Release Notes v1.70
23KE release notes and upgrade guide
Related upstream release notes / changelogs
Update provider-gcp to 1.29.1
[gardener-extension-provider-gcp]
🐛 Bug Fixes
- [DEPENDENCY] gcp-compute-persistent-disk-csi-driver to v1.9.4 (gardener/gardener-extension-provider-gcp#590, @kon-angelo)
Update cert-management to 0.10.5
[cert-management]
🏃 Others
- [OPERATOR] Updated controller-manager-library dependency. (gardener/cert-management#127, @MartinWeindel)
- [OPERATOR] Updated builder image from
golang:1.20.3
togolang:1.20.4
(gardener/cert-management#127, @MartinWeindel)
Update external-dns-management to 0.15.3
[external-dns-management]
✨ New Features
- [USER] Added support for proxy for HTTP Transport for Openstack Designate Provider (gardener/external-dns-management#304, @sdputurn)
🏃 Others
- [OPERATOR] Updated controller-manager-library dependency. (gardener/external-dns-management#305, @MartinWeindel)
- [OPERATOR] Updated builder image from
golang:1.20.2
togolang:1.20.4
(gardener/external-dns-management#305, @MartinWeindel)
Update networking-calico to 1.33.0
[gardener-extension-networking-calico]
🏃 Others
- [OPERATOR] The
gardener-extension-admission-calico
Service in thegardener-extension-admission-calico
chart can now be configured to be topology-aware. (gardener/gardener-extension-networking-calico#258, @ialidzhikov) - [OPERATOR] A e2e test is added which tests all combinations of node to node and pod to pod communication. (gardener/gardener-extension-networking-calico#261, @DockToFuture)
- [OPERATOR] Update calico to
v3.25.1
. (gardener/gardener-extension-networking-calico#262, @DockToFuture) - [OPERATOR] The Gardener networking calico extension only supports kubernetes v1.21 going forward. (gardener/gardener-extension-networking-calico#263, @ScheererJ)
Update networking-cilium to 1.24.0
[gardener-extension-networking-cilium]
🏃 Others
- [OPERATOR] The
gardener-extension-admission-cilium
Service in thegardener-extension-admission-cilium
chart can now be configured to be topology-aware. (gardener/gardener-extension-networking-cilium#176, @ialidzhikov) - [OPERATOR] A e2e test is added which tests all combinations of node to node and pod to pod communication. (gardener/gardener-extension-networking-cilium#179, @DockToFuture)
- [OPERATOR] Portmap copier is removed. (gardener/gardener-extension-networking-cilium#180, @DockToFuture)
- [OPERATOR] Memory limits for cilium agent are increased to 10 Gi. (gardener/gardener-extension-networking-cilium#183, @DockToFuture)
- [OPERATOR] Cilium is update to
v1.13.2
. (gardener/gardener-extension-networking-cilium#184, @DockToFuture)
Update shoot-cert-service to 1.32.0
[gardener-extension-shoot-cert-service]
🏃 Others
- [OPERATOR] Update builder image from
golang:1.20.2
togolang:1.20.4
(gardener/gardener-extension-shoot-cert-service#162, @MartinWeindel)
[cert-management]
🏃 Others
- [OPERATOR] Updated controller-manager-library dependency. (gardener/cert-management#127, @MartinWeindel)
- [OPERATOR] Updated builder image from
golang:1.20.3
togolang:1.20.4
(gardener/cert-management#127, @MartinWeindel) - [OPERATOR] The Cert-Management Helm charts supports setting
.Values.podLabels
. Those labels are added to thepodTemplate
section of the Cert-Management deployment. (gardener/cert-management#125, @timuthy) - [OPERATOR] Bump builder image from golang version
1.20.2
to1.20.3
(gardener/cert-management#126, @MartinWeindel)
Update gardener-controlplane to 1.70.0
[gardener]
⚠️ Breaking Changes
- [USER] Gardener sets
minDomains
for shoot system components to the number of zones configured in the system component worker pool(s). (gardener/gardener#7826, @timuthy)- ⚠️ It is strongly recommended to place at least one worker node per availability zone for system component workers in order to ensure hitch-free rolling updates and scheduling of pods. You may need to adjust the
maximum: <number-of-zones>
values of your system component worker pool(s). - This configuration only takes effect for clusters which enabled feature gate
MinDomainsInPodTopologySpread
(enabled by default as of Kubernetesv1.27
).
- ⚠️ It is strongly recommended to place at least one worker node per availability zone for system component workers in order to ensure hitch-free rolling updates and scheduling of pods. You may need to adjust the
- [USER] The
spec.secretBindingName
,.spec.networking
,.spec.networking.type
,spec.maintenance.autoUpdate.machineImageVersion
fields in the Shoot API are now made optional to prepare for the introduction of workerless Shoots feature. Please see https://github.com/gardener/gardener/issues/7635 for more details. (gardener/gardener#7828, @shafeeqes) - [OPERATOR] The promoted or deprecated feature gates
ManagedIstio
andReversedVPN
have been removed. Remove these feature gates before updating to this version of Gardener. (gardener/gardener#7830, @rfranzke) - [DEVELOPER] The
gardener.cloud/timestamp
annotation is now formatted astime.RFC3339Nano
. (gardener/gardener#7796, @dimityrmirchev)
✨ New Features
- [USER] It is now possible to specify custom linux kernel settings per worker pool for
Shoot
s via.spec.provider.workers[].sysctls
, which may override Gardener default values. (gardener/gardener#7825, @ScheererJ) - [USER]
Secret
s/ConfigMap
s referenced in.spec.resources
ofShoot
s are now protected with a finalizer to ensure they do not disappear from the system as long as they are still referenced somewhere. (gardener/gardener#7850, @rfranzke) - [OPERATOR]
gardener-operator
now deploysIstio
components into the garden runtime cluster. (gardener/gardener#7817, @timuthy) - [OPERATOR] The
highavailabilityconfig
webhook configures topology spread constraints withminDomains=<number-of- zones>
. This configuration only takes effect for clusters which enabled feature gateMinDomainsInPodTopologySpread
(default as of Kubernetesv1.27
). Please note, this configuration will require at least one worker node per registered availability zone so that Kubernetes can spread the respective seed, shoot and control-plane pods across zones. (gardener/gardener#7826, @timuthy) - [OPERATOR] Gardener now supports seed clusters with Kubernetes versions up to
v1.26
. (gardener/gardener#7831, @shafeeqes) - [OPERATOR] Annotations in
seed.spec.settings.loadBalancerServices.annotations
are now applied to the Nginx-Ingress load balancer service in the seed cluster. (gardener/gardener#7835, @timuthy) - [OPERATOR] The
gardener-operator
does now also managekube-state-metrics
. (gardener/gardener#7836, @rfranzke) - [DEVELOPER] The local deployment of Gardener is extended so that it is now possible to create a second single zone HA
Seed
. ThisSeed
can be used to test the control plane migration scenario for HAShoot
s. Additionally, make targets were added to trigger the control plane migration integration test with HAShoot
s:test-e2e-local-migration-ha-single-zone
to test the migration locally, andci-e2e-kind-migration-ha-single-zone
mainly intended to be used in Gardener prow jobs. (gardener/gardener#7742, @plkokanov)
🐛 Bug Fixes
- [OPERATOR] Prevent nil pointer exceptions on shoot deletion in
gardenlet
when seed namespace is gone. (gardener/gardener#7827, @oliver-goetz) - [OPERATOR] gardener-apiserver: The kubelet version constraint validation is now fixed to also cover the Shoot K8s version update. Previously it was possible to update the Shoot K8s version to a new minor version when the Shoot has a worker pool with machine image version which kubeletVersionConstraint does not match the new K8s version. (gardener/gardener#7853, @ialidzhikov)
📖 Documentation
- [DEPENDENCY] The flags which went out-of-support in MCM v0.49.0 have been cleaned up from MCM deployment yaml. (gardener/gardener#7829, @himanshu-kun)
🏃 Others
- [OPERATOR] Suppress the event-logger
nest
filter's warnings in the fluent-bit. (gardener/gardener#7832, @vlvasilev) - [OPERATOR] Fixed an issue that would cause the
gardenlet
to run intoCrashLoopBackoff
when following the docs/development/getting_started_locally.md#remote-local-setup guide. (gardener/gardener#7841, @plkokanov) - [OPERATOR] When Seed's
spec.settings.ownerChecks.enabled=false
gardenlet is now able to delete the owner DNSRecord for a Shoot stuck in deletion where the kube-apiserver Deployment is missing but the Infrastructure is present and cannot be deleted for some reason (infrastructure dependency, invalid credentials). (gardener/gardener#7842, @ialidzhikov) - [OPERATOR] The Istio Ingress-Gateway deployment was refined to speed up seed bootstrapping times. (gardener/gardener#7844, @timuthy)
- [OPERATOR] Change
log
mount path ofnode-problem-detector
from/var/log
to/var/log/journal
. (gardener/gardener#7860, @AleksandarSavchev) - [OPERATOR] Gardener now deploys the cluster-autoscaler earlier in the shoot reconciliation flow without checking if the worker pools are ready. (gardener/gardener#7774, @rishabh-11)
- [DEVELOPER] Update local-setup to
kind@v0.18.0
. (gardener/gardener#7831, @shafeeqes) - [DEVELOPER] Deactivate leader election, health and readiness checks when running
make *-debug.
(gardener/gardener#7847, @oliver-goetz) - [DEVELOPER] Improves testing flakiness of logging testmachinery test by making the loki init-container reliable. (gardener/gardener#7848, @nickytd)
- [DEVELOPER] Go version is updated to 1.20.4. (gardener/gardener#7862, @shafeeqes)
- [DEVELOPER] The
register-kind2-env
andtear-down-kind2-env
will no longer try to deploy and delete theseed-local
Secret
. This fixes an issue wheretear-down-kind2-env
would hang as it deletes and then waits for theseed-local
Secret
to be deleted which can not happen as long as thelocal
Seed
which uses it still exists. (gardener/gardener#7742, @plkokanov) - [DEVELOPER] Introduced a new field called
machineDeploymentsLastUpdateTime
in theWorker
status to keep track of the time when the status of the Worker resource was last updated with the latest machine deployments. (gardener/gardener#7774, @rishabh-11)
[hvpa-controller]
✨ New Features
- [OPERATOR] HVPA supports k8s versions >= 1.25 by switching to
k8s.io/autoscaling/v2
when necessary for all API calls. (gardener/hvpa-controller#121, @voelzmo) - [OPERATOR] Added a LeaderElectionID to the controller options, allowing to run multiple instances of HVPA with leader election when
--leader-elect=true
is passed as commandline arg (gardener/hvpa-controller#122, @voelzmo)
🏃 Others
- [OPERATOR] Updated go to 1.19.9 (gardener/hvpa-controller#123, @voelzmo)
Docker Images
admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.70.0
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.70.0
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.70.0
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.70.0
operator: eu.gcr.io/gardener-project/gardener/operator:v1.70.0
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.70.0
resource-manager: eu.gcr.io/gardener-project/gardener/resource-manager:v1.70.0
Update gardener-controlplane to 1.70.0
[gardener]
⚠️ Breaking Changes
- [USER] Gardener sets
minDomains
for shoot system components to the number of zones configured in the system component worker pool(s). (gardener/gardener#7826, @timuthy)- ⚠️ It is strongly recommended to place at least one worker node per availability zone for system component workers in order to ensure hitch-free rolling updates and scheduling of pods. You may need to adjust the
maximum: <number-of-zones>
values of your system component worker pool(s). - This configuration only takes effect for clusters which enabled feature gate
MinDomainsInPodTopologySpread
(enabled by default as of Kubernetesv1.27
).
- ⚠️ It is strongly recommended to place at least one worker node per availability zone for system component workers in order to ensure hitch-free rolling updates and scheduling of pods. You may need to adjust the
- [USER] The
spec.secretBindingName
,.spec.networking
,.spec.networking.type
,spec.maintenance.autoUpdate.machineImageVersion
fields in the Shoot API are now made optional to prepare for the introduction of workerless Shoots feature. Please see https://github.com/gardener/gardener/issues/7635 for more details. (gardener/gardener#7828, @shafeeqes) - [OPERATOR] The promoted or deprecated feature gates
ManagedIstio
andReversedVPN
have been removed. Remove these feature gates before updating to this version of Gardener. (gardener/gardener#7830, @rfranzke) - [DEVELOPER] The
gardener.cloud/timestamp
annotation is now formatted astime.RFC3339Nano
. (gardener/gardener#7796, @dimityrmirchev)
✨ New Features
- [USER] It is now possible to specify custom linux kernel settings per worker pool for
Shoot
s via.spec.provider.workers[].sysctls
, which may override Gardener default values. (gardener/gardener#7825, @ScheererJ) - [USER]
Secret
s/ConfigMap
s referenced in.spec.resources
ofShoot
s are now protected with a finalizer to ensure they do not disappear from the system as long as they are still referenced somewhere. (gardener/gardener#7850, @rfranzke) - [OPERATOR]
gardener-operator
now deploysIstio
components into the garden runtime cluster. (gardener/gardener#7817, @timuthy) - [OPERATOR] The
highavailabilityconfig
webhook configures topology spread constraints withminDomains=<number-of- zones>
. This configuration only takes effect for clusters which enabled feature gateMinDomainsInPodTopologySpread
(default as of Kubernetesv1.27
). Please note, this configuration will require at least one worker node per registered availability zone so that Kubernetes can spread the respective seed, shoot and control-plane pods across zones. (gardener/gardener#7826, @timuthy) - [OPERATOR] Gardener now supports seed clusters with Kubernetes versions up to
v1.26
. (gardener/gardener#7831, @shafeeqes) - [OPERATOR] Annotations in
seed.spec.settings.loadBalancerServices.annotations
are now applied to the Nginx-Ingress load balancer service in the seed cluster. (gardener/gardener#7835, @timuthy) - [OPERATOR] The
gardener-operator
does now also managekube-state-metrics
. (gardener/gardener#7836, @rfranzke) - [DEVELOPER] The local deployment of Gardener is extended so that it is now possible to create a second single zone HA
Seed
. ThisSeed
can be used to test the control plane migration scenario for HAShoot
s. Additionally, make targets were added to trigger the control plane migration integration test with HAShoot
s:test-e2e-local-migration-ha-single-zone
to test the migration locally, andci-e2e-kind-migration-ha-single-zone
mainly intended to be used in Gardener prow jobs. (gardener/gardener#7742, @plkokanov)
🐛 Bug Fixes
- [OPERATOR] Prevent nil pointer exceptions on shoot deletion in
gardenlet
when seed namespace is gone. (gardener/gardener#7827, @oliver-goetz) - [OPERATOR] gardener-apiserver: The kubelet version constraint validation is now fixed to also cover the Shoot K8s version update. Previously it was possible to update the Shoot K8s version to a new minor version when the Shoot has a worker pool with machine image version which kubeletVersionConstraint does not match the new K8s version. (gardener/gardener#7853, @ialidzhikov)
📖 Documentation
- [DEPENDENCY] The flags which went out-of-support in MCM v0.49.0 have been cleaned up from MCM deployment yaml. (gardener/gardener#7829, @himanshu-kun)
🏃 Others
- [OPERATOR] Suppress the event-logger
nest
filter's warnings in the fluent-bit. (gardener/gardener#7832, @vlvasilev) - [OPERATOR] Fixed an issue that would cause the
gardenlet
to run intoCrashLoopBackoff
when following the docs/development/getting_started_locally.md#remote-local-setup guide. (gardener/gardener#7841, @plkokanov) - [OPERATOR] When Seed's
spec.settings.ownerChecks.enabled=false
gardenlet is now able to delete the owner DNSRecord for a Shoot stuck in deletion where the kube-apiserver Deployment is missing but the Infrastructure is present and cannot be deleted for some reason (infrastructure dependency, invalid credentials). (gardener/gardener#7842, @ialidzhikov) - [OPERATOR] The Istio Ingress-Gateway deployment was refined to speed up seed bootstrapping times. (gardener/gardener#7844, @timuthy)
- [OPERATOR] Change
log
mount path ofnode-problem-detector
from/var/log
to/var/log/journal
. (gardener/gardener#7860, @AleksandarSavchev) - [OPERATOR] Gardener now deploys the cluster-autoscaler earlier in the shoot reconciliation flow without checking if the worker pools are ready. (gardener/gardener#7774, @rishabh-11)
- [DEVELOPER] Update local-setup to
kind@v0.18.0
. (gardener/gardener#7831, @shafeeqes) - [DEVELOPER] Deactivate leader election, health and readiness checks when running
make *-debug.
(gardener/gardener#7847, @oliver-goetz) - [DEVELOPER] Improves testing flakiness of logging testmachinery test by making the loki init-container reliable. (gardener/gardener#7848, @nickytd)
- [DEVELOPER] Go version is updated to 1.20.4. (gardener/gardener#7862, @shafeeqes)
- [DEVELOPER] The
register-kind2-env
andtear-down-kind2-env
will no longer try to deploy and delete theseed-local
Secret
. This fixes an issue wheretear-down-kind2-env
would hang as it deletes and then waits for theseed-local
Secret
to be deleted which can not happen as long as thelocal
Seed
which uses it still exists. (gardener/gardener#7742, @plkokanov) - [DEVELOPER] Introduced a new field called
machineDeploymentsLastUpdateTime
in theWorker
status to keep track of the time when the status of the Worker resource was last updated with the latest machine deployments. (gardener/gardener#7774, @rishabh-11)
[hvpa-controller]
✨ New Features
- [OPERATOR] HVPA supports k8s versions >= 1.25 by switching to
k8s.io/autoscaling/v2
when necessary for all API calls. (gardener/hvpa-controller#121, @voelzmo) - [OPERATOR] Added a LeaderElectionID to the controller options, allowing to run multiple instances of HVPA with leader election when
--leader-elect=true
is passed as commandline arg (gardener/hvpa-controller#122, @voelzmo)
🏃 Others
- [OPERATOR] Updated go to 1.19.9 (gardener/hvpa-controller#123, @voelzmo)
Docker Images
admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.70.0
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.70.0
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.70.0
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.70.0
operator: eu.gcr.io/gardener-project/gardener/operator:v1.70.0
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.70.0
resource-manager: eu.gcr.io/gardener-project/gardener/resource-manager:v1.70.0
Update gardenlet to 1.70.0
[gardener]
⚠️ Breaking Changes
- [USER] Gardener sets
minDomains
for shoot system components to the number of zones configured in the system component worker pool(s). (gardener/gardener#7826, @timuthy)- ⚠️ It is strongly recommended to place at least one worker node per availability zone for system component workers in order to ensure hitch-free rolling updates and scheduling of pods. You may need to adjust the
maximum: <number-of-zones>
values of your system component worker pool(s). - This configuration only takes effect for clusters which enabled feature gate
MinDomainsInPodTopologySpread
(enabled by default as of Kubernetesv1.27
).
- ⚠️ It is strongly recommended to place at least one worker node per availability zone for system component workers in order to ensure hitch-free rolling updates and scheduling of pods. You may need to adjust the
- [USER] The
spec.secretBindingName
,.spec.networking
,.spec.networking.type
,spec.maintenance.autoUpdate.machineImageVersion
fields in the Shoot API are now made optional to prepare for the introduction of workerless Shoots feature. Please see https://github.com/gardener/gardener/issues/7635 for more details. (gardener/gardener#7828, @shafeeqes) - [OPERATOR] The promoted or deprecated feature gates
ManagedIstio
andReversedVPN
have been removed. Remove these feature gates before updating to this version of Gardener. (gardener/gardener#7830, @rfranzke) - [DEVELOPER] The
gardener.cloud/timestamp
annotation is now formatted astime.RFC3339Nano
. (gardener/gardener#7796, @dimityrmirchev)
✨ New Features
- [USER] It is now possible to specify custom linux kernel settings per worker pool for
Shoot
s via.spec.provider.workers[].sysctls
, which may override Gardener default values. (gardener/gardener#7825, @ScheererJ) - [USER]
Secret
s/ConfigMap
s referenced in.spec.resources
ofShoot
s are now protected with a finalizer to ensure they do not disappear from the system as long as they are still referenced somewhere. (gardener/gardener#7850, @rfranzke) - [OPERATOR]
gardener-operator
now deploysIstio
components into the garden runtime cluster. (gardener/gardener#7817, @timuthy) - [OPERATOR] The
highavailabilityconfig
webhook configures topology spread constraints withminDomains=<number-of- zones>
. This configuration only takes effect for clusters which enabled feature gateMinDomainsInPodTopologySpread
(default as of Kubernetesv1.27
). Please note, this configuration will require at least one worker node per registered availability zone so that Kubernetes can spread the respective seed, shoot and control-plane pods across zones. (gardener/gardener#7826, @timuthy) - [OPERATOR] Gardener now supports seed clusters with Kubernetes versions up to
v1.26
. (gardener/gardener#7831, @shafeeqes) - [OPERATOR] Annotations in
seed.spec.settings.loadBalancerServices.annotations
are now applied to the Nginx-Ingress load balancer service in the seed cluster. (gardener/gardener#7835, @timuthy) - [OPERATOR] The
gardener-operator
does now also managekube-state-metrics
. (gardener/gardener#7836, @rfranzke) - [DEVELOPER] The local deployment of Gardener is extended so that it is now possible to create a second single zone HA
Seed
. ThisSeed
can be used to test the control plane migration scenario for HAShoot
s. Additionally, make targets were added to trigger the control plane migration integration test with HAShoot
s:test-e2e-local-migration-ha-single-zone
to test the migration locally, andci-e2e-kind-migration-ha-single-zone
mainly intended to be used in Gardener prow jobs. (gardener/gardener#7742, @plkokanov)
🐛 Bug Fixes
- [OPERATOR] Prevent nil pointer exceptions on shoot deletion in
gardenlet
when seed namespace is gone. (gardener/gardener#7827, @oliver-goetz) - [OPERATOR] gardener-apiserver: The kubelet version constraint validation is now fixed to also cover the Shoot K8s version update. Previously it was possible to update the Shoot K8s version to a new minor version when the Shoot has a worker pool with machine image version which kubeletVersionConstraint does not match the new K8s version. (gardener/gardener#7853, @ialidzhikov)
📖 Documentation
- [DEPENDENCY] The flags which went out-of-support in MCM v0.49.0 have been cleaned up from MCM deployment yaml. (gardener/gardener#7829, @himanshu-kun)
🏃 Others
- [OPERATOR] Suppress the event-logger
nest
filter's warnings in the fluent-bit. (gardener/gardener#7832, @vlvasilev) - [OPERATOR] Fixed an issue that would cause the
gardenlet
to run intoCrashLoopBackoff
when following the docs/development/getting_started_locally.md#remote-local-setup guide. (gardener/gardener#7841, @plkokanov) - [OPERATOR] When Seed's
spec.settings.ownerChecks.enabled=false
gardenlet is now able to delete the owner DNSRecord for a Shoot stuck in deletion where the kube-apiserver Deployment is missing but the Infrastructure is present and cannot be deleted for some reason (infrastructure dependency, invalid credentials). (gardener/gardener#7842, @ialidzhikov) - [OPERATOR] The Istio Ingress-Gateway deployment was refined to speed up seed bootstrapping times. (gardener/gardener#7844, @timuthy)
- [OPERATOR] Change
log
mount path ofnode-problem-detector
from/var/log
to/var/log/journal
. (gardener/gardener#7860, @AleksandarSavchev) - [OPERATOR] Gardener now deploys the cluster-autoscaler earlier in the shoot reconciliation flow without checking if the worker pools are ready. (gardener/gardener#7774, @rishabh-11)
- [DEVELOPER] Update local-setup to
kind@v0.18.0
. (gardener/gardener#7831, @shafeeqes) - [DEVELOPER] Deactivate leader election, health and readiness checks when running
make *-debug.
(gardener/gardener#7847, @oliver-goetz) - [DEVELOPER] Improves testing flakiness of logging testmachinery test by making the loki init-container reliable. (gardener/gardener#7848, @nickytd)
- [DEVELOPER] Go version is updated to 1.20.4. (gardener/gardener#7862, @shafeeqes)
- [DEVELOPER] The
register-kind2-env
andtear-down-kind2-env
will no longer try to deploy and delete theseed-local
Secret
. This fixes an issue wheretear-down-kind2-env
would hang as it deletes and then waits for theseed-local
Secret
to be deleted which can not happen as long as thelocal
Seed
which uses it still exists. (gardener/gardener#7742, @plkokanov) - [DEVELOPER] Introduced a new field called
machineDeploymentsLastUpdateTime
in theWorker
status to keep track of the time when the status of the Worker resource was last updated with the latest machine deployments. (gardener/gardener#7774, @rishabh-11)
[hvpa-controller]
✨ New Features
- [OPERATOR] HVPA supports k8s versions >= 1.25 by switching to
k8s.io/autoscaling/v2
when necessary for all API calls. (gardener/hvpa-controller#121, @voelzmo) - [OPERATOR] Added a LeaderElectionID to the controller options, allowing to run multiple instances of HVPA with leader election when
--leader-elect=true
is passed as commandline arg (gardener/hvpa-controller#122, @voelzmo)
🏃 Others
- [OPERATOR] Updated go to 1.19.9 (gardener/hvpa-controller#123, @voelzmo)
Docker Images
admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.70.0
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.70.0
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.70.0
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.70.0
operator: eu.gcr.io/gardener-project/gardener/operator:v1.70.0
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.70.0
resource-manager: eu.gcr.io/gardener-project/gardener/resource-manager:v1.70.0
Update shoot-dns-service to 1.33.0
[gardener-extension-shoot-dns-service]
⚠️ Breaking Changes
- [OPERATOR] The charts for the controller-registration uses now
gardener.seed.name
instead ofgardener.seed.identity
. (gardener/gardener-extension-shoot-dns-service#209, @MartinWeindel)- Make sure to use Gardener Version >=
v1.67.0
.
- Make sure to use Gardener Version >=
🐛 Bug Fixes
- [OPERATOR] Fix nil pointer when rendering the gardener-extension-admission-shoot-dns-service runtime chart separately. (gardener/gardener-extension-shoot-dns-service#204, @hendrikKahl)
🏃 Others
- [OPERATOR] Update builder image from
golang:1.20.3
togolang:1.20.4
(gardener/gardener-extension-shoot-dns-service#209, @MartinWeindel) - [OPERATOR] Bump builder image from
golang:1.20.2
togolang:1.20.3
. (gardener/gardener-extension-shoot-dns-service#207, @MartinWeindel)
[external-dns-management]
✨ New Features
- [USER] Added support for proxy for HTTP Transport for Openstack Designate Provider (gardener/external-dns-management#304, @sdputurn)
🏃 Others
- [OPERATOR] Updated controller-manager-library dependency. (gardener/external-dns-management#305, @MartinWeindel)
- [OPERATOR] Updated builder image from
golang:1.20.2
togolang:1.20.4
(gardener/external-dns-management#305, @MartinWeindel)