Shuttl

Automatically retries to transfer coldToFrozen failures every 60 secs (configurable)

- Fixes Amazon S3 bug, where the aws.secret couldn't contain some characters. Now it can!
- Even more reliable bucket transfers!

* Fixed bug where if an indexer (which is a search peer) does not have Shuttl installed, the resulting error would result in missing values in the UI.
* Further tests on Hadoop 1.1.1

Splunk Shuttl 0.8.0 release is another major milestone release.

The main new feature is distributed Shuttl operations from the Splunk Search Head. This means that all Shuttl operations will operate on the entire cluster, and not on a per-indexer basis.

Actions include:
* Listing of archived buckets
* Thawing of archived buckets
* Flushing of archived buckets

There is no special configuration that needs to be done on the Search Head. Shuttl when installed on a Search Head will query the Search Head for all Search Peers (the Search Peers should all have Shuttl installed of course), and all Shuttl operations will be distributed operations.

Extensive testing has been done for distributed failure scenarios. However, if problems are encountered, please report them ASAP for them to be addressed.

Happy Shuttling!

Shuttl version 0.7.2 represents a significant leap in functionality. Thanks to our robust user base for the feature request ideas. Now, Shuttl is easier to setup, supports a new backend (Glacier), reduced archive latency, and full support for the latest Splunk 5.0.

In summary, new features include:

- Amazon Glacier storage! Amazon Glacier is an extremely low-cost storage service that provides secure and durable storage for data archiving and backup.
- Splunk 5.0 Clustering Support. Since Splunk replicates buckets, when archiving, any archiving script will by default get duplicate buckets. Shuttl will dedup buckets and not waste storage space.
- Shuttl now will move data when buckets are moved to cold. This means significantly reduced latency times, and data that is shuttled is also still available for search by Splunk!
- New simpler and easier configuration! and a script to test out backends, to verify the configuration is correct, without going through the whole exercise of indexing data and forcing a bucket roll.

* Shuttl tested on CDH3. There is a wirelevel incompatibility with CDH and Apache, so there's documents on how to configure Shuttl to work with CDH3 on the github wiki. https://github.com/splunk/splunk-shuttl/wiki/System-Requirements

* Fix spurious error message when a thaw request is issued while thaw is in progress. No duplicates happen, and all requests are serviced.

* Simplified the failed bucket transfer dashboard.

* When doing thaw operation, the UI can "return" and list a table, before the thaw action completes - Fix is to do thaw operation asynchronously, so the UI returns immediately, while job happens in background.

* Amazon S3 tested, and works with no code change - slight display issue for bucket sizes in the UI, bug filed.

Updates:
* Support for Flushing of Thawed Splunk Buckets via the UI

Known Issues being worked on:
* Quirks in the Thaw request UI
* S3 is not yet tested
* Failed buckets dashboard may report false failures