Bump github.com/gardener/gardener from 1.112.1 to 1.113.0

[dependabot]

Bumps github.com/gardener/gardener from 1.112.1 to 1.113.0.

Release notes

Sourced from github.com/gardener/gardener's releases.

v1.113.0

[gardener/gardener]

⚠️ Breaking Changes

• [OPERATOR] There is an incompatible change in the Garden (gardens.operator.gardener.cloud) custom resource: Fields .spec.runtimeCluster.networking.{nodes,pods,services} and .spec.virtualCluster.networking.services were changed from type string to type []string, e.g., in JSON format, replace "nodes": "10.0.0.0/16" with "nodes": ["10.0.0.0/16"]. by @​ScheererJ #11251

📰 Noteworthy

• [OPERATOR] Incoming reverse VPN connections no longer get authenticated by the reversed-vpn-auth-server as the authentication logic was moved to envoy itself. by @​Wieneo #11328
• [OPERATOR] The apiserver-proxy component does not use the proxy protocol anymore, see GEP-30. by @​Wieneo #11364
• [OPERATOR] The shoot.gardener.cloud/managed-seed-api-server annotation is deprecated and will be removed in a future release. Instead, consider enabling high availability for the ManagedSeed's Shoot control plane. by @​ialidzhikov #11372
• [OPERATOR] Added a new feature gate called "RemoveAPIServerProxyLegacyPort", which disables the unused proxy port (8443) on the istio-ingressgateway Services. Operators can choose to remove the legacy apiserver-proxy port as soon as all shoots have switched to the new apiserver-proxy configuration. They might want to do so if they activate the ACL extension, which is vulnerable to proxy protocol headers of untrusted clients on the apiserver-proxy port. by @​Wieneo #11380

✨ New Features

• [USER] gardener-operator maintains information about Gardener API Server configuration in the world readable ConfigMap gardener-info in the gardener-system-public Namespace, read here for more details about the content of theConfigMap. by @​vpnachev #11238
• [OPERATOR] Enhance the gardener-operator to allow specification of more than a single network range for .spec.runtimeCluster.networking.nodes, .spec.runtimeCluster.networking.pods, .spec.runtimeCluster.networking.services, and .spec.virtualCluster.networking.services, which also allows dual-stack configurations. by @​ScheererJ #11251
• [OPERATOR] Introduces shoot_operation_duration_seconds metric to record Shoot operation Create and Delete. by @​simcod #10971
• [OPERATOR] Gardener can now support clusters with Kubernetes version 1.32. To allow creation/update of 1.32 clusters you will have to update the version of your provider extension(s) to a version that supports 1.32 as well. Please consult the respective releases and notes in the provider extension's repository. by @​marc1404 #11197
• [OPERATOR] CloudProfile.spec.limits.maxNodesTotal can be used to limit the maximum number of nodes a shoot can have during runtime. See the documentation for more details. by @​timebertt #11279
• [DEVELOPER] Gardener can now support clusters with Kubernetes version 1.32. Extension developers have to prepare individual extensions as well to work with 1.32. by @​marc1404 #11197

🐛 Bug Fixes

• [OPERATOR] A bug which prevented usage of labels with seed.gardener.cloud/ prefix on Seed, ManagedSeed, BackupEntry, and Shoot resources has been fixed. by @​rfranzke #11485
• [OPERATOR] A misleading error message appearing when an operator has wrongly configured OIDC config for the Gardener Dashboard in the Garden resource was fixed. by @​dimityrmirchev #11432
• [USER] The ETCD encryption config now properly configures a 32-byte key. by @​dimityrmirchev #11150

🏃 Others

• [DEPENDENCY] The following dependencies have been updated:
  • gardener/dependency-watchdog from v1.3.0 to v1.4.0. Release Notes
  • github.com/gardener/dependency-watchdog from v1.3.0 to v1.4.0. by @​gardener-ci-robot #11423
• [DEPENDENCY] The following dependencies have been updated:
  • quay.io/brancz/kube-rbac-proxy from v0.18.2 to v0.19.0. by @​gardener-ci-robot #11419
• [DEPENDENCY] The following dependencies have been updated:
  • credativ/plutono from v7.5.35 to v7.5.36. Release Notes by @​gardener-ci-robot #11316
• [DEPENDENCY] The following dependencies have been updated:
  • gardener/alpine-conntrack from 3.21.1 to 3.21.3. Release Notes by @​gardener-ci-robot #11409
• [DEPENDENCY] The following dependencies have been updated:
  • gardener/apiserver-proxy from v0.18.0 to v0.19.0. Release Notes by @​gardener-ci-robot #11330
• [DEPENDENCY] The following dependencies have been updated:
  • gcr.io/istio-release/pilot from 1.23.4 to 1.23.5.
  • gcr.io/istio-release/proxyv2 from 1.23.4 to 1.23.5. by @​gardener-ci-robot #11371
• [DEPENDENCY] The following dependencies have been updated:
  • gardener/vpn2 from 0.34.0 to 0.35.0. Release Notes by @​gardener-ci-robot #11348
• [DEPENDENCY] The following dependencies have been updated:
  • gardener/vpn2 from 0.35.0 to 0.36.0. Release Notes by @​gardener-ci-robot #11438
• [DEPENDENCY] The following dependencies have been updated:
  • credativ/vali from v2.2.20 to v2.2.21. Release Notes by @​gardener-ci-robot #11313
• [DEVELOPER] The following dependencies are updated:
  • k8s.io/*: v0.31.6 -> v0.32.2
  • sigs.k8s.io/controller-runtime: v0.19.6 -> v0.20.2

... (truncated)

Commits

• 25dfd82 Release v1.113.0
• e9c0d41 fix couple circumstances where gardenlet could get stuck in crash loop if fea...
• 3820526 [release-v1.113] Rename seed.gardener.cloud/ prefix to `name.seed.gardener....
• 74e6d99 [release-v1.113] [GEP-31] Adapt OperatingSystemConfig reconciler and extens...
• 5437a3d [release-v1.113] Stop skipping extension BackupEntry reconciliation for fai...
• ea2cceb Prevent concurrent map read/writes in Extension deployer component (#11468)
• fe28269 [operator] Ensure Garden environment is clean when Garden is deleted (#11460)
• 040f450 chore(deps): update dependency crate-ci/typos to v1.29.8 (#11459)
• 5c58b3b Fix calculation maintenance time window in e2e tests (#11463)
• f756b0d Increase timeout for migration to 20m (#11455)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[gardener-robot]

@dependabot[bot] Thank you for your contribution.

[gardener-robot-ci-2]

Thank you @dependabot[bot] for your contribution. Before I can start building your PR, a member of the organization must set the required label(s) {'reviewed/ok-to-test'}. Once started, you can check the build status in the PR checks section below.