Skip to content

Releases: cloudfoundry/loggregator-release

Loggregator 78

23 Feb 16:58
v78
13d2c1a
Compare
Choose a tag to compare
Loggregator 78

Important Note
This version of Loggregator restricts ciphers to use only the following 4 ciphers. This is a breaking change for some operators and a configurable property for opting into more cipher suites was introduced in Loggregator 85

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

New Features

  • When requesting recent logs, a limit param can set to return the most n
    most recent log lines
  • Updated README.md with useful information about loggregator
  • added instructions for syslog drain binder mutual TLS requirements

Change Log

  • Remove statsd-injector from loggregator and statsd-injector cert generation and moved it
    to its own release
  • Add deployment, job, and index to Metron metrics
  • statsd-injector was removed from the Loggregator repo in this release. It should now be includes as it's own release

Note: It was discovered that this release introduces an issue where if a metron or doppler dies it's corresponding component exponentially produces logs. A bug fix is planned for this issue.

Assets 3
Loading

Loggregator 77

10 Feb 22:43
v77
6918f7a
Compare
Choose a tag to compare
Loggregator 77

Important Update to Cert Generation

  • Loggregator now requires properties set for mutual auth with Cloud Controller. This is used for retrieving application names for inclusion in syslog drains and is set with the following new properties.
    • loggregator.tls.syslogdrainbinder.cert: TLS certificate for syslogdrainbinder, signed by diego bbs CA
    • loggregator.tls.syslogdrainbinder.key: TLS key for syslogdrainbinder, signed by diego bbs CA
    • Use <diego-bbs-ca.crt> and <diego-bbs-ca.key> when running generate-loggregator-certs. The diego BBS CA cert and key are typically generated separately from this script.
    • See the Loggregator README for more details on the new flag

Important Note
This version of Loggregator restricts ciphers to use only the following 4 ciphers. This is a breaking change for some operators and a configurable property for opting into more cipher suites was introduced in Loggregator 85

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

New Features

  • "loggregator" has been replaced by app, org and space name for host name in syslog drains
Assets 3
Loading

Loggregator 76

06 Feb 22:17
v76
6c941bb
Compare
Choose a tag to compare
Loggregator 76

Important Note
This version of Loggregator restricts ciphers to use only the following 4 ciphers. This is a breaking change for some operators and a configurable property for opting into more cipher suites was introduced in Loggregator 85

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

Features

  • Removal of statsd-injector and other refactoring
  • Removal of "blobify" scripts for deploying as binaries
  • Emission of new metrics for loggregator api v2 envelopes
  • Addition of ring-buffer "diode" to metron
Assets 3
Loading

Loggregator 75

24 Jan 21:15
v75
b1a79af
Compare
Choose a tag to compare
Loggregator 75

Important Note
This version of Loggregator restricts ciphers to use only the following 4 ciphers. This is a breaking change for some operators and a configurable property for opting into more cipher suites was introduced in Loggregator 85

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

New Features

  • Defined v2 envelope for gRPC see Loggregator API repo
  • Exposed new input into doppler using v2 Loggregator API
  • Converted v2 to v1 envelopes in doppler
Assets 3
Loading

Loggregator 74.0.2

17 Jan 18:58
v74.0.2
4f298ac
Compare
Choose a tag to compare
Loggregator 74.0.2

BUG FIXES

  • Includes blobs for cf-deployment
Assets 3
Loading

Loggregator 74.0.1

13 Jan 23:13
v74.0.1
ca29d6f
Compare
Choose a tag to compare
Loggregator 74.0.1

Bug Fix

  • Removed validation against extended key usage is breaking cf-deployment
Assets 3
Loading

Loggregator v74

13 Jan 21:38
v74
db200a1
Compare
Choose a tag to compare
Loggregator v74

Important Note
This version of Loggregator restricts ciphers to use only the following 4 ciphers. This is a breaking change for some operators and a configurable property for opting into more cipher suites was introduced in Loggregator 85

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

Bug Fixes:

  • Fixed an issue when metron failsover to UDP if provided with invalid certs. TrafficController and Doppler no longer panic if provided with invalid certs.
  • Corrected faulty use of --debug flag from metron_agent_windows job.
  • As part of validating certs we erroneously assume certs should have clientAuth value set for extended key usage.
Assets 3
Loading

Loggregator 73.0.1

17 Jan 18:58
v73.0.1
489852a
Compare
Choose a tag to compare
Loggregator 73.0.1

BUG FIX

This minor version upgrade fixes a reference to the now deprecated debug flags.

Assets 3
Loading

Loggregator 73

04 Jan 22:22
v73
c2b2554
Compare
Choose a tag to compare
Loggregator 73

Important Notices

We are deprecating the use of the following debug flags. These flags use the gosteno library and produce debug logs for every single log and metric event. this hides useful debug information produced without a flag. The deprecated flags are

  • traffic_controller.debug
  • doppler.debug
  • metron_agent.debug
  • syslog_drain_binder.debug

This version of Loggregator restricts ciphers to use only the following 4 ciphers. This is a breaking change for some operators and a configurable property for opting into more cipher suites was introduced in Loggregator 85

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

New Features

  • Improved deploy time by using precompiled blobs
Assets 3
Loading

Loggregator 72

08 Sep 15:29
v72
9ecbfe4
Compare
Choose a tag to compare
Loggregator 72

Important Notice - New Certificates Required for gRPC Transport

In order to secure the transport of log messages going forward Loggregator will require Metron cert & key as well as the Loggregator CA cert. You won't be able to deploy the this and future versions of Loggregator if you don't have these configured. See our README with specifics for generating and setting up your certs.

Important Notice - Cipher Suite Restrictions

This version of Loggregator restricts ciphers to use only the following 4 ciphers. This is a breaking change for some operators and a configurable property for opting into more cipher suites was introduced in Loggregator 85

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

Important Notice - ETCD Removal

This release removes etcd from metron. You no longer need to include etcd in your release if you are colocating metron.

New Features

  • Improved service discovery for Dopplers by removing etcd from metron
  • Encrypted log transport Metron->Doppler (via gRPC)
  • Pooled connections from Metron->Doppler (via gRPC)
  • Changed retry strategy for connecting to with etcd in doppler
Assets 3
Loading