github cert-manager/cert-manager v1.5.0-alpha.0

latest releases: v1.9.1, v1.9.0, v1.9.0-beta.1...
pre-release12 months ago

Release notes for v1.5.0-alpha.0

Changelog since v1.4.0

Changes by Kind

Feature

  • Added a new optional controller: gateway-shim. cert-manager now supports automatic
    creation of ACME certificates for the sig-network Gateway API Gateway, when annotated
    similarly to existing support for Ingresses. (#4158, @maelvls)
  • Added the kubectl 'cert-manager check api' command (#4205, @inteon)
  • Adds CLI command: ctl experimental create certificatesigningrequest for creating a Kuberenetes CertificateSigningRequest based upon a cert-manager Certificate manifest file (#4106, @JoshVanL)
  • Adds clock_time_seconds metric for calculating expiration time in monitoring systems without a built in function. (#4105, @kit837)
  • Adds support for Ed25519 private keys and signatures for Certificates (#4079, @annerajb)
  • Cert-manager is now able to sign CertificateSigningRequests using the SelfSigned issuer. Note that
    the CertificateSigningRequests support is experimental and requires the use of a flag on the
    controller: --feature-gates=ExperimentalCertificateSigningRequestControllers=true (#4100, @JoshVanL)
  • Cert-manager is now able to sign CertificateSigningRequests using the Vault issuer. Note that
    the CertificateSigningRequests support is experimental and requires the use of a flag on the
    controller: --feature-gates=ExperimentalCertificateSigningRequestControllers=true (#4103, @JoshVanL)
  • Reduce binary sizes by adding "-s -w" as ldflags (#4169, @inteon)
  • kubectl cert-manager x install command is added (#4138, @inteon)

Bug or Regression

  • Cloudflare: Refactored DNS01 challenge to use API for finding the nearest Zone (fixing potential DNS-Issues) (#4147, @thiscantbeserious)
  • Fix a bug where failed Certificate Requests were not retried (#4130, @irbekrm)
  • Fixes a bug where the default cert renewal duration (30d) was clashing with the duration of certs issued by Vault PKI. All Certificates are now renewed 2/3 through the duration unless custom renew period specified by setting spec.renewBefore on the Certificate. (#4092, @irbekrm)
  • Set correct labels on resources in static manifest yaml files (#4190, @inteon)

Other (Cleanup or Flake)

  • Adds conformance E2E suite for CertificateSigningRequests (#4101, @JoshVanL)
  • Minor cleanup of make targets, to prepare for more use of make in cert-mangaer (#4109, @SgtCoDFish)
  • Pre-v1 cert-manager resource requests now must be converted to v1 in order to be validated/mutated by admission webhooks. (Default cert-manager validating and mutating webhook configurations ensure the resource requests are being converted) (#4172, @irbekrm)
  • Reduce binary sizes by adding "-w" as ldflag (#4181, @inteon)
  • Regression: CertificateSigningRequests will no longer have a experimental.cert-manager.io/ca annotation set. (#4143, @JoshVanL)

Dependencies

Added

  • bazil.org/fuse: 371fbbd
  • github.com/DATA-DOG/go-sqlmock: v1.5.0
  • github.com/Masterminds/goutils: v1.1.1
  • github.com/Masterminds/semver/v3: v3.1.1
  • github.com/Masterminds/sprig/v3: v3.2.2
  • github.com/Masterminds/squirrel: v1.5.0
  • github.com/Masterminds/vcs: v1.13.1
  • github.com/Microsoft/go-winio: v0.4.16
  • github.com/Microsoft/hcsshim: v0.8.14
  • github.com/Shopify/logrus-bugsnag: 577dee2
  • github.com/ahmetb/gen-crd-api-reference-docs: df869c1
  • github.com/bitly/go-simplejson: v0.5.0
  • github.com/bmizerany/assert: b7ed37b
  • github.com/bshuster-repo/logrus-logstash-hook: v0.4.1
  • github.com/bugsnag/bugsnag-go: b1d1530
  • github.com/bugsnag/osext: 0dd3f91
  • github.com/bugsnag/panicwrap: e2c2850
  • github.com/cilium/ebpf: 4032b1d
  • github.com/containerd/cgroups: 0dbf7f0
  • github.com/containerd/console: c12b1e7
  • github.com/containerd/containerd: v1.4.4
  • github.com/containerd/continuity: 1805252
  • github.com/containerd/fifo: a9fb20d
  • github.com/containerd/go-runc: 5a6d9f3
  • github.com/containerd/ttrpc: 0e0f228
  • github.com/containerd/typeurl: a93fcdb
  • github.com/coreos/go-systemd/v22: v22.0.0
  • github.com/cyphar/filepath-securejoin: v0.2.2
  • github.com/deislabs/oras: v0.11.1
  • github.com/denisenkom/go-mssqldb: cfbb681
  • github.com/denverdino/aliyungo: a747050
  • github.com/dnaeon/go-vcr: v1.0.1
  • github.com/docker/cli: v20.10.5+incompatible
  • github.com/docker/docker-credential-helpers: v0.6.3
  • github.com/docker/go-connections: v0.4.0
  • github.com/docker/go-metrics: 399ea8c
  • github.com/docker/libtrust: fa56704
  • github.com/garyburd/redigo: 535138d
  • github.com/go-ini/ini: v1.25.4
  • github.com/go-kit/log: v0.1.0
  • github.com/go-task/slim-sprig: 348f09d
  • github.com/gobuffalo/envy: v1.7.1
  • github.com/gobuffalo/logger: v1.0.1
  • github.com/gobuffalo/packd: v0.3.0
  • github.com/gobuffalo/packr/v2: v2.7.1
  • github.com/gobwas/glob: v0.2.3
  • github.com/godbus/dbus/v5: v5.0.3
  • github.com/godror/godror: v0.13.3
  • github.com/gofrs/flock: v0.8.0
  • github.com/golang-sql/civil: cb61b32
  • github.com/gorilla/handlers: 60c7bfd
  • github.com/gosuri/uitable: v0.0.4
  • github.com/hpcloud/tail: v1.0.0
  • github.com/huandu/xstrings: v1.3.1
  • github.com/jmoiron/sqlx: v1.3.1
  • github.com/joho/godotenv: v1.3.0
  • github.com/lann/builder: 47ae307
  • github.com/lann/ps: 62de8c4
  • github.com/lib/pq: v1.10.0
  • github.com/marstr/guid: v1.1.0
  • github.com/mattn/go-oci8: v0.0.7
  • github.com/mattn/go-shellwords: v1.0.11
  • github.com/mattn/go-sqlite3: v1.14.6
  • github.com/mitchellh/osext: 5e2d6d4
  • github.com/morikuni/aec: v1.0.0
  • github.com/ncw/swift: v1.0.47
  • github.com/opencontainers/image-spec: v1.0.1
  • github.com/opencontainers/runc: v0.1.1
  • github.com/opencontainers/runtime-spec: v1.0.2
  • github.com/phayes/freeport: 95f893a
  • github.com/rubenv/sql-migrate: 8d140a1
  • github.com/satori/go.uuid: v1.2.0
  • github.com/shopspring/decimal: v1.2.0
  • github.com/yvasiyarov/go-metrics: 57bccd1
  • github.com/yvasiyarov/gorelic: a9bba5b
  • github.com/yvasiyarov/newrelic_platform_go: b21fdbd
  • github.com/ziutek/mymysql: v1.5.4
  • google.golang.org/cloud: 975617b
  • gopkg.in/fsnotify.v1: v1.4.7
  • gopkg.in/gorp.v1: v1.7.2
  • helm.sh/helm/v3: v3.6.2
  • rsc.io/letsencrypt: v0.0.3
  • sigs.k8s.io/gateway-api: v0.3.0

Changed

  • github.com/asaskevich/govalidator: f61b66f → 21a406d
  • github.com/docker/docker: be7ac8b → 9dc6525
  • github.com/evanphx/json-patch: v4.9.0+incompatible → v4.11.0+incompatible
  • github.com/fatih/color: v1.10.0 → v1.12.0
  • github.com/golang/protobuf: v1.4.3 → v1.5.2
  • github.com/google/go-cmp: v0.5.5 → v0.5.6
  • github.com/imdario/mergo: v0.3.11 → v0.3.12
  • github.com/json-iterator/go: v1.1.10 → v1.1.11
  • github.com/mitchellh/copystructure: v1.0.0 → v1.1.1
  • github.com/mitchellh/reflectwalk: v1.0.0 → v1.0.1
  • github.com/nxadm/tail: v1.4.4 → v1.4.8
  • github.com/onsi/ginkgo: v1.12.1 → v1.16.4
  • github.com/onsi/gomega: v1.10.1 → v1.14.0
  • github.com/prometheus/client_golang: v1.9.0 → v1.11.0
  • github.com/prometheus/common: v0.15.0 → v0.26.0
  • github.com/prometheus/procfs: v0.2.0 → v0.6.0
  • github.com/rogpeppe/go-internal: v1.3.0 → v1.4.0
  • github.com/russross/blackfriday/v2: v2.0.1 → v2.1.0
  • github.com/sirupsen/logrus: v1.7.0 → v1.8.1
  • github.com/spf13/cast: v1.3.0 → v1.3.1
  • github.com/stretchr/testify: v1.6.1 → v1.7.0
  • github.com/yuin/goldmark: v1.3.3 → v1.3.5
  • go.uber.org/atomic: v1.6.0 → v1.7.0
  • go.uber.org/multierr: v1.5.0 → v1.6.0
  • go.uber.org/zap: v1.16.0 → v1.17.0
  • golang.org/x/sys: 5e06dd2 → ebe580a
  • golang.org/x/time: f8bda1e → 38a9dc6
  • golang.org/x/tools: 6397a11 → v0.1.2
  • google.golang.org/protobuf: v1.25.0 → v1.26.0
  • k8s.io/api: v0.21.0 → v0.21.2
  • k8s.io/apiextensions-apiserver: v0.21.0 → v0.21.2
  • k8s.io/apimachinery: v0.21.0 → v0.21.2
  • k8s.io/apiserver: v0.21.0 → v0.21.2
  • k8s.io/cli-runtime: v0.21.0 → v0.21.1
  • k8s.io/client-go: v0.21.0 → v0.21.2
  • k8s.io/component-base: v0.21.0 → v0.21.2
  • k8s.io/component-helpers: v0.21.0 → v0.21.1
  • k8s.io/kubectl: v0.21.0 → v0.21.1
  • k8s.io/metrics: v0.21.0 → v0.21.1
  • k8s.io/utils: fddb29f → 6fdb442
  • sigs.k8s.io/apiserver-network-proxy/konnectivity-client: v0.0.15 → v0.0.19
  • sigs.k8s.io/controller-runtime: v0.9.0-beta.2 → v0.9.2
  • sigs.k8s.io/controller-tools: v0.6.0-beta.0 → v0.6.0
  • sigs.k8s.io/kustomize/api: v0.8.5 → v0.8.8
  • sigs.k8s.io/kustomize/cmd/config: v0.9.7 → v0.9.10
  • sigs.k8s.io/kustomize/kustomize/v4: v4.0.5 → v4.1.2
  • sigs.k8s.io/kustomize/kyaml: v0.10.15 → v0.10.17

Removed

  • sigs.k8s.io/testing_frameworks: v0.1.2

Don't miss a new cert-manager release

NewReleases is sending notifications on new releases.