Releases: gardener/gardener-extension-shoot-cert-service
Releases · gardener/gardener-extension-shoot-cert-service
v1.44.2
[gardener/gardener-extension-shoot-cert-service]
🏃 Others
[OPERATOR]
The memory limit from thecert-controller-manager
Deployment is now removed. by @ialidzhikov [#287]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.44.2
v1.44.1
[gardener/gardener-extension-shoot-cert-service]
🐛 Bug Fixes
[OPERATOR]
An issue causing thecontrolledValues: RequestsOnly
field not to be set for theshoot-cert-management-seed-vpa
VPA is now fixed. by @ialidzhikov [#285]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.44.1
v1.44.0
[gardener/gardener-extension-shoot-cert-service]
🏃 Others
[OPERATOR]
Bumps github.com/gardener/gardener from 1.94.0 to 1.95.0. by @dependabot[bot] [#259][OPERATOR]
This extension is now using the new way of providing monitoring configuration (ref GEP-19) in case a shoot cluster's Prometheus has been migrated to management viaprometheus-operator
. by @rfranzke [#257][OPERATOR]
Bumps github.com/gardener/gardener from 1.93.0 to 1.94.0. by @dependabot[bot] [#255][OPERATOR]
Add permissions to manage configmaps for extension service account. by @MartinWeindel [#262]
[gardener/cert-management]
🏃 Others
[OPERATOR]
Bumps golang from 1.22.2 to 1.22.3. by @dependabot[bot] [gardener/cert-management#178][USER]
Support Istio apiVersionnetworking.istio.io/v1
by @MartinWeindel [gardener/cert-management#179]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.44.0
v1.43.1
[gardener/cert-management]
🐛 Bug Fixes
[USER]
Fix regression for annotations on ingress resources:dns.gardener.cloud/dnsnames
annotation must be ignored. by @MartinWeindel [gardener/cert-management@1dafe3a]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.43.1
v1.43.0
[gardener/gardener-extension-shoot-cert-service]
🏃 Others
[OPERATOR]
Bumps github.com/gardener/gardener from 1.91.0 to 1.92.0. by @dependabot[bot] [#249][OPERATOR]
Bumps golang from 1.22.1 to 1.22.2. by @dependabot[bot] [#247][OPERATOR]
Bumps github.com/gardener/gardener from 1.92.0 to 1.93.0. by @dependabot[bot] [#251][USER]
The defaults for the private key of new certificates have been changed fromRSA 2048bit
toRSA 3072bit
. Existing certificates will make use of these new defaults when they are renewed. by @gardener-robot-ci-3 [#253]
[gardener/cert-management]
✨ New Features
[USER]
The Istio resourceGateway
can now be annotated withcert.gardener.cloud/purpose=managed
to enable the automatic creation ofCertificate
resources for domain names extracted from hosts fields in this resource or relatedVirtualServices
resources.
TheGateway
andHTTPRoute
resources from the Gateway API are supported in a similar way. by @MartinWeindel [gardener/cert-management#174]
🏃 Others
[OPERATOR]
Fix cluster configuration for new source controllersistio-gateways-dns
andk8s-gateways-dns
. by @MartinWeindel [gardener/cert-management#175][OPERATOR]
Support deployment specific default values for private key algorithm and size with the new command line options--default-private-key-algorithm
,--default-rsa-private-key-size
,--default-ecdsa-private-key-size
by @MartinWeindel [gardener/cert-management#171]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.43.0
v1.42.0
[gardener/gardener-extension-shoot-cert-service]
⚠️ Breaking Changes
[OPERATOR]
extension-shoot-cert-service
no longer supports Shoots with Кubernetes version == 1.24. by @shafeeqes [#223]
🏃 Others
[OPERATOR]
Bumps github.com/gardener/gardener from 1.90.0 to 1.91.0. by @dependabot[bot] [#244][OPERATOR]
Bumps github.com/gardener/gardener from 1.89.0 to 1.90.0. by @dependabot[bot] [#238]
[gardener/cert-management]
✨ New Features
[USER]
The algorithm and size for the private key can now be specified in the certificate spec section to override the default algorithmRSA
with key size 2048.
Supported algorithms areRSA
andECDSA
. ForRSA
the allowed key sizes are2048
,3072
, and4096
with2048
as default is not specified explicitly. ForECDSA
the allowed key sizes are256
and384
with256
as default.
These algorithms and key sizes are supported by Let's Encrypt. For other ACME servers please check their documentation for information about supported combinations. by @MartinWeindel [gardener/cert-management#168]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.42.0
v1.41.0
[gardener/cert-management]
🐛 Bug Fixes
[USER]
Updating certificates from source objects (like Ingress or Service) with first domain name longer than 64 character failed, as the commonName field was filled. It must be left empty in this case. by @MartinWeindel [gardener/cert-management#164]
🏃 Others
[OPERATOR]
Bump golang from 1.22.0 to 1.22.1 by @MartinWeindel [gardener/cert-management#165]
[gardener/gardener-extension-shoot-cert-service]
🏃 Others
[OPERATOR]
Bumps golang from 1.22.0 to 1.22.1. by @dependabot[bot] [#236]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.41.0
v1.40.0
[gardener/gardener-extension-shoot-cert-service]
🏃 Others
[OPERATOR]
Bump github.com/gardener/gardener from 1.84.0 to 1.84.1. by @dependabot[bot] [#216][OPERATOR]
Bump github.com/gardener/gardener from 1.85.0 to 1.86.0. by @dependabot[bot] [#222][OPERATOR]
Bump github.com/gardener/gardener from 1.86.0 to 1.87.0. by @dependabot[bot] [#228][OPERATOR]
Bumps github.com/gardener/gardener from 1.87.0 to 1.88.0. by @dependabot[bot] [#232][OPERATOR]
Bumps github.com/gardener/gardener from 1.88.0 to 1.89.0. by @dependabot[bot] [#233][OPERATOR]
Bump github.com/gardener/gardener from 1.83.0 to 1.84.0. by @dependabot[bot] [#215][OPERATOR]
Bump github.com/gardener/gardener from 1.84.1 to 1.85.0. by @dependabot[bot] [#218][OPERATOR]
Bump github.com/gardener/gardener from 1.82.1 to 1.83.0. by @dependabot[bot] [#212][DEVELOPER]
Remove vendoring from project by @MartinWeindel [#227]
[gardener/cert-management]
⚠️ Breaking Changes
[OPERATOR]
Change OCI Image Registry from GCR (eu.gcr.io/gardener-project
) to Artifact-Registry (europe-docker.pkg.dev/gardener-project/releases
). Users should update their references.
by @ccwienk [gardener/cert-management#156]
✨ New Features
[USER]
Allow certificates without common name. As the common name is restricted to 64 characters, this means it is now possible to create certificates for domains longer than 64 characters without needing to set the common name to a shorter domain name. by @MartinWeindel [gardener/cert-management#150]
🏃 Others
[DEVELOPER]
Remove vendoring by @MartinWeindel [gardener/cert-management#157][OPERATOR]
Bump golang.org/x/crypto from 0.14.0 to 0.17.0 by @dependabot[bot] [gardener/cert-management#158][OPERATOR]
Update expirationDate if secret is shared between certs by @MartinWeindel [gardener/cert-management#152][OPERATOR]
Bumps golang from 1.21.5 to 1.21.6. by @dependabot[bot] [gardener/cert-management#159][OPERATOR]
Bumps golang from 1.21.3 to 1.21.4. by @dependabot[bot] [gardener/cert-management#148][OPERATOR]
Bumps golang from 1.21.4 to 1.21.5. by @dependabot[bot] [gardener/cert-management#154][OPERATOR]
Updated dependencies controller-manager-library and kubernetes fromv1.28.2
tov1.28.3
by @MartinWeindel [gardener/cert-management#149][OPERATOR]
Bumps golang from 1.21.6 to 1.22.0. by @dependabot[bot] [gardener/cert-management#161][USER]
Improve message if DNS entry is not getting ready. by @MartinWeindel [gardener/cert-management#151]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.40.0
v1.39.0
[gardener/gardener-extension-shoot-cert-service]
✨ New Features
[USER]
shoot-cert-service
extension now supports Shoot Force Deletion. by @acumino [#204]
🏃 Others
[OPERATOR]
Remove redundant short name forissuer
CustomResourceDefinition. by @MartinWeindel [#211][OPERATOR]
Bump github.com/gardener/gardener from 1.82.0 to 1.82.1. by @dependabot[bot] [#207][OPERATOR]
Bump github.com/gardener/gardener from 1.81.1 to 1.82.0. by @dependabot[bot] [#206]
[gardener/cert-management]
🏃 Others
[OPERATOR]
Bumps golang from 1.21.2 to 1.21.3. by @dependabot[bot] [gardener/cert-management#143][OPERATOR]
Removeissuer
short name for issuer CustomResourceDefinition as it is the same as the singular. by @MartinWeindel [gardener/cert-management#147][USER]
Support PKCS8 private keys for CA issuers by @MartinWeindel [gardener/cert-management#146]
Docker Images
gardener-extension-shoot-cert-service: eu.gcr.io/gardener-project/gardener/extensions/shoot-cert-service:v1.39.0
v1.38.0
[gardener/gardener-extension-shoot-cert-service]
🐛 Bug Fixes
[OPERATOR]
TheCustomResourceDefinition
s deployed to shoot clusters are now labelled withshoot.gardener.cloud/no-cleanup=true
to preventgardenlet
to deleting them during shoot deletion. by @MartinWeindel [#195][OPERATOR]
TheCustomResourceDefinition
s deployed to shoot clusters are now annotated withresources.gardener.cloud/skip-health-check=true
to preventgardener-resource-manager
from recreating them too fast during shoot deletion. by @rfranzke [#194]
🏃 Others
[OPERATOR]
Bumps golang from 1.21.0 to 1.21.1. by @dependabot[bot] [#193][OPERATOR]
The following dependency is updated:
[gardener/cert-management]
🐛 Bug Fixes
[OPERATOR]
Fix edge case of inconsistent certificate/secret: request certificate in this case. by @MartinWeindel [gardener/cert-management#138][USER]
Disable followCNAME by default again as it was activated implicitly by github.com/go-acme/lego version upgrade by @MartinWeindel [gardener/cert-management#140]
🏃 Others
[OPERATOR]
Bumps golang from 1.21.1 to 1.21.2. by @MartinWeindel [gardener/cert-management#142][OPERATOR]
Update k8s dependencies by updating controller-manager-library by @MartinWeindel [gardener/cert-management#142]