v1.49.0

[gardener/gardener-extension-provider-azure]

⚠️ Breaking Changes

• [USER] Deprecate DNSRecordConfig object. Please configure the target Azure management API via the provided secret by @kon-angelo [#1018]

✨ New Features

• [USER] Enable extra-create-metadata in csi-provisioner. by @kon-angelo [#1008]

🏃 Others

• [DEPENDENCY] Update go to version 1.23.3 by @hebelsan [#1005]
• [DEPENDENCY] Update gardener/gardener to v1.108.0 by @hebelsan [#1014]
• [OPERATOR] Create bastion vm from the info provided in the cloud profile bastion section by @hebelsan [#948]
• [OPERATOR] Fix an issue where the subnet name was not calculated correctly in the migration to multi-subnet setup by @kon-angelo [#1004]
• [OPERATOR] Updating CSI driver provisioner ClusterRole rules by @hebelsan [#988]
• [OPERATOR] Remove outdated "Basic" SKU loadbalancer migration documentation. by @kon-angelo [#1017]
• [OPERATOR] Remove the duplicate provider type check from the admission webhooks. by @LucaBernstein [#998]
• [OPERATOR] Add NamespacedCloudProfile admission mutation and validation to support custom machine images and types. by @LucaBernstein [#1016]
• [OPERATOR] Added validation to prevent IPv6-only/dual-stack clusters as they are not supported, yet. by @ScheererJ [#993]
• [DEVELOPER] Add gosec as sast makefile target by @hebelsan [#1006]
• [DEVELOPER] Update gardener/gardener to v1.105.0 by @hebelsan [#989]

Helm Charts

• admission-azure-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.49.0
• admission-azure-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.49.0
• provider-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.49.0

Docker Images

• gardener-extension-admission-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.49.0
• gardener-extension-provider-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.49.0

v1.48.1

[gardener/gardener-extension-provider-azure]

🐛 Bug Fixes

• [USER] Fix bug in decoding worker machineImages for existing shoots by @kon-angelo [#985]

Helm Charts

• admission-azure-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.48.1
• admission-azure-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.48.1
• provider-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.48.1

Docker Images

• gardener-extension-admission-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.48.1
• gardener-extension-provider-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.48.1

v1.48.0

[gardener/gardener-extension-provider-azure]

✨ New Features

• [USER] The provider-azure extension does now support shoot clusters with Kubernetes version 1.31. You should consider the Kubernetes release notes before upgrading to 1.31. by @ialidzhikov [#963]
• [USER] The admission webhook now validates CredentialsBindings. by @dimityrmirchev [#957]
• [USER] Enable support for the field shoot.Spec.CloudProfile alongside shoot.Spec.CloudProfileName and enable the future use of NamespacedCloudProfiles. by @LucaBernstein [#922]

🐛 Bug Fixes

• [OPERATOR] Fix nil pointer dereference if diagnostic profile without given storage URI is used. by @hebelsan [#975]

🏃 Others

• [OPERATOR] Update CCM and CSI-sidecar containers to latest version by @AndreasBurger [#974]
• [OPERATOR] Adds the ability to attach dataDisks with image references by @hebelsan [#891]
• [OPERATOR] The provider-azure extension no longer configures min/maxAllowed in any managed VPA resource. by @AndreasBurger [#973]
• [OPERATOR] Conditionally enable allow-egress-{tcp,udp} loadbalancers. by @kon-angelo [#958]

[gardener/machine-controller-manager-provider-azure]

🏃 Others

• [USER] Golang version upgraded to 1.22.5 by @rishabh-11 [gardener/machine-controller-manager-provider-azure#159]
• [USER] Adds the ability to attach dataDisks with image references by @hebelsan [gardener/machine-controller-manager-provider-azure#165]
• [USER] golangci-lint will now be used as the linter instead of the older golint by @hebelsan [gardener/machine-controller-manager-provider-azure#139]

[gardener/machine-controller-manager]

✨ New Features

• [DEVELOPER] MCM adds the name of the machine to node.gardener.cloud/machine-name label of the corresponding node. by @oliver-goetz [gardener/machine-controller-manager#919]
• [DEVELOPER] MCM replaces the magic string <<MACHINE_NAME>> in user data with the name of the machine when it is bootstrapped. by @oliver-goetz [gardener/machine-controller-manager#919]

🐛 Bug Fixes

• [OPERATOR] Fixed a bug where failure of machine initialization caused label updates to not happen. by @thiyyakat [gardener/machine-controller-manager#940]
• [OPERATOR] Fixed a bug where the Unitialised error code was blocking machine deletion by @rishabh-11 [gardener/machine-controller-manager#928]
• [DEVELOPER] Fixed bug that removed the shoot-- prefix from control cluster namespace for integration tests using the gardener local setup case by @thiyyakat [gardener/machine-controller-manager#935]

🏃 Others

• [OPERATOR] Drain timeout is now correctly honored for Pod eviction during Machine Drain by @sssash18 [gardener/machine-controller-manager#920]
• [OPERATOR] getVMStatus always redirects to InitiateDrain. It also populates the node label on the machine object by checking node.gardener.cloud/machine-name label on the nodes. by @thiyyakat [gardener/machine-controller-manager#940]
• [OPERATOR] golangci-lint will now be used as the linter instead of the older golint by @aaronfern [gardener/machine-controller-manager#929]
• [OPERATOR] Golang version used is now upgraded to 1.22.5 by @aaronfern [gardener/machine-controller-manager#929]
• [DEVELOPER] The following dependencies are updated:
  • k8s.io/* : v0.29.3 -> v0.31.0 by @ary1992 [gardener/machine-controller-manager#938]

📖 Documentation

• [OPERATOR] Broken API doc links are now fixed by @rishabh-11 [gardener/machine-controller-manager#927]

Helm Charts

• admission-azure-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.48.0
• admission-azure-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.48.0
• provider-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.48.0

Docker Images

• gardener-extension-admission-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.48.0
• gardener-extension-provider-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.48.0

v1.47.3

[gardener/gardener-extension-provider-azure]

🏃 Others

• [OPERATOR] Do not reconcile user-configured NAT Gateways in the gardener subnet. by @kon-angelo [#979]

Helm Charts

• admission-azure-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.47.3
• admission-azure-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.47.3
• provider-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.47.3

Docker Images

• gardener-extension-admission-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.47.3
• gardener-extension-provider-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.47.3

v1.47.2

[gardener/gardener-extension-provider-azure]

🏃 Others

• [USER] Flow reconciliation is now more strict when filtering subnets. This prevents subnets of shoots that are deployed into one Vnet from interfering with reconciliation. by @AndreasBurger [#953]

Helm Charts

• admission-azure-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.47.2
• admission-azure-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.47.2
• provider-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.47.2

Docker Images

• gardener-extension-admission-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.47.2
• gardener-extension-provider-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.47.2

v1.47.1

[gardener/gardener-extension-provider-azure]

🏃 Others

• [OPERATOR] The storage domain to use for backup buckets is now inferred from the buckets' region if no explicit config is given by @AndreasBurger [#947]

Helm Charts

• admission-azure-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.47.1
• admission-azure-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.47.1
• provider-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.47.1

Docker Images

• gardener-extension-admission-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.47.1
• gardener-extension-provider-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.47.1

v1.47.0

[gardener/gardener-extension-provider-azure]

🏃 Others

• [OPERATOR] The BackupBucket controller now adds an additional field in the generated secret to indicate the blob storage service domain. This can be used to create blobs in other Azure environments like CN or USGov. by @kon-angelo [#931]
• [OPERATOR] The shoot-webhook that mutates the calico-node DaemonSet does now specify object selector. The webhook will now intercept only requests for the calico-node DaemonSet. by @ialidzhikov [#903]

Helm Charts

• admission-azure-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-application:v1.47.0
• admission-azure-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure-runtime:v1.47.0
• provider-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.47.0

Docker Images

• gardener-extension-admission-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.47.0
• gardener-extension-provider-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.47.0

v1.46.2

[gardener/gardener-extension-provider-azure]

🏃 Others

• [OPERATOR] DNSRecord Actuator client will now default to the public Azure cloud if no explicit config is given (instead of failing) by @AndreasBurger [#938]

Helm Charts

• admission-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure:v1.46.2
• provider-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.46.2

Docker Images

• gardener-extension-admission-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.46.2
• gardener-extension-provider-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.46.2

v1.46.1

[gardener/gardener-extension-provider-azure]

🐛 Bug Fixes

• [USER] Also pass cloud instance name to the cloud control manager by @AndreasBurger [#937]

Helm Charts

• admission-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure:v1.46.1
• provider-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.46.1

Docker Images

• gardener-extension-admission-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.46.1
• gardener-extension-provider-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.46.1

v1.46.0

[gardener/gardener-extension-provider-azure]

📰 Noteworthy

• [USER] When no CloudConfiguration is given, the Azure Cloud instance to connect to will be inferred from the region configured for the shoot by @AndreasBurger [#875]

✨ New Features

• [OPERATOR] Helm charts of extension and admission controller are published as OCI artifacts now. by @oliver-goetz [#920]

🐛 Bug Fixes

• [OPERATOR] Removed unnecessary preStop hook from node-driver-registrar in csi-driver-node, as socket removal is now handled internally by node-driver-registrar, resolving distroless image error. by @AndreasBurger [#912]

🏃 Others

• [OPERATOR] A priorityClassName can now be set for the admission deployment via the gardener-extension-admission-azure Helm chart. by @timuthy [#913]
• [OPERATOR] Update the VPA CRD used for testing locally by @hebelsan [#926]
• [OPERATOR] Inserts architecture from worker to the machine class by @sssash18 [#924]
• [OPERATOR] Deletion will now continue if non-gardener-managed loadbalancers and subnets were already deleted beforehand by @AndreasBurger [#925]
• [OPERATOR] Starting with gardenlet >= v1.98.0, use controlplane webhook object selector to limit mutator calls. by @LucaBernstein [#905]

[gardener/machine-controller-manager-provider-azure]

📰 Noteworthy

• [USER] Fixed a bug that prevented everything but authentication from connecting to non-public Azure Cloud instances. by @AndreasBurger [gardener/machine-controller-manager-provider-azure#157]

Helm Charts

• admission-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-azure:v1.46.0
• provider-azure: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-azure:v1.46.0

Docker Images

• gardener-extension-admission-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-azure:v1.46.0
• gardener-extension-provider-azure: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-azure:v1.46.0