v1.29.0

What's Changed

• Added wait in volume expansion for volume to become available
• fix security list rule clean up flow for OCI loadbalancer delete calls
• for externalTrafficPolicy local the healthcheck port security rule should be retained
• skip healthcheck port in use for services that are deleted or not of type loadbalancer
• Added fix to check length of consistent device paths available before attempting read
• process updateLoadbalancer if NLB is in failed state
• Fix CVEs
• Separating UpdateLoadBalancer flow for Backends from Ensure Load Balancer flow in CCM
• Moved listener and backendset updates before shape change & other customer error prone operations
• Changes to parallelise e2e test runs
• add opc-retry-token
• Do not record events for failure to acquire lock for lb sync
• Add unit test to for merging common tags tags at the time of creation of LB & storage resources
• Use topology.kubernetes.io labels
• set serviceUid as opc-retry-token
• Bugfix: Ensure backend ssl certificates during Update LoadBalancer Backendsets flow
• Fix response when no size change in ControllerExpandVolume
• Avoid change service type in update shape test cases
• List instances to check for authorization issues

Full Changelog: v1.28.0...v1.29.0

v1.28.1

What's Changed

• Added wait in volume expansion for volume to become available
• fix security list rule clean up flow for OCI loadbalancer delete calls
• for externalTrafficPolicy local the healthcheck port security rule should be retained
• skip healthcheck port in use for services that are deleted or not of type loadbalancer
• Added fix to check length of consistent device paths available before attempting read
• process updateLoadbalancer if NLB is in failed state
• Fix CVEs
• Separating UpdateLoadBalancer flow for Backends from Ensure Load Balancer flow in CCM
• Moved listener and backendset updates before shape change & other customer error prone operations
• Changes to parallelise e2e test runs
• add opc-retry-token
• Do not record events for failure to acquire lock for lb sync
• Add unit test to for merging common tags tags at the time of creation of LB & storage resources
• Use topology.kubernetes.io labels
• set serviceUid as opc-retry-token
• Bugfix: Ensure backend ssl certificates during Update LoadBalancer Backendsets flow
• Fix response when no size change in ControllerExpandVolume
• Avoid change service type in update shape test cases
• List instances to check for authorization issues

Full Changelog: v1.28.0...v1.28.1

v1.27.3

What's Changed

• Added wait in volume expansion for volume to become available
• fix security list rule clean up flow for OCI loadbalancer delete calls
• for externalTrafficPolicy local the healthcheck port security rule should be retained
• skip healthcheck port in use for services that are deleted or not of type loadbalancer
• Added fix to check length of consistent device paths available before attempting read
• process updateLoadbalancer if NLB is in failed state
• Fix CVEs
• Separating UpdateLoadBalancer flow for Backends from Ensure Load Balancer flow in CCM
• Moved listener and backendset updates before shape change & other customer error prone operations
• Changes to parallelise e2e test runs
• add opc-retry-token
• Do not record events for failure to acquire lock for lb sync
• Add unit test to for merging common tags tags at the time of creation of LB & storage resources
• Use topology.kubernetes.io labels
• set serviceUid as opc-retry-token
• Bugfix: Ensure backend ssl certificates during Update LoadBalancer Backendsets flow
• Fix response when no size change in ControllerExpandVolume
• Avoid change service type in update shape test cases
• List instances to check for authorization issues

Full Changelog: v1.27.2...v1.27.3

v1.26.4

What's Changed

• Added wait in volume expansion for volume to become available
• fix security list rule clean up flow for OCI loadbalancer delete calls
• for externalTrafficPolicy local the healthcheck port security rule should be retained
• skip healthcheck port in use for services that are deleted or not of type loadbalancer
• Added fix to check length of consistent device paths available before attempting read
• process updateLoadbalancer if NLB is in failed state
• Fix CVEs
• Separating UpdateLoadBalancer flow for Backends from Ensure Load Balancer flow in CCM
• Moved listener and backendset updates before shape change & other customer error prone operations
• Changes to parallelise e2e test runs
• add opc-retry-token
• Do not record events for failure to acquire lock for lb sync
• Add unit test to for merging common tags tags at the time of creation of LB & storage resources
• Use topology.kubernetes.io labels
• set serviceUid as opc-retry-token
• Bugfix: Ensure backend ssl certificates during Update LoadBalancer Backendsets flow
• Fix response when no size change in ControllerExpandVolume
• Avoid change service type in update shape test cases
• List instances to check for authorization issues

Full Changelog: v1.26.3...v1.26.4

v1.28.0

What's Changed

• Upgraded k8s to v1.28
• NSG rule management for CCM loadbalancers and respective e2e tests
• Add validation if loadbalancer subnets are empty and new unit test cases
• Bug fix for topology collision error in CSI node driver
• Bug fixes and follow-up improvements for the NSG rule management feature
• CSI controller GRPCs now use parent contexts, new unit tests and logging improvements
• Updated timeouts for CSI ControllerPublish/ControllerUnpublish/ControllerExpand calls
• Fix for FSS controller nil pointer reference causing panic
• Enabling static FSS Intransit encryption Tests for ARM
• Support UHP volumes
• CVE fixes
• E2E and other doc updates

Full Changelog: v1.27.1...v1.28.0

v1.27.2

What's Changed

• NSG rule management for CCM loadbalancers and respective e2e tests
• Add validation if loadbalancer subnets are empty and new unit test cases
• Bug fix for topology collision error in CSI node driver
• Bug fixes and follow-up improvements for the NSG rule management feature
• CSI controller GRPCs now use parent contexts, new unit tests and logging improvements
• Updated timeouts for CSI ControllerPublish/ControllerUnpublish/ControllerExpand calls
• Fix for FSS controller nil pointer reference causing panic
• Enabling static FSS Intransit encryption Tests for ARM
• Support UHP volumes
• CVE fixes
• E2E and other doc updates

Full Changelog: v1.27.1...v1.27.2

v1.26.3

What's Changed

• NSG rule management for CCM loadbalancers and respective e2e tests
• Add validation if loadbalancer subnets are empty and new unit test cases
• Bug fix for topology collision error in CSI node driver
• Bug fixes and follow-up improvements for the NSG rule management feature
• CSI controller GRPCs now use parent contexts, new unit tests and logging improvements
• Updated timeouts for CSI ControllerPublish/ControllerUnpublish/ControllerExpand calls
• Fix for FSS controller nil pointer reference causing panic
• Enabling static FSS Intransit encryption Tests for ARM
• Support UHP volumes
• CVE fixes
• E2E and other doc updates

Full Changelog: v1.26.2...v1.26.3

v1.27.1

Change Log

• Document updates
• Addressed security findings
• Updating OCI Go-SDK to v65.56.0
• Support for http/https proxy via environemnt variables: HTTP_PROXY & HHTPS_PROXY
• Support for custom CA bundle via environement variable: OCI_DEFAULT_CERTS_PATH

What's Changed

• doc: Add examples for adding tags by @rodrigc in #440
• doc: Remove duplicate section Network Load Balancer Specific Annotations by @rodrigc in #441
• sec review by @mrunalpagnis in #444
• OSS release v1.27.1 by @l-technicore in #451

New Contributors

• @rodrigc made their first contribution in #440

Full Changelog: v1.27.0...v1.27.1

v1.26.2

Change Log

• Updating OCI Go-SDK to v65.56.0
• Support for http/https proxy via environemnt variables: HTTP_PROXY & HHTPS_PROXY
• Support for custom CA bundle via environement variable: OCI_DEFAULT_CERTS_PATH

Full Changelog: v1.26.1...v1.26.2

v1.27.0

Change Log:

• Upgraded k8s to v1.27.2
• Migrated to registry.k8s.io
• Publish new fss metrics
• CSI logging improvements
• Fixed snapshot metric generation and logging improvements
• Added rate limiting for fss node unmount to avoid OOM
• Modifying oci-fss-utils rpm search for faster results
• Making error check case insensitive to correctly classify errors
• Moved LB security list update/delete operations within a critical section when Sec List management mode is not NONE
• Introduced Mutex based on LB name in CCM's Ensure and EnsureDelete Load Balancer
• Added fss intransit encryption support for Oracle Linux 8
• Removed IMDS V1 Fallback Logic
• Added support for CSI Volume Cloning