-
Notifications
You must be signed in to change notification settings - Fork 3.3k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
docs: add upgrade/release notes for 1.12.0
- Loading branch information
1 parent
f1442be
commit c0b8e80
Showing
2 changed files
with
120 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,73 @@ | ||
--- | ||
page_title: Packer v1.12 release notes | ||
description: Learn about the changes in Packer v 1.12 | ||
--- | ||
|
||
# Packer v1.12 release notes | ||
|
||
This page describes changes to Packer in v1.12. Refer to the [Packer repository](https://github.com/hashicorp/packer/releases) for information about all releases. | ||
|
||
## New features | ||
|
||
This release includes the following updates. | ||
|
||
### HCP Packer SBOM Support | ||
|
||
In Packer 1.12, you can upload SBOMs to HCP Packer. | ||
SBOMs (Software Bill Of Materials) are a standardised way to export information about a system. | ||
In Packer's case, the generally useful information that you may find in a SBOM for an artifact is the list of installed packages, along with extra information on the system built: OS, version, kernel, architecture, etc. | ||
|
||
Please note that while we support uploading those documents to HCP Packer as part of a build, we do not however offer a special-purpose provisioner or tooling to do so. | ||
Instead we encourage you to use a third-party scanner to produce the SBOM on the VM you are provisioning, and then you can use the [`hcp-sbom` provisioner](https://developer.hashicorp.com/packer/docs/provisioners/hcp-sbom) to have it uploaded on build completion. | ||
|
||
### Data source and Locals evaluation order changes | ||
|
||
Older versions of Packer used a phase-based approach, so data sources were evaluated first, then local variables were. | ||
This made it impossible for a data source to reference a local variable, as it would never be evaluated before the data source was. | ||
|
||
Therefore, Packer 1.12 introduces a DAG (Directed Acyclic Graph) approach to evaluating data sources and locals. | ||
This loosens the dependency order between those components, as only the dependencies between them will be used for determining the order in which those entities are evaluated. | ||
|
||
That change is a step in the direction of a complete pivot to using a DAG for evaluating everything in a Packer build, along with the other improvements this can yield in future releases. | ||
|
||
### Serialisation format upgrades for Packer-Plugin communication | ||
|
||
More than one year ago, a dependency of ours (go-cty) decided to drop support for `gob` encoding. | ||
This made it impossible for plugin developers to upgrade to more recent versions of the HCL2 libraries, because otherwise their plugin became incapable to commuinicate with Packer. | ||
This change was addressed by temporarily forking the `go-cty` repository, and introducing replacement directives to every Packer plugin. | ||
While this fix was functional, it was not desirable as a long-term solution, and instead we were looking for a more permanent fix. | ||
Packer 1.12 introduces this change. | ||
|
||
Now, when Packer communicates with Plugins, it doesn't rely on `gob` anymore, and swaps to using a protobuf/msgpack hybrid approach instead. | ||
We are introducing this change now in a non-breaking way: all the currently supported plugins are expected to continue working with Packer for the time being, and changing to using this new serialisation approach will be transparent to you. | ||
|
||
### New HCL2 functions | ||
|
||
As part of Packer 1.12, we have introduced more functions that can be used in HCL2 templates, and one (`aws_secretsmanager_raw`) that can be used both in legacy JSON and HCL2 templates. | ||
|
||
* `anytrue`: check that a collection contains at least one `true` value. | ||
* `alltrue`: check that a collection contains only `true` values. | ||
* `aws_secretsmanager_raw`: get a raw secret from AWS Secretsmanager, contrary to `aws_secretsmanager`, this works with all types. | ||
* `base64gzip`: gzip compress a binary blob and expose it as a base64-encoded `string` to be used elsewhere in a template. | ||
* `strcontains`: checks that a string contains another. | ||
|
||
### `HTTP` data source support methods other than `GET` | ||
|
||
The HTTP data source, embedded with Packer, lets you retrieve data over HTTP from a remote server. | ||
Previous versions of Packer only supported `GET` to do so, and Packer 1.12 loosens this by allowing for: `HEAD`, `GET`, `POST`, `PUT`, `DELETE`, `OPTIONS` and `PATCH`. | ||
|
||
## Bug fixes | ||
|
||
### Include LC_UUID in macOS binaries | ||
|
||
Users of macOS started having permission-related problems when using Packer, after upgrading their OS versions. | ||
This problem was caused by an update to macOS's network-usage policies, where binaries that want to use the local loop interface to communicate over the network must now include a valid UUID. | ||
This wasn't the case in prior versions since that was never an issue, but starting with Packer 1.12, this is now the case for macOS binaries. | ||
|
||
### Less duplication of error messages in HCL2 templates | ||
|
||
If a template has an error in its top-level HCL2 template, a parsing error is produced. | ||
This is to be expected and is a normal part of writing a Packer template: the tool helps you by pointing out grammar violations so you can remediate them. | ||
What is not expected however is having the same error diplayed multiple times. | ||
For a subset of HCL-related errors, this was unfortunately the case, where those errors were displayed up to five times in older versions of Packer. | ||
Thanks to a community contribution, we now no longer experience this, starting with Packer 1.12. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,47 @@ | ||
--- | ||
page_title: Upgrade to v1.12 | ||
description: Learn how to upgrade your Packer installation to v1.12 | ||
--- | ||
|
||
# Upgrade to v1.12 | ||
|
||
The topic describes upgrade considerations for Packer v1.12. Refer to the [v1.12 release notes](/packer/docs/release-notes/v1_12) for details about changes in v1.12. | ||
|
||
## Overview | ||
|
||
You can use the upgrade command for the package manager you installed Packer with or download and replace the existing binary to upgrade Packer. Refer to [Install Packer](https://developer.hashicorp.com/packer/install) for instructions. | ||
|
||
## Upgrade from 1.11 | ||
|
||
Packer 1.12's notable changes can be summarised by the following points: | ||
|
||
1. Protocol changes for Packer/Plugin communication | ||
2. Introduction of a DAG for Data Sources and Locals | ||
|
||
**Note**: None of the changes we made should impact your templates, and they should continue working as-is. | ||
|
||
## Protocol changes | ||
|
||
When initialising, Packer is now able to pick between two different protocols for communication with Plugins: gob (legacy), and protobuf/msgpack. | ||
|
||
The latter is to become the standard after this release, but in order to avoid breaking retro-compatibility, it will only be picked if the following are true: | ||
|
||
1. All the plugin candidates for a build support the new protocol | ||
2. Packer supports the protocol | ||
|
||
This change should be transparent to you, as this only changes how Packer operates under the hood. | ||
However, if you start seeing errors with Packer/Plugin communication like serialisation errors, please [report it to us](https://github.com/hashicorp/packer/issues) so we can fix it in a later version. | ||
In the meantime however, you can set the `PACKER_FORCE_GOB` environment variable to force Packer and plugins to use the legacy serialisation format for communication. | ||
|
||
Example: `export PACKER_FORCE_GOB=1` will force using gob for serialisation. | ||
|
||
## Data Source and Locals DAG support | ||
|
||
In order to allow more flexibility in how you may define data sources and locals, we introduced a graph-based approach to scheduling evaluation of those components. | ||
This means that with this change, you can use a local variable in a data source, and vice-versa, you are not bound to a strict evaluation order. | ||
|
||
If your templates worked with older versions of Packer, this change should be transparent to you. | ||
However, if you are experiencing errors with your data sources or locals, typically errors due to unkown values, or other dependency problems, please [report it to us](https://github.com/hashicorp/packer/issues) so we can fix it in a later version. | ||
In the meantime however, the `--use-sequential-evaluation` command-line option can be used to revert back to the evaluation scheduler that Packer used until v1.12.0. | ||
|
||
Example: `packer build --use-sequential-evaluation <TEMPLATE>` will force using the sequential evaluation methods from Packer until v1.12.0. |