Releases: YAKEcloud/yake
Releases Β· YAKEcloud/yake
v1.105.1-0
Release Notes v1.105
Yake release notes and upgrade guide
Related upstream release notes / changelogs
Update gardener-controlplane to 1.104.1
[gardener/gardener]
π Bug Fixes
[OPERATOR]Fix a regression that causedgardenletto not be able to migrate deprecatedfailure-domain.beta.kubernetes.iolabels totopology.kubernetes.iodue to a removed RBAC rule required to patchPersistentVolumes. by @plkokanov [#10578]
π Others
[OPERATOR]Thegardener/etcd-druidimage has been updated tov0.22.7. Release Notes by @ishan16696 [#10592]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.104.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.104.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.104.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.104.1
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.104.1 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.104.1 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.104.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.104.1 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.104.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.104.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.104.1 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.104.1
Update gardener-controlplane to 1.104.1
[gardener/gardener]
π Bug Fixes
[OPERATOR]Fix a regression that causedgardenletto not be able to migrate deprecatedfailure-domain.beta.kubernetes.iolabels totopology.kubernetes.iodue to a removed RBAC rule required to patchPersistentVolumes. by @plkokanov [#10578]
π Others
[OPERATOR]Thegardener/etcd-druidimage has been updated tov0.22.7. Release Notes by @ishan16696 [#10592]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.104.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.104.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.104.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.104.1
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.104.1 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.104.1 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.104.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.104.1 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.104.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.104.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.104.1 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.104.1
Update gardenlet to 1.104.1
[gardener/gardener]
π Bug Fixes
[OPERATOR]Fix a regression that causedgardenletto not be able to migrate deprecatedfailure-domain.beta.kubernetes.iolabels totopology.kubernetes.iodue to a removed RBAC rule required to patchPersistentVolumes. by @plkokanov [#10578]
π Others
[OPERATOR]Thegardener/etcd-druidimage has been updated tov0.22.7. Release Notes by @ishan16696 [#10592]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.104.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.104.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.104.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.104.1
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.104.1 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.104.1 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.104.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.104.1 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.104.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.104.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.104.1 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.104.1
Update networking-calico to 1.42.0
[gardener/gardener-extension-networking-calico]
π Others
[OPERATOR]Update calico tov3.28.2. by @DockToFuture [#492][OPERATOR]Fix networkConfig for IPv6. by @axel7born [#486][OPERATOR]In VPA autoscaling mode,calico-nodeshould be disrupted less often as side car containers are no longer considered by VPA. Additionally, the minimum/maximum restriction are removed, which can lead to less memory consumption. by @ScheererJ [#489][OPERATOR]The networking calico extension no longer configures min/maxAllowed in any managed VPA resource. by @ScheererJ [#491]
Helm Charts
- admission-calico-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-application:v1.42.0 - admission-calico-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-runtime:v1.42.0 - networking-calico:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/networking-calico:v1.42.0
Docker Images
- gardener-extension-admission-calico:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-calico:v1.42.0 - gardener-extension-networking-calico:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/networking-calico:v1.42.0
Update networking-cilium to 1.37.0
[gardener/gardener-extension-networking-cilium]
β¨ New Features
[OPERATOR]Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#369]
π Others
[OPERATOR]ApriorityClassNamecan now be set for the admission deployment via thegardener-extension-admission-ciliumHelm chart. by @timuthy [#362][OPERATOR]Update cilium tov1.16.1and enable cilium-envoy to enable features like (Ingress, Gateway API, Network Policies with L7 functionality, L7 Protocol Visibility). by @DockToFuture [#409][OPERATOR]The networking cilium extension no longer configures min/maxAllowed in any managed VPA resource. by @ScheererJ [#408][OPERATOR]Update to ciliumv1.16.2. by @DockToFuture [#411]
Helm Charts
- admission-cilium-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-cilium-application:v1.37.0 - admission-cilium-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-cilium-runtime:v1.37.0 - networking-cilium:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/networking-cilium:v1.37.0
Docker Images
- gardener-extension-admission-cilium:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-cilium:v1.37.0 - gardener-extension-networking-cilium:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/networking-cilium:v1.37.0
Update provider-azure to 1.47.3
[gardener/gardener-extension-provider-azure]
π Others
[OPERATOR]Do not reconcile user-configured NAT Gateways in the gardener subnet. by @kon-angelo [#979]
Helm Charts
- admission-azure-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.47.3 - admission-azure-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.47.3 - provider-azure:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.47.3
Docker Images
- gardener-extension-admission-azure:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.47.3 - gardener-extension-provider-azure:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.47.3
Update gardener-controlplane to 1.105.0
[gardener/gardener]
π° Noteworthy
[OPERATOR]TheVPAForETCDandVPAAndHPAForAPIServerfeature gates have been promoted to GA and locked totrue. by @plkokanov [#10599][USER]The limitation of having at maximum ~80 worker pools inShoots has been lifted. Much higher numbers should be possible now (concrete limit depends on the amount of configuration within the pools (e.g., lab...
Contributors
lotharbach, domdom82, and 27 other contributors
Assets 2
v1.104.2-0
Release Notes v1.104
Yake release notes and upgrade guide
Related upstream release notes / changelogs
Update networking-calico to 1.41.0
[gardener/gardener-extension-networking-calico]
β¨ New Features
[OPERATOR]Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#445]
π Others
[OPERATOR]Add static resource allocation autoscaling mode for calico node/typha (autoScaling.mode: static). by @ScheererJ [#464][OPERATOR]The race between a calico-node instance shutting down and a new one coming up is mitigated by settingNetworkUnavailablecondition properly some time after initialization. by @ScheererJ [#477]
Helm Charts
- admission-calico-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-application:v1.41.0 - admission-calico-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-runtime:v1.41.0 - networking-calico:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/networking-calico:v1.41.0
Docker Images
- gardener-extension-admission-calico:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-calico:v1.41.0 - gardener-extension-networking-calico:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/networking-calico:v1.41.0
Update cloudprofiles to 0.7.17
Full Changelog: gardener-community/cloudprofiles@0.7.16...0.7.17
Update provider-hcloud to 0.6.31
[gardener-extension-provider-hcloud] v0.6.31
Update shoot-flux to 0.7.0
What's Changed
- Add ability to add args/env to deployment by @maboehm in stackitcloud/gardener-extension-shoot-flux#93
Full Changelog: stackitcloud/gardener-extension-shoot-flux@v0.6.1...v0.7.0
Update cloudprofiles to 0.7.18
What's Changed
- Add hcloud ccx[1-6]3 instances, remove ccx1 and ccx2 by @j2L4e in gardener-community/cloudprofiles#29
Full Changelog: gardener-community/cloudprofiles@0.7.17...0.7.18
Update backup-s3 to 0.4.1
General Changes
- Generate new controller-registration.yaml
Update provider-alicloud to 1.54.0
[gardener/gardener-extension-provider-alicloud]
π Others
[OPERATOR]Starting with gardenlet >= v1.98.0, use controlplane webhook object selector to limit mutator calls. by @LucaBernstein [#731][OPERATOR]The shoot-webhook does no longer mutate the metrics-server Deployment and the vpn-shoot Service. The shoot-webhook that now only mutates theaddons-nginx-ingress-controllerService does now specify object selector. by @ialidzhikov [#730][OPERATOR]Upgrade and adapt newWorkerPoolHashfunction in Gardenerv1.98. by @Duciwuci [#736]
Helm Charts
- admission-alicloud-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-alicloud-application:v1.54.0 - admission-alicloud-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-alicloud-runtime:v1.54.0 - provider-alicloud:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-alicloud:v1.54.0
Docker Images
- gardener-extension-admission-alicloud:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-alicloud:v1.54.0 - gardener-extension-provider-alicloud:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-alicloud:v1.54.0
Update gardener-controlplane to 1.104.0
[gardener/gardener]
β οΈ Breaking Changes
[USER]A bug has been fixed which was allowing users to setShootoidc configurations for thekube-apiserverwithout setting theclientIDandissuerURLfields inspec.kubernetes.kubeAPIServer.oidcConfig, which would lead to thekube-apiserverstuck in aErrorstate. gardener-apiserver now requires bothclientIDandissuerURLfields to be set when thespec.kubernetes.kubeAPIServer.oidcConfigfield is specified. by @AleksandarSavchev [#10461][OPERATOR]credentialsBinding.credentialsRefis now an immutable field. by @dimityrmirchev [#10365]
π° Noteworthy
[USER]Users are allowed to changeshoot.spec.credentialsBindingNameand reference anotherCredentialsBindingonly if they have the permissions to read both the old and newly referenced credential. by @dimityrmirchev [#10365][USER]Users can migrate fromshoot.spec.secretBindingNametoshoot.spec.credentialsBindingNameonly if the referenced credential remains the same and is not changed during the process. by @dimityrmirchev [#10365][OPERATOR]Allow project users to readNamespacedCloudProfiles and for project admins to make adjustments to machine types and volume types. by @LucaBernstein [#10485][OPERATOR]Alerts based on theproposals_failed_totalmetric of the etcd cluster are not raised anymore. by @renormalize [#10524][DEVELOPER]A new predicateextensions/pkg/predicate.GardenSecurityProviderTypecan be used to select resources from thesecurity.gardener.cloudgroup that are related to the passed provider type. by @dimityrmirchev [#10499]
β¨ New Features
[OPERATOR]Thegardener-operatormetrics are now automatically scraped by thegardenPrometheus. by @maboehm [#10464][OPERATOR]Introduce custom RBAC verbs to allow for modification of.spec.{kubernetes,machineImages}inNamespacedCloudProfiles. by @LucaBernstein [#10485][OPERATOR]The feature gateNewVPNis introduced for thegardenletcomponent. If enabled, the new VPN implementation (Golang rewrite) is used for allShoots of the respectiveSeed. In this case, the old implementation can be disabled for a singleShootby annotating the shoot resource withalpha.control-plane.shoot.gardener.cloud/disable-new-vpn=true. ForSeeds with disabled feature gate, the new implementation can be enabled for a single shoot by annotating it withalpha.control-plane.shoot.gardener.cloud/disable-new-vpn=false. by @MartinWeindel [#9774]
π Bug Fixes
[USER]Fixed disk read/write panel in the shoot's etcd dashboards by @rickardsjp [#10493][DEVELOPER]An issue was fixed that rejected the creation of workerless shoots in the local setup. by @timuthy [#10498]
π Others
[DEPENDENCY]Thegardener/hvpa-controllerimage has been updated tov0.17.0. Release Notes by @gardener-ci-robot [#10508][DEPENDENCY]Thequay.io/prometheus-operator/prometheus-config-reloaderimage has been updated tov0.76.2. by @gardener-ci-robot [#10500][DEPENDENCY]Thegardener/machine-controller-managerimage has been updated tov0.54.0. Release Notes by @gardener-ci-robot [#10528][DEPENDENCY]Thegardener/alpine-conntrackimage has been updated to3.20.3. Release Notes by @gardener-ci-robot [#10487][DEPENDENCY]Theenvoyproxy/envoyimage has been updated tov1.31.1. Release Notes by @gardener-ci-robot [#10531][OPERATOR]Federate apiserver_total_request metric to the Prometheus longterm instance by @jguipi [#10457][OPERATOR]Allow emptynetworking.nodesin case of IPv6 only shoots. by @axel7born [#10533][OPERATOR]Improved node utilisation by reducing requests for etcd-druid managed pods. by @unmarshall [#10540][DEVELOPER]Install go in the remote local setup from the go download site instead of using the apk package manager. by @vicwicker [#10502]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.104.0 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.104.0 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.104.0 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.104.0
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.104.0 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.104.0 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.104.0 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.104.0 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.104.0 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.104.0 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.104.0 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.104.0
Update gardener-controlplane to 1.104.0
[gardener/gardener]
β οΈ Breaking Changes
[USER]A bug has been fixed which was allowing users to setShootoidc configurations for thekube-apiserverwithout setting theclientIDandissuerURLfields inspec.kubernetes.kubeAPIServer.oidcConfig, which would lead to thekube-apiserverstuck in a `Err...
Contributors
unmarshall, MartinWeindel, and 17 other contributors
Assets 2
v1.103.2-0
Release Notes v1.103
Yake release notes and upgrade guide
Related upstream release notes / changelogs
Update provider-hcloud to 0.6.30
[gardener-extension-provider-hcloud] v0.6.30
Update provider-openstack to 1.41.2
[gardener/gardener-extension-provider-openstack]
π Others
[OPERATOR]Fix an issue with share network reconciliation not calculating number of existing share networks correctly. by @AndreasBurger [#827]
Docker Images
- gardener-extension-admission-openstack:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-openstack:v1.41.2 - gardener-extension-provider-openstack:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-openstack:v1.41.2
Update shoot-cert-service to 1.44.2
[gardener/gardener-extension-shoot-cert-service]
π Others
[OPERATOR]The memory limit from thecert-controller-managerDeployment is now removed. by @ialidzhikov [#287]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.44.2
Update shoot-rsyslog-relp to 0.5.2
[gardener/gardener-extension-shoot-rsyslog-relp]
π Bug Fixes
[OPERATOR]Fixed an issue that caused the-a exit,always -F arch=b64 -S mount_setattr -F auid!=-1 -F key=privileged_specialaudit rule to not get correctly applied. by @plkokanov [#151]
Docker Images
- gardener-extension-shoot-rsyslog-relp-admission:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-rsyslog-relp-admission:v0.5.2 - gardener-extension-shoot-rsyslog-relp:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-rsyslog-relp:v0.5.2
Update provider-alicloud to 1.53.0
[gardener/gardener-extension-provider-alicloud]
β¨ New Features
[OPERATOR]This extension now makes use of the new.spec.pools[].userDataSecretReffield to get to the worker pool user data. by @rfranzke [#727][OPERATOR]Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#734][USER]The provider-alicloud extension does now support shoot clusters with Kubernetes version 1.30. You should consider the Kubernetes release notes before upgrading to 1.30. by @shafeeqes [#722]
π Others
[OPERATOR]Thecontrolplaneexposure.alicloud.extensions.gardener.cloudwebhook does no longer mutate Services/Deployments. Previously the webhook was called for Services/Deployments mutations and was not mutating anything. by @ialidzhikov [#725][OPERATOR]This extension is now using the new way of providing monitoring configuration (ref GEP-19) in case a shoot cluster's Prometheus has been migrated to management viaprometheus-operator. by @rfranzke [#720][OPERATOR]ApriorityClassNamecan now be set for the admission deployment via thegardener-extension-admission-alicloudHelm chart. by @timuthy [#732][OPERATOR]Inserts architecture from worker to the machine class by @sssash18 [#735][OPERATOR]NodeGroupAutoscalingOptions can now be specified per worker group via the worker through the fieldworker.spec.pools.clusterAutoscalerby @aaronfern [#715]
[gardener/machine-controller-manager]
β οΈ Breaking Changes
[OPERATOR]Change OCI Image Registry from GCR (eu.gcr.io/gardener-project) to Artifact-Registry (europe-docker.pkg.dev/gardener-project/releases). Users should update their references. by @ccwienk [gardener/machine-controller-manager#878][DEVELOPER]New provider method Driver.InitializeMachine added for Post-Creation VM Instance Initialization steps. by @elankath [gardener/machine-controller-manager#898]
π Bug Fixes
[DEVELOPER]MCM restart happens properly in integration tests now. This fix will get activated, once this version is vendored in your mcm-provider by @sssash18 [gardener/machine-controller-manager#879][OPERATOR]Fix for edge case of Node object deletion missed during machine termination. by @elankath [gardener/machine-controller-manager#887]
π Others
[OPERATOR]machine controller won't reconcile machine on non-spec update events by @himanshu-kun [gardener/machine-controller-manager#877][OPERATOR]Updated k8s dependencies tov0.29.3by @rishabh-11 [gardener/machine-controller-manager#907][OPERATOR]fixed IT for seed with k8s >= 1.27 as control cluster by @piyuagr [gardener/machine-controller-manager#869][OPERATOR]Removed vendor directory by @rishabh-11 [gardener/machine-controller-manager#903][OPERATOR]Architecture field added in the nodetemplate. This will allow CA to pickup architecture from machine class and schedule pods on relevant arch nodes. by @sssash18 [gardener/machine-controller-manager#894][DEVELOPER]go-git now removed from dependencies due to CVE's. by @elankath [gardener/machine-controller-manager#896][DEVELOPER]Bumpk8s.io/*deps tov0.28.2by @afritzler [gardener/machine-controller-manager#858]
π Documentation
[DEVELOPER]Phase transition diagram for a machine object is added to FAQs by @himanshu-kun [gardener/machine-controller-manager#886]
[gardener/machine-controller-manager-provider-alicloud]
π Others
[DEVELOPER]Removed vendor directory by @rishabh-11 [gardener/machine-controller-manager-provider-alicloud#74]
Helm Charts
- admission-alicloud:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-alicloud:v1.53.0 - provider-alicloud:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-alicloud:v1.53.0
Docker Images
- gardener-extension-admission-alicloud:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-alicloud:v1.53.0 - gardener-extension-provider-alicloud:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-alicloud:v1.53.0
Update provider-aws to 1.57.0
[gardener/gardener-extension-provider-aws]
β¨ New Features
[OPERATOR]Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#1012]
π Bug Fixes
[OPERATOR]Removed unnecessary preStop hook fromnode-driver-registrarincsi-driver-node, as socket removal is now handled internally bynode-driver-registrar, resolving distroless image error. by @AndreasBurger [#992]
π Others
[OPERATOR]ApriorityClassNamecan now be set for the admission deployment via thegardener-extension-admission-awsHelm chart. by @timuthy [#994][OPERATOR]Starting with gardenlet >= v1.98.0, use controlplane webhook object selector to limit mutator calls. by @LucaBernstein [#989][OPERATOR]Update the VPA CRD used for testing locally by @kon-angelo [#1019][OPERATOR]Insertsarchitecturefrom worker to the machine class by @sssash18 [#853]
Helm Charts
- admission-aws-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-application:v1.57.0 - admission-aws-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-runtime:v1.57.0 - provider-aws:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-aws:v1.57.0
Docker Images
- gardener-extension-admission-aws:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.57.0 - gardener-extension-provider-aws:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.57.0
Update provider-azure to 1.47.1
[gardener/gardener-extension-provider-azure]
π Others
[OPERATOR]The storage domain to use for backup buckets is now inferred from the buckets' region if no explicit config is given by @AndreasBurger [#947]
Helm Charts
- admission-azure-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.47.1 - admission-azure-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.47.1 - provider-azure:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.47.1
Docker Images
- gardener-extension-admission-azure:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.47.1 - gardener-extension-provider-azure:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.47.1
Update provider-gcp to 1.38.0
[gardener/gardener-extension-provider-gcp]
β¨ New Features
[OPERATOR]Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#805]
π Bug Fixes
[OPERATOR]Removed unnecessary preStop hook fromnode-driver-registrarincsi-driver-node, as socket removal is now handled internally bynode-driver-registrar, resolving distroless image error. by @sujeet01 [#792][USER]Allow configuring iops and throughput of hyperdisk-balanced disks by @hebelsan [#793]
π Others
[OPERATOR]Inserts architecture from worker to the machine class by @sssash18 [#809][OPERATOR]Starting with gardenlet >= v1.98.0, use controlplane webhook object selector to limit mutator calls. by @LucaBernstein [#789][OPERATOR]Update the VPA...
Contributors
holgerkoser, afritzler, and 29 other contributors
Assets 2
v1.105.0-0
Release Notes v1.105
Yake release notes and upgrade guide
Related upstream release notes / changelogs
Update gardener-controlplane to 1.104.1
[gardener/gardener]
π Bug Fixes
[OPERATOR]Fix a regression that causedgardenletto not be able to migrate deprecatedfailure-domain.beta.kubernetes.iolabels totopology.kubernetes.iodue to a removed RBAC rule required to patchPersistentVolumes. by @plkokanov [#10578]
π Others
[OPERATOR]Thegardener/etcd-druidimage has been updated tov0.22.7. Release Notes by @ishan16696 [#10592]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.104.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.104.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.104.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.104.1
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.104.1 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.104.1 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.104.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.104.1 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.104.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.104.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.104.1 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.104.1
Update gardener-controlplane to 1.104.1
[gardener/gardener]
π Bug Fixes
[OPERATOR]Fix a regression that causedgardenletto not be able to migrate deprecatedfailure-domain.beta.kubernetes.iolabels totopology.kubernetes.iodue to a removed RBAC rule required to patchPersistentVolumes. by @plkokanov [#10578]
π Others
[OPERATOR]Thegardener/etcd-druidimage has been updated tov0.22.7. Release Notes by @ishan16696 [#10592]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.104.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.104.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.104.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.104.1
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.104.1 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.104.1 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.104.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.104.1 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.104.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.104.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.104.1 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.104.1
Update gardenlet to 1.104.1
[gardener/gardener]
π Bug Fixes
[OPERATOR]Fix a regression that causedgardenletto not be able to migrate deprecatedfailure-domain.beta.kubernetes.iolabels totopology.kubernetes.iodue to a removed RBAC rule required to patchPersistentVolumes. by @plkokanov [#10578]
π Others
[OPERATOR]Thegardener/etcd-druidimage has been updated tov0.22.7. Release Notes by @ishan16696 [#10592]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.104.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.104.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.104.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.104.1
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.104.1 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.104.1 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.104.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.104.1 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.104.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.104.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.104.1 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.104.1
Update networking-calico to 1.42.0
[gardener/gardener-extension-networking-calico]
π Others
[OPERATOR]Update calico tov3.28.2. by @DockToFuture [#492][OPERATOR]Fix networkConfig for IPv6. by @axel7born [#486][OPERATOR]In VPA autoscaling mode,calico-nodeshould be disrupted less often as side car containers are no longer considered by VPA. Additionally, the minimum/maximum restriction are removed, which can lead to less memory consumption. by @ScheererJ [#489][OPERATOR]The networking calico extension no longer configures min/maxAllowed in any managed VPA resource. by @ScheererJ [#491]
Helm Charts
- admission-calico-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-application:v1.42.0 - admission-calico-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-runtime:v1.42.0 - networking-calico:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/networking-calico:v1.42.0
Docker Images
- gardener-extension-admission-calico:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-calico:v1.42.0 - gardener-extension-networking-calico:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/networking-calico:v1.42.0
Update networking-cilium to 1.37.0
[gardener/gardener-extension-networking-cilium]
β¨ New Features
[OPERATOR]Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#369]
π Others
[OPERATOR]ApriorityClassNamecan now be set for the admission deployment via thegardener-extension-admission-ciliumHelm chart. by @timuthy [#362][OPERATOR]Update cilium tov1.16.1and enable cilium-envoy to enable features like (Ingress, Gateway API, Network Policies with L7 functionality, L7 Protocol Visibility). by @DockToFuture [#409][OPERATOR]The networking cilium extension no longer configures min/maxAllowed in any managed VPA resource. by @ScheererJ [#408][OPERATOR]Update to ciliumv1.16.2. by @DockToFuture [#411]
Helm Charts
- admission-cilium-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-cilium-application:v1.37.0 - admission-cilium-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-cilium-runtime:v1.37.0 - networking-cilium:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/networking-cilium:v1.37.0
Docker Images
- gardener-extension-admission-cilium:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-cilium:v1.37.0 - gardener-extension-networking-cilium:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/networking-cilium:v1.37.0
Update provider-azure to 1.47.3
[gardener/gardener-extension-provider-azure]
π Others
[OPERATOR]Do not reconcile user-configured NAT Gateways in the gardener subnet. by @kon-angelo [#979]
Helm Charts
- admission-azure-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.47.3 - admission-azure-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.47.3 - provider-azure:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.47.3
Docker Images
- gardener-extension-admission-azure:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.47.3 - gardener-extension-provider-azure:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.47.3
Update gardener-controlplane to 1.105.0
[gardener/gardener]
π° Noteworthy
[OPERATOR]TheVPAForETCDandVPAAndHPAForAPIServerfeature gates have been promoted to GA and locked totrue. by @plkokanov [#10599][USER]The limitation of having at maximum ~80 worker pools inShoots has been lifted. Much higher numbers should be possible now (concrete limit depends on the amount of configuration within the pools (e.g., lab...
Contributors
lotharbach, domdom82, and 27 other contributors
Assets 2
v1.103.1-0
Release Notes v1.103
Yake release notes and upgrade guide
Related upstream release notes / changelogs
Update provider-hcloud to 0.6.30
[gardener-extension-provider-hcloud] v0.6.30
Update provider-openstack to 1.41.2
[gardener/gardener-extension-provider-openstack]
π Others
[OPERATOR]Fix an issue with share network reconciliation not calculating number of existing share networks correctly. by @AndreasBurger [#827]
Docker Images
- gardener-extension-admission-openstack:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-openstack:v1.41.2 - gardener-extension-provider-openstack:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-openstack:v1.41.2
Update shoot-cert-service to 1.44.2
[gardener/gardener-extension-shoot-cert-service]
π Others
[OPERATOR]The memory limit from thecert-controller-managerDeployment is now removed. by @ialidzhikov [#287]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.44.2
Update shoot-rsyslog-relp to 0.5.2
[gardener/gardener-extension-shoot-rsyslog-relp]
π Bug Fixes
[OPERATOR]Fixed an issue that caused the-a exit,always -F arch=b64 -S mount_setattr -F auid!=-1 -F key=privileged_specialaudit rule to not get correctly applied. by @plkokanov [#151]
Docker Images
- gardener-extension-shoot-rsyslog-relp-admission:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-rsyslog-relp-admission:v0.5.2 - gardener-extension-shoot-rsyslog-relp:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-rsyslog-relp:v0.5.2
Update provider-alicloud to 1.53.0
[gardener/gardener-extension-provider-alicloud]
β¨ New Features
[OPERATOR]This extension now makes use of the new.spec.pools[].userDataSecretReffield to get to the worker pool user data. by @rfranzke [#727][OPERATOR]Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#734][USER]The provider-alicloud extension does now support shoot clusters with Kubernetes version 1.30. You should consider the Kubernetes release notes before upgrading to 1.30. by @shafeeqes [#722]
π Others
[OPERATOR]Thecontrolplaneexposure.alicloud.extensions.gardener.cloudwebhook does no longer mutate Services/Deployments. Previously the webhook was called for Services/Deployments mutations and was not mutating anything. by @ialidzhikov [#725][OPERATOR]This extension is now using the new way of providing monitoring configuration (ref GEP-19) in case a shoot cluster's Prometheus has been migrated to management viaprometheus-operator. by @rfranzke [#720][OPERATOR]ApriorityClassNamecan now be set for the admission deployment via thegardener-extension-admission-alicloudHelm chart. by @timuthy [#732][OPERATOR]Inserts architecture from worker to the machine class by @sssash18 [#735][OPERATOR]NodeGroupAutoscalingOptions can now be specified per worker group via the worker through the fieldworker.spec.pools.clusterAutoscalerby @aaronfern [#715]
[gardener/machine-controller-manager]
β οΈ Breaking Changes
[OPERATOR]Change OCI Image Registry from GCR (eu.gcr.io/gardener-project) to Artifact-Registry (europe-docker.pkg.dev/gardener-project/releases). Users should update their references. by @ccwienk [gardener/machine-controller-manager#878][DEVELOPER]New provider method Driver.InitializeMachine added for Post-Creation VM Instance Initialization steps. by @elankath [gardener/machine-controller-manager#898]
π Bug Fixes
[DEVELOPER]MCM restart happens properly in integration tests now. This fix will get activated, once this version is vendored in your mcm-provider by @sssash18 [gardener/machine-controller-manager#879][OPERATOR]Fix for edge case of Node object deletion missed during machine termination. by @elankath [gardener/machine-controller-manager#887]
π Others
[OPERATOR]machine controller won't reconcile machine on non-spec update events by @himanshu-kun [gardener/machine-controller-manager#877][OPERATOR]Updated k8s dependencies tov0.29.3by @rishabh-11 [gardener/machine-controller-manager#907][OPERATOR]fixed IT for seed with k8s >= 1.27 as control cluster by @piyuagr [gardener/machine-controller-manager#869][OPERATOR]Removed vendor directory by @rishabh-11 [gardener/machine-controller-manager#903][OPERATOR]Architecture field added in the nodetemplate. This will allow CA to pickup architecture from machine class and schedule pods on relevant arch nodes. by @sssash18 [gardener/machine-controller-manager#894][DEVELOPER]go-git now removed from dependencies due to CVE's. by @elankath [gardener/machine-controller-manager#896][DEVELOPER]Bumpk8s.io/*deps tov0.28.2by @afritzler [gardener/machine-controller-manager#858]
π Documentation
[DEVELOPER]Phase transition diagram for a machine object is added to FAQs by @himanshu-kun [gardener/machine-controller-manager#886]
[gardener/machine-controller-manager-provider-alicloud]
π Others
[DEVELOPER]Removed vendor directory by @rishabh-11 [gardener/machine-controller-manager-provider-alicloud#74]
Helm Charts
- admission-alicloud:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-alicloud:v1.53.0 - provider-alicloud:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-alicloud:v1.53.0
Docker Images
- gardener-extension-admission-alicloud:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-alicloud:v1.53.0 - gardener-extension-provider-alicloud:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-alicloud:v1.53.0
Update provider-aws to 1.57.0
[gardener/gardener-extension-provider-aws]
β¨ New Features
[OPERATOR]Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#1012]
π Bug Fixes
[OPERATOR]Removed unnecessary preStop hook fromnode-driver-registrarincsi-driver-node, as socket removal is now handled internally bynode-driver-registrar, resolving distroless image error. by @AndreasBurger [#992]
π Others
[OPERATOR]ApriorityClassNamecan now be set for the admission deployment via thegardener-extension-admission-awsHelm chart. by @timuthy [#994][OPERATOR]Starting with gardenlet >= v1.98.0, use controlplane webhook object selector to limit mutator calls. by @LucaBernstein [#989][OPERATOR]Update the VPA CRD used for testing locally by @kon-angelo [#1019][OPERATOR]Insertsarchitecturefrom worker to the machine class by @sssash18 [#853]
Helm Charts
- admission-aws-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-application:v1.57.0 - admission-aws-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-runtime:v1.57.0 - provider-aws:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-aws:v1.57.0
Docker Images
- gardener-extension-admission-aws:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.57.0 - gardener-extension-provider-aws:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.57.0
Update provider-azure to 1.47.1
[gardener/gardener-extension-provider-azure]
π Others
[OPERATOR]The storage domain to use for backup buckets is now inferred from the buckets' region if no explicit config is given by @AndreasBurger [#947]
Helm Charts
- admission-azure-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.47.1 - admission-azure-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.47.1 - provider-azure:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.47.1
Docker Images
- gardener-extension-admission-azure:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.47.1 - gardener-extension-provider-azure:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.47.1
Update provider-gcp to 1.38.0
[gardener/gardener-extension-provider-gcp]
β¨ New Features
[OPERATOR]Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#805]
π Bug Fixes
[OPERATOR]Removed unnecessary preStop hook fromnode-driver-registrarincsi-driver-node, as socket removal is now handled internally bynode-driver-registrar, resolving distroless image error. by @sujeet01 [#792][USER]Allow configuring iops and throughput of hyperdisk-balanced disks by @hebelsan [#793]
π Others
[OPERATOR]Inserts architecture from worker to the machine class by @sssash18 [#809][OPERATOR]Starting with gardenlet >= v1.98.0, use controlplane webhook object selector to limit mutator calls. by @LucaBernstein [#789][OPERATOR]Update the VPA...
Contributors
holgerkoser, afritzler, and 29 other contributors
Assets 2
v1.102.2-0
Release Notes v1.102
Yake release notes and upgrade guide
Related upstream release notes / changelogs
Update cloudprofiles to 0.7.16
Full Changelog: gardener-community/cloudprofiles@0.7.15...0.7.16
Update gardener-controlplane to 1.101.2
[gardener/gardener]
π Others
[DEPENDENCY]Theregistry.k8s.io/ingress-nginx/controller-chrootimage has been updated tov1.11.2. by @gardener-ci-robot [#10357]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.101.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.101.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.101.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.101.2
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.101.2 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.101.2 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.101.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.101.2 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.101.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.101.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.101.2 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.101.2
Update gardener-controlplane to 1.101.2
[gardener/gardener]
π Others
[DEPENDENCY]Theregistry.k8s.io/ingress-nginx/controller-chrootimage has been updated tov1.11.2. by @gardener-ci-robot [#10357]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.101.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.101.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.101.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.101.2
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.101.2 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.101.2 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.101.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.101.2 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.101.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.101.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.101.2 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.101.2
Update gardenlet to 1.101.2
[gardener/gardener]
π Others
[DEPENDENCY]Theregistry.k8s.io/ingress-nginx/controller-chrootimage has been updated tov1.11.2. by @gardener-ci-robot [#10357]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.101.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.101.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.101.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.101.2
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.101.2 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.101.2 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.101.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.101.2 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.101.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.101.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.101.2 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.101.2
Update external-dns-management to 0.21.0
[gardener/external-dns-management]
β οΈ Breaking Changes
[OPERATOR]Drop support for custom resourcesdnslock.dns.gardener.cloudandremoteaccesscertificates.dns.gardener.cloud.
As these experimental features have no been used in Gardener, it should not be relevant in most cases. by @MartinWeindel [#381]
π Others
[OPERATOR]Bumps golang from 1.22.6 to 1.23.0. by @dependabot[bot] [#384][OPERATOR]Bumps golang from 1.22.5 to 1.22.6. by @dependabot[bot] [#383][OPERATOR]The dependency controller-manager-library has been updated to include the new flag--<cluster>.conditional-deploy-crdsby @MartinWeindel [#385]
Docker Images
- dns-controller-manager:
europe-docker.pkg.dev/gardener-project/releases/dns-controller-manager:v0.21.0
Update gardener-controlplane to 1.102.0
[gardener/gardener]
β οΈ Breaking Changes
[OPERATOR]When theNewWorkerPoolHashfeature gate is enabled, the calculation now also rolls worker nodes ofShoots when changingsystemReservedin thekubeletconfiguration. Worker pools are not rolled if the sum ofkubeReservedandsystemReserveddoes not change. If the feature gate is already enabled, then the worker pools ofShoots with non-zero values insystemReservedwill be rolled once. by @MichaelEischer [#10290]
π° Noteworthy
[USER]Thespec.clientfield in the{Cluster}OpenIDConnectPresetAPIs is deprecated and will be removed after support for Kubernetes 1.30 is dropped. by @AleksandarSavchev [#10253][USER]Thespec.kubernetes.kubeAPIServer.oidcConfig.clientAuthenticationfield in theShootAPI is deprecated and will be removed after support for Kubernetes 1.30 is dropped. by @AleksandarSavchev [#10253][USER]The Shoot specification field.spec.kubernetes.kubeAPIServer.oidcConfig.signingAlgsfor Kubernetes versions>= v1.30is not supported anymore. by @AleksandarSavchev [#10244]
β¨ New Features
[USER]Structured authentication configuration can now be set by creating aConfigMapin the project namespace with theAuthenticationConfigurationfile set in theconfig.yamldata key and referencing theConfigMapin the newShootspecification field.spec.kubernetes.kubeAPIServer.structuredAuthentication.configMapNamefor Kubernetes versions>= v1.30. Only one authenticator can be set via the authentication configuration untilk8s.io/*Golang dependencies are upgraded to version>= v0.30. by @AleksandarSavchev [#10244][USER]The followingvpa-recommenderflags are now configurable via theShootspecification:--recommendation-lower-bound-cpu-percentile:.spec.kubernetes.verticalPodAutoscaler.recommendationLowerBoundCPUPercentile--recommendation-upper-bound-cpu-percentile:.spec.kubernetes.verticalPodAutoscaler.recommendationUpperBoundCPUPercentile--target-memory-percentile:.spec.kubernetes.verticalPodAutoscaler.targetMemoryPercentile--recommendation-lower-bound-memory-percentile:.spec.kubernetes.verticalPodAutoscaler.recommendationLowerBoundMemoryPercentile--recommendation-upper-bound-memory-percentile:.spec.kubernetes.verticalPodAutoscaler.recommendationUpperBoundMemoryPercentileby @ialidzhikov [#10221]
[OPERATOR]Performing control plane migration acrossSeeds with different provider types is now possible. Before triggering the migration, make sure that pods in theShoot's control plane, once it is moved to theDestination Seed, will have network connectivity to the storage provider of theSource Seed(so that ETCD backups can be copied automatically). Additionally, make sure that theShoot's nodes will have network connectivity to theShoot's control plane after it is moved to theDestination Seed. by @plkokanov [#10323][OPERATOR]gardenletnow runs a new controller calledTokenRequestorWorkloadIdentitywhich requests workload identity tokens and writes them intoSecretresources in the seed cluster. These tokens can be then used by control plane components in order to present the saidWorkloadIdentitybefore external systems. Please see here for more details. by @dimityrmirchev [#10298][OPERATOR]Quotas can now have scope of typeWorkloadIdentity. by @dimityrmirchev [#10346]
π Bug Fixes
[USER]Fixes a bug preventing shoot clusters with annotationshoot.gardener.cloud/skip-readiness: "true"to be created. by @ScheererJ [#10317][OPERATOR]An issue causing the vpn-seed-server VPA's to be created with wrong targetRef for highly available Shoots is now fixed. by @ialidzhikov [#10366]
π Others
[OPERATOR]vpa-updater and vpa-recommender components do now run with leader election enabled (unconditionally) and support running in HA mode. by @ialidzhikov [#10302][OPERATOR]Reduce kubelet http2 timeouts. by @axel7born [#10223][OPERATOR]Gardener now temporarily uses a `vpa-recomme...
Contributors
ashwani2k, MartinWeindel, and 14 other contributors
Assets 2
v1.104.1-0
Release Notes v1.104
Yake release notes and upgrade guide
Related upstream release notes / changelogs
Update networking-calico to 1.41.0
[gardener/gardener-extension-networking-calico]
β¨ New Features
[OPERATOR]Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#445]
π Others
[OPERATOR]Add static resource allocation autoscaling mode for calico node/typha (autoScaling.mode: static). by @ScheererJ [#464][OPERATOR]The race between a calico-node instance shutting down and a new one coming up is mitigated by settingNetworkUnavailablecondition properly some time after initialization. by @ScheererJ [#477]
Helm Charts
- admission-calico-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-application:v1.41.0 - admission-calico-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-runtime:v1.41.0 - networking-calico:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/networking-calico:v1.41.0
Docker Images
- gardener-extension-admission-calico:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-calico:v1.41.0 - gardener-extension-networking-calico:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/networking-calico:v1.41.0
Update cloudprofiles to 0.7.17
Full Changelog: gardener-community/cloudprofiles@0.7.16...0.7.17
Update provider-hcloud to 0.6.31
[gardener-extension-provider-hcloud] v0.6.31
Update shoot-flux to 0.7.0
What's Changed
- Add ability to add args/env to deployment by @maboehm in stackitcloud/gardener-extension-shoot-flux#93
Full Changelog: stackitcloud/gardener-extension-shoot-flux@v0.6.1...v0.7.0
Update cloudprofiles to 0.7.18
What's Changed
- Add hcloud ccx[1-6]3 instances, remove ccx1 and ccx2 by @j2L4e in gardener-community/cloudprofiles#29
Full Changelog: gardener-community/cloudprofiles@0.7.17...0.7.18
Update backup-s3 to 0.4.1
General Changes
- Generate new controller-registration.yaml
Update provider-alicloud to 1.54.0
[gardener/gardener-extension-provider-alicloud]
π Others
[OPERATOR]Starting with gardenlet >= v1.98.0, use controlplane webhook object selector to limit mutator calls. by @LucaBernstein [#731][OPERATOR]The shoot-webhook does no longer mutate the metrics-server Deployment and the vpn-shoot Service. The shoot-webhook that now only mutates theaddons-nginx-ingress-controllerService does now specify object selector. by @ialidzhikov [#730][OPERATOR]Upgrade and adapt newWorkerPoolHashfunction in Gardenerv1.98. by @Duciwuci [#736]
Helm Charts
- admission-alicloud-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-alicloud-application:v1.54.0 - admission-alicloud-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-alicloud-runtime:v1.54.0 - provider-alicloud:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-alicloud:v1.54.0
Docker Images
- gardener-extension-admission-alicloud:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-alicloud:v1.54.0 - gardener-extension-provider-alicloud:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-alicloud:v1.54.0
Update gardener-controlplane to 1.104.0
[gardener/gardener]
β οΈ Breaking Changes
[USER]A bug has been fixed which was allowing users to setShootoidc configurations for thekube-apiserverwithout setting theclientIDandissuerURLfields inspec.kubernetes.kubeAPIServer.oidcConfig, which would lead to thekube-apiserverstuck in aErrorstate. gardener-apiserver now requires bothclientIDandissuerURLfields to be set when thespec.kubernetes.kubeAPIServer.oidcConfigfield is specified. by @AleksandarSavchev [#10461][OPERATOR]credentialsBinding.credentialsRefis now an immutable field. by @dimityrmirchev [#10365]
π° Noteworthy
[USER]Users are allowed to changeshoot.spec.credentialsBindingNameand reference anotherCredentialsBindingonly if they have the permissions to read both the old and newly referenced credential. by @dimityrmirchev [#10365][USER]Users can migrate fromshoot.spec.secretBindingNametoshoot.spec.credentialsBindingNameonly if the referenced credential remains the same and is not changed during the process. by @dimityrmirchev [#10365][OPERATOR]Allow project users to readNamespacedCloudProfiles and for project admins to make adjustments to machine types and volume types. by @LucaBernstein [#10485][OPERATOR]Alerts based on theproposals_failed_totalmetric of the etcd cluster are not raised anymore. by @renormalize [#10524][DEVELOPER]A new predicateextensions/pkg/predicate.GardenSecurityProviderTypecan be used to select resources from thesecurity.gardener.cloudgroup that are related to the passed provider type. by @dimityrmirchev [#10499]
β¨ New Features
[OPERATOR]Thegardener-operatormetrics are now automatically scraped by thegardenPrometheus. by @maboehm [#10464][OPERATOR]Introduce custom RBAC verbs to allow for modification of.spec.{kubernetes,machineImages}inNamespacedCloudProfiles. by @LucaBernstein [#10485][OPERATOR]The feature gateNewVPNis introduced for thegardenletcomponent. If enabled, the new VPN implementation (Golang rewrite) is used for allShoots of the respectiveSeed. In this case, the old implementation can be disabled for a singleShootby annotating the shoot resource withalpha.control-plane.shoot.gardener.cloud/disable-new-vpn=true. ForSeeds with disabled feature gate, the new implementation can be enabled for a single shoot by annotating it withalpha.control-plane.shoot.gardener.cloud/disable-new-vpn=false. by @MartinWeindel [#9774]
π Bug Fixes
[USER]Fixed disk read/write panel in the shoot's etcd dashboards by @rickardsjp [#10493][DEVELOPER]An issue was fixed that rejected the creation of workerless shoots in the local setup. by @timuthy [#10498]
π Others
[DEPENDENCY]Thegardener/hvpa-controllerimage has been updated tov0.17.0. Release Notes by @gardener-ci-robot [#10508][DEPENDENCY]Thequay.io/prometheus-operator/prometheus-config-reloaderimage has been updated tov0.76.2. by @gardener-ci-robot [#10500][DEPENDENCY]Thegardener/machine-controller-managerimage has been updated tov0.54.0. Release Notes by @gardener-ci-robot [#10528][DEPENDENCY]Thegardener/alpine-conntrackimage has been updated to3.20.3. Release Notes by @gardener-ci-robot [#10487][DEPENDENCY]Theenvoyproxy/envoyimage has been updated tov1.31.1. Release Notes by @gardener-ci-robot [#10531][OPERATOR]Federate apiserver_total_request metric to the Prometheus longterm instance by @jguipi [#10457][OPERATOR]Allow emptynetworking.nodesin case of IPv6 only shoots. by @axel7born [#10533][OPERATOR]Improved node utilisation by reducing requests for etcd-druid managed pods. by @unmarshall [#10540][DEVELOPER]Install go in the remote local setup from the go download site instead of using the apk package manager. by @vicwicker [#10502]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.104.0 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.104.0 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.104.0 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.104.0
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.104.0 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.104.0 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.104.0 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.104.0 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.104.0 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.104.0 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.104.0 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.104.0
Update gardener-controlplane to 1.104.0
[gardener/gardener]
β οΈ Breaking Changes
[USER]A bug has been fixed which was allowing users to setShootoidc configurations for thekube-apiserverwithout setting theclientIDandissuerURLfields inspec.kubernetes.kubeAPIServer.oidcConfig, which would lead to thekube-apiserverstuck in a `Err...
Contributors
unmarshall, MartinWeindel, and 17 other contributors
Assets 2
v1.104.0-0
Release Notes v1.104
Yake release notes and upgrade guide
Related upstream release notes / changelogs
Update networking-calico to 1.41.0
[gardener/gardener-extension-networking-calico]
β¨ New Features
[OPERATOR]Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#445]
π Others
[OPERATOR]Add static resource allocation autoscaling mode for calico node/typha (autoScaling.mode: static). by @ScheererJ [#464][OPERATOR]The race between a calico-node instance shutting down and a new one coming up is mitigated by settingNetworkUnavailablecondition properly some time after initialization. by @ScheererJ [#477]
Helm Charts
- admission-calico-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-application:v1.41.0 - admission-calico-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-calico-runtime:v1.41.0 - networking-calico:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/networking-calico:v1.41.0
Docker Images
- gardener-extension-admission-calico:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-calico:v1.41.0 - gardener-extension-networking-calico:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/networking-calico:v1.41.0
Update cloudprofiles to 0.7.17
Full Changelog: gardener-community/cloudprofiles@0.7.16...0.7.17
Update provider-hcloud to 0.6.31
[gardener-extension-provider-hcloud] v0.6.31
Update shoot-flux to 0.7.0
What's Changed
- Add ability to add args/env to deployment by @maboehm in stackitcloud/gardener-extension-shoot-flux#93
Full Changelog: stackitcloud/gardener-extension-shoot-flux@v0.6.1...v0.7.0
Update cloudprofiles to 0.7.18
What's Changed
- Add hcloud ccx[1-6]3 instances, remove ccx1 and ccx2 by @j2L4e in gardener-community/cloudprofiles#29
Full Changelog: gardener-community/cloudprofiles@0.7.17...0.7.18
Update backup-s3 to 0.4.1
General Changes
- Generate new controller-registration.yaml
Update provider-alicloud to 1.54.0
[gardener/gardener-extension-provider-alicloud]
π Others
[OPERATOR]Starting with gardenlet >= v1.98.0, use controlplane webhook object selector to limit mutator calls. by @LucaBernstein [#731][OPERATOR]The shoot-webhook does no longer mutate the metrics-server Deployment and the vpn-shoot Service. The shoot-webhook that now only mutates theaddons-nginx-ingress-controllerService does now specify object selector. by @ialidzhikov [#730][OPERATOR]Upgrade and adapt newWorkerPoolHashfunction in Gardenerv1.98. by @Duciwuci [#736]
Helm Charts
- admission-alicloud-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-alicloud-application:v1.54.0 - admission-alicloud-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-alicloud-runtime:v1.54.0 - provider-alicloud:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-alicloud:v1.54.0
Docker Images
- gardener-extension-admission-alicloud:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-alicloud:v1.54.0 - gardener-extension-provider-alicloud:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-alicloud:v1.54.0
Update gardener-controlplane to 1.104.0
[gardener/gardener]
β οΈ Breaking Changes
[USER]A bug has been fixed which was allowing users to setShootoidc configurations for thekube-apiserverwithout setting theclientIDandissuerURLfields inspec.kubernetes.kubeAPIServer.oidcConfig, which would lead to thekube-apiserverstuck in aErrorstate. gardener-apiserver now requires bothclientIDandissuerURLfields to be set when thespec.kubernetes.kubeAPIServer.oidcConfigfield is specified. by @AleksandarSavchev [#10461][OPERATOR]credentialsBinding.credentialsRefis now an immutable field. by @dimityrmirchev [#10365]
π° Noteworthy
[USER]Users are allowed to changeshoot.spec.credentialsBindingNameand reference anotherCredentialsBindingonly if they have the permissions to read both the old and newly referenced credential. by @dimityrmirchev [#10365][USER]Users can migrate fromshoot.spec.secretBindingNametoshoot.spec.credentialsBindingNameonly if the referenced credential remains the same and is not changed during the process. by @dimityrmirchev [#10365][OPERATOR]Allow project users to readNamespacedCloudProfiles and for project admins to make adjustments to machine types and volume types. by @LucaBernstein [#10485][OPERATOR]Alerts based on theproposals_failed_totalmetric of the etcd cluster are not raised anymore. by @renormalize [#10524][DEVELOPER]A new predicateextensions/pkg/predicate.GardenSecurityProviderTypecan be used to select resources from thesecurity.gardener.cloudgroup that are related to the passed provider type. by @dimityrmirchev [#10499]
β¨ New Features
[OPERATOR]Thegardener-operatormetrics are now automatically scraped by thegardenPrometheus. by @maboehm [#10464][OPERATOR]Introduce custom RBAC verbs to allow for modification of.spec.{kubernetes,machineImages}inNamespacedCloudProfiles. by @LucaBernstein [#10485][OPERATOR]The feature gateNewVPNis introduced for thegardenletcomponent. If enabled, the new VPN implementation (Golang rewrite) is used for allShoots of the respectiveSeed. In this case, the old implementation can be disabled for a singleShootby annotating the shoot resource withalpha.control-plane.shoot.gardener.cloud/disable-new-vpn=true. ForSeeds with disabled feature gate, the new implementation can be enabled for a single shoot by annotating it withalpha.control-plane.shoot.gardener.cloud/disable-new-vpn=false. by @MartinWeindel [#9774]
π Bug Fixes
[USER]Fixed disk read/write panel in the shoot's etcd dashboards by @rickardsjp [#10493][DEVELOPER]An issue was fixed that rejected the creation of workerless shoots in the local setup. by @timuthy [#10498]
π Others
[DEPENDENCY]Thegardener/hvpa-controllerimage has been updated tov0.17.0. Release Notes by @gardener-ci-robot [#10508][DEPENDENCY]Thequay.io/prometheus-operator/prometheus-config-reloaderimage has been updated tov0.76.2. by @gardener-ci-robot [#10500][DEPENDENCY]Thegardener/machine-controller-managerimage has been updated tov0.54.0. Release Notes by @gardener-ci-robot [#10528][DEPENDENCY]Thegardener/alpine-conntrackimage has been updated to3.20.3. Release Notes by @gardener-ci-robot [#10487][DEPENDENCY]Theenvoyproxy/envoyimage has been updated tov1.31.1. Release Notes by @gardener-ci-robot [#10531][OPERATOR]Federate apiserver_total_request metric to the Prometheus longterm instance by @jguipi [#10457][OPERATOR]Allow emptynetworking.nodesin case of IPv6 only shoots. by @axel7born [#10533][OPERATOR]Improved node utilisation by reducing requests for etcd-druid managed pods. by @unmarshall [#10540][DEVELOPER]Install go in the remote local setup from the go download site instead of using the apk package manager. by @vicwicker [#10502]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.104.0 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.104.0 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.104.0 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.104.0
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.104.0 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.104.0 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.104.0 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.104.0 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.104.0 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.104.0 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.104.0 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.104.0
Update gardener-controlplane to 1.104.0
[gardener/gardener]
β οΈ Breaking Changes
[USER]A bug has been fixed which was allowing users to setShootoidc configurations for thekube-apiserverwithout setting theclientIDandissuerURLfields inspec.kubernetes.kubeAPIServer.oidcConfig, which would lead to thekube-apiserverstuck in a `Err...
Contributors
unmarshall, MartinWeindel, and 17 other contributors
Assets 2
v1.103.0-1
Release Notes v1.103
Yake release notes and upgrade guide
Related upstream release notes / changelogs
Update provider-hcloud to 0.6.30
[gardener-extension-provider-hcloud] v0.6.30
Update provider-openstack to 1.41.2
[gardener/gardener-extension-provider-openstack]
π Others
[OPERATOR]Fix an issue with share network reconciliation not calculating number of existing share networks correctly. by @AndreasBurger [#827]
Docker Images
- gardener-extension-admission-openstack:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-openstack:v1.41.2 - gardener-extension-provider-openstack:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-openstack:v1.41.2
Update shoot-cert-service to 1.44.2
[gardener/gardener-extension-shoot-cert-service]
π Others
[OPERATOR]The memory limit from thecert-controller-managerDeployment is now removed. by @ialidzhikov [#287]
Docker Images
- gardener-extension-shoot-cert-service:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-cert-service:v1.44.2
Update shoot-rsyslog-relp to 0.5.2
[gardener/gardener-extension-shoot-rsyslog-relp]
π Bug Fixes
[OPERATOR]Fixed an issue that caused the-a exit,always -F arch=b64 -S mount_setattr -F auid!=-1 -F key=privileged_specialaudit rule to not get correctly applied. by @plkokanov [#151]
Docker Images
- gardener-extension-shoot-rsyslog-relp-admission:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-rsyslog-relp-admission:v0.5.2 - gardener-extension-shoot-rsyslog-relp:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-rsyslog-relp:v0.5.2
Update provider-alicloud to 1.53.0
[gardener/gardener-extension-provider-alicloud]
β¨ New Features
[OPERATOR]This extension now makes use of the new.spec.pools[].userDataSecretReffield to get to the worker pool user data. by @rfranzke [#727][OPERATOR]Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#734][USER]The provider-alicloud extension does now support shoot clusters with Kubernetes version 1.30. You should consider the Kubernetes release notes before upgrading to 1.30. by @shafeeqes [#722]
π Others
[OPERATOR]Thecontrolplaneexposure.alicloud.extensions.gardener.cloudwebhook does no longer mutate Services/Deployments. Previously the webhook was called for Services/Deployments mutations and was not mutating anything. by @ialidzhikov [#725][OPERATOR]This extension is now using the new way of providing monitoring configuration (ref GEP-19) in case a shoot cluster's Prometheus has been migrated to management viaprometheus-operator. by @rfranzke [#720][OPERATOR]ApriorityClassNamecan now be set for the admission deployment via thegardener-extension-admission-alicloudHelm chart. by @timuthy [#732][OPERATOR]Inserts architecture from worker to the machine class by @sssash18 [#735][OPERATOR]NodeGroupAutoscalingOptions can now be specified per worker group via the worker through the fieldworker.spec.pools.clusterAutoscalerby @aaronfern [#715]
[gardener/machine-controller-manager]
β οΈ Breaking Changes
[OPERATOR]Change OCI Image Registry from GCR (eu.gcr.io/gardener-project) to Artifact-Registry (europe-docker.pkg.dev/gardener-project/releases). Users should update their references. by @ccwienk [gardener/machine-controller-manager#878][DEVELOPER]New provider method Driver.InitializeMachine added for Post-Creation VM Instance Initialization steps. by @elankath [gardener/machine-controller-manager#898]
π Bug Fixes
[DEVELOPER]MCM restart happens properly in integration tests now. This fix will get activated, once this version is vendored in your mcm-provider by @sssash18 [gardener/machine-controller-manager#879][OPERATOR]Fix for edge case of Node object deletion missed during machine termination. by @elankath [gardener/machine-controller-manager#887]
π Others
[OPERATOR]machine controller won't reconcile machine on non-spec update events by @himanshu-kun [gardener/machine-controller-manager#877][OPERATOR]Updated k8s dependencies tov0.29.3by @rishabh-11 [gardener/machine-controller-manager#907][OPERATOR]fixed IT for seed with k8s >= 1.27 as control cluster by @piyuagr [gardener/machine-controller-manager#869][OPERATOR]Removed vendor directory by @rishabh-11 [gardener/machine-controller-manager#903][OPERATOR]Architecture field added in the nodetemplate. This will allow CA to pickup architecture from machine class and schedule pods on relevant arch nodes. by @sssash18 [gardener/machine-controller-manager#894][DEVELOPER]go-git now removed from dependencies due to CVE's. by @elankath [gardener/machine-controller-manager#896][DEVELOPER]Bumpk8s.io/*deps tov0.28.2by @afritzler [gardener/machine-controller-manager#858]
π Documentation
[DEVELOPER]Phase transition diagram for a machine object is added to FAQs by @himanshu-kun [gardener/machine-controller-manager#886]
[gardener/machine-controller-manager-provider-alicloud]
π Others
[DEVELOPER]Removed vendor directory by @rishabh-11 [gardener/machine-controller-manager-provider-alicloud#74]
Helm Charts
- admission-alicloud:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-alicloud:v1.53.0 - provider-alicloud:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-alicloud:v1.53.0
Docker Images
- gardener-extension-admission-alicloud:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-alicloud:v1.53.0 - gardener-extension-provider-alicloud:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-alicloud:v1.53.0
Update provider-aws to 1.57.0
[gardener/gardener-extension-provider-aws]
β¨ New Features
[OPERATOR]Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#1012]
π Bug Fixes
[OPERATOR]Removed unnecessary preStop hook fromnode-driver-registrarincsi-driver-node, as socket removal is now handled internally bynode-driver-registrar, resolving distroless image error. by @AndreasBurger [#992]
π Others
[OPERATOR]ApriorityClassNamecan now be set for the admission deployment via thegardener-extension-admission-awsHelm chart. by @timuthy [#994][OPERATOR]Starting with gardenlet >= v1.98.0, use controlplane webhook object selector to limit mutator calls. by @LucaBernstein [#989][OPERATOR]Update the VPA CRD used for testing locally by @kon-angelo [#1019][OPERATOR]Insertsarchitecturefrom worker to the machine class by @sssash18 [#853]
Helm Charts
- admission-aws-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-application:v1.57.0 - admission-aws-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-runtime:v1.57.0 - provider-aws:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-aws:v1.57.0
Docker Images
- gardener-extension-admission-aws:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.57.0 - gardener-extension-provider-aws:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.57.0
Update provider-azure to 1.47.1
[gardener/gardener-extension-provider-azure]
π Others
[OPERATOR]The storage domain to use for backup buckets is now inferred from the buckets' region if no explicit config is given by @AndreasBurger [#947]
Helm Charts
- admission-azure-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.47.1 - admission-azure-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.47.1 - provider-azure:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.47.1
Docker Images
- gardener-extension-admission-azure:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.47.1 - gardener-extension-provider-azure:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.47.1
Update provider-gcp to 1.38.0
[gardener/gardener-extension-provider-gcp]
β¨ New Features
[OPERATOR]Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#805]
π Bug Fixes
[OPERATOR]Removed unnecessary preStop hook fromnode-driver-registrarincsi-driver-node, as socket removal is now handled internally bynode-driver-registrar, resolving distroless image error. by @sujeet01 [#792][USER]Allow configuring iops and throughput of hyperdisk-balanced disks by @hebelsan [#793]
π Others
[OPERATOR]Inserts architecture from worker to the machine class by @sssash18 [#809][OPERATOR]Starting with gardenlet >= v1.98.0, use controlplane webhook object selector to limit mutator calls. by @LucaBernstein [#789][OPERATOR]Update the VPA...
Contributors
holgerkoser, afritzler, and 29 other contributors
Assets 2
v1.102.1-2
Release Notes v1.102
Yake release notes and upgrade guide
Related upstream release notes / changelogs
Update cloudprofiles to 0.7.16
Full Changelog: gardener-community/cloudprofiles@0.7.15...0.7.16
Update gardener-controlplane to 1.101.2
[gardener/gardener]
π Others
[DEPENDENCY]Theregistry.k8s.io/ingress-nginx/controller-chrootimage has been updated tov1.11.2. by @gardener-ci-robot [#10357]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.101.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.101.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.101.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.101.2
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.101.2 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.101.2 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.101.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.101.2 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.101.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.101.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.101.2 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.101.2
Update gardener-controlplane to 1.101.2
[gardener/gardener]
π Others
[DEPENDENCY]Theregistry.k8s.io/ingress-nginx/controller-chrootimage has been updated tov1.11.2. by @gardener-ci-robot [#10357]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.101.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.101.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.101.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.101.2
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.101.2 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.101.2 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.101.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.101.2 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.101.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.101.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.101.2 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.101.2
Update gardenlet to 1.101.2
[gardener/gardener]
π Others
[DEPENDENCY]Theregistry.k8s.io/ingress-nginx/controller-chrootimage has been updated tov1.11.2. by @gardener-ci-robot [#10357]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.101.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.101.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.101.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.101.2
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.101.2 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.101.2 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.101.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.101.2 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.101.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.101.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.101.2 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.101.2
Update external-dns-management to 0.21.0
[gardener/external-dns-management]
β οΈ Breaking Changes
[OPERATOR]Drop support for custom resourcesdnslock.dns.gardener.cloudandremoteaccesscertificates.dns.gardener.cloud.
As these experimental features have no been used in Gardener, it should not be relevant in most cases. by @MartinWeindel [#381]
π Others
[OPERATOR]Bumps golang from 1.22.6 to 1.23.0. by @dependabot[bot] [#384][OPERATOR]Bumps golang from 1.22.5 to 1.22.6. by @dependabot[bot] [#383][OPERATOR]The dependency controller-manager-library has been updated to include the new flag--<cluster>.conditional-deploy-crdsby @MartinWeindel [#385]
Docker Images
- dns-controller-manager:
europe-docker.pkg.dev/gardener-project/releases/dns-controller-manager:v0.21.0
Update gardener-controlplane to 1.102.0
[gardener/gardener]
β οΈ Breaking Changes
[OPERATOR]When theNewWorkerPoolHashfeature gate is enabled, the calculation now also rolls worker nodes ofShoots when changingsystemReservedin thekubeletconfiguration. Worker pools are not rolled if the sum ofkubeReservedandsystemReserveddoes not change. If the feature gate is already enabled, then the worker pools ofShoots with non-zero values insystemReservedwill be rolled once. by @MichaelEischer [#10290]
π° Noteworthy
[USER]Thespec.clientfield in the{Cluster}OpenIDConnectPresetAPIs is deprecated and will be removed after support for Kubernetes 1.30 is dropped. by @AleksandarSavchev [#10253][USER]Thespec.kubernetes.kubeAPIServer.oidcConfig.clientAuthenticationfield in theShootAPI is deprecated and will be removed after support for Kubernetes 1.30 is dropped. by @AleksandarSavchev [#10253][USER]The Shoot specification field.spec.kubernetes.kubeAPIServer.oidcConfig.signingAlgsfor Kubernetes versions>= v1.30is not supported anymore. by @AleksandarSavchev [#10244]
β¨ New Features
[USER]Structured authentication configuration can now be set by creating aConfigMapin the project namespace with theAuthenticationConfigurationfile set in theconfig.yamldata key and referencing theConfigMapin the newShootspecification field.spec.kubernetes.kubeAPIServer.structuredAuthentication.configMapNamefor Kubernetes versions>= v1.30. Only one authenticator can be set via the authentication configuration untilk8s.io/*Golang dependencies are upgraded to version>= v0.30. by @AleksandarSavchev [#10244][USER]The followingvpa-recommenderflags are now configurable via theShootspecification:--recommendation-lower-bound-cpu-percentile:.spec.kubernetes.verticalPodAutoscaler.recommendationLowerBoundCPUPercentile--recommendation-upper-bound-cpu-percentile:.spec.kubernetes.verticalPodAutoscaler.recommendationUpperBoundCPUPercentile--target-memory-percentile:.spec.kubernetes.verticalPodAutoscaler.targetMemoryPercentile--recommendation-lower-bound-memory-percentile:.spec.kubernetes.verticalPodAutoscaler.recommendationLowerBoundMemoryPercentile--recommendation-upper-bound-memory-percentile:.spec.kubernetes.verticalPodAutoscaler.recommendationUpperBoundMemoryPercentileby @ialidzhikov [#10221]
[OPERATOR]Performing control plane migration acrossSeeds with different provider types is now possible. Before triggering the migration, make sure that pods in theShoot's control plane, once it is moved to theDestination Seed, will have network connectivity to the storage provider of theSource Seed(so that ETCD backups can be copied automatically). Additionally, make sure that theShoot's nodes will have network connectivity to theShoot's control plane after it is moved to theDestination Seed. by @plkokanov [#10323][OPERATOR]gardenletnow runs a new controller calledTokenRequestorWorkloadIdentitywhich requests workload identity tokens and writes them intoSecretresources in the seed cluster. These tokens can be then used by control plane components in order to present the saidWorkloadIdentitybefore external systems. Please see here for more details. by @dimityrmirchev [#10298][OPERATOR]Quotas can now have scope of typeWorkloadIdentity. by @dimityrmirchev [#10346]
π Bug Fixes
[USER]Fixes a bug preventing shoot clusters with annotationshoot.gardener.cloud/skip-readiness: "true"to be created. by @ScheererJ [#10317][OPERATOR]An issue causing the vpn-seed-server VPA's to be created with wrong targetRef for highly available Shoots is now fixed. by @ialidzhikov [#10366]
π Others
[OPERATOR]vpa-updater and vpa-recommender components do now run with leader election enabled (unconditionally) and support running in HA mode. by @ialidzhikov [#10302][OPERATOR]Reduce kubelet http2 timeouts. by @axel7born [#10223][OPERATOR]Gardener now temporarily uses a `vpa-recomme...
Contributors
ashwani2k, MartinWeindel, and 14 other contributors