Releases: liqotech/liqo
Releases · liqotech/liqo
v1.0.0-rc.2
What's Changed
🚀 New Features
- [Test] e2e plugin for eks by @aleoli in #2643
- [Test] e2e plugin for aks by @fra98 in #2647
- Geneve port configurable by @cheina97 in #2722
- [Feat] New In-Band Peering by @aleoli in #2720
- New
liqoctl infocommand by @claudiolor in #2718 - [E2E] k3s test plugin by @aleoli in #2730
- [Test] e2e plugin for gke by @cheina97 in #2651
- [Feat] support cluster ip in gateway services by @aleoli in #2746
- [Feat] New
liqoctl info peercommand by @claudiolor in #2741
🐛 Bug Fixes
- [Test] fix e2e by @aleoli in #2707
- Fix providers overwrite flags liqoctl install by @fra98 in #2704
- Avoid retrieval of tenant namespace by name by @fra98 in #2703
- Fix logs follow by @aleoli in #2524
- [Fix] Node IP by @aleoli in #2713
- Fix bug deletion routine of virtualnodes with createNode=false by @fra98 in #2721
- Support for gcloud subnet in different project by @cheina97 in #2723
- Fix default wireguard MTU by @cheina97 in #2736
- [Fix] Tenant cleanup & bidirectional peering by @aleoli in #2740
- Fix liqoctl disconnect on bidirectional peering by @fra98 in #2750
🧹 Code Refactoring
- E2E: add kyverno install as pipeline step by @fra98 in #2708
- Update CodeQL action by @fra98 in #2717
- Flags package refactoring: from "flag" to "pflag" by @cheina97 in #2725
📝 Documentation
- Updating the roadmap based on recent discussions within the Liqo maintainers by @frisso in #2475
- Docs: fix Liqo version in Helm installation by @cheina97 in #2739
- docs: add liqoctl info documentation by @claudiolor in #2753
- Docs: in-band docs refactored by @cheina97 in #2754
Other Changes
- Bump golangci-lint and gci by @fra98 in #2706
- Bump controller-runtime to v0.18.5 and k8s libs to v.1.30.3 by @fra98 in #2705
- Bump alpine images to v3.20 by @fra98 in #2714
- Bump go version to 1.23 by @fra98 in #2724
- Bump Alpine from 3.20 to 3.20.3 by @cheina97 in #2749
- Disable docker artifacts in CI by @cheina97 in #2756
Full Changelog: v1.0.0-rc.1...v1.0.0-rc.2
Contributors
frisso, claudiolor, and 3 other contributors
Assets 13
- 334 KB
2024-10-04T05:51:39Z - 67.1 MB
2024-10-04T05:51:50Z - 20.6 MB
2024-10-04T05:51:49Z - 65.6 MB
2024-10-04T05:51:48Z - 19.2 MB
2024-10-04T05:51:47Z - 65.5 MB
2024-10-04T05:51:46Z - 20.2 MB
2024-10-04T05:51:45Z - 63.7 MB
2024-10-04T05:51:44Z - 18.3 MB
2024-10-04T05:51:43Z - 67.2 MB
2024-10-04T05:51:42Z -
2024-10-04T05:45:38Z -
2024-10-04T05:45:38Z - Loading
v1.0.0-rc.1
New Liqo v1.0.0-rc.1 release
Liqo v1.0.0-rc.1 is here! 🚀
This is a major milestone for the project, bringing us closer to the stable 1.0 release. We encourage you to try out this release candidate and provide feedback. Your input is invaluable as we refine Liqo and prepare for the 1.0 release.
This major version includes a new suite of features and a big refactoring of the codebase:
- fully declarative approach on all functionalities (install, peering, offloading, etc..)
- a new division in 3 main modules:
networking,authentication,offloading - modularity and independence between the 3 modules (e.g., the possibility to turn off individual modules)
- new networking fabric
- possibility to implement new networking technologies
- new authentication workflow
- possibility to have multiple virtual nodes targeting the same remote cluster, giving more flexibility and allowing to target specific node pools on the remote provider cluster
- docs: new structure, improvements, new pages (e.g., advanced usage examples), fix deprecated features, and a lot more
v0.11.0-rc.3
We are pleased to release Liqo v0.11.0-rc.3 which includes a major refactoring of Liqo and it's the first RC containing all new Liqo modules.
Summary of changes
- new
authenticationandoffloadingmodules - several fixes and improvements to the new
networkingmodule - new
liqoctlcommands:network init,network connect,network resetto configure the networking moduleauthenticate,unauthenticateto authenticate a consumer cluster with a provider clustercreate resourcesliceto ask the provider for resources and obtain an associatedVirtualNodepeerandunpeer, wrapper commands that automate all of the above commands in a single command, performing a full peering between a consumer and a provider
Warning
Peer two clusters and Quick start sections for a basic overview of the new functionalities and commands.
Changelog
- fix remote cm name by @aleoli - 2 Jul 2024 11:53
- Docs: updated quick-start by @fra98 - 2 Jul 2024 11:43
- Network: gateway prometheus metrics by @cheina97 - 2 Jul 2024 09:08
- remove duplicated cluster id labels by @aleoli - 1 Jul 2024 15:02
- Docs: peering usage by @fra98 - 1 Jul 2024 15:01
- move discovery api to core by @aleoli - 1 Jul 2024 13:03
- CI: added release branch for building by @cheina97 - 1 Jul 2024 12:54
- cleanup old values by @aleoli - 1 Jul 2024 12:08
- offloading fixes by @aleoli - 1 Jul 2024 10:24
- Liqoctl unpeer command by @fra98 - 1 Jul 2024 09:58
- Reorganize controllers in offloading module folder by @fra98 - 1 Jul 2024 09:58
- quota enforcement type by @aleoli - 1 Jul 2024 09:58
- user-defined resources by @aleoli - 1 Jul 2024 09:58
- add quota creator controller by @aleoli - 1 Jul 2024 09:58
- Liqoctl peer command by @fra98 - 1 Jul 2024 09:58
- Move webhook in a separate folder by @fra98 - 1 Jul 2024 09:54
- resource webhook by @aleoli - 1 Jul 2024 09:54
- Replace IP and Network webhooks with CEL validation by @fra98 - 1 Jul 2024 09:54
- Fix liqoctl build on non-unix based systems by @fra98 - 1 Jul 2024 09:54
- Refactoring ReflectorsConfig in VK Options by @fra98 - 1 Jul 2024 09:54
- Liqoctl: preuninstall check ForeignCluster modules by @fra98 - 1 Jul 2024 09:54
- Fixed createNode and disableNetworkCheck booleans by @fra98 - 1 Jul 2024 09:54
- Added labels and annotations not reflected enforcement by @fra98 - 1 Jul 2024 09:54
- VirtualKubelet options as CRD by @fra98 - 1 Jul 2024 09:54
- move webhooks to separate pod by @aleoli - 1 Jul 2024 09:53
- shadopod enforce creator labels by @aleoli - 1 Jul 2024 09:53
- remove ipam client from kubelet by @aleoli - 1 Jul 2024 09:53
- Fix panic identity creator when resourceslice has no provider by @fra98 - 1 Jul 2024 09:53
- NamespaceMap handle multiple virtualnodes by @fra98 - 1 Jul 2024 09:53
- support remote api server access by @aleoli - 1 Jul 2024 09:53
- NodeProvider disable check network by @fra98 - 1 Jul 2024 09:53
- Network Module and Network + Offloading Cross Module refactoring by @cheina97 - 1 Jul 2024 09:53
- Crd repliactor remove peering phases by @fra98 - 1 Jul 2024 09:53
- fix prometheus metrics by @aleoli - 1 Jul 2024 09:53
- ForeignCluster controller by @fra98 - 1 Jul 2024 09:53
- unify cluster id and cluster name by @aleoli - 1 Jul 2024 09:53
- Refactor API ForeignCluster by @fra98 - 1 Jul 2024 09:52
- Move controllers to offloading module by @fra98 - 1 Jul 2024 09:52
- small fixes by @aleoli - 1 Jul 2024 09:50
- olloading patch node selector by @aleoli - 1 Jul 2024 09:50
- liqoctl remove old peer and unpeer commands by @aleoli - 1 Jul 2024 09:50
- CRD Replicator handle lost permissions on drained tenant by @fra98 - 1 Jul 2024 09:50
- Disable and drain Tenant by @fra98 - 1 Jul 2024 09:50
- cordon resource slices by @aleoli - 1 Jul 2024 09:50
- Removed unused discovery flag by @fra98 - 1 Jul 2024 09:50
- discovery cleanup by @aleoli - 1 Jul 2024 09:50
- Cordon Tenant by @fra98 - 1 Jul 2024 09:50
- Added kubectl printed fields to Authentication API resources by @fra98 - 1 Jul 2024 09:50
- Tenant conditions in Spec API by @fra98 - 1 Jul 2024 09:50
- auth cleanup by @aleoli - 1 Jul 2024 09:50
- slice status by @aleoli - 1 Jul 2024 09:50
- Liqoctl authenticate command by @fra98 - 1 Jul 2024 09:50
- Automatatic creation of VirtualNodes from ResourceSlices by @fra98 - 1 Jul 2024 09:50
- refactor iam auth by @aleoli - 1 Jul 2024 09:50
- improve check csr for resource slices by @aleoli - 1 Jul 2024 09:50
- Create Identity from ResourceSlice by @fra98 - 1 Jul 2024 09:50
- Auth minor fixes by @fra98 - 1 Jul 2024 09:50
- Liqoctl get kubeconfig by @fra98 - 1 Jul 2024 09:50
- handle resourceslice lifecycle by @aleoli - 1 Jul 2024 09:50
- Refactor crd replicator to work with new kubeconfig secret by @fra98 - 1 Jul 2024 09:50
- CA encoding fix by @fra98 - 1 Jul 2024 09:50
- control plane rbacs by @aleoli - 1 Jul 2024 09:50
- Liqoctl get nonce by @fra98 - 1 Jul 2024 09:50
- Fix CRDs mapper by @fra98 - 1 Jul 2024 09:50
- Identity controller by @fra98 - 1 Jul 2024 09:50
- Liqoctl generate identity by @fra98 - 1 Jul 2024 09:50
- tenant controller by @aleoli - 1 Jul 2024 09:50
- nonce controller by @aleoli - 1 Jul 2024 09:50
- Sign nonce controller by @fra98 - 1 Jul 2024 09:50
- Refactor auth module in main.go by @fra98 - 1 Jul 2024 09:50
- Initialize cluster auth keys by @fra98 - 1 Jul 2024 09:50
- Authentication API by @fra98 - 1 Jul 2024 09:50
- Network: IP masquerade works locally by @cheina97 - 26 Jun 2024 16:24
- Network: firewallconfiguration rename by @cheina97 - 26 Jun 2024 16:19
- Remove Security Mode by @cheina97 - 25 Jun 2024 16:23
- Network: provider liqoctl values by @cheina97 - 25 Jun 2024 16:23
- Move networking controllers in a common folder by @fra98 - 21 Jun 2024 10:56
- Move forge utilities out of liqoctl package by @fra98 - 21 Jun 2024 10:50
- Network: gateway masquerade bypass by @cheina97 - 19 Jun 2024 14:44
- Network: firewallconfiguration port and protocol match by @cheina97 - 19 Jun 2024 14:44
- Network: firewallconfiguration port and protocol match by @cheina97 - 18 Jun 2024 15:56
Contributors
cheina97, aleoli, and fra98
Assets 13
v0.11.0-rc.2
We are pleased to release Liqo v0.11.0-rc.2 which includes improvements and bug fixes of the new networking module.
Warning
Changelog
- Network: aggressive dns resolution by @cheina97 - Thu, 30 May 2024 17:24:32 +0200
- Network: wireguard userspace implementation by @cheina97 - Tue, 28 May 2024 17:36:55 +0200
- connection cluster wide by @aleoli - Tue, 28 May 2024 09:53:08 +0200
- Network: enable full masquerade by @cheina97 - Mon, 27 May 2024 17:35:13 +0200
- Network: disable rt_filter in gateway by @cheina97 - Fri, 24 May 2024 12:31:25 +0200
- Network: fwconfiguration and routeconfiguration watch by @cheina97 - Fri, 24 May 2024 12:19:01 +0200
- Network: restored addlicense after cleanup by @cheina97 - Fri, 24 May 2024 12:19:01 +0200
- Broken link fixes by @cheina97 - Fri, 24 May 2024 12:19:01 +0200
- Delete NatMappaingConfigured entry in IpamStorage by @fra98 - Fri, 24 May 2024 12:19:01 +0200
- IpamStorage namespaced by @fra98 - Fri, 24 May 2024 12:19:01 +0200
- Fixed GatewayServer and GatewayClient scheme by @fra98 - Fri, 24 May 2024 12:19:01 +0200
- Network: leaf to leaf from external source by @cheina97 - Fri, 24 May 2024 12:19:01
- Unknown source IP by @cheina97 - Fri, 24 May 2024 12:19:01
Contributors
cheina97, aleoli, and fra98
Assets 13
v0.11.0-rc.1
We are pleased to release Liqo v0.11.0-rc.1 which includes a newly designed networking module.
Warning
Changelog
- E2E test fix by @cheina97 - 9 May 2024 12:02
- Network: fwcfg and rtcfg reque by @cheina97 - 8 May 2024 11:12
- Cleanup old consts and tests by @fra98 - 8 May 2024 10:59
- Removed old net api by @fra98 - 8 May 2024 10:51
- bump lint action by @aleoli - 6 May 2024 17:55
- fix unit test by @aleoli - 6 May 2024 17:55
- remove ipam storage and refactor ipam by @aleoli - 6 May 2024 17:55
- old network packages cleanup by @aleoli - 6 May 2024 17:55
- Removed liqonet build from CI by @fra98 - 6 May 2024 11:17
- fix key renque by @aleoli - 26 Apr 2024 15:14
- LiqoMapper fix for namespaced clients by @cheina97 - 26 Apr 2024 09:48
- Renamed flag to enable/disable the Networking module by @fra98 - 24 Apr 2024 12:06
- Higher verbosity for internalnodes not found by @fra98 - 24 Apr 2024 11:39
- fix external network logs by @aleoli - 24 Apr 2024 11:39
- Refactoring controller-manager main by @fra98 - 24 Apr 2024 11:39
- Remove natmapping inflater by @fra98 - 24 Apr 2024 11:39
- swap gw server and client default configuration by @aleoli - 24 Apr 2024 11:39
- Network: virtualkubelet remapping exceptionfor local pods by @cheina97 - 24 Apr 2024 11:39
- podCIDR remapping exclude eth0 by @cheina97 - 24 Apr 2024 11:39
- DNS resolver fix by @cheina97 - 24 Apr 2024 11:39
- Network: remapping controller refactoring by @cheina97 - 24 Apr 2024 11:39
- Offloading: ip mapping (virtualkubelet integration) by @cheina97 - 24 Apr 2024 11:39
- Network: liqoctl pod wait for ready status by @cheina97 - 24 Apr 2024 11:39
- Generate clients for IP resource by @cheina97 - 24 Apr 2024 11:39
- Network: gw restart fix by @cheina97 - 24 Apr 2024 11:39
- Network: geneve tunnel ID fix by @cheina97 - 24 Apr 2024 11:39
- IP resource creation by @cheina97 - 24 Apr 2024 11:39
- Network: ip mapping by @cheina97 - 24 Apr 2024 11:39
- VirtualNode: drain fix by @cheina97 - 24 Apr 2024 11:39
- Handle InternalNodes deletion at uninstall time by @fra98 - 24 Apr 2024 11:39
- Fix liqoctl build on non-unix system by @fra98 - 24 Apr 2024 11:39
- Use manager with all pods cached in controller-manager by @fra98 - 24 Apr 2024 11:39
- WireGuard templates examples by @fra98 - 24 Apr 2024 11:39
- fix nat address and port override by @aleoli - 24 Apr 2024 11:39
- add documentation on external network configuration by @aleoli - 24 Apr 2024 11:39
- Network: fwmark use all podcidr as src match by @cheina97 - 24 Apr 2024 11:39
- liqoctl: flag --service-type set also new gateway service type by @fra98 - 24 Apr 2024 11:39
- Network:error check in rt_tables file close by @cheina97 - 24 Apr 2024 11:39
- Network: conntrack internal routing by @cheina97 - 24 Apr 2024 11:39
- Added priorityClassName to new Network pods by @fra98 - 24 Apr 2024 11:39
- Updated liqoctl status peer by @fra98 - 24 Apr 2024 11:39
- InternalCIDR network fix by @fra98 - 24 Apr 2024 11:39
- Bump new images build to use Go 1.22 by @fra98 - 24 Apr 2024 11:39
- fix string formatting by @aleoli - 24 Apr 2024 11:39
- Network: mark + conntrack API by @cheina97 - 24 Apr 2024 11:39
- Network: Fabric IPAM init fix by @cheina97 - 24 Apr 2024 11:39
- Set subnets in ipamStorage by @fra98 - 24 Apr 2024 11:39
- Network: gateway routes by @cheina97 - 24 Apr 2024 11:39
- Refactoring liqoctl status to handle new network by @fra98 - 24 Apr 2024 11:39
- Network: geneve arp disabled by @cheina97 - 24 Apr 2024 11:39
- Added preuninstall checks for new networking resources by @fra98 - 24 Apr 2024 11:39
- fabric: node ips by @cheina97 - 24 Apr 2024 11:39
- Customize image version on new networking containers by @fra98 - 24 Apr 2024 11:39
- geneve package error fix by @cheina97 - 24 Apr 2024 11:38
- Network: daemonset geneve interfaces by @cheina97 - 24 Apr 2024 11:38
- Network: fabric container by @cheina97 - 24 Apr 2024 11:38
- bump copyright year to 2024 by @aleoli - 24 Apr 2024 11:38
- Fix assignation of interface name to InternalNodes and InternalFabrics by @fra98 - 24 Apr 2024 11:38
- geneve tunnel operator by @aleoli - 24 Apr 2024 11:38
- Check all necessary fields to create fabrics by @fra98 - 24 Apr 2024 11:38
- Network: all random interface names by @cheina97 - 24 Apr 2024 11:38
- Network: added iproute2 in container by @cheina97 - 24 Apr 2024 11:38
- Network: exclude virtualnodes by @cheina97 - 24 Apr 2024 11:38
- Network: internal resources intrface names by @cheina97 - 24 Apr 2024 11:38
- Route created by InternalFabric controller by @fra98 - 24 Apr 2024 11:38
- Network: Internal API by @cheina97 - 24 Apr 2024 11:38
- Network: added onlink flags in routes by @cheina97 - 24 Apr 2024 11:38
- external network: gateway cluster role binding by @aleoli - 24 Apr 2024 11:38
- internal network: change internal node api by @aleoli - 24 Apr 2024 11:38
- Network: gateway geneve by @cheina97 - 24 Apr 2024 11:38
- Network: routeconfiguration status by @cheina97 - 24 Apr 2024 11:38
- Network: policy routing interfaces by @cheina97 - 24 Apr 2024 11:38
- Network: internal node added node CIDR by @cheina97 - 24 Apr 2024 11:38
- Network: route controller webhook by @cheina97 - 24 Apr 2024 11:38
- Network: route controller routes by @cheina97 - 24 Apr 2024 11:38
- Network: route controller table + rule by @cheina97 - 24 Apr 2024 11:38
- Delete internalNodes associated with deleted nodes by @fra98 - 24 Apr 2024 11:38
- InternalNode controller by @fra98 - 24 Apr 2024 11:38
- Network Internal: route API by @cheina97 - 24 Apr 2024 11:38
- internal fabric operator by @aleoli - 24 Apr 2024 11:38
- server controller by @aleoli - 24 Apr 2024 11:38
- internal network apis by @aleoli - 24 Apr 2024 11:38
- Liqoctl: gateway pod readiness check by @cheina97 - 24 Apr 2024 11:38
- fix network connect by @aleoli - 24 Apr 2024 11:38
- Disable legacy networking stack by default by @fra98 - 24 Apr 2024 11:38
- reorganize packaged to allow builds on other OSs by @aleoli - 24 Apr 2024 11:38
- network external: usage docs by @aleoli - 24 Apr 2024 11:38
- bump copyright year to 2024 by @aleoli - 24 Apr 2024 11:38
- Refactoring liqo namespace by @fra98 - 24 Apr 2024 11:38
- remapping names fix by @cheina97 - 24 Apr 2024 11:38
- Network: remapping controller by @cheina97 - 24 Apr 2024 11:38
- Minor fix getters by @fra98 - 24 Apr 2024 11:38
- PodCIDR, ServiceCIDR, ExternalCIDR, ReservedCIDRs as Networks by @fra98 - 24 Apr 2024 11:38
- Allow to set custom image version for each container by @fra98 - 24 Apr 2024 11:38
- Network: firewall masquerade by @cheina97 - 24 Apr 2024 11:38
- Network: firewall controller webhook unique table name by @cheina97 - 24 Apr 2024 11:38
- external network: kind to resource by @aleoli - 24 Apr 2024 11:38
- Network: firewall controller nat rules by @cheina97 - 24 Apr 2024 11:38
- Network: networkconfiguration fix by @cheina97 - 24 Apr 2024 11:38
- Firewall: immutable table name by @cheina97 - 24 Apr 2024 11:38
- Fixed old linter errors by @fra98 - 24 Apr 2024 11:38
- Linting: liqo-crds subchart by @cheina97 - 24 Apr 2024 11:38
- Firewall fixes by @fra98 - 24 Apr 2024 11:38
- CodeQL: added ipam, gateway, gateway/wireguard by @cheina97 - 24 Apr 2024 11:38
- Network: ipam image name by @cheina97 - 24 Apr 2024 11:38
- Network webhook and logs fixes by @fra98 - 24 Apr 2024 11:38
- Firewall: gateway integration by @cheina97 - 24 Apr 2024 11:38
- Network: firewall controller rules by @cheina97 - 24 Apr 2024 11:38
- Move IPAM to separate pod by @fra98 - 24 Apr 2024 11:38
- add internal endpoint by @aleoli - 24 Apr 2024 11:38
- add internal endpoint by @aleoli - 24 Apr 2024 11:38
- Network: firewall controller chain by @cheina97 - 24 Apr 2024 11:38
- Go mod tidy by @cheina97 - 24 Apr 2024 11:38
- Network: firewall controller + webhook by @cheina97 - 24 Apr 2024 11:38
- Added Configurations fields by @fra98 - 24 Apr 2024 11:38
- Network: Firewall API by @cheina97 - 24 Apr 2024 11:38
- External Network: ping disable by @cheina97 - 24 Apr 2024 11:38
- watch connection instead of tunnelendpoints by @aleoli - 24 Apr 2024 11:38
- Added support for static LoadBalancerIP and NodePort by @fra98 - 24 Apr 2024 11:38
- integrate external network with peering by @aleoli - 24 Apr 2024 11:38
- Liqoctl network delete resources by @fra98 - 24 Apr 2024 11:38
- fix controller runtime bump by @aleoli - 24 Apr 2024 11:38
- Liqoctl network connect: fixes by @fra98 - 24 Apr 2024 11:38
- External Network: Wireguard Templates by @cheina97 - 24 Apr 2024 11:38
- External Network: connection controller by @cheina97 - 24 Apr 2024 11:38
- External Network: MTU by @cheina97 - 24 Apr 2024 11:38
- Liqoctl network connect by @fra98 - 24 Apr 2024 11:38
- Wireguard Tunnel Container by @cheina97 - 24 Apr 2024 11:38
- External-network: legacy gateway by @cheina97 - 24 Apr 2024 11:38
- Fix API and Gateway controllers by @fra98 - 24 Apr 2024 11:38
- add secret ref to top-level resources by @aleoli - 24 Apr 2024 11:38
- External Network: Connection API by @cheina97 - 24 Apr 2024 11:38
- fix apis by @aleoli - 24 Apr 2024 11:38
- liqoctl add network configuration commands by @aleoli - 24 Apr 2024 11:38
- Implemented WgGatewayServers controller by @fra98 - 24 Apr 2024 11:38
- PublicKey API: plural fix by @cheina97 - 24 Apr 2024 11:38
- gateway server and client controllers by @aleoli - 24 Apr 2024 11:38
- Helm-docs ignore CRDs by @cheina97 - 24 Apr 2024 11:38
- Configuration controller by @cheina97 - 24 Apr 2024 11:38
- Unit tests: envtest server new crds path by @cheina97 - 24 Apr 2024 11:38
- CRDs helm subchart by @cheina97 - 24 Apr 2024 11:38
- add external network apis by @aleoli - 24 Apr 2024 11:38
- Fixed uninstall and unit tests by @fra98 - 24 Apr 2024 11:38
- IP: create associated Service by @fra98 - 2...
Contributors
cheina97, aleoli, and fra98
Assets 13
v0.10.3
Contributors
frisso, cheina97, and 2 other contributors
Assets 13
v0.10.2
What's Changed
🚀 New Features
- E2E: metrics-agent tests by @cheina97 in #2134
- Create codeql.yml by @cheina97 in #2149
- Makefile: added nilaway (static analysis tool to detect potential Nil panics in Go code) by @fra98 in #2255
- add net interfaces monitoring by @pucciorenzo in #2259
- Virtual node taints by @aleoli in #2304
- Add liqo runtime class by @aleoli in #2305
- Virtual Node: implementation of OffloadingPatch consumer-side by @fra98 in #2309
- Select remote namespace name when offloading by @aleoli in #2310
- Virtual Node: specify labels/annotations not reflected in API Spec by @fra98 in #2311
- Support priorityClassName in Helm chart by @EladDolev in #2345
- Add Prometheus scraping in Helm chart by @EladDolev in #2366
- liqoctl: add incoming flag to peer and unpeer commands by @hamzalsheikh in #2318
🐛 Bug Fixes
- E2E: fix calico by @cheina97 in #2154
- Fix CodeQL by @cheina97 in #2161
- Fix CodeQL push on branch by @cheina97 in #2164
- CodeQL: fix slack message by @cheina97 in #2179
- Fix liqoctl build ci by @aleoli in #2248
- Fix reflection for Kubernetes 1.29 by @aleoli in #2260
- Helm: Fix extraArgs by @kariya-mitsuru in #2288
- Fix liqoctl install on AzureCNI by @aleoli in #2295
🧹 Code Refactoring
- E2E: CNI wait and retry by @cheina97 in #2133
- Remove old CodeQL action by @cheina97 in #2136
- CI: Helm Lint by @cheina97 in #2180
- Bump terraform providers by @aleoli in #2267
- Liqoctl: get liqo version from controller-manager by @fra98 in #2289
📝 Documentation
- CodeQL Badge by @cheina97 in #2138
- Docs: FAQ page by @fra98 in #1976
- Liqo RuntimeClass docs by @aleoli in #2306
- Kubertnes API access docs by @aleoli in #2308
- Docs: added evaluation priority flags by @fra98 in #2313
Other Changes
- Updated wireguard-go to the latest commit by @MircoBarone in #2167
- Faster build in codeql by @cheina97 in #2168
- Doc: update sphinx packages by @cheina97 in #2210
- Docs: Fix broken link for contributing page by @kariya-mitsuru in #2236
- Reflect Ingress and LB Class to remote clusters by @aleoli in #2209
- Helm: Add SAN to a certificate of liqo-metric-agent by @kariya-mitsuru in #2237
- README: removed old badge by @cheina97 in #2258
- Fix automerge by @aleoli in #2264
- Bump k8s api from 0.28.4 to 0.29.0 by @cheina97 in #2229
- Bump virtual-kubelet to v1.11.0 by @fra98 in #2293
- Updated ROADMAP for the next (0.11) release by @frisso in #2299
- Bump k8s libs to v0.29.2 by @fra98 in #2355
- Bump golang version from 1.21 to 1.22 by @fra98 in #2356
- fix: ServiceMonitor PodMonitor scrape config null values by @shkrid in #2374
- Support getting aws credentials from existing secret instead of clear text in values file by @dennispan in #2395
New Contributors
- @MircoBarone made their first contribution in #2167
- @kariya-mitsuru made their first contribution in #2236
- @pucciorenzo made their first contribution in #2259
- @EladDolev made their first contribution in #2345
- @hamzalsheikh made their first contribution in #2318
- @shkrid made their first contribution in #2374
- @dennispan made their first contribution in #2395
Full Changelog: v0.10.1...v0.10.2
Contributors
kariya-mitsuru, shkrid, and 9 other contributors
Assets 13
v0.10.1
v0.10.0
What's Changed
Version 0.10.0 marks a step forward in inter-cluster security.
This release introduces an inter-cluster traffic segregation optional mode that prevents remote workloads from accessing local not-offloaded services. Additionally, the local cluster will only be able to contact its offloaded pods and not other pods running remotely.
Another feature makes it possible to configure a per-resource allow-based or deny-based reflection mechanism. Two different reflection mechanisms can be selected for each resource at install time:
- DenyList: reflects all the resources available in the liqo-enabled namespaces, excluding the ones with the
liqo.io/skip-reflectionannotation. - AllowList: do not reflect any resource in the liqo-enabled namespaces, but the ones with the
liqo.io/allow-reflectionannotation.
Other minor improvements and bug fixes have been introduced.
Thank you to everyone who tested our previous release, gave us hints to improve the project's usability, and contributed to this release!
🚀 New Features
- Enable Gateway leader election only if replicate gt 1 by @Sharathmk99 in #2029
- Force NodePort's port from Helm Values by @cheina97 in #2037
- Security Mode: traffic segregation by @francescodanzi in #1695
- Telemetry: security mode by @cheina97 in #2083
- AllowList-based and DenyList-based Resource Reflection by @fra98 in #1961
🐛 Bug Fixes
- Fix bug endpoints not reflected by @fra98 in #2032
- Overlay Operator test timeout by @cheina97 in #2034
- Fix nil pointer deference in pod Ready condition by @fra98 in #2039
- Endpointslices reflection fix by @fra98 in #2043
- Makefile: Improved MacOS compatibility by @cannarelladev in #2047
- Always reflect kube-root-ca.crt configmap in offloaded namespaces by @fra98 in #2044
- Fix - Liqo Gateway & Auth Loadbalancer Typo by @Sharathmk99 in #2052
- Metric Agent: cache fix by @cheina97 in #2080
- CI: Increased flannel wait by @cheina97 in #2090
- Security Mode: E2E tests by @cheina97 in #2084
🧹 Code Refactoring
- CI: added proxy by @cheina97 in #2041
- Liqo Proxy by @cheina97 in #2040
- Bump golangci-lint and gci by @fra98 in #2064
- Liqonet: connchecker refactoring by @cheina97 in #2076
- Liqonet: IPSet by @cheina97 in #2109
- Added pre-commit hook configuration by @cheina97 in #2117
📝 Documentation
- Docs: supported kubernetes versions by @cheina97 in #2063
- Docs: security modes by @francescodanzi in #2060
- Clarified the use of custom installation options by @frisso in #2086
- Docs: add warning for api server when security mode is enabled by @aleoli in #2111
Other Changes
New Contributors
- @francescodanzi made their first contribution in #1695
Full Changelog: v0.9.4...v0.10.0
Contributors
Sharathmk99, frisso, and 5 other contributors
Assets 13
v0.9.4
What's Changed
🚀 New Features
- AllowList-based and DenyList-based Resource Reflection by @fra98 in #1961
- Liqo-route: liqo.host forward by @cheina97 in #1979
- Controller client timeout by @cheina97 in #1991
- Helm values files for CLI by @scottboring in #1974
- AKS Private Link by @scottboring in #1985
🐛 Bug Fixes
- Liqo-route: iptables-nft by @cheina97 in #1978
- Liqoctl: check --dump-values-path install flag by @fra98 in #1975
- Telemetry service-account permissions by @cheina97 in #1995
🧹 Code Refactoring
- Issues template refactoring by @cheina97 in #1983
- chore: chunks slice loop append replace by @testwill in #1986
- VirtualNode: namespacemap virtualnode selector by @cheina97 in #1977
- Fix go version in go.mod by @aleoli in #1996
- fix dependabot docker updater by @aleoli in #2002
- VirtualNode: deletion-routine refactoring by @cheina97 in #1984
Other Changes
- liqoctl: add create VirtualNode command by @aleoli in #1944
- liqo-route: mac annotation fix by @cheina97 in #2014
- Override default Ingress tls secretName by @Sharathmk99 in #2012
- Bump GCI version to v0.11.0 by @fra98 in #2022
- Adding a reference how to download liqoctl by @frisso in #2024
- Liqo Gateway & Auth Service Loadbalancer Static IP by @Sharathmk99 in #2013
New Contributors
Full Changelog: v0.9.3...v0.9.4
Contributors
Sharathmk99, testwill, and 5 other contributors