Skip to main content

Release Notes v1.97

Yake release notes and upgrade guide

Related upstream release notes / changelogs

Update cert-management to 0.15.0

[gardener/cert-management]

✨ New Features

  • [OPERATOR] Use dnsrecords.extensions.gardener.cloud API as an alternative to dnsentries.dns.gardener.cloud for DNS challenges. by @MartinWeindel [#177]

Docker Images

  • cert-management: europe-docker.pkg.dev/gardener-project/releases/cert-controller-manager:v0.15.0
Update provider-aws to 1.55.1

[gardener/gardener-extension-provider-aws]

🐛 Bug Fixes

  • [OPERATOR] Fixes a monitoring configuration issue that caused false CCM-down alerts to fire. by @AndreasBurger [#975]

Docker Images

  • gardener-extension-admission-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.55.1
  • gardener-extension-provider-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.55.1
Update provider-openstack to 1.40.1

[gardener/gardener-extension-provider-openstack]

🐛 Bug Fixes

  • [OPERATOR] Fixes a monitoring configuration issue that caused false CCM-down alerts to fire. by @kon-angelo [#789]

Docker Images

  • gardener-extension-admission-openstack: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-openstack:v1.40.1
  • gardener-extension-provider-openstack: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-openstack:v1.40.1
Update provider-gcp to 1.36.1

[gardener/gardener-extension-provider-gcp]

🐛 Bug Fixes

  • [OPERATOR] Fixes a monitoring configuration issue that caused false CCM-down alerts to fire. by @kon-angelo [#776]

🏃 Others

  • [OPERATOR] Fix an issue preventing the creation of NAT gateways on cloud routers with custom advertise mode by @kon-angelo [#777]

Docker Images

  • gardener-extension-admission-gcp: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-gcp:v1.36.1
  • gardener-extension-provider-gcp: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-gcp:v1.36.1
Update os-coreos to 1.22.0

[gardener/gardener-extension-os-coreos]

⚠️ Breaking Changes

  • [OPERATOR] This extension is no longer able to run with Gardener versions lower than v1.90 when the UseGardenerNodeAgent feature gate is disabled. by @rfranzke [#100]

🏃 Others

  • [DEVELOPER] The vendor directory was removed in favor of the go mod cache. by @LucaBernstein [#107]

Docker Images

  • gardener-extension-os-coreos: europe-docker.pkg.dev/gardener-project/releases/extensions/os-coreos:v1.22.0
Update provider-azure to 1.44.1

[gardener/gardener-extension-provider-azure]

🐛 Bug Fixes

  • [OPERATOR] Fixes a monitoring configuration issue that caused false CCM-down alerts to fire. by @AndreasBurger [#884]
  • [USER] Fix panic that could occur when using zoned cluster and providing external vnet config by @AndreasBurger [#885]

Docker Images

  • gardener-extension-admission-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.44.1
  • gardener-extension-provider-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.44.1
Update gardener-controlplane to 1.96.3

[gardener/gardener]

✨ New Features

  • [OPERATOR] gardenlet's Pod garbage collector (part of its shoot-care controller) now considers Pods with reason NodeAffinity, i.e., it auto-deletes such Pods. by @rfranzke [#9949]

Docker Images

  • admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.96.3
  • apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.96.3
  • controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.96.3
  • gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.96.3
  • node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.96.3
  • operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.96.3
  • resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.96.3
  • scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.96.3
Update gardener-controlplane to 1.96.3

[gardener/gardener]

✨ New Features

  • [OPERATOR] gardenlet's Pod garbage collector (part of its shoot-care controller) now considers Pods with reason NodeAffinity, i.e., it auto-deletes such Pods. by @rfranzke [#9949]

Docker Images

  • admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.96.3
  • apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.96.3
  • controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.96.3
  • gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.96.3
  • node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.96.3
  • operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.96.3
  • resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.96.3
  • scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.96.3
Update gardenlet to 1.96.3

[gardener/gardener]

✨ New Features

  • [OPERATOR] gardenlet's Pod garbage collector (part of its shoot-care controller) now considers Pods with reason NodeAffinity, i.e., it auto-deletes such Pods. by @rfranzke [#9949]

Docker Images

  • admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.96.3
  • apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.96.3
  • controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.96.3
  • gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.96.3
  • node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.96.3
  • operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.96.3
  • resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.96.3
  • scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.96.3
Update cloudprofiles to 0.7.9
Update cloudprofiles to 0.7.10
Update provider-gcp to 1.36.2

[gardener/gardener-extension-provider-gcp]

🐛 Bug Fixes

  • [USER] Fixed a bug that could occur when configuring GPU-nodes, resulting in an invalid scheduling configuration. by @AndreasBurger [#782]

Docker Images

  • gardener-extension-admission-gcp: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-gcp:v1.36.2
  • gardener-extension-provider-gcp: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-gcp:v1.36.2
Update gardener-controlplane to 1.96.4

[gardener/gardener]

🐛 Bug Fixes

  • [OPERATOR] Fix a regression where etcd alerts for the virtual Garden cluster did not work. by @vicwicker [#9974]

Docker Images

  • admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.96.4
  • apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.96.4
  • controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.96.4
  • gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.96.4
  • node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.96.4
  • operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.96.4
  • resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.96.4
  • scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.96.4
Update gardener-controlplane to 1.96.4

[gardener/gardener]

🐛 Bug Fixes

  • [OPERATOR] Fix a regression where etcd alerts for the virtual Garden cluster did not work. by @vicwicker [#9974]

Docker Images

  • admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.96.4
  • apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.96.4
  • controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.96.4
  • gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.96.4
  • node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.96.4
  • operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.96.4
  • resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.96.4
  • scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.96.4
Update gardenlet to 1.96.4

[gardener/gardener]

🐛 Bug Fixes

  • [OPERATOR] Fix a regression where etcd alerts for the virtual Garden cluster did not work. by @vicwicker [#9974]

Docker Images

  • admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.96.4
  • apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.96.4
  • controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.96.4
  • gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.96.4
  • node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.96.4
  • operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.96.4
  • resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.96.4
  • scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.96.4
Update gardener-controlplane to 1.97.0

[gardener/gardener]

⚠️ Breaking Changes

  • [OPERATOR] The VPAForETCD feature gate is promoted to beta and now enabled by default. by @voelzmo [#9873]
  • [OPERATOR] The CoreDNSQueryRewriting feature gate has been promoted to GA. It was already enabled by default and can now no longer be turned off. The feature gate will be removed in a future release. by @ScheererJ [#9889]
  • [OPERATOR] The MutableShootSpecNetworkingNodes feature gate has been promoted to GA. It was already enabled by default and can now no longer be turned off. The feature gate will be removed in a future release. by @ScheererJ [#9890]
  • [DEVELOPER] The deprecated fields .spec.{reloadConfigFilePath,command} and .status.{units,files} have been removed from the extensions.gardener.cloud/v1alpha1.OperatingSystemConfig API. by @rfranzke [#9885]

📰 Noteworthy

  • [DEVELOPER] gardenlet now creates a secret called worker-pools-operatingsystemconfig-hashes in the shoot namespace on seed clusters. This secret will be used to upgrade the operating system config key calculation in the future. by @MichaelEischer [#9846]
  • [DEPENDENCY] The "list MachineDeployments" call in the generic Worker actuator has been moved right before its first usage to prevent that the list is outdated before it's used. by @rfranzke [#9925]

✨ New Features

  • [OPERATOR] The Kubelet configuration was enhanced to add configured worker taints during node registration. Earlier, only the machine-controller-manager was responsible to add taints to the Nodes which happened asynchronously, so that unwanted workload might have already scheduled to these workers. by @timuthy [#9872]
  • [OPERATOR] gardenlet is now capable of keeping itself updated by pulling configuration and deployment values from the garden cluster. This way, regular manual Helm deployments can be avoided. Read all about it here.
    Please note, a Gardenlet Helm chart is required on an OCI repository. Gardener will provide this officially in a future release. by @rfranzke [#9874]
  • [DEVELOPER] gardener-operator local development setup supports creating seeds, shoots and managed-seeds now. Please see the docs for details. by @oliver-goetz [#9763]

🐛 Bug Fixes

  • [OPERATOR] A bug causing the maintenance state to no get update even though maintenance succeeds has been fixed. by @acumino [#9945]

🏃 Others

  • [DEPENDENCY] The envoyproxy/envoy image has been updated to v1.30.2. Release Notes by @gardener-ci-robot [#9926]
  • [DEPENDENCY] The gardener/vpn2 image has been updated to 0.25.0. Release Notes by @gardener-ci-robot [#9904]
  • [DEPENDENCY] The registry.k8s.io/dns/k8s-dns-node-cache image has been updated to 1.23.1. by @gardener-ci-robot [#9938]
  • [DEPENDENCY] The gardener/terminal-controller-manager image has been updated to v0.33.0. Release Notes by @gardener-ci-robot [#9896]
  • [DEPENDENCY] The quay.io/kiwigrid/k8s-sidecar image has been updated to 1.27.4. by @gardener-ci-robot [#9943]
  • [DEPENDENCY] The quay.io/brancz/kube-rbac-proxy image has been updated to v0.18.0. by @gardener-ci-robot [#9917]
  • [OPERATOR] The auto-scaling by VPA is now disabled for the conntrack-fix sidecar container of kube-proxy. The corresponding container does not need vertical auto-scaling. by @ialidzhikov [#9953]

📖 Documentation

  • [OPERATOR] Clarify the importance of correctly configuring shoot service account issuer hostname if Gardener Operator is not used. by @dimityrmirchev [#9923]

Docker Images

  • admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.97.0
  • apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.97.0
  • controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.97.0
  • gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.97.0
  • node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.97.0
  • operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.97.0
  • resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.97.0
  • scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.97.0
Update gardener-controlplane to 1.97.0

[gardener/gardener]

⚠️ Breaking Changes

  • [OPERATOR] The VPAForETCD feature gate is promoted to beta and now enabled by default. by @voelzmo [#9873]
  • [OPERATOR] The CoreDNSQueryRewriting feature gate has been promoted to GA. It was already enabled by default and can now no longer be turned off. The feature gate will be removed in a future release. by @ScheererJ [#9889]
  • [OPERATOR] The MutableShootSpecNetworkingNodes feature gate has been promoted to GA. It was already enabled by default and can now no longer be turned off. The feature gate will be removed in a future release. by @ScheererJ [#9890]
  • [DEVELOPER] The deprecated fields .spec.{reloadConfigFilePath,command} and .status.{units,files} have been removed from the extensions.gardener.cloud/v1alpha1.OperatingSystemConfig API. by @rfranzke [#9885]

📰 Noteworthy

  • [DEVELOPER] gardenlet now creates a secret called worker-pools-operatingsystemconfig-hashes in the shoot namespace on seed clusters. This secret will be used to upgrade the operating system config key calculation in the future. by @MichaelEischer [#9846]
  • [DEPENDENCY] The "list MachineDeployments" call in the generic Worker actuator has been moved right before its first usage to prevent that the list is outdated before it's used. by @rfranzke [#9925]

✨ New Features

  • [OPERATOR] The Kubelet configuration was enhanced to add configured worker taints during node registration. Earlier, only the machine-controller-manager was responsible to add taints to the Nodes which happened asynchronously, so that unwanted workload might have already scheduled to these workers. by @timuthy [#9872]
  • [OPERATOR] gardenlet is now capable of keeping itself updated by pulling configuration and deployment values from the garden cluster. This way, regular manual Helm deployments can be avoided. Read all about it here.
    Please note, a Gardenlet Helm chart is required on an OCI repository. Gardener will provide this officially in a future release. by @rfranzke [#9874]
  • [DEVELOPER] gardener-operator local development setup supports creating seeds, shoots and managed-seeds now. Please see the docs for details. by @oliver-goetz [#9763]

🐛 Bug Fixes

  • [OPERATOR] A bug causing the maintenance state to no get update even though maintenance succeeds has been fixed. by @acumino [#9945]

🏃 Others

  • [DEPENDENCY] The envoyproxy/envoy image has been updated to v1.30.2. Release Notes by @gardener-ci-robot [#9926]
  • [DEPENDENCY] The gardener/vpn2 image has been updated to 0.25.0. Release Notes by @gardener-ci-robot [#9904]
  • [DEPENDENCY] The registry.k8s.io/dns/k8s-dns-node-cache image has been updated to 1.23.1. by @gardener-ci-robot [#9938]
  • [DEPENDENCY] The gardener/terminal-controller-manager image has been updated to v0.33.0. Release Notes by @gardener-ci-robot [#9896]
  • [DEPENDENCY] The quay.io/kiwigrid/k8s-sidecar image has been updated to 1.27.4. by @gardener-ci-robot [#9943]
  • [DEPENDENCY] The quay.io/brancz/kube-rbac-proxy image has been updated to v0.18.0. by @gardener-ci-robot [#9917]
  • [OPERATOR] The auto-scaling by VPA is now disabled for the conntrack-fix sidecar container of kube-proxy. The corresponding container does not need vertical auto-scaling. by @ialidzhikov [#9953]

📖 Documentation

  • [OPERATOR] Clarify the importance of correctly configuring shoot service account issuer hostname if Gardener Operator is not used. by @dimityrmirchev [#9923]

Docker Images

  • admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.97.0
  • apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.97.0
  • controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.97.0
  • gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.97.0
  • node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.97.0
  • operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.97.0
  • resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.97.0
  • scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.97.0
Update gardenlet to 1.97.0

[gardener/gardener]

⚠️ Breaking Changes

  • [OPERATOR] The VPAForETCD feature gate is promoted to beta and now enabled by default. by @voelzmo [#9873]
  • [OPERATOR] The CoreDNSQueryRewriting feature gate has been promoted to GA. It was already enabled by default and can now no longer be turned off. The feature gate will be removed in a future release. by @ScheererJ [#9889]
  • [OPERATOR] The MutableShootSpecNetworkingNodes feature gate has been promoted to GA. It was already enabled by default and can now no longer be turned off. The feature gate will be removed in a future release. by @ScheererJ [#9890]
  • [DEVELOPER] The deprecated fields .spec.{reloadConfigFilePath,command} and .status.{units,files} have been removed from the extensions.gardener.cloud/v1alpha1.OperatingSystemConfig API. by @rfranzke [#9885]

📰 Noteworthy

  • [DEVELOPER] gardenlet now creates a secret called worker-pools-operatingsystemconfig-hashes in the shoot namespace on seed clusters. This secret will be used to upgrade the operating system config key calculation in the future. by @MichaelEischer [#9846]
  • [DEPENDENCY] The "list MachineDeployments" call in the generic Worker actuator has been moved right before its first usage to prevent that the list is outdated before it's used. by @rfranzke [#9925]

✨ New Features

  • [OPERATOR] The Kubelet configuration was enhanced to add configured worker taints during node registration. Earlier, only the machine-controller-manager was responsible to add taints to the Nodes which happened asynchronously, so that unwanted workload might have already scheduled to these workers. by @timuthy [#9872]
  • [OPERATOR] gardenlet is now capable of keeping itself updated by pulling configuration and deployment values from the garden cluster. This way, regular manual Helm deployments can be avoided. Read all about it here.
    Please note, a Gardenlet Helm chart is required on an OCI repository. Gardener will provide this officially in a future release. by @rfranzke [#9874]
  • [DEVELOPER] gardener-operator local development setup supports creating seeds, shoots and managed-seeds now. Please see the docs for details. by @oliver-goetz [#9763]

🐛 Bug Fixes

  • [OPERATOR] A bug causing the maintenance state to no get update even though maintenance succeeds has been fixed. by @acumino [#9945]

🏃 Others

  • [DEPENDENCY] The envoyproxy/envoy image has been updated to v1.30.2. Release Notes by @gardener-ci-robot [#9926]
  • [DEPENDENCY] The gardener/vpn2 image has been updated to 0.25.0. Release Notes by @gardener-ci-robot [#9904]
  • [DEPENDENCY] The registry.k8s.io/dns/k8s-dns-node-cache image has been updated to 1.23.1. by @gardener-ci-robot [#9938]
  • [DEPENDENCY] The gardener/terminal-controller-manager image has been updated to v0.33.0. Release Notes by @gardener-ci-robot [#9896]
  • [DEPENDENCY] The quay.io/kiwigrid/k8s-sidecar image has been updated to 1.27.4. by @gardener-ci-robot [#9943]
  • [DEPENDENCY] The quay.io/brancz/kube-rbac-proxy image has been updated to v0.18.0. by @gardener-ci-robot [#9917]
  • [OPERATOR] The auto-scaling by VPA is now disabled for the conntrack-fix sidecar container of kube-proxy. The corresponding container does not need vertical auto-scaling. by @ialidzhikov [#9953]

📖 Documentation

  • [OPERATOR] Clarify the importance of correctly configuring shoot service account issuer hostname if Gardener Operator is not used. by @dimityrmirchev [#9923]

Docker Images

  • admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.97.0
  • apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.97.0
  • controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.97.0
  • gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.97.0
  • node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.97.0
  • operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.97.0
  • resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.97.0
  • scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.97.0