This topic lists the latest changes to Ingress-NGINX.

March 2021

Version Image address Release date Description Impact
v0.44.0.1-5e842447b-aliyun registry.cn-hangzhou.aliyuncs.com/acs/aliyun-ingress-controller:v0.44.0.1-5e842447b-aliyun 2020-03-08
  • Validating admission webhooks are enabled by default.
  • The validity of the service-weight annotation is checked.
  • The performance of persistent connections and short-lived connections is increased by 20% to 50%.
  • AHAS Sentinel is integrated.
  • OCSP stapling is supported.
  • LuaJIT is upgraded to V2.1.0.
  • NGINX is upgraded to V1.19.6.
  • The image of Alpine Linux is upgraded to V3.13.
  • CVE security vulnerabilities related to OpenSSL are fixed.
  • TLS V1.3 is enabled by default.
  • The Kubernetes version must be V1.16 and later.
  • The latest changes are updated to the open source version 0.44.0. For more information, see Open source Changelog.
The upgrade may temporarily interrupt your service. We recommend that you upgrade Ingress-NGINX during off-peak hours.

April 2020

Version Image address Release date Description Impact
v0.30.0.1-5f89cb606-aliyun registry.cn-hangzhou.aliyuncs.com/acs/aliyun-ingress-controller:v0.30.0.1-5f89cb606-aliyun 2020-04-02
  • FastCGI Backend is supported.
  • The Dynamic SSL Cert Update mode is enabled by default.
  • The feature that is used to mirror requests to backend servers is supported.
  • NGINX is upgraded to V1.17.8 and OpenResty is upgraded to V1.15.8. The operating system of base images is updated to Alpine Linux.
  • Ingress validating admission webhooks are supported.
  • The following vulnerabilities are fixed: CVE-2018-16843, CVE-2018-16844, CVE-2019-9511, CVE-2019-9513, and CVE-2019-9516.
  • Major updates:
    • The lua-resty-waf, session-cookie-hash, and force-namespace-isolation configurations are deprecated.
    • The data type of x-forwarded-prefix is changed from BOOLEAN to STRING.
    • The the_real_ip variable in log-format will be deprecated in the next version and replaced with remote_addr.
  • The NGINX Ingress controller is upgraded to Ingress-NGINX 0.30.0. For more information about the updates, see Changelog.
The upgrade may temporarily interrupt your service. We recommend that you upgrade Ingress-NGINX during off-peak hours.

October 2019

Version Image address Release date Description Impact
v0.22.0.5-552e0db-aliyun registry.cn-hangzhou.aliyuncs.com/acs/aliyun-ingress-controller:v0.22.0.5-552e0db-aliyun 2019-10-24 If you enable dynamic update for NGINX upstream servers, this provides support for wildcard domain names, whitelists, and rewrite rules. The upgrade may temporarily interrupt your service. We recommend that you upgrade Ingress-NGINX during off-peak hours.

July 2019

Version Image address Release date Description Impact
v0.22.0.4-5a14d4b-aliyun registry.cn-hangzhou.aliyuncs.com/acs/aliyun-ingress-controller:v0.22.0.4-5a14d4b-aliyun 2019-07-18 Phased release rules are optimized and the Perl regular expressions are supported. The upgrade may temporarily interrupt your service. We recommend that you upgrade Ingress-NGINX during off-peak hours.

April 2019

Version Image address Release date Description Impact
v0.22.0.3-da10b7f-aliyun registry.cn-hangzhou.aliyuncs.com/acs/aliyun-ingress-controller:v0.22.0.3-da10b7f-aliyun 2019-04-25
  • The NGINX Ingress controller is upgraded to Ingress-NGINX 0.22.0. For more information about the updates, see Ingress-NGINX.
  • If you enable dynamic update for NGINX upstream servers, this provides support for blue-green releases and canary releases.
  • Dynamic update is enabled for NGINX upstream servers by default.
  • Major updates: Capture groups are used for rewrite-target annotations. For more information, see rewrite-target. For more information about how to smoothly upgrade Ingress-NGINX, see Github.
The upgrade may temporarily interrupt your service. We recommend that you upgrade Ingress-NGINX during off-peak hours.

January 2019

Version Image address Release date Description Impact
v0.20.0.2-cc39f1b-aliyun registry.cn-hangzhou.aliyuncs.com/acs/aliyun-ingress-controller:v0.20.0.2-cc39f1b-aliyun 2019-01-17
  • The default number of NGINX worker processes is limited. This avoids the issue when excess NGINX processes occupy host resources.
  • Different service port numbers are supported for different Ingress-NGINX versions during blue-green releases and canary releases.
  • The NGINX configuration verification failure is fixed when no pod is active in the backend servers of a new Ingress-NGINX version during a canary release.
  • The following issue is fixed: The Ingress address endpoint is not updated. This issue was caused by failed connections to the Kubernetes API server.
The upgrade may temporarily interrupt your service. We recommend that you upgrade Ingress-NGINX during off-peak hours.

November 2018

Version Image address Release date Description Impact
v0.20.0.1-4597ce2-aliyun registry.cn-hangzhou.aliyuncs.com/acs/aliyun-ingress-controller:v0.20.0.1-4597ce2-aliyun 2018-11-29
  • The NGINX Ingress controller is upgraded to Ingress-NGINX 0.20.0. For more information about the updates, see Kubernetes community.
  • NGINX is upgraded to V1.15.6 and HTTP/2-related security vulnerabilities are fixed.
  • The path field supports regular expressions.
  • The default-http-backend service is removed and custom default backend services are supported.
  • Blacklists based on IP addresses, user agents, and referer header fields are supported.
  • The default permissions are optimized and the privileged permissions are removed.
  • Apache JServ Protocol (AJP) is supported.
The upgrade may temporarily interrupt your service. We recommend that you upgrade Ingress-NGINX during off-peak hours.