pcs resource relations
command shows relations between resources such as ordering constraints, ordering set constraints and relations defined by resource hierarchy (rhbz#1770975)pcs resource disable
can show effects of disabling resources and prevent disabling resources if any other resources would be affected (rhbz#1770973)
- Do not generate custom DH key if it was not requested by setting its custom length (rhbz#1760434)
- Documentation of
pcs constraint colocation add
(rhbz#1500012) - Empty constraint option are not allowed in
pcs constraint order
andpcs constraint colocation add
commands (rhbz#1500012) - Fixed an issue where some pcs commands could not connect to cluster nodes over IPv6
- More fixes for the case when PATH environment variable is not set (rhbz#1671174)
- Error messages in cases when cluster is not set up (rhbz#1448569)
- Fix documentation and flags regarding bundled/cloned/grouped resources for
pcs (resource | stonith) (cleanup | refresh)
(rhbz#1759269)
- Pcsd no longer sends Server HTTP header (rhbz#1765606)
- It is now possible to disable pcsd SSL certificate being synced across the
cluster during creating new cluster and adding a node to an existing cluster
by setting
PCSD_SSL_CERT_SYNC_ENABLED
tofalse
in pcsd config file (rhbz#1665898) - Length of DH key for SSL key exchange can be set in pcsd config file (ghissue#200)
pcs status
now shows failed and pending fencing actions andpcs status --full
shows the whole fencing history. Pacemaker supporting fencing history is required. (rhbz#1466088)pcs stonith history
commands for displaying, synchronizing and cleaning up fencing history. Pacemaker supporting fencing history is required. (rhbz#1595444)- Support for clearing expired moves and bans of resources (rhbz#1673829)
- HSTS is now enabled in pcsd (rhbz#1558063)
- Pcs works even when PATH environment variable is not set (rhbz#1671174)
- Fixed several "Unknown report" error messages
- Improved validation of qdevice heuristics exec options (rhbz#1551663)
- Fixed crashes in the
pcs cluster auth
command (rhbz#1676956) - Pcs does not crash due to unhandled LibraryError exceptions (rhbz#1710750)
pcs config restore
does not fail with "Invalid cross-device link" error any more (rhbz#1712315)- Fixed id conflict with current bundle configuration in
pcs resource bundle reset
(rhbz#1725849) - Standby nodes running resources are listed separately in
pcs status nodes
(rhbz#1619253) - Parsing arguments in the
pcs constraint order
andpcs constraint colocation add
commands has been improved, errors which were previously silent are now reported (rhbz#1500012)
Command pcs resource bundle reset
no longer accepts the container type
(rhbz#1598197)
- Command
pcs client local-auth
for authentication of pcs client against local pcsd. This is required when a non-root user wants to execute a command which requires root permissions (e.g.pcs cluster start
). (rhbz#1554302) - A warning is printed when adding a location constraint for a non-existent node (rhbz#1522858)
- Allow non-root users to read quorum status (commands
pcs status corosync
,pcs status quorum
,pcs quorum device status
,pcs quorum status
) (rhbz#1594738) - Command
pcs config checkpoint diff
for displaying differences between two specified checkpoints (rhbz#1515021) - Support for resource instance attributes uniqueness check according to resource agent metadata (rhbz#1389140)
- Command
pcs resource bundle reset
for a bundle configuration reseting (rhbz#1598197)
- pcsd.service now depends on network-online.target (rhbz#1638376)
- Propose removing nodes from their clusters instead of destroying cluster on the nodes when trying to create new cluster from nodes which are already in a cluster (rhbz#1474747)
- Pcs no longer removes empty
meta_attributes
,instance_attributes
and other nvsets and similar elements from CIB. Such behavior was causing problems when pacemaker ACLs were in effect, leading to inability of pushing modified CIBs to pacemaker. (rhbz#1642514) pcs resource group add
no longer produces an invalid CIB when group id is already occupied with non-resource element (rhbz#1447349)- pcs no longer spawns unnecessary processes for reading node tokens (rhbz#1676944)
- Fixed a bug causing most of the messages not being logged into pcsd.log (rhbz#1679534)
- Lower load caused by periodical config files syncing in pcsd by making it sync less frequently (rhbz#1676956)
- Improve logging of periodical config files syncing in pcsd
- Validation for an unaccessible resource inside a bundle (rhbz#1462248)
- Test of watchdog devices (rhbz#1475318)
- Possible race condition causing an HTTP 408 error when sending larger files via pcs (rhbz#1600169)
- Support
diff-against
option ofpcs cluster cib-push
only for crm_feature_set > 3.0.8 (rhbz#1488044) pcs resource delete
accepts only one resource- Show more user friendly error message when testing watchdog device and multiple devices are present (rhbz#1475318)
- Do not distinguish betwen supported and unsupported watchdog devices as SBD cannot reliably provide such information (rhbz#1475318)
- Instance attributes setting for fence agents
fence_compute
andfence_evacuate
(rhbz#1623181)
- Pcsd option to reject client initiated SSL/TLS renegotiation (rhbz#1566382)
- Commands for listing and testing watchdog devices (rhbz#1475318).
- Option for setting netmtu in
pcs cluster setup
command (rhbz#1535967) - Validation for an unaccessible resource inside a bundle (rhbz#1462248)
- Options to display and filter failures by an operation and its interval in
pcs resource failcount reset
andpcs resource failcount show
commands (rhbz#1427273) - When starting a cluster, each node is now started with a small delay to help preventing JOIN flood in corosync (rhbz#1572886)
pcs cib-push diff-against=
does not consider an empty diff as an error (ghpull#166)pcs resource update
does not create an empty meta_attributes element any more (rhbz#1568353)pcs resource debug-*
commands provide debug messages even with pacemaker-1.1.18 and newer (rhbz#1574898)pcs config
no longer crashes whencrm_mon
prints anything to stderr (rhbz#1581150)- Removing resources using web UI when the operation takes longer than expected (rhbz#1579911)
- Improve
pcs quorum device add
usage and man page (rhbz#1476862) pcs resource failcount show
works correctly with pacemaker-1.1.18 and newer (rhbz#1588667)- Do not lowercase node addresses in the
pcs cluster auth
command (rhbz#1590533)
- Watchdog devices are validated against a list provided by sbd (rhbz#1475318).
- CVE-2018-1086: Debug parameter removal bypass, allowing information disclosure (rhbz#1557366)
- CVE-2018-1079: Privilege escalation via authorized user malicious REST call (rhbz#1550243)
- CVE-2018-1000119 rack-protection: Timing attack in authenticity_token.rb (rhbz#1534027)
- Added
pcs status booth
as an alias topcs booth status
- A warning is displayed in
pcs status
and a stonith device detail in web UI when a stonith device has itsmethod
option set tocycle
(rhbz#1523378)
--skip-offline
is no longer ignored in thepcs quorum device remove
command- pcs now waits up to 5 minutes (previously 10 seconds) for pcsd restart when synchronizing pcsd certificates
- Usage and man page now correctly state it is possible to enable or disable several stonith devices at once
- It is now possible to set the
action
option of stonith devices in web UI by using force (rhbz#1421702) - Do not crash when
--wait
is used inpcs stonith create
(rhbz#1522813) - Nodes are now authenticated after running
pcs cluster auth
even if an existing corosync.conf defines no nodes (ghissue#153, rhbz#1517333) - Pcs now properly exits with code 1 when an error occurs in
pcs cluster node add-remote
andpcs cluster node add-guest
commands (rhbz#1464781) - Fixed a crash in the
pcs booth sync
command (rhbz#1527530) - Always replace the whole CIB instead of applying a diff when crm_feature_set <= 3.0.8 (rhbz#1488044)
- Fixed
pcs cluster auth
in a cluster when not authenticated and using a non-default port (rhbz#1415197) - Fixed
pcs cluster auth
in a cluster when previously authenticated using a non-default port and reauthenticating using an implicit default port (rhbz#1415197)
pcs status --full
now displays information about tickets (rhbz#1389943)- Support for managing qdevice heuristics (rhbz#1389209)
- SNMP agent providing information about cluster to the master agent. It supports only python 2.7 for now (rhbz#1367808).
- Fixed crash when loading a huge xml (rhbz#1506864)
- Fixed adding an existing cluster into the web UI (rhbz#1415197)
- False warnings about failed actions when resource is master/unmaster from the web UI (rhbz#1506220)
pcs resource|stonith cleanup
no longer deletes the whole operation history of resources. Instead, it only deletes failed operations from the history. The original functionality is available in thepcs resource|stonith refresh
command. (rhbz#1508351, rhbz#1508350)
- List of pcs and pcsd capabilities (rhbz#1230919)
- Fixed
pcs cluster auth
when already authenticated and using different port (rhbz#1415197) - It is now possible to restart a bundle resource on one node (rhbz#1501274)
resource update
no longer exits with an error when theremote-node
meta attribute is set to the same value that it already has (rhbz#1502715, ghissue#145)- Listing and describing resource and stonith agents no longer crashes when agents' metadata contain non-ascii characters (rhbz#1503110, ghissue#151)
- Configurable pcsd port (rhbz#1415197)
- Description of the
--force
option added to man page and help (rhbz#1491631)
- Fixed some crashes when pcs encounters a non-ascii character in environment variables, command line arguments and so on (rhbz#1435697)
- Fixed detecting if systemd is in use (ghissue#118)
- Upgrade CIB schema version when
resource-discovery
option is used in location constraints (rhbz#1420437) - Fixed error messages in
pcs cluster report
(rhbz#1388783) - Increase request timeout when starting a cluster with large number of nodes to prevent timeouts (rhbz#1463327)
- Fixed "Unable to update cib" error caused by invalid resource operation IDs
pcs resource op defaults
now fails on an invalid option (rhbz#1341582)- Fixed behaviour of
pcs cluster verify
command when entered with the filename argument (rhbz#1213946)
- CIB changes are now pushed to pacemaker as a diff in commands overhauled to the new architecture (previously the whole CIB was pushed). This resolves race conditions and ACLs related errors when pushing CIB. (rhbz#1441673)
- All actions / operations defined in resource agent's metadata (except meta-data, status and validate-all) are now copied to the CIB when creating a resource. (rhbz#1418199, ghissue#132)
- Improve documentation of the
pcs stonith confirm
command (rhbz#1489682)
- This is the last version fully supporting CMAN clusters and python 2.6. Support for these will be gradually dropped.
- Option to create a cluster with or without corosync encryption enabled, by default the encryption is disabled (rhbz#1165821)
- It is now possible to disable, enable, unmanage and manage bundle resources and set their meta attributes (rhbz#1447910)
- Pcs now warns against using the
action
option of stonith devices (rhbz#1421702)
- Fixed crash of the
pcs cluster setup
command when the--force
flag was used (rhbz#1176018) - Fixed crash of the
pcs cluster destroy --all
command when the cluster was not running (rhbz#1176018) - Fixed crash of the
pcs config restore
command when restoring pacemaker authkey (rhbz#1176018) - Fixed "Error: unable to get cib" when adding a node to a stopped cluster (rhbz#1176018)
- Fixed a crash in the
pcs cluster node add-remote
command when an id conflict occurs (rhbz#1386114) - Fixed creating a new cluster from the web UI (rhbz#1284404)
pcs cluster node add-guest
now works with the flag--skip-offline
(rhbz#1176018)pcs cluster node remove-guest
can be run again when the guest node was unreachable first time (rhbz#1176018)- Fixed "Error: Unable to read /etc/corosync/corosync.conf" when running
pcs resource create
(rhbz#1386114) - It is now possible to set
debug
andverbose
parameters of stonith devices (rhbz#1432283) - Resource operation ids are now properly validated and no longer ignored in
pcs resource create
,pcs resource update
andpcs resource op add
commands (rhbz#1443418) - Flag
--force
works correctly when an operation is not successful on some nodes duringpcs cluster node add-remote
orpcs cluster node add-guest
(rhbz#1464781)
- Binary data are stored in corosync authkey (rhbz#1165821)
- It is now mandatory to specify container type in the
resource bundle create
command - When creating a new cluster, corosync communication encryption is disabled by default (in 0.9.158 it was enabled by default, in 0.9.157 and older it was disabled)
- Support for bundle resources (CLI only) (rhbz#1433016)
- Commands for adding and removing guest and remote nodes including handling pacemaker authkey (CLI only) (rhbz#1176018, rhbz#1254984, rhbz#1386114, rhbz#1386512)
- Command
pcs cluster node clear
to remove a node from pacemaker's configuration and caches - Backing up and restoring cluster configuration by
pcs config backup
andpcs config restore
commands now support corosync and pacemaker authkeys (rhbz#1165821, rhbz#1176018)
pcs cluster remote-node add
andpcs cluster remote-node remove
commands have been deprecated in favor ofpcs cluster node add-guest
andpcs cluster node remove-guest
commands (rhbz#1386512)
- Fixed a bug which under specific conditions caused pcsd to crash on start when running under systemd (ghissue#134)
pcs resource unmanage
now sets the unmanaged flag to primitive resources even if a clone or master/slave resource is specified. Thus the primitive resources will not become managed just by uncloning. This also prevents some discrepancies between disabled monitor operations and the unmanaged flag. (rhbz#1303969)pcs resource unmanage --monitor
now properly disables monitor operations even if a clone or master/slave resource is specified. (rhbz#1303969)--help
option now shows help just for the specified command. Previously the usage for a whole group of commands was shown.- Fixed a crash when
pcs cluster cib-push
is called with an explicit value of the--wait
flag (rhbz#1422667) - Handle pcsd crash when an unusable address is set in
PCSD_BIND_ADDR
(rhbz#1373614) - Removal of a pacemaker remote resource no longer causes the respective remote node to be fenced (rhbz#1390609)
- Newly created clusters are set up to encrypt corosync communication (rhbz#1165821, ghissue#98)
- Resources in location constraints now may be specified by resource name patterns in addition to resource names (rhbz#1362493)
- Proxy settings description in pcsd configuration file (rhbz#1315627)
- Man page for pcsd (rhbz#1378742)
- Pcs now allows to set
trace_ra
andtrace_file
options ofocf:heartbeat
andocf:pacemaker
resources (rhbz#1421702) pcs resource describe
andpcs stonith describe
commands now show all information about the specified agent if the--full
flag is usedpcs resource manage | unmanage
enables respectively disables monitor operations when the--monitor
flag is specified (rhbz#1303969)- Support for shared storage in SBD. Currently, there is very limited support in web UI (rhbz#1413958)
- It is now possible to specify more than one resource in the
pcs resource enable
andpcs resource disable
commands.
- Python 3: pcs no longer spams stderr with error messages when communicating with another node
- Stopping a cluster does not timeout too early and it generally works better even if the cluster is running Virtual IP resources (rhbz#1334429)
pcs booth remove
now works correctly even if the booth resource group is disabled (another fix) (rhbz#1389941)- Fixed Cross-site scripting (XSS) vulnerability in web UI (CVE-2017-2661, rhbz#1434111)
- Pcs no longer allows to create a stonith resource based on an agent whose name contains a colon (rhbz#1415080)
- Pcs command now launches Python interpreter with "sane" options (python -Es) (rhbz#1328882)
- Clufter is now supported on both Python 2 and Python 3 (rhbz#1428350)
- Do not colorize clufter output if saved to a file
- Fencing levels now may be targeted in CLI by a node name pattern or a node attribute in addition to a node name (rhbz#1261116)
pcs cluster cib-push
allows to push a diff obtained internally by comparing CIBs in specified files (rhbz#1404233, rhbz#1419903)- Added flags
--wait
,--disabled
,--group
,--after
,--before
into the commandpcs stonith create
- Added commands
pcs stonith enable
andpcs stonith disable
- Command line option --request-timeout (rhbz#1292858)
- Check whenever proxy is set when unable to connect to a node (rhbz#1315627)
pcs node [un]standby
andpcs node [un]maintenance
is now atomic even if more than one node is specified (rhbz#1315992)- Restarting pcsd initiated from pcs is now a synchronous operation (rhbz#1284404)
- Stopped bundling fonts used in pcsd web UI (ghissue#125)
- In
pcs resource create
flags--master
and--clone
changed to keywordsmaster
andclone
- libcurl is now used for node to node communication
- When upgrading CIB to the latest schema version, check for minimal common version across the cluster (rhbz#1389443)
pcs booth remove
now works correctly even if the booth resource group is disabled (rhbz#1389941)- Adding a node in a CMAN cluster does not cause the new node to be fenced immediately (rhbz#1394846)
- Show proper error message when there is an HTTP communication failure (rhbz#1394273)
- Fixed searching for files to remove in the
/var/lib
directory (ghpull#119, ghpull#120) - Fixed messages when managing services (start, stop, enable, disable...)
- Fixed disabling services on systemd systems when using instances (rhbz#1389501)
- Fixed parsing commandline options (rhbz#1404229)
- Pcs does not exit with a false error message anymore when pcsd-cli.rb outputs to stderr (ghissue#124)
- Pcs now exits with an error when both
--all
and a list of nodes is specified in thepcs cluster start | stop | enable | disable
commands (rhbz#1339355) - built-in help and man page fixes and improvements (rhbz#1347335)
- In
pcs resource create
the flag--clone
no longer steals arguments from the keywordsmeta
andop
(rhbz#1395226) pcs resource create
does not produce invalid cib when group id is already occupied with non-resource element (rhbz#1382004)- Fixed misbehavior of the flag
--master
inpcs resource create
command (rhbz#1378107) - Fixed tacit acceptance of invalid resource operation in
pcs resource create
(rhbz#1398562) - Fixed misplacing metadata for disabling when running
pcs resource create
with flags--clone
and--disabled
(rhbz#1402475) - Fixed incorrect acceptance of the invalid attribute of resource operation in
pcs resource create
(rhbz#1382597) - Fixed validation of options of resource operations in
pcs resource create
(rhbz#1390071) - Fixed silent omission of duplicate options (rhbz#1390066)
- Added more validation for resource agent names (rhbz#1387670)
- Fixed network communication issues in pcsd when a node was specified by an IPv6 address
- Fixed JS error in web UI when empty cluster status is received (rhbz#1396462)
- Fixed sending user group in cookies from Python 3
- Fixed pcsd restart in Python 3
- Fixed parsing XML in Python 3 (caused crashes when reading resource agents metadata) (rhbz#1419639)
- Fixed the recognition of the structure of a resource agent name that contains a systemd instance (rhbz#1419661)
- Ruby 1.8 and 1.9 is no longer supported due to bad libcurl support
- Show daemon status in
pcs status
on non-systemd machines - SBD support for cman clusters (rhbz#1380352)
- Alerts management in pcsd (rhbz#1376480)
- Get all information about resource and stonith agents from pacemaker. Pcs now supports the same set of agents as pacemaker does. (rhbz#1262001, ghissue#81)
pcs resource create
now exits with an error if more than one resource agent matches the specified short agent name instead of randomly selecting one of the agents- Allow to remove multiple alerts and alert recipients at once
- When stopping a cluster with some of the nodes unreachable, stop the cluster completely on all reachable nodes (rhbz#1380372)
- Fixed pcsd crash when rpam rubygem is installed (ghissue#109)
- Fixed occasional crashes / failures when using locale other than en_US.UTF8 (rhbz#1387106)
- Fixed starting and stopping cluster services on systemd machines without
the
service
executable (ghissue#115)
- There is no change log for this and previous releases. We are sorry.
- Take a look at git history if you are interested.