·
61 commits
to main
since this release
Release Notes v1.108
Yake release notes and upgrade guide
Related upstream release notes / changelogs
Update provider-gcp to 1.40.0
[gardener/gardener-extension-provider-gcp]
⚠️ Breaking Changes
[USER]Remove redundant firewall rule*-allow-external-accessthat allowed traffic from all 0 by @kon-angelo [#876]
🏃 Others
[OPERATOR]Check priority of firewall rules in integration tests by @kon-angelo [#877][OPERATOR]Added validation to prevent IPv6-only/dual-stack clusters as they are not supported, yet. by @ScheererJ [#878][OPERATOR]Update gardener/gardener to v1.105.0 by @hebelsan [#869][OPERATOR]Updating CSI driver provisioner ClusterRole rules by @hebelsan [#867][OPERATOR]Prevent unnecessary CNI side car containers for SNAT to upstream DNS servers by @ScheererJ [#868]
[gardener/machine-controller-manager]
✨ New Features
[DEVELOPER]MCM replaces the magic string<<MACHINE_NAME>>in user data with the name of the machine when it is bootstrapped. by @oliver-goetz [gardener/machine-controller-manager#919][DEVELOPER]MCM adds the name of the machine tonode.gardener.cloud/machine-namelabel of the corresponding node. by @oliver-goetz [gardener/machine-controller-manager#919]
🐛 Bug Fixes
[DEVELOPER]Fixed bug that removed the shoot-- prefix from control cluster namespace for integration tests using the gardener local setup case by @thiyyakat [gardener/machine-controller-manager#935][OPERATOR]Fixed a bug where failure of machine initialization caused label updates to not happen. by @thiyyakat [gardener/machine-controller-manager#940][OPERATOR]Fixed a bug where theUnitialisederror code was blocking machine deletion by @rishabh-11 [gardener/machine-controller-manager#928]
🏃 Others
[DEVELOPER]The following dependencies are updated:k8s.io/*:v0.29.3->v0.31.0by @ary1992 [gardener/machine-controller-manager#938]
[OPERATOR]golangci-lint will now be used as the linter instead of the older golint by @aaronfern [gardener/machine-controller-manager#929][OPERATOR]Drain timeout is now correctly honored for Pod eviction during Machine Drain by @sssash18 [gardener/machine-controller-manager#920][OPERATOR]Golang version used is now upgraded to1.22.5by @aaronfern [gardener/machine-controller-manager#929][OPERATOR]getVMStatusalways redirects toInitiateDrain. It also populates the node label on the machine object by checkingnode.gardener.cloud/machine-namelabel on the nodes. by @thiyyakat [gardener/machine-controller-manager#940]
📖 Documentation
[OPERATOR]Broken API doc links are now fixed by @rishabh-11 [gardener/machine-controller-manager#927]
[gardener/machine-controller-manager-provider-gcp]
🏃 Others
[OPERATOR]golangci-lint will now be used as the linter instead of the older golint by @aaronfern [gardener/machine-controller-manager-provider-gcp#127][USER]Golang version updated to1.22.5by @rishabh-11 [gardener/machine-controller-manager-provider-gcp#126][DEVELOPER]MCM can now retrieve the project ID from a "projectID" data key, allowing support for credential configurations that do not directly contain the project ID. One such case is a workload identity credential configuration. by @dimityrmirchev [gardener/machine-controller-manager-provider-gcp#130]
Helm Charts
- admission-gcp-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-gcp-application:v1.40.0 - admission-gcp-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-gcp-runtime:v1.40.0 - provider-gcp:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-gcp:v1.40.0
Docker Images
- gardener-extension-admission-gcp:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-gcp:v1.40.0 - gardener-extension-provider-gcp:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-gcp:v1.40.0
Update provider-aws to 1.58.3
[gardener/gardener-extension-provider-aws]
🏃 Others
[OPERATOR]Ignore alreadyDetached errors when detaching instead of erroring out by @kon-angelo [#1118]
Helm Charts
- admission-aws-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-application:v1.58.3 - admission-aws-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-runtime:v1.58.3 - provider-aws:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-aws:v1.58.3
Docker Images
- gardener-extension-admission-aws:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.58.3 - gardener-extension-provider-aws:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.58.3
Update gardener-controlplane to 1.107.1
[gardener/gardener]
🐛 Bug Fixes
[OPERATOR]Fixed an issue where the dashboard's service account lacked permission to createleasesin thegardennamespace whenspec.virtualCluster.gardener.gardenerDashboard.gitHubwas configured in theGardenresource. by @petersutter [#10835]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.107.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.107.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.107.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.107.1
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.107.1 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.107.1 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.107.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.107.1 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.107.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.107.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.107.1 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.107.1
Update gardener-controlplane to 1.107.1
[gardener/gardener]
🐛 Bug Fixes
[OPERATOR]Fixed an issue where the dashboard's service account lacked permission to createleasesin thegardennamespace whenspec.virtualCluster.gardener.gardenerDashboard.gitHubwas configured in theGardenresource. by @petersutter [#10835]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.107.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.107.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.107.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.107.1
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.107.1 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.107.1 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.107.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.107.1 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.107.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.107.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.107.1 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.107.1
Update gardenlet to 1.107.1
[gardener/gardener]
🐛 Bug Fixes
[OPERATOR]Fixed an issue where the dashboard's service account lacked permission to createleasesin thegardennamespace whenspec.virtualCluster.gardener.gardenerDashboard.gitHubwas configured in theGardenresource. by @petersutter [#10835]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.107.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.107.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.107.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.107.1
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.107.1 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.107.1 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.107.1 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.107.1 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.107.1 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.107.1 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.107.1 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.107.1
Update shoot-networking-filter to 0.21.0
[gardener/egress-filter-refresher]
✨ New Features
[USER]gosecwas introduced for Static Application Security Testing (SAST). by @ScheererJ [gardener/egress-filter-refresher#50][OPERATOR]On switching the blocking mode, previously active egress filter rules are removed from the node. by @domdom82 [gardener/egress-filter-refresher#49]
[gardener/gardener-extension-shoot-networking-filter]
✨ New Features
🏃 Others
[OPERATOR]Bumps golang from 1.23.2 to 1.23.3. by @dependabot[bot] [#190][OPERATOR]gosecwas introduced for Static Application Security Testing (SAST). by @ScheererJ [#181][OPERATOR]Bumps github.com/gardener/gardener from 1.106.0 to 1.107.0. by @dependabot[bot] [#189][OPERATOR]Bumps github.com/gardener/gardener from 1.104.0 to 1.105.0. by @dependabot[bot] [#180][OPERATOR]Bumps github.com/gardener/gardener from 1.105.0 to 1.106.0. by @dependabot[bot] [#185]
Helm Charts
- runtime-networking-filter:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/runtime-networking-filter:v0.21.0 - shoot-networking-filter:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/shoot-networking-filter:v0.21.0
Docker Images
- gardener-extension-shoot-networking-filter:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/shoot-networking-filter:v0.21.0 - gardener-runtime-networking-filter:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/runtime-networking-filter:v0.21.0
Update gardener-controlplane to 1.107.2
[gardener/gardener]
🏃 Others
[DEPENDENCY]Thegardener/etcd-druidimage has been updated tov0.23.3. Release Notes by @gardener-ci-robot [#10839]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.107.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.107.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.107.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.107.2
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.107.2 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.107.2 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.107.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.107.2 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.107.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.107.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.107.2 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.107.2
Update gardener-controlplane to 1.107.2
[gardener/gardener]
🏃 Others
[DEPENDENCY]Thegardener/etcd-druidimage has been updated tov0.23.3. Release Notes by @gardener-ci-robot [#10839]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.107.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.107.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.107.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.107.2
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.107.2 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.107.2 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.107.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.107.2 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.107.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.107.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.107.2 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.107.2
Update gardenlet to 1.107.2
[gardener/gardener]
🏃 Others
[DEPENDENCY]Thegardener/etcd-druidimage has been updated tov0.23.3. Release Notes by @gardener-ci-robot [#10839]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.107.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.107.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.107.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.107.2
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.107.2 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.107.2 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.107.2 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.107.2 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.107.2 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.107.2 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.107.2 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.107.2
Update shoot-flux to 0.10.0
What's Changed
- 🤖 Update module github.com/onsi/gomega to v1.35.0 by @renovate in stackitcloud/gardener-extension-shoot-flux#103
- 🤖 Update module github.com/onsi/ginkgo/v2 to v2.21.0 by @renovate in stackitcloud/gardener-extension-shoot-flux#102
- 🤖: migrate renovate config by @renovate in stackitcloud/gardener-extension-shoot-flux#108
- Add reviewers to renovate by @robinschneider in stackitcloud/gardener-extension-shoot-flux#109
- 🤖 Update module github.com/ironcore-dev/vgopath to v0.1.7 by @renovate in stackitcloud/gardener-extension-shoot-flux#113
- Bump Gardener to
v1.103by @Duciwuci in stackitcloud/gardener-extension-shoot-flux#117
Full Changelog: stackitcloud/gardener-extension-shoot-flux@v0.9.0...v0.10.0
Update provider-gcp to 1.40.1
[gardener/gardener-extension-provider-gcp]
🐛 Bug Fixes
[USER]Fix missing RBAC PV patching permissions for csi-provisioner" by @kon-angelo [#900]
Helm Charts
- admission-gcp-application:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-gcp-application:v1.40.1 - admission-gcp-runtime:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-gcp-runtime:v1.40.1 - provider-gcp:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-gcp:v1.40.1
Docker Images
- gardener-extension-admission-gcp:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-gcp:v1.40.1 - gardener-extension-provider-gcp:
europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-gcp:v1.40.1
Update gardener-controlplane to 1.108.0
[gardener/gardener]
⚠️ Breaking Changes
[USER]Theurlannotation in<shoot-name>.monitoringsecrets in the project namespace is deprecated and will be removed soon. Please use theplutono-urlannotation instead. by @oliver-goetz [#10735][OPERATOR]There is an incompatible change in theGarden(gardens.operator.gardener.cloud) custom resource, which required manual action:- Fields
.spec.virtualCluster.dns.domainsand.spec.runtimeCluster.ingress.domainswere changed from type string to object with a fieldnameand an optional fieldprovider, e.g., inJSONformat, replace"domains": ["domain1.example.com", "domain2.example.com"]with"domains": [{"name": "domain1.example.com"}, {"name": "domain2.example.com"}]. .spec.runtimeCluster.ingress.domainsis required now.spec.virtualCluster.dns.domainsis required now by @MartinWeindel [#10645]
- Fields
[OPERATOR]The optional deployment of cert-management component has been removed. As it was only introduced recently and probably not used, this change should have no impact typically. by @MartinWeindel [#10802]
📰 Noteworthy
[USER]Allow changingshoot.spec.cloudProfilebetweenCloudProfileand its descendantNamespacedCloudProfiles. by @LucaBernstein [#10811]
✨ New Features
[USER]Allow for custom machine images inNamespacedCloudProfiles and add thespec.providerConfigfield. by @LucaBernstein [#10629][USER]The URLs of Shootplutono,prometheusandalertmanagerare now stored as annotations in<shoot-name>.monitoringsecret in the project namespace. by @oliver-goetz [#10735][OPERATOR]Enhance thegardener-operatorto deployDNSRecordsandBackupBucketfor the virtual garden resource.
DNSRecordsare only deployed if at least one provider is specified at.spec.dns.providersin theGardenresource.
ABackupBucketis created if the.spec.virtualCluster.etcd.backupsection is specified. An existing backup bucket on the infrastructure becomes automatically managed this way. by @MartinWeindel [#10645][DEVELOPER]gardener-apiserver: TheExtensionLabelsadmission plugin now also sets labels toWorkloadIdentitys. by @dimityrmirchev [#10786]
🐛 Bug Fixes
[DEVELOPER]gardener-node-agentapplies inline files before applying containerd registries now. by @oliver-goetz [#10831]
🏃 Others
[DEPENDENCY]Theregistry.k8s.io/kube-state-metrics/kube-state-metricsimage has been updated tov2.14.0. by @gardener-ci-robot [#10818][DEPENDENCY]Thequay.io/prometheus/prometheusimage has been updated tov2.55.1. by @gardener-ci-robot [#10804][DEPENDENCY]Thegardener/etcd-druidimage has been updated tov0.24.1. Release Notes by @gardener-ci-robot [#10843][OPERATOR]Fixed an issue that that could occur during control plane migration causing thecore.gardener.cloud/v1beta1.BackupEntryto be reconciled after it was successfully migrated, but before it was restored. by @plkokanov [#10761][OPERATOR]The deployment ofBackupBucketresource in the runtime cluster is skipped if no suitable operator extension is deployed. by @MartinWeindel [#10837][OPERATOR]Following components in gardener logging stack are updated: fluent-operator to v3.2.0, fluent-bit to v3.1.8, gardener/logging to v0.62.0 by @nickytd [#10790][OPERATOR]The following image has been updated:- europe-docker.pkg.dev/gardener-project/releases/gardener/autoscaler/vertical-pod-autoscaler/vpa-recommender: 1.2.1 -> 1.2.1-gardener-build.3 (Release notes vpa-1.2.1-gardener-build.2 and Release notes vpa-1.2.1-gardener-build.3) by @ialidzhikov [#10785]
[DEVELOPER]Thehack/sast.shscript accepts two new optional flags:--exclude-dirs: comma-separated list of dirs to exclude--report-dir: where to store the gosec report by @Kostov6 [#10766]
[DEVELOPER]The provider-local admission is now deployed with the local kind setup. by @LucaBernstein [#10629]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.108.0 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.108.0 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.108.0 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.108.0
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.108.0 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.108.0 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.108.0 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.108.0 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.108.0 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.108.0 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.108.0 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.108.0
Update gardener-controlplane to 1.108.0
[gardener/gardener]
⚠️ Breaking Changes
[USER]Theurlannotation in<shoot-name>.monitoringsecrets in the project namespace is deprecated and will be removed soon. Please use theplutono-urlannotation instead. by @oliver-goetz [#10735][OPERATOR]There is an incompatible change in theGarden(gardens.operator.gardener.cloud) custom resource, which required manual action:- Fields
.spec.virtualCluster.dns.domainsand.spec.runtimeCluster.ingress.domainswere changed from type string to object with a fieldnameand an optional fieldprovider, e.g., inJSONformat, replace"domains": ["domain1.example.com", "domain2.example.com"]with"domains": [{"name": "domain1.example.com"}, {"name": "domain2.example.com"}]. .spec.runtimeCluster.ingress.domainsis required now.spec.virtualCluster.dns.domainsis required now by @MartinWeindel [#10645]
- Fields
[OPERATOR]The optional deployment of cert-management component has been removed. As it was only introduced recently and probably not used, this change should have no impact typically. by @MartinWeindel [#10802]
📰 Noteworthy
[USER]Allow changingshoot.spec.cloudProfilebetweenCloudProfileand its descendantNamespacedCloudProfiles. by @LucaBernstein [#10811]
✨ New Features
[USER]Allow for custom machine images inNamespacedCloudProfiles and add thespec.providerConfigfield. by @LucaBernstein [#10629][USER]The URLs of Shootplutono,prometheusandalertmanagerare now stored as annotations in<shoot-name>.monitoringsecret in the project namespace. by @oliver-goetz [#10735][OPERATOR]Enhance thegardener-operatorto deployDNSRecordsandBackupBucketfor the virtual garden resource.
DNSRecordsare only deployed if at least one provider is specified at.spec.dns.providersin theGardenresource.
ABackupBucketis created if the.spec.virtualCluster.etcd.backupsection is specified. An existing backup bucket on the infrastructure becomes automatically managed this way. by @MartinWeindel [#10645][DEVELOPER]gardener-apiserver: TheExtensionLabelsadmission plugin now also sets labels toWorkloadIdentitys. by @dimityrmirchev [#10786]
🐛 Bug Fixes
[DEVELOPER]gardener-node-agentapplies inline files before applying containerd registries now. by @oliver-goetz [#10831]
🏃 Others
[DEPENDENCY]Theregistry.k8s.io/kube-state-metrics/kube-state-metricsimage has been updated tov2.14.0. by @gardener-ci-robot [#10818][DEPENDENCY]Thequay.io/prometheus/prometheusimage has been updated tov2.55.1. by @gardener-ci-robot [#10804][DEPENDENCY]Thegardener/etcd-druidimage has been updated tov0.24.1. Release Notes by @gardener-ci-robot [#10843][OPERATOR]Fixed an issue that that could occur during control plane migration causing thecore.gardener.cloud/v1beta1.BackupEntryto be reconciled after it was successfully migrated, but before it was restored. by @plkokanov [#10761][OPERATOR]The deployment ofBackupBucketresource in the runtime cluster is skipped if no suitable operator extension is deployed. by @MartinWeindel [#10837][OPERATOR]Following components in gardener logging stack are updated: fluent-operator to v3.2.0, fluent-bit to v3.1.8, gardener/logging to v0.62.0 by @nickytd [#10790][OPERATOR]The following image has been updated:- europe-docker.pkg.dev/gardener-project/releases/gardener/autoscaler/vertical-pod-autoscaler/vpa-recommender: 1.2.1 -> 1.2.1-gardener-build.3 (Release notes vpa-1.2.1-gardener-build.2 and Release notes vpa-1.2.1-gardener-build.3) by @ialidzhikov [#10785]
[DEVELOPER]Thehack/sast.shscript accepts two new optional flags:--exclude-dirs: comma-separated list of dirs to exclude--report-dir: where to store the gosec report by @Kostov6 [#10766]
[DEVELOPER]The provider-local admission is now deployed with the local kind setup. by @LucaBernstein [#10629]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.108.0 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.108.0 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.108.0 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.108.0
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.108.0 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.108.0 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.108.0 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.108.0 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.108.0 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.108.0 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.108.0 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.108.0
Update gardenlet to 1.108.0
[gardener/gardener]
⚠️ Breaking Changes
[USER]Theurlannotation in<shoot-name>.monitoringsecrets in the project namespace is deprecated and will be removed soon. Please use theplutono-urlannotation instead. by @oliver-goetz [#10735][OPERATOR]There is an incompatible change in theGarden(gardens.operator.gardener.cloud) custom resource, which required manual action:- Fields
.spec.virtualCluster.dns.domainsand.spec.runtimeCluster.ingress.domainswere changed from type string to object with a fieldnameand an optional fieldprovider, e.g., inJSONformat, replace"domains": ["domain1.example.com", "domain2.example.com"]with"domains": [{"name": "domain1.example.com"}, {"name": "domain2.example.com"}]. .spec.runtimeCluster.ingress.domainsis required now.spec.virtualCluster.dns.domainsis required now by @MartinWeindel [#10645]
- Fields
[OPERATOR]The optional deployment of cert-management component has been removed. As it was only introduced recently and probably not used, this change should have no impact typically. by @MartinWeindel [#10802]
📰 Noteworthy
[USER]Allow changingshoot.spec.cloudProfilebetweenCloudProfileand its descendantNamespacedCloudProfiles. by @LucaBernstein [#10811]
✨ New Features
[USER]Allow for custom machine images inNamespacedCloudProfiles and add thespec.providerConfigfield. by @LucaBernstein [#10629][USER]The URLs of Shootplutono,prometheusandalertmanagerare now stored as annotations in<shoot-name>.monitoringsecret in the project namespace. by @oliver-goetz [#10735][OPERATOR]Enhance thegardener-operatorto deployDNSRecordsandBackupBucketfor the virtual garden resource.
DNSRecordsare only deployed if at least one provider is specified at.spec.dns.providersin theGardenresource.
ABackupBucketis created if the.spec.virtualCluster.etcd.backupsection is specified. An existing backup bucket on the infrastructure becomes automatically managed this way. by @MartinWeindel [#10645][DEVELOPER]gardener-apiserver: TheExtensionLabelsadmission plugin now also sets labels toWorkloadIdentitys. by @dimityrmirchev [#10786]
🐛 Bug Fixes
[DEVELOPER]gardener-node-agentapplies inline files before applying containerd registries now. by @oliver-goetz [#10831]
🏃 Others
[DEPENDENCY]Theregistry.k8s.io/kube-state-metrics/kube-state-metricsimage has been updated tov2.14.0. by @gardener-ci-robot [#10818][DEPENDENCY]Thequay.io/prometheus/prometheusimage has been updated tov2.55.1. by @gardener-ci-robot [#10804][DEPENDENCY]Thegardener/etcd-druidimage has been updated tov0.24.1. Release Notes by @gardener-ci-robot [#10843][OPERATOR]Fixed an issue that that could occur during control plane migration causing thecore.gardener.cloud/v1beta1.BackupEntryto be reconciled after it was successfully migrated, but before it was restored. by @plkokanov [#10761][OPERATOR]The deployment ofBackupBucketresource in the runtime cluster is skipped if no suitable operator extension is deployed. by @MartinWeindel [#10837][OPERATOR]Following components in gardener logging stack are updated: fluent-operator to v3.2.0, fluent-bit to v3.1.8, gardener/logging to v0.62.0 by @nickytd [#10790][OPERATOR]The following image has been updated:- europe-docker.pkg.dev/gardener-project/releases/gardener/autoscaler/vertical-pod-autoscaler/vpa-recommender: 1.2.1 -> 1.2.1-gardener-build.3 (Release notes vpa-1.2.1-gardener-build.2 and Release notes vpa-1.2.1-gardener-build.3) by @ialidzhikov [#10785]
[DEVELOPER]Thehack/sast.shscript accepts two new optional flags:--exclude-dirs: comma-separated list of dirs to exclude--report-dir: where to store the gosec report by @Kostov6 [#10766]
[DEVELOPER]The provider-local admission is now deployed with the local kind setup. by @LucaBernstein [#10629]
Helm Charts
- controlplane:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.108.0 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.108.0 - operator:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.108.0 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.108.0
Docker Images
- admission-controller:
europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.108.0 - apiserver:
europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.108.0 - controller-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.108.0 - gardenlet:
europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.108.0 - node-agent:
europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.108.0 - operator:
europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.108.0 - resource-manager:
europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.108.0 - scheduler:
europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.108.0
Contributors
domdom82, renovate, and 21 other contributors