Note
Released 2025-01-16 - Please report issues via github or the ITRS Community Forum
- Update Go to 1.23.4 and update all dependencies
-
tools/geneos- Fix handling of older package directories that have
GAorRAprefixes and sort packages by the numeric part only using semantic versioning rules. - Don't stop if there is no private key in a TLS bundle, it may be supplied in a separate argument
- Do not overwrite existing root and signing certs and keys if they exist when running
geneos tls init - Report if public key is missing or changes in user's
known_hostsfile - Always try to create the user config directory when writing configurations
- Fix handling of older package directories that have
-
gdna- Remove dependency on license token when listing unused plugins
- Use timestamp of detailed report when updating summary report
- Update include file with additional configuration
Note
Released 2024-12-13 - Please report issues via github or the ITRS Community Forum
Tip
This release is dedicated to my best boy Leo, who left us in late November 2024. In his 14 years he wasn't just a wonderful companion but he also helped, with his also now departed brothers, to save the lives of many other cats by donating blood through the RVC Animal Care Trust. For those reading this (and are near to Potters Bar in the UK) who believe their cats or dogs could become blood donors, please see https://www.rvc.ac.uk/small-animal-vet/specialist-referrals/for-pet-owners/pet-blood-donations
-
gdna- Thanks to all the valuable feedback, we have a completely new Monitoring Coverage and Version dashboards. These new dashboards depends on the changes to some reports, so you must also upgrade the
gdnabinary before you can use it. The old dashboard will continue to work with the new binary but we may remove some of the data driving it from reports in future releases. - Add a new report
multiple-os-versions-per-hostidwhich shows all servers that have more than one OS version for associated probes. This is an indication of invalid (duplicated) host IDs.
- Thanks to all the valuable feedback, we have a completely new Monitoring Coverage and Version dashboards. These new dashboards depends on the changes to some reports, so you must also upgrade the
-
pkg/host- Update <golang.org/x/crypto> dependency to mitigate potential issue with
ServerConfig.PublicKeyCallback(CVE-2024-45337)
- Update <golang.org/x/crypto> dependency to mitigate potential issue with
-
tools/geneos- Added support for SSH private key files to the
geneos hostsubsystem - Added a
geneos host unsetcommand to work with the changes require for private key files and more
- Added support for SSH private key files to the
-
integrations/servicenow- Expose
incident-queryconfiguration to allow custom lookups - Some code clean-up and refactoring
- Add example of using an encrypted API key between client and router
- Expose
-
gdna- Fix
server-groupsreport performance by joining on gateways as well as servers in the SQL query - Trim spaces from Gateway names and also update any existing entries to remove leading/trailing spaces. This can happen because even though we trim each incoming CSV field the Gateway name is prefixed
gateway:and can hide a leading space
- Fix
-
tools/geneos- Support Webserver > 7.1.1 byt removing unsupported Java command line option
- More updates to support OS and ARCH in downloads
- Always set
HOSTNAMEenvironment variable in Netprobe so that Collection Agent self-monitoring works without further updates (this was already the case forca3components)
Note
Released 2024-11-14
Please report issues via github or the ITRS Community Forum.
This patch release replaces v1.19.1 which did not fully address the issue of downloading releases of aarch64 architecture.
-
tools/geneos- Fix (work around) downloading of RHEL9 releases for 7.1 and later that could download the newly added aarch64 files.
- Added
sso-agenttotools/geneosso you can now deploy and manage those easier - Updated
ca3unmanaged/standalone Collection Agent component to work with new releases
-
tools/geneos- Added
sso-agentas a component. You can now install and manage SSO Agent instances usinggeneos. When adding a new instancegeneosalso creates anssokeyin a keystore file based on theconf/sso-agent.confsettings. If the instance is created with a TLS certificate and key then these are also stored in the truststore/keystore alongside any certificate validation chain. At the moment the configuration file is treated as read-only, but in time we will add capabilities to make changes using the command line. - As part of the work to add ZIP file support for SSO Agent component releases, we've improved how all releases are unarchived and now files and directories have their modification times set based on the archive file data. Symbolic links only have their modification times set when unarchiving locally.
- Support the import of truststore/keystore files as JCEKS if loading as a JKS fails. Note that all truststore/keystore files are still written as JKS.
- Fixed
ca3starting environment - Changed output of versions in the
geneos pscommand to be easier to read
- Added
-
tools/geneos- A recent change meant that the user's AES keyfile would not be created when running
geneos loginfor the first time, this is fixed - Explicitly disable file descriptor inheritance in started processes
- Show a version for Java bases components based on installed version
- Fix
deploycommands to create the correct Geneos home directory, instead of always ageneos/directory in the working directory
- A recent change meant that the user's AES keyfile would not be created when running
-
gdna- Include gateways that have no other components listed, fixing reports of unused gateway.
Note
This patch release replaces v1.18.1 to add a fix for webserver start-up from the geneos command
Released 2024-10-29
Please report issues via github or the ITRS Community Forum.
-
tools/geneos- Fix webserver starting command for releases after 7.0.4 to account for valid host header configuration, defaults to
.* - Fix webserver command line option ordering
- Fix webserver starting command for releases after 7.0.4 to account for valid host header configuration, defaults to
-
tools/dv2email- Fix example command XML to revert overzealous edit of
::to.
- Fix example command XML to revert overzealous edit of
-
gdna- Restore the
OTHERrow to Gateway and server group reports - Add
dynamicEntitiescolumn togateway-groupsreport - Update Gateway include to publish a schema for the
GDNA Processsampler - Allow for unauthenticated SMTP (when username is empty)
- Restore the
-
pkg/email- Allow for unauthenticated SMTP (when username is empty)
-
gdna- This is the third public release of GDNA and we've added new features and made changes based on your feedback. The full details are in the documentation, but the highlights are:- Customise Level 1, Level 1 Optional and Level 2 plugin lists, including being able to require multiple instances of a plugin.
- Added a new filtering feature to include, exclude and group by categories such as Gateways, Servers etc. See FILTERS.md for more.
-
- The reporting code from
gdnahas been pulled out into it's own package so that we can reuse this for other projects later. The API is not yet final and there are missing features (such as severity colouring for HTML tables, likedv2emailcan do) but it should settle in the next couple of releases. - The XLSX reporter can include headlines in each sheet, their inclusion and direction can be controlled by an option
- The reporting code from
-
Updated to use Go 1.23.2
-
gdna- Lists of plugins, such as in missing columns and lists per server and probe, now show how many instances after the plugin name, if there is more than one
- Command line sub-commands added to manage the filters and a growing set of right-click Commands added to the shipped include file
- The original support for external files for more limited filtering has been deprecated, so if you use these you will have to import the data using the new command line sub-commands
- When running "split" reports (the Gateway Overview and Details) the program now removes Dataviews that are no longer in the set of splits
- New reports have been added to list more actionable information about your estate and some existing reports have been enhanced
- Dataview Groups have been reworked from the ground up to offer a more logical view of
gdnadata - Every report now have a
reportNameheadline to allow for better right-click command automation - Some YAML options have moved to allow for more logical grouping, so if you use
enable-for-datavieworenable-for-xlsxto control which reports are autogenerated then you will have to change these to the new layout, see the docs for more - Split the growing README.md file into a number of parts
- Added sub-commands to
gdna listso nowgdna list reportsis needed to see what you can run. Also added the Dataview Group to the output - Other "under the hood" changes
- In the docker image the
gdna.yamlfile is now located in thegeneosuser's home are and not root directory - Allow
~/as a prefix for thedb.fileconfig parameter, which is in turn pulled intodb.dsn - Update default
db.dsnto include?cache=sharedto avoid common locking issues
- In the docker image the
-
tools/geneosgeneos package installwill now limit installed components to those already existing unless given either a specific type or the--allflag. This is intended to make downloads quicker as most users will only want to download component packages for instances that already exist.
-
tools/geneos- Set the default local directory for downloaded packages when using
geneos package install -Lwithout a file or directory path - Restore installs from Nexus for internal users
- Fix
geneos package deleteto stop it removing the latest of each component package. Other fixes togeneos package deleteinclude not removing packages which are only used by instances as thepkgtype(e.g.minimal/netprobe) and the command now also ignores text prefixes on version directories likeGA - Fix handling of wildcards that match nothing in ParseArgs()
- Fix regexp pattern that extracts release information to allow for old releases that used a
.instead of-between version and architecture
- Set the default local directory for downloaded packages when using
-
tools/geneos- Add an
insecureportparameter in Gateway instance template to support explicit insecure port when secure port is enabled by certificates. To use this you must update thegateway-instance.setup.xml.gotmpleither manually or by usinggeneos init templates - Related to the above, swap the main and alias names for
geneos init template(s)- both will work.
- Add an
-
gdna- Changed the text value in the
l3missingcolumn of various view fromyestomissingto avoid ambiguity after user feedback. - Changed Dataview group name for optional gateway reports from
Coverage by Gatewayto simplyGateways - Add a new
logicfield to conditional-format tests to control how multiple column tests are handled; Default to the previous behaviour of "AND" but can be "OR" (or "all" / "any" respectively) - Add a
geneos.dataview-create-delayduration to allow smoothing of dataview creation when creating many hundreds of dataviews like for split reports. Only applies when a dataview is created, not during updates to existing ones - Add a "Version Summary" dashboard using new Geneos 7 data
- Revisit headline names and some column names for consistency and clarity
- Add a dashboard slide show to the docker image web server configuration
- Changed the text value in the
-
tools/san-config- Add support for number of gateway sets to push to each probe, default 1 to maintain existing behaviour
- Treat gateway pairs as a single gateway in logging and counting
- Connection files can be served without a standby gateway port
- Use default ports when gateways in the configuration do not supply them
-
integrations/servicenow- Add extra control over user name field with
incident-userrouter parameters - Add a
traceparameters to output all HTTP request and response data to stderr, for diagnostics - Clean-up some old code
- Add extra control over user name field with
-
tools/geneos- Fix
copyandmovehandling of source or destination in the form of@HOSTby updating command annotation and related changes ininstance.Match()andparseargs(). Before this fix, and after theparseargs()review,geneos copy gw\* @remotewould not work correctly, making the creation of standby gateway sets much harder
- Fix
-
gdna- Fix filtering of plugins, samplers and dynamic entities for multi-gateway reports, now numbers add up.
- Fix table used for building
serversreporting tables - Fix spelling of
latestcolumns in thesourcesreport - Fixes to some edge cases in probe and sampler counting
- When an OS or Version is an empty string, convert it to NULL for later reporting as Unknown
-
tools/geneos- Add a
minimalNetprobe flavour that can be added either as it's own component type or, more commonly, as a flavour of a normal Netprobe, e.g.geneos add netprobe minimal:probeName- this extends the way you install a Fix Analyser probe as a SAN, e.g.geneos add san fa2:myFixSAN - Add a
use-chainparameter for all instances which defaults totrue. Set this tofalseusinggeneos set ... use-chain=falseto disable certificate validation using a configure chain file.
- Add a
-
gdna- Add support for GA7.0.0 updates to
licdreports and additional details from corresponding Gateways. This includes OS and component version information as well as enriched data for dynamic entities. - Add schema updates for the new table columns. Rollback should work - untested at time of writing - as no existing columns have changes, just new ones added.
- Add extra reports using the above data to a
Monitored Estategroups, movingSourcesto the same group. - Add new headlines for Gateway summary and detail Dataview and reports to show host, port and version - when available.
- Add new columns to
Missing Coverageand Gateway summary and details to expose new data when available and rename existing columns (not used in dashboards) to better align with each other. - Update
SourcesDataview and report to report a status ofSTALEwhen a file is invalid. A remote source is always either up-to-date or inaccessible, which is a different status.
- Add support for GA7.0.0 updates to
-
tools/san-config- Initial commit of a SAN remote configuration file server that allows dynamic building of SAN XML files using an YAML based inventory as well as autodetection of live Gateways from a preconfigured list.
- This tool is not yet in the main build as further changes and documentation are required for it to be more useful.
-
tools/geneos-
geneos packagesubsystem gets a wide review and a number of changes and fixes:uninstall- change-fto-Ffor short form--forcefor consistencyupdateno longer supports the--installflaginstall- local files now ignore the--versionflag for file (non-directory) paths. For systems with a platform type (el8/el9) only install that platform type of non-platform specific archives. This allows components like web dashboard servers, which have no platform specific releases, to be installed.install- many other changes around the handling of local files to improve what gets installed- Fix instance iteration so that only affected instances are updated and so on.
-
Fix
migrateandsetandconfig setto actually work with changes to parseargs() function. -
When adding components with key file support use the
${config:home}value to pin key-file to working directories. Also, when saving a component configuration, such as duringmoveorcopyupdate the key-file and previous key-file paths to use${config:home}when source path matches the instance home directory.
-
-
gdna- Fix misuse of source tables when building active gateway table (no actual data change as the servers table has the same data)
-
pkg/config- Update
Path()to better reflect the likely sources used byLoad(). Passconfig.MustExist()as an option toconfig.Path()to get a result based on actual files rather than the likely file to be used.
- Update
-
integrations/servicenow- Fix loading of configuration file in use of
config.Load()options (explicitly use YAML)
- Fix loading of configuration file in use of
-
gdna- Update Monitoring Coverage dashboard to remove references to
Demo Gatewayand improve visibility of per-plugin vertical bars.
- Update Monitoring Coverage dashboard to remove references to
-
gdna- Updates to Dashboards to present more focused information to users
- Improve documentation, add block diagrams and update screenshots
- Added a
gdna versioncommand, when combined with--debugwill report dependencies used during build - Move to using
github.com/mattn/go-sqlite3instead of pure Gomodernc.org/sqlite
-
Build
- Use Go 1.22.5
-
gdna- Fix some SQL queries used in temporary table construction to give more accurate numbers for servers with multiple probes
- Fix dashboard XPaths to remove unnecessary Gateway and Managed Entity names
-
tools/geneos- Fix
geneos package install(andgeneos initetc.) to have better support for local installation sources and to distinguish between el8/el9 platform specific archives over non-platform specific ones
- Fix
-
Build
- Fix Makefile/Dockerfile interdependencies and speed up documentation builds by downloading Chrome outside of underlying puppeteer installation
-
tools/geneos- Fix matching of names, which because we didn't use the return value of
slices.Compact()meant an extra "all" was effectively added to all commands - Remove non-numeric prefixes of directory version naming to all "ra6.9.0" etc
- Fix matching of names, which because we didn't use the return value of
-
gdna- Fix counts for plugins over servers with multiple probes
- Update docs to fix references to
geneoswhich are meant to begdna
-
tools/geneos- Restore validity check regexp to allow dashes and underscored in remote host names
- Merge parsed params back into args to fix
geneos host addwith an ssh URL
-
gdna- Fix
sourcesHTTP schema name, instead of using HTTPS - Remove
sourcesentries when configuration changes or files are removed - Remove unused plugins from
expectRowsin include file - Fix plugin grouping for CA and GW samplers and resolve numeric inconsistencies in queries
- Update bundled dashboards to include
Unused Gatewaysand to add missing plugins
- Fix
-
tools/geneos- Fix handling of
-el8and-el9package installs that were broken when updating for new Netprobe package file names - Fix matching of instances to properly account for wildcards and non existing hosts
- Fix handling of
-
gdna- Keep
gateways_alltable, not as a potential temporary one. Fixes sources report when sources go stale amongst other things - Fix logic in
sourcesreport to evaluate and update status correctly whenvalidchanges
- Keep
-
gdna- Add an
unused-gatewaysreport - Add headlines to
gateway-coverageto make clear how many unused gateways exist
- Add an
Replaced by v1.15.3 to fix a one character typo in a regexp.
- Fix handling of new Netprobe release archive names in 6.9.0
-
tools/geneos- add support for a
minimalcomponent type, which is a Netprobe without Collection Agent geneos init demonow supports the--minimal/-Mflag to use the minimal Netprobe in the deployment- the global configuration file (typically
${HOME}/.config/geneos/geneos.json) now only saves chasnges to defaults. This allows defaults to be updated in the code without needing manual changes. Note that you may need to edit the file to clear out saved parameters that were the default but have the defaults have now changed. - changes
geneos set x+="y"behaviour such that a space is only prefixed to the new option if it starts with a dash (-). This allows paths and other parameters that are not space separated to work - the
geneos init sanandgeneos init floatingcommands have been deprecated in favour ofgeneos deploy sanandgeneos deploy floating, respectively - add the start of a
geneos config exportcommand that archives instances either as a back-up or for re-import later, once the matchinggeneos config importcommand is added. This is work-in-progress.
- add support for a
-
gdna- Update to Geneos 6.9.0 and use the
minimalNetprobe to reduce image size - Add a
gdna stopcomma\nd, to stop background GDNA processes. An initially emptygdna restartcommand has been added for later completion.
- Update to Geneos 6.9.0 and use the
-
General
- Centos 7 has gone EOL so no test images can be built, remove them
🎁 Introducing GDNA 🎈
GDNA (Geneos Dynamic Netprobe Analysis) gives an overview of the levels of Geneos monitoring coverage in your I.T. estate and prompts action to ensure that there are no gaps in the visibility of the health of your applications and systems. It does this through analysing Geneos license allocation data and applying heuristics to plugin usage information to present visual indications of coverage levels through two dashboards.
For many users installing GDNA is as easy as starting up a docker container after configuring the data sources.
See the
gdnaREADME for more details.
-
General / Miscellaneous
- Move to Apache 2 license, from MIT, for clarity and conforming to ITRS company guidance
- Move cron Centos 8/9 test images to UBI 8/9 respectively
- Change all warning triangles in docs and comments ("
⚠️ ") to to more friendly bulb ("💡")
-
tools/geneos- Refactor internal routines to iterate over instances. Reduces the number of similar functions and inter-dependencies.
- Refactor other function names for clarity
-
pkg/config- Add a
UseKeyFile()option to expand functions to allow overriding the key file to use
- Add a
-
gdna- Fix broken modifiers that result in no data visibility with updated sampler name
- While fixing above also fix references to old
t1column to use100to indicate complete coverage - Fix logfile selection from command line
-
tools/geneos- Fix the incorrect selection of archive directories in
package installwhen using the-Loption - Fix the
--nosaveoption by resetting error in return to nil, as it was a "valid" failure
- Fix the incorrect selection of archive directories in
-
pkg/config- Fix use of "internal defaults" in Load() when using the SetConfigFile() option
-
Documentation
- Fix emoji in generated PDF files in Dockerfile by adding an appropriate font
- Fix missing screenshots in markdown files exported to releases by merging all screenshots directories and shipping that too. PDFs not affected.
-
Update Go toolchain to use 1.22.4
-
tools/geneos- Add options to
tls createto specify destination directory, outputting certificate bundles and setting the expiry period in days. Also, do not initialise the TLS subsystem if it's not found unless the--forceflag is used. - Hide
--nameoption indeploy, repurpose short-form-nfor new--nosaveoption - Rename
logsoption--nostandardto--no-stdout(with alias) for consistency
- Add options to
-
cordialpackage- Only log file and function if logging at
Debuglevel or greater - Split logging methods into their own file, add options to
LogInit()to specify filename and/orlunberjacksettings. Log filenames can also include~/prefix for home directory.
- Only log file and function if logging at
-
tools/gateway-reporter- Add an optional XLSX password in
outputconfig section
- Add an optional XLSX password in
-
tools/geneos- Fix download base name for Netprobes to new value.
- Fix
deployimporting of keyfiles (only import if given on command line) package installandpackage update- Fix the handling of package metadata (e.g.+el8) suffixes to that they are treated the same as a package without a metadata suffix - and the right one is selected for the system being installed
-
pkg/config- Better recovery on failing to find the user's config directory, return an error instead of panic-ing
Released 2024-05-23
Please report issues via github or the ITRS Community Forum.
💡️ This release replaces v1.13.0 and v1.13.1 and addresses two issues found after release, one for dv2email not authenticating with all SMTP servers correctly and changes to geneos package uninstall to protect against unintended updates
💡️ In addition to the breaking changes below please note that some documentation is still out-of-date, and the details in this changelog are more likely to be up-to-date.
💡️ There are a significant number of BREAKING CHANGES in this release both for the geneos program, specifically around TLS and AES command line options and behaviour, but also for some of the pkg APIs.
-
tools/geneos-
tlsSubsystemAfter reviewing the usability of the TLS subsystem commands to manage secure connections with users, we've re-worked some of the functionality and added a new
tls exportcommand. The command line flags for thetls import,deployandinitcommand have been revisited and an attempt been made to align them more closely. Now, the following flags have common meanings:--tls/-T- enable TLS secured connections. This applies to all theinitcommands and the thedeploycommand. Was previously--secure/-Cindeployand--makecerts/-Cininitcommands. Both long forms are aliased to the new flag.--signing-bundle/-C- specifies the source of signing certificate and private key and optional verification chain. This is new todeployand replaces some of the functionality of--importcertforinitcommands where the short form has changed case for consistency.--instance-bundle/-c- specifies the source of an instance certificate and private key and optional verification chain. This is new todeployand replaces the rest of the functionality of--importcertforinitcommands.
Other flags have been deprecated, such as
--importkey/-k, whose functionality has been merged with the above.The new
tls exportcommand has been added to help extract those parts of the local TLS configuration signing certificate and private key that you need to push to a remote server to be able to create and manage certificates with a common trust relationship. Use the output oftls exportwith the other commands above and their--signing-bundleflags to do this.What this means for you is that if you need to manage Geneos instances across multiple servers (remote probes, standby Gateways etc.) but cannot use the existing SSH
hostfeatures, then you can more easily keep the installation in sync for TLS certificates. Typical usage may be like this:On your main server run this, and copy the output to your clipboard (or output to a file with the
--output/-ooption):$ geneos tls export --- BEGIN CERTIFICATE --- ...Then, log in to the new remote system and
$ geneos deploy san -u downloaduser@example.com -C - [follow-prompts] Paste PEM formatted certificate bundle: [CTRL-V ENTER CTRL-D]
Now your new Self-Announcing Netprobe will have a certificate created signed by the signing certificate and key you have exported on the central server.
-
aesSubsystemThe AES subsystem was inconsistent and the functionality incomplete and, in reality, a mess. In this release we have reviewed the functionality of all of the AES commands. The support for AES keyfile creation, importing and management on remote hosts has been improved, but some issues may remain.
The
aes ls,aes encode,aes decodeandaes passwordcommands are largely the same while their internal implementations have been cleand-up. The other commands -aes new,aes importandaes sethave all been rethought and their functionality and command line flags have changed. Please review the help text or documentation for full details. They should be more consistent and useful now, but as always please let us know if anything doesn't work as you would expect. -
deployAs mentioned in the
tlssubsystem changes above, the command lin flags for thedeploycommand have changed, especially the-Cand-chave been swapped around for consistency. Please note this if you have previously useddeployto create TLS protected Geneos deployments. The short form for--overrideis now-O. -
packageandinitSubsystemsThe commands that support an
--overrideflag have had the short form changed to-Oto free the-Tindeployto be hort form for--tls.
-
-
pkg/configThe
configpackage
-
Go dependency updated to 1.22.3
-
tools/geneosIn addition to the breaking changes, there have been a number of added features and functional improvements:
-
package uninstallnow has an--update/-Uflag to be explcit that the user wants to update instances which use older releases. Without this flag no release will be removed if it is referenced by an instance. -
webserverinstances will now automatically manage TLS though a customcacertsfile and a local keystore andsecurity.propertiesfile changes. This allows for both client and server TLS with trust chains. The instance chain file is added to the Javacacertsto add trust of other Geneos components, such as Gateways and SSO Agent while instance certificate and private key can be "real" PKI ones to offer a trusted TLS web interface.
-
-
cordial- The top-level
cordialpackage provides convenience functions, likeLogInit(). This has been updated to not log source file and function unless the global log level if debug or trace.
- The top-level
-
Use a new SMTP package - <github.com/wneessen/go-mail> - Swap out the old SMTP email package used to a newer, actively maintained one. The changes should not be user visible. The affected components are
pkg/emailandtools/dv2mail. There have been no changes tolibraries/libemailas the changes required have not yet been tested and will be completed in a later release.
Many of the changes above were prompted while tracking down and fixing issues around existing APIs and features in geneos.
-
tools/dv2email-
Fix the default HTML template to use the correct, new names for data identifying columns and rows.
-
Fix failure to authenticate to some SMTP servers.
-
-
tools/geneos-
Fix support for legacy
.rcfiles, which was broken in a previous release. -
Fix
tls ls -ato show root and signing certificates even without instance certificates created. -
Fix the handling of file paths on Windows with the
geneos.exebinary.
-
-
pkg/config-
Fix the handling of file paths on Windows.
-
Use the newer
AbbreviateHome/ExpandHome/ExpandHomeBytesfunctions to remove common code.
-
Released 2024-04-18
Please report issues via github or the ITRS Community Forum.
-
General
- Update Go used to 1.22.2
-
tools/geneos- Add support for Collection Agent logs to
logcommand - #195 - Add append capability to set command
- Add support for Collection Agent logs to
-
pkg/rest- Add a
SetupRequestfunction to allow for custom HTTP client settings
- Add a
-
pkg/config- Fix a deadlock in
UnmarshalKeywrapper - Add a
Bytesmethod for encryption - Add
StopOnInternalDefaultsErrors()option to bail when loading bad internal defaults
- Fix a deadlock in
-
libraries/libemail- Add a (deliberately undocumented)
_SMTP_TLS_INSECUREenvironment variable to allow for edge cases in TLS testing - Build using Go DNS resolver and user lookup packages
- Add a (deliberately undocumented)
-
tools/geneos- Fix
tls importcommand and update docs - Deal with missing key files as errors in
aessub-system
- Fix
-
pkg/host- Allow no username for SSH config, which then defaults to the user running the command
- Return an error from IsAvailable() on failure, and use this to send Dial() errors up the stack
- Log a debug level message if Dial fails
-
cordial(top level package)- Add support in
LogInitfor-and/dev/null/NULas log destinations - STDOUT and discard, respectively
- Add support in
Released 2024-01-15
Please report issues via github or the ITRS Community Forum.
-
tools/files2dvNewA new program that can be run as a Toolkit (soon as an API sampler) to scan files and directories and create one row per file. The contents of files can be checked and extracted into columns - the difference between the standard Geneos FKM and Statetracker plugins and using
files2dvis that the whole file is scanned until each column is either filled in or no matches found, in the latter case a failure value can also be substituted. This is not a line-by-line scanner, like FKM.If no contents are checked then just the matching file's metadata is used.
-
tools/gateway-reportergateway-reporterhas had a number of issues fixed but also gets a newcsvdiroutput format, which can be used to create a "live" directory of CSV files and an optional Gateway include file to read back reports into a Gateway-of-Gateways. -
pkg/geneosAdded an
ExpandFileDates()function to emulate Geneos expansion of file paths including<today ...>placeholders. Currently onlytodayis supported. -
pkg/configChange
LookupTable()options to take variadic args and deprecateLookupTables()Map dashes (
-) to underscored (_) when using environment variable lookups, so configuration items likefile-namecan be references asFILE_NAMEin an env var.
-
pkg/geneosFixes around the handling of merged output files (where the
var-prefix is dropped by the Gateway on some XML) so thetgateway-reporterworks again. -
tools/geneosFix
fa2start-up to include-securewhen in secure mode.Better handling of remote hosts and display of a Flags column to show if hosts have been "hidden" (disabled). While documentation needs to be updated, the difference between hiding a host and disabling it (which is not yet possible) is that a hidden host can still be referenced explicitly on the command line, but is not included in any "all" lookups, such as
geneos start
Released 2023-12-07
Please report issues via github or the ITRS Community Forum.
-
pkg/commands- add custom UnmarshalJSON to Dataview type to record the received order of headlines, rows and columns
-
tools/dv2email- use dataview ordering (above) to render dataviews as seen from the Gateway, matching the normal Active Console
- add support to differentiate between unset and empty
--typeon command line
-
tools/geneos- add support for secure arguments for fileagent releases 6.6 and higher
Released 2023-12-05
Please report issues via github or the ITRS Community Forum.
-
tools/geneos-
Fix
ac2start-up on Linux by passing onDISPLAYandXAUTHORITYenvs to process, when they are defined -
Output ISO8601 date/times in
geneos tls lsoutputs, not Go default format
-
Released 2023-11-23
Please report issues via github or the ITRS Community Forum.
-
Major updates to
dv2emaildv2emailhas has a major work-over. In addition to fixing numerous bugs we've also added the ability to send dataviews as XLSX or Text Table attachments, splitting multiple Dataviews into either individual attachments or per-Entity. Theexportsub-command allows to you save Dataviews as files in XLSX, HTML or Text Table formats. Take a look and let us know what you think. -
New
gateway-reporterA new tool to build monitoring coverage reports from static Gateway configurations. This is a new tool and support is limited to a core set of plugins and the data reported for each. The tool does not interrogate running Gateways and so does not attempt to resolve dynamic parts of the configuration. Output is in XLSX, CSV and JSON formats.
This is a new work in progress based on an internal project for a client and we welcome suggestions and contributions. Please use the links above to send us feedback!
-
New example
holidaysAnother new tool, but very early in development. This uses the Python holiday module (which seems the only reliable, free source of global holiday data) to generate a list of holidays and their names in Go. It has to run in a docker container as the
cpy3Go package only supports Python 3.7. It may prove simpler just to write the whole tool in Python and avoid Go, but the local skills are sadly lacking at the moment. Also, we have Go based tools inpkg/geneosto build Gateway configuration XML in a nice, clean way.The aim is to be able to create Gateway include files with predefined Active Times of holidays that can be incorporated into more general monitoring.
Again, suggestions and, more importantly, contributions welcomed.
-
geneoshas had a number of enhancements (and bug fixes, of course).The
geneos aes encodecommand can now also create "app key" files for use with Gateway Hub and Obcerv Centralised Configs. To help with that the logic around how the Gateway command line is constructed has also had a refresh, with new options for the Centralised Config options. See the documentation forencodeand thegatewayfor more information.
-
pkg/- Removal of all logging in packages. This was left over from early development and is considered bad practice.
-
tools/geneos-
Fix a mistake in handling remote hosts in
geneos show -Vfor validation runs. -
Fix
geneos homematching of instances when the same name existed on local and remote hosts. -
Fix issues in
geneos packagesub-system commands. They should now work more consistently and do what you expect.
-
Released 2023-11-03
Please report issues via github or the ITRS Community Forum.
-
pkg/hosts- disable sftp concurrent reads as this seems to mess with the file offset after io.Copy() and causesgeneos logsto do strange things with remote log files -
tools/geneos-
Fix a number of issues with
geneos logs, including the results of the above but also how log file references are stored so that when you are tailing the same named instance on two hosts they get mixed up. -
Update
aescommands to be less error prone, changeimportto not automatically update key files in instances, but require a new--updateflag. Update docs.
-
Released 2023-11-02
Please report issues via github or the ITRS Community Forum.
-
tools/geneos- Fix duplication of non-host qualified names introduced in last fixes - a string list was re-used instead of being locally allocated inside blocks. -
pkg/config- In Sub() copy the pointer to the mutex from the parent so that locks apply to the whole config object. Fixes concurrent access panic when methods are called on both the parent and the new sub-config. While here, also copy the other config fields, like delimiter.
Released 2023-10-31
Please report issues via github or the ITRS Community Forum.
💡️ The previous patch version was removed after finding the fix for wildcards was only partial. This second patch release addresses that issue.
-
tools/geneos- The recently introduced wildcarding for instance names was causing non-matching instance names to be evaluated all "all", so
geneos stop testwould stop all instances. Fix this by checking the list of names returned from the pattern match and if empty assume the input is not a pattern and leave it alone. - The fix to
pkg/hostbelow tries to ensure that running multiple sessions to remote hosts works more reliably, especially those where commands take some time to return, like forstart
- The recently introduced wildcarding for instance names was causing non-matching instance names to be evaluated all "all", so
-
pkg/process- Fix Daemon() for Windows by adding aDETACHED_PROCESSflag to new proc attributes. -
pkg/config- Protect global map access with a mutex in
expandoptions.go - Make the viper mutex a plain one, not RWLock. Reorder calls to Unlock to cover decode()
- Protect global map access with a mutex in
-
pkh/host- Allow for remote SSH session limits, retry NewSession() up to 10 times with a 250ms delay. This limit is in the remote server, so cannot be overridden.
Released 2023-10-25
Please report issues via github or the ITRS Community Forum.
-
pkg/configThe
Sub()methods will now return an empty Config struct and not nil if the key is not found. This is a divergence from viper.The non-global
GetSliceStringMapStringmethod returned values from the global config object. Found while implementing changes to noe use embedded viper, see below. -
pkg/geneos/netprobeUpdates to the structs to produce valid XML when rendered as XML through the Go xml package.
-
tools/geneos-
Do not automatically try to
rebuildcomponent config files if thesetupparameters is to a remote configuration. -
Fix the
show -scommand to read instance configurations from their potentially remote host and not localhost. -
Add a 250ms delay after starting an instance to allow for the process to fully start and update OS args so that the
GetPIDcall works more often and can report the successful start-up.
-
-
pkg/configPotential API Changes - to allow safer concurrent access to the underlying viper configuration objects the original embedded viper instance in the Config struct has been promoted to be named as
Viper. This removes access to embedded methods and the intermediate methods have been updated to use a RWMutex around every call to viper. This however means that not all viper methods are transparently available and new shims have been added for the most common ones found. If dependent code now fails to compile because of missing methods they will need to be added toconfig.goalong with the appropriate mutex wrappers.Added a
WatchConfig()option to enable auto-reloading final config files found duringLoad(). Note thatWatchConfigis not concurrency safe. This may change if we implement our own callback. -
tools/geneos-
Add "glob" style wildcard support for instance names (and names only, not remote hosts) to most command. This should always be used with quoting to avoid shell expansion. This allows commands line
geneos start gateway 'LDN*'and so on. Also add support tomoveandcopyto act on multiple wildcarded sources as long as the destination is a@HOST. -
Some instance configuration parameters are no tested for the instance
homepath and this is replaced with${config:home}so that moves and copies have paths auto updated. This include certificates, keys and set-up files. -
Lower the auto-generated
instance.setup.xmlGateway include file priority value so it is loaded before other typical includes. -
For Gateway and SAN change default parameters
gatewaynameandsannamerespectively to usenamein anGetStringexpansion. This makes the parameters auto-update if the instance name changes (for example usingmoveorcopy) until and unless the user sets a fixed name. -
Remove the
-setup-intervalfrom SAN command lines (which was using the default anyway) to allow it to be overridden in theoptionsparameter.
-
Released 2023-10-10
Please report issues via github or the ITRS Community Forum.
tools/dv2email- Fix environment handling, which was broken in an earlier update to the
configpackage - Add command line args for use from a Geneos Command
- Update Dataview Row handling
- Fix HTML template for multiple Dataviews
- Update docs
- Fix environment handling, which was broken in an earlier update to the
pkg/config- Add a
SetConfigReader()option to Load to be able to load configuration from an io.Reader. Untested, work in progress for a project.
- Add a
Released 2023-10-06
Please report issues via github or the ITRS Community Forum.
- The release build process has been reworked to use Debian Bullseye images to maximise compatibility for shared libraries and also to build static binaries cleanly. A change in the Go toolchain at some point has made the build of the dynamically linked centos7 binary of
geneosnot work. This has now been removed while investigations into how to do this properly continue. This means that for users who have network directories for users there will be errors looking up users forlsandpscommands, at minimum. tools/geneos- Use
path.IsAbs()and notfilepath.IsAbs()so that constructing paths on a Windows host works for remote Linux systems. Fixes process start from Windows to Linux. - Allow deletion of protected instances with the
--force/-Fflags, as intended originally - When creating instances check all listening ports, not just those reserved in instance configurations
- More fixes to package handling around component types with parent types
- Change TLS cert verification to validation and document better
- Add chain file path to
geneos tls ls -loutput
- Use
pkg/geneos- Move Netprobe XML structs to their own package
pkg/geneos/netprobe
- Move Netprobe XML structs to their own package
Released 2023-09-01
Please report issues via github or the ITRS Community Forum.
tools/geneosunsetshould not present a warning if special parameters are passed but no actions performed, e.g. removing a non-existing environment variable- #181 - now build on MacOS, primarily for remote admin. Not fully tested
- #182 - a slew of issues around the order of actions during package install, uninstall and update fixed
Released 2023-08-16
Please report issues via github or the ITRS Community Forum.
This version changes the way geneos tls import works to add support for the import of external "real" certificates into your Geneos environment. You can now supply a PEM formatted certificate and key with an options verification chain and add these to existing instances.
Key files are now enabled for use by default for all new Gateway instances. Key files have been automatically created for some time now, but not automatically enabled in the starting environment of the Gateway.
-
-
Enable the use of external key-files for all new Gateways running on version GA5.14 and above. Existing Gateways will not be affected as the default is
usekeyfile=false. If you do not want to use an external key-file setusekeyfile=falsebefore starting for the first time. If a Gateway has been started with or without a keyfile and created a cache directory then you must follow the instructions in the documentation, https://docs.itrsgroup.com/docs/geneos/current/Gateway_Reference_Guide/gateway_secure_passwords.htm#How_to_change_the_key_file_of_your_Gateway, otherwise your Gateway will not start-up. -
New options to the
start,restartandcommandsub-commands allow you to add one-off command line arguments and environment variables to an instance. This is useful, for example, to pass a-skip-cacheargument to a Gateway. -
Extensive rework to the internal handling of loops-over-instances to pass-back an
instance.Responsestruct and handle output at the caller. This is preparation for work on non-CLI interfaces (think: REST API and web). This may break some output formatting, please report via github issues. -
tls importhas changed to support the import of instance certificate, signing certs and chains in a more organised way. It is unlikely anyone was using the previous incarnation which was highly limited but just in case, this is a breaking change to the syntax and functionality oftls import.
-
-
- A new API for inbound data to Geneos. This package is not yet ready for real-world use.
-
- #176 fix support for Windows paths in
${enc:...}expansion formats
- #176 fix support for Windows paths in
-
-
A fix for a long time bug in an internal routine that checked reserved names. This was found during the refactoring of code above. Oddly this doesn't appear to have been noticed, not sure why.
-
Fix closing of open file descriptors when starting a local instance. This needed cmd.Extrafiles slice having empty nils added through the the largest FD.
-
Fix merging of aliases during instance config load.
-
Released 2023-07-28
Please report issues via github or the ITRS Community Forum.
pkg/gwhub,pkg/icp,pkg/streamsandpkg/geneoshave been updated to match real APIs and to add access to REST API streams
-
#172 - viper doesn't do the right thing with overridden values in maps containing defaults. This would affect GetStringMap*() callers, and we also now have our own UnmarshalKey() function
-
pkg/configandtools/geneos: Fix handling of command line plaintext passwords (those not prompted for). When passed a pointer to a method you have to set the destination of the pointer, not the ephemeral pointer itself -
tools/geneoswould not correctly initialise web server directories after changes to import earlier in v1.7. This is now fixed along with the removal of a confusing treatment of "~/" in an import path not meaning the user's home directory
Released 2023-07-25
Please report issues via github or the ITRS Community Forum.
pkg/gwhub&pkg/icp- Updates for ongoing project
-
#167 - Only load template files with a
.gotmplextension. -
#169 - If the file being imported is the same as the destination, skip the copy.
-
tools/geneos- Fix installation of packages from local sources with or without component on command line
Released 2023-07-11
Please report issues via github or the ITRS Community Forum.
-
tools/geneos- Optimisation and parallel execution. All operations on Geneos instances are now run in parallel which has resulted in significant improvements in responsiveness and has reduced delays waiting for things to happen on larger installations and remote hosts. While extensive testing has taken place to ensure that the underlying functionality is not affected, there may still be issues in some cases - please report them as soon as you can! -
Add support for TLS key type selection, defaulting to ECDH (see
geneos help tls init) -
Split
helpand-hoptions -helpnow gives the long description and usage while--help/-honly gives short description plus usage -
pkg/geneosupdates to XML parsing structures, fix regex handling -
pkg/gwhubupdates for better API support (work in progress) -
pkg/configupdates, with some API changes, to better supporttools/geneosconfiguration handling and other refactoring and update ExpandString option NoDecode() -
Use
upxfor compression of binaries during releases build - saves about 2/3rd space -
Make consistent the handling of TLS certs and keys internally
-
geneos pswill show the actual version of each instance running, in case the base symlink has been updated and the process not restarted -
Quite a bit of redecorating inside
tools/geneosinternal packages to make things clearer (refactoring, merge and split of functions etc.) -
tools/geneos- Initial support for "remote only" working; i.e. if GENEOS_HOME is not set but there are remotes then try to "do stuff". This will break if you perform a local operation such asaddas the root then is the current directory. Further work required, but getting Windows support working again is on the way. -
tools/geneos- Add a basic--installoption topackage updateto allow checking of package that match the ones being updated and download them if found.
-
#156 - fix progressbar newline issue
-
#155 - refactor instance home directory handling (mostly internal)
-
#153 - fix local install of only components available
-
tools/geneos- fix order of columns in plaingeneos ls -
#38 - fix update stop/start as well as a number of related issues in
package installand the handling offa2packages -
#152 - call Rebuild() on every instance config save - then instance.setup.xml will stay in sync with config
-
#150 - document
deploybehaviour when versions clash
- #165 - restarting while updating SANs is not working
Released 2023-06-28
Please report issues via github or the ITRS Community Forum.
-
#145 - Wrap
geneos tls listJSON output in an array correctly -
tools/geneos- Package version handling was broken in some cases, especially for components with 'parent' types
-
tools/geneos- Add a progress bar for downloads when running interactively. Make checking if running interactively consistent -
tools/geneos- Addpackage install -Dto download packages without unpacking them -
tools/geneos- Refactor internal variable names in subsystem packages to shrink very long names -
pkg/geneos- Various updates to plugins and other structures to support an ongoing project
Released 2023-06-23
Please report issues via github or the ITRS Community Forum.
-
#146 - Entering empty passwords could cause pointer panics
-
#148 - Fallback to environment vars when user.Current() fails because user is not in local passwd file with static binary.
Released 2023-06-22
Please report issues via github or the ITRS Community Forum.
Note: v1.6.3 was removed, and v.1.6.4 releases to address some last minute issues.
-
tools/geneos- Add an initialhiddenflag to hosts, so they don't participate in wildcarded operations. -
tools/geneos- Add new--validateoption togeneos showto run a validation and output results as JSON. -
pkg/geneos- Updates for further parsing of config files, fix the treatment ofgeneos.Valuetype. -
pkg/config- Add aconfig.UseEnvs()option toNew()andLoad()to trigger viperAutomaticEnv()and use prefixes. -
Convert all packages and programs to use
*config.Plaintextand notconfig.Plaintext.
-
Fix remote host optional encoded password handling
-
#142 - Fix expansion of non-encoded config strings in
showand other places -
#140 - Fix generation of 'secure' args for command start-up
-
#138 - Fix autostart behaviour for
geneos restart -
#139 - Show running AC2 instances
-
#134 - Update some
geneoscommands that need either flags or args set to just output usage otherwise. -
#133 - Check restart logic and fix for when instance is already stopped. Also update the Stop() function and it's usage in other callers.
Released 2023-06-14
Please report issues via github or the ITRS Community Forum.
tools/geneosFix late found bug withdeployand home directories
Released 2023-06-13
Please report issues via github or the ITRS Community Forum.
-
pkg/geneosChangesSome API changes to support work on a project for reading Gateway configuration files. Existing structures used to write config files cannot co-exist and have been renamed with an "Out" suffix down to the SamplerOut level. While the old names should have been retained and the new API requirements used new names, it was decided that this is the more common use case in the future.
-
tools/geneosCommand updatesThe
showcommand can now output an instance's own configuration file (for types of Netprobe and Gateway) and also try to produce a merged Gateway file using a modified command line with the Gateway-dump-xmlcommand line option.A new instance flag
autostarthas been added, set totruefor all types exceptac2which defaults tofalse. Documentation updtes to follow.The
init democommand now detects if the user has aDISPLAYenvironment variable set and if so also installs anac2instance.The
commandcommand can now output the details in JSON format. This format is not quite compatible with thepkg/processRun and Batch functions, but the aim is to eventually merge the formats so that they can also share the implementation later.
-
Minor ongoing changes
While adding new features there is ongoing review work and refactoring of code.
Released 2023-06-07
Please report issues via github or the ITRS Community Forum.
-
Added a new
geneos deploycommand that combinesgeneos initandgeneos addbut takes more care over existing installations and/or creating new directories.As part of this work all the
geneos initcommand will prompt the user for a directory if none is given on the command line. If the command is run from a non-interactive parent (e.g. a pipe from the shell) then the prompt is skipped and the default directory is used.The
geneos deploycommand uses the same initialisation rules but reduces the number of options. The intended audience is around automation where the deployment scripts may not have the knowledge or logic to check for existing installations. -
For
geneosinstances that have both the defaultlibpathsand an environment variableLD_LIBRARY_PATHconfigured these are now concatenated withlibpathsalways first. -
Based on user feedback all the Netprobe types have been merged under the
netprobe/directory in their respective plural names, e.g.netprobe/sans. Existing installations should continue to work unchanged but you can use thegeneos migratecommand to automatically merge the instance directories undernetprobe/including the update of configuration files. -
The Linux Active Console is now treated like any other component and instance. At the moment, if you issue a
geneos startcommand then all instances including Active Console(s) will be run. In a future release we may add anautostartlike flag that can prevent this and require a manual start using the fullgeneos start ac2 abcdesyntax. -
pkg/process- New featuresNew functions have been added to support the running of single processes and batches based on a Program struct. This is for running tasks loaded from a config file (typically YAML) for an ongoing project. The reason for not using existing external packages was the integration with other
cordialtooling. This functionality is currently maturing and is very sparsely documented and subject to major changes. -
pkg/icpandpkg/gwhub- New APIsThese two packages are the start of Go APIs for ITRS Capacity Planner and Gateway Hub, respectively. These should not yet be used and have been included to track progress over the next few releases.
-
In the config package the Load() function would fail if used with a file format set bu other defaults and run in the same directory as the binary it ran in because viper would also try to load the bare-named program binary as a config file of the type given. The package now does it's own file name construction to avoid this.
As a consequence of the work done around this fix to make the usage of options to Load() and Save() clearer some have changed names. Existing code that wants to use v1.6.0 will experience minor API breakage. The fixes are simple refactors, so no backward compatibility has been retained.
-
The work done for #117 above meant that all templates are now located under
netprobe/templatesand bothsanandfloatingtemplates had the same name. The default templates now have updated root names, e.g.san.setup.xml.gotmpl, but existing configuration may need updating if the existing templates clash.To help users control which configuration files are created from templates, and which to use for instance start-up, a new instance parameter
setuphas been introduced for this. The defaults arenetprobe.setup.xmlandgateway.setup.xmlfor the two affected component types which means no change for existing users.So even though the new SAN template is
san.setup.xml.gotmpl, for example, runninggeneos rebuild sanwill still result in anetprobe.setup.xmlin the instance directory. -
While this report was a misunderstanding of the way to use Daemon() the comments have been updated to give better direction on how to use the pidfile io.Writer parameters.
Released 2023/05/31
Please report issues via github or the ITRS Community Forum.
-
#102 -
processpackage additions -
#109 - New
tls createcommandMove the functions of
--nameetc fromtls newtotls createto remove dependency on the Geneos home directory. -
#106 - Change directory for TLS root and signing certs and keys
-
#97 - Start of Linux AC2 support. Not yet fully functional.
Releases 2023/05/25
Please report issues via github or the ITRS Community Forum.
-
-
#85 - TLS Issues
Added verification for certificates against existing root and signing certificates.
Added an option to recreate root and signing certs from
tls init. -
#86 - New log option for stderr logs blocked main logs
Reworked the way that logs are followed to allow both normal and stderr logs to be followed. This fixes
start -l,restart -land by implicationinit -loptions. Added a--nostandard/-Noption tologsto allow normal log to be surpressed when you only want the error logs. -
#88 - Floating probe configuration template output malformed
The defaults for new floating probes used
sannameinstead offloatingnameas the parameter for the template rendering. -
#90 - Variables in SANs
The san template was not corrected updated for the new variable structure.
-
#43 - Minor error in
disableIn
disablecheck if stopped and print error if not--force
-
Released 2023/05/22
Please report issues via github or the ITRS Community Forum.
This release brings numerous changes to the cordial tools, especially
the geneos utility. We have tried to improve the reliability and
usability of the utility through updated and improved documentation and
subsequent fixes and changes that arose from writing and checking that
documentation.
-
pkg/logger:- REMOVED. This simplistic internal logging package has been deprecated in favour of more mature solutions, such as zerolog.
-
tools/geneos:-
The way SAN instances handle gateway connections has been fixed to allow gateway represented as FDQNs or IP addresses. The old way resulted in a mess - viper defaults to dots ('.') as configuration item hierarchy delimiters and this caused issues. Most users with SANs should not notice any change, but if you see problems please check the san XML file and correct the
gatewayssection as necessary. One way is to remove and re-set them using:geneos set san mySan -g gateway.example.com ...Running
setwill rewrite the configuration in the new format bu there is a chance that the previous configuration will continue to occupy settings. You may need to manually edit the instance configuration filesan.jsonanyway. -
Like the above any variables defined for either SAN or Gateway instances used to generate XML from templates will have not worked in a case sensitive manner to mirror how Geneos treats variable names. To fix this the internal format of the
variablessection has been updated to move the variable name from the configuration key to a separate structure as it's own value. Code has been added to automatically convert from the old format to the new when the configuration file is updated however there is no fix for the correction of variable case name being incorrect from previous configurations. Please review and adjust as necessary. -
Support for running instances as other user accounts or under
sudohas been deprecated. Security is hard, and the support for these was poorly implemented. A better way should be coming in a future release.This may mean that where users has configured netprobes to run as different users and have previously run
sudo geneos startto let the program do the right thing will run into issues. Please be careful if any of your instances run as other users and do not run thegeneosprogram withsudo. There is no additional checking/rejection of running undersudoor any other privilege escalation system so this is important!
-
-
There has been a significant amount of refactoring and moving around of the code-base. Most of this should not be user visible, but some public APIs have changed. As with all major changes there may be problems that have not been caught in testing. Please report anything you see as either a github issue or via the ITRS Community Forum.
There are too many changed to list them all in detail but specific ones worth mentioning include:
-
memguardsupport for protected memory. Credentials (passwords, TLS keys and so on) should now be handled as Enclaves (for plaintext or private keys) or as LockedBuffers (for ciphertexts of sensitive data).The
configpackage includes new methods for handling configuration file data as Enclaves and LockedBuffers to try to reduce the amount of confidential data visible in the process.The changes are ongoing and, in addition to adding a layer of data security to
cordial, an added benefit is the interception of memory use errors etc. If you see errors, panic etc. please report them as a github issue -
A number of the previous package APIs have undergone review and changed as needed. In particular the
configAPI has been through the wringer and if you have any code that relies on it from v1.4 or earlier then it will require changes. There are new functions, which is to be expected, but also some existing ones have been renamed or had their argument signatures changed. Please review the documentation to see what the methods and functions have become. -
Credentials support. There is both general purpose and
geneosspecific support for the local storage of credentials. Passwords and other secrets "at rest" are stored in Geneos AES256 format using a key file that is initial auto-generated. To decode these passwords you must have both the key file (which is by default only user readable) and the credentials file. There should be support for other credentials types, such as OAuth style client secrets and tokens, in future releases. The username and the domain that the credentials apply to are not encrypted, by design. This is however subject to change in a future release.Credentials currently works with a free-text domain that matches a destination using a "longest match wins" search, e.g. for a URL this may be a full or partial domain name, and for Geneos component authentication, e.g. the REST command API, the domain is in the form
gateway:NAME. Others will be added later, probably including TLS certificates and keys as well as SSH password and private keys. -
Releases now include selected binaries with a semantic version suffix. The programs in
cordialuse the base name of the binary as a key to select which configuration files to load, so that renaming the binary will result in a different set of configuration file being used, automatically.To make life simpler, any version suffix is automatically stripped if, and only if, it matches the one used to build the binary. This means you can now download
geneos-v.1.5.0and use it without having to rename it (useful for initial testing of new releases).
-
-
-
Extensive documentation restructuring and rewriting. This is still work in progress but largely complet. Built-in help text (shown with the
helpcommand or the--help/-hoption) should now align much more closely with real functionality and the online documentation is now almost completely built from the same source. -
Addition of subsystems to group commands.
-
Move
aesandtlscommand sources to their subsystems. -
Add
hostandpackagesubsystems and create aliases for the original commands, e.g.add hostbecomeshost addinstallbecomespackage install- etc.
-
The
set user,show useretc. commands are now under singleconfigsubystem, e.g.geneos config set mykey=value -
The
set globaland related commands have been deprecated. -
The new
packagesubsystem command pulls all Geneos release management into one place -
New
loginandlogoutcommands to manage credentials. -
New
ca3andfloatingcomponents for Collection Agent 3 and Floating Netprobes
-
-
- This new utility can be run as a Geneos Action or Effect to capture one or more Dataviews and send as an email. The configuration is extensive and the layout and contents are completely configurable through the use of Go templates.
-
-
Version checking of local release archives was broken because of overloading of a common function. This is now split and checking should work once again.
-
Most reported issues on github have been fixed.
-
-
Documentation needs more work and refinement. The built-in help for almost all commands is now up-to-date but the
initandtlssubsystems need to be reviewed further and completed. This should be in a patch release soon. -
- Local storage of encrypted passwords for remote SSH access needs documenting
-
Fixes
- New
Defaultexpand option should NOT itself default tonil
- New
-
Fixes
- tools/geneos: fix
psnot showing open ports on systems with IPv6 enabled - tools/geneos: make
lsandpscommand flags more consistent - tools/geneos: add an -el8 runtime to docker images when built
- tools/geneos: fix RHEL8/Centos8 download support for localhost using new SetStringMapString() method
- pkg/config: add SetStringMapString() methods to support settings maps (which viper doesn't support until you write a file out and read it back)
- tools/geneos: adjust the way we choose package version, convert "-el8" to "+el8" to satisfy semver ordering
- tools/geneos: package version number are now prefixes only
- tools/geneos: fix
-
Changes
- tools/geneos: add
-fflag topscommand to show open files. formatting subject to change for now. - tools/geneos: add a
update lscommand to show available package versions - pkg/config: added more ExpandOptions and support more Get* functions such as GetInt
- pkg/geneos: added more Geneos XML config support, specifically Sampler Schemas and Standardised Formatting
- libraries/libemail: added initial msTeams notification function
- tools/geneos: add
-
Fixes
- tools/geneos: fix
updateto only optional restart (-R) the component type given - tools/geneos: check RHEL8 download in a case independent way - fixes remotes
- tools/geneos: create user config directory for remote hosts in case of old location for main config
- tools/geneos:
installshould error out is passed@hostinstead of-H host - tools/geneos: ssh known hosts handling improved (for mixed IP / hostnames)
- tools/geneos: remote hosts with IP names are now renamed
A-B-C-Dto avoid issues with viper names
- tools/geneos: fix
-
Fixes
- tools/geneos: check return from user.Current() as it can fail (but shouldn't)
- tools/geneos: numerous fixes for logic around handling of remote hosts
- tools/geneos: fix remote host naming to be work with capitalisations
- tools/geneos: actually load SSH private key files, if available
- tools/geneos: re-order SSH HostKeyAlgorithms so that, bizarrely, IP based remotes work
- tools/geneos: better handling of instance config aliases when writing config files
- tools/geneos: fixes to unset to ignore values that may be passed in with keys to unset
- tools/geneos: refactor CopyInstance() to preserve ports, other details
- build: create static executables, using alpine, and a centos 7 compatible libemail.so
- tools/geneos: add the beginnings of support for YAML instance config files. not enabled yet.
- tools/geneos: fix crash when importing to common directories of components without the component name
- tools/geneos: fix fileagent support by adding implicit imports with side-effects for all component packages
- tools/geneos: skip failed permissions on /proc/*/fd - let 'ps' work for restricted processes
- tools/geneos: fix update-during-install support, add --force flag for this too
- tools/geneos: fix logic to match latest packages when major number changes
-
Changes
- tools/geneos: clean-up various comments, refactor methods, add license/copyright notices to many files
- pkg/config: Add an options
exprprefix to expansion items which supports https://pkg.go.dev/github.com/maja42/goval syntax - pkg/config: API change: Add options to the config expansion functions rather than just lookup maps
- tools/geneos: add SSH password support for remote hosts
- tools/geneos: support embedded SSH passwords in hosts config, using new 'set host' sub-command
- tools/geneos: support additional SSH private key files per host via 'set host sshkeys=X,Y' sub-command
- tools/geneos: begin implementation of support for YAML config files via 'configtype' user setting
- pkg/geneos: add EnvironmentRef and fix periodStartTime attribute
-
Other
- tools/geneos: ongoing documentation and command help usage updates
- tools/geneos: update README.md with more information about instance configuration files and their values (@gvastel)
-
Fixes
- tools/geneos: fix running as root (or via sudo) and creation of config directories and file ownerships
- tools/geneos: fix creation of full user config directories when running 'set user'
-
Fixes
- tools/geneos: chown files and directories creates when run as root
- tools/geneos: ensure plain 'init' creates all components dirs
-
Changes
- PagerDuty integration
- Merged ServiceNow integration, single binary build
- tools/geneos: add instance protection against stop (and related) or delete commands
- tools/geneos: support legacy command through emulating
*ctlnamed commands - tools/geneos: allow remote operations without local directories
-
Fixes
- tools/geneos: fix logic around creating user default AES keyfiles and directory permissions
- tools/geneos: round certificate expiry to midnight
- tools/geneos: round tls remaining column to seconds correctly
- tools/geneos: fix webserver command build typo. now webserver starts correctly
- libemail: fix default _SUBJECT handling
- tools/geneos: split over complex 'init' command into sub-commands
- updated command usage information and reordered various internal function calls
- tools/geneos: add password verify to aes encode and a --once flag to override
- tools/geneos: add local JoinSlash and Dir to use Linux paths on Windows builds
- tools/geneos: fix ssh-agent support on windows
- tools/geneos: build on windows
- integrations: Add PagerDuty integration
- Integrations: Merge ServiceNow binaries into one
- tools/geneos: change internal remote Stat() API
Final release after numerous small fixes.
-
Fixes
-
geneoscommand fixes:- Fixed
initdownload credential handling - Fixes JSON output format from
lscommands - Local-only installs now work again (including default "latest" support)
- Fixed
-
Security
- Updated Labstack Echo to 4.9.0 to address security advisory CVE-2022-40083. To best of our knowledge this particular set of features was never used in this package.
-
-
Additional features and improvements
-
geneoscommand improvements:- Added
--rawtoshowto not output expanded configuration values - Many improvements and changes to the new
aessub-commands. Please see documentation for details - Removed built-in opaquing of credentials in output in favour of new
${enc:...}support
- Added
-
libemail.sogets direct passwords back, with ExpandString support. See documentation for details -
General package improvements
- Enhanced
OpenLocalFileOrURLto support~/paths - Enhanced
ExpandStringto support direct file paths and updates package docs further
- Enhanced
-
-
Fixes
-
geneosinstance configuration files now have expansion applied to string-like values. This means, for example, that changing theversionof an instance fromactive_prodwill correctly be reflected in the executable path and library paths. Previously these needed to be manually changed. Please note that existing instance configuration files will NOT be updated and will require editing. You can go from:"program": ".../packages/gateway/active_prod/gateway2.linux_64",to
"program": "${config:install}/${config:version}/${config:binary}",
For a complete list of supported expansions see
ExpandString()in theconfigpackage. -
-
Additional features and improvements
ExpandString()was enhanced to add aconfig:prefix so that configurations with a flat structure, i.e. no "." in names, could be referenced.- To support the changes above in instance configurations a new method
was added -
ExpandAllSettings()- and thegeneos showcommand enhanced to display both expanded and raw configurations via the new--rawflag. - Additional configuration item support in the
geneospackage
-
Fixes found during testing
- Removed support for
$varformat expansion, now it's${var}only. This prevents configuration issues when, for example, plain text passwords contain dollar signs. The documented workaround if you need to include literal${in a configuration value still applies.
- Removed support for
-
Additional features and improvements
- Added command
geneos aes update. This may still be renamed before final release togeneos aes importdepending on feedback. - Improvements to
geneos aes new - Improvements, clarification to package and function documentation
- Code clean-up and refactor to make some internals more understandable and to remove code duplication
- Added command
-
Breaking Changes
There are quite a lot of changes to the various components and packages since the original v1.0.0. Given that almost no-one outside the components contained in the repo itself is using the public package APIs I have broken the rules around semantic versioning and changed parts of the API.
-
Highlights
- Package changes
- Breaking changes: Geneos
apiandapi-streamsXML-RPC supporting packages have had a big clean-up to make them easier to use - New
configpackage to overlayviperwith support for value expansion and crypto convenience functions - New
geneospackage to aid in the construction of XML configurations for Gateway and Netprobe. This is work in progress. - New
commandspackage to provide the start of support for REST API Commands to the Gateway. This is work in progress. - New
xpathpackage to work with the above and also the base for thesnapshotcommand below. This is also work in progress. - New
cordialpackage that initially carries a version constant. - New
processpackage, providing a way to Daemon()ise callers on both Linux and Windows. - Deprecation Notice: The
loggerpackage will probably be removed as it was a stop-gap and is slowly being replaced withzerolog
- Breaking changes: Geneos
- Addition of the following commands to
tools/geneos:aes- Manage Geneos key-files and encoding/decoding of valuessnapshot- Take dataview snapshots directly from the command line (requires GA5.14+)
- ServiceNow integration updates
- Configuration support is now direct with
configabove, allowing full value expansions support, including encoded credentials.
- Configuration support is now direct with
- Logging changes
- The logging in
tools/geneoshas been migrated tozerologfrom the internalloggerfor a more flexible package. This will be further rolled-out to other parts of the repo in time.
- The logging in
- Package changes
- First Release