From 8325f99b09aa6ad175d18542fbcf6e142f05077b Mon Sep 17 00:00:00 2001 From: 3u13r Date: Fri, 18 Aug 2023 11:13:24 +0200 Subject: [PATCH] deps: support Kubernetes 1.28 (#2242) --- .github/workflows/e2e-test-daily.yml | 2 +- .github/workflows/e2e-test-manual.yml | 2 +- .github/workflows/e2e-test-release.yml | 53 ++++++------- .github/workflows/e2e-test-weekly.yml | 56 ++++++------- docs/docs/reference/cli.md | 2 +- internal/config/validation.go | 4 +- internal/versions/versions.go | 104 ++++++++++++------------- 7 files changed, 114 insertions(+), 109 deletions(-) diff --git a/.github/workflows/e2e-test-daily.yml b/.github/workflows/e2e-test-daily.yml index 3e416690a7..1bae7a5094 100644 --- a/.github/workflows/e2e-test-daily.yml +++ b/.github/workflows/e2e-test-daily.yml @@ -45,7 +45,7 @@ jobs: fail-fast: false max-parallel: 5 matrix: - kubernetesVersion: ["1.26"] # should be default + kubernetesVersion: ["1.27"] # should be default provider: ["gcp", "azure", "aws"] refStream: ["ref/main/stream/debug/?", "ref/release/stream/stable/?"] test: ["sonobuoy full"] diff --git a/.github/workflows/e2e-test-manual.yml b/.github/workflows/e2e-test-manual.yml index d4e8b19bf7..cbd8eaa9f1 100644 --- a/.github/workflows/e2e-test-manual.yml +++ b/.github/workflows/e2e-test-manual.yml @@ -38,7 +38,7 @@ on: required: true kubernetesVersion: description: "Kubernetes version to create the cluster from." - default: "1.26" + default: "1.27" required: true cliVersion: description: "Version of a released CLI to download. Leave empty to build the CLI from the checked out ref." diff --git a/.github/workflows/e2e-test-release.yml b/.github/workflows/e2e-test-release.yml index 4c8ed90aa2..6d36f52cb1 100644 --- a/.github/workflows/e2e-test-release.yml +++ b/.github/workflows/e2e-test-release.yml @@ -47,107 +47,108 @@ jobs: # sonobuoy full test on all k8s versions - test: "sonobuoy full" provider: "gcp" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" - test: "sonobuoy full" provider: "azure" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" - test: "sonobuoy full" provider: "aws" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" + - test: "sonobuoy full" provider: "gcp" - kubernetes-version: "v1.26" + kubernetes-version: "v1.27" runner: "ubuntu-22.04" - test: "sonobuoy full" provider: "azure" - kubernetes-version: "v1.26" + kubernetes-version: "v1.27" runner: "ubuntu-22.04" - test: "sonobuoy full" provider: "aws" - kubernetes-version: "v1.26" + kubernetes-version: "v1.27" runner: "ubuntu-22.04" - test: "sonobuoy full" provider: "gcp" - kubernetes-version: "v1.25" + kubernetes-version: "v1.26" runner: "ubuntu-22.04" - test: "sonobuoy full" provider: "azure" - kubernetes-version: "v1.25" + kubernetes-version: "v1.26" runner: "ubuntu-22.04" - test: "sonobuoy full" provider: "aws" - kubernetes-version: "v1.25" + kubernetes-version: "v1.26" runner: "ubuntu-22.04" # verify test on latest k8s version - test: "verify" provider: "gcp" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" - test: "verify" provider: "azure" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" - test: "verify" provider: "aws" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" # recover test on latest k8s version - test: "recover" provider: "gcp" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" - test: "recover" provider: "azure" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" - test: "recover" provider: "aws" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" # lb test on latest k8s version - test: "lb" provider: "gcp" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" - test: "lb" provider: "azure" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" - test: "lb" provider: "aws" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" - # autoscaling test on latest k8s version, not supported on AWS + # autoscaling test on latest k8s version - test: "autoscaling" provider: "gcp" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" - test: "autoscaling" provider: "azure" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" - test: "autoscaling" provider: "aws" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" # perf-bench test on latest k8s version, not supported on AWS - test: "perf-bench" provider: "gcp" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" - test: "perf-bench" provider: "azure" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" runner: "ubuntu-22.04" # @@ -155,11 +156,11 @@ jobs: # - test: "verify" provider: "azure" - kubernetes-version: "v1.26" + kubernetes-version: "v1.28" runner: "macos-12" - test: "recover" provider: "gcp" - kubernetes-version: "v1.26" + kubernetes-version: "v1.28" runner: "macos-12" runs-on: ${{ matrix.runner }} permissions: diff --git a/.github/workflows/e2e-test-weekly.yml b/.github/workflows/e2e-test-weekly.yml index e6d04912d8..d1219f75d0 100644 --- a/.github/workflows/e2e-test-weekly.yml +++ b/.github/workflows/e2e-test-weekly.yml @@ -54,104 +54,108 @@ jobs: - test: "sonobuoy full" refStream: "ref/main/stream/debug/?" provider: "gcp" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" - test: "sonobuoy full" refStream: "ref/main/stream/debug/?" provider: "azure" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" - test: "sonobuoy full" refStream: "ref/main/stream/debug/?" provider: "aws" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" - test: "sonobuoy full" refStream: "ref/main/stream/debug/?" provider: "gcp" - kubernetes-version: "v1.26" + kubernetes-version: "v1.27" - test: "sonobuoy full" refStream: "ref/main/stream/debug/?" provider: "azure" - kubernetes-version: "v1.26" + kubernetes-version: "v1.27" - test: "sonobuoy full" refStream: "ref/main/stream/debug/?" provider: "aws" - kubernetes-version: "v1.26" + kubernetes-version: "v1.27" - test: "sonobuoy full" refStream: "ref/main/stream/debug/?" provider: "gcp" - kubernetes-version: "v1.25" + kubernetes-version: "v1.26" - test: "sonobuoy full" refStream: "ref/main/stream/debug/?" provider: "azure" - kubernetes-version: "v1.25" + kubernetes-version: "v1.26" - test: "sonobuoy full" refStream: "ref/main/stream/debug/?" provider: "aws" - kubernetes-version: "v1.25" + kubernetes-version: "v1.26" # verify test on latest k8s version - test: "verify" refStream: "ref/main/stream/debug/?" provider: "gcp" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" - test: "verify" refStream: "ref/main/stream/debug/?" provider: "azure" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" azureSNPEnforcementPolicy: "equal" # This run checks for unknown ID Key disgests. - test: "verify" provider: "aws" refStream: "ref/main/stream/debug/?" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" # recover test on latest k8s version - test: "recover" refStream: "ref/main/stream/debug/?" provider: "gcp" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" - test: "recover" refStream: "ref/main/stream/debug/?" provider: "azure" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" - test: "recover" refStream: "ref/main/stream/debug/?" provider: "aws" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" # lb test on latest k8s version - test: "lb" refStream: "ref/main/stream/debug/?" provider: "gcp" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" - test: "lb" refStream: "ref/main/stream/debug/?" provider: "azure" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" - test: "lb" refStream: "ref/main/stream/debug/?" provider: "aws" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" - # autoscaling test on latest k8s version, not supported on AWS + # autoscaling test on latest k8s version - test: "autoscaling" refStream: "ref/main/stream/debug/?" provider: "gcp" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" - test: "autoscaling" refStream: "ref/main/stream/debug/?" provider: "azure" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" + - test: "autoscaling" + refStream: "ref/main/stream/debug/?" + provider: "aws" + kubernetes-version: "v1.28" # perf-bench test on latest k8s version, not supported on AWS - test: "perf-bench" refStream: "ref/main/stream/debug/?" provider: "gcp" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" - test: "perf-bench" refStream: "ref/main/stream/debug/?" provider: "azure" - kubernetes-version: "v1.27" + kubernetes-version: "v1.28" # # Tests on release-stable refStream @@ -161,15 +165,15 @@ jobs: - test: "verify" refStream: "ref/release/stream/stable/?" provider: "gcp" - kubernetes-version: "v1.26" + kubernetes-version: "v1.27" - test: "verify" refStream: "ref/release/stream/stable/?" provider: "azure" - kubernetes-version: "v1.26" + kubernetes-version: "v1.27" - test: "verify" refStream: "ref/release/stream/stable/?" provider: "aws" - kubernetes-version: "v1.26" + kubernetes-version: "v1.27" runs-on: ubuntu-22.04 permissions: id-token: write diff --git a/docs/docs/reference/cli.md b/docs/docs/reference/cli.md index d1b07a88ba..56a3344b3f 100644 --- a/docs/docs/reference/cli.md +++ b/docs/docs/reference/cli.md @@ -79,7 +79,7 @@ constellation config generate {aws|azure|gcp|openstack|qemu|stackit} [flags] ``` -a, --attestation string attestation variant to use {aws-sev-snp|aws-nitro-tpm|azure-sev-snp|azure-trustedlaunch|gcp-sev-es|qemu-vtpm}. If not specified, the default for the cloud provider is used -h, --help help for generate - -k, --kubernetes string Kubernetes version to use in format MAJOR.MINOR (default "v1.26") + -k, --kubernetes string Kubernetes version to use in format MAJOR.MINOR (default "v1.27") ``` ### Options inherited from parent commands diff --git a/internal/config/validation.go b/internal/config/validation.go index d36dac5e5c..3f82e81e74 100644 --- a/internal/config/validation.go +++ b/internal/config/validation.go @@ -642,12 +642,12 @@ func (c *Config) validateK8sVersion(fl validator.FieldLevel) bool { // supported patch version as PATCH. func K8sVersionFromMajorMinor(version string) string { switch version { - case semver.MajorMinor(string(versions.V1_25)): - return string(versions.V1_25) case semver.MajorMinor(string(versions.V1_26)): return string(versions.V1_26) case semver.MajorMinor(string(versions.V1_27)): return string(versions.V1_27) + case semver.MajorMinor(string(versions.V1_28)): + return string(versions.V1_28) default: return "" } diff --git a/internal/versions/versions.go b/internal/versions/versions.go index 368fe945b8..786b53b39f 100644 --- a/internal/versions/versions.go +++ b/internal/versions/versions.go @@ -119,14 +119,14 @@ const ( // currently supported versions. //nolint:revive - V1_25 ValidK8sVersion = "v1.25.12" // renovate:kubernetes-release - //nolint:revive V1_26 ValidK8sVersion = "v1.26.7" // renovate:kubernetes-release //nolint:revive V1_27 ValidK8sVersion = "v1.27.4" // renovate:kubernetes-release + //nolint:revive + V1_28 ValidK8sVersion = "v1.28.0" // renovate:kubernetes-release // Default k8s version deployed by Constellation. - Default ValidK8sVersion = V1_26 + Default ValidK8sVersion = V1_27 ) // Regenerate the hashes by running go generate. @@ -135,144 +135,144 @@ const ( // VersionConfigs holds download URLs for all required kubernetes components for every supported version. var VersionConfigs = map[ValidK8sVersion]KubernetesVersion{ - V1_25: { - ClusterVersion: "v1.25.12", // renovate:kubernetes-release + V1_26: { + ClusterVersion: "v1.26.7", // renovate:kubernetes-release KubernetesComponents: components.Components{ { - URL: "https://github.com/containernetworking/plugins/releases/download/v1.2.0/cni-plugins-linux-amd64-v1.2.0.tgz", // renovate:cni-plugins-release - Hash: "sha256:f3a841324845ca6bf0d4091b4fc7f97e18a623172158b72fc3fdcdb9d42d2d37", + URL: "https://github.com/containernetworking/plugins/releases/download/v1.3.0/cni-plugins-linux-amd64-v1.3.0.tgz", // renovate:cni-plugins-release + Hash: "sha256:754a71ed60a4bd08726c3af705a7d55ee3df03122b12e389fdba4bea35d7dd7e", InstallPath: constants.CniPluginsDir, Extract: true, }, { - URL: "https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.27.0/crictl-v1.27.0-linux-amd64.tar.gz", // renovate:crictl-release - Hash: "sha256:d335d6e16c309fbc3ff1a29a7e49bb253b5c9b4b030990bf7c6b48687f985cee", + URL: "https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.28.0/crictl-v1.28.0-linux-amd64.tar.gz", // renovate:crictl-release + Hash: "sha256:8dc78774f7cbeaf787994d386eec663f0a3cf24de1ea4893598096cb39ef2508", InstallPath: constants.BinDir, Extract: true, }, { - URL: "https://storage.googleapis.com/kubernetes-release/release/v1.25.12/bin/linux/amd64/kubelet", // renovate:kubernetes-release - Hash: "sha256:7aa7d0b4512e6d79ada2017c054b07aaf30d4dc0d740449364a5e2c26e2c1842", + URL: "https://storage.googleapis.com/kubernetes-release/release/v1.26.7/bin/linux/amd64/kubelet", // renovate:kubernetes-release + Hash: "sha256:2926ea2cd7fcd644d24a258bdf21e1a8cfd95412b1079914ca46466dae1d74f2", InstallPath: constants.KubeletPath, Extract: false, }, { - URL: "https://storage.googleapis.com/kubernetes-release/release/v1.25.12/bin/linux/amd64/kubeadm", // renovate:kubernetes-release - Hash: "sha256:293252f0a1727bfad4ef4fe99d704a56ecea45e39b0ea77f629c55da39e377da", + URL: "https://storage.googleapis.com/kubernetes-release/release/v1.26.7/bin/linux/amd64/kubeadm", // renovate:kubernetes-release + Hash: "sha256:812e6d0e94a3fc77d3e9d09dbe709190b77408936cc4e960d916e8401be11090", InstallPath: constants.KubeadmPath, Extract: false, }, { - URL: "https://storage.googleapis.com/kubernetes-release/release/v1.25.12/bin/linux/amd64/kubectl", // renovate:kubernetes-release - Hash: "sha256:75842752ea07cb8ee2210df40faa7c61e1317e76d5c7968e380cae83447d4a0f", + URL: "https://storage.googleapis.com/kubernetes-release/release/v1.26.7/bin/linux/amd64/kubectl", // renovate:kubernetes-release + Hash: "sha256:d9dc7741e5f279c28ef32fbbe1daa8ebc36622391c33470efed5eb8426959971", InstallPath: constants.KubectlPath, Extract: false, }, }, // CloudControllerManagerImageAWS is the CCM image used on AWS. - CloudControllerManagerImageAWS: "registry.k8s.io/provider-aws/cloud-controller-manager:v1.25.3@sha256:47eb1c1e6a3bd6d0fb44ac4992885b6218f1448ea339de778d8b703df463c06f", // renovate:container + CloudControllerManagerImageAWS: "registry.k8s.io/provider-aws/cloud-controller-manager:v1.26.6@sha256:33445ab57f48938fe989ffe311dacee0044b82f2bd23cb7f7b563275926f0ce9", // renovate:container // CloudControllerManagerImageAzure is the CCM image used on Azure. // Check for newer versions at https://github.com/kubernetes-sigs/cloud-provider-azure/blob/master/README.md. - CloudControllerManagerImageAzure: "mcr.microsoft.com/oss/kubernetes/azure-cloud-controller-manager:v1.25.17@sha256:db168815dd1801bbde18e585875c155bece8dd2077514abb91de6ec82bc5e97b", // renovate:container + CloudControllerManagerImageAzure: "mcr.microsoft.com/oss/kubernetes/azure-cloud-controller-manager:v1.26.13@sha256:d44cd3490d3ab7a4bf11faa4c8b918864be041f8b183dcedc75caf6fb9d1fdf1", // renovate:container // CloudNodeManagerImageAzure is the cloud-node-manager image used on Azure. // Check for newer versions at https://github.com/kubernetes-sigs/cloud-provider-azure/blob/master/README.md. - CloudNodeManagerImageAzure: "mcr.microsoft.com/oss/kubernetes/azure-cloud-node-manager:v1.25.17@sha256:89f7bcf23a7674714103800306b2efd18f8b9f42477c6ac7687a99692adb236d", // renovate:container + CloudNodeManagerImageAzure: "mcr.microsoft.com/oss/kubernetes/azure-cloud-node-manager:v1.26.13@sha256:ba8c73fc49495ed69d4242eee3068609ff2752d4c3f51de740385b05a4c303f1", // renovate:container // CloudControllerManagerImageGCP is the CCM image used on GCP. // TODO(3u13r): use newer "cloud-provider-gcp" from https://github.com/kubernetes/cloud-provider-gcp when newer releases are available. - CloudControllerManagerImageGCP: "ghcr.io/edgelesssys/cloud-provider-gcp:v25.2.0@sha256:86fa9d31ed0b3d0d8806f13d6e7debd3471028b2cb7cca3a876d8a31612a7ba5", // renovate:container + CloudControllerManagerImageGCP: "ghcr.io/edgelesssys/cloud-provider-gcp:v26.0.1@sha256:db2b15a20ad690784a6015bfad55c4dff15826be8cf9f6ac77d70abd11b1f70c", // renovate:container // CloudControllerManagerImageOpenStack is the CCM image used on OpenStack. - CloudControllerManagerImageOpenStack: "docker.io/k8scloudprovider/openstack-cloud-controller-manager:v1.25.5", // renovate:container + CloudControllerManagerImageOpenStack: "docker.io/k8scloudprovider/openstack-cloud-controller-manager:v1.26.3@sha256:65f0945ea9fc17e64812befbf3fc52b06c13df1c3407cb8022e8110a2fe08a4a", // renovate:container // External service image. Depends on k8s version. // Check for new versions at https://github.com/kubernetes/autoscaler/releases. - ClusterAutoscalerImage: "registry.k8s.io/autoscaling/cluster-autoscaler:v1.25.3@sha256:a8c8f3c5e5fc532c37ab9cf5388d0061ecbf78090b91c3d059b09fa3ffd4ac53", // renovate:container + ClusterAutoscalerImage: "registry.k8s.io/autoscaling/cluster-autoscaler:v1.26.4@sha256:f771284ff54ecfedf40c7af70c5450600786c98989aeb69cdcf7e7bb7ac5a20d", // renovate:container }, - V1_26: { - ClusterVersion: "v1.26.7", // renovate:kubernetes-release + V1_27: { + ClusterVersion: "v1.27.4", // renovate:kubernetes-release KubernetesComponents: components.Components{ { - URL: "https://github.com/containernetworking/plugins/releases/download/v1.2.0/cni-plugins-linux-amd64-v1.2.0.tgz", // renovate:cni-plugins-release - Hash: "sha256:f3a841324845ca6bf0d4091b4fc7f97e18a623172158b72fc3fdcdb9d42d2d37", + URL: "https://github.com/containernetworking/plugins/releases/download/v1.3.0/cni-plugins-linux-amd64-v1.3.0.tgz", // renovate:cni-plugins-release + Hash: "sha256:754a71ed60a4bd08726c3af705a7d55ee3df03122b12e389fdba4bea35d7dd7e", InstallPath: constants.CniPluginsDir, Extract: true, }, { - URL: "https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.27.0/crictl-v1.27.0-linux-amd64.tar.gz", // renovate:crictl-release - Hash: "sha256:d335d6e16c309fbc3ff1a29a7e49bb253b5c9b4b030990bf7c6b48687f985cee", + URL: "https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.28.0/crictl-v1.28.0-linux-amd64.tar.gz", // renovate:crictl-release + Hash: "sha256:8dc78774f7cbeaf787994d386eec663f0a3cf24de1ea4893598096cb39ef2508", InstallPath: constants.BinDir, Extract: true, }, { - URL: "https://storage.googleapis.com/kubernetes-release/release/v1.26.7/bin/linux/amd64/kubelet", // renovate:kubernetes-release - Hash: "sha256:2926ea2cd7fcd644d24a258bdf21e1a8cfd95412b1079914ca46466dae1d74f2", + URL: "https://storage.googleapis.com/kubernetes-release/release/v1.27.4/bin/linux/amd64/kubelet", // renovate:kubernetes-release + Hash: "sha256:385f65878dc8b48df0f2bd369535ff273390518b5ac2cc1a1684d65619324704", InstallPath: constants.KubeletPath, Extract: false, }, { - URL: "https://storage.googleapis.com/kubernetes-release/release/v1.26.7/bin/linux/amd64/kubeadm", // renovate:kubernetes-release - Hash: "sha256:812e6d0e94a3fc77d3e9d09dbe709190b77408936cc4e960d916e8401be11090", + URL: "https://storage.googleapis.com/kubernetes-release/release/v1.27.4/bin/linux/amd64/kubeadm", // renovate:kubernetes-release + Hash: "sha256:7be21d6fb3707fbbe8f0db0403db6234c8af773b941f931bf8248759ee988bcd", InstallPath: constants.KubeadmPath, Extract: false, }, { - URL: "https://storage.googleapis.com/kubernetes-release/release/v1.26.7/bin/linux/amd64/kubectl", // renovate:kubernetes-release - Hash: "sha256:d9dc7741e5f279c28ef32fbbe1daa8ebc36622391c33470efed5eb8426959971", + URL: "https://storage.googleapis.com/kubernetes-release/release/v1.27.4/bin/linux/amd64/kubectl", // renovate:kubernetes-release + Hash: "sha256:4685bfcf732260f72fce58379e812e091557ef1dfc1bc8084226c7891dd6028f", InstallPath: constants.KubectlPath, Extract: false, }, }, // CloudControllerManagerImageAWS is the CCM image used on AWS. - CloudControllerManagerImageAWS: "registry.k8s.io/provider-aws/cloud-controller-manager:v1.26.6@sha256:33445ab57f48938fe989ffe311dacee0044b82f2bd23cb7f7b563275926f0ce9", // renovate:container + CloudControllerManagerImageAWS: "registry.k8s.io/provider-aws/cloud-controller-manager:v1.27.2@sha256:42be09a2b13b4e69b42905639d6b005ebe1ca490aabefad427256abf2cc892c7", // renovate:container // CloudControllerManagerImageAzure is the CCM image used on Azure. // Check for newer versions at https://github.com/kubernetes-sigs/cloud-provider-azure/blob/master/README.md. - CloudControllerManagerImageAzure: "mcr.microsoft.com/oss/kubernetes/azure-cloud-controller-manager:v1.26.13@sha256:d44cd3490d3ab7a4bf11faa4c8b918864be041f8b183dcedc75caf6fb9d1fdf1", // renovate:container + CloudControllerManagerImageAzure: "mcr.microsoft.com/oss/kubernetes/azure-cloud-controller-manager:v1.27.7@sha256:e27c4ddc8b9efdac8509a2f681eaa98152309f6b2f08d14230b11c60a9b8b87f", // renovate:container // CloudNodeManagerImageAzure is the cloud-node-manager image used on Azure. // Check for newer versions at https://github.com/kubernetes-sigs/cloud-provider-azure/blob/master/README.md. - CloudNodeManagerImageAzure: "mcr.microsoft.com/oss/kubernetes/azure-cloud-node-manager:v1.26.13@sha256:ba8c73fc49495ed69d4242eee3068609ff2752d4c3f51de740385b05a4c303f1", // renovate:container + CloudNodeManagerImageAzure: "mcr.microsoft.com/oss/kubernetes/azure-cloud-node-manager:v1.27.7@sha256:998453989b03ac6c24e53aabbf271fa181e054b3a061fe6caa565186ae79bd0c", // renovate:container // CloudControllerManagerImageGCP is the CCM image used on GCP. // TODO(3u13r): use newer "cloud-provider-gcp" from https://github.com/kubernetes/cloud-provider-gcp when newer releases are available. CloudControllerManagerImageGCP: "ghcr.io/edgelesssys/cloud-provider-gcp:v26.0.1@sha256:db2b15a20ad690784a6015bfad55c4dff15826be8cf9f6ac77d70abd11b1f70c", // renovate:container // CloudControllerManagerImageOpenStack is the CCM image used on OpenStack. - CloudControllerManagerImageOpenStack: "docker.io/k8scloudprovider/openstack-cloud-controller-manager:v1.26.2", // renovate:container + CloudControllerManagerImageOpenStack: "docker.io/k8scloudprovider/openstack-cloud-controller-manager:v1.26.3@sha256:65f0945ea9fc17e64812befbf3fc52b06c13df1c3407cb8022e8110a2fe08a4a", // renovate:container // External service image. Depends on k8s version. // Check for new versions at https://github.com/kubernetes/autoscaler/releases. - ClusterAutoscalerImage: "registry.k8s.io/autoscaling/cluster-autoscaler:v1.26.4@sha256:f771284ff54ecfedf40c7af70c5450600786c98989aeb69cdcf7e7bb7ac5a20d", // renovate:container + ClusterAutoscalerImage: "registry.k8s.io/autoscaling/cluster-autoscaler:v1.27.3@sha256:0e1ab1bfeb1beaa82f59356ef36364503df22aeb8f8d0d7383bac449b4e808fb", // renovate:container }, - V1_27: { - ClusterVersion: "v1.27.4", // renovate:kubernetes-release + V1_28: { + ClusterVersion: "v1.28.0", // renovate:kubernetes-release KubernetesComponents: components.Components{ { - URL: "https://github.com/containernetworking/plugins/releases/download/v1.2.0/cni-plugins-linux-amd64-v1.2.0.tgz", // renovate:cni-plugins-release - Hash: "sha256:f3a841324845ca6bf0d4091b4fc7f97e18a623172158b72fc3fdcdb9d42d2d37", + URL: "https://github.com/containernetworking/plugins/releases/download/v1.3.0/cni-plugins-linux-amd64-v1.3.0.tgz", // renovate:cni-plugins-release + Hash: "sha256:754a71ed60a4bd08726c3af705a7d55ee3df03122b12e389fdba4bea35d7dd7e", InstallPath: constants.CniPluginsDir, Extract: true, }, { - URL: "https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.27.0/crictl-v1.27.0-linux-amd64.tar.gz", // renovate:crictl-release - Hash: "sha256:d335d6e16c309fbc3ff1a29a7e49bb253b5c9b4b030990bf7c6b48687f985cee", + URL: "https://github.com/kubernetes-sigs/cri-tools/releases/download/v1.28.0/crictl-v1.28.0-linux-amd64.tar.gz", // renovate:crictl-release + Hash: "sha256:8dc78774f7cbeaf787994d386eec663f0a3cf24de1ea4893598096cb39ef2508", InstallPath: constants.BinDir, Extract: true, }, { - URL: "https://storage.googleapis.com/kubernetes-release/release/v1.27.4/bin/linux/amd64/kubelet", // renovate:kubernetes-release - Hash: "sha256:385f65878dc8b48df0f2bd369535ff273390518b5ac2cc1a1684d65619324704", + URL: "https://storage.googleapis.com/kubernetes-release/release/v1.28.0/bin/linux/amd64/kubelet", // renovate:kubernetes-release + Hash: "sha256:bfb6b977100963f2879a33e5fbaa59a5276ba829a957a6819c936e9c1465f981", InstallPath: constants.KubeletPath, Extract: false, }, { - URL: "https://storage.googleapis.com/kubernetes-release/release/v1.27.4/bin/linux/amd64/kubeadm", // renovate:kubernetes-release - Hash: "sha256:7be21d6fb3707fbbe8f0db0403db6234c8af773b941f931bf8248759ee988bcd", + URL: "https://storage.googleapis.com/kubernetes-release/release/v1.28.0/bin/linux/amd64/kubeadm", // renovate:kubernetes-release + Hash: "sha256:12ea68bfef0377ccedc1a7c98a05ea76907decbcf1e1ec858a60a7b9b73211bb", InstallPath: constants.KubeadmPath, Extract: false, }, { - URL: "https://storage.googleapis.com/kubernetes-release/release/v1.27.4/bin/linux/amd64/kubectl", // renovate:kubernetes-release - Hash: "sha256:4685bfcf732260f72fce58379e812e091557ef1dfc1bc8084226c7891dd6028f", + URL: "https://storage.googleapis.com/kubernetes-release/release/v1.28.0/bin/linux/amd64/kubectl", // renovate:kubernetes-release + Hash: "sha256:4717660fd1466ec72d59000bb1d9f5cdc91fac31d491043ca62b34398e0799ce", InstallPath: constants.KubectlPath, Extract: false, }, }, // CloudControllerManagerImageAWS is the CCM image used on AWS. - CloudControllerManagerImageAWS: "registry.k8s.io/provider-aws/cloud-controller-manager:v1.27.2@sha256:42be09a2b13b4e69b42905639d6b005ebe1ca490aabefad427256abf2cc892c7", // renovate:container + CloudControllerManagerImageAWS: "registry.k8s.io/provider-aws/cloud-controller-manager:v1.28.0@sha256:47eb1c1e6a3bd6d0fb44ac4992885b6218f1448ea339de778d8b703df463c06f", // renovate:container // CloudControllerManagerImageAzure is the CCM image used on Azure. // Check for newer versions at https://github.com/kubernetes-sigs/cloud-provider-azure/blob/master/README.md. CloudControllerManagerImageAzure: "mcr.microsoft.com/oss/kubernetes/azure-cloud-controller-manager:v1.27.7@sha256:e27c4ddc8b9efdac8509a2f681eaa98152309f6b2f08d14230b11c60a9b8b87f", // renovate:container @@ -283,7 +283,7 @@ var VersionConfigs = map[ValidK8sVersion]KubernetesVersion{ // TODO(3u13r): use newer "cloud-provider-gcp" from https://github.com/kubernetes/cloud-provider-gcp when newer releases are available. CloudControllerManagerImageGCP: "ghcr.io/edgelesssys/cloud-provider-gcp:v26.0.1@sha256:db2b15a20ad690784a6015bfad55c4dff15826be8cf9f6ac77d70abd11b1f70c", // renovate:container // CloudControllerManagerImageOpenStack is the CCM image used on OpenStack. - CloudControllerManagerImageOpenStack: "docker.io/k8scloudprovider/openstack-cloud-controller-manager:v1.26.2", // renovate:container + CloudControllerManagerImageOpenStack: "docker.io/k8scloudprovider/openstack-cloud-controller-manager:v1.26.3@sha256:65f0945ea9fc17e64812befbf3fc52b06c13df1c3407cb8022e8110a2fe08a4a", // renovate:container // External service image. Depends on k8s version. // Check for new versions at https://github.com/kubernetes/autoscaler/releases. ClusterAutoscalerImage: "registry.k8s.io/autoscaling/cluster-autoscaler:v1.27.3@sha256:0e1ab1bfeb1beaa82f59356ef36364503df22aeb8f8d0d7383bac449b4e808fb", // renovate:container