Releases: kubernetes/kops
Releases · kubernetes/kops
v1.25.3
What's Changed
- Automated cherry pick of #14436: Log and aggregate errors from rolling update by @hakman in #14437
- Automated cherry pick of #14458: Update containerd to v1.6.9 by @hakman in #14464
- Automated cherry pick of #14463: Fix Prometheus scraping for pod-identity-webhook by @johngmyers in #14472
- Automated cherry pick of #14466: Update Calico and Canal by @hakman in #14478
- Automated cherry pick of #14503: use the same tolerations config for coredns-autoscaler by @MoShitrit in #14506
- Automated cherry pick of #14513: add a condition for the aws-cni ClusterRole based on the by @MoShitrit in #14516
- Automated cherry pick of #14549: Update Go to v1.19.3 by @hakman in #14552
- Automated cherry pick of #14551: Update Calico and Canal to latest versions by @hakman in #14553
- Automated cherry pick of #14550: Update containerd to v1.6.10 by @hakman in #14554
- Automated cherry pick of #14564: use sprig join for template functions by @johngmyers in #14567
- Automated cherry pick of #14573: Allow using the price-capacity-optimized spot allocation by @johngmyers in #14574
- Automated cherry pick of #14563: Add missing create tags permissions for cilium operator in by @olemarkus in #14579
- Automated cherry pick of #14576: aws: Fix SIGSEGV when using instance selector by @hakman in #14580
- Update dependencies for kOps 1.25 by @hakman in #14578
- Automated cherry pick of #14586: Bump cilium to 1.11.11 by @olemarkus in #14588
- Automated cherry pick of #14589: Fix disabling StorageClass management by @olemarkus in #14590
- Automated cherry pick of #14595: Add generics alternatives for fi.Bool/Float*/Int*/String*() by @hakman in #14597
- Automated cherry pick of #14602: Remove CloudFormation tests by @hakman in #14605
- Automated cherry pick of #14434: add option to query AMIs IDs from SSM by @hakman in #14615
- Automated cherry pick of #14442: Fix pdb for identity webhook by @johngmyers in #14617
- Automated cherry pick of #14632: hetzner: Update CSI driver to v2.0.0 by @hakman in #14636
- Automated cherry pick of #14648: aws: Limit the number of target groups updated per by @johngmyers in #14651
- Automated cherry pick of #14650: Add
ec2:DescribeAvailabilityZonesto the AWS CCM by @johngmyers in #14654 - Automated cherry pick of #14655: gce: Allow Cilium to connect to its etcd cluster by @hakman in #14656
- Release 1.25.3 by @hakman in #14661
Full Changelog: v1.25.2...v1.25.3
Contributors
olemarkus, johngmyers, and 2 other contributors
Assets 24
v1.24.5
What's Changed
- Automated cherry pick of #14458: Update containerd to v1.6.9 by @hakman in #14465
- Automated cherry pick of #14466: Update Calico and Canal by @hakman in #14479
- Automated cherry pick of #14503: use the same tolerations config for coredns-autoscaler by @MoShitrit in #14505
- Automated cherry pick of #14513: add a condition for the aws-cni ClusterRole based on the by @MoShitrit in #14515
- Update Go to v1.18.8 by @hakman in #14555
- Manual cherry pick of #14551: Update Calico and Canal to latest versions by @hakman in #14558
- Automated cherry pick of #14550: Update containerd to v1.6.10 by @hakman in #14556
- Automated cherry pick of #14564: use sprig join for template functions by @johngmyers in #14568
- Automated cherry pick of #14576: aws: Fix SIGSEGV when using instance selector by @hakman in #14581
- Automated cherry pick of #14595: Add generics alternatives for fi.Bool/Float*/Int*/String*() by @hakman in #14598
- Automated cherry pick of #14602: Remove CloudFormation tests by @hakman in #14606
- Cherry pick of #14442: Fix pdb for identity webhook by @johngmyers in #14618
- Automated cherry pick of #14650: Add
ec2:DescribeAvailabilityZonesto the AWS CCM by @johngmyers in #14653 - Automated cherry pick of #14648: aws: Limit the number of target groups updated per by @johngmyers in #14652
- Automated cherry pick of #14655: gce: Allow Cilium to connect to its etcd cluster by @hakman in #14657
- Release 1.24.5 by @hakman in #14662
Full Changelog: v1.24.4...v1.24.5
Contributors
johngmyers, hakman, and moshevayner
Assets 24
v1.25.2
What's Changed
- Automated cherry pick of #14369: Disable rp_filter on cilium hosts by @olemarkus in #14372
- Automated cherry pick of #14364: gce: memberlist needs TCP also by @hakman in #14365
- Automated cherry pick of #14379: cluster-autoscaler : Add scaleDownUnneededTime and by @olemarkus in #14380
- Automated cherry pick of #14382: update NPD to version 0.8.12 by @hakman in #14384
- Automated cherry pick of #14386: hetzner: Update CCM to v1.13.2 by @hakman in #14387
- Automated cherry pick of #14388: Bump EBS CSI driver to 1.12.0
#14390: Remove fsGroupPolicy as it is immutable by @olemarkus in #14394 - Automated cherry pick of #14401: update k8s cloudprovider openstack images by @zetaab in #14405
- Automated cherry pick of #14389: Fix default launch spec detection by @hakman in #14392
- Automated cherry pick of #14406: update k8s openstack by @zetaab in #14407
- Automated cherry pick of #14408: karpenter: upgrade to version 0.16.3 and support by @olemarkus in #14409
- Automated cherry pick of #14417: bump Openstack ccm version by @zetaab in #14418
- Automated cherry pick of #14413: Allow snapshot controller to create volumesnapshotcontent by @olemarkus in #14421
- Automated cherry pick of #14423: Ensure kOps doesn't surge on karpenter IGs by @olemarkus in #14425
- Automated cherry pick of #14424: Bump AWS CCM to 1.25.1 by @olemarkus in #14426
- Automated cherry pick of #14370: get-keypairs: Tolerate items without certificates by @hakman in #14427
- Release 1.25.2 by @hakman in #14430
Full Changelog: v1.25.1...v1.25.2
Contributors
olemarkus, hakman, and zetaab
Assets 24
v1.24.4
What's Changed
- Automated cherry pick of #14319: Avoid spurious changes with NLB due to access log config by @hakman in #14325
- Automated cherry pick of #14326: Add --network-id alias for --vpc flag by @hakman in #14327
- Automated cherry pick of #14318: Avoid spurious changes with bastion hosts due to user by @hakman in #14321
- Automated cherry pick of #14317: cluster-autoscaler : Add iam permission by @olemarkus in #14328
- Automated cherry pick of #14369: Disable rp_filter on cilium hosts by @olemarkus in #14373
- Automated cherry pick of #14364: gce: memberlist needs TCP also by @hakman in #14374
- Automated cherry pick of #14382: update NPD to version 0.8.12 by @hakman in #14385
- Automated cherry pick of #14401: update k8s cloudprovider openstack images by @zetaab in #14404
- Automated cherry pick of #14389: Fix default launch spec detection by @hakman in #14393
- Release 1.24.4 by @hakman in #14429
Full Changelog: v1.24.3...v1.24.4
Contributors
olemarkus, hakman, and zetaab
Assets 24
v1.25.1
What's Changed
- Automated cherry pick of #14309: hetzner: Generate CCM args from external CCM config by @hakman in #14310
- Update dependencies for kOps 1.25 by @hakman in #14314
- Automated cherry pick of #14319: Avoid spurious changes with NLB due to access log config by @hakman in #14324
- Add --network-id alias for --vpc flag by @hakman in #14326
- Automated cherry pick of #14318: Avoid spurious changes with bastion hosts due to user by @hakman in #14320
- Automated cherry pick of #14317: cluster-autoscaler : Add iam permission by @olemarkus in #14329
- Automated cherry pick of #14343: Validate
--zonesflag earlier by @hakman in #14344 - Automated cherry pick of #14350: hetzner: Fix metrics-server config to use internal IP by @hakman in #14352
- Automated cherry pick of #14339: Set higher verbosity when logging Gossip DNS info by @hakman in #14341
- Automated cherry pick of #14347: Add create cluster test for arm64 by @olemarkus in #14355
- Automated cherry pick of #14333: Ensure kubelet configuration from IG takes precedence by @hakman in #14356
- Release 1.25.1 by @hakman in #14357
Full Changelog: v1.25.0...v1.25.1
Contributors
olemarkus and hakman
Assets 24
v1.26.0-alpha.1
What's Changed
- support for scaleway in s3 buckets by @Mia-Cross in #14214
- AWS IAM Role listing: don't ignore "other" errors by @justinsb in #14215
- Some minor docs fixes by @olemarkus in #14221
- Update dependencies by @github-actions in #14222
- Remove warning for FindClusterStatus not implemented for Hetzner by @hakman in #14223
- Add support for installing dcgm exporter by @olemarkus in #14203
- Release notes for 1.23.4 by @justinsb in #14230
- Makefile: Don't assume GOBIN is set by @justinsb in #14232
- Release notes for 1.24.2 by @justinsb in #14231
- Update Calico and Canal to v3.24.1 by @hakman in #14225
- Update Flannel to v0.19.2 by @hakman in #14226
- applylib: Better health checking by @justinsb in #14234
- Bump cluster-autoscaler images by @olemarkus in #14235
- Allow cert-manager the privileges needed to resolve dns-01 challenges by @olemarkus in #14229
- GCE: change default control-plane instance type to e2-medium by @justinsb in #14233
- Small release notes cleanup for 1.25 by @olemarkus in #14237
- Add suport to --cordon-node-before-terminating autoscaler flag by @dcfranca in #14236
- Fix openstack tag limitation by @akkina2107 in #13853
- Bump versions in netlify and mkdocs by @rifelpet in #14248
- aws-node-termination-handler to match node using providerID instead of AWS DNS name by @anthonyhaussman in #14244
- Update dependencies by @github-actions in #14250
- kOps managed OIDC provider is no longer needed for IRSA by @olemarkus in #14243
- Update recommended kOps versions in alpha and stable by @MoShitrit in #14252
- AWS LBC needs ec2:DescribeVpcPeeringConnections for IPv6 by @johngmyers in #14255
- Add back missing permissions for legacy CCM. Again. by @olemarkus in #14253
- Fix CAS cordon flag by @olemarkus in #14254
- Bump verbosity level for some log statements by @olemarkus in #14260
- Warm pool-enabled ASGs scaled to zero will no longer panic by @olemarkus in #14251
- Bump aws-cni to v1.11.4 by @MoShitrit in #14265
- aws-cni clusterRole fix by @MoShitrit in #14272
- bump k8s versions in alpha with September releases by @MoShitrit in #14278
- rolling-update: don't deregister our only apiserver by @justinsb in #13163
- Update dependencies by @github-actions in #14280
- Delete the oldest servers when over the desired count for Hetzner by @hakman in #14282
- Release notes for 1.24.3 by @olemarkus in #14281
- [Docs] Fix karpenter link by @jorge07 in #14284
- Bump stable and alpha channels with latest k8s/kops releases by @olemarkus in #14288
- Prevent kops edit cluster from writing the populated IG spec to state store by @olemarkus in #14287
- User IG without image should be allowed by @olemarkus in #14290
- Remove k8s GTE 1.20 checks as it is always true by @olemarkus in #14291
- Add support for using an existing network for Hetzner by @hakman in #14294
- Update Hetzner CCM to v1.13.0 by @hakman in #14297
- hetzner: Move out of alpha and drop feature flag by @hakman in #14299
- Add release 1.25.0 to channels by @hakman in #14306
- Release notes for 1.25.0 by @hakman in #14305
- Remove support for K8s 1.20 by @olemarkus in #14307
- Hetzner: Generate CCM args from external CCM config by @hakman in #14309
- Release 1.26.0-alpha.1 by @hakman in #14311
New Contributors
- @Mia-Cross made their first contribution in #14214
- @dcfranca made their first contribution in #14236
- @akkina2107 made their first contribution in #13853
Full Changelog: v1.25.0-beta.1...v1.26.0-alpha.1
Contributors
olemarkus, dcfranca, and 9 other contributors
Assets 24
v1.25.0
Significant changes
- GCE cloud provider support has been promoted to stable.
- Hetzner cloud provider support has been promoted to beta.
- Karpenter support has been promoted to stable on Kubernetes versions 1.22, 1.23 and 1.24. Karpenter does not yet support Kubernetes above 1.25.
- IAM roles on AWS used for ServiceAccounts are now tagged with the name and namespace of the ServiceAccount.
- Cert Manager may now solve dns-01 challenges. See the cert manager documentation.
- Add support to --cordon-node-before-terminating on the cluster autoscaler addon (CordonNodeBeforeTerminating)
- EBS CSI driver can now be self-managed. See the addon docs.
Breaking changes
Cinder CSI snapthot controller changes
The CSI Cinder plugin for OpenStack will now only use the CSI snapshotter when the CSI snapshot controller is enabled in the cluster spec. This changes the default behavior where the CSI snaphotter container was always present, but spammed the log with error messages (see #13890). In case of manually deployed CRDs to make the snapshotter work it is now necessary to enable the snapshot controller.
Other breaking changes
- Support for Kubernetes version 1.19 has been removed.
Deprecations
- Support for Kubernetes version 1.20 is deprecated and will be removed in kOps 1.26.
- Support for Kubernetes version 1.21 is deprecated and will be removed in kOps 1.27.
What's Changed
- Release notes for 1.24.0-beta.1 by @hakman in #13732
- Bump github.com/spf13/viper from 1.11.0 to 1.12.0 by @dependabot in #13698
- Add GHA workflow for updating dependabot PRs by @rifelpet in #13735
- Bump github.com/hashicorp/vault/api from 1.5.0 to 1.6.0 by @dependabot in #13734
- Bump github.com/google/go-containerregistry from 0.8.0 to 0.9.0 by @dependabot in #13720
- Bump helm.sh/helm/v3 from 3.8.2 to 3.9.0 by @dependabot in #13733
- Only rewrite to k8s.gcr.io until k8s 1.25 by @rifelpet in #13739
- Bump github.com/stretchr/testify from 1.7.1 to 1.7.2 by @dependabot in #13738
- Update containerd and Docker versions by @hakman in #13741
- Remove support for K8s 1.19 by @olemarkus in #13742
- [DigitalOcean] Restart journald service on node startup by @srikiz in #13717
- Drop older cilium versions and add support for k8s 1.25 by @olemarkus in #13747
- Update AWS CCM images for k8s 1.20-1.22 by @hakman in #13748
- Channels to have exit status 1 on apply failure by @olemarkus in #13749
- Add support for setting mode field on file assets by @yurrriq in #13715
- Revert "Use kubectl replace instead of apply when updating addons" by @hakman in #13761
- Don't try to manage the kube-system namespace by @hakman in #13764
- Run channels on upgrade e2e tests to verify addons are being applied by @olemarkus in #13757
- Fix API group name for ingresses in DNS Controller by @julienperignon in #13750
- Remove some unused legacy addons by @hakman in #13765
- Bump nvidia device plugin to 0.12.0 by @ddelange in #13745
- Update runc to v1.1.3 by @hakman in #13763
- Fix namespace for cert manager webhook config by @olemarkus in #13773
- Avoid spurious changes with ed25519 keys by @hakman in #13774
- Make the cert-manager breaking change more visible. by @olemarkus in #13780
- Bump go.uber.org/multierr from 1.6.0 to 1.8.0 by @dependabot in #13782
- Bump github.com/aws/aws-sdk-go from 1.44.6 to 1.44.32 by @dependabot in #13783
- Bump github.com/hashicorp/vault/api from 1.6.0 to 1.7.2 by @dependabot in #13785
- Add back the metrics-server 443 port with a new name by @olemarkus in #13779
- Fix broken node selector for node termination handler by @olemarkus in #13781
- Bump google.golang.org/api from 0.81.0 to 0.83.0 by @dependabot in #13784
- Release notes for 1.24.0-beta.2 by @olemarkus in #13790
- Fix PDB api version for a set of addons by @olemarkus in #13791
- Remove replaces from go.mod by @olemarkus in #13789
- Remove core addons from addons by @hakman in #13768
- Use exported interface to detect SSH key type by @AaronFriel in #13805
- Use node.k8s.io/v1 API in the nvidia addon by @olemarkus in #13806
- Merge the cilium templates by @olemarkus in #13807
- fix tenv linter by @remyleone in #13802
- Replace flexdriver with busybox by @zetaab in #13809
- add support for varcheck linter by @remyleone in #13801
- Depend on external cloud providers rather than cloud-providers-legacy by @olemarkus in #13808
- bump k8s versions and ubuntu ami (aws) in alpha channel by @MoShitrit in #13822
- chore(deps): Included dependency review by @naveensrinivasan in #13651
- add metric port to nth deployment by @raffis in #13811
- Recommend the latest kOps version in alpha & stable channels and add 1.24 to alpha by @MoShitrit in #13823
- Ensure clusters with internal load balancers have a private subnet by @olemarkus in #13793
- Update etcd-manager to v3.0.20220617 by @hakman in #13824
- Use legacy-cloud-providers repo for the gcp provider dep by @olemarkus in #13840
- Bump actions/dependency-review-action from 1 to 2 by @dependabot in #13829
- Remove the removable replaces in kubetest2 by @olemarkus in #13841
- Add kubetest2 scenario for testing many addons by @olemarkus in #13828
- Skip known failing cilium e2e test by @olemarkus in #13842
- Add manual job for updating dependencies by @hakman in #13827
- Update dependencies by @github-actions in #13843
- Do not run cluster autoscaler on spot instances by @olemarkus in #13846
- Fix GCE resource tracking by @hakman in #13857
- Adding GuestAccelerators to InstanceTemplate by @jonasasx in #13707
- Align website and readme file by @sxt90128 in #13862
- Limit GCE tag for role to 63 chars by @hakman in #13866
- Promote alpha to stable by @MoShitrit in #13868
- Clean-up firewall rules that contain targets with the cluster name hash by @hakman in #13869
- Replace manifests after apply by @olemarkus in #13819
- Bump kubetest2 to test rundir by @olemarkus in #13870
- Release notes for 1.24.0-beta.3 by @olemarkus in #13881
- Generate cli docs after updating dependencies by @hakman in #13885
- Fix unexpected symbol error in update-deps workflow by @hakman in #13886
- Update troubleshoot.md by @Deepak1100 in #13891
- Update dependencies by @github-actions in #13889
- Replace Dependabot with regular
update-depsrun by @hakman in #13894 - Log errors from detachInstance by @olemarkus in #13896
- increase backoff time when updating loadbalancer pool member by @zetaab in #13854
- gce: Move out of beta, drop feature flag by @justinsb in #13903
- Update CoreDNS to v1.9.3 by @hakman in #13895
- gce: set ProvisioningModel on InstanceTemplate by @justinsb in #13902
- Set Makefile GITSHA to the git sha instead of ...
Contributors
olemarkus, justinsb, and 27 other contributors
Assets 24
v1.24.3
General release notes for kOps 1.24
What's Changed
- Automated cherry pick of #14244: aws-node-termination-handler: Add option to fetch node name by @olemarkus in #14246
- Automated cherry pick of #14255: AWS LBC needs ec2:DescribeVpcPeeringConnections for IPv6 by @olemarkus in #14257
- Automated cherry pick of #13914: Ignore the _rundir that kubetest2 now creates by @olemarkus in #14258
- Automated cherry pick of #13853: Fix openstack tag limitation by @hakman in #14264
- Automated cherry pick of #14251: Warm pool-enabled ASGs scaled to zero will no longer panic by @hakman in #14267
- Automated cherry pick of #14107: bump aws cni to 1.11.13
#14265: bump aws-cni to version 1.11.4 by @hakman in #14271 - Release 1.24.3 by @olemarkus in #14279
Full Changelog: v1.24.2...v1.24.3
Contributors
olemarkus and hakman
Assets 24
v1.24.2
What's Changed
- Automated cherry pick of #13845: Add config drive as a source for OpenStack instance metadata by @ederst in #13950
- Automated cherry pick of #14017: Allow configuring OpenStack CCM networking options by @ederst in #14079
- Automated cherry pick of #14081: aws-ebs-csi-driver: remove preStop hook by @hakman in #14085
- Automated cherry pick of #14090: Add option to configure runc version for containerd by @hakman in #14091
- Automated cherry pick of #13745: Bump nvidia device plugin to 0.12.0 by @olemarkus in #14104
- Automated cherry pick of #14093: Add hashes for containerd v1.6.7
#14106: Update containerd to v1.6.8 by @hakman in #14108 - Automated cherry pick of #14113: Add deployment-specific selectors to nth pdb by @olemarkus in #14123
- Automated cherry pick of #14115: Disable some flags in kube-controller-manager and by @hakman in #14119
- Automated cherry pick of #14134: Limit GCE network names to 63 chars by @hakman in #14136
- Automated cherry pick of #14130: Bump the CCM images by @olemarkus in #14131
- Automated cherry pick of #14188: Update runc to v1.1.4 by @hakman in #14189
- Automated cherry pick of #14175: OIDC: Tolerate extra service-account key set items by @hakman in #14192
- Automated cherry pick of #14137: Always disable rp_filter when using cilium by @olemarkus in #14196
- Bump cert-manager to 1.8.2 by @olemarkus in #14212
- Automated cherry pick of #14205: Calico: Work around host port/conntrack problem by @hakman in #14209
- Release 1.24.2 by @justinsb in #14219
Full Changelog: v1.24.1...v1.24.2
Contributors
olemarkus, justinsb, and 2 other contributors
Assets 24
v1.23.4
What's Changed
- Automated cherry pick of #14081: aws-ebs-csi-driver: remove preStop hook by @hakman in #14086
- cilium: fix wrong pod annotations templating #1.23 by @sterchelen in #14105
- Automated cherry pick of #14115: Disable some flags in kube-controller-manager and by @hakman in #14120
- Automated cherry pick of #14188: Update runc to v1.1.4 by @hakman in #14197
- Release 1.23.4 by @justinsb in #14220
Full Changelog: v1.23.3...v1.23.4
Contributors
justinsb, hakman, and sterchelen