Changelog

1.33.10 (2023-08-16)

Bug Fixes

replace the hardcoded default version string (#1836) (#1900) (f945798)

1.33.9 (2023-07-18)

Bug Fixes

update dependencies to latest versions (#1873) (1978c11)

1.33.8 (2023-06-20)

Bug Fixes

update dependencies to latest versions (#1846) (d7b43c0)

1.33.7 (2023-05-16)

Bug Fixes

update dependencies to latest versions (#1798) (e652120)

1.33.6 (2023-04-18)

Bug Fixes

update dependencies to latest versions (#1752) (f0b3cbd)

1.33.5 (2023-03-22)

Bug Fixes

bump all dependencies to latest (#1706) (7ff4c4f)

1.33.4 (2023-02-23)

Bug Fixes

build statically linked binaries (#1681) (ccb9bfa)

1.33.3 (2023-02-22)

Bug Fixes

add support for Go 1.20 (#1668) (c3d0c6b)
bump deps to latest (#1671) (084b72e)
require login_token with token and enable_iam_login (#1641) (48a2fe5)

1.33.2 (2022-12-19)

Bug Fixes

update dependencies to latest versions (#1581) (e23ccb4)

1.33.1 (2022-11-15)

Bug Fixes

update dependencies to latest versions (#1546) (a3aba9a)

1.33.0 (2022-10-25)

Features

add bullseye container image (#1467) (5a5d0a1)
add support for Go 1.19 (#1441) (1b16ff8)
deprecate proxy drivers (#1500) (2b460ea)
Downscope OAuth2 token included in ephemeral certificate (#1450) (7557a35)

Bug Fixes

don't build fuse on freebsd (#1439) (87863a1)
restore Go 1.16 support (#1408) (618cb12)
update all direct deps to latest (#1497) (b15f78a)

1.32.0 (2022-09-08)

Bug Fixes

update dependencies to latest versions (#1383) (8b6b137)

1.31.2 (2022-08-02)

Bug Fixes

update dependencies to latest versions (#1286) (d3f9dcb)

1.31.1 (2022-07-12)

Bug Fixes

strip monotonic clock reading during refresh (#1223) (957d160)

1.31.0 (2022-06-02)

Features

make Docker images ARM-friendly (#1193) (6a98a04)

1.30.1 (2022-05-03)

Bug Fixes

update dependencies to latest versions (#1187) (f915180)

1.30.0 (2022-04-04)

Features

drop support and testing for Go 1.13, 1.14, 1.15 (#1148) (158b0d5)

1.29.0 (2022-03-01)

Features

add Go version support policy (#1109) (ae6f4a1)

1.28.1 (2022-01-31)

Bug Fixes

invalidated config should retain error (#1068) (49d3003)
remove unnecessary token parsing (#1074) (e138611)
return error from instance version (#1069) (d9fc819)

1.28.0 (2022-01-04)

Features

add support for ReadTime in Admin API requests (#1040) (a7c8b5c)
add support for specifying a quota project (#1044) (dc66aca)
allow multiple -instances flags (#1046) (1972693), closes #1030

Bug Fixes

increase rateLimit burst size to 2 (#1048) (df6b6f9)

1.27.1 (2021-12-07)

Bug Fixes

update dependencies to latest versions (#1034) (8954d24)

1.27.0 (2021-11-02)

Features

switch to supported FUSE library (#953) (10f2133)
verify FUSE is installed on macOS / linux (#959) (9ab868e)

Bug Fixes

fail fast on invalid config (#999) (18a0960)
respect context deadline for TLS handshakes (#987) (12ff12c), closes #986
validate instance connections in liveness probe (#995) (e5cc8d4)

1.26.0 (2021-10-05)

Features

improve reliability of refresh operations (#883) (480992a)

1.25.0 (2021-09-07)

Features

add health checks to proxy (#859) (ea62bdd)
add instance dialing to health check (#871) (eca3793)
require TLS v1.3 at minimum (#906) (cafa966)

Bug Fixes

ensure proxy shuts down gracefully on SIGTERM (#877) (9793555)
validate instances in fuse mode (#875) (96f8b65)

1.24.0 (2021-08-02)

Features

Add option to delay key generation until first connect (#841) (4999ffd)
stop building darwin 386 binaries (#846) (77d7c40), closes #780

Bug Fixes

invalidate cached config on handshake error (#817) (5d98f5c)
strip padding from access tokens if present (#851) (1f195e5)
structured_logs compatibility with Google Cloud Logging (#861) (74a6ec7)

1.23.1 (2021-07-12)

Bug Fixes

improve log message when refresh is throttled (#830) (4ffee2a)

1.23.0 (2021-06-01)

Features

add deprecation warning for Darwin 386 (#781) (cdc552b)

Bug Fixes

change to static base container (#791) (d66233e)

1.22.0 (2021-04-21)

Features

Add support for systemd notify (#719) (4305eff)

Bug Fixes

Allow combined use of structured logs and -log_debug_stdout (#726) (45bda77)
return early when cert refresh fails (#748) (fd21f66)
structured logging respects the -verbose flag (#737) (f35422f)

1.21.0 (2021-04-05)

Features

add support for structured logs (#650) (ca8993a)

Bug Fixes

improve cache to prevent multiple concurrent refreshes (#674) (c5ffa69)
lower refresh buffer and config throttle when IAM authn is enabled (#680) (58acab3)
prevent refreshCfg from scheduling multiple refreshes (#666) (52db349)

1.20.2 (2021-03-05)

Bug Fixes

ensure certificate expiration is correct (#659) (2fd2504)
perform initial gcloud check and reuse token (#657) (f3bf3f9)

1.20.1 (2021-03-04)

Bug Fixes

prevent untrusted gcloud exe's from running (#649) (0f0ff49)
use new oauth2 token with cert refresh (#648) (6d5e455)
verify TokenSource exists in TokenExpiration() (#642) (d01d7eb)

1.20.0 (2021-02-24)

Features

add ARM releases (#631) (d3fb7f6)
Added '-enable_iam_login' flag for IAM db authentication (#583) (470f92d)

1.19.2 (2021-02-16)

Bug Fixes

improve logging for file descriptor limits (#609) (b42b681), closes #413

1.19.1 (2020-12-02)

Bug Fixes

Ensure necessary fields are 64-bit aligned (#550) (4575c8f)

1.19.0 (2020-11-18)

Features

Added DialContext to Client and proxy package (#483) (c84aa50)
use regionalized instance ids to prevent global conflicts with sqladmin v1 (#504) (6c45513)

Bug Fixes

containers: Allow non-root users to mount fuse filesystems for alpine and buster images (#540) (5b653f5)
only allow fuse mode to unmount if an error occurs first (#537) (6caef36)
refreshCfg no longer caches error over valid cert (#521) (4a6b3d8)

1.18.0 (2020-09-08)

Features

containers: Add "-alpine" and "-buster" based images. (#415) (ebcf294)
containers: Add fuse to alpine and buster images (#459) (0f28fcd)

Bug Fixes

Print out any errors during SIGTERM-caused shutdown (#389)
Optimize -term-timeout wait (#391)
Add socket suffix for Postgres instances when running in -fuse mode (#426) (20ffaec)
containers: Specify nonroot user by uid to work with runAsNonRoot (#402) (c5c0be1)
Releases are now tagged using vMAJOR.MINOR.PATCH for correct compatibility with go-modules. Please note that this will effect container image tags (which were previously only vMAJOR.MINOR), since these tags correspond directly to the release on GitHub.