v1.51.0

[gardener/gardener-extension-provider-alicloud]

⚠️ Breaking Changes

• [OPERATOR] CA and server certificates for the admission component are managed automatically. Passing custom certificates via Helm values is not supported anymore. by @timuthy [#683]
• [OPERATOR] Change OCI Image Registry from GCR (eu.gcr.io/gardener-project) to Artifact-Registry (europe-docker.pkg.dev/gardener-project/releases). Users should update their references.
  by @ccwienk [#673]

📰 Noteworthy

• [DEVELOPER] Remove dependency to specific calico and cilium versions. by @axel7born [#659]

✨ New Features

• [USER] The provider-alicloud extension does now support shoot clusters with Kubernetes version 1.29. You should consider the Kubernetes release notes before upgrading to 1.29. by @acumino [#688]
• [USER] provider-alicloud extension now supports Shoot Force Deletion for more details.). by @shafeeqes [#652]

🏃 Others

• [OPERATOR] The following image is updated:
• [OPERATOR] Enhance NatGateway availableZone validation is moved to ConfigValidator, If first zone user sets under network section doesn't support enhance natgateway, an error will occur during shoot reconcile process. by @kevin-lacoo [#681]
• [OPERATOR] Bump github.com/gardener/gardener to 1.86.0. by @timuthy [#683]
• [OPERATOR] Now user can change EIP after infrastructure created in flow based case. by @kevin-lacoo [#686]
• [OPERATOR] Update terraformer to v2.24.0 by @kevin-lacoo [#685]
• [DEVELOPER] The vendor directory was removed in favor of the go mod cache. by @timuthy [#683]

[gardener/machine-controller-manager]

🐛 Bug Fixes

• [OPERATOR] Removes node.machine.sapcloud.io/not-managed-by-mcm annotation from nodes managed by the MCM. by @gardener-robot-ci-1 [gardener/machine-controller-manager#866]

Docker Images

• gardener-extension-admission-alicloud: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-alicloud:v1.51.0
• gardener-extension-provider-alicloud: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-alicloud:v1.51.0

v1.50.1

no release notes available

Docker Images

• gardener-extension-admission-alicloud: eu.gcr.io/gardener-project/gardener/extensions/admission-alicloud:v1.50.1
• gardener-extension-provider-alicloud: eu.gcr.io/gardener-project/gardener/extensions/provider-alicloud:v1.50.1

v1.50.0

[gardener/gardener-extension-provider-alicloud]

📰 Noteworthy

• [DEVELOPER] Remove dependency to specific calico and cilium versions. by @axel7born [#659]

✨ New Features

• [USER] provider-alicloud extension now supports Shoot Force Deletion for more details.). by @shafeeqes [#652]

🏃 Others

• [OPERATOR] The following image is updated:
  • registry.eu-central-1.aliyuncs.com/gardener-de/alibaba-cloud-controller-manager:v1.9.3-372 -> registry-eu-central-1.ack.aliyuncs.com/acs/cloud-controller-manager-amd64:v2.7.0 by @shaoyongfeng [#654]
• [OPERATOR] Flow-based infrastructure reconciliation without Terraformer by @kevin-lacoo [#656]
• [OPERATOR] The following golang dependencies have been upgraded :
  • gardener/gardener: v1.81.0->v1.81.6
  • k8s.io/*: v0.28.2-> v0.28.3
  • sigs.k8s.io/controller-runtime: v0.16.2-> v0.16.3 by @shafeeqes [#660]
• [DEVELOPER] Add new unit tests. by @axel7born [#664]

[gardener/machine-controller-manager]

🐛 Bug Fixes

• [OPERATOR] Removes node.machine.sapcloud.io/not-managed-by-mcm annotation from nodes managed by the MCM. by @gardener-robot-ci-1 [gardener/machine-controller-manager#866]

Docker Images

• gardener-extension-admission-alicloud: eu.gcr.io/gardener-project/gardener/extensions/admission-alicloud:v1.50.0
• gardener-extension-provider-alicloud: eu.gcr.io/gardener-project/gardener/extensions/provider-alicloud:v1.50.0

Docker Images

gardener-extension-provider-alicloud: eu.gcr.io/gardener-project/gardener/extensions/provider-alicloud:v1.50.0
gardener-extension-admission-alicloud: eu.gcr.io/gardener-project/gardener/extensions/admission-alicloud:v1.50.0

v1.49.1

[gardener/gardener-extension-provider-alicloud]

🏃 Others

• [OPERATOR] Removes node.machine.sapcloud.io/not-managed-by-mcm annotation from nodes managed by the MCM. by @kevin-lacoo [#663]
• [OPERATOR] The default machine-safety-orphan-vms-period has been reduced from 30m to 15m. by @kevin-lacoo [#663]

Docker Images

gardener-extension-admission-alicloud: eu.gcr.io/gardener-project/gardener/extensions/admission-alicloud:v1.49.1
gardener-extension-provider-alicloud: eu.gcr.io/gardener-project/gardener/extensions/provider-alicloud:v1.49.1

v1.49.0

[gardener/gardener-extension-provider-alicloud]

⚠️ Breaking Changes

• [OPERATOR] provider-alicloud no longer supports Shoots or Seeds with Кubernetes version < 1.24. by @shafeeqes [#647]
• [USER] The volumeBindingMode of the default StorageClass managed by the provider-alicloud extension is now switched from Immediate to WaitForFirstConsumer. by @ialidzhikov [#648]

✨ New Features

• [USER] The provider-alicloud extension does now support shoot clusters with Kubernetes version 1.28. You should consider the Kubernetes release notes before upgrading to 1.28. by @oliver-goetz [#650]

🏃 Others

• [OPERATOR] The following golang dependencies have been upgraded :
  • gardener/gardener to v1.80.3
  • k8s.io/* to v0.27.5
  • sigs.k8s.io/controller-runtime to v0.16.2 by @ary1992 [#645]
• [OPERATOR] allow public network access from admission pod by @shaoyongfeng [#651]
• [OPERATOR] machineDeployment will have the label topology.diskplugin.csi.alibabacloud.com/zone when created. by @elankath [#638]

[gardener/machine-controller-manager]

🐛 Bug Fixes

• [OPERATOR] Force drain and delete volume attachments for nodes un-healthy due to ReadOnlyFileSystem and NotReady for too long by @elankath [gardener/machine-controller-manager#839]
• [OPERATOR] An issue causing nil pointer panic on scaleup of the machinedeployment along with trigger of rolling update, is fixed by @acumino [gardener/machine-controller-manager#814]
• [OPERATOR] Included UnavailableReplicas in determining if a machine deployment status update is needed by @rishabh-11 [gardener/machine-controller-manager#833]
• [USER] An edge case where outdated DesiredReplicas annotation blocked a rolling update is fixed. by @rishabh-11 [gardener/machine-controller-manager#821]

🏃 Others

• [OPERATOR] New metrics introduced:
  • api_request_duration_seconds -> tracks time taken for successful invocation of provider APIs. This metric can be filtered by provider and service.
  • driver_request_duration_seconds -> tracks total time taken to successfully complete driver method invocation. This metric can be filtered by provider and operation.
  • driver_requests_failed_total -> records total number of failed driver API requests. This metric can be filtered by provider, operations and error_code. by @unmarshall [gardener/machine-controller-manager#842]
• [OPERATOR] Added a new metric that will allow to get the number of stale (due to unhealthiness) machines that are getting terminated by @jguipi [gardener/machine-controller-manager#808]
• [OPERATOR] Makefile targets have changed: Introduced gardener-setup, gardener-restore, gardener-local-mcm-up, non-gardener-setup, non-gardener-restore, non-gardener-local-mcm-up. Users can also directly use the scripts which are used by these makefile targets. by @unmarshall [gardener/machine-controller-manager#852]
• [OPERATOR] Updated to go v1.20.5 by @rishabh-11 [gardener/machine-controller-manager#827]
• [OPERATOR] Added errorCode field in the LastOperation struct. This should be implemented only for the CreateMachine call in the triggerCreationFlow. This field will be utilized by Cluster autoscaler to do early backoff by @rishabh-11 [gardener/machine-controller-manager#851]
• [DEVELOPER] Bump k8s.io/* deps to v0.27.2 by @afritzler [gardener/machine-controller-manager#820]
• [DEVELOPER] status.Status now captures underline cause, allowing consumers to introspect the error returned by the provider. WrapError() function could be used to wrap the provider error by @unmarshall [gardener/machine-controller-manager#842]
• [DEVELOPER] Removed dead metrics code and refactored the remaining metrics code by @himanshu-kun [gardener/machine-controller-manager#823]
• [DEVELOPER] A new make target is introduced to add license headers. by @unmarshall [gardener/machine-controller-manager#845]

[gardener/machine-controller-manager-provider-alicloud]

🏃 Others

• [OPERATOR] MCM status code ResourceExhausted is now utilized in mcm-provider-alicloud. by @himanshu-kun [gardener/machine-controller-manager-provider-alicloud#57]

Docker Images

gardener-extension-provider-alicloud: eu.gcr.io/gardener-project/gardener/extensions/provider-alicloud:v1.49.0
gardener-extension-admission-alicloud: eu.gcr.io/gardener-project/gardener/extensions/admission-alicloud:v1.49.0

v1.48.0

[gardener/gardener-extension-provider-alicloud]

⚠️ Breaking Changes

• [OPERATOR] The security.gardener.cloud/pod-security-enforce annotation in the ControllerRegistration is set to baseline. With this, the pods running in the extension namespace should comply with baseline pod-security standard. by @shafeeqes [#634]
• [OPERATOR] provider-alicloud no longer supports Shoots or Seeds with Кubernetes version < 1.22. by @shafeeqes [#623]

✨ New Features

• [OPERATOR] The gardener-extension-admission-alicloud chart allows to optionally configure a projected volume based kubeconfig. by @timuthy [#636]

🐛 Bug Fixes

• [OPERATOR] A bug related to the network policy annotations that prevented the shoot control plane Prometheus from scraping the cloud-controller-manager and caused false alerts is fixed. by @istvanballok [#637]

[gardener/terraformer]

🏃 Others

• [OPERATOR] Golang has been updated to v1.20.5 by @kon-angelo [gardener/terraformer#138]
• [OPERATOR] Alpine has been updated to v1.18.2 by @kon-angelo [gardener/terraformer#138]

Docker Images

gardener-extension-provider-alicloud: eu.gcr.io/gardener-project/gardener/extensions/provider-alicloud:v1.48.0
gardener-extension-admission-alicloud: eu.gcr.io/gardener-project/gardener/extensions/admission-alicloud:v1.48.0

v1.47.1

no release notes available

v1.47.0

[gardener-extension-provider-alicloud]

⚠️ Breaking Changes

• [OPERATOR] With #310 provider-alicloud migrated the volumesnapshot CRDs to a new dedicated ManagedResources. provider-alicloud does now remove the ignored CRDs. (gardener/gardener-extension-provider-alicloud#606, @ialidzhikov)
  • Before updating to this version of provider-alicloud, make sure that the migration of the volumesnapshot CRDs from the extension-controlplane-shoot to the extension-controlplane-shoot-crds ManagedResource completed. If the migration did not complete yet, GRM will interpret the removal of the CRDs as deletion and will delete the CRDs.
• [OPERATOR] The .kubeAPIServer field in the component config has been removed since it's no longer needed anywhere. (gardener/gardener-extension-provider-alicloud#619, @rfranzke)

✨ New Features

• [USER] The provider-alicloud extension does now support shoot clusters with Kubernetes version 1.27. You should consider the Kubernetes release notes before upgrading to 1.27. (gardener/gardener-extension-provider-alicloud#609, @ary1992)
• [DEVELOPER] This extension is now compatible with the MachineControllerManagerDeployment feature gate of gardenlet. (gardener/gardener-extension-provider-alicloud#617, @rfranzke)
• [DEVELOPER] This extension now uses the simplified NetworkPolicy approach for allowing traffic to its webhook server from kube-apiservers of shoot clusters. (gardener/gardener-extension-provider-alicloud#618, @rfranzke)

🏃 Others

• [OPERATOR] Old and obsolete logging configurations are removed. (gardener/gardener-extension-provider-alicloud#610, @vlvasilev)
• [OPERATOR] The following images are updated: (gardener/gardener-extension-provider-alicloud#616, @ialidzhikov)
  • k8s.gcr.io/sig-storage/csi-provisioner:v3.3.0 -> registry.k8s.io/sig-storage/csi-provisioner:v3.3.0
  • k8s.gcr.io/sig-storage/csi-snapshotter:v6.1.0 -> registry.k8s.io/sig-storage/csi-snapshotter:v6.1.0
  • k8s.gcr.io/sig-storage/snapshot-validation-webhook:v6.1.0 -> registry.k8s.io/sig-storage/snapshot-validation-webhook:v6.1.0
  • k8s.gcr.io/sig-storage/snapshot-controller:v6.1.0 -> registry.k8s.io/sig-storage/snapshot-controller:v6.1.0
• [DEVELOPER] All code related to the removed APIServerSNI feature gate of gardenlet has been removed from this extension. (gardener/gardener-extension-provider-alicloud#619, @rfranzke)
• [DEPENDENCY] The following dependency is updated: (gardener/gardener-extension-provider-alicloud#604, @ary1992)
  • github.com/gardener/gardener: v1.70.2 -> v1.71.2
• [DEPENDENCY] The following dependencies were updated: (gardener/gardener-extension-provider-alicloud#612, @dimityrmirchev)
  • registry.k8s.io/sig-storage/csi-provisioner v3.2.1 -> v3.2.2

[machine-controller-manager]

🐛 Bug Fixes

• [USER] An edge case where all the machineSets were scaled down to zero has been dealt with. (gardener/machine-controller-manager#804, @himanshu-kun)
• [USER] An edge case where outdated DesiredReplicas annotation blocked a rolling update is fixed. (gardener/machine-controller-manager#822, @rishabh-11)
• [OPERATOR] An issue causing nil pointer panic on scaleup of the machinedeployment along with trigger of rolling update, is fixed (gardener/machine-controller-manager#817, @himanshu-kun)
• [OPERATOR] Included UnavailableReplicas in determining if a machine deployment status update is needed (gardener/machine-controller-manager#834, @ialidzhikov)

[machine-controller-manager-provider-alicloud]

⚠️ Breaking Changes

• [OPERATOR] Support for migration of machineClass is dropped by the mcm-provider (gardener/machine-controller-manager-provider-alicloud#51, @himanshu-kun)

🏃 Others

• [USER] Updated golang version to 1.20.4 (gardener/machine-controller-manager-provider-alicloud#54, @rishabh-11)
• [DEPENDENCY] upgraded dependency: (gardener/machine-controller-manager-provider-alicloud#51, @himanshu-kun)
  • github.com/gardener/machine-controller-manager -> v0.49.1

[terraformer]

🏃 Others

• [OPERATOR] Terrafomer base image has been updated from alpine:3.17.2 to alpine:3.18.0 (gardener/terraformer#137, @MartinWeindel)
• [OPERATOR] Builder base image has been updated from golang:1.19.6 to golang:1.20.4 (gardener/terraformer#137, @MartinWeindel)
• [OPERATOR] Gardener dependency has been updated from v1.59.1 to v1.71.2 (gardener/terraformer#137, @MartinWeindel)

Docker Images

gardener-extension-provider-alicloud: eu.gcr.io/gardener-project/gardener/extensions/provider-alicloud:v1.47.0
gardener-extension-admission-alicloud: eu.gcr.io/gardener-project/gardener/extensions/admission-alicloud:v1.47.0

v1.46.1

[machine-controller-manager]

🐛 Bug Fixes

• [USER] An edge case where outdated DesiredReplicas annotation blocked a rolling update is fixed. (gardener/machine-controller-manager#822, @rishabh-11)
• [OPERATOR] An issue causing nil pointer panic on scaleup of the machinedeployment along with trigger of rolling update, is fixed (gardener/machine-controller-manager#817, @himanshu-kun)
• [OPERATOR] Included UnavailableReplicas in determining if a machine deployment status update is needed (gardener/machine-controller-manager#834, @ialidzhikov)

v1.46.0

[gardener-extension-provider-alicloud]

📖 Documentation

• [DEPENDENCY] The flags which went out-of-support in MCM v0.49.0 have been cleaned up from MCM deployment yaml. (gardener/gardener-extension-provider-alicloud#595, @himanshu-kun)

🏃 Others

• [OPERATOR] The gardener-extension-admission-alicloud Service in the gardener-extension-admission-alicloud chart can now be configured to be topology-aware. (gardener/gardener-extension-provider-alicloud#591, @ialidzhikov)
• [OPERATOR] The admission/validation component is now adapted such that it works well in garden cluster with enabled NetworkPolicy protection (default since gardener/[email protected] when garden cluster is managed by gardener-operator). (gardener/gardener-extension-provider-alicloud#599, @rfranzke)
• [OPERATOR] The following dependency has been updated: (gardener/gardener-extension-provider-alicloud#600, @acumino)
  • github.com/gardener/gardener 1.67.1 -> 1.70.2

[machine-controller-manager]

⚠️ Breaking Changes

• [OPERATOR] Removal of the following flags (and corresponding fields in associated structs): 'machine-creation-timeout' 'machine-drain-timeout', 'machine-pv-detach-timeout', 'machine-health-timeout=10m', 'machine-safety-apiserver-statuscheck-timeout', 'machine-safety-apiserver-statuscheck-period', 'machine-safety-orphan-vms-period', 'machine-max-evict-retries', 'node-conditions', 'bootstrap-token-auth-extra-groups', 'delete-migrated-machine-class'. The MCM no longer accepts these flags since these are options handled by the Machine Controller invoked by platform specific provider launchers. (gardener/machine-controller-manager#769, @elankath)
• [DEVELOPER] Deletion of 'Driver.GenerateMachineClassForMigration'. Providers need to adapt to this. (gardener/machine-controller-manager#769, @elankath)

✨ New Features

• [USER] Machine object won't turn from Pending to Running state if node.gardener.cloud/critical-components-not-ready taint is there on the corresponding node. (gardener/machine-controller-manager#778, @SimonKienzler)

🐛 Bug Fixes

• [USER] An edge case where all the machineSets were scaled down to zero has been dealt with. (gardener/machine-controller-manager#803, @himanshu-kun)
• [USER] Fix a bug in the bootstrap token creation that caused node to not be able to join the cluster due to an expired bootstrap token. (gardener/machine-controller-manager#773, @schrodit)

📖 Documentation

• [DEVELOPER] Added proposal for hot-update of resources (instance/Nic/Disk) (gardener/machine-controller-manager#761, @himanshu-kun)

🏃 Others

• [OPERATOR] CrashloopBackoff machines will turn to Running quicker (gardener/machine-controller-manager#806, @rishabh-11)
• [OPERATOR] CVE categorization for MCM has been added. (gardener/machine-controller-manager#791, @dkistner)
• [DEVELOPER] The API generation now works again. Previously the API docs was generated to a location that was ignored by git and other API docs file was maintained. (gardener/machine-controller-manager#800, @ialidzhikov)
• [DEVELOPER] Bump k8s.io/* dependencies to v1.26.2 (gardener/machine-controller-manager#792, @afritzler)

[terraformer]

🏃 Others

• [OPERATOR] Update alpine base image to v3.17.3 (gardener/terraformer#136, @kon-angelo)

Docker Images

gardener-extension-provider-alicloud: eu.gcr.io/gardener-project/gardener/extensions/provider-alicloud:v1.46.0
gardener-extension-admission-alicloud: eu.gcr.io/gardener-project/gardener/extensions/admission-alicloud:v1.46.0