github Azure/aks-engine v0.35.0
on GitHub

latest releases: v0.79.0, upstream/release-v0.79.0, v0.78.0...
4 years ago

v0.35.0 - 2019-04-30

Bug Fixes 🐞

  • kubeconfig enforcement via kubelet.sh (#1183)
  • delete vm if node is not ready after upgrade (#1173)
  • #926 - Base64 encode sp password (#1174)
  • --rotate-certificates failing in k8s versions prior to 1.11 (#1175)
  • use cordon/drain timeout for pod eviction timeout during upgrade (#1157)
  • add UDP Standard LB rule to enable outbound access (#1155)
  • clean generated and unit test helper files (#1151)
  • implement extensions with template refactor (#1133)
  • replace \t with nothing (#1136)
  • enable VHD enforcement of /etc/pam.d/su (#1130)
  • /etc/default/grub VHD enforcement (#1131)
  • remove deprecated sshd configs for 18.04 (#1118)
  • no longer need 1.12 kubelet start workaround (#1069)
  • error handling in CIS bash script (#1062)
  • only run installDeps in non-VHD scenarios (#1043)
  • fix generate command for Azure Stack (#1038)
  • GetKubernetesB64ConfigsCustomCloud rebase errata (#1006)

Code Refactoring 💎

  • remove engine pkg custom script unnecessary functions (#1036)
  • re-organize cloud-init files and implementation (#996)
  • return error instead of invoking log.Fatal (#997)
  • move isPrivateCluster to types.go (#998)

Code Style 🎶

  • use { cmd1; cmd2 } >> file instead of individual redirects (#1167)
  • use #!, not just #, for the shebang (#1170)
  • the shebang must be on the first line (#1171)
  • use "-n" instead of "! -z" in shell scripts (#1166)
  • add bash shebangs to scripts (#1159)
  • remove literal carriage returns and enable parser errors (#1163)
  • use 'true' instead of '[ 1 ]' in shell loops (#1154)
  • remove literal carriage returns and lint all shell scripts (#1148)
  • comment out unused constant (#1147)
  • remove unneeded nil check (#1110)

Continuous Integration 💜

  • exclude a test mock file from coverage report (#1176)
  • return error if Go linter can't compile source code (#1150)
  • exclude some test files from coverage report (#1160)
  • Add alert on VHD space greater than 75% (#1097)

Documentation 📘

  • Add guides for calico cleanup after upgrading to v3.5 (#1137)
  • fix IPs per vnet limit documented (#1124)
  • add makedev.ps1 to dev guide (#1122)
  • clarify help for --api-model arguments (#1071)
  • add documentation for ACC agent pools running Ubuntu 18.04 (#1003)
  • fix a command (#1000)

Features 🌈

  • add support for Kubernetes v1.15.0-alpha.2 (#1178)
  • add support for Kubernetes v1.15.0-alpha.1 (#1140)
  • pre-pull Pause from Azure Stack's docker repo (#1144)
  • static pods use custom hyperkube on az stack (#1142)
  • Support existing load balancer backend address pool for agent nodes (#1145)
  • add support for Kubernetes 1.12.8 (#1138)
  • grant user assigned identity 'Reader' role for hosted masters (#1076)
  • enable WindowsProfile in defaults enforcement code flow (#1103)
  • TLS certificate rotation (#678)
  • revive CoreOS support (#892)
  • enable calico 3.5 for AKS (#995)
  • aks: expose unversioned orchestrator version profile to better enable aks preview kubernetes flags (#1135)

Maintenance 🔧

  • add 2019.04.24 VHD release notes (#1182)
  • enable 2019.04.24 VHD images (#1165)
  • update Azure VM sizes (#1101)
  • stop delivering unused kubelet systemd timer script via cloud-init (#1141)
  • reduce cloud-init var overhead for VHD scenarios (#1127)
  • clean up containerd and cc-runtime when unused (#1129)
  • add two missing /var/log files for 18.04 in CIS script (#1113)
  • add newlines to login banner message (#1114)
  • always ensure apt runs non-interactively (#1102)
  • backport tests + cloud-init usage for CIS changes (#1057)
  • run apt-get dist-upgrade during VHD or full install scenarios (#1007)
  • add --feature-gates tests (#1005)
  • enable 2019.04.08 VHD versions (#989)
  • add CIS script interface (#972)
  • CIS: set umask to 027 for ubuntu (#1128)
  • CIS: kernel module hardening for non-essential filesystem types (#1105)
  • CIS: ensure su is restricted (#1112)
  • CIS: Ensure password creation requirements are configured (#1035)
  • CIS: Ensure logging is configured (#1081)
  • CIS: ensure /etc/ssh/sshd_config is configured (#1030)
  • CIS: add apt package validation, ensure postfix is not present (#1063)
  • CIS: enforce CIS modprobe recommendations (#1061)
  • CIS: Ensure remote login warning banner is configured properly (#1037)
  • CIS: harden grub.cfg file permissions (#1106)
  • CIS: pam.d password enforcement (#1116)
  • CIS: CIS network configuration enforcement (#1039)
  • CIS: Ensure permissions on all log files are configured (#1031)
  • CIS: assign root pw (#1013)
  • CIS: add protect-kernel-defaults (#999)
  • CIS: ensure local login warning banner is configured properly (#1024)
  • CIS: add streaming-connection-idle-timeout (#977)
  • CIS: password expiration, cron file mode enforcement (#1162)
  • CIS: add rotate kubelet certs flag (#1052)
  • CIS: grub configuration changes to accommodate CIS (#1111)

Testing 💚

  • use master branch as root URL in extensions unit test (#1161)
  • fallback google.com check for Windows outbound test (#1117)
  • only test Ready nodes for DNS (#1121)
  • check net.ipv4.tcp_retries2 kernel parameter (#1094)
  • disable coreos scenario as PR E2E gate (#1107)
  • single host OS DNS test script (#1083)
  • add ubuntu time sync E2E validation (#1080)
  • add nodes.GetReady() method for E2E tests (#1082)
  • ensure node is ready before running validations (#1045)

Please report any issues here: https://github.com/Azure/aks-engine/issues/new

Check out latest releases or
releases around Azure/aks-engine v0.35.0

Don't miss a new aks-engine release

NewReleases is sending notifications on new releases.

Get notifications