kemko/nomad
1
0
Fork 0
mirror of https://github.com/kemko/nomad.git synced 2026-01-01 16:05:42 +03:00
Code Issues Packages Projects Releases Wiki Activity
27,545 Commits 1 Branch 0 Tags
main
Commit Graph

611 Commits

Author SHA1 Message Date
dependabot[bot]
3dfbc890b2 chore(deps): bump github.com/creack/pty from 1.1.23 to 1.1.24 (#24470) 
Bumps [github.com/creack/pty](https://github.com/creack/pty) from 1.1.23 to 1.1.24.
- [Release notes](https://github.com/creack/pty/releases)
- [Commits](https://github.com/creack/pty/compare/v1.1.23...v1.1.24)

---
updated-dependencies:
- dependency-name: github.com/creack/pty
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-18 09:44:14 +01:00
dependabot[bot]
655fc7534c chore(deps): bump github.com/hashicorp/go-set/v3 (#24469) 
Bumps [github.com/hashicorp/go-set/v3](https://github.com/hashicorp/go-set) from 3.0.0-alpha.1 to 3.0.0.
- [Release notes](https://github.com/hashicorp/go-set/releases)
- [Commits](https://github.com/hashicorp/go-set/compare/v3.0.0-alpha.1...v3.0.0)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/go-set/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-18 09:43:29 +01:00
dependabot[bot]
ed2b1d9646 chore(deps): bump google.golang.org/grpc from 1.59.0 to 1.68.0 (#24468) 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.59.0 to 1.68.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.59.0...v1.68.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-18 09:42:01 +01:00
Seth Hoenig
13657e02da deps: update go-landlock v1.2.2 (#24458) 
Includes transitive library updates
 2024-11-13 14:31:55 -06:00
dependabot[bot]
af379f7020 chore(deps): bump github.com/docker/cli (#24414) 
Bumps [github.com/docker/cli](https://github.com/docker/cli) from 24.0.6+incompatible to 27.3.1+incompatible.
- [Commits](https://github.com/docker/cli/compare/v24.0.6...v27.3.1)

---
updated-dependencies:
- dependency-name: github.com/docker/cli
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-11 14:21:09 -05:00
dependabot[bot]
cfe17e6e8b chore(deps): bump github.com/prometheus/common from 0.45.0 to 0.60.1 (#24303) 
Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.45.0 to 0.60.1.
- [Release notes](https://github.com/prometheus/common/releases)
- [Changelog](https://github.com/prometheus/common/blob/main/RELEASE.md)
- [Commits](https://github.com/prometheus/common/compare/v0.45.0...v0.60.1)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-11 14:17:25 -05:00
dependabot[bot]
c688322a3f chore(deps): bump github.com/aws/aws-sdk-go from 1.44.210 to 1.55.5 (#24135) 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.210 to 1.55.5.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.210...v1.55.5)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-11 14:15:23 -05:00
dependabot[bot]
a8676c6e67 chore(deps): bump github.com/hashicorp/consul/api from 1.29.1 to 1.30.0 (#24262) 
Bumps [github.com/hashicorp/consul/api](https://github.com/hashicorp/consul) from 1.29.1 to 1.30.0.
- [Release notes](https://github.com/hashicorp/consul/releases)
- [Changelog](https://github.com/hashicorp/consul/blob/main/CHANGELOG.md)
- [Commits](https://github.com/hashicorp/consul/compare/api/v1.29.1...api/v1.30.0)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/consul/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-11 14:10:16 -05:00
Kir Kolyshkin
d09c8ddf21 deps: switch to moby/sys/capability (#24093) 
github.com/moby/sys/capability is a fork of the (no longer maintained)
github.com/syndtr/gocapability package.

For changes since the fork took place, see
https://github.com/moby/sys/blob/main/capability/CHANGELOG.md

Note that the "workaround for RHEL6" is removed for a number of reasons.
Feel free to choose the one you like the most, either is sufficient:

1. /proc/sys/kernel/cap_last_cap is available since RHEL 6.7
   (kernel 2.6.32-573.el6), released 9 years ago (2015-07-22).

2. It incorrectly returns CAP_BLOCK_SUSPEND (36), which was only added
   in kernel v3.5 and was never backported to RHEL6 kernels. The
   correct value for RHEL6 would be CAP_MAC_ADMIN (33).

3. As far as upstream kernels go, /proc/sys/kernel/cap_last_cap was
   added in kernel v3.2, and a correct value depends on the kernel
   version. It could be CAP_WAKE_ALARM (35), added to kernel v3.0, or
   CAP_SYSLOG (34), added to kernel v2.6.38, or possibly a lesser value
   for even older kernels.

Signed-off-by: Kir Kolyshkin <kolyshkin@gmail.com>
 2024-11-11 14:07:31 -05:00
dependabot[bot]
732f608c06 chore(deps): bump golang.org/x/sys from 0.25.0 to 0.26.0 (#24138) 2024-11-08 14:06:58 +00:00
dependabot[bot]
bdee6f04a5 chore(deps): bump github.com/moby/sys/mountinfo from 0.7.1 to 0.7.2 (#24136) 2024-11-06 07:49:24 +00:00
dependabot[bot]
60439142c2 chore(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 (#24360) 2024-11-05 09:27:52 +00:00
Tim Gross
6d17a9bf64 deps: update go-plugin to 1.6.2 (#24265) 
During allocation recovery, the go-plugin reattachment workflow checks to see if
the PID we stored in client state is still running. If so, we try to connect to
that process. If that fails, we kill the process under the presumption it's not
working. But during reattachment we don't know that the PID we have is still
valid. Which means that the process we're trying to attach to may have exited
and a different process has spawned with the same PID. This results in some
unrelated process getting silently killed.

Update go-plugin to 1.6.2, which includes a bug fix so we do not kill the
process.

Fixes: https://github.com/hashicorp/nomad/issues/23969
 2024-10-21 15:48:26 -04:00
dependabot[bot]
242de8abaa chore(deps): bump github.com/hashicorp/go-secure-stdlib/listenerutil (#24084) 
Bumps [github.com/hashicorp/go-secure-stdlib/listenerutil](https://github.com/hashicorp/go-secure-stdlib) from 0.1.4 to 0.1.9.
- [Release notes](https://github.com/hashicorp/go-secure-stdlib/releases)
- [Commits](https://github.com/hashicorp/go-secure-stdlib/compare/awsutil/v0.1.4...listenerutil/v0.1.9)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/go-secure-stdlib/listenerutil
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-30 10:19:14 +02:00
dependabot[bot]
69766a080d chore(deps): bump github.com/hashicorp/go-kms-wrapping/wrappers/transit/v2 (#24085) 
Bumps [github.com/hashicorp/go-kms-wrapping/wrappers/transit/v2](https://github.com/hashicorp/go-kms-wrapping) from 2.0.11 to 2.0.12.
- [Commits](https://github.com/hashicorp/go-kms-wrapping/compare/v2.0.11...v2.0.12)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/go-kms-wrapping/wrappers/transit/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-30 10:18:04 +02:00
dependabot[bot]
21901197a3 chore(deps): bump github.com/hashicorp/go-version from 1.6.0 to 1.7.0 (#24086) 
Bumps [github.com/hashicorp/go-version](https://github.com/hashicorp/go-version) from 1.6.0 to 1.7.0.
- [Release notes](https://github.com/hashicorp/go-version/releases)
- [Changelog](https://github.com/hashicorp/go-version/blob/main/CHANGELOG.md)
- [Commits](https://github.com/hashicorp/go-version/compare/v1.6.0...v1.7.0)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/go-version
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-30 10:17:09 +02:00
dependabot[bot]
d667316178 chore(deps): bump golang.org/x/mod from 0.18.0 to 0.21.0 (#24087) 
Bumps [golang.org/x/mod](https://github.com/golang/mod) from 0.18.0 to 0.21.0.
- [Commits](https://github.com/golang/mod/compare/v0.18.0...v0.21.0)

---
updated-dependencies:
- dependency-name: golang.org/x/mod
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-30 10:16:40 +02:00
Piotr Kazmierczak
981ca36049 docker: use official client instead of fsouza/go-dockerclient (#23966) 
This PR replaces fsouza/go-dockerclient 3rd party docker client library with
docker's official SDK.

---------

Co-authored-by: Tim Gross <tgross@hashicorp.com>
Co-authored-by: Seth Hoenig <shoenig@duck.com>
 2024-09-26 18:41:44 +02:00
Michael Schurter
93bf7caa75 deps: upgrade yamux from v0.1.1 to v0.1.2 (#24058) 
The main point of this dependency upgrade is to pull in the fixes in
hashicorp/yamux#127 which prevents leaking deadlocked goroutines. It has
been observed to improve the issue in hashicorp/nomad#23305 but does not
seem sufficient to fix it entirely.

Since touching yamux is a rare and scary event, I do **not** intend to
backport this. If we discover the improvements are stable and
significant enough, or if further fixes land in yamux, backporting can
be done at that time.
 2024-09-24 11:55:49 -07:00
dependabot[bot]
31e4669213 chore(deps): bump github.com/shirou/gopsutil/v3 from 3.23.9 to 3.24.5 (#23657) 
Bumps [github.com/shirou/gopsutil/v3](https://github.com/shirou/gopsutil) from 3.23.9 to 3.24.5.
- [Release notes](https://github.com/shirou/gopsutil/releases)
- [Commits](https://github.com/shirou/gopsutil/compare/v3.23.9...v3.24.5)

---
updated-dependencies:
- dependency-name: github.com/shirou/gopsutil/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-23 15:15:26 -04:00
dependabot[bot]
f89c0c923f chore(deps): bump github.com/mitchellh/go-ps (#23658) 
Bumps [github.com/mitchellh/go-ps](https://github.com/mitchellh/go-ps) from 0.0.0-20190716172923-621e5597135b to 1.0.0.
- [Commits](https://github.com/mitchellh/go-ps/commits/v1.0.0)

---
updated-dependencies:
- dependency-name: github.com/mitchellh/go-ps
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-23 14:54:08 -04:00
Michael Schurter
2376248d32 deps: upgrade raft from v1.6.1 -> v1.7.1 (#24029) 
Fixes #20335

The major change between Raft v1.6 -> v1.7 was the introduction of the
Prevote feature. Before Prevote, when a partitioned node rejoins a
cluster it may cause an election even if the cluster was stable. Prevote
can avoid this useless election so reintroducing partitioned servers to
an otherwise stable cluster becomes seamless.

Full details: https://github.com/hashicorp/raft/pull/530

In #20335 we discussed whether or not to add a configuration option to
disable prevote in case bugs were discovered. While bugs have been found
(hence the v1.7.1 version as opposed to v1.7.0), I'm choosing to follow
Vault's lead of straightfordwardly bumping the raft dependency:
hashicorp/vault#27605 and hashicorp/vault#28218
 2024-09-23 11:51:24 -07:00
dependabot[bot]
f86e770d1b chore(deps): bump github.com/gorilla/websocket from 1.5.0 to 1.5.3 (#24030) 
Bumps [github.com/gorilla/websocket](https://github.com/gorilla/websocket) from 1.5.0 to 1.5.3.
- [Release notes](https://github.com/gorilla/websocket/releases)
- [Commits](https://github.com/gorilla/websocket/compare/v1.5.0...v1.5.3)

---
updated-dependencies:
- dependency-name: github.com/gorilla/websocket
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-23 14:11:40 -04:00
dependabot[bot]
a1e15645f9 chore(deps): bump github.com/hashicorp/go-plugin from 1.6.0 to 1.6.1 (#24031) 
Bumps [github.com/hashicorp/go-plugin](https://github.com/hashicorp/go-plugin) from 1.6.0 to 1.6.1.
- [Release notes](https://github.com/hashicorp/go-plugin/releases)
- [Changelog](https://github.com/hashicorp/go-plugin/blob/main/CHANGELOG.md)
- [Commits](https://github.com/hashicorp/go-plugin/compare/v1.6.0...v1.6.1)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/go-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-23 14:06:48 -04:00
dependabot[bot]
59b07eed4d chore(deps): bump github.com/creack/pty from 1.1.18 to 1.1.23 (#23995) 
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-09-19 11:24:24 +01:00
dependabot[bot]
c057490c3b chore(deps): bump github.com/opencontainers/runc from 1.1.13 to 1.1.14 (#23903) 2024-09-19 08:17:19 +01:00
dependabot[bot]
4d6856a306 chore(deps): bump golang.org/x/crypto from 0.24.0 to 0.27.0 (#23932) 2024-09-17 07:55:00 +01:00
Seth Hoenig
51215bf102 deps: update to go-set/v3 and refactor to use custom iterators (#23971) 
* deps: update to go-set/v3

* deps: use custom set iterators for looping
 2024-09-16 13:40:10 -05:00
dependabot[bot]
210044b465 chore(deps): bump github.com/shoenig/test from 1.7.1 to 1.11.0 (#23962) 2024-09-16 10:46:19 +01:00
dependabot[bot]
2c8ee29ade chore(deps): bump github.com/moby/term (#23587) 
Bumps [github.com/moby/term](https://github.com/moby/term) from 0.0.0-20210619224110-3f7ff695adc6 to 0.5.0.
- [Commits](https://github.com/moby/term/commits/v0.5.0)

---
updated-dependencies:
- dependency-name: github.com/moby/term
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-05 11:47:23 -04:00
dependabot[bot]
1ba16f11ec chore(deps): bump github.com/containernetworking/cni from 1.1.2 to 1.2.3 (#23701) 
Bumps [github.com/containernetworking/cni](https://github.com/containernetworking/cni) from 1.1.2 to 1.2.3.
- [Release notes](https://github.com/containernetworking/cni/releases)
- [Commits](https://github.com/containernetworking/cni/compare/v1.1.2...v1.2.3)

---
updated-dependencies:
- dependency-name: github.com/containernetworking/cni
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-05 11:45:57 -04:00
dependabot[bot]
8e6ccf38ff chore(deps): bump github.com/docker/docker (#23731) 
Bumps [github.com/docker/docker](https://github.com/docker/docker) from 27.0.2+incompatible to 27.1.1+incompatible.
- [Release notes](https://github.com/docker/docker/releases)
- [Commits](https://github.com/docker/docker/compare/v27.0.2...v27.1.1)

---
updated-dependencies:
- dependency-name: github.com/docker/docker
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-05 11:41:54 -04:00
Deniz Onur Duzgun
7a2c70e3f6 deps: bump azidentity to v1.7.0 (#23664) 2024-07-22 15:03:19 -04:00
dependabot[bot]
cf6ce224b3 chore(deps): bump github.com/hashicorp/go-checkpoint (#23588) 2024-07-19 15:13:43 +01:00
Tim Gross
857f20e0ba deps: update go-kms-wrapping and Azure SDK (#23622) 
I'm pulling this out to a shared PR between the two, because it'll make
backporting easier.

Closes: #23621
Closes: #23589
 2024-07-18 10:18:42 -04:00
Tim Gross
c970d22164 keyring: support external KMS for key encryption key (KEK) (#23580) 
In Nomad 1.4.0, we shipped support for encrypted Variables and signed Workload
Identities, but the key material is protected only by a AEAD encrypting the
KEK. Add support for Vault transit encryption and external KMS from major cloud
providers. The servers call out to the external service to decrypt each key in
the on-disk keystore.

Ref: https://hashicorp.atlassian.net/browse/NET-10334
Fixes: https://github.com/hashicorp/nomad/issues/14852
 2024-07-18 09:42:28 -04:00
dependabot[bot]
81a5eed99b chore(deps): bump github.com/container-storage-interface/spec (#23514) 
Bumps [github.com/container-storage-interface/spec](https://github.com/container-storage-interface/spec) from 1.7.0 to 1.10.0.
- [Release notes](https://github.com/container-storage-interface/spec/releases)
- [Commits](https://github.com/container-storage-interface/spec/compare/v1.7.0...v1.10.0)

---
updated-dependencies:
- dependency-name: github.com/container-storage-interface/spec
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-11 07:56:03 -05:00
dependabot[bot]
9381febedb chore(deps): bump github.com/klauspost/cpuid/v2 from 2.2.5 to 2.2.8 (#23513) 
Bumps [github.com/klauspost/cpuid/v2](https://github.com/klauspost/cpuid) from 2.2.5 to 2.2.8.
- [Release notes](https://github.com/klauspost/cpuid/releases)
- [Changelog](https://github.com/klauspost/cpuid/blob/master/.goreleaser.yml)
- [Commits](https://github.com/klauspost/cpuid/compare/v2.2.5...v2.2.8)

---
updated-dependencies:
- dependency-name: github.com/klauspost/cpuid/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-11 07:55:00 -05:00
dependabot[bot]
4ccc613165 build(deps): bump github.com/gorilla/handlers from 1.5.1 to 1.5.2 (#23356) 
Bumps [github.com/gorilla/handlers](https://github.com/gorilla/handlers) from 1.5.1 to 1.5.2.
- [Release notes](https://github.com/gorilla/handlers/releases)
- [Commits](https://github.com/gorilla/handlers/compare/v1.5.1...v1.5.2)

---
updated-dependencies:
- dependency-name: github.com/gorilla/handlers
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-11 07:54:07 -05:00
dependabot[bot]
83b5a4cbfd chore(deps): bump github.com/shoenig/go-landlock from 1.2.0 to 1.2.1 (#23512) 
Bumps [github.com/shoenig/go-landlock](https://github.com/shoenig/go-landlock) from 1.2.0 to 1.2.1.
- [Release notes](https://github.com/shoenig/go-landlock/releases)
- [Commits](https://github.com/shoenig/go-landlock/compare/v1.2.0...v1.2.1)

---
updated-dependencies:
- dependency-name: github.com/shoenig/go-landlock
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-11 07:53:31 -05:00
dependabot[bot]
a01c688984 chore(deps): bump github.com/hashicorp/go-envparse (#23471) 
Bumps [github.com/hashicorp/go-envparse](https://github.com/hashicorp/go-envparse) from 0.0.0-20180119215841-310ca1881b22 to 0.1.0.
- [Release notes](https://github.com/hashicorp/go-envparse/releases)
- [Commits](https://github.com/hashicorp/go-envparse/commits/v0.1.0)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/go-envparse
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-01 09:30:49 +02:00
dependabot[bot]
ec294dab1d chore(deps): bump github.com/docker/docker (#23472) 
Bumps [github.com/docker/docker](https://github.com/docker/docker) from 26.0.2+incompatible to 27.0.2+incompatible.
- [Release notes](https://github.com/docker/docker/releases)
- [Commits](https://github.com/docker/docker/compare/v26.0.2...v27.0.2)

---
updated-dependencies:
- dependency-name: github.com/docker/docker
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-01 09:29:57 +02:00
Tim Gross
bd2a2ce33c deps: update Consul API and consul-template (#23436) 
* Upgrade consul-template to 0.39.0 to allow template queries of admin
  partitions and sameness groups.
* Upgrade our Consul API to 1.29.1 because it's required for CT, and to remove
  the replacement pinned version we were using to pick up some newer Consul API
  features we needed in 1.7.0.

Ref: https://hashicorp.atlassian.net/browse/NET-10153
 2024-06-26 08:49:35 -04:00
dependabot[bot]
c5b7f6b3c5 chore(deps): bump github.com/hashicorp/go-getter from 1.7.4 to 1.7.5 (#23434) 
Bumps [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) from 1.7.4 to 1.7.5.
- [Release notes](https://github.com/hashicorp/go-getter/releases)
- [Changelog](https://github.com/hashicorp/go-getter/blob/main/.goreleaser.yml)
- [Commits](https://github.com/hashicorp/go-getter/compare/v1.7.4...v1.7.5)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/go-getter
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-25 16:43:02 -04:00
dependabot[bot]
3dc7fdaad6 chore(deps): bump github.com/hashicorp/go-retryablehttp (#23428) 
Bumps [github.com/hashicorp/go-retryablehttp](https://github.com/hashicorp/go-retryablehttp) from 0.7.2 to 0.7.7.
- [Changelog](https://github.com/hashicorp/go-retryablehttp/blob/main/CHANGELOG.md)
- [Commits](https://github.com/hashicorp/go-retryablehttp/compare/v0.7.2...v0.7.7)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/go-retryablehttp
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-25 09:04:49 -04:00
dependabot[bot]
a80ebe2c15 chore(deps): bump github.com/docker/docker (#20460) 
Bumps [github.com/docker/docker](https://github.com/docker/docker) from 26.0.1+incompatible to 26.0.2+incompatible.
- [Release notes](https://github.com/docker/docker/releases)
- [Commits](https://github.com/docker/docker/compare/v26.0.1...v26.0.2)

---
updated-dependencies:
- dependency-name: github.com/docker/docker
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-17 16:53:29 -04:00
Tim Gross
d9a10a6298 deps: update runc to 1.1.13 (#23331) 
Update `runc` to 1.1.13 to pick up build support for Go 1.22.4+, in order to
ensure we've resolved errors cloning processes into Linux namespaces for
libcontainer (`exec` driver) with new versions of Go and older but still
supported versions of glibc.

This changeset has two minor quirks:

* Testing shows that the reported issues is already resolved on `main` by
  upgrading to Go 1.22.4 without this dependency bump, at least for glibc 2.31.
  Upgrading the dependency should make sure there isn't another glibc version
  where the problem will still appear.

* This version of `runc` refers to fields in `cilium/ebpf` which are not present
  in more recent versions of that library. So in order to build, we have to
  downgrade `cilium/ebpf`. Fortunately, `runc` is the only consumer of that
  transitive dependency.

Closes: https://github.com/hashicorp/nomad/issues/20212
Ref: https://hashicorp.atlassian.net/browse/NET-10078
 2024-06-14 14:38:44 -04:00
Tim Gross
c99428d553 build: update to go1.22.4 (#23172) 
Update Go toolchain to 1.22.4, which addresses two vulnerabilities in the Go
stdlib.

* CVE-2024-24789: impacts handling of certain types of invalid zip files, which
  could be exploited to create a zip file with unexpected contents. This could
  potentially impact Nomad users of `artifact` blocks who download untrusted
  artifacts.
* CVE-2024-24790: impacts parsing of IPv4-mapped IPv6 addresses.
 2024-06-05 09:03:15 -04:00
Charlie Voiselle
180bab892d Update hcl/v2 to latest patched version v2.20.2-0.20240517235513-55d9c02d147d (#22439) 2024-05-31 15:42:17 -04:00
Tim Gross
623486b302 deps: vendor containernetworking/plugins functions for net NS utils (#20556) 
We bring in `containernetworking/plugins` for the contents of a single file,
which we use in a few places for running a goroutine in a specific network
namespace. This code hasn't needed an update in a couple of years, and a good
chunk of what we need was previously vendored into `client/lib/nsutil`
already.

Updating the library via dependabot is causing errors in Docker driver tests
because it updates a lot of transient dependencies, and it's bringing in a pile
of new transient dependencies like opentelemetry. Avoid this problem going
forward by vendoring the remaining code we hadn't already.

Ref: https://github.com/hashicorp/nomad/pull/20146
 2024-05-13 09:10:16 -04:00