fa74e702d8
security: Improve the security api as per the suggestions list in #2384
...
Subcommits:
decouple root and security enable/disable
create root role
prefix matching
godep: bump go-etcd to include credentials
add godep for speakeasy and auth entry parsing
appropriate errors for security enable/disable
WIP adding to etcd/client all the security client methods
add guest access
minor ui return tweaks
revert client changes
respond to comments, log more security operations
fix major ensure() bug, add better UX
block recursive access
fix some boneheaded mistakes
fix integration test
last comments
fix up security_api.md
philips nits
fix docs
2015-04-23 16:11:38 -04:00
d1d7feacc9
wal: change io.EOF returned by readFull to io.ErrUnexpectedEOF
...
Decoder should return error for any broken block including the
one that only contains the length field. We should change io.EOF
to io.ErrUnexpectedEOF before return the error.
2015-04-23 09:53:36 -07:00
efb0b6e5c8
Fix link to etcd-migrate in README.md
2015-04-23 17:03:08 +01:00
5cd6eead51
Merge pull request #2735 from robszumski/docs-migrate-link
...
docs: add absolute link to readme
2015-04-22 15:15:04 -07:00
c9878f4765
docs: add absolute link to readme
2015-04-22 13:59:08 -07:00
25d857bb47
Merge pull request #2732 from robszumski/relative-links
...
docs: remove absolute links to other docs
2015-04-22 11:54:30 -07:00
bd54f46d1b
docs: remove absolute links to other docs
2015-04-22 11:47:52 -07:00
4953e490f6
Merge pull request #2731 from yichengq/tester-wait-long
...
tools/etcd-tester: wait longer for health
2015-04-22 11:25:58 -07:00
46d743f389
Merge pull request #2726 from yichengq/init-sstat
...
etcdserver: init server stats before passing it as argument
2015-04-22 08:39:47 -07:00
1d96de459a
etcdserver: init server stats before passing it as argument
...
It is more reasonable to init the variable before passing it as an
argument.
It fixes a bug that etcdserver may panic on server stats when processing
a message from rafthttp streamReader before server stats is initialized
in server.Start().
2015-04-22 08:28:08 -07:00
3127a3b659
tools/etcd-tester: wait longer for health
...
It dramatically reduce the probability that follower failed to catch up
the leader.
2015-04-21 17:55:24 -07:00
b99c80874f
Merge pull request #2721 from philips/add-extended
...
etcdctl: add extended as output format
2015-04-21 12:16:00 -07:00
57270ec0b7
etcdctl: add extended as output format
...
extended wasn't documented in the help as one of the output formats, fix
this!
2015-04-21 10:22:58 -07:00
f077092bc1
Merge pull request #2715 from xiang90/version
...
*: serve json version on both client and peer url
2015-04-20 16:52:14 -07:00
5ad559b503
*: serve json version on both client and peer url
2015-04-20 16:23:51 -07:00
9dd7c1c60b
Merge pull request #2708 from judwhite/patch-1
...
README.md: change setDir -> setdir
2015-04-20 13:56:35 -07:00
1811701427
Revert "etcdserver: fix cluster fallback recovery"
...
This reverts commit cff005777a
2015-04-19 11:34:33 -07:00
88224f6f4e
Revert "etcdserver: not apply stale conf change in cluster and transport"
...
This reverts commit 40197f0698
2015-04-19 11:08:03 -07:00
4eae0e06e5
Merge pull request #2709 from justinsb/specify_bash_in_genproto
...
genproto assumes bash; specify bash
2015-04-18 15:31:00 -07:00
117cb995a5
script: genproto assumes bash; specify bash
2015-04-18 15:13:35 -07:00
d0f1bf9f8e
README.md: change setDir -> setdir
2015-04-18 05:33:32 -05:00
90a7978474
Merge pull request #2666 from philips/check-error-in-store
...
store: always check the error
2015-04-17 20:14:32 -07:00
00044cd3bd
scripts: build-aci update to have mountPoint and ports
...
Expose the etcd ports and data-dir mountPoint for future releases.
2015-04-17 14:57:15 -04:00
61e94ae16c
Merge pull request #2625 from bakins/client-srv
...
Initial SRV discovery for clients
2015-04-17 08:07:32 -07:00
c4899c201e
client: Discovery via SRV lookups
...
Based on code from discovery/srv.go. The returns the target as DNS
returns it. In the case of SSL, certs are tied to the hostname and not
the IP address generally.
Solves #2547
2015-04-17 10:57:01 -04:00
2a675c08c2
store: always check the error
...
Ensure that we propogate any errors out of the node.Remove operation
back to the user. There is no reason to assume here.
2015-04-16 17:22:57 -07:00
54c4d5005d
Merge pull request #2673 from ecnahc515/create_in_order
...
client: Add CreateInOrder method to client.KeysAPI
2015-04-16 13:34:09 -07:00
ee54aa3f02
Merge pull request #2697 from coreos/robszumski-patch-1
...
docs: size up all headers by 2
2015-04-16 10:10:35 -07:00
df32fe63c8
docs: size up all headers by 2
2015-04-16 09:55:46 -07:00
38a373ede9
Merge pull request #2692 from philips/add-migration-guide
...
Documentation: add migration notes to backward compatibility
2015-04-16 07:05:07 -07:00
a223fd532b
Documentation: add migration notes to backward compatibility
...
Add thorough notes on both the data directory migration and the snapshot
migration options.
2015-04-15 20:42:12 -07:00
3e5d1cd873
Merge pull request #2678 from xiang90/fix_snapshot
...
snap: load should only return ErrNoSnapshot
2015-04-15 09:53:17 -07:00
f697916793
snap: load should only return ErrNoSnapshot
...
If there is no available snapshot, load should return
ErrNoSnapshot. etcdserver might recover from that error
if it still have complete WAL files.
2015-04-15 09:41:07 -07:00
0c3a92f855
Merge pull request #2663 from xiang90/wal_b
...
wal: report throughput in wal bench
2015-04-15 09:32:17 -07:00
da098ad713
Merge pull request #2685 from xiang90/fix_server
...
etcdserver: prevExist=true + condition is compareAndSwap
2015-04-15 09:17:13 -07:00
98f8dfbc9d
etcdserver: prevExist=true + condition is compareAndSwap
...
PrevExist indicates the key should exist. Condition compares with
an existing key. So PrevExist+condition = CompareAndSwap not Update.
2015-04-14 23:44:06 -07:00
3aa7a31771
Merge pull request #2680 from xiang90/fix_backup
...
etcdctl: backup tool should use the new layout
2015-04-14 11:50:14 -07:00
d3778b1286
etcdctl: backup tool should use the new layout
2015-04-14 11:49:54 -07:00
d89a8628c6
client: Add CreateInOrder method to client.KeysAPI
...
Allows creating nodes within a given directory with atomically increasing
keys
2015-04-13 17:23:17 -07:00
f480a8b051
Merge pull request #2665 from xiaost/fix-minor-bug-in-etcdserver-send
...
etcdserver: fix minor bug in EtcdServer.send
2015-04-13 07:27:12 -07:00
eab2c2224a
etcdserver: fix minor bug in EtcdServer.send
...
it seems to nothing serious.
after deleted peers, the log may output:
"etcdserver: send message to unknown receiver %s"
2015-04-13 20:35:58 +08:00
aed18395c9
wal: report throughput in wal bench
2015-04-12 21:35:08 -07:00
25f1feceb5
Merge pull request #2645 from xiang90/fix_more
...
wal: never leave a corrupted wal file
2015-04-09 10:30:54 -07:00
852213879b
Merge pull request #2633 from yichengq/deprecate
...
etcdmain: deprecate --ca-file and --peer-ca-file
2015-04-09 10:22:30 -07:00
2f7b9a2232
etcdmain: deprecate --ca-file and --peer-ca-file
...
1. Print out DEPRECATE warning when running and configuration doc.
2. Use new flags for security example.
2015-04-09 10:14:32 -07:00
89242d4659
wal: better log msg
2015-04-09 09:54:20 -07:00
6a9e414961
Merge pull request #2603 from xiang90/dnssrv
...
*: stop using resolved tcp addr
2015-04-09 09:46:56 -07:00
9b65ff6959
discovery: drop trailing . from srv target
2015-04-09 07:08:22 -07:00
f5d4c86153
discovery: add a test case for srv
...
During srv discovery, it should try to match local member with
resolved addr and return unresolved hostnames for the cluster.
2015-04-09 07:07:27 -07:00
a3892221ee
*: stop using resolved tcp addr
...
We start to resolve host into tcp addrs since we generate
tcp based initial-cluster during srv discovery. However it
creates problems around tls and cluster verification. The
srv discovery only needs to use resolved the tcp addr to
find the local node. It does not have to resolve everything
and use the resolved addrs.
This fixes #2488 and #2226
2015-04-09 07:01:48 -07:00
Barak Michener