Victoria Series Release Notes


New Features

  • Add TLS options for Memcached TLS connections.


Deprecation Notes

  • The swift::proxy::authtoken::auth_plugin parameter has been deprecated and will be removed in a future release. Use the auth_type parameter instead.


New Features

  • Added a new meta_version_to_write for the keymaster config.

  • Adds a new proxy config option to set recoverable_node_timeout. This setting defaults to node_timeout, which affects HEAD, GET and PUT requests. However, it makes sense to keep the timeout for GET and HEAD requests shorter to allow quicker recovery and prevent client timeouts.

Upgrade Notes

  • When upgrading from Swift 2.20.0 or Swift 2.19.1 or earlier, set meta_version_to_write to 1. When upgrading from 2.25.0 or earlier, set meta_version_to_write to 2. After upgrading all proxy servers, set this to 3 (currently the highest version).

Critical Issues

  • Failing to set the correct version of meta_version_to_write can lead to unrecoverable data.


New Features

  • The new swift::proxy::authtoken::interface parameter has been added, which can be used to set the interface parameter in authtoken middleware.


New Features

  • Support to configure memcache.conf file.

  • Add swift::proxy::domain_remap class to configure domain_remap middleware for swift proxy.

  • Add swift::proxy::etag_quoter to configure etag_quoter middleware for swift proxy.

  • Add swift::proxy::symlink class to configure symlink middleware for swift proxy.

  • Add rsync max_connections config and add rsync_use_xinetd parameter to support to not use xinetd for rsync

  • For s3token class, add more parameters: reseller_prefix, delay_auth_decision, http_timeout, secret_cache_duration, and keystone credential parameters used for secret caching: auth_uri, auth_type, username, password, project_name, project_domain_id, user_domain_id

  • A new parameter client_timeout has been added to the storage::server class (useful only if type=object). It is similar to the client_timeout parameter used in the proxy class, except that it is for object.

  • The nobarrier XFS mount option is removed from kernel 4.19.0 and beyond. It has no effect on kernel 4.10.0. Therefore, it is now removed from the default mount options. Also, puppet-swift now adds the nofail option, so that a swift store node finishes to boot even if an HDD mount is failed.

Upgrade Notes

  • puppet-swift now fails if swift3 is included in swift::proxy::pipeline, because it no longer supports configuration for swift3 middleware. Use s3api instead to provide S3-compatible API.

Deprecation Notes

  • The following password parameters currently use the default value when the parameters are not set in manifests, but this behavior has been deprecated. Please set actual password explicitly to avoid failure before the default values are removed.

    • swift::keymaster::password

    • swift::keystone::auth::password

    • swift::proxy::authtoken::password

    • swift::proxy::ceilometer::password

    • swift::proxy::s3token::password

  • The swift::proxy::authtoken::signing_dir parameter has been deprecated and has no effect now.

  • The swift::proxy::swift3 class has been deprecated because swift3 middleware is no longer maintained. Use swift::proxy::s3api instead to use built-in s3api middleware in swift.

  • The following deprecated parameters were removed fron swift::proxy::authtoken class.

    • identity_uri

    • admin_user

    • admin_tenant_name

    • admin_password

    • auth_uri

  • The swift::proxy::keystone::is_admin parameter was removed.

  • The swift::client_package_ensure parameter was removed.