Release notes for v1.5.0-alpha.0
Changelog since v1.4.0
Changes by Kind
Feature
- Added a new optional controller: gateway-shim. cert-manager now supports automatic
creation of ACME certificates for the sig-network Gateway API Gateway, when annotated
similarly to existing support for Ingresses. (#4158, @maelvls) - Added the kubectl 'cert-manager check api' command (#4205, @inteon)
- Adds CLI command:
ctl experimental create certificatesigningrequestfor creating a Kuberenetes CertificateSigningRequest based upon a cert-manager Certificate manifest file (#4106, @JoshVanL) - Adds clock_time_seconds metric for calculating expiration time in monitoring systems without a built in function. (#4105, @kit837)
- Adds support for Ed25519 private keys and signatures for Certificates (#4079, @annerajb)
- Cert-manager is now able to sign CertificateSigningRequests using the SelfSigned issuer. Note that
the CertificateSigningRequests support is experimental and requires the use of a flag on the
controller:--feature-gates=ExperimentalCertificateSigningRequestControllers=true(#4100, @JoshVanL) - Cert-manager is now able to sign CertificateSigningRequests using the Vault issuer. Note that
the CertificateSigningRequests support is experimental and requires the use of a flag on the
controller:--feature-gates=ExperimentalCertificateSigningRequestControllers=true(#4103, @JoshVanL) - Reduce binary sizes by adding "-s -w" as ldflags (#4169, @inteon)
kubectl cert-manager x installcommand is added (#4138, @inteon)
Bug or Regression
- Cloudflare: Refactored DNS01 challenge to use API for finding the nearest Zone (fixing potential DNS-Issues) (#4147, @thiscantbeserious)
- Fix a bug where failed Certificate Requests were not retried (#4130, @irbekrm)
- Fixes a bug where the default cert renewal duration (30d) was clashing with the duration of certs issued by Vault PKI. All Certificates are now renewed 2/3 through the duration unless custom renew period specified by setting spec.renewBefore on the Certificate. (#4092, @irbekrm)
- Set correct labels on resources in static manifest yaml files (#4190, @inteon)
Other (Cleanup or Flake)
- Adds conformance E2E suite for CertificateSigningRequests (#4101, @JoshVanL)
- Minor cleanup of make targets, to prepare for more use of make in cert-mangaer (#4109, @SgtCoDFish)
- Pre-v1 cert-manager resource requests now must be converted to v1 in order to be validated/mutated by admission webhooks. (Default cert-manager validating and mutating webhook configurations ensure the resource requests are being converted) (#4172, @irbekrm)
- Reduce binary sizes by adding "-w" as ldflag (#4181, @inteon)
- Regression: CertificateSigningRequests will no longer have a
experimental.cert-manager.io/caannotation set. (#4143, @JoshVanL)
Dependencies
Added
- bazil.org/fuse: 371fbbd
- github.com/DATA-DOG/go-sqlmock: v1.5.0
- github.com/Masterminds/goutils: v1.1.1
- github.com/Masterminds/semver/v3: v3.1.1
- github.com/Masterminds/sprig/v3: v3.2.2
- github.com/Masterminds/squirrel: v1.5.0
- github.com/Masterminds/vcs: v1.13.1
- github.com/Microsoft/go-winio: v0.4.16
- github.com/Microsoft/hcsshim: v0.8.14
- github.com/Shopify/logrus-bugsnag: 577dee2
- github.com/ahmetb/gen-crd-api-reference-docs: df869c1
- github.com/bitly/go-simplejson: v0.5.0
- github.com/bmizerany/assert: b7ed37b
- github.com/bshuster-repo/logrus-logstash-hook: v0.4.1
- github.com/bugsnag/bugsnag-go: b1d1530
- github.com/bugsnag/osext: 0dd3f91
- github.com/bugsnag/panicwrap: e2c2850
- github.com/cilium/ebpf: 4032b1d
- github.com/containerd/cgroups: 0dbf7f0
- github.com/containerd/console: c12b1e7
- github.com/containerd/containerd: v1.4.4
- github.com/containerd/continuity: 1805252
- github.com/containerd/fifo: a9fb20d
- github.com/containerd/go-runc: 5a6d9f3
- github.com/containerd/ttrpc: 0e0f228
- github.com/containerd/typeurl: a93fcdb
- github.com/coreos/go-systemd/v22: v22.0.0
- github.com/cyphar/filepath-securejoin: v0.2.2
- github.com/deislabs/oras: v0.11.1
- github.com/denisenkom/go-mssqldb: cfbb681
- github.com/denverdino/aliyungo: a747050
- github.com/dnaeon/go-vcr: v1.0.1
- github.com/docker/cli: v20.10.5+incompatible
- github.com/docker/docker-credential-helpers: v0.6.3
- github.com/docker/go-connections: v0.4.0
- github.com/docker/go-metrics: 399ea8c
- github.com/docker/libtrust: fa56704
- github.com/garyburd/redigo: 535138d
- github.com/go-ini/ini: v1.25.4
- github.com/go-kit/log: v0.1.0
- github.com/go-task/slim-sprig: 348f09d
- github.com/gobuffalo/envy: v1.7.1
- github.com/gobuffalo/logger: v1.0.1
- github.com/gobuffalo/packd: v0.3.0
- github.com/gobuffalo/packr/v2: v2.7.1
- github.com/gobwas/glob: v0.2.3
- github.com/godbus/dbus/v5: v5.0.3
- github.com/godror/godror: v0.13.3
- github.com/gofrs/flock: v0.8.0
- github.com/golang-sql/civil: cb61b32
- github.com/gorilla/handlers: 60c7bfd
- github.com/gosuri/uitable: v0.0.4
- github.com/hpcloud/tail: v1.0.0
- github.com/huandu/xstrings: v1.3.1
- github.com/jmoiron/sqlx: v1.3.1
- github.com/joho/godotenv: v1.3.0
- github.com/lann/builder: 47ae307
- github.com/lann/ps: 62de8c4
- github.com/lib/pq: v1.10.0
- github.com/marstr/guid: v1.1.0
- github.com/mattn/go-oci8: v0.0.7
- github.com/mattn/go-shellwords: v1.0.11
- github.com/mattn/go-sqlite3: v1.14.6
- github.com/mitchellh/osext: 5e2d6d4
- github.com/morikuni/aec: v1.0.0
- github.com/ncw/swift: v1.0.47
- github.com/opencontainers/image-spec: v1.0.1
- github.com/opencontainers/runc: v0.1.1
- github.com/opencontainers/runtime-spec: v1.0.2
- github.com/phayes/freeport: 95f893a
- github.com/rubenv/sql-migrate: 8d140a1
- github.com/satori/go.uuid: v1.2.0
- github.com/shopspring/decimal: v1.2.0
- github.com/yvasiyarov/go-metrics: 57bccd1
- github.com/yvasiyarov/gorelic: a9bba5b
- github.com/yvasiyarov/newrelic_platform_go: b21fdbd
- github.com/ziutek/mymysql: v1.5.4
- google.golang.org/cloud: 975617b
- gopkg.in/fsnotify.v1: v1.4.7
- gopkg.in/gorp.v1: v1.7.2
- helm.sh/helm/v3: v3.6.2
- rsc.io/letsencrypt: v0.0.3
- sigs.k8s.io/gateway-api: v0.3.0
Changed
- github.com/asaskevich/govalidator: f61b66f → 21a406d
- github.com/docker/docker: be7ac8b → 9dc6525
- github.com/evanphx/json-patch: v4.9.0+incompatible → v4.11.0+incompatible
- github.com/fatih/color: v1.10.0 → v1.12.0
- github.com/golang/protobuf: v1.4.3 → v1.5.2
- github.com/google/go-cmp: v0.5.5 → v0.5.6
- github.com/imdario/mergo: v0.3.11 → v0.3.12
- github.com/json-iterator/go: v1.1.10 → v1.1.11
- github.com/mitchellh/copystructure: v1.0.0 → v1.1.1
- github.com/mitchellh/reflectwalk: v1.0.0 → v1.0.1
- github.com/nxadm/tail: v1.4.4 → v1.4.8
- github.com/onsi/ginkgo: v1.12.1 → v1.16.4
- github.com/onsi/gomega: v1.10.1 → v1.14.0
- github.com/prometheus/client_golang: v1.9.0 → v1.11.0
- github.com/prometheus/common: v0.15.0 → v0.26.0
- github.com/prometheus/procfs: v0.2.0 → v0.6.0
- github.com/rogpeppe/go-internal: v1.3.0 → v1.4.0
- github.com/russross/blackfriday/v2: v2.0.1 → v2.1.0
- github.com/sirupsen/logrus: v1.7.0 → v1.8.1
- github.com/spf13/cast: v1.3.0 → v1.3.1
- github.com/stretchr/testify: v1.6.1 → v1.7.0
- github.com/yuin/goldmark: v1.3.3 → v1.3.5
- go.uber.org/atomic: v1.6.0 → v1.7.0
- go.uber.org/multierr: v1.5.0 → v1.6.0
- go.uber.org/zap: v1.16.0 → v1.17.0
- golang.org/x/sys: 5e06dd2 → ebe580a
- golang.org/x/time: f8bda1e → 38a9dc6
- golang.org/x/tools: 6397a11 → v0.1.2
- google.golang.org/protobuf: v1.25.0 → v1.26.0
- k8s.io/api: v0.21.0 → v0.21.2
- k8s.io/apiextensions-apiserver: v0.21.0 → v0.21.2
- k8s.io/apimachinery: v0.21.0 → v0.21.2
- k8s.io/apiserver: v0.21.0 → v0.21.2
- k8s.io/cli-runtime: v0.21.0 → v0.21.1
- k8s.io/client-go: v0.21.0 → v0.21.2
- k8s.io/component-base: v0.21.0 → v0.21.2
- k8s.io/component-helpers: v0.21.0 → v0.21.1
- k8s.io/kubectl: v0.21.0 → v0.21.1
- k8s.io/metrics: v0.21.0 → v0.21.1
- k8s.io/utils: fddb29f → 6fdb442
- sigs.k8s.io/apiserver-network-proxy/konnectivity-client: v0.0.15 → v0.0.19
- sigs.k8s.io/controller-runtime: v0.9.0-beta.2 → v0.9.2
- sigs.k8s.io/controller-tools: v0.6.0-beta.0 → v0.6.0
- sigs.k8s.io/kustomize/api: v0.8.5 → v0.8.8
- sigs.k8s.io/kustomize/cmd/config: v0.9.7 → v0.9.10
- sigs.k8s.io/kustomize/kustomize/v4: v4.0.5 → v4.1.2
- sigs.k8s.io/kustomize/kyaml: v0.10.15 → v0.10.17
Removed
- sigs.k8s.io/testing_frameworks: v0.1.2