Releases: gardener/gardener-extension-provider-gcp
v1.19.0
[gardener-extension-provider-gcp]
✨ New Features
- [USER] The GCP extension does now support shoot clusters with Kubernetes version 1.22. You should consider the Kubernetes release notes before upgrading to 1.22. (#314, @timuthy)
- [USER] The following images are updated (see CHANGELOG for more details): (#297, @tareqhs)
- k8s.gcr.io/sig-storage/csi-snapshotter: v2.1.5 -> v3.0.3
- k8s.gcr.io/sig-storage/snapshot-controller: v2.1.5 -> v3.0.3
- [OPERATOR] NAT IP names in infrastructure config are now checked if they exist and are available, and if not the issue is reported as
ERR_CONFIGURATION_PROBLEM
with a clear error message. (#312, @stoyanr)
🐛 Bug Fixes
- [USER] An issue has been fixed which prevented worker nodes with separate data disks to get ready. (#327, @timuthy)
🏃 Others
- [USER] Add validation for min # of workers required to support scale-up from zero. (#296, @AxiomSamarth)
- [DEVELOPER] Missing or wrong doc comments will now be reported by the linter. (#319, @stoyanr)
[cloud-provider-gcp]
✨ New Features
- [DEPENDENCY]
k8s.io/legacy-cloud-providers
is now updated tov1.22.0
. (gardener/cloud-provider-gcp@0a921e8)
🏃 Others
- [OPERATOR]
k8s.io/legacy-cloud-providers
is now updated tov0.18.20
. (gardener/cloud-provider-gcp#10, @ialidzhikov) - [OPERATOR]
k8s.io/legacy-cloud-providers
is now updated tov0.19.14
. (gardener/cloud-provider-gcp#9, @vpnachev) - [OPERATOR]
k8s.io/legacy-cloud-providers
is now updated tov0.20.10
. (gardener/cloud-provider-gcp#7, @vpnachev) - [OPERATOR]
k8s.io/legacy-cloud-providers
is now updated tov0.21.4
. (gardener/cloud-provider-gcp#8, @vpnachev) - [DEVELOPER] The alpine version has been updated to
v3.13.5
. (gardener/cloud-provider-gcp@fb0b90f) - [DEVELOPER] The Golang version has been updated to
v1.16.7
. (gardener/cloud-provider-gcp@fb0b90f)
v1.18.0
[gardener-extension-provider-gcp]
⚠️ Breaking Changes
- [OPERATOR] The default leader election resource lock of
gardener-extension-provider-gcp
has been changed fromconfigmapsleases
toleases
. (#287, @ialidzhikov)- Please make sure, that you had at least
gardener-extension-provider-gcp@v1.15
running before upgrading tov1.18.0
, so that it has successfully required leadership with the hybrid resource lock (configmapsleases
) at least once.
- Please make sure, that you had at least
✨ New Features
- [OPERATOR] It is now possible to specify the leader election resource lock via the chart value
leaderElection.resourceLock
(defaults toleases
). (#287, @ialidzhikov)
🐛 Bug Fixes
- [USER] Do not trigger a node rollout when switching from
CRI.Name==nil
toCRI.Name==docker
. (#290, @BeckerMax)
🏃 Others
- [USER] The following image is updated: (#301, @ialidzhikov)
- k8s.gcr.io/sig-storage/csi-provisioner: v1.6.0 -> v2.1.2 (see CHANGELOG)
- [OPERATOR] machine-controller-manager logs are exposed to the end-users (#300, @vlvasilev)
[machine-controller-manager]
⚠️ Breaking Changes
- [OPERATOR] Draining of pods with PVs (Persistent Volume) now waits for re-attachment of PV on a different node when
volumeAttachments
support is enabled on the cluster. Else it falls back to the default PV reattachment timeout value configured. The default value is90s
and this can be overwritten via themachine-pv-reattach-timeout
flag. Please enable permissions to allow listing ofvolumeAttachments
resource while importing these changes. (gardener/machine-controller-manager#608, @prashanth26)
✨ New Features
- [USER] Increase default concurrent object syncs to 50 to allow more concurrent reconciles to occur. (gardener/machine-controller-manager#629, @prashanth26)
- [USER] Machine rollouts are now more as desired with the number of replicas always maintained to
desired + maxSurge
. Earlier machines in termination were left out of this calculation but now is considered with this change. (gardener/machine-controller-manager#627, @prashanth26) - [OPERATOR] Finalizers will be added to the MachineClass which is used by at least one machine. Machines whose backing MachineClass does not have finalizers shall not be reconciled. (gardener/machine-controller-manager#593, @AxiomSamarth)
- [DEVELOPER] Replace integration test with unit test to test the functionality to freeze MachineSet (gardener/machine-controller-manager#620, @AxiomSamarth)
🐛 Bug Fixes
- [OPERATOR] Avoids blocking of drain call when the buffer is full for the volumeAttachmentHandlers. (gardener/machine-controller-manager#627, @prashanth26)
- [DEVELOPER] Test framework now fetches secrets from the correct (control) APIServer while running tests. (gardener/machine-controller-manager#617, @himanshu-kun)
🏃 Others
- [OPERATOR] Nodes attached to the cluster without MCM support are now annotated with
"node.machine.sapcloud.io/notManagedByMCM": "1"
. This is then ignored by the MCM for further processing. (gardener/machine-controller-manager#612, @himanshu-kun)
[machine-controller-manager-provider-gcp]
🏃 Others
- [USER] Added documentation (gardener/machine-controller-manager-provider-gcp#21, @AxiomSamarth)
- [DEVELOPER] Revendored MCM libraries @ v0.40.0 (gardener/machine-controller-manager-provider-gcp#21, @AxiomSamarth)
[terraformer]
⚠️ Breaking Changes
- [DEVELOPER] Once the
azurerm
provider plugin is updated fromv2.36.0
tov2.68.0
theskip_provider_registration
flag in theprovider
section need to be set totrue
. (gardener/terraformer#99, @dkistner)
🏃 Others
- [OPERATOR] The terraform
azurerm
provider plugin is updated fromv2.36.0
tov2.68.0
. (gardener/terraformer#99, @dkistner) - [OPERATOR] The following terraform provider plugins are updated: (gardener/terraformer#98, @ialidzhikov)
- hashicorp/terraform-provider-aws: 3.18.0 -> 3.32.0
- [OPERATOR] The following terraform provider plugin is updated: (gardener/terraformer#96, @minchaow)
- aliyun/terraform-provider-alicloud: 1.124.0 -> 1.124.2
Docker Images
gardener-extension-provider-gcp: eu.gcr.io/gardener-project/gardener/extensions/provider-gcp:v1.18.0
gardener-extension-admission-gcp: eu.gcr.io/gardener-project/gardener/extensions/admission-gcp:v1.18.0
v1.17.0
[gardener-extension-provider-gcp]
⚠️ Breaking Changes
- [OPERATOR] This version of provider-gcp requires at least Gardener v1.21.0. Before upgrading to this version of provider-gcp, make sure that you upgraded to at least Gardener v1.21.0. (#283, @ialidzhikov)
🐛 Bug Fixes
- [OPERATOR] provider-gcp is now using a separate ManagedResource for ControlPlane CRDs (
volumesnapshot
related CRDs) that are installed in the Shoot cluster to separate the deletion of CRDs from the deletion of the RBAC for controller leader election. (#283, @ialidzhikov) - [OPERATOR] An issue causing Infrastructure with multiple
.networks.cloudNAT.natIPNames
to fail to be reconciled is now fixed. (#266, @ialidzhikov)
🏃 Others
- [USER] The following image is updated (see CHANGELOG for more details): (#279, @ialidzhikov)
- k8s.gcr.io/sig-storage/livenessprobe: v2.2.0 -> v2.3.0
- [OPERATOR] When creating or updating shoots, any Kubernetes feature gates mentioned are validated against the Kubernetes version. If any feature gates are unknown or not supported in the Kubernetes version, the validation fails. (#280, @stoyanr)
- [OPERATOR] Replace infrastructure's terraform helm chart with native go templates. (#268, @kon-angelo)
[machine-controller-manager]
✨ New Features
- [USER] Skip node drain on ReadOnlyFileSystem condition (gardener/machine-controller-manager#605, @himanshu-kun)
- [OPERATOR] Improved log details to include node name and provider-ID in addition to existing machine name (gardener/machine-controller-manager#607, @himanshu-kun)
🐛 Bug Fixes
- [OPERATOR] Fix panic when machineClass
secretRef
isn't found. (gardener/machine-controller-manager#609, @jsravn) - [DEVELOPER] Adds finalizers on machines that are adopted by the machine controller. Without this change, it causes issues while migrating machine objects between clusters. (gardener/machine-controller-manager#611, @prashanth26)
[machine-controller-manager-provider-gcp]
⚠️ Breaking Changes
- [DEVELOPER] machine-controller-manager-provider-gcp now requires new RBAC permissions - list and watch access for PodDisruptionBudgets in the target cluster. (gardener/machine-controller-manager-provider-gcp#14, @ialidzhikov)
🏃 Others
- [USER] Support creation of machines with disk type of
pd-balanced
. (gardener/machine-controller-manager-provider-gcp#19, @prashanth26) - [OPERATOR] machine-controller-manager-provider-gcp now checks for misconfigured PodDisruptionBudgets when Pod eviction fails during Node drain. (gardener/machine-controller-manager-provider-gcp#14, @ialidzhikov)
- [DEPENDENCY] Revendors MCM dependent libraries for
v0.39.0
version. (gardener/machine-controller-manager-provider-gcp#17, @AxiomSamarth)
[terraformer]
✨ New Features
- [OPERATOR] Terraformer now copies Terraform's error outputs to
/terraform-termination-log
to make it available in the containers termination message for better analyzing and more readable error messages (e.g. in the Shoot status). (gardener/terraformer#93, @timebertt)
🏃 Others
- [USER] Terraform provider of Alicloud is upgraded to 1.121.2. (gardener/terraformer#91, @minchaow)
- [OPERATOR] The following terraform provider plugin is updated: (gardener/terraformer#95, @minchaow)
- aliyun/terraform-provider-alicloud: 1.121.2 -> 1.124.0
- [OPERATOR] The terraform version for the alicloud, all, aws, azure, gcp, openstack, slim images is updated: (gardener/terraformer#94, @ialidzhikov)
- hashicorp/terraform: 0.12.29 -> 0.12.31
Docker Images
gardener-extension-provider-gcp: eu.gcr.io/gardener-project/gardener/extensions/provider-gcp:v1.17.0
gardener-extension-admission-gcp: eu.gcr.io/gardener-project/gardener/extensions/admission-gcp:v1.17.0
v1.16.2
[machine-controller-manager]
✨ New Features
- [USER] Skip node drain on ReadOnlyFileSystem condition (gardener/machine-controller-manager#605, @himanshu-kun)
- [OPERATOR] Improved log details to include node name and provider-ID in addition to existing machine name (gardener/machine-controller-manager#607, @himanshu-kun)
🐛 Bug Fixes
- [OPERATOR] Fix panic when machineClass
secretRef
isn't found. (gardener/machine-controller-manager#609, @jsravn) - [DEVELOPER] Adds finalizers on machines that are adopted by the machine controller. Without this change, it causes issues while migrating machine objects between clusters. (gardener/machine-controller-manager#611, @prashanth26)
[machine-controller-manager-provider-gcp]
⚠️ Breaking Changes
- [DEVELOPER] machine-controller-manager-provider-gcp now requires new RBAC permissions - list and watch access for PodDisruptionBudgets in the target cluster. (gardener/machine-controller-manager-provider-gcp#14, @ialidzhikov)
🏃 Others
- [OPERATOR] machine-controller-manager-provider-gcp now checks for misconfigured PodDisruptionBudgets when Pod eviction fails during Node drain. (gardener/machine-controller-manager-provider-gcp#14, @ialidzhikov)
- [DEPENDENCY] Revendors MCM dependent libraries for
v0.39.0
version. (gardener/machine-controller-manager-provider-gcp#17, @AxiomSamarth)
Docker Images
gardener-extension-provider-gcp: eu.gcr.io/gardener-project/gardener/extensions/provider-gcp:v1.16.2
gardener-extension-admission-gcp: eu.gcr.io/gardener-project/gardener/extensions/admission-gcp:v1.16.2
v1.16.1
[gardener-extension-provider-gcp]
🐛 Bug Fixes
- [OPERATOR] An issue causing Infrastructure with multiple
.networks.cloudNAT.natIPNames
to fail to be reconciled is now fixed. (#267, @ialidzhikov)
Docker Images
gardener-extension-provider-gcp: eu.gcr.io/gardener-project/gardener/extensions/provider-gcp:v1.16.1
gardener-extension-admission-gcp: eu.gcr.io/gardener-project/gardener/extensions/admission-gcp:v1.16.1
v1.16.0
[gardener-extension-provider-gcp]
⚠️ Breaking Changes
- [USER] Extension resource configs (
InfrastructureConfig
,ControlPlaneConfigs
,WorkerConfig
) are now deserialized in "strict" mode, including during validation by the admission webhook. This means that resources with fields that are not allowed by the API schema will be rejected by validation. Creating new shoots containing such resources will not be possible, and reconciling existing shoots will fail with an appropriate error until you manually update the shoot to make sure any extension resource configs contained in it are valid. (#249, @stoyanr)
✨ New Features
- [USER] The GCP extension does now support shoot clusters with Kubernetes version 1.21. You should consider the Kubernetes release notes before upgrading to 1.21. (#255, @rfranzke)
🏃 Others
- [USER] The following images are updated: (#252, @ialidzhikov)
- k8s.gcr.io/sig-storage/csi-snapshotter: v2.1.4 -> v2.1.5
- k8s.gcr.io/sig-storage/snapshot-controller: v2.1.4 -> v2.1.5
- k8s.gcr.io/sig-storage/livenessprobe: v2.0.0 -> v2.2.0
- [OPERATOR] The few CSI sidecar containers that didn't specify any resource requests and limits do now specify appropriate requests and limits. (#254, @ialidzhikov)
- [OPERATOR] admission-gcp memory usage is reduced by not using cache for reading Secrets. (#253, @ialidzhikov)
[cloud-provider-gcp]
✨ New Features
- [DEPENDENCY]
k8s.io/legacy-cloud-providers
is now updated tov0.21.0
. (gardener/cloud-provider-gcp@56c687c)
🏃 Others
- [DEVELOPER] The alpine version has been updated to
v3.13.4
. (gardener/cloud-provider-gcp@880405b) - [DEVELOPER] The Golang version has been updated to
v1.16.3
. (gardener/cloud-provider-gcp@880405b)
[machine-controller-manager]
🐛 Bug Fixes
- [DEVELOPER] Azure: Improved NIC creation and deletion logic to handle NIC creation and deletions more gracefully. (gardener/machine-controller-manager#594, @prashanth26)
[terraformer]
🐛 Bug Fixes
- [OPERATOR] The aws provider has been downgraded from
3.32.0
to3.18.0
due to issue with additionally required permission for the AWS accounts. (gardener/terraformer#87, @vpnachev)
🏃 Others
- [OPERATOR] The following terraform provider plugins are updated: (gardener/terraformer#88, @ialidzhikov)
- hashicorp/terraform-provider-google: 3.59.0 -> 3.62.0
- hashicorp/terraform-provider-google-beta: 3.59.0 -> 3.62.0
- [DEVELOPER] The golang has been updated to
1.16.2
, the alpine has been updated to3.13.2
. (gardener/terraformer#85, @vpnachev)
Docker Images
gardener-extension-provider-gcp: eu.gcr.io/gardener-project/gardener/extensions/provider-gcp:v1.16.0
gardener-extension-admission-gcp: eu.gcr.io/gardener-project/gardener/extensions/admission-gcp:v1.16.0
v1.15.0
[gardener-extension-provider-gcp]
⚠️ Breaking Changes
- [OPERATOR] The
ValidatingWebhookConfiguration
of the GCP admission controller has been changed from versionv1beta1
tov1
. Please make sure to deploy the admission controller only to clusters with a Kubernetes version >= 1.16 (#230, @timuthy)
✨ New Features
- [OPERATOR] The secrets and configmaps used by the terraformer now have an owner reference to the Infrastructure resource. (#228, @vpnachev)
- [OPERATOR] The GCP extension now uses a new terraformer image only including the GCP terraform provider plugin (
v2.1.0
). (#227, @timebertt)
🐛 Bug Fixes
- [USER] The following images are updated (see CHANGELOG for more details): (#237, @ialidzhikov)
- quay.io/k8scsi/csi-snapshotter: v2.1.3 -> v2.1.4
- quay.io/k8scsi/snapshot-controller: v2.1.3 -> v2.1.4
🏃 Others
- [OPERATOR] The cloud-controller-manager VPA does now specify minAllowed values to prevent too low resource recommendations from VPA that lead to OOM. (#240, @ialidzhikov)
- [OPERATOR] All resources are now deleted from the shoot namespace during migration. Also, during restore the MCM is now scaled down to
0
and not deleted. (#239, @kris94) - [OPERATOR] Golang has been updated to 1.15.5 (#228, @vpnachev)
- [OPERATOR] Alpine base image has been updated to 3.12.3. (#228, @vpnachev)
- [OPERATOR] Reducing credential update complexity by all the machine classes using the new .{spec.}credentialsSecretRef field. (#222, @danielfoehrKn)
- This means all worker pools use the same "cloudprovider" secret containing only the cloud provider credentials.
- The existing MachineClass SecretReference only contains the user data that is different for each pool.
- [DEVELOPER]
github.com/gardener/gardener
dependency is now updated tov1.19.0
. For the complete list of changes, see the release notes. (#245, @ialidzhikov)
📰 Noteworthy
- [OPERATOR] The validator/admission component's Helm chart is now deploying a
VerticalPodAutoscaler
resource by default. If undesired or no VPA is available in the garden cluster then it can be turned of via.Values.global.vpa.enabled=false
. (#234, @rfranzke)
[cloud-provider-gcp]
🏃 Others
- [OPERATOR]
k8s.io/legacy-cloud-providers
is now updated tov0.17.17
. (gardener/cloud-provider-gcp@e653b08) - [OPERATOR]
k8s.io/legacy-cloud-providers
is now updated tov0.18.17
. (gardener/cloud-provider-gcp@9b73f86) - [OPERATOR]
k8s.io/legacy-cloud-providers
is now updated tov0.19.9
. (gardener/cloud-provider-gcp@5879ff3) - [OPERATOR]
k8s.io/legacy-cloud-providers
is now updated tov0.20.5
. (gardener/cloud-provider-gcp@996a14f)
[machine-controller-manager]
⚠️ Breaking Changes
- [DEVELOPER] machine-controller-manager now checks for misconfigured PodDisruptionBudgets (ones that require zero voluntary evictions and make impossible the graceful Node drain) and sets better Machine
.status.lastOperation.description
for such Machines. This change is breaking as out-of-tree providers need new RBAC permissions - list and watch access for PodDisruptionBudgets in the target cluster. (gardener/machine-controller-manager#591, @ialidzhikov)
🏃 Others
- [OPERATOR] Avoid the deletion of the machines in CrashLoopBackoff state by the safety controller (gardener/machine-controller-manager#589, @AxiomSamarth)
[terraformer]
🐛 Bug Fixes
- [OPERATOR] A bug was fixed that caused terraform to leak its finalizer on ConfigMaps and Secrets in case of an interrupt during
terraform destroy
. (gardener/terraformer#71, @timebertt) - [OPERATOR] A bug was fixed that caused terraform to leak its finalizer on ConfigMaps and Secrets in case of an interrupt during
terraform destroy
. (gardener/terraformer#72, @timebertt)
🏃 Others
- [OPERATOR] The following terraform provider plugins are updated: (gardener/terraformer#84, @ialidzhikov)
- hashicorp/terraform-provider-aws: 3.18.0 -> 3.32.0
- hashicorp/terraform-provider-google: 3.27.0 -> 3.59.0
- hashicorp/terraform-provider-google-beta: 3.27.0 -> 3.59.0
- [OPERATOR] The Terraformer now instantly removes its finalizer from the state
ConfigMap
if the state is empty anddestroy
is called. A separate Terraformdestroy
is not executed. (gardener/terraformer#80, @timuthy) - [OPERATOR] Terraformer will now publish an additional image without any pre-installed terraform plugins. (gardener/terraformer#77, @Diaphteiros)
- [OPERATOR] Provides support for the Equinix Metal provider, which replaces the Packet one (gardener/terraformer#73, @deitch)
- [OPERATOR] The terraformer-openstack use now the openstack provider in version v1.37.0 (gardener/terraformer#70, @kon-angelo)
- [OPERATOR] The terraformer-openstack use now the openstack provider in version v1.36.0 (gardener/terraformer#68, @dkistner)
- [OPERATOR] The configmaps and secrets used to contain terraform configuration, state and variables are now protected with a finalizer against accidental deletion. (gardener/terraformer#65, @vpnachev)
📰 Noteworthy
- [OPERATOR] Curl has been removed from the Terraformer image. (gardener/terraformer#69, @timuthy)
Docker Images
gardener-extension-provider-gcp: eu.gcr.io/gardener-project/gardener/extensions/provider-gcp:v1.15.0
gardener-extension-admission-gcp: eu.gcr.io/gardener-project/gardener/extensions/admission-gcp:v1.15.0
v1.14.0
[gardener-extension-provider-gcp]
✨ New Features
- [USER] The GCP extension does now support shoot clusters with Kubernetes version 1.20. You should consider the Kubernetes release notes before upgrading to 1.20. (#219, @rfranzke)
🏃 Others
- [USER] The following images are updated to address CVE-2020-8569: (#220, @ialidzhikov)
- quay.io/k8scsi/csi-snapshotter: v2.1.1 -> v2.1.3
- quay.io/k8scsi/snapshot-controller: v2.1.1 -> v2.1.3
- [USER] New dashboards which expose logs for
cloud-controller-manager
andcsi-driver-controller
. (#207, @Kristian-ZH) - [OPERATOR] A bug that was preventing the deletion machines with outdated credentials is now fixed. (#215, @ialidzhikov)
- [DEVELOPER]
github.com/gardener/gardener
dependency is now updated tov1.15.0
. (#225, @ialidzhikov)
📰 Noteworthy
- [OPERATOR] Logging in the infrastructure actuator has been improved to make it consistent in the logging format and more readable/helpful. (#208, @timebertt)
- [DEVELOPER] The infrastructure integration test can now be triggered on a PR by commenting
/test
instead of/test-single
. (#213, @timebertt)
[cloud-provider-gcp]
✨ New Features
- [DEPENDENCY]
k8s.io/legacy-cloud-providers
is now updated tov0.17.15
. (gardener/cloud-provider-gcp@307cc61) - [DEPENDENCY]
k8s.io/legacy-cloud-providers
is now updated tov0.18.13
. (gardener/cloud-provider-gcp@1af47f2) - [DEPENDENCY]
k8s.io/legacy-cloud-providers
is now updated tov0.19.5
. (gardener/cloud-provider-gcp@8e1ce1b) - [DEPENDENCY]
k8s.io/legacy-cloud-providers
is now updated tov0.20.0
. (gardener/cloud-provider-gcp@daa9198)
🏃 Others
- [DEVELOPER] The alpine version has been updated to
v3.12.1
. (gardener/cloud-provider-gcp@f9fb623) - [DEVELOPER] The Golang version has been updated to
v1.15.5
. (gardener/cloud-provider-gcp@f9fb623)
[machine-controller-manager]
✨ New Features
- [OPERATOR] All machine classes do now support an optional
.{spec.}credentialsSecretRef
field in addition to today's.{spec.}secretRef
field. If.{spec.}credentialsSecretRef
is non-nil then the provider credentials will be read out of this secret. The user-data for the machine bring-up is still required to be part of the secret referenced by.{spec.}secretRef
. (gardener/machine-controller-manager#578, @rfranzke) - [OPERATOR] Some machine class secrets are now supporting alternative data keys: (gardener/machine-controller-manager#578, @rfranzke)
- The machine class secret for Alicloud machines does now also accept the data keys
accessKeyID
andaccessKeySecret
as alternatives for today's keys. - The machine class secret for AWS machines does now also accept the data keys
accessKeyID
andsecretAccessKey
as alternatives for today's keys. - The machine class secret for Azure machines does now also accept the data keys
clientID
,clientSecret
,subscriptionID
andtenantID
as alternatives for today's keys. - The machine class secret for GCP machines does now also accept the data key
serviceaccount.json
as alternatives for today's key.
- The machine class secret for Alicloud machines does now also accept the data keys
🏃 Others
- [OPERATOR] Bumped AWS SDK version to v1.23.13 (gardener/machine-controller-manager#580, @zjj2wry)
- [OPERATOR] An issue causing panic when the encoded machine template hash length is less than expect limit is now fixed. (gardener/machine-controller-manager#575, @ialidzhikov)
- [OPERATOR] MCM will delete Azure machines even if the underlying resource group is already deleted. (gardener/machine-controller-manager#566, @dkistner)
- [OPERATOR] Set Machine Phase to Terminating before draining. (gardener/machine-controller-manager#564, @prashanth26)
- [OPERATOR] Update docker images to use gcr copy (gardener/machine-controller-manager#574, @prashanth26)
- [OPERATOR] Update docker image versions to
golang:1.15.5
&alpine:3.12.1
(gardener/machine-controller-manager#574, @prashanth26) - [OPERATOR] An issue causing panic when the encoded machine template hash length is less than expect limit is now fixed. (gardener/machine-controller-manager#577, @AxiomSamarth)
- [OPERATOR] Set Machine Phase to Terminating before draining. (gardener/machine-controller-manager#564, @prashanth26)
📰 Noteworthy
- [OPERATOR] Machine force deletion computation is based on deletionTimestamp instead of LastUpdatedTimestamp. (gardener/machine-controller-manager#564, @prashanth26)
[machine-controller-manager-provider-gcp]
✨ New Features
- [OPERATOR] The machine class secret does now also accept the data key
serviceaccount.json
as alternatives for today's key. (gardener/machine-controller-manager-provider-gcp#11, @rfranzke)
🏃 Others
- [USER] Vendors the MCM libraries for
v0.36.0
. It also fetches the credentials from theCredentialsSecretRef
field during migration. (gardener/machine-controller-manager-provider-gcp#12, @prashanth26)
Docker Images
gardener-extension-provider-gcp: eu.gcr.io/gardener-project/gardener/extensions/provider-gcp:v1.14.0
gardener-extension-admission-gcp: eu.gcr.io/gardener-project/gardener/extensions/admission-gcp:v1.14.0
v1.13.1
[machine-controller-manager]
🏃 Others
- [OPERATOR] Set Machine Phase to Terminating before draining. (gardener/machine-controller-manager#564, @prashanth26)
- [OPERATOR] An issue causing panic when the encoded machine template hash length is less than expect limit is now fixed. (gardener/machine-controller-manager#577, @AxiomSamarth)
📰 Noteworthy
- [OPERATOR] Machine force deletion computation is based on deletionTimestamp instead of LastUpdatedTimestamp. (gardener/machine-controller-manager#564, @prashanth26)
Docker Images
gardener-extension-provider-gcp: eu.gcr.io/gardener-project/gardener/extensions/provider-gcp:v1.13.1
gardener-extension-admission-gcp: eu.gcr.io/gardener-project/gardener/extensions/admission-gcp:v1.13.1
v1.13.0
[gardener-extension-provider-gcp]
Most notable changes
- [OPERATOR] The infrastructure actuator is now injecting infrastructure credentials into the terraformer
PodSpec
via secret references instead of plain env var values. (#203, @timebertt) - [OPERATOR] The terraformer version has been upgraded to version
v2.0.0-rc.0
. (#190, @timebertt)
Improvements
- [OPERATOR] Firewall range for internal access is now set via
networks.worker
andnetworks.internal
cidr range. (#196, @qiffang) - [OPERATOR] Golang version is updated to
1.15
and alpine image version is updated to3.12.1
. (#195, @DockToFuture) - [OPERATOR] Revert machine drain timeout to 2hrs from 12hrs (#193, @prashanth26)
- [OPERATOR] Adds priority class for extension pods to prevent preemption. (#189, @danielfoehrKn)
- [DEVELOPER] An issue causing
make test
to fail on macOS is now fixed. (#197, @ialidzhikov)
[machine-controller-manager]
Most notable changes
- [USER] NetworkUnavailable node condition is also considered by default while considering the machine's to be unhealthy. (gardener/machine-controller-manager#543, @rewiko)
- [USER] AWS: Allows deletion of machines even on modify instance call failure (gardener/machine-controller-manager#515, @prashanth26)
- [OPERATOR] OOT: Introduced a backoff in re-enqueuing machines on creation/deletion failures. Avoids throttling APIServer & provider calls. (gardener/machine-controller-manager#557, @prashanth26)
- [OPERATOR] Introduced a backoff in re-enqueuing machines on creation/deletion failures. Avoids throttling APIServer & provider calls. (gardener/machine-controller-manager#525, @hardikdr)
Improvements
- [USER] The default drainTimeout value has been updated from 12hours to 2hours. (gardener/machine-controller-manager#554, @prashanth26)
- [USER] OOT: Fixed regression with maxEvictRetries (gardener/machine-controller-manager#554, @prashanth26)
- [USER] Adds the ability to specify an already existing OpenStack Neutron network in the subnetID of an OpenStackMachineClass. MCM will deploy new machines into the given subnet by pre-allocating Neutron ports and pass them to the Nova server object. (gardener/machine-controller-manager#545, @MrBatschner)
- [USER] The machine-controller-manager supports now machines attached to Azure VirtualMachineScaleSet Orchestration Mode VM (VMO). (gardener/machine-controller-manager#519, @dkistner)
- [USER] Restored tag verification in the Azure driver to filter VMs/disks/NICs based on tags (gardener/machine-controller-manager#507, @zuzzas)
- [OPERATOR] Allow migration to continue when ProviderMachineClass is missing but MachineClass with the same name as ProviderMachineClass is found. Updates Machine object references to the MachineClass. (gardener/machine-controller-manager#559, @prashanth26)
- [OPERATOR] Use cache-based listers to GET the machine-object while reconciling. (gardener/machine-controller-manager#558, @hardikdr)
- [OPERATOR] OOT: Enqueue machine only when node conditions have changed. (gardener/machine-controller-manager#557, @prashanth26)
- [OPERATOR] Adapted integration tests to handle possibly orphaned resources. (gardener/machine-controller-manager#550, @hardikdr)
- [OPERATOR] OOT: Fixes drain timeout issues on retires (gardener/machine-controller-manager#548, @prashanth26)
- [OPERATOR] NetworkUnavailable nodeCondition added to the example, some CNI will update this condition depending on the state of the CNI or the network availability. (gardener/machine-controller-manager#543, @rewiko)
- [OPERATOR] Added a more comprehensive set of events to trigger machine class reconciliations. (gardener/machine-controller-manager#531, @prashanth26)
- [OPERATOR] Finalizers are added by default for all machine class objects. (gardener/machine-controller-manager#531, @prashanth26)
- [OPERATOR] Bootstrap token injection now works in the new OOT Machine controller (gardener/machine-controller-manager#521, @zuzzas)
- [OPERATOR] Add support for ServerGroups in the Openstack driver. VMs can now be created in the ServerGroup specified in the respective
MachineClass
. (gardener/machine-controller-manager#511, @kon-angelo) - [OPERATOR] Bugfix: Consider CSI PersistentVolumes during the eviction of Pods with PersistentVolumes. (gardener/machine-controller-manager#509, @ialidzhikov)
- [DEVELOPER] Adds a new phase
CrashLoopBackOff
that is set due to machine creation failures. (gardener/machine-controller-manager#525, @hardikdr) - [DEVELOPER] The field
availabilitySets
in theAzureMachineClass
is now deprecated in favour of the fieldmachineSet
, which allow to configure AvailabilitySets and VirtualMachineScaleSet Orchestration Mode VM (VMO). The field will be removed in the future. (gardener/machine-controller-manager#519, @dkistner)
[machine-controller-manager-provider-gcp]
Improvements
- [USER] Enqueue machine only when node conditions have changed. (gardener/machine-controller-manager-provider-gcp#10, @prashanth26)
- [USER] Fixes drain timeout issues on retires. (gardener/machine-controller-manager-provider-gcp#10, @prashanth26)
- [OPERATOR] Introduced a backoff in re-enqueuing machines on creation/deletion failures. Avoids throttling APIServer & provider calls. (gardener/machine-controller-manager-provider-gcp#10, @prashanth26)
- [OPERATOR] Allow migration to continue when ProviderMachineClass is missing but MachineClass with the same name as ProviderMachineClass is found. Updates Machine object references to the MachineClass. (gardener/machine-controller-manager-provider-gcp#10, @prashanth26)
[terraformer]
Action Required
- [DEVELOPER] Terraformer version
v2
now requires to pass in ConfigMap and Secret names via command line flags instead of environment variables and the base command of the docker image has changed to/terraformer
. Please see the examples for more details. (gardener/terraformer#58, @timebertt) - [DEVELOPER] If your provider extension is deploying terraformer Pods via gardener's terraformer library, please make sure, that you use at least
gardener/gardener@v1.12.0
and setterraformer.UseV2(true)
in order to deploy a PodSpec, that is compatible with terraformerv2
. (gardener/terraformer#58, @timebertt)
Most notable changes
- [OPERATOR] Terraformer was rewritten in go and now watches the terraform state file in order to continuously update the state ConfigMap to not lose any relevant infrastructure state. (gardener/terraformer#58, @timebertt)
- [DEVELOPER] You can now run a small e2e test, that creates some lightweight resource on AWS via terraform, by executing
make test-e2e
. (gardener/terraformer#51, @timebertt)
Improvements
- [DEVELOPER] You can use
make start-dev-container
to start a docker container which can run terraformer and tests in an isolated environment for development and testing. Alsomake start
will run terraformer commands in such a development container. (gardener/terraformer#58, @timebertt)
Docker Images
gardener-extension-provider-gcp: eu.gcr.io/gardener-project/gardener/extensions/provider-gcp:v1.13.0
gardener-extension-admission-gcp: eu.gcr.io/gardener-project/gardener/extensions/admission-gcp:v1.13.0