This repository has been archived by the owner on Apr 7, 2020. It is now read-only.
v1.1.0
[gardener-extensions]
Action Required
- [USER] Calico network configuration has been extended with parameters suitable for bare metal environments (allows setting pool types, modes and additional backend types). Old fields and defaults are kept for backwards-compatibility but will be removed in future Gardener release. (#460, @majst01)
Most notable changes
- [USER] If you wish to configure the MTU value of calico then you can set the
.spec.vethMTUfield in thecalico.networking.extensions.gardener.cloud/v1alpha1.NetworkConfig. Please make sure that all the MTUs in your environment, failure to do so will result in performance penalties and packet loss. (#502, @jiangytcn) - [USER] The AWS infrastructure controller does now remove all ingress and egress rules from the default VPC security group in case it is managed by Gardener. It doesn't touch the default VPC security group in case a shoot uses an already existing VPC. (#478, @rfranzke)
- [USER]
⚠️ In order to prevent undesired rolling updates of machine resources the hash value computation has changed. A rolling update of worker nodes is now only happening if one of the following properties is changed: Kubernetes major/minor version, machine image name or version, machine type, volume type or size, worker pool provider configuration. Deploying this change will, one last time, roll out all nodes of all clusters. (#474, @rfranzke) - [USER] The minimum number of ports allocated to a VM in the CloudNAT resource can be defined in the
gcp.provider.extensions.gardener.cloud/v1alpha1.InfrastructureConfig.networks.cloudNAT.minPortsPerVM(#450, @vpnachev) - [OPERATOR] All extension controllers are now able to work with all versions of Gardener's
core.gardener.cloudAPI group. (#505, @rfranzke) - [OPERATOR] The
gardener-extensionsnow offers a validating webhook which checks shoot resources of typeawsin the recently introducedcore.gardener.cloudgroup. Operators should register this webhook in the Garden cluster to further prevent invalid modifications onawsshoots. (#438, @timuthy)
Improvements
- [USER] An issue where calico typha was not working with SuSE nodes has been fixed. Now SuSE based cluster can enable calico typha again and benefit from it. (#500, @vpnachev)
- [USER] Issue CVE-2019-11255 is fixed, which only affected shoot clusters in k8s version 1.13. (#448, @jia-jerry)
- [USER] provider-alicloud extension now automatically shares customized images to Shoot's alicloud account during infrastructure reconcile. (#427, @EmoinLanyu)
- [OPERATOR] Added support for OpenStack CCM v1.17.0 (#503, @afritzler)
- [OPERATOR] SuSE nodes are now using mtu of 1460 on all infrastructures. (#500, @vpnachev)
- [OPERATOR] VPA for provider extension controllers is now configurable via ControllerRegistration. (#488, @danielfoehrKn)
- [OPERATOR] The AWS infrastructure provider now takes care of deleting stale NLBs. (#485, @zanetworker)
- [OPERATOR] Customized image sharing is now optional for extension-provider-alicloud and no default secret is created in extension's namespace unless explicitly configured. (#483, @EmoinLanyu)
- [OPERATOR]
sigs.k8s.io/controller-runtimeis updated tov0.2.2. (#481, @ialidzhikov) - [OPERATOR] Extension-shoot-cert-service can now use imagevector overwrite. A bug that causes deployment resources configuration of extension-shoot-cert-service to not work has been fixed. (#477, @EmoinLanyu)
- [OPERATOR] All
Infrastructureextension controllers do now copy the Terraformer state into theInfrastructure's.status.statefield. (#476, @vlvasilev) - [OPERATOR] The release tags from now are prefixed with
v. (#473, @ialidzhikov) - [OPERATOR] An issue preventing
extension-shoot-dns-serviceto be properly installed is now fixed. (#469, @ialidzhikov) - [OPERATOR] Add bucket lifecycle rule on AWS S3 and OSS bucket to cleanup incomplete multipart uploads after expiration period. (#464, @swapnilgm)
- [OPERATOR] Fix the
backupEntrydeletion error in case of more than 1000 backups accumulated for provider-aws. (#459, @swapnilgm) - [OPERATOR] An issue preventing
calico-typha-vertical-autoscalerto patch (scale)calico-typha-deployis now fixed. (#456, @ialidzhikov) - [OPERATOR] An issue with dropped packets by CloudNAT for GCP clusters has been fixed. (#450, @vpnachev)
[cert-management]
Improvements
- [OPERATOR] improved behaviour if same certificate is requested multiple times simultaneously (gardener/cert-management#12, @MartinWeindel)
- [OPERATOR] The release tags from now are prefixed with
v. (gardener/cert-management#10, @MartinWeindel) - [OPERATOR] Existing certificate secrets with type
kubernetes.io/tlscan be updated (gardener/cert-management#9, @MartinWeindel)- to simplify migration from cert-broker/cert-manager.
- [OPERATOR] fix for "Panic if ingress spec.tls.hosts not specified" (issue #6) (gardener/cert-management#7, @MartinWeindel)
- [OPERATOR] fix for "Panic if ingress spec.tls.hosts not specified" (issue #6) (gardener/cert-management@80a07c0)
[external-dns-management]
Improvements
- [OPERATOR] The release tags from now are prefixed with
v. (gardener/external-dns-management#47, @ialidzhikov) - [OPERATOR] aws-route53: avoid temporary deletion of DNS records after restart with unavailable or throttled route53 API (gardener/external-dns-management#50, @MartinWeindel)
[machine-controller-manager]
Improvements
- [OPERATOR] AliCloud: When nodes are rolling updated, pods with Persistent volume attached can now be evicted correctly/serially before the node is drained. (gardener/machine-controller-manager#366, @jia-jerry)
- [OPERATOR] Bugfix: Remove dependency on MachineClass while deleting MachineDeployment/MachineSets (gardener/machine-controller-manager#365, @prashanth26)
- [OPERATOR] Bugfix: Allow deletion of machine without status.currentStatus.phase (gardener/machine-controller-manager#364, @prashanth26)
- [OPERATOR] The release tags from now are prefixed with
v. (gardener/machine-controller-manager#362, @ialidzhikov) - [OPERATOR] OpenStack: Ensure VMs are deleted after unsuccessful create operation (gardener/machine-controller-manager#356, @kayrus)
- [DEVELOPER] The golang version has been updated to 1.13. Please upgrade your local go installation to 1.13. (gardener/machine-controller-manager#360, @ialidzhikov)
[terraformer]
Improvements
- [OPERATOR] added NSX-T Terraform provider for VMware vSphere (gardener/terraformer#32, @MartinWeindel)
Docker Images
gardener-extension-hyper: eu.gcr.io/gardener-project/gardener/gardener-extension-hyper:v1.1.0