v1.13.0

[gardener-extension-provider-aws]

Action Required

• [USER] The Infrastructure controller does now check for the required VPC attributes enableDnsSupport and enableDnsHostnames to be enabled when an existing VPC is used for the shoot infrastructure. If any of them is disabled then the reconciliation will fail (see also user guide). Make sure to enable these attributes for your existing VPCs that are used for shoots. (#161, @rfranzke)

Improvements

• [USER] A bug has been fixed which prevented the .networks.zones[].elasticIPAllocationID field in the InfrastructureConfig from being changed. (#165, @rfranzke)
• [USER] amazon/aws-ebs-csi-driver is now updated to v0.6.0. (#163, @ialidzhikov)
• [OPERATOR] provider-aws does now allow configuring the --volume-attach-limit flag of the AWS EBS CSI driver via aws.provider.extensions.gardener.cloud/volume-attach-limit annotation on Shoot. (#164, @ialidzhikov)
• [OPERATOR] A PodDisruptionBudget for the validation server is now automatically deployed as part of its Helm chart if the replica count is larger than 1. (#162, @rfranzke)
• [OPERATOR] Gateway endpoints are now also created when existing vpc (networks.vpc.id) is used. (#160, @ialidzhikov)

Docker Images

gardener-extension-provider-aws: eu.gcr.io/gardener-project/gardener/extensions/provider-aws:v1.13.0
gardener-extension-validator-aws: eu.gcr.io/gardener-project/gardener/extensions/validator-aws:v1.13.0

v1.12.0

[gardener-extension-provider-aws]

Action Required

• [OPERATOR] For EC2 instance types that do not support EBS encrypted volumes, please set the worker pool EBS volume encryption flag to false as mentioned in the machine volume settings. (#147, @prashanth26)

Most notable changes

• [USER] Enable encryption by default for AWS instance EBS volumes. (#147, @prashanth26)
• [OPERATOR] The logging configuration has been adapted to cater with Loki which was introduced as part of gardener/gardener#2515. If an older version of this extension is used with a Gardener version >= v1.8 and the Logging feature gate is enabled then the fluent-bit matcher won't catch the log anymore (resulting in the logs being collected, but not nicely parsed and instead displayed in nested JSON). It is recommended update to at least this extension version when Gardener >= v1.8 is used and the Logging feature gate is enabled. (#133, @Kristian-ZH)

Improvements

• [USER] create default VolumeSnapshotClass if kubernetes version >= 1.18 (#146, @runzexia)
• [USER] StorageClasses now allow for expansion of PVCs. (#141, @mvladev)
• [OPERATOR] The default webhook server port is now changed to 10250. (#153, @stoyanr)
• [OPERATOR] Worker extension allows configuring following parameters on machine-deployment: drainTimeout, creationTimeout, healthTimeout, maxEvictRetries, nodeConditions. (#149, @hardikdr)

[cloud-provider-aws]

Improvements

• [OPERATOR] k8s.io/legacy-cloud-providers is now updated to v0.17.9. (gardener-attic/cloud-provider-aws#4, @ialidzhikov)
• [OPERATOR] k8s.io/legacy-cloud-providers is now updated to v0.18.6. (gardener-attic/cloud-provider-aws#5, @ialidzhikov)

[machine-controller-manager]

Improvements

• [OPERATOR] Avoids race between secret finalizer creation/deletion between in-tree & OOT controllers (gardener/machine-controller-manager#487, @prashanth26)
• [OPERATOR] Enable finer machine configurations per MachineDeployment/MachineSet/Machines basis. Exposed configurations: MachineDrainTimeout, MachinHealthTimeout, MachineCreationTimeout, MaxEvictRetries, NodeConditions. (gardener/machine-controller-manager#478, @hardikdr)
• [DEVELOPER] Increased default concurrent worker syncs from 5 --> 10 (gardener/machine-controller-manager#491, @prashanth26)

Docker Images

gardener-extension-provider-aws: eu.gcr.io/gardener-project/gardener/extensions/provider-aws:v1.12.0
gardener-extension-validator-aws: eu.gcr.io/gardener-project/gardener/extensions/validator-aws:v1.12.0

v1.11.0

[gardener-extension-provider-aws]

Action Required

• [OPERATOR] Upgrade gardenctl to the latest version as creation of bastion nodes would not succeed. See gardenctl issue for more details. (#139, @mvladev)

Most notable changes

• [OPERATOR] IAM roles, policies and instance profiles for bastion instances are no longer created and existing ones are removed during the next infra reconciliation. (#139, @mvladev)

Improvements

• [USER] The csi-node-driver is now auto-scaled by the VPA in case the Shoot sets .spec.kubernetes.verticalPodAutoscaler.enabled=true. (#129, @rfranzke)
• [OPERATOR] A bug has been fixed, that caused the Infrastructure deletion to be blocked forever in case there are already running terraformer Pods. (#132, @tim-ebert)

[machine-controller-manager]

Improvements

• [OPERATOR] Added an option to use configDrive in the OpenStackMachineClass (gardener/machine-controller-manager#457, @zuzzas)
• [DEVELOPER] Bugfix: Drain machines with only a valid node (name) (gardener/machine-controller-manager#480, @prashanth26)

[terraformer]

Improvements

• [OPERATOR] terraform-provider-aws is now updated to 2.68.0. (gardener/terraformer#42, @ialidzhikov)
• [OPERATOR] terraform-provider-google and terraform-provider-google-beta are now updated to 3.27.0. (gardener/terraformer#42, @ialidzhikov)

Docker Images

gardener-extension-provider-aws: eu.gcr.io/gardener-project/gardener/extensions/provider-aws:v1.11.0
gardener-extension-validator-aws: eu.gcr.io/gardener-project/gardener/extensions/validator-aws:v1.11.0

v1.10.1

[gardener-extension-provider-aws]

Improvements

• [OPERATOR] A bug has been fixed, that caused the Infrastructure deletion to be blocked forever in case there are already running terraformer Pods. (2292163)

Docker Images

gardener-extension-provider-aws: eu.gcr.io/gardener-project/gardener/extensions/provider-aws:v1.10.1
gardener-extension-validator-aws: eu.gcr.io/gardener-project/gardener/extensions/validator-aws:v1.10.1

v1.10.0

[gardener-extension-provider-aws]

Improvements

• [USER] A bug has been fixed, that caused the Infrastructure not to be deleted for newly created clusters. (#124, @tim-ebert)
• [OPERATOR] Server side encryption will be enabled for provisioned s3 buckets. (#125, @swapnilgm)

[machine-controller-manager]

Improvements

• [OPERATOR] Azure: Fixes regression when using a VM image resource id instead of an URN (for example an image from a shared image gallery) (gardener/machine-controller-manager#475, @MSSedusch)
• [OPERATOR] CRDs are now generated with full OpenAPI schema. (gardener/machine-controller-manager#471, @mvladev)

[terraformer]

Improvements

• [OPERATOR] The OpenStack terraform provider is now used in version v1.28.0. (gardener/terraformer#41, @dkistner)

Docker Images

gardener-extension-provider-aws: eu.gcr.io/gardener-project/gardener/extensions/provider-aws:v1.10.0
gardener-extension-validator-aws: eu.gcr.io/gardener-project/gardener/extensions/validator-aws:v1.10.0

v1.9.0

[gardener-extension-provider-aws]

Most notable changes

• [USER] It is now possible to configure the IOPS for additional data volumes (earlier, it was only possible to configure them for the root volume). Additionally, it is possible to provide a EBS snapshot ID for a data volume whose contents will be restored to this volume. Please consult this documentation for more information. (#112, @rfranzke)
• [USER] It is now possible to configure additional data volumes for the worker machines. Additionally, it can be configured whether the disks shall be encrypted or not (default: false). Please consult this documentation for more information. (#105, @rfranzke)
• [OPERATOR] Until now provider-aws was maintaining a Terraform configuration which is both v0.12 and v0.11 compatible. The Terraform configuration is now adapted to the new Terraform language which makes it Terraform v0.11 incompatible. (#111, @ialidzhikov)

Improvements

• [OPERATOR] An issue preventing extensionsv1alpha1.BackupEntry to be deleted is now fixed. (#115, @ialidzhikov)
• [OPERATOR] Kubernetes dependencies are updated to v0.17.6. (#114, @ialidzhikov)
• [OPERATOR] An issue preventing error codes to be properly populated in .status.lastError.codes for Infrastructure is now fixed. (#107, @ialidzhikov)

[gardener]

Improvements

• [OPERATOR] Fixed a bug that lead to omitting the details message why a health check failed when writing the Extension CRD conditions. (gardener/gardener#2394, @danielfoehrKn)

[machine-controller-manager]

Most notable changes

• [DEVELOPER] Support for external / OOT (Out Of Tree) machine controller. A new provider can be maintained out of the core MCM repository. (gardener/machine-controller-manager#460, @prashanth26)

Improvements

• [OPERATOR] Enable support of snapshot-based volumes for machines in AWS. (gardener/machine-controller-manager#464, @hardikdr)

[terraformer]

Most notable changes

• [OPERATOR] Terraform version has been upgraded to 0.12.20. (gardener/terraformer#39, @minchaow)

Improvements

• [OPERATOR] Provider alicloud version has been upgraded to 1.84.0. (gardener/terraformer#39, @minchaow)

Docker Images

gardener-extension-provider-aws: eu.gcr.io/gardener-project/gardener/extensions/provider-aws:v1.9.0
gardener-extension-validator-aws: eu.gcr.io/gardener-project/gardener/extensions/validator-aws:v1.9.0

v1.8.2

[gardener-extension-provider-aws]

Improvements

• [OPERATOR] An issue preventing extensionsv1alpha1.BackupEntry to be deleted is now fixed. (e00e7e8)

Docker Images

gardener-extension-provider-aws: eu.gcr.io/gardener-project/gardener/extensions/provider-aws:v1.8.2
gardener-extension-validator-aws: eu.gcr.io/gardener-project/gardener/extensions/validator-aws:v1.8.2

v1.7.2

[gardener-extension-provider-aws]

Improvements

• [OPERATOR] The cloud-controller-manager is now scrapeable by Prometheus, fixing the false negative CloudControllerManagerDown alert. (#110, @vpnachev)

Docker Images

gardener-extension-provider-aws: eu.gcr.io/gardener-project/gardener/extensions/provider-aws:v1.7.2
gardener-extension-validator-aws: eu.gcr.io/gardener-project/gardener/extensions/validator-aws:v1.7.2

v1.8.1

[gardener-extension-provider-aws]

Improvements

• [OPERATOR] An issue preventing error codes to be properly populated in .status.lastError.codes for Infrastructure is now fixed. (618cbbb)

[gardener]

Improvements

• [OPERATOR] Fixed a bug that lead to omitting the details message why a health check failed when writing the Extension CRD conditions. (gardener/gardener#2394, @danielfoehrKn)

Docker Images

gardener-extension-provider-aws: eu.gcr.io/gardener-project/gardener/extensions/provider-aws:v1.8.1
gardener-extension-validator-aws: eu.gcr.io/gardener-project/gardener/extensions/validator-aws:v1.8.1

v1.8.0

[gardener-extension-provider-aws]

Most notable changes

• [USER] It is now possible to bring your own, pre-created Elastic IP and let the AWS extension associate it when creating NAT gateways. Please consult this documentation to get more information. (#96, @rfranzke)

Improvements

• [OPERATOR] ClusterRoles for the machine-controller-manager that might be orphaned now as they created with an earlier, buggy version of this controller are now cleaned up during startup. (#104, @rfranzke)
• [OPERATOR] The cloud-controller-manager is now scrapeable by Prometheus, fixing the false negative CloudControllerManagerDown alert. (#103, @rfranzke)
• [OPERATOR] The pre-defined ValidatingWebhookConfiguration assets now set sideEffects=None. This enables dry-run related operations, like kubectl diff, for core.gardener.cloud resources. (#89, @timuthy)

[cloud-provider-aws]

Improvements

• [OPERATOR] k8s.io/legacy-cloud-providers is now updated to v0.18.3. (gardener-attic/cloud-provider-aws#3, @ialidzhikov)

[gardener]

Improvements

• [USER] The generic Worker actuator does now exit its reconciliation flows early if it detects an error during the machine reconciliation. This allows to faster propagate problems to the end-user. (gardener/gardener#2348, @rfranzke)
• [USER] The extension health check library does now allow individual health checks to return the Progressing status. This allows to provide more accurate status information and less false negative health reports. (gardener/gardener#2289, @rfranzke)
• [OPERATOR] The Gardenlet sets an additional annotation to Extension CRDs during reconciliation to guarantee an update event for the watching clients. (gardener/gardener#2290, @danielfoehrKn)
• [OPERATOR] Fixes a bug in the extension libraries that could lead to duplicate reconciliation of extension resources. When respecting the operation annotation set by the Gardenlet during reconciliation, extension controllers now only watch the Extension CRD. (gardener/gardener#2290, @danielfoehrKn)
• [OPERATOR] Fixes a bug in the extension library of all extension resources that lead to not stopping the reconciliation of extension resources when the Shoot is in 'failed' state (Shoot.Status.lastOperation.state = Failed). (gardener/gardener#2279, @danielfoehrKn)
• [OPERATOR] Fixed a bug in the health check library that leads to too many health checks being executed when the Extension.Status changes. (gardener/gardener#2307, @danielfoehrKn)
• [OPERATOR] Fixed the health check condition.lastTransitionTime in the health check library. (gardener/gardener#2307, @danielfoehrKn)

[machine-controller-manager]

Improvements

• [USER] Azure: Add support for custom image plans for VMs (gardener/machine-controller-manager#463, @MSSedusch)
• [USER] Provide a way to specify "auth-extra-groups" field in created bootstrap tokens. (gardener/machine-controller-manager#442, @zuzzas)
• [USER] Support multiple network interfaces in the AWS driver (gardener/machine-controller-manager#441, @zuzzas)
• [OPERATOR] The mcm stopped adopting Nodes with empty ProviderID field (gardener/machine-controller-manager#451, @zuzzas)
• [OPERATOR] Bugfix: Continue with VM deletion when data disk doesn't exist for AWS. (gardener/machine-controller-manager#447, @prashanth26)
• [OPERATOR] Add GCP local ssd disk support (gardener/machine-controller-manager#414, @tennix)
• [DEVELOPER] Added support for multiple Data Disks in Azure and AliCloud. (gardener/machine-controller-manager#397, @guydaichs)

Docker Images

gardener-extension-provider-aws: eu.gcr.io/gardener-project/gardener/extensions/provider-aws:v1.8.0
gardener-extension-validator-aws: eu.gcr.io/gardener-project/gardener/extensions/validator-aws:v1.8.0