Releases: cloudnativelabs/kube-router
v1.0.0-rc2
We are excited to release rc2 candidate for v1.0 release.
thanks @rmb938 @CertainLach @mrueg @ufou @ldx @bumyongchoi @filintod @aauren @paulbsch for your contribution
Changelog
f695c75 Merge pull request #892 from cloudnativelabs/proxy-healtchecks
e04ac66 ensure hearbeats are sent during sync done for add/delete/update events of service, endpoints
361d6fe outbound traffic from pod should be intercepted in filter table INPUT chain (#891)
df40aa5 push multi-arch images to the dev registry (#890)
1af329c nflog the packet that will be dropped by network policy enforcement (#889)
f3ea1a6 Merge pull request #888 from CertainLach/master
86ebd28 Fix for same issue as #750, but for network_routes_controller
21ea5a5 Add multi-arch support for container images. (#885)
2462137 .travis.yml: Update manifest-tool to 1.0.2 (#886)
ea4f2db Merge pull request #747 from ufou/enable_bgp_restart_default
6640c65 mount host /run/xtables.lock to kube-router container which will be (#884)
ffad338 Handle missing routing tables (#865)
f5db29e honor the ClientIP session affinity timeout when set. (#882)
7777b9a use Spec.PolicyTypes for the type of network policy (#883)
0f21f87 withdraw external IP from advertisement only if the deleted service is the last service using external IP (#850)
3e67159 Update selectors to allow matchexpressions as well as matlabels (#881)
b5e9bd3 intercept pod egress traffic going through the OUTPUT chain of filter table and run through the (#875)
4c764f5 handle DeletedFinalStateUnknown objects in DeleteFunc handlers (#856)
19e5637 switch --set to less ambiguous --match-set (#874)
2c4911b Fix unit test failure due to switch of listing node API objects from (#869)
d838253 Add Numberly to USERS.md (#867)
33724aa read the necessary API objects from local cache instead of listing from the API server (#864)
5c5dc41 add Globo.com to USERS.md (#858)
945a8ca Update USERS.md (#857)
3b9f22b add enix as user (#855)
c857f5d add DigitalOcean to USERS.md (#852)
97ec4dd adding kube-router users list (#851)
0857436 use endpoint (IP, port) tuple to track active endpoints of a service in use. Currently only endpoint IP (#842)
4f627bc Enable ppc64le builds (#847)
8f0bcfb Enabling --bgp-graceful-restart by default when the router component is deployed via daemonset
v1.0.0-rc1
Note: Please note behaviour change that is introduced by 13421da. Functionally service proxy will remain same but kube-router now will internally use SNAT instead of MASQUERADE
Changelog
9db9a49 populate pod CID in network routing controler to simulate reading from node spec once at begining (#844)
148736b fix gofmt
459e52e fix unhealthy on api server down (#813)
97c682e Ignore deletion of unknown IPVS rules (#830)
13421da Use SNAT instead of MASQUERADE to source NAT outbound IPVS traffic (#668)
v0.4.0
restrict externalTrafficPolicy=Local interpretation only to NodePort …
v0.4.0-rc3
v0.4.0-rc2
Changelog
5671c3a fix .goreleaser.yml (#837)
53e0571 fix broken CI (#823)
f01a9a5 Revert "restrict externalTrafficPolicy=Local interpretation only to NodePort and LoadBalancer services (#819)" (#835)
27ec314 restrict externalTrafficPolicy=Local interpretation only to NodePort and LoadBalancer services (#819)
c160e90 [FIX] Don't ignore silently service proxy errors. (#796)
8bcd166 Fix connection resets during firewall sync (#807)
3a0da2b fix build break due to commit 05d03e7 (#817)
52e338d Add PriorityClass and docs update (#816)
05d03e7 #797 Conditionally disable "Allow All" input/chain on IPVS KUBE-ROUTER-SERVICES (#809)
ff6a024 set cniVersion in 10-kuberouter.conf (#811)
a339d8a remove stale project sponsorships (#805)
v0.4.0-rc1
Changelog
d6f9f31 Fix: Send BGP Withdrawals for Service VIPs Upon Service Deletion (#756)
3aacd48 fix clusteripprefixset import policy (#771)
803bd90 Allow setting the BGP graceful restart deferral time. See RFC4724 4.1 (#753)
b54b80c update to apps/v1 and add selector (#759)
4afd6d6 Updated the kube-proxy cleanup command to use the newer version (#762)
94fd7b6 Send heartbeats during NetworkPolicy and NetworkService sync. (#741)
6470795 Use x/sys/unix epoll (#737)
8fe9f70 Add Import Policy for Service VIPs (#721)
4be51ba First stab at pushing multiarch releases (#735)
v0.3.2
WARNING: this release has a regression where service VIPs may not be advertised properly. Please use v0.4.0-rc1 instead.
Changelog
42a046b Send heartbeats during NetworkPolicy and NetworkService sync. (#741)
v0.3.1
v0.3.0
Changelog
New Features
54eedcd Issue 572 - Graceful termination + Update to go-1.10.8, alpine-3.9 (#706)
8f9729a Introduces the option --overlay-type={subnet,full}, to be able to always generate IPIP tunnels regardless of node subnets (#666)
736757d Support named port of network policy (#679)
Bug Fixes
7181d6f Prefer node PodCIDR from an annotation (#720)
e230176 docs,pkgs: change 'can not' to 'cannot' (#701)
c2f893f default cni config to list format (#690)
375ccc2 Minor typo fix in logs (#700)
fac0663 add Jimmy to maintainers (#687)
70969a3 Add iptables rules for accessing tunneled services from node (#682)
42997cb Delete iptables rule if --masquerade-all is false (#665)
961d8ab fix #639 (#670)
7b20ae9 document workaround for #676 (#677)
a63d386 fix typo (#673)
ffc37f7 remove gitter and add slack as community forum
00824cd Fix typo (#661)
52127e6 Fix ’make test’ when GOPATH contains multiple paths (#658)
34666a1 Run ‘go generate’ from %_moq.go target in docker when BUILD_IN_DOCKER is true (#660)
v0.2.5
This release has two security fixes (#648, #649) and other small fixes
Thanks to all the contributors.
Changelog
1876993 Removes IPv6 address insertion into BGP IPv4-only nexthop field. (#606)
e99b694 make gobgp grpc server listen only nodeip and 127.0.0.1 (#649)
62d0e86 handle network policies with named ports gracefully (#648)
a93dec2 fix: broken links in contributing guide (#650)
0599a27 Add iptables INPUT rules for tunneled services (#610)
f07ec53 avoid duplicate peer pods in npc rules variables (#634)
bdfdc12 when use multiple registries for pulling images in container runtime, we need specify which registry will use exacly (#645)
a968b2b cleanup local routes if nexthop moves outside host subnet (#629)
11ae253 Validate the presence of port definitions before attempting to access (#643)