Incompatible Behavior Changes¶
Changes that are expected to cause an incompatibility if applicable; deployment changes are likely required
Minor Behavior Changes¶
Changes that may cause incompatibilities for some users, but should not for most
config: configuration files ending in .yml now load as YAML.
config: configuration file extensions now ignore case when deciding the file type. E.g., .JSON file load as JSON.
config: reduced log level for “Unable to establish new stream” xDS logs to debug. The log level for “gRPC config stream closed” is now reduced to debug when the status is
Okor has been retriable (
Unavailable) for less than 30 seconds.
grpc: gRPC async client can be cached and shared accross filter instances in the same thread, this feature is turned off by default, can be turned on by setting runtime guard
http: correct the use of the
x-forwarded-protoheader and the
:schemeheader. Where they differ (which is rare)
:schemewill now be used for serving redirect URIs and cached content. This behavior can be reverted by setting runtime guard
http: set the default lazy headermap threshold to 3, which defines the minimal number of headers in a request/response/trailers required for using a dictionary in addition to the list. Setting the envoy.http.headermap.lazy_map_min_size runtime feature to a non-negative number will override the default value.
listener: added the enable_reuse_port field and changed the default for reuse_port from false to true, as the feature is now well supported on the majority of production Linux kernels in use. The default change is aware of hot restart, as otherwise the change would not be backwards compatible between restarts. This means that hot restarting on to a new binary will retain the default of false until the binary undergoes a full restart. To retain the previous behavior, either explicitly set the new configuration field to false, or set the runtime feature flag envoy.reloadable_features.listener_reuse_port_default_enabled to false. As part of this change, the use of reuse_port for TCP listeners on both macOS and Windows has been disabled due to suboptimal behavior. See the field documentation for more information.
Changes expected to improve the state of the world and are unlikely to have negative effects
access log: fix %UPSTREAM_CLUSTER% when used in http upstream access logs. Previously, it was always logging as an unset value.
cluster: delete pools when they’re idle to fix unbounded memory use when using PROXY protocol upstream with tcp_proxy. This behavior can be temporarily reverted by setting the
envoy.reloadable_features.conn_pool_delete_when_idleruntime guard to false.
xray: fix the AWS X-Ray tracer bug where span’s error, fault and throttle information was not reported properly as per the AWS X-Ray documentation. Before this fix, server error was reported under ‘annotations’ section of the segment data.
Removed Config or Runtime¶
Normally occurs at the end of the deprecation period
envoy.reloadable_features.http_upstream_wait_connect_responseruntime guard and legacy code paths.
envoy.reloadable_features.allow_preconnectruntime guard and legacy code paths.
envoy.reloadable_features.disable_tls_inspector_injectionruntime guard and legacy code paths.
envoy.reloadable_features.check_ocsp_policy deprecationruntime guard and legacy code paths.
bootstrap: added inline_headers in the bootstrap to make custom inline headers bootstrap configurable.
http: added string_match in the header matcher.
http: added support for max_requests_per_connection for both upstream and downstream connections.