Diego v2.65.0

Changes

• Replace GinkgoParallelNode with GinkgoParallelProcess @ebroberson (#630)
• Bump Golang to go1.18.4 @cf-diego (#625)
  Breaking Changes: The diego components are now more strict about the protocols used in TLS communications, causing integrations with systems using older, insecure protocols to fail. These components have been updated to Go 1.18, and will no longer support TLS 1.0 and 1.1 connections or certificates with a SHA-1 checksum. This is most likely to affect connections with external databases.

Resources

• Download release v2.65.0 from bosh.io.
• Verified with cloudfoundry/cf-deployment @ 3b04e79bd33220a117c4543b1c8074bc13bf7c24.

✨ Built with go 1.18.4

Diego v2.64.0

Changes

• Bump Golang to go1.18.linux-amd64 (#622)

Resources

• Download release v2.64.0 from bosh.io.
• Verified with cloudfoundry/cf-deployment @ 6e06b9d09aab84101ba9f5ca5aa4e8b6344cc5c7.

Diego v2.63.0

Changes

• Pass log config in container spec to garden, so that vxlan-policy-agent can send app logs

Resources

• Download release v2.63.0 from bosh.io.
• Verified with cloudfoundry/cf-deployment @ d816bd14c9ca957f020381643f362d062ef60550.

Diego v2.62.0

Resources

• Download release v2.62.0 from bosh.io.
• Verified with cloudfoundry/cf-deployment @ d816bd14c9ca957f020381643f362d062ef60550.

Diego v2.61.0

NOTE on release version

Diego release v2.60.0 does not exist; never had, never will. One of our engineers accidentally pressed a button in our CI to bump the version number independent of actually releasing anything. 🙃 Sorry! 🙇

Resources

• Download release v2.61.0 from bosh.io.
• Verified with cloudfoundry/cf-deployment @ e20e11dd243f57555e3e0ad281e6797fbfde8152.

Changes

• Addresses CVE-2022-23806 and CVE-2022-23772 by bumping golang package to include go 1.17.8, (#614)

✨ Built with golang 1.17.8

v2.59.0

Resources

• Download release v2.59.0 from bosh.io.
• Verified with cloudfoundry/cf-deployment @ d92d82e6404eb7455c71083f262c364a6bed55be.

Changes

• Deprecate start and evacuate_running endpoints @moleske (#617)
• Ensure containers can eventually communicate over TLS using application internal route even if synchronous communication fails.
  • ⚠️ This introduces a new migration to the BBS for the first time in nearly 4 years. Once you deploy this version you can not easily rollback.

✨ Built with golang 1.17.5

v2.58.1

SAME AS v2.59.0

• This version was created by accident in our automation.
• Please use diego-release v2.59.0 instead

v2.58.0

Resources

• Download release v2.58.0 from bosh.io.
• Verified with cloudfoundry/cf-deployment @ d92d82e6404eb7455c71083f262c364a6bed55be.

Changes

• Route emitter's healthcheck_address no longer accepts leading zeros @ameowlia @geofffranks (#616)

✨ Built with golang 1.17.5

v2.57.0

Resources

• Download release v2.57.0 from bosh.io.
• Verified with cloudfoundry/cf-deployment @ d92d82e6404eb7455c71083f262c364a6bed55be.

Changes

• Addresses CVE-2021-43816 by bumping containerd to v1.5.9 @jrussett (#612)

✨ Built with golang 1.17.5

v2.56.0

Resources

• Download release v2.56.0 from bosh.io.
• Verified with cloudfoundry/cf-deployment @ d92d82e6404eb7455c71083f262c364a6bed55be.

Changes

• C2C certificate is regenerated when internal routes are updated (#588)