Changelog History
Page 10
-
v20.11.2 Changes
November 12, 2020edge-20.11.2
๐ This edge release reduces memory consumption of Linkerd proxies which maintain
๐ many idle connections (such as Prometheus). It also removes some obsolete
commands from the CLI and allows setting custom annotations on multicluster
gateways.- โฌ๏ธ Reduced the default idle connection timeout to 5s for outbound clients and
๐จ 20s for inbound clients to reduce the proxy's memory footprint, especially on
Prometheus instances - โ Added support for setting annotations on the multicluster gateway in Helm
which allows setting the load balancer as internal (thanks @shaikatz!) - โ Removed the
get
andlogs
command from the CLI
- โฌ๏ธ Reduced the default idle connection timeout to 5s for outbound clients and
-
v20.11.1 Changes
November 03, 2020edge-20.11.1
๐ This edge supersedes edge-20.10.6 as a release candidate for stable-2.9.0.
- ๐ Fixed issue where the
check
command would error when there is no Prometheus
๐ง configured - ๐ Fixed recent regression that caused multicluster on EKS to not work properly
- ๐ Changed the
check
command to warn instead of error when webhook certificates
are near expiry - โ Added the
--ingress
flag to theinject
command which adds the recently
introducedlinkerd.io/inject: ingress
annotation - ๐ Fixed issue with upgrades where external certs would be fetched and stored
even though this does not happen on fresh installs with externally created
certs - ๐ Fixed issue with upgrades where the issuer cert expiration was being reset
- โ Removed the
--registry
flag from themulticluster install
command - โ Removed default CPU limits for the proxy and control plane components in HA
mode
- ๐ Fixed issue where the
-
v20.10.6 Changes
October 27, 2020edge-20.10.6
๐ This edge supersedes edge-20.10.5 as a release candidate for stable-2.9.0. It
โ adds a newlinkerd.io/inject: ingress
annotation to support service profiles
and enable per-route metrics and traffic splits for HTTP ingress controllers- โ Added a new
linkerd.io/inject: ingress
annotation to configure the
๐ proxy to support service profiles and enable per-route metrics and traffic
splits for HTTP ingress controllers - ๐ Reduced performance impact of logging in the proxy, especially when the
๐ฒdebug
ortrace
log levels are disabled - ๐ Fixed spurious warnings logged by the
linkerd profile
CLI command
- โ Added a new
-
v20.10.5 Changes
October 23, 2020edge-20.10.5
๐ This edge supersedes edge-20.10.4 as a release candidate for stable-2.9.0. It
โ adds a fix for updating the destination service when there are no endpoints- โ Added a fix to clear the EndpointTranslator state when it gets a
NoEndpoints
message. This ensures that the clients get the correct set of
โก๏ธ endpoints during an update.
- โ Added a fix to clear the EndpointTranslator state when it gets a
-
v20.10.4 Changes
October 23, 2020edge-20.10.4
๐ This edge release is a release candidate for stable-2.9.0. For the proxy, there
๐ have been changes to improve performance, remove unused code, and configure
๐ ports that can be ignored by default. Also, this edge release adds enhancements
๐ to the multicluster configuration and observability, adds more translations to
the dashboard, and addresses a bug in the CLI.- โ Added more Spanish translations to the dashboard and more labels that can be
translated - โ Added support for creating multiple service accounts when installing
multicluster with Helm to allow more granular revocation - ๐ Renamed
global.proxy.destinationGetNetworks
toglobal.clusterNetworks
.
This is a cluster-wide setting and can no longer be overridden per-pod - ๐ Fixed an empty multicluster Grafana graph which used a deprecated label
- โ Added the control plane tracing ServiceAccounts to the linkerd-psp
RoleBinding so that it can be used in environments where PodSecurityPolicy
is enabled - โจ Enhanced EKS support by adding
100.64.0.0/10
to the set of discoverable
networks - ๐ Fixed a bug in the way that the
--all-namespaces
flag is handled by the
linkerd edges
command - โ Added a default set of ports to bypass the proxy for server-first, https,
and memcached traffic
- โ Added more Spanish translations to the dashboard and more labels that can be
-
v20.10.3 Changes
October 15, 2020edge-20.10.3
๐ This edge release is a release candidate for stable-2.9.0. It overhauls the
discovery and routing logic implemented by the proxy, simplifies the way that
๐ Linkerd stores configuration, and adds new Helm values to configure additional
labels, annotations, and namespace selectors for webhooks.- โ Added podLabels and podAnnotations Helm values to allow adding additional
labels or annotations to Linkerd control plane pods (thanks @tustvold!) - โ Added namespaceSelector Helm value for configuring the namespace selector
๐ used by admission webhooks (thanks @tustvold!) - Expanded the 'linkerd edges' command to show TCP connections
- Overhauled the discovery and routing logic implemented by the proxy:
- The
l5d-dst-override
header is no longer honored - When the application attempts to connect to a pod IP, the proxy no
longer load balances these requests among all pods in the service.
The proxy will now honor session-stickiness as selected by an
application-level load balancer TrafficSplits
are only applied when a client targets a service's IP- The proxy no longer performs DNS "canonicalization" to translate
relative host header names to a fully-qualified form
- The
- ๐ง Simplified the way that Linkerd stores its configuration. Configuration is
now stored as Helm values in the linkerd-config ConfigMap - ๐ Renamed the --addon-config flag to --config to clarify this flag can be used
to set any Helm value
- โ Added podLabels and podAnnotations Helm values to allow adding additional
-
v20.10.2 Changes
October 08, 2020edge-20.10.2
๐ This edge release adds more improvements for mTLS for all TCP traffic.
It also includes significant internal improvements to the way Linkerd
๐ง configuration is stored within the cluster.- ๐ Changed TCP metrics exported by the proxy to ensure that peer
identities are encoded via theclient_id
andserver_id
labels. - โ Removed the dependency of control plane components on
linkerd-config
- โก๏ธ Updated the data structure
proxy-injector
uses to derive the configuration
๐ used when injecting workloads
- ๐ Changed TCP metrics exported by the proxy to ensure that peer
-
v20.10.1 Changes
October 02, 2020edge-20.10.1
๐ This edge release includes a couple of external contributions towards
๐ improved cert-manager support and Grafana charts fixes, among other
โจ enhancements.- ๐ Changed the type of the injector and tap API secrets to
kubernetes.io/tls
,
so they can be provisioned by cert-manager (thanks @cypherfox!) - ๐ Fixed the "Kubernetes cluster monitoring" Grafana dashboard that had a few
charts with incomplete data (thanks @aimbot31!) - ๐ Fixed the
service-mirror
multicluster component so that it retries
connections to the target cluster's Kubernetes API when it's not reachable,
instead of blocking - 0๏ธโฃ Increased the proxy's default timeout for DNS resolution to 500ms, as there
were reports that 100ms was too restrictive
- ๐ Changed the type of the injector and tap API secrets to
-
v20.9.4 Changes
September 25, 2020edge-20.9.4
๐ This edge release introduces support for authenticated docker registries and
๐ fixes a recent multicluster regression.- ๐ Fixed a regression in multicluster gateway configurations that would forbid
inbound gateway traffic - โฌ๏ธ Upgraded bundled Grafana to v7.1.5
- ๐ง Enabled Jaeger receiver in collector configuration in Helm chart (thanks
@olivierboudet!) - ๐ Fixed skip port configuration being skipped in CNI plugin
- ๐ณ Introduced support for authenticated docker registries (thanks @c-n-c!)
- ๐ Fixed a regression in multicluster gateway configurations that would forbid
-
v20.9.3 Changes
September 17, 2020edge-20.9.3
๐ This edge release includes fixes and updates for the control plane and CLI.
- โ Added
--dest-cni-bin-dir
flag to thelinkerd install-cni
command, to
๐ง configure the directory on the host where the CNI binary will be placed - โ Removed
collector.name
andjaeger.name
config fields from the tracing
โ addon - โก๏ธ Updated Jaeger to 1.19.2
- ๐ Fixed a warning about deprecated Go packages in controller container logs
- โ Added