3 v1.5.2 v1.5.1 v1.5.0

v1.5.0-rc.1

v1.5.0-beta.1

v1.4.14 v1.4.13 v1.4.12 v1.4.11 v1.4.10 v1.4.9 v1.4.8 v1.4.7 v1.4.6 v1.4.5 v1.4.4 v1.4.3 v1.4.2 v1.4.1 v1.4.0

v1.4.0-rc.1

v1.4.0-beta.1

v1.3.16 v1.3.15 v1.3.14 v1.3.13 v1.3.12 v1.3.11 v1.3.10 v1.3.9 v1.3.8 v1.3.7 v1.3.6 v1.3.5 v1.3.4 v1.3.3 v1.3.2 v1.3.1 v1.3.0

v1.3.0-rc.1

v1.3.0-beta.1

v1.2.16 v1.2.15 v1.2.14 v1.2.13 v1.2.12 v1.2.11 v1.2.10 v1.2.9 v1.2.8 v1.2.7 v1.2.6 v1.2.5 v1.2.4

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.1.18 v1.1.17 v1.1.16 v1.1.15 v1.1.14 v1.1.13

v1.1.9

v1.1.6

v1.1.5

v1.1.4

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.15

v1.0.11

v1.0.6

v1.0.5

v1.0.4

v1.0.3

v1.0.2

v1.0.1

v1.0.0

v1.0.0-rc1

v1.0.0-beta2

v0.12.10

v0.12.9

v0.12.8

v0.12.7

v0.12.6

v0.12.5

v0.12.4

v0.12.4-rc1

v0.12.3

v0.12.2

v0.12.1

v0.12.0

v0.12.0-rc1

v0.12.0-beta2

v0.12.0-beta1

v0.11.8

v0.11.7

v0.11.6

v0.11.5

v0.11.4

v0.11.3

v0.11.2

v0.11.1

v0.11.0

v0.11.0-rc1

v0.11.0-beta2

v0.11.0-beta1

v0.10.9

v0.10.8

v0.10.7

v0.10.6

v0.10.5

v0.10.4

v0.10.4-rc1

v0.10.3

v0.10.2

v0.10.2-rc1

v0.10.1

v0.10.0

v0.10.0-rc1

v0.9.7

v0.9.6

v0.9.5

v0.9.4

nightly

Nomad - v1.6.0

Security

1.6.0 (July 18, 2023)

FEATURES:

Node Pools: Allow cluster operators to partition Nomad clients and control which jobs are allowed to run in each pool. [GH-11041]

BREAKING CHANGES:

acl: Job evaluate endpoint now requires submit-job instead of read-job capability [GH-16463]

SECURITY:

acl: Fixed a bug where a namespace ACL policy without label was applied to an unexpected namespace. CVE-2023-3072 [GH-17908]
search: Fixed a bug where ACL did not filter plugin and variable names in search endpoint. CVE-2023-3300 [GH-17906]
sentinel (Enterprise): Fixed a bug where ACL tokens could be exfiltrated via Sentinel logs CVE-2023-3299 [GH-17907]

IMPROVEMENTS:

agent: Display server node ID in agent configuration at startup [GH-17084]
api: enable support for storing original job source [GH-16763]
api: return a structured error for unexpected responses [GH-16743]
build: Publish official Docker images with the Nomad CLI [GH-17017]
checks: Added support for Consul check field tls_server_name [GH-17334]
cli: Add -quiet flag to nomad var init command [GH-17526]
cli: Add check for missing host volume path in nomad config validate command [GH-17393]
cli: Add leader status to output of nomad server members -json [GH-17138]
cli: Add the ability to customize the details of the CA when running nomad tls ca create [GH-17309]
cli: Sort output by Node name of the command nomad operator raft list-peers [GH-16221]
cli: job plan help text for running the plan now includes the -namespace flag [GH-16243]
client: check kernel module in /sys/module to help with WSL2 bridge networking [GH-17306]
client: de-duplicate allocation client status updates and prevent allocation client status updates from being sent until clients have first synchronized with the server [GH-17074]
client: prioritize allocation updates to reduce Raft and RPC load [GH-17354]
cni: Ensure to setup CNI addresses in deterministic order [GH-17766]
connect: Auto detect when to use podman for connect sidecar proxies [GH-17065]
connect: do not restrict automatic envoy versioning to docker driver [GH-17041]
connect: use full docker.io prefixed name for envoy image references [GH-17045]
deploymentwatcher: Allow deployments to fail early when running out of reschedule attempts [GH-17341]
deps: Updated Vault SDK to 0.9.0 [GH-17281]
deps: Updated consul-template to v0.31.0 [GH-16908]
deps: update docker to 23.0.3 [GH-16862]
deps: update github.com/hashicorp/raft from 1.3.11 to 1.5.0 [GH-17421]
deps: update go.etcd.io/bbolt from 1.3.6 to 1.3.7 [GH-16228]
docker: Add group_add configuration [GH-17313]
docker: Added option for labeling container with parent job ID of periodic/dispatch jobs [GH-17843]
drivers: Add DisableLogCollection to task driver capabilities interface [GH-17196]
metrics: add "total_ticks_count" counter for allocs/host CPU usage [GH-17579]
runtime: Added 'os.build' attribute to node fingerprint on windows os [GH-17576]
ui: Added a new Job Status Panel that helps show allocation status throughout a deployment and in steady state [GH-16134]
ui: Adds a Download as .nomad.hcl button to jobspec editing in the UI [GH-17752]
ui: Job status and deployment redesign [GH-16932]
ui: Restyles "toast" notifications in the web UI with the Helios Design System [GH-16099]
ui: add tooltips to the node and datacenter labels in the Topology page [GH-17647]
ui: adds a toggle and localStorage property to Word Wrap logs and job definitions [GH-17754]
ui: adds keyboard nav for switching between regions by pressing "r 1", "r 2", etc. [GH-17169]
ui: affix page header to the top of the browser window to handle browser extension push-down gracefully [GH-17783]
ui: change token input type from text to password [GH-17345]
ui: remove namespace, type, and priority columns from child job table [GH-17645]
vault: Add new configuration disable_file to prevent access to the Vault token by tasks that use image filesystem isolation [GH-13343]

DEPRECATIONS:

envoy: remove support for envoy fallback image [GH-17044]

BUG FIXES:

api: Fixed a bug that caused a panic when calling the Jobs().Plan() function with a job missing an ID [GH-17689]
api: add missing constant for unknown allocation status [GH-17726]
api: add missing field NetworkStatus for Allocation [GH-17280]
cgroups: Fixed a bug removing all DevicesSets when alloc is created/removed [GH-17535]
cli: Fix a panic in the nomad job restart command when monitoring replacement allocations [GH-17346]
cli: Output error messages during deployment monitoring [GH-17348]
client: Fixed a bug where Nomad incorrectly wrote to memory swappiness cgroup on old kernels [GH-17625]
client: Fixed a bug where agent would panic during drain incurred by shutdown [GH-17450]
client: fixed a bug that prevented Nomad from fingerprinting Consul 1.13.8 correctly [GH-17349]
consul: Fixed a bug where Nomad would repeatedly try to revoke successfully revoked SI tokens [GH-17847]
core: Fix panic around client deregistration and pending heartbeats [GH-17316]
core: fixed a bug that caused job validation to fail when a task with kill_timeout was placed inside a group with update.progress_deadline set to 0 [GH-17342]
csi: Fixed a bug where CSI volumes would fail to restore during client restarts [GH-17840]
docker: Fixed a bug where network pause container would not be removed after node restart [GH-17455]
drivers/docker: Fixed a bug where long-running docker operations would incorrectly timeout [GH-17731]
identity: Fixed a bug where workload identities for periodic and dispatch jobs would not have access to their parent job's ACL policy [GH-17018]
replication: Fix a potential panic when a non-authoritative region is upgraded and a server with the new version becomes the leader. [GH-17476]
scheduler: Fixed a panic when a node has only one configured dynamic port [GH-17619]
tls: Fixed a bug where the nomad tls cert command did not create certificates with the correct SANs for them to work with non default domain and region names. [GH-16959]
ui: dont show a service as healthy when its parent allocation stops running [GH-17465]
ui: fix a mirage-only issue where our mock token logs repeated unnecessarily [GH-17010]
ui: fixed a handful of UX-related bugs during variable editing [GH-17319]
ui: fixes an issue where the allocations table on child (periodic, parameterized) job pages wouldn't update when accessed via their parent [GH-17214]
ui: preserve newlines when displaying shown variables in non-json mode [GH-17343]

Security

Details

date

July 19, 2023, 7:18 a.m.

name

v1.6.0

type

Minor

official page

https://github.com/hashicorp/nomad/releases/tag/v1.6.0

👇

🔍View and search all Nomad releases.
🛠️Create and share lists to track your tools.
🚨Setup notifications for major, security, feature or patch updates.
🚀Much more coming soon!

Continue with GitHub

Continue with Google

Username

Password

Password (again)

leave this field blank to prove your humanity