Releases: gardener/gardener-extension-shoot-cert-service
Releases · gardener/gardener-extension-shoot-cert-service
v1.44.0
[gardener/gardener-extension-shoot-cert-service]
🏃 Others
[OPERATOR]Bumps github.com/gardener/gardener from 1.94.0 to 1.95.0. by @dependabot[bot] [#259][OPERATOR]This extension is now using the new way of providing monitoring configuration (ref GEP-19) in case a shoot cluster's Prometheus has been migrated to management viaprometheus-operator. by @rfranzke [#257][OPERATOR]Bumps github.com/gardener/gardener from 1.93.0 to 1.94.0. by @dependabot[bot] [#255][OPERATOR]Add permissions to manage configmaps for extension service account. by @MartinWeindel [#262]
[gardener/cert-management]
🏃 Others
[OPERATOR]Bumps golang from 1.22.2 to 1.22.3. by @dependabot[bot] [gardener/cert-management#178][USER]Support Istio apiVersionnetworking.istio.io/v1by @MartinWeindel [gardener/cert-management#179]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.44.0
Contributors
MartinWeindel, rfranzke, and dependabot
Assets 3
v1.43.1
[gardener/cert-management]
🐛 Bug Fixes
[USER]Fix regression for annotations on ingress resources:dns.gardener.cloud/dnsnamesannotation must be ignored. by @MartinWeindel [gardener/cert-management@1dafe3a]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.43.1
Contributors
MartinWeindel
Assets 3
v1.43.0
[gardener/gardener-extension-shoot-cert-service]
🏃 Others
[OPERATOR]Bumps github.com/gardener/gardener from 1.91.0 to 1.92.0. by @dependabot[bot] [#249][OPERATOR]Bumps golang from 1.22.1 to 1.22.2. by @dependabot[bot] [#247][OPERATOR]Bumps github.com/gardener/gardener from 1.92.0 to 1.93.0. by @dependabot[bot] [#251][USER]The defaults for the private key of new certificates have been changed fromRSA 2048bittoRSA 3072bit. Existing certificates will make use of these new defaults when they are renewed. by @gardener-robot-ci-3 [#253]
[gardener/cert-management]
✨ New Features
[USER]The Istio resourceGatewaycan now be annotated withcert.gardener.cloud/purpose=managedto enable the automatic creation ofCertificateresources for domain names extracted from hosts fields in this resource or relatedVirtualServicesresources.
TheGatewayandHTTPRouteresources from the Gateway API are supported in a similar way. by @MartinWeindel [gardener/cert-management#174]
🏃 Others
[OPERATOR]Fix cluster configuration for new source controllersistio-gateways-dnsandk8s-gateways-dns. by @MartinWeindel [gardener/cert-management#175][OPERATOR]Support deployment specific default values for private key algorithm and size with the new command line options--default-private-key-algorithm,--default-rsa-private-key-size,--default-ecdsa-private-key-sizeby @MartinWeindel [gardener/cert-management#171]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.43.0
Contributors
MartinWeindel, dependabot, and gardener-robot-ci-3
Assets 3
v1.42.0
[gardener/gardener-extension-shoot-cert-service]
⚠️ Breaking Changes
[OPERATOR]extension-shoot-cert-serviceno longer supports Shoots with Кubernetes version == 1.24. by @shafeeqes [#223]
🏃 Others
[OPERATOR]Bumps github.com/gardener/gardener from 1.90.0 to 1.91.0. by @dependabot[bot] [#244][OPERATOR]Bumps github.com/gardener/gardener from 1.89.0 to 1.90.0. by @dependabot[bot] [#238]
[gardener/cert-management]
✨ New Features
[USER]The algorithm and size for the private key can now be specified in the certificate spec section to override the default algorithmRSAwith key size 2048.
Supported algorithms areRSAandECDSA. ForRSAthe allowed key sizes are2048,3072, and4096with2048as default is not specified explicitly. ForECDSAthe allowed key sizes are256and384with256as default.
These algorithms and key sizes are supported by Let's Encrypt. For other ACME servers please check their documentation for information about supported combinations. by @MartinWeindel [gardener/cert-management#168]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.42.0
Contributors
MartinWeindel, dependabot, and shafeeqes
Assets 3
v1.41.0
[gardener/cert-management]
🐛 Bug Fixes
[USER]Updating certificates from source objects (like Ingress or Service) with first domain name longer than 64 character failed, as the commonName field was filled. It must be left empty in this case. by @MartinWeindel [gardener/cert-management#164]
🏃 Others
[OPERATOR]Bump golang from 1.22.0 to 1.22.1 by @MartinWeindel [gardener/cert-management#165]
[gardener/gardener-extension-shoot-cert-service]
🏃 Others
[OPERATOR]Bumps golang from 1.22.0 to 1.22.1. by @dependabot[bot] [#236]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.41.0
Contributors
MartinWeindel and dependabot
Assets 3
v1.40.0
[gardener/gardener-extension-shoot-cert-service]
🏃 Others
[OPERATOR]Bump github.com/gardener/gardener from 1.84.0 to 1.84.1. by @dependabot[bot] [#216][OPERATOR]Bump github.com/gardener/gardener from 1.85.0 to 1.86.0. by @dependabot[bot] [#222][OPERATOR]Bump github.com/gardener/gardener from 1.86.0 to 1.87.0. by @dependabot[bot] [#228][OPERATOR]Bumps github.com/gardener/gardener from 1.87.0 to 1.88.0. by @dependabot[bot] [#232][OPERATOR]Bumps github.com/gardener/gardener from 1.88.0 to 1.89.0. by @dependabot[bot] [#233][OPERATOR]Bump github.com/gardener/gardener from 1.83.0 to 1.84.0. by @dependabot[bot] [#215][OPERATOR]Bump github.com/gardener/gardener from 1.84.1 to 1.85.0. by @dependabot[bot] [#218][OPERATOR]Bump github.com/gardener/gardener from 1.82.1 to 1.83.0. by @dependabot[bot] [#212][DEVELOPER]Remove vendoring from project by @MartinWeindel [#227]
[gardener/cert-management]
⚠️ Breaking Changes
[OPERATOR]Change OCI Image Registry from GCR (eu.gcr.io/gardener-project) to Artifact-Registry (europe-docker.pkg.dev/gardener-project/releases). Users should update their references.
by @ccwienk [gardener/cert-management#156]
✨ New Features
[USER]Allow certificates without common name. As the common name is restricted to 64 characters, this means it is now possible to create certificates for domains longer than 64 characters without needing to set the common name to a shorter domain name. by @MartinWeindel [gardener/cert-management#150]
🏃 Others
[DEVELOPER]Remove vendoring by @MartinWeindel [gardener/cert-management#157][OPERATOR]Bump golang.org/x/crypto from 0.14.0 to 0.17.0 by @dependabot[bot] [gardener/cert-management#158][OPERATOR]Update expirationDate if secret is shared between certs by @MartinWeindel [gardener/cert-management#152][OPERATOR]Bumps golang from 1.21.5 to 1.21.6. by @dependabot[bot] [gardener/cert-management#159][OPERATOR]Bumps golang from 1.21.3 to 1.21.4. by @dependabot[bot] [gardener/cert-management#148][OPERATOR]Bumps golang from 1.21.4 to 1.21.5. by @dependabot[bot] [gardener/cert-management#154][OPERATOR]Updated dependencies controller-manager-library and kubernetes fromv1.28.2tov1.28.3by @MartinWeindel [gardener/cert-management#149][OPERATOR]Bumps golang from 1.21.6 to 1.22.0. by @dependabot[bot] [gardener/cert-management#161][USER]Improve message if DNS entry is not getting ready. by @MartinWeindel [gardener/cert-management#151]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.40.0
Contributors
MartinWeindel, ccwienk, and dependabot
Assets 3
v1.39.0
[gardener/gardener-extension-shoot-cert-service]
✨ New Features
[USER]shoot-cert-serviceextension now supports Shoot Force Deletion. by @acumino [#204]
🏃 Others
[OPERATOR]Remove redundant short name forissuerCustomResourceDefinition. by @MartinWeindel [#211][OPERATOR]Bump github.com/gardener/gardener from 1.82.0 to 1.82.1. by @dependabot[bot] [#207][OPERATOR]Bump github.com/gardener/gardener from 1.81.1 to 1.82.0. by @dependabot[bot] [#206]
[gardener/cert-management]
🏃 Others
[OPERATOR]Bumps golang from 1.21.2 to 1.21.3. by @dependabot[bot] [gardener/cert-management#143][OPERATOR]Removeissuershort name for issuer CustomResourceDefinition as it is the same as the singular. by @MartinWeindel [gardener/cert-management#147][USER]Support PKCS8 private keys for CA issuers by @MartinWeindel [gardener/cert-management#146]
Docker Images
gardener-extension-shoot-cert-service: eu.gcr.io/gardener-project/gardener/extensions/shoot-cert-service:v1.39.0
Contributors
MartinWeindel, dependabot, and acumino
Assets 3
v1.38.0
[gardener/gardener-extension-shoot-cert-service]
🐛 Bug Fixes
[OPERATOR]TheCustomResourceDefinitions deployed to shoot clusters are now labelled withshoot.gardener.cloud/no-cleanup=trueto preventgardenletto deleting them during shoot deletion. by @MartinWeindel [#195][OPERATOR]TheCustomResourceDefinitions deployed to shoot clusters are now annotated withresources.gardener.cloud/skip-health-check=trueto preventgardener-resource-managerfrom recreating them too fast during shoot deletion. by @rfranzke [#194]
🏃 Others
[OPERATOR]Bumps golang from 1.21.0 to 1.21.1. by @dependabot[bot] [#193][OPERATOR]The following dependency is updated:
[gardener/cert-management]
🐛 Bug Fixes
[OPERATOR]Fix edge case of inconsistent certificate/secret: request certificate in this case. by @MartinWeindel [gardener/cert-management#138][USER]Disable followCNAME by default again as it was activated implicitly by github.com/go-acme/lego version upgrade by @MartinWeindel [gardener/cert-management#140]
🏃 Others
[OPERATOR]Bumps golang from 1.21.1 to 1.21.2. by @MartinWeindel [gardener/cert-management#142][OPERATOR]Update k8s dependencies by updating controller-manager-library by @MartinWeindel [gardener/cert-management#142]
Contributors
MartinWeindel, rfranzke, and 2 other contributors
Assets 3
v1.37.2
[gardener/gardener-extension-shoot-cert-service]
🐛 Bug Fixes
[OPERATOR]TheCustomResourceDefinitions deployed to shoot clusters are now annotated withresources.gardener.cloud/skip-health-check=trueto preventgardener-resource-managerfrom recreating them too fast during shoot deletion. byJohannes Scheerer <johannes.scheerer@sap.com>[$7ab1bd02618105eed26fbdd829016be587ad0891]
v1.37.1
[gardener/cert-management]
🐛 Bug Fixes
[OPERATOR]Fix edge case of inconsistent certificate/secret: request certificate in this case. by @MartinWeindel [gardener/cert-management@dbff065][USER]Disable followCNAME by default again as it was activated implicitly by github.com/go-acme/lego version upgrade by @MartinWeindel [gardener/cert-management@dbff065]
Contributors
MartinWeindel