Skip to content
This repository has been archived by the owner on Jul 11, 2023. It is now read-only.

Release v0.6.0-rc.1
Compare
Choose a tag to compare
@github-actions github-actions released this 08 Dec 21:00
v0.6.0-rc.1
8515c09
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Notable Changes

  • Prometheus is now disabled by default and can be enabled using the --deploy-prometheus flag in osm install
  • Log forwarding via Fluent Bit now has outbound proxy support for egress traffic to be able to go through a proxy server
  • Service identities are now based on Kubernetes service accounts rather than Kubernetes services
  • OSM now uses distroless base & static images
  • Several changes made in preparation of supporting SMI's TCP route
  • Pods in the mesh no longer need to back a service
  • Updated Microsoft CLA to DCO
  • Added dynamic start and stop to debug server
  • Added a new CLI command osm trafficpolicy check-pods that validates whether the given source and destination pods are allowed to communicate

Changelog

  • Update chart tags and readme for 0.6.0 (#2162) 8515c09 (Sanya Kochhar)
  • fix(fluent bit): make input plugin read from head of logs file (#2158) ee39c0a (Sanya Kochhar)
  • envoy/lds: add support for inbound TCP proxying (#2154) c0410a8 (Shashank Ram)
  • envoy/rbac: support destination port permission in rules (#2157) 2831822 (Shashank Ram)
  • fix(maestro): cleanup helm releases in deleted namespaces (#2155) 224ef8f (Jon Huhn)
  • feat(*): add rules on inbound traffic policy (#2143) a04fe9a (Michelle Noorali)
  • endpoint/k8s: Fix unit test sync (#2153) 6eb6974 (Edu Serra)
  • envoy: use an api to retrieve the local cluster name (#2144) e66668d (Shashank Ram)
  • tests/framework: additions to framework to query from Prometheus/Grafana (#2138) e2b5254 (Edu Serra)
  • envoy/lds: create inbound filter chains per service port (#2140) 8a6ed0f (Shashank Ram)
  • tests/framework: Add GetTestFile (#2136) 16be519 (Edu Serra)
  • catalog: add api to fetch service's port:protocol mapping across providers (#2137) 54719f8 (Shashank Ram)
  • endpoint/providers: add api to retrieve port:protocol mapping for ser… (#2135) 27379ac (Shashank Ram)
  • fluent bit: clean up variables and docs for clarity (#2116) 4ee242b (Sanya Kochhar)
  • ref(*): add types for inbound/outbound trafficpolicy (#2132) a2cc566 (Michelle Noorali)
  • fluent bit: Add support for outbound http proxy (#2114) 4c73bd9 (Sanya Kochhar)
  • cli: move portForwarder to a more generic location (#2129) fc87610 (Edu Serra)
  • docs/design: proposal to determine application protocol (#2127) ff54bd7 (Shashank Ram)
  • e2e: EnableNsMetrics and EnableDebugServer enabled by default (#2130) 13652b8 (Edu Serra)
  • chore(*): add manifests for routes refactor (#2124) f26af90 (Michelle Noorali)
  • filter out split service from weighted cluster in route config (#2110) d12f43b (Addo.Zhang)
  • pkg/kubernetes: reduce log to trace (#2123) 388f828 (Edu Serra)
  • prometheus: drop time-bucket series, increase ram limit to 2G (#2117) dc51517 (Edu Serra)
  • grafana: QoL updates and fixes (#2119) 6699a34 (Edu Serra)
  • fix(chart): allow empty OpenServiceMesh.image.pullPolicy (#2120) bc35de7 (Jon Huhn)
  • envoy/lds: refactor inbound filter chain building (#2118) b5cb078 (Shashank Ram)
  • envoy/lds: consolidate HTTP filter chain building (#2113) fb072dc (Shashank Ram)
  • pubsub: introduce pubsub chan Unsub(), fix few sync tests (#2109) 14be75a (Edu Serra)
  • envoy/lds: update error handling while building HTTP filter chain (#2112) 306dac8 (Shashank Ram)
  • Fluent Bit: update charts and schema for fluent bit variables (#2107) 5238514 (Sanya Kochhar)
  • envoy/lds: use listenerBuilder type to build listener and filters (#2105) e412f39 (Shashank Ram)
  • osm: disable ticker, space k8s resyncs to 5m (#2095) 120b1cf (Edu Serra)
  • envoy/lds: change HTTP filter's function signature (#2104) ed46be8 (Shashank Ram)
  • envoy: use ptypes.MarshalAny directly instead of unnecessary wrapper (#2102) 681cde1 (Shashank Ram)
  • envoy/lds: Make outbound HTTP filter chain specific to HTTP traffic (#2101) 68ab84d (Shashank Ram)
  • Fixing Hashi Vault integration test (#2098) b58a44f (Delyan Raychev)
  • vault: Carve out fetching of Issuing CA into a function (#2069) 374d418 (Delyan Raychev)
  • tests/e2e: isolate framework from tests, restructure files (#2090) d2d9d42 (Edu Serra)
  • envoy/lds: move mesh related filter chain code to its file (#2094) e2ed301 (Shashank Ram)
  • envoy/lds: use rbac policy builder (#2093) d9bbd3e (Shashank Ram)
  • envoy/rbac: add generic RBAC policy builder (#2089) f20c7b5 (Shashank Ram)
  • certificate/tresor: Change cache from a map to sync.Map (#2075) 1e0ba08 (Delyan Raychev)
  • catalog: repeater to be event-based, dispatcher (#2086) c807095 (Edu Serra)
  • Merge pull request #2087 from phillipgibson/main 48e613f (Phill Gibson)
  • Updated CONTRIBUTING.md from CLA to DCO 7d7dc0f (phillipgibson)
  • certificate/vault: Change cache from a map to sync.Map (#2074) 4907ddf (Delyan Raychev)
  • certificate: Adding GetSerialNumber() to Certificater interface (#2072) 5220beb (Delyan Raychev)
  • ref(xds): use PodMetadata struct in place of individual fields (#2079) e9bb558 (Jon Huhn)
  • Merge pull request #2080 from bridgetkromhout/add-phillip aa9409e (Bridget Kromhout)
  • feat(metrics): Disable Prometheus by default (#1868) 83a0320 (Kalya Subramanian)
  • Adding Phillip Gibson as OWNER for public record 85cf689 (Bridget Kromhout)
  • certificates/vault: Use new types vaultRole and vaultPath (#2073) e0be376 (Delyan Raychev)
  • events: Add pubsub global interface for OSM events (#2076) d93b01b (Edu Serra)
  • make pretty logging working (#2077) 4693031 (Addo.Zhang)
  • Remove unused constant AzureProviderName (#2066) 1caa924 (Delyan Raychev)
  • Delete Certificate for an Envoy for a Pod that was Terminated (#1956) bf58d62 (Delyan Raychev)
  • Use distroless images for osm & demo (#2011) 2e81275 (Jonas-Taha El Sesiy)
  • envoy/lds: add comments for specific filter chain match criteria (#2071) 48fac6d (Shashank Ram)
  • Merge pull request #2067 from bridgetkromhout/correct-license d52ed3f (Bridget Kromhout)
  • catalog: Convert expectedProxies to sync.Map (#2063) db57488 (Delyan Raychev)
  • Correct license ed21368 (Bridget Kromhout)
  • test(*): Add e2e test for enableDebugServer (#2049) e0513d3 (Shalier Xia)
  • pkg/configurator: introducing pubsub for config updates (#2050) 9ea8a6f (Edu Serra)
  • catalog: Convert disconnectedProxies to sync.Map (#2062) f362b18 (Delyan Raychev)
  • catalog: Convert connectedProxies to sync.Map (#2061) 8ad74fb (Delyan Raychev)
  • Exclude test/scenarios from test coverage tool (#2060) 1659b28 (Delyan Raychev)
  • ref(pkg/catalog): add convenience functions (#2051) 4d13d24 (Michelle Noorali)
  • Fix debug server and OSM Controller (#2059) e533370 (Delyan Raychev)
  • envoy/rbac: add support for server side RBAC fitler (#2054) 495110c (Shashank Ram)
  • feat(build): add chart-readme Makefile target (#2053) 3e374f0 (Jon Huhn)
  • Corrected Spelling (#2057) ab6bf87 (Niranjan Shankar)
  • fix(ci): fix go mod tidy check (#2055) 497740d (Jon Huhn)
  • Chart changes with additional configurations (#2005) 1512f36 (Niranjan Shankar)
  • osm-deployment: parametrize osm log level in values.yaml (#2046) 2a09728 (Edu Serra)
  • feat(*): add TrafficPolicy struct and helpers (#2047) 9f7c8ce (Michelle Noorali)
  • update tags to 0.5.0 (#2044) 1c19cbc (Jon Huhn)
  • feat(pkg/catalog): Add GetServicesForServiceAccounts func (#2037) d4dc340 (Michelle Noorali)
  • fix(*): fix Mac build error (#2043) d4d0a63 (Jon Huhn)
  • Linter: Enabling errCheck Linter (#2042) ee49247 (Sneha Chhabria)
  • announcements: Increase specificity of events coming from Kubernetes (#2028) 649a97d (Delyan Raychev)
  • moving reconciler test to e2e (#2040) 7ddfdcf (Sneha Chhabria)
  • Removing AzureResource CRD and Informers (#2039) 2d2db2f (Delyan Raychev)
  • envoy: correctly validate SANs in certificate (#2021) be9f434 (Shashank Ram)
  • feat(pkg/catalog): Add routesFromRules func (#2036) 59a2722 (Michelle Noorali)
  • catalog: Refactor repeater() for clarity (#2032) e50d75b (Delyan Raychev)
  • envoy/ads: add requested resource names to logs (#2033) 25d5283 (Shashank Ram)
  • catalog: Rename broadcast to broadcastToAllProxies for context and clarity (#2030) 30ab33b (Delyan Raychev)
  • kube: Refactor Event Types (#2029) 77c26a8 (Delyan Raychev)
  • tests/e2e: envoy log level for testing (#2026) 5c4b802 (Edu Serra)
  • announcements: Convert all messages from interface{} to announcements.Announcement type (#2010) 4be6e14 (Delyan Raychev)
  • fix(*) : Fixing existing lint issues in the repo (#2023) 7474047 (Sneha Chhabria)
  • catalog: Make the re-configuration ticker actually tick (#2016) 3c30e60 (Delyan Raychev)
  • kubernetes/test: fix slow tests (#2019) de80157 (Shashank Ram)
  • tests(debug server): fix race condition (#2017) 71e40ff (Jon Huhn)
  • feat(pkg/reconciler) : Adding a reconciler in OSM for the CA bundle in the mutating webhook configuration (#1976) 4adc3df (Sneha Chhabria)
  • test(cli/install): Refactor tests to use default install commands" (#1998) 3456647 (Kalya Subramanian)
  • kubernetes/client: use correct channel for pod announcements (#2015) 233dcf6 (Shashank Ram)
  • catalog: add an api to retrieve service accounts for a service (#2013) d48e92a (Shashank Ram)
  • [docs] edit readme for correct branch name (#2007) 2f0085c (Ronan Flynn-Curran)
  • fix(install): clean up resources when install fails (#1984) f98ca75 (Jon Huhn)
  • kubernetes: add an API to retrieve ServiceAccounts for a Service (#2009) ed9cffd (Shashank Ram)
  • kubernetes/client: remove announcement channel for namespace informer (#2003) 19fb9fe (Shashank Ram)
  • tests(pkg/cli): refactor to use testify (#2001) bfa6a2e (Jon Huhn)
  • Merge pull request #1840 from flynnduism/docs-www 574731d (Phill Gibson)
  • tests/scenarios: Better comments (#1993) 9447067 (Delyan Raychev)
  • configurator: optimize ConfigMap informer filtering (#2000) 1290720 (Shashank Ram)
  • envoy: fix linting issue related to exported function without comment (#1997) 49a8099 (Shashank Ram)
  • feat(osm/*): automate enableDebugServer feature b03a81b (Shalier Xia)
  • envoy: use consistent terminology for downstream and upstream service (#1996) 445f31c (Shashank Ram)
  • [docs] adjust code block css style 368ef1b (flynnduism)
  • [docs] post rebase cleanup 07208c6 (flynnduism)
  • [docs] ensure https 04af8f2 (flynnduism)
  • [docs] add README and docs versioning 981ce58 (flynnduism)
  • [docs] reinstate original docs content to resolve conflicts 445ba11 (flynnduism)
  • [docs] latest docs for rebase resolution 357ed93 (flynnduism)
  • [docs] debugging netlify hugo build 0b120e4 (flynnduism)
  • [docs] use a compatible hugop version b36ff96 (flynnduism)
  • [docs] add css cache 41280a7 (flynnduism)
  • [docs] tweak netlify build 85cda70 (flynnduism)
  • [docs] add theme files d8ca82d (flynnduism)
  • [docs] move markdown files into hugo content dir 6727282 (flynnduism)
  • [docs] build on top of docsy theme b3db275 (flynnduism)
  • [docs] add base hugo config 3e6b69b (flynnduism)
  • envoy: Augment Envoy's Node ID with Pod metadata (#1991) 5988b66 (Delyan Raychev)
  • sds/response: change log level to warn (#1995) 7c1240b (Shashank Ram)
  • test(cli): Consolidate resolveValues tests (#1987) 5f40a5d (Kalya Subramanian)
  • pkg/*: use Kubernetes ServiceAccount as service identity (#1990) a7c1cee (Shashank Ram)
  • clean-up : fixing test naming (#1992) 2047ca9 (Sneha Chhabria)
  • injector: Renaming files for consistency (#1994) 280420c (Delyan Raychev)
  • tests: Create a new high-level test for a particular scenario (#1982) 36e5f68 (Delyan Raychev)
  • catalog/repeater: Change noisy log statement from Info to Trace (#1988) ea3efb9 (Delyan Raychev)
  • endponit/providers/kube: Adding the name of the endpoint provider to the log messages (#1989) 876a160 (Delyan Raychev)
  • docs(install): clarify CLI/image version compatibility (#1986) 23c2d9b (Jon Huhn)
  • catalog/test: ignore ordering of elements in test (#1985) fceeb0a (Shashank Ram)
  • feat(ci): generate release notes (#1977) fc7bb54 (Jon Huhn)
  • catalog: add api to list allowed inbound/outbound service accounts (#1980) 7c12dfe (Shashank Ram)
  • certificate: regenerate mock certificate and manager interfaces (#1981) 9de9df1 (Shashank Ram)
  • certificate: Adding ReleaseCertificate() to the Manager interface (#1953) ef9935c (Delyan Raychev)
  • docs: fix typos in observability document links (#1978) 61417fd (Swaminathan Vetri)
  • ref(e2e): divide tests into buckets (#1917) bf8c5a9 (Jon Huhn)
  • catalog: Refactor GetServicesFromEnvoyCertificate to simplify (#1969) 97637a5 (Delyan Raychev)
  • injector: Augment log message with object kind and name (#1972) eaf0483 (Delyan Raychev)
  • endpoint: Rename variable to remove collision w/ imported package (#1973) dd937a3 (Delyan Raychev)
  • cli,configurator: reuse api to parse osm-config ConfigMap (#1971) ddb7a4b (Shashank Ram)
  • identity: add abstraction for service identity (#1968) cffdc91 (Shashank Ram)
  • endpoints: Refactor GetServicesForServiceAccount() to remove call to IsMonitoredNamespace and add clarity (#1967) 4f67b4c (Delyan Raychev)
  • pkg/*: issue service cert directly via cert manager api (#1970) 4f68a78 (Shashank Ram)
  • fix(charts): Add volume mount for Fluent Bit (#1949) 9cc4f75 (Sanya Kochhar)
  • injector: reuse patch helper for patching labels and annotations (#1966) 5e4d340 (Shashank Ram)
  • cli: add trafficpolicy command to validate pods against traffic targets (#1961) 1b04f21 (Shashank Ram)
  • envoy/lds: name the inbound filter chains (#1963) f4381de (Shashank Ram)
  • ci: Simplify maestro (#1950) 54b2445 (Delyan Raychev)
  • endpoint: Create synthetic service when a pod is in the mesh without a service (#1932) 6a711ce (Delyan Raychev)
  • tests/e2e: adding test to individual backend services on trafficsplit (#1959) 3085fe7 (Edu Serra)
  • catalog: Remove the announcementChannels set field from the MeshCatalog struct (#1954) 2181d86 (Delyan Raychev)
  • RFC: Add announcements package & mesage handler (#1957) 41d787c (Delyan Raychev)
  • injector: Generalize updateLabels() function (#1955) 3af31b5 (Delyan Raychev)
  • Merge pull request #1948 from nojnhuh/update-versions cae01c4 (Jon Huhn)
  • e2e: Carve out a helper function creating a source mesh participant (#1951) c340a7a (Delyan Raychev)
  • Updates tags in charts (#1928) 259a47c (SanyaKochhar)
Assets 9
Loading