Skip to content

Releases: edgelesssys/constellation

v2.20.0

04 Dec 07:29
Compare
Choose a tag to compare

What's Changed

🐛 Bug fixes

  • terraform: fix security rule reconciliation on Azure by @elchead in #3454
  • bootstrapper: only err if no control plane IPs available by @msanft in #3496

🔧 Other changes

  • config: only allow confidential instances on stackit by @h3adex in #3463

New Contributors

Full Changelog: v2.19.3...v2.20.0

v2.19.3

26 Nov 07:18
Compare
Choose a tag to compare

What's Changed

🐛 Bug fixes

  • deps: update google/go-sev-guest to v0.11.2-0.20241122022416-97a55186df28 to fix AMD SEV-SNP attestation report parsing on AWS by @daniel-weisse in #3490

Full Changelog: v2.19.2...v2.19.3

v2.19.2

06 Nov 08:51
Compare
Choose a tag to compare

What's Changed

🐛 Bug fixes

  • terraform: fix security rule reconciliation on Azure by @elchead in #3454

🔧 Other changes

  • config: only allow confidential instances on stackit by @h3adex in #3463

Full Changelog: v2.19.0...v2.19.2

v2.19.1

05 Nov 08:08
Compare
Choose a tag to compare

⚠️ Please use v2.19.2.

What's Changed

🐛 Bug fixes

  • terraform: fix security rule reconciliation on Azure by @elchead in #3454

🔧 Other changes

  • docs: clarify for Azure TDX with Terraform provider by @elchead in #3449
  • config: only allow confidential instances on stackit by @h3adex in #3463
  • docs: how to reproduce released artifacts by @burgerdev in #3451

New Contributors

Full Changelog: v2.19.0...v2.19.1

v2.19.0

21 Oct 07:18
Compare
Choose a tag to compare

⚠️ Please use v2.19.2.

What's Changed

🐛 Bug fixes

  • image: improve AWS performance by retiring idle=poll option by @burgerdev in #3387

🔧 Other changes

Full Changelog: v2.18.0...v2.19.0

v2.18.0

27 Sep 07:07
Compare
Choose a tag to compare

What's Changed

🛠 Breaking changes

  • ci: mirror GCP SEV-SNP marketplace images by @msanft in #3274

🎁 New features

  • Make SEV-SNP the default attestation variant on GCP by @thomasten in #3267
  • terraform-provider-constellation: make kubeconfig output fine-grained by @msanft in #3334

🐛 Bug fixes

  • helm: cilium: allow multiple default routes by @burgerdev in #3344
  • openstack: Fix a crash in the bootstrapper during node join discovery by @3u13r in #3375

🔧 Other changes

New Contributors

Full Changelog: v2.17.0...v2.18.0

v2.17.0

03 Jul 12:11
Compare
Choose a tag to compare

What's Changed

🛠 Breaking changes

🎁 New features

🐛 Bug fixes

  • cli: retry auth handshake deadline exceeded errors in CLI and Terraform by @daniel-weisse in #2976
  • bootstrapper: wipe disk and reboot on non-recoverable error by @daniel-weisse in #2971
  • bazel: patch Go SDK to increase TLS maxHandshake size by @malt3 in #3009
  • kubecmd: retry any k8s errors in CLI and Terraform by @daniel-weisse in #3028
  • helm: Restore the ability to start a cluster in conformance mode by disabling the cilium ipmasq agent when in conformance mode by @3u13r in #3062
  • terraform: add missing policies for AWS ALB by @burgerdev in #3063
  • operators: ignore node deletion errors on absence by @burgerdev in #3113
  • cli: fix constellation verify depending on an initialized constellation-state.yaml file by @daniel-weisse in #3184

🔧 Other changes

New Contributors

Full Changelog: v2.16.4...v2.17.0

v2.16.4

15 May 05:59
Compare
Choose a tag to compare

Whats changed

This patch release adds optional IAM permissions to support AWS Application Load Balancers.
Run constellation iam upgrade apply to add these permissions to an existing Constellation.

🐛 Bug fixes

  • helm: disable cilium ipmasq agent when in conformance mode by @3u13r
  • terraform: add missing policies for AWS ALB by @burgerdev
  • attestation: dont set a default for TDX MRSEAM by @daniel-weisse
  • deps: upgrade terraform provider stackit to 0.17.0 by @malt3 and @burgerdev
  • snp: ensure we never use ARK supplied by Issuer by @daniel-weisse
  • kubecmd: retry any k8s errors in CLI and Terraform by @daniel-weisse

Full Changelog: v2.16.3...v2.16.4

v2.16.3

15 Apr 12:50
Compare
Choose a tag to compare

This release patches the following security vulnerability in Constellation:

Whats changed

🐛 Bug fixes

Full Changelog: v2.16.2...v2.16.3

v2.16.2

08 Apr 09:10
Compare
Choose a tag to compare

This release fixes an issue which could prevent Constellation cluster creation with Azure SEV-SNP.

Whats changed

🐛 Bug fixes

  • increase TLS maxHandshake size to fix deployments on Azure SEV-SNP by @malt3 in #3009
  • helm: manually retry uninstalling a failed release during constellation apply by @burgerdev in #2984

🔧 Other changes

  • terraform: update terraform provider STACKIT to v0.15.1 by @burgerdev in #3007

Full Changelog: v2.16.1...v2.16.2