v4.5.0
Notices
- To avoid control plane downtime when deploying cf-deployment 4.5.0 your foundation (see *Note below), operators should first bosh deploy with patch release of cf-networking (v2.15.1)
For your convenience, here's the code to include in the ops file to deploy the patch release:
---
- type: replace
path: /releases/name=cf-networking
value:
url: https://bosh.io/d/github.com/cloudfoundry/cf-networking-release?v=2.15.1
version: 2.15.1
sha1: 14a958518194ae6922dfa50f868f177a34b13794
*Note: After this release was published, the operators of a large foundation (with ~20 api instances) let us know they experienced control plane downtime when upgrading from cf-networking-release 2.15.0 to 2.16.0.
This was due to some new policy server migrations. This resulted in containers failing to create while the policy server db was migrating. While the deployment was being executed, they received multiple reports of cf-push failures. The degree of downtime is a function of the number of api instances in the foundation. The cf-networking team has provided a patch release (v2.15.1) that must be deployed before cf-deployment v4.5.0.
- The next release will be a major release including breaking changes.
The team will began working on those changes on Friday 9/21.
We've skipped the first of the bi-weekly releases this Monday 9/24 and we'll release CF-D v5.0.0 on Thursday 9/27.
You can review scope via the cf-d v5.0.0 epic.
Manifest Updates
- The Reverse Log Proxy (RLP) Gateway job has been added to the
log-api
instance group. This job exposes the Loggregator V2 API over Server Sent Events (SSE) via thego-router
. This will provide users a more flexible API to stream logs and metrics. #620 - Now that the CLI team has built a bosh-release for packaging the cf CLI, we've updated smoke tests to consume the cli via this release as opposed to packaging the cli itself. 0d32161
Ops-files
New Ops-files
operations/experimental/enable-nfs-volume-service-credhub.yml
#616- NFS volume release v1.4.0 introduces support for using CredHub instead of a SQL database to store state for nfs broker. CredHub has the advantage that it encrypts data at rest and is therefore a more secure store for service instance and service binding metadata. CredHub is required if you are using the LDAP integration, and you wish to specify user credentials at service instance creation time, rather than at service binding time.
operations/experimental/migrate-nfsbroker-mysql-to-credhub.yml
#616- If you have been running your NFS broker with a MySQL database to store state, this ops-file creates an errand called migrate_mysql_to_credhub to allow you to migrate your service bindings and instances from MySQL to Credhub.
- NOTE the cf-cli release version referenced in this file is v1.5.0, it should be updated to v1.8.0 (this will be fixed in a subsequent release).
operations/backup-and-restore/enable-backup-restore-smb-broker.yml
#614- Enables the backup and restore of SMB service broker instances and bindings.
- Requires enable-backup-restore.yml.
Release and Stemcell Updates
Release | New Version | Old Version |
---|---|---|
capi | 1.69.0 | 1.68.0 |
cf-smoke-tests | 40.0.9 | 40.0.8 |
cf-networking | 2.16.0 | 2.15.0 |
cflinuxfs2 | 1.238.0 | 1.236.0 |
routing | 0.182.0 | 0.180.0 |
silk | 2.16.0 | 2.15.0 |
cf-cli | 1.8.0 | 1.7.0 |
hwc-buildpack | 3.0.2 | 3.0.0 |
bits-service | 2.12.0 | 2.11.0 |
nfs-volume | 1.2.0 | |
mapfs | 1.0.1 | |
windows1803 | 1803.2 | 1803.1 |
windows2012R2 | 1200.24 | 1200.23 |
windows2016 | 1709.13 | 1709.12 |
cflinuxfs3 | 0.25.0 | 0.23.0 |
ubuntu-xenial | 97.17 | 97.16 |