secrets/pki: Allow signing of self-issued certs with a different signature algorithm. [GH-12514]
BUG FIXES:
agent: Avoid possible unexpected fault address panic when using persistent cache. [GH-12534]
core (enterprise): Allow deletion of stored licenses on DR secondary nodes
core (enterprise): Fix bug where password generation through password policies do not work on namespaces if performed outside a request callback or from an external plugin. [GH-12635]
core (enterprise): Only delete quotas on primary cluster. [GH-12339]
identity: Fail alias rename if the resulting (name,accessor) exists already [GH-12473]
raft (enterprise): Fix panic when updating auto-snapshot config
secrets/db: Fix bug where Vault can rotate static role passwords early during start up under certain conditions. [GH-12563]
secrets/openldap: Fix bug where Vault can rotate static role passwords early during start up under certain conditions. #28 [GH-12599]
secrets/transit: Enforce minimum cache size for transit backend and init cache size on transit backend without restart. [GH-12418]
storage/raft: Detect incomplete raft snapshots in api.RaftSnapshot(), and thereby in vault operator raft snapshot save. [GH-12388]
ui: Fix bug where capabilities check on secret-delete-menu was encoding the forward slashes. [GH-12550]
ui: Show day of month instead of day of year in the expiration warning dialog [GH-11984]
secrets/pki: Allow signing of self-issued certs with a different signature algorithm. [GH-12514]
BUG FIXES:
agent: Avoid possible unexpected fault address panic when using persistent cache. [GH-12534]
core (enterprise): Allow deletion of stored licenses on DR secondary nodes
core (enterprise): Fix bug where password generation through password policies do not work on namespaces if performed outside a request callback or from an external plugin. [GH-12635]
core (enterprise): Only delete quotas on primary cluster. [GH-12339]
identity: Fail alias rename if the resulting (name,accessor) exists already [GH-12473]
raft (enterprise): Fix panic when updating auto-snapshot config
secrets/db: Fix bug where Vault can rotate static role passwords early during start up under certain conditions. [GH-12563]
secrets/openldap: Fix bug where Vault can rotate static role passwords early during start up under certain conditions. #28 [GH-12599]
secrets/transit: Enforce minimum cache size for transit backend and init cache size on transit backend without restart. [GH-12418]
storage/raft: Detect incomplete raft snapshots in api.RaftSnapshot(), and thereby in vault operator raft snapshot save. [GH-12388]
ui: Fix bug where capabilities check on secret-delete-menu was encoding the forward slashes. [GH-12550]
ui: Show day of month instead of day of year in the expiration warning dialog [GH-11984]
1.8.2
26 August 2021
CHANGES:
Alpine: Docker images for Vault 1.6.6+, 1.7.4+, and 1.8.2+ are built with Alpine 3.14, due to CVE-2021-36159
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps github.com/hashicorp/vault/api from 1.7.2 to 1.8.3.
Release notes
Sourced from github.com/hashicorp/vault/api's releases.
... (truncated)
Changelog
Sourced from github.com/hashicorp/vault/api's changelog.
... (truncated)
Commits
73e85c3
Add missing read unlock calls in transit backend code (#12652) (#12662)c3a48b1
SDK bump for 1.8.3 (#12656)193e27e
Updating SDK version for 1.8.3 (#12654)2d8e2d3
core: set namespace within GeneratePasswordFromPolicy (#12635) (#12649)0fd0699
test: pin docker image on postgres to 13.4-buster (#12636) (#12642)bf52bf3
Port: Premature Rotation For autorotate (#12563) (#12606)b0a3fec
dep: update vault-plugin-secrets-openldap to v0.5.2 (#12599)ee83ef7
Fail alias rename if the resulting (name,accessor) exists already (#12473) (#...5cc3349
Enforce minimum cache size for transit backend (#12418) (#12551)efcd68f
Allow signing self issued certs with a different public key algorithm. (#1251...Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)