cli: Fix issue where consul connect envoy incorrectly uses the HTTPS API configuration for xDS connections. [GH-15466]
sdk: Fix SDK testutil backwards compatibility by only configuring grpc_tls port for new Consul versions. [GH-15423]
1.14.0 (November 15, 2022)
KNOWN ISSUES:
cli: consul connect envoy incorrectly enables TLS for gRPC connections when the HTTP API is TLS-enabled.
BREAKING CHANGES:
config: Add new ports.grpc_tls configuration option.
Introduce a new port to better separate TLS config from the existing ports.grpc config.
The new ports.grpc_tls only supports TLS encrypted communication.
The existing ports.grpc now only supports plain-text communication. [GH-15339]
config: update 1.14 config defaults: Enable peering and connect by default. [GH-15302]
config: update 1.14 config defaults: Set gRPC TLS port default value to 8503 [GH-15302]
connect: Removes support for Envoy 1.20 [GH-15093]
peering: Rename PeerName to Peer on prepared queries and exported services. [GH-14854]
xds: Convert service mesh failover to use Envoy's aggregate clusters. This
changes the names of some Envoy dynamic HTTP metrics. [GH-14178]
SECURITY:
Ensure that data imported from peers is filtered by ACLs at the UI Nodes/Services endpoints CVE-2022-3920 [GH-15356]
cli: Add -node-name flag to redirect-traffic command to support running in environments without client agents. [GH-14933]
cli: Add -consul-dns-port flag to the consul connect redirect-traffic command to allow forwarding DNS traffic to a specific Consul DNS port. [GH-15050]
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps github.com/hashicorp/consul/api from 1.15.2 to 1.17.0.
Changelog
Sourced from github.com/hashicorp/consul/api's changelog.
... (truncated)
Commits
6f57a8e
Bump SDK version for API submodule.e297e3e
Revert "Detect Vault 1.11+ import, update default issuer (#15253) (#15437)"5ce0132
Backport of Add -grpc-ca-file and -grpc-ca-path CLI info on upgrade notes. in...c914ac1
backport of commit ee266d8f27aeb3a8c8e015a944a374a7d456351e (#15493)47adbeb
backport of commit 8220f7845ac51fcc35a2e68d059ce1aaa8e2e937 (#15491)6fa93d3
backport of commit 8220f7845ac51fcc35a2e68d059ce1aaa8e2e937 (#15489)263a95d
Backport of docs: formatting release notes into release/1.14.x (#15486)287d7a1
Backport of docs: Core 1.14 and K8s 1.0 release notes into release/1.14.x (#...184574f
backport of commit 42990fc94bc288fb7c5ca52dca48a5c737d13efc (#15480)5028fa4
Backport of docs(peering): peering GA ACL updates into release/1.14.x (#15476)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)