v1.27.0

Significant changes

• The default image has been updated to Ubuntu 22.04 (Jammy).

• The default retention duration for the etcd backups is now set to 90 days.
  This behaviour can be overridden by setting spec.etcdClusters[*].manager.backupRetentionDays in the cluster spec.

• external-dns is now supported in IPv6 clusters.

• Using swap memory is now possible by setting spec.kubelet.memorySwapBehavior.

AWS

• As of Kubernetes version 1.27, all nodes will default to running with instance-metadata-service tokens required, with a max hop limit of 1.
  Newly created clusters will be configured as necessary to have these settings.

• As of Kubernetes version 1.27, credentials for private ECR repositories will be handled by the out-of-tree credential provider. This is an additional binary that each instance downloads from the assets repository.

• Karpenter has been upgraded to version 0.28.1 and the feature flag is no longer necessary.

GCP

• Improved support for private topology.

• Support for bastions has been added.

Openstack

• Nodes will now assign floating IPs when they are in a subnet that is of type Public. Previously
  they would do so when the respective topology was set to public.

Breaking changes

Other breaking changes

• Support for Kubernetes version 1.21 has been removed.

Deprecations

• Support for Kubernetes version 1.22 is deprecated and will be removed in kOps 1.28.

• Support for Kubernetes version 1.23 is deprecated and will be removed in kOps 1.29.

• Support for Ubuntu 18.04 is deprecated and will be removed in kOps 1.28.

• Support for AWS Classic Load Balancer for API is deprecated and should not be used for newly created clusters.

• All legacy addons are deprecated in favor of managed addons, including the metrics server addon and the autoscaler addon.

Help Wanted

• kOps needs maintainers for Canal, Flannel, and Kube-Router to keep versions up to date and move the integration from experimental to stable. If no volunteers step up by the time kOps 1.27 is released, support will be phased out.

What's Changed

• Automated cherry pick of #14893: Don't expose v1alpha3 API by @johngmyers in #15580
• Automated cherry pick of #15577: hetzner: Update CCM to v1.16.0 by @hakman in #15578
• Automated cherry pick of #15573: aws: Avoid spurious changes in EBSVolume for KmsKeyId by @hakman in #15574
• Automated cherry pick of #15579: Don't download containerd assets when skipping the by @hakman in #15586
• Automated cherry pick of #15585: Update Karpenter to v0.28.1 by @hakman in #15592
• Automated cherry pick of #15593: Increase client-side throttling limits by @hakman in #15596
• Automated cherry pick of #14921: Validate additionalNetworkCIDRs only set on AWS by @hakman in #15597
• Automated cherry pick of #15618: switched credentials reading order by @hakman in #15619
• Automated cherry pick of #15621: Update Go to v1.20.6 by @hakman in #15622
• Automated cherry pick of #15605: Fix Karpenter failure to start on IPv6 clusters by @johngmyers in #15609
• Automated cherry pick of #15616: Update aws-sdk-go to support new aws sso profile by @hakman in #15629
• Automated cherry pick of #15628: aws: Allow using the same instance ID as egress for multiple by @hakman in #15630
• Automated cherry pick of #15635: openstack: Open hubble port 4244 by @hakman in #15636
• Automated cherry pick of #15602: gce: Add support for bastions#15332: gce: Update logic for internal LB#15611: gce: Set firewall rules for Internal LBs also#15614: gce: Rename firewall SSH rules for bastion#15607: gce: Use user-data instead of startup-script metadata by @hakman in #15639
• Automated cherry pick of #15632: Add support for using swap memory by @hakman in #15637
• Automated cherry pick of #15608: kops-controller: load objects with version conversion by @johngmyers in #15641
• Automated cherry pick of #15650: Support removal of managed node labels by @johngmyers in #15652
• Release 1.27.0 by @hakman in #15598

New Contributors

• @zcahana made their first contribution in #14965
• @jandersen-plaid made their first contribution in #14194
• @chubchubsancho made their first contribution in #14519
• @dimamo5 made their first contribution in #14920
• @chncaption made their first contribution in #15021
• @elezar made their first contribution in #15096
• @Nick-Triller made their first contribution in #15119
• @jongwooo made their first contribution in #15116
• @rsafonseca made their first contribution in #15153
• @philnielsen made their first contribution in #15177
• @R3DRUN3 made their first contribution in #15228
• @yehielnetapp made their first contribution in #15263
• @chenliu1993 made their first contribution in #15270
• @kundan2707 made their first contribution in #15290
• @felixfriedrich made their first contribution in #15275
• @SimonMisencik made their first contribution in #15311
• @oded7hoffman made their first contribution in #15338
• @ltellesfl made their first contribution in #15316
• @KlwntSingh made their first contribution in #15408
• @sn4psh0t made their first contribution in #15414
• @fcgravalos made their first contribution in #15415
• @testwill made their first contribution in #15476
• @fchiacchiaretta made their first contribution in #15479

Full Changelog: v1.27.0-alpha.1...v1.27.0