[OPERATOR] Fix a regression that caused gardenlet to not be able to migrate deprecated failure-domain.beta.kubernetes.io labels to topology.kubernetes.io due to a removed RBAC rule required to patch PersistentVolumes. by @plkokanov [#10578]
[OPERATOR] Fix a regression that caused gardenlet to not be able to migrate deprecated failure-domain.beta.kubernetes.io labels to topology.kubernetes.io due to a removed RBAC rule required to patch PersistentVolumes. by @plkokanov [#10578]
[OPERATOR] Fix a regression that caused gardenlet to not be able to migrate deprecated failure-domain.beta.kubernetes.io labels to topology.kubernetes.io due to a removed RBAC rule required to patch PersistentVolumes. by @plkokanov [#10578]
[OPERATOR] Update calico to v3.28.2. by @DockToFuture [#492]
[OPERATOR] Fix networkConfig for IPv6. by @axel7born [#486]
[OPERATOR] In VPA autoscaling mode, calico-node should be disrupted less often as side car containers are no longer considered by VPA. Additionally, the minimum/maximum restriction are removed, which can lead to less memory consumption. by @ScheererJ [#489]
[OPERATOR] The networking calico extension no longer configures min/maxAllowed in any managed VPA resource. by @ScheererJ [#491]
[OPERATOR] A priorityClassName can now be set for the admission deployment via the gardener-extension-admission-cilium Helm chart. by @timuthy [#362]
[OPERATOR] Update cilium to v1.16.1 and enable cilium-envoy to enable features like (Ingress, Gateway API, Network Policies with L7 functionality, L7 Protocol Visibility). by @DockToFuture [#409]
[OPERATOR] The networking cilium extension no longer configures min/maxAllowed in any managed VPA resource. by @ScheererJ [#408]
[OPERATOR] Update to cilium v1.16.2. by @DockToFuture [#411]
[OPERATOR] The VPAForETCD and VPAAndHPAForAPIServer feature gates have been promoted to GA and locked to true. by @plkokanov [#10599]
[USER] The limitation of having at maximum ~80 worker pools in Shoots has been lifted. Much higher numbers should be possible now (concrete limit depends on the amount of configuration within the pools (e.g., labels, taints, annotations, etc.)). by @rfranzke [#10542]
[DEVELOPER] Add functionality for the determination of bastion VM parameters used by the extensions by @hebelsan [#10537]
[OPERATOR]gardener-operator is now capable of deploying extension controllers to the garden runtime cluster via operator.gardener.cloud/v1alpha1.Extension resources. Please visit this document for more information. by @timuthy [#10518]
[OPERATOR]gardenlet now performs garbage collection of stale Pods in all namespaces (except kube-system) in the seed cluster. by @rfranzke [#10548]
[DEPENDENCY] The quay.io/prometheus-operator/prometheus-config-reloader image has been updated to v0.77.0. by @gardener-ci-robot [#10547]
[DEPENDENCY] The gardener/ingress-default-backend image has been updated to 0.20.0. Release Notes by @gardener-ci-robot [#10560]
[DEPENDENCY] The gardener/etcd-druid image has been updated to v0.22.7. Release Notes by @gardener-ci-robot [#10570]
[DEPENDENCY] The gardener/etcd-druid image has been updated to v0.22.6. Release Notes by @gardener-ci-robot [#10556]
[DEPENDENCY] The gardener/gardener-discovery-server image has been updated to v0.2.0. Release Notes by @gardener-ci-robot [#10546]
[DEPENDENCY] The quay.io/prometheus-operator/prometheus-config-reloader image has been updated to v0.77.1. by @gardener-ci-robot [#10573]
[DEPENDENCY] The quay.io/kiwigrid/k8s-sidecar image has been updated to 1.28.0. by @gardener-ci-robot [#10591]
[DEPENDENCY] The envoyproxy/envoy image has been updated to v1.31.2. Release Notes by @gardener-ci-robot [#10553]
[DEPENDENCY] The gcr.io/istio-release/pilot image has been updated to 1.21.6. by @gardener-ci-robot [#10564]
[DEVELOPER] provider-extensions setup: Seed VPA is disabled by default to avoid two VPA deployments to act on the same cluster causing endless eviction loops. by @ialidzhikov [#10593]
[DEVELOPER] Correctly extract and install the go binaries in the remote local setup by @vicwicker [#10605]
[OPERATOR] Allow overlapping network ranges in case of single stack IPv6. by @axel7born [#10584]
[OPERATOR] Allow empty pod and service ranges in shoot spec for IPv6 single stack. by @axel7born [#10541]
[OPERATOR] The TopologySpreadConstraint calculation was improved for workload spread across multiple zones. This especially leads to a more balanced distribution of kube-apiserver and istio replicas in seed clusters. by @timuthy [#10608]
[OPERATOR] VPA resource settings are now adapted - memory limits are removed and initial resource requests are lowered. by @voelzmo [#10568]
[OPERATOR] The VPAForETCD and VPAAndHPAForAPIServer feature gates have been promoted to GA and locked to true. by @plkokanov [#10599]
[USER] The limitation of having at maximum ~80 worker pools in Shoots has been lifted. Much higher numbers should be possible now (concrete limit depends on the amount of configuration within the pools (e.g., labels, taints, annotations, etc.)). by @rfranzke [#10542]
[DEVELOPER] Add functionality for the determination of bastion VM parameters used by the extensions by @hebelsan [#10537]
[OPERATOR]gardener-operator is now capable of deploying extension controllers to the garden runtime cluster via operator.gardener.cloud/v1alpha1.Extension resources. Please visit this document for more information. by @timuthy [#10518]
[OPERATOR]gardenlet now performs garbage collection of stale Pods in all namespaces (except kube-system) in the seed cluster. by @rfranzke [#10548]
[DEPENDENCY] The quay.io/prometheus-operator/prometheus-config-reloader image has been updated to v0.77.0. by @gardener-ci-robot [#10547]
[DEPENDENCY] The gardener/ingress-default-backend image has been updated to 0.20.0. Release Notes by @gardener-ci-robot [#10560]
[DEPENDENCY] The gardener/etcd-druid image has been updated to v0.22.7. Release Notes by @gardener-ci-robot [#10570]
[DEPENDENCY] The gardener/etcd-druid image has been updated to v0.22.6. Release Notes by @gardener-ci-robot [#10556]
[DEPENDENCY] The gardener/gardener-discovery-server image has been updated to v0.2.0. Release Notes by @gardener-ci-robot [#10546]
[DEPENDENCY] The quay.io/prometheus-operator/prometheus-config-reloader image has been updated to v0.77.1. by @gardener-ci-robot [#10573]
[DEPENDENCY] The quay.io/kiwigrid/k8s-sidecar image has been updated to 1.28.0. by @gardener-ci-robot [#10591]
[DEPENDENCY] The envoyproxy/envoy image has been updated to v1.31.2. Release Notes by @gardener-ci-robot [#10553]
[DEPENDENCY] The gcr.io/istio-release/pilot image has been updated to 1.21.6. by @gardener-ci-robot [#10564]
[DEVELOPER] provider-extensions setup: Seed VPA is disabled by default to avoid two VPA deployments to act on the same cluster causing endless eviction loops. by @ialidzhikov [#10593]
[DEVELOPER] Correctly extract and install the go binaries in the remote local setup by @vicwicker [#10605]
[OPERATOR] Allow overlapping network ranges in case of single stack IPv6. by @axel7born [#10584]
[OPERATOR] Allow empty pod and service ranges in shoot spec for IPv6 single stack. by @axel7born [#10541]
[OPERATOR] The TopologySpreadConstraint calculation was improved for workload spread across multiple zones. This especially leads to a more balanced distribution of kube-apiserver and istio replicas in seed clusters. by @timuthy [#10608]
[OPERATOR] VPA resource settings are now adapted - memory limits are removed and initial resource requests are lowered. by @voelzmo [#10568]
[OPERATOR] The VPAForETCD and VPAAndHPAForAPIServer feature gates have been promoted to GA and locked to true. by @plkokanov [#10599]
[USER] The limitation of having at maximum ~80 worker pools in Shoots has been lifted. Much higher numbers should be possible now (concrete limit depends on the amount of configuration within the pools (e.g., labels, taints, annotations, etc.)). by @rfranzke [#10542]
[DEVELOPER] Add functionality for the determination of bastion VM parameters used by the extensions by @hebelsan [#10537]
[OPERATOR]gardener-operator is now capable of deploying extension controllers to the garden runtime cluster via operator.gardener.cloud/v1alpha1.Extension resources. Please visit this document for more information. by @timuthy [#10518]
[OPERATOR]gardenlet now performs garbage collection of stale Pods in all namespaces (except kube-system) in the seed cluster. by @rfranzke [#10548]
[DEPENDENCY] The quay.io/prometheus-operator/prometheus-config-reloader image has been updated to v0.77.0. by @gardener-ci-robot [#10547]
[DEPENDENCY] The gardener/ingress-default-backend image has been updated to 0.20.0. Release Notes by @gardener-ci-robot [#10560]
[DEPENDENCY] The gardener/etcd-druid image has been updated to v0.22.7. Release Notes by @gardener-ci-robot [#10570]
[DEPENDENCY] The gardener/etcd-druid image has been updated to v0.22.6. Release Notes by @gardener-ci-robot [#10556]
[DEPENDENCY] The gardener/gardener-discovery-server image has been updated to v0.2.0. Release Notes by @gardener-ci-robot [#10546]
[DEPENDENCY] The quay.io/prometheus-operator/prometheus-config-reloader image has been updated to v0.77.1. by @gardener-ci-robot [#10573]
[DEPENDENCY] The quay.io/kiwigrid/k8s-sidecar image has been updated to 1.28.0. by @gardener-ci-robot [#10591]
[DEPENDENCY] The envoyproxy/envoy image has been updated to v1.31.2. Release Notes by @gardener-ci-robot [#10553]
[DEPENDENCY] The gcr.io/istio-release/pilot image has been updated to 1.21.6. by @gardener-ci-robot [#10564]
[DEVELOPER] provider-extensions setup: Seed VPA is disabled by default to avoid two VPA deployments to act on the same cluster causing endless eviction loops. by @ialidzhikov [#10593]
[DEVELOPER] Correctly extract and install the go binaries in the remote local setup by @vicwicker [#10605]
[OPERATOR] Allow overlapping network ranges in case of single stack IPv6. by @axel7born [#10584]
[OPERATOR] Allow empty pod and service ranges in shoot spec for IPv6 single stack. by @axel7born [#10541]
[OPERATOR] The TopologySpreadConstraint calculation was improved for workload spread across multiple zones. This especially leads to a more balanced distribution of kube-apiserver and istio replicas in seed clusters. by @timuthy [#10608]
[OPERATOR] VPA resource settings are now adapted - memory limits are removed and initial resource requests are lowered. by @voelzmo [#10568]
[USER] fixed a bug where non-suffixed IPv6 addresses could cause the egress filter applier to crash. by @domdom82 [gardener/egress-filter-refresher#48]
[USER] The provider-openstack extension does now support shoot clusters with Kubernetes version 1.31. You should consider the Kubernetes release notes before upgrading to 1.31. by @ialidzhikov [#856]
[USER] The admission webhook now validates CredentialsBindings. by @dimityrmirchev [#845]
[OPERATOR] Allows the operator to configure whether he wants to deploy the standard ClusterFilters and/or StorageClass by @nschad [#830]
[OPERATOR] Enable support for the field shoot.Spec.CloudProfile alongside shoot.Spec.CloudProfileName and enable the future use of NamespacedCloudProfile. by @LucaBernstein [#834]
[OPERATOR] Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#811]
[OPERATOR] Removed unnecessary preStop hook from node-driver-registrar in csi-driver-node, as socket removal is now handled internally by node-driver-registrar, resolving distroless image error. by @AndreasBurger [#802]
[OPERATOR] A priorityClassName can now be set for the admission deployment via the gardener-extension-admission-openstack Helm chart. by @timuthy [#806]
[OPERATOR] Starting with gardenlet >= v1.98.0, use controlplane webhook object selector to limit mutator calls. by @LucaBernstein [#797]
[OPERATOR] Update cloud-provider-openstack images and remove credential use from nodeserver by @kon-angelo [#864]
[OPERATOR] Update the VPA CRD used for testing locally by @hebelsan [#822]
[OPERATOR] Update CSI sidecar containers to latest version. by @kon-angelo [#865]
[OPERATOR] Adapt new WorkerPoolHash function in Gardener v1.98. by @Duciwuci [#816]
[OPERATOR] Inserts architecture from worker to the machine class by @sssash18 [#820]
[OPERATOR] The provider-openstack extension no longer configures min/maxAllowed in any managed VPA resource. by @kon-angelo [#863]
[OPERATOR] Allow multiple loadBalancerProviders as the default and for a region by @lotharbach [#841]
[DEVELOPER] Update gardener/gardener to 1.103.0 and golang to 1.23.0 by @hebelsan [#850]
[USER] The provider-azure extension does now support shoot clusters with Kubernetes version 1.31. You should consider the Kubernetes release notes before upgrading to 1.31. by @ialidzhikov [#963]
[USER] The admission webhook now validates CredentialsBindings. by @dimityrmirchev [#957]
[USER] Enable support for the field shoot.Spec.CloudProfile alongside shoot.Spec.CloudProfileName and enable the future use of NamespacedCloudProfiles. by @LucaBernstein [#922]
[DEVELOPER] MCM adds the name of the machine to node.gardener.cloud/machine-name label of the corresponding node. by @oliver-goetz [gardener/machine-controller-manager#919]
[DEVELOPER] MCM replaces the magic string <<MACHINE_NAME>> in user data with the name of the machine when it is bootstrapped. by @oliver-goetz [gardener/machine-controller-manager#919]
[OPERATOR] Fixed a bug where failure of machine initialization caused label updates to not happen. by @thiyyakat [gardener/machine-controller-manager#940]
[OPERATOR] Fixed a bug where the Unitialised error code was blocking machine deletion by @rishabh-11 [gardener/machine-controller-manager#928]
[DEVELOPER] Fixed bug that removed the shoot-- prefix from control cluster namespace for integration tests using the gardener local setup case by @thiyyakat [gardener/machine-controller-manager#935]
[OPERATOR] Drain timeout is now correctly honored for Pod eviction during Machine Drain by @sssash18 [gardener/machine-controller-manager#920]
[OPERATOR]getVMStatus always redirects to InitiateDrain. It also populates the node label on the machine object by checking node.gardener.cloud/machine-name label on the nodes. by @thiyyakat [gardener/machine-controller-manager#940]
[OPERATOR] golangci-lint will now be used as the linter instead of the older golint by @aaronfern [gardener/machine-controller-manager#929]
[OPERATOR] Golang version used is now upgraded to 1.22.5 by @aaronfern [gardener/machine-controller-manager#929]
[DEVELOPER] The following dependencies are updated:
k8s.io/* : v0.29.3 -> v0.31.0 by @ary1992 [gardener/machine-controller-manager#938]
[OPERATOR] The Helm chart is published as OCI artifacts now. by @Rafael-Franzke [gardener/external-dns-management#$9216e85f29cab534dc8284e54ed081249a1e4299]