fluentd 0.14.16 → 0.14.17

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: c8ecd747594db63d79cc18e76b0c79869d3d5388
-  data.tar.gz: 8b70682f2c2ce355b8f84aeba9898142abe29d95
+  metadata.gz: e746832a9687d6e680231e7f617584b50a6db91b
+  data.tar.gz: a084bf0df70ef3fe3c3bf21db2f21b6745640360
 SHA512:
-  metadata.gz: d6ce26c60893a685559442d5aad416fcf4535ceb3324ab359518f70b9cc9ac9582ee53fb5b6fcceff0e0d1db70049afa5370ec90ee69f86f2b8881e4fdeb2aef
-  data.tar.gz: 34bc0fb042d7f97bbfc6bf7e39e0ae673eb09ec49eb8456483688b677fb086dbeef8fdf2a6d01d1685c4ab25ac49f65d1eaadda7dea3cc12dfebc657d373e476
+  metadata.gz: 8c0bd7a4c82757b3f4507c7d79e171e414ccb4d44f99ce60a4ad1a0802bcc9cf18b9de0ef8d9d7cc755e61d5a5112b944f2102f68d3e71cc403f917034747aaa
+  data.tar.gz: 4e00a8d1147b4371ddc2a890543eef8efa2bdbec53fefc1cb39076ab8cd68e8b6839e9bfd3b1e5c7ef90856c8b77f7cd60205d83596a388b413936b5760be1e2

data/ChangeLog

@@ -1,5 +1,25 @@
 # v0.14
 
+## Release v0.14.17 - 2017/05/29
+
+### New features / Enhancements
+
+* in_tail: Add ignore_repeated_permission_error
+  https://github.com/fluent/fluentd/pull/1574
+* server: Accept private key for TLS server without passphrase
+  https://github.com/fluent/fluentd/pull/1575
+* config: Validate workers option on standalone mode
+  https://github.com/fluent/fluentd/pull/1577
+
+### Bug fixes
+
+* config: Mask all secret parameters in worker section
+  https://github.com/fluent/fluentd/pull/1580
+* out_forward: Fix ack handling
+  https://github.com/fluent/fluentd/pull/1581
+* plugin-config-format: Fix markdown format generator
+  https://github.com/fluent/fluentd/pull/1585
+
 ## Release v0.14.16 - 2017/05/13
 
 ### New features / Enhancements

data/lib/fluent/command/plugin_config_formatter.rb

@@ -167,7 +167,6 @@ class FluentPluginConfigFormatter
       required = sub_section.delete(:required)
       multi = sub_section.delete(:multi)
       alias_name = sub_section.delete(:alias)
-      $log.trace(name: section_name, required: required, multi: multi, alias_name: alias_name)
       sub_section.delete(:section)
       dumped << ERB.new(template_path("section.md.erb").read, nil, "-").result(binding)
     end

data/lib/fluent/engine.rb

@@ -43,6 +43,8 @@ module Fluent
       @suppress_config_dump = false
 
       @system_config = SystemConfig.new
+
+      @dry_run_mode = false
     end
 
     MAINLOOP_SLEEP_INTERVAL = 0.3
@@ -54,6 +56,8 @@ module Fluent
     attr_reader :matches, :sources
     attr_reader :system_config
 
+    attr_accessor :dry_run_mode
+
     def init(system_config)
       @system_config = system_config
 
@@ -157,7 +161,7 @@ module Fluent
       $log.enable_event(true) if @log_event_router
 
       unless @suppress_config_dump
-        $log.info :worker0, "using configuration file: #{conf.to_s.rstrip}"
+        $log.info :supervisor, "using configuration file: #{conf.to_s.rstrip}"
       end
     end
 

data/lib/fluent/plugin/in_tail.rb

@@ -42,6 +42,7 @@ module Fluent::Plugin
       @tails = {}
       @pf_file = nil
       @pf = nil
+      @ignore_list = []
     end
 
     desc 'The paths to read. Multiple paths can be specified, separated by comma.'
@@ -81,6 +82,8 @@ module Fluent::Plugin
     config_param :limit_recently_modified, :time, default: nil
     desc 'Enable the option to skip the refresh of watching list on startup.'
     config_param :skip_refresh_on_startup, :bool, default: false
+    desc 'Ignore repeated permission error logs'
+    config_param :ignore_repeated_permission_error, :bool, default: false
 
     attr_reader :paths
 
@@ -198,7 +201,10 @@ module Fluent::Plugin
               end
             else
               if is_file
-                log.warn "#{p} unreadable. It is excluded and would be examined next time."
+                unless @ignore_list.include?(path)
+                  log.warn "#{p} unreadable. It is excluded and would be examined next time."
+                  @ignore_list << path if @ignore_repeated_permission_error
+                end
               end
               false
             end

data/lib/fluent/plugin/out_forward.rb

@@ -431,6 +431,7 @@ module Fluent::Plugin
       if raw_data.empty?
         log.warn "destination node closed the connection. regard it as unavailable.", host: info.node.host, port: info.node.port
         info.node.disable!
+        rollback_write(info.chunk_id)
         return nil
       else
         unpacker.feed(raw_data)
@@ -450,6 +451,8 @@ module Fluent::Plugin
       log.error "unexpected error while receiving ack message", error: e
       log.error_backtrace
     ensure
+      info.sock.close_write rescue nil
+      info.sock.close rescue nil
       @sock_ack_waiting_mutex.synchronize do
         @sock_ack_waiting.delete(info)
       end
@@ -492,7 +495,7 @@ module Fluent::Plugin
 
           readable_sockets.each do |sock|
             chunk_id = read_ack_from_sock(sock, unpacker)
-            commit_write(chunk_id)
+            commit_write(chunk_id) if chunk_id
           end
         rescue => e
           log.error "unexpected error while receiving ack", error: e

data/lib/fluent/plugin_helper/cert_option.rb

@@ -46,12 +46,12 @@ module Fluent
         case
         when conf.cert_path
           raise Fluent::ConfigError, "private_key_path is required when cert_path is specified" unless conf.private_key_path
-          raise Fluent::ConfigError, "private_key_passphrase is required when cert_path is specified" unless conf.private_key_passphrase
+          log.warn "For security reason, setting private_key_passphrase is recommended when cert_path is specified" unless conf.private_key_passphrase
           cert_option_load(conf.cert_path, conf.private_key_path, conf.private_key_passphrase)
 
         when conf.ca_cert_path
           raise Fluent::ConfigError, "ca_private_key_path is required when ca_cert_path is specified" unless conf.ca_private_key_path
-          raise Fluent::ConfigError, "ca_private_key_passphrase is required when ca_cert_path is specified" unless conf.ca_private_key_passphrase
+          log.warn "For security reason, setting ca_private_key_passphrase is recommended when ca_cert_path is specified" unless conf.ca_private_key_passphrase
           generate_opts = cert_option_cert_generation_opts_from_conf(conf)
           cert_option_generate_server_pair_by_ca(
             conf.ca_cert_path,

data/lib/fluent/root_agent.rb

@@ -76,6 +76,9 @@ module Fluent
           raise ConfigError, "worker id #{target_worker_id} specified by <worker> directive is not allowed. Available worker id is between 0 and #{(Fluent::Engine.system_config.workers - 1)}"
         end
 
+        ## On dry_run mode, all worker sections have to be configured on supervisor (recognized as worker_id = 0).
+        target_worker_id = 0 if Fluent::Engine.dry_run_mode
+
         e.elements.each do |elem|
           unless ['source', 'match', 'filter', 'label'].include?(elem.name)
             raise ConfigError, "<worker> section cannot have <#{elem.name}> directive"

data/lib/fluent/supervisor.rb

@@ -457,7 +457,7 @@ module Fluent
         end
       end
 
-      dry_run if @dry_run
+      dry_run_cmd if @dry_run
       supervise
     end
 
@@ -490,6 +490,10 @@ module Fluent
       read_config
       set_system_config
 
+      if @standalone_worker && @workers != 1
+        raise Fluent::ConfigError, "invalid number of workers (must be 1 or unspecified) with --no-supervisor: #{@workers}"
+      end
+
       install_main_process_signal_handlers
 
       # This is the only log messsage for @standalone_worker
@@ -514,17 +518,32 @@ module Fluent
       ENV['SERVERENGINE_SOCKETMANAGER_PATH'] = socket_manager_path.to_s
     end
 
-    def dry_run
+    def dry_run_cmd
       $log.info "starting fluentd-#{Fluent::VERSION} as dry run mode"
-      change_privilege
-      init_engine
-      run_configure
+      @system_config.suppress_config_dump = true
+      dry_run
       exit 0
     rescue => e
       $log.error "dry run failed: #{e}"
       exit 1
     end
 
+    ## Set Engine's dry_run_mode true to override all target_id of worker sections
+    def dry_run
+      begin
+        Fluent::Engine.dry_run_mode = true
+        change_privilege
+        init_engine
+        run_configure
+      rescue Fluent::ConfigError => e
+        $log.error "config error", file: @config_path, error: e
+        $log.debug_backtrace
+        exit!(1)
+      ensure
+        Fluent::Engine.dry_run_mode = false
+      end
+    end
+
     def show_plugin_config
       name, type = @show_plugin_config.split(":") # input:tail
       $log.info "Use fluent-plugin-config-format --format=txt #{name} #{type}"
@@ -532,6 +551,9 @@ module Fluent
     end
 
     def supervise
+      # Make dumpable conf, which is set corresponding_proxies for all elements in all worker sections
+      dry_run
+
       Process.setproctitle("supervisor:#{@process_name}") if @process_name
       $log.info "starting fluentd-#{Fluent::VERSION}", pid: Process.pid
 

data/lib/fluent/version.rb

@@ -16,6 +16,6 @@
 
 module Fluent
 
-  VERSION = '0.14.16'
+  VERSION = '0.14.17'
 
 end

data/test/command/test_fluentd.rb

@@ -442,8 +442,7 @@ CONF
 
       assert_fluentd_fails_to_start(
         create_cmdline(conf_path, "-p", File.dirname(plugin_path)),
-        "error_class=SyntaxError",
-        "in_buggy.rb:5: syntax error, unexpected end-of-input, expecting keyword_end",
+        "in_buggy.rb:5: syntax error, unexpected end-of-input, expecting keyword_end (SyntaxError)"
       )
     end
   end
@@ -821,4 +820,48 @@ CONF
       )
     end
   end
+
+  sub_test_case 'config dump' do
+    test 'all secret parameters in worker section is sealed' do
+      script =  <<-EOC
+require 'fluent/plugin/input'
+module Fluent::Plugin
+  class FakeInput < Input
+    Fluent::Plugin.register_input('fake', self)
+    config_param :secret, :string, secret: true
+  end
+end
+EOC
+      plugin_path = create_plugin_file('in_fake.rb', script)
+
+      conf = <<CONF
+<system>
+  workers 2
+</system>
+<worker 0>
+  <source>
+    @type fake
+    secret secret0
+  </source>
+  <match>
+    @type null
+  </match>
+</worker>
+<worker 1>
+  <source>
+    @type fake
+    secret secret1
+  </source>
+  <match>
+    @type null
+  </match>
+</worker>
+CONF
+      conf_path = create_conf_file('secret_in_worker.conf', conf)
+      assert File.exist?(conf_path)
+
+      assert_log_matches(create_cmdline(conf_path, "-p", File.dirname(plugin_path)),
+                         "secret xxxxxx", patterns_not_match: ["secret secret0", "secret secret1"])
+    end
+  end
 end

data/test/plugin/test_in_tail.rb

@@ -72,6 +72,7 @@ class TailInputTest < Test::Unit::TestCase
       assert_equal 2, d.instance.rotate_wait
       assert_equal "#{TMP_DIR}/tail.pos", d.instance.pos_file
       assert_equal 1000, d.instance.read_lines_limit
+      assert_equal false, d.instance.ignore_repeated_permission_error
     end
 
     data("empty" => config_element,

data/test/plugin_helper/test_server.rb

@@ -767,8 +767,9 @@ class ServerPluginHelperTest < Test::Unit::TestCase
 
   def write_cert_and_key(cert_path, cert, key_path, key, passphrase)
     File.open(cert_path, "w"){|f| f.write(cert.to_pem) }
-    # Encrypt secret key by AES256, and write it in PEM format
-    File.open(key_path, "w"){|f| f.write(key.export(OpenSSL::Cipher.new("AES-256-CBC"), passphrase)) }
+    # Write the secret key (raw or ecnrypted by AES256) in PEM format
+    key_str = passphrase ? key.export(OpenSSL::Cipher.new("AES-256-CBC"), passphrase) : key.export
+    File.open(key_path, "w"){|f| f.write(key_str) }
     File.chmod(0600, cert_path, key_path)
   end
 
@@ -807,7 +808,8 @@ class ServerPluginHelperTest < Test::Unit::TestCase
       f.write server_cert.to_pem
       f.write chain_cert.to_pem
     end
-    File.open(private_key_path, "w"){|f| f.write(server_key.export(OpenSSL::Cipher.new("AES-256-CBC"), passphrase)) }
+    key_str = passphrase ? server_key.export(OpenSSL::Cipher.new("AES-256-CBC"), passphrase) : server_key.export
+    File.open(private_key_path, "w"){|f| f.write(key_str) }
     File.chmod(0600, cert_path, private_key_path)
   end
 
@@ -889,10 +891,11 @@ class ServerPluginHelperTest < Test::Unit::TestCase
         assert_equal "yay\nfoo\n", received
       end
 
-      test 'load self-signed cert/key pair (files), verified from clients using cert files' do
+      data('with passphrase' => 'yaaaaaaaaaaaaaaaaaaay',
+           'without passphrase'  => nil)
+      test 'load self-signed cert/key pair (files), verified from clients using cert files' do |private_key_passphrase|
         cert_path = File.join(@server_cert_dir, "cert.pem")
         private_key_path = File.join(@certs_dir, "server.key.pem")
-        private_key_passphrase = "yaaaaaaaaaaaaaaaaaaay"
         create_server_pair_signed_by_self(cert_path, private_key_path, private_key_passphrase)
 
         tls_options = {
@@ -902,8 +905,8 @@ class ServerPluginHelperTest < Test::Unit::TestCase
           insecure: false,
           cert_path: cert_path,
           private_key_path: private_key_path,
-          private_key_passphrase: private_key_passphrase,
         }
+        tls_options[:private_key_passphrase] = private_key_passphrase if private_key_passphrase
         received = ""
         @d.server_create_tls(:s, PORT, tls_options: tls_options) do |data, conn|
           received << data
@@ -922,10 +925,11 @@ class ServerPluginHelperTest < Test::Unit::TestCase
         assert_equal "yay\nfoo\n", received
       end
 
-      test 'create dynamic server cert by private CA cert file, verified from clients using CA cert file' do
+      data('with passphrase' => "fooooooooooooooooooooooooo",
+           'without passphrase'  => nil)
+      test 'create dynamic server cert by private CA cert file, verified from clients using CA cert file' do |ca_key_passphrase|
         ca_cert_path = File.join(@certs_dir, "ca_cert.pem")
         ca_key_path = File.join(@certs_dir, "ca.key.pem")
-        ca_key_passphrase = "fooooooooooooooooooooooooo"
         create_ca_pair_signed_by_self(ca_cert_path, ca_key_path, ca_key_passphrase)
 
         tls_options = {
@@ -935,9 +939,9 @@ class ServerPluginHelperTest < Test::Unit::TestCase
           insecure: false,
           ca_cert_path: ca_cert_path,
           ca_private_key_path: ca_key_path,
-          ca_private_key_passphrase: ca_key_passphrase,
           generate_private_key_length: 2048,
         }
+        tls_options[:ca_private_key_passphrase] = ca_key_passphrase if ca_key_passphrase
         received = ""
         @d.server_create_tls(:s, PORT, tls_options: tls_options) do |data, conn|
           received << data
@@ -950,15 +954,15 @@ class ServerPluginHelperTest < Test::Unit::TestCase
         assert_equal "yay\nfoo\n", received
       end
 
-      test 'load static server cert by private CA cert file, verified from clients using CA cert file' do
+      data('with passphrase' => ["foooooooo", "yaaaaaaaaaaaaaaaaaaay"],
+           'without passphrase'  => [nil, nil])
+      test 'load static server cert by private CA cert file, verified from clients using CA cert file' do |(ca_key_passphrase, private_key_passphrase)|
         ca_cert_path = File.join(@certs_dir, "ca_cert.pem")
         ca_key_path = File.join(@certs_dir, "ca.key.pem")
-        ca_key_passphrase = "foooooooo"
         create_ca_pair_signed_by_self(ca_cert_path, ca_key_path, ca_key_passphrase)
 
         cert_path = File.join(@server_cert_dir, "cert.pem")
         private_key_path = File.join(@certs_dir, "server.key.pem")
-        private_key_passphrase = "yaaaaaaaaaaaaaaaaaaay"
         create_server_pair_signed_by_ca(ca_cert_path, ca_key_path, ca_key_passphrase, cert_path, private_key_path, private_key_passphrase)
 
         tls_options = {
@@ -968,8 +972,8 @@ class ServerPluginHelperTest < Test::Unit::TestCase
           insecure: false,
           cert_path: cert_path,
           private_key_path: private_key_path,
-          private_key_passphrase: private_key_passphrase,
         }
+        tls_options[:private_key_passphrase] = private_key_passphrase if private_key_passphrase
         received = ""
         @d.server_create_tls(:s, PORT, tls_options: tls_options) do |data, conn|
           received << data
@@ -982,13 +986,13 @@ class ServerPluginHelperTest < Test::Unit::TestCase
         assert_equal "yay\nfoo\n", received
       end
 
-      test 'load chained server cert by private CA cert file, verified from clients using CA cert file as root' do
+      data('with passphrase' => ["foooooooo", "yaaaaaaaaaaaaaaaaaaay"],
+           'without passphrase'  => [nil, nil])
+      test 'load chained server cert by private CA cert file, verified from clients using CA cert file as root' do |(ca_key_passphrase, private_key_passphrase)|
         ca_cert_path = File.join(@certs_dir, "ca_cert.pem")
         ca_key_path = File.join(@certs_dir, "ca.key.pem")
-        ca_key_passphrase = "foooooooo"
         cert_path = File.join(@server_cert_dir, "cert.pem")
         private_key_path = File.join(@certs_dir, "server.key.pem")
-        private_key_passphrase = "yaaaaaaaaaaaaaaaaaaay"
         create_server_pair_chained_with_root_ca(ca_cert_path, ca_key_path, ca_key_passphrase, cert_path, private_key_path, private_key_passphrase)
 
         tls_options = {
@@ -998,8 +1002,8 @@ class ServerPluginHelperTest < Test::Unit::TestCase
           insecure: false,
           cert_path: cert_path,
           private_key_path: private_key_path,
-          private_key_passphrase: private_key_passphrase,
         }
+        tls_options[:private_key_passphrase] = private_key_passphrase if private_key_passphrase
         received = ""
         @d.server_create_tls(:s, PORT, tls_options: tls_options) do |data, conn|
           received << data
@@ -1042,17 +1046,18 @@ class ServerPluginHelperTest < Test::Unit::TestCase
         assert_equal "yay\nfoo\n", received
       end
 
-      test 'load self-signed cert/key pair (files), verified from clients using cert files' do
+      data('with passphrase' => "yaaaaaaaaaaaaaaaaaaay",
+           'without passphrase'  => nil)
+      test 'load self-signed cert/key pair (files), verified from clients using cert files' do |private_key_passphrase|
         cert_path = File.join(@server_cert_dir, "cert.pem")
         private_key_path = File.join(@certs_dir, "server.key.pem")
-        private_key_passphrase = "yaaaaaaaaaaaaaaaaaaay"
         create_server_pair_signed_by_self(cert_path, private_key_path, private_key_passphrase)
 
         transport_opts = {
           'cert_path' => cert_path,
           'private_key_path' => private_key_path,
-          'private_key_passphrase' => private_key_passphrase,
         }
+        transport_opts['private_key_passphrase'] = private_key_passphrase if private_key_passphrase
         transport_conf = config_element('transport', 'tls', transport_opts)
         conf = config_element('match', 'tag.*', {}, [transport_conf])
 
@@ -1076,17 +1081,18 @@ class ServerPluginHelperTest < Test::Unit::TestCase
         assert_equal "yay\nfoo\n", received
       end
 
-      test 'create dynamic server cert by private CA cert file, verified from clients using CA cert file' do
+      data('with passphrase' => "fooooooooooooooooooooooooo",
+           'without passphrase'  => nil)
+      test 'create dynamic server cert by private CA cert file, verified from clients using CA cert file' do |ca_key_passphrase|
         ca_cert_path = File.join(@certs_dir, "ca_cert.pem")
         ca_key_path = File.join(@certs_dir, "ca.key.pem")
-        ca_key_passphrase = "fooooooooooooooooooooooooo"
         create_ca_pair_signed_by_self(ca_cert_path, ca_key_path, ca_key_passphrase)
 
         transport_opts = {
           'ca_cert_path' => ca_cert_path,
           'ca_private_key_path' => ca_key_path,
-          'ca_private_key_passphrase' => ca_key_passphrase,
         }
+        transport_opts['ca_private_key_passphrase'] = ca_key_passphrase if ca_key_passphrase
         transport_conf = config_element('transport', 'tls', transport_opts)
         conf = config_element('match', 'tag.*', {}, [transport_conf])
 
@@ -1104,22 +1110,22 @@ class ServerPluginHelperTest < Test::Unit::TestCase
         assert_equal "yay\nfoo\n", received
       end
 
-      test 'load static server cert by private CA cert file, verified from clients using CA cert file' do
+      data('with passphrase' => ["foooooooo", "yaaaaaaaaaaaaaaaaaaay"],
+           'without passphrase'  => [nil, nil])
+      test 'load static server cert by private CA cert file, verified from clients using CA cert file' do |(ca_key_passphrase, private_key_passphrase)|
         ca_cert_path = File.join(@certs_dir, "ca_cert.pem")
         ca_key_path = File.join(@certs_dir, "ca.key.pem")
-        ca_key_passphrase = "foooooooo"
         create_ca_pair_signed_by_self(ca_cert_path, ca_key_path, ca_key_passphrase)
 
         cert_path = File.join(@server_cert_dir, "cert.pem")
         private_key_path = File.join(@certs_dir, "server.key.pem")
-        private_key_passphrase = "yaaaaaaaaaaaaaaaaaaay"
         create_server_pair_signed_by_ca(ca_cert_path, ca_key_path, ca_key_passphrase, cert_path, private_key_path, private_key_passphrase)
 
         transport_opts = {
           'cert_path' => cert_path,
           'private_key_path' => private_key_path,
-          'private_key_passphrase' => private_key_passphrase,
         }
+        transport_opts['private_key_passphrase'] = private_key_passphrase if private_key_passphrase
         transport_conf = config_element('transport', 'tls', transport_opts)
         conf = config_element('match', 'tag.*', {}, [transport_conf])
 
@@ -1137,20 +1143,20 @@ class ServerPluginHelperTest < Test::Unit::TestCase
         assert_equal "yay\nfoo\n", received
       end
 
-      test 'load chained server cert by private CA cert file, verified from clients using CA cert file as root' do
+      data('with passphrase' => ["foooooooo", "yaaaaaaaaaaaaaaaaaaay"],
+           'without passphrase'  => [nil, nil])
+      test 'load chained server cert by private CA cert file, verified from clients using CA cert file as root' do |(ca_key_passphrase, private_key_passphrase)|
         ca_cert_path = File.join(@certs_dir, "ca_cert.pem")
         ca_key_path = File.join(@certs_dir, "ca.key.pem")
-        ca_key_passphrase = "foooooooo"
         cert_path = File.join(@server_cert_dir, "cert.pem")
         private_key_path = File.join(@certs_dir, "server.key.pem")
-        private_key_passphrase = "yaaaaaaaaaaaaaaaaaaay"
         create_server_pair_chained_with_root_ca(ca_cert_path, ca_key_path, ca_key_passphrase, cert_path, private_key_path, private_key_passphrase)
 
         transport_opts = {
           'cert_path' => cert_path,
           'private_key_path' => private_key_path,
-          'private_key_passphrase' => private_key_passphrase,
         }
+        transport_opts['private_key_passphrase'] = private_key_passphrase if private_key_passphrase
         transport_conf = config_element('transport', 'tls', transport_opts)
         conf = config_element('match', 'tag.*', {}, [transport_conf])
 

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: fluentd
 version: !ruby/object:Gem::Version
-  version: 0.14.16
+  version: 0.14.17
 platform: ruby
 authors:
 - Sadayuki Furuhashi
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2017-05-14 00:00:00.000000000 Z
+date: 2017-05-30 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: msgpack