Cloud-native Gateway Engine Release Notes

Updated at:
Copy as MD

This topic provides the release notes for the Cloud-native Gateway engine.

Version

Release date

Description

2.0.21

2026-05-14

  • Fixed an issue that could cause gateway restart and upgrade failures in specific scenarios.

  • Fixed an issue where domain-level IP address blacklists and whitelists did not take effect in specific scenarios.

2.0.20

2026-03-26

  • Circuit breaking policies now support sliding window statistics.

  • Added support for binding route-level Wasm plug-ins to Ingress routes by using annotations.

  • The access log filter now supports domain-based sampling rules and a default sampling rate.

  • Fixed an issue where the request body could be lost in fallback requests in specific scenarios.

  • Fixed an issue where end-to-end canary release configurations did not take effect in specific scenarios.

  • Fixed an issue where the expiration time of custom certificates could be empty in specific scenarios.

2.0.19

2026-02-04

  • Fixed a bug in request data buffer handling for Wasm plug-ins.

  • Optimized memory usage for AI-powered features.

  • Introduced a global request rate limiting mechanism to dynamically control the maximum number of requests for all connections in a single I/O loop through runtime configurations or a Wasm module.

  • Added tenant ID information to Istio metrics.

2.0.18

2025-12-25

  • Added support for routing in cluster header mode.

  • Modified the gRPC keepalive interval between the pilot-agent and Envoy to prevent xDS connections from closing due to timeouts.

  • Increased the default timeout for Secret Discovery Service (SDS) to 300 s.

  • Added a rebuild limit of two concurrent virtual machines (VMs) for Wasm plug-ins in non-recovery scenarios.

  • Added support for configuring multiple domains when connecting to Nacos over MCP.

  • Fixed an issue that caused failures in Redis-related features after service configuration updates.

  • Enhanced the WAF feature.

2.0.17

2025-12-01

  • Optimized the handling logic for gateway overload.

  • Added support for configuring the buffer of the asynchronous Redis client in Wasm plug-ins.

  • Improved the stability of Redis access in the gateway.

2.0.16

2025-10-24

  • WAF integration now supports the remote x-agent mode.

  • Optimized the plug-in rebuild logic.

  • Optimized the initialization process for Kubernetes service sources to prevent issues caused by a large number of namespaces.

  • Resolved potential 503 errors that could occur during key rotation when using a Kubernetes service source.

2.0.15

2025-09-19

  • Fixed an issue where log fields for fallback requests were displayed incorrectly.

  • Optimized overall memory usage.

  • Improved the speed at which configurations take effect when a large number of domains are present.

2.0.14

2025-08-13

  • Added support for passive health checks.

  • Added support for configuring a time to first byte (TTFB) timeout for streaming scenarios with Large Language Model (LLM) APIs.

  • Fixed a compatibility issue introduced in the previous version.

2.0.13

2025-08-11

  • Optimized the route configuration push mechanism to prevent routing failures caused by configuration errors.

  • Optimized memory usage for Wasm plug-ins during frequent configuration updates to improve plug-in stability.

  • Improved the security of Lua plug-ins by disabling high-risk operations such as loadlib.

  • Fixed an issue where the WAF integration module could exit unexpectedly in some extreme scenarios.

2.0.12

2025-07-08

Optimized the automatic scale-out feature and reduced resource overhead when many plug-ins are enabled.

2.0.11

2025-05-30

  • Improved stability during the gateway upgrade process.

  • Fixed an issue with the effective scope of Ingress rate-limiting annotations.

  • Added an API to query the expiration time of Ingress certificates.

2.0.10

2025-04-02

  • The gateway engine now supports GZIP hardware acceleration.

  • Optimized the logic for using some annotations in Ingress scenarios.

2.0.9

2025-02-19

  • Improved stability when using custom plug-ins.

  • Accelerated the speed of metric-based and scheduled automatic scale-out.

  • Optimized the response codes for response_code_details.

  • Simplified the integration of end-to-end canary release.

  • Added support for displaying MSE Ingress details.

  • Optimized the retrieval of the source IP address across any number of hops.

2.0.8

2024-12-23

  • Enhanced stability when using custom plug-ins.

  • Accelerated the speed of metric-based and scheduled automatic scale-out.

  • Added support for multiple Nacos service sources.

2.0.7

2024-11-26

  • Added support for using wildcard domains as a fallback for routes with exact domain matches.

  • Enabled overload protection by default based on CPU usage, memory usage, and connection count.

2.0.6

2024-11-15

  • Optimized the SSL redirection logic for custom authentication.

  • Optimized the integration logic for end-to-end canary release.

  • Fixed an issue with concurrent configuration pushes in certain scenarios.

2.0.5

2024-10-24

Optimized the performance of the Wasm VM.

2.0.4

2024-10-17

  • Added support for overload protection based on CPU and memory usage.

  • Fixed an issue that caused Nacos service node inconsistencies in extreme scenarios.

2.0.3

2024-09-12

  • Fixed an issue with SDS cache errors in certain scenarios.

  • Optimized traffic behavior when a Wasm plug-in is misconfigured.

2.0.2

2024-08-09

  • Fixed an issue where endpoints were not pushed in certain scenarios.

  • Optimized the lane logic for end-to-end canary release.

2.0.1

2024-07-02

  • Improved the upgrade speed from version 1.x.

  • Added an option to skip route recalculation after a Wasm plug-in modifies a header.

2.0.0

2024-06-27

This major engine upgrade significantly improves the speed at which configurations take effect.

1.2.35

2024-06-07

Optimized the configuration delivery logic for large-scale Ingress scenarios.

1.2.34

2024-05-23

  • Added support for OpenTelemetry tracing.

  • MSE Ingress now supports setting the Server Name Indication (SNI) when forwarding HTTPS requests.

  • Added support for configuring the KeepAlive timeout response header to ensure compatibility with older Apache HTTP clients.

1.2.33

2024-04-18

Improved the speed at which route changes take effect in large-scale Ingress scenarios.

1.2.32

2024-03-04

  • Added support for custom plug-ins to access Redis.

  • Introduced the JWT Logout plug-in, which uses Redis to manage JWT login and logout states.

  • Added several Layer 4 monitoring metrics.

  • MSE Ingress now supports configuring the proportion of mirrored traffic by using annotations.

1.2.31

2024-01-15

  • MSE Ingress now supports weight-based routing to multiple services.

  • MSE Ingress now supports the denylist-source-range annotation for IP address blacklists.

  • For MSE Ingress canary release, the matching logic for header and query value regular expressions now uses partial match instead of exact match.

  • Fixed an issue where duplicate IP addresses or hostnames appeared in the Ingress status.

  • Optimized OIDC/IDaaS authentication to support accounts without email addresses and to include a proactive logout mechanism.

  • Improved the stability of the HTTP-to-Dubbo conversion feature.

1.2.30

2023-11-22

  • Optimized the update logic for Sentinel throttling configurations to improve stability.

  • WAF now supports passthrough for gRPC streaming and WebSocket protocols.

  • Optimized the retrieval of WAF interception rules, removing the dependency on public network access.

  • MSE Ingress now supports canary release based on cookie values.

  • MSE Ingress now supports the server-alias annotation to implement domain alias functionality.

1.2.29

2023-11-16

  • Serverless gateways can now write the Network Load Balancer (NLB) hostname to the Ingress status.

  • Optimized the configuration push for self-hosted authentication services.

  • Improved the compatibility of the HTTP-to-Dubbo conversion feature for scenarios with large request bodies.

  • Wasm VMs now support automatic recovery from crashes caused by business code.

1.2.28

2023-10-12

Added support for the serverless version of MSE Cloud-native Gateway.

1.2.27

2023-09-13

Resolved a compatibility issue in versions 1.2.25 and 1.2.26 that occurred when both Sentinel throttling and domain-level or route-level IP address blacklists/whitelists were enabled.

1.2.26

2023-08-31

  • Optimized the memory usage of the SkyWalking tracing module.

  • Optimized the configuration method for enabling Proxy Protocol.

1.2.25

2023-08-23

  • Optimized the integration of Sentinel's throttling, concurrency control, and circuit breaking features with the MSE Cloud-native Gateway.

  • MSE Ingress now supports route-level global throttling and concurrency control with Sentinel.

  • MSE Ingress now supports Service subsets, enabling canary release for multiple deployments within the same Kubernetes service.

1.2.24

2023-08-04

Added compatibility for RSA certificates with key lengths of less than 2,048 bits.

1.2.23

2023-07-27

  • Changed the default response code to 429 when single-gateway throttling is triggered for Ingress.

  • Ingress now supports referencing service port names and allows for dynamic modification of service ports.

  • Improved stability during Nacos upgrades or restarts.

  • Fixed an HTTP-to-Dubbo conversion issue that incorrectly decoded an empty object as the string null.

1.2.22

2023-06-13

  • Ingress now supports high elasticity based on Knative.

  • The Header control policy for Ingress now supports header values that contain spaces.

  • Improved the stability of service synchronization between the gateway and the MSE Nacos registry.

1.2.21

2023-05-25

Optimized the configuration push for gateway routes.

1.2.20

2023-05-23

  • Optimized scenarios involving the combined use of Ingress and the console.

  • Ingress now supports connection-level control for backend services.

1.2.19

2023-05-09

  • Added support for one-click migration from NGINX Ingress to a Cloud-native Gateway.

  • Ingress now supports traffic mirroring.

  • Improved the stability of SkyWalking integration.

1.2.18

2023-04-19

  • Optimized the WAF module.

  • Added an alerting mechanism for Wasm plug-ins.

1.2.17

2023-03-28

Optimized the WAF and Sentinel rate-limiting modules.

1.2.16

2023-03-07

  • Added support for log filtering.

  • Ingress TLS now supports dynamic certificate selection based on Common Name (CN) or Subject Alternative Name (SAN).

  • Ingress canary release now supports policies based on query parameters.

1.2.15

2023-02-13

Fixed a compatibility issue with TLS 1.0 and TLS 1.1 introduced in version 1.2.13.

1.2.14

2023-02-03

Fixed an issue introduced in version 1.2.13 where route matching for a Wasm plug-in did not take effect.

1.2.13

2023-01-18

  • Integrated the end-to-end canary release capability of MSE Microservices Governance.

  • Added support for end-to-end HTTP/3 from the client to the gateway and from the gateway to the service.

  • Improved support for wildcard domain names in the gateway.

  • Added support for configuring the IdleTimeout for upstream services in the gateway.

1.2.12

2023-01-06

  • Improved the stability of service synchronization between the gateway and the MSE Nacos registry.

  • Enhanced the compatibility of Wasm plug-ins from the plug-in marketplace with WebAssembly System Interface (WASI) calls.

  • Fixed an access failure issue in HTTP/2-to-Dubbo conversion with large response data, and resolved an issue where garbled characters appeared in browsers when responses contained Chinese characters.

  • Added support for using the HTTP/3 protocol between the gateway and downstream services.

  • Added support for the Brotli compression algorithm.

  • Added support for configuring forwarding policies for escaped characters in URLs.

1.2.11

2022-12-05

  • Added support for Lua plug-ins.

  • Optimized the mechanism for route-level rate-limiting policies.

  • Optimized the configuration push mechanism.

1.2.10

2022-12-03

  • Improved stability and performance in large-scale container service scenarios.

  • Added rate-limiting protection for scenarios with high gateway CPU load.

1.2.9

2022-10-28

  • Added route-level monitoring information.

  • Added a switch to enable or disable Ingress status updates.

1.2.8

2022-10-14

  • Fixed a configuration push blockage issue in large-scale service discovery scenarios.

  • Optimized the Sentinel rate-limiting module to improve stability.

1.2.7

2022-10-13

Optimized stability and performance when the service source is a container service.

1.2.6

2022-09-16

  • Authentication now supports path matching, including exact match, prefix match, and regular expression match.

  • In HTTP/2-to-Dubbo conversion, service version and service group can now be configured as optional parameters.

1.2.5

2022-09-13

  • Optimized gateway performance under extreme conditions.

  • Added the fallback service feature. If a route's destination service has no available nodes, the gateway automatically fails over traffic to the configured fallback service.

1.2.4

2022-08-23

  • Optimized the proactive health check feature. Proactive health checks no longer keep idled nodes alive.

  • Optimized the WAF feature to handle abnormal HTTP requests.

1.2.3

2022-08-16

  • Services now support proactive health checks using TCP and HTTP.

  • Added support for domain-level control of HTTP/2 and TLS versions.

  • Enhanced Ingress capabilities:

    • Added support for Default Backend in the Ingress specification as a fallback for route matching.

    • Added support for implementing App Root by using an annotation.

    • Added support for implementing an NGINX-like error page capability by using an annotation.

    • Added support for implementing mutual Transport Layer Security (mTLS) authentication between the client and the gateway by using an annotation.

1.2.0

2022-07-28

  • Route configurations now support HTTP-to-Dubbo conversion.

  • Added ZooKeeper as a service source, enabling service discovery for Dubbo services.

1.1.1

2022-07-07

Enhanced Ingress governance at the route and service levels with new annotations for the following features:

  • Domain-level and route-level IP address blacklist and whitelist access control.

  • Header control to add, delete, or modify request and response headers.

  • Timeout and retry policies to improve application network resilience.

  • Route-level, single-gateway rate limiting to ensure high availability of backend services through traffic control.

  • Configurable load balancing algorithms for backend services, including Round Robin, Least Connections, and Random. This also includes a consistent hashing algorithm for request affinity.

  • Service warm-up to ensure zero-loss service deployment.

  • Cookie affinity for session persistence, which ensures that requests are always routed to the same node.

1.1.0

2022-05-18

  • Added a service warm-up feature for newly started backend services.

  • Added support for Application High Availability Service (AHAS).

  • Hardware acceleration is now compatible with TLS 1.0 and TLS 1.1.

1.0.0

2022-04-10

  • Added support for basic routing.

  • Added support for Nacos and Kubernetes service discovery mechanisms.