ยซ Changelog History


conduit v19.10.5 Release Notes

  • ๐Ÿš€ This edge release adds support for integrating Linkerd's PKI with an external ๐Ÿ‘ certificate issuer such as cert-manager, adds distributed tracing support to the Linkerd control plane, and adds protection against DNS rebinding ๐ŸŒ attacks to the web dashboard. In addition, it includes several improvements to the Linkerd CLI.

    • CLI
      • Added a new --identity-external-issuer flag to linkerd install that configures Linkerd to use certificates issued by an external certificate issuer (such as cert-manager)
      • Added support for injecting a namespace to linkerd inject (thanks @mayankshah1607!)
      • Added checks to linkerd check --preinstall ensuring Kubernetes Secrets can be created and accessed
      • Fixed linkerd tap sometimes displaying incorrect pod names for unmeshed IPs that match multiple running pods
    • Controller
      • Added support for using trust anchors from an external certificate issuer (such as cert-manager) to the linkerd-identity service
    • ๐Ÿ’ป Web UI
      • Added Host: header validation to the linkerd-web service, to protect against DNS rebinding attacks
    • Internal
      • Added new --trace-collector and --trace-collector-svc-account flags to linkerd inject that configures the OpenCensus trace collector used by proxies in the injected workload (thanks @Pothulapati!)
      • Added a new --control-plane-tracing flag to linkerd install that enables distributed tracing in the control plane (thanks @Pothulapati!)
      • Added distributed tracing support to the control plane (thanks @Pothulapati!)

    ๐Ÿ›  Also, thanks to @joakimr-axis for several fixes and improvements to internal ๐Ÿ— build scripts!