antrea-io/antrea v1.10.0

Release v1.10.0

on GitHub

Added

• Add L7NetworkPolicy feature which enables users to protect their applications by specifying how they are allowed to communicate with others, taking into account application context. (#4380 #4406 #4410, @hongliangl @qiyueyao @tnqn)
  • Layer 7 NetworkPolicy can be configured through the l7Protocols field of Antrea-native policies.
  • Refer to this document for more information about this feature.
• Add SupportBundleCollection feature which enables a CRD API for Antrea to collect support bundle files on any K8s Node or ExternalNode, and upload to a user-defined file server. (#4184 #4338 #4249, @wenyingd @mengdie-song @ceclinux)
  • Refer to this document for more information about this feature.
• Add support for NetworkPolicy for cross-cluster traffic. (#4432 #3914, @Dyanngg @GraysonWu)
  • Setting scope of an ingress peer to clusterSet expands the scope of the podSelector or namespaceSelector to the entire ClusterSet.
  • Setting scope of toServices to clusterSet selects a Multi-cluster Service. (#4397, @Dyanngg)
  • Refer to this document for more information about this feature.
• Add the following capabilities to the ExternalNode feature:
  • Containerized option for antrea-agent installation on Linux VMs. (#4413, @Nithish555)
  • Support for RHEL 8.4. (#4323, @Nithish555)
• Add support for running antrea-agent as DaemonSet when using containerd as the runtime on Windows. (#4279, @XinShuYang)
• Add documentation for Antrea Multicast. (#4339, @ceclinux)

Changed

• Extend antctl mc get joinconfig to print member token Secret. (#4363, @jianjuns)
• Improve support for Egress in Traceflow. (#3926, @Atish-iaf)
• Add NodePortLocalPortRange field for AntreaAgentInfo. (#4379, @wenqiq)
• Use format "namespace/name" as the key for ExternalNode span calculation. (#4401, @wenyingd)
• Enclose Pod labels with single quotes when uploading CSV record to S3 in the FlowAggregator. (#4334, @dreamtalen)
• Upgrade Antrea base image to ubuntu 22.04. (#4459 #4499, @antoninbas)
• Update OVS to 2.17.3. (#4402, @mnaser)
• Reduce confusion caused by transient error encountered when creating static Tiers. (#4414, @tnqn)

Fixed

• Add a periodic job to rejoin dead Nodes, to fix Egress not working properly after long network downtime. (#4491, @tnqn)
• Fix potential deadlocks and memory leaks of memberlist maintenance in large-scale clusters. (#4469, @wenyingd)
• Fix connectivity issues caused by MAC address changes with systemd v242 and later. (#4428, @wenyingd)
• Fix error handling when S3Uploader partially succeeds. (#4433, @heanlan)
• Fix a ClusterInfo export bug when Multi-cluster Gateway changes. (#4412, @luolanzone)
• Fix OpenFlow rules not being updated when Multi-cluster Gateway updates. (#4388, @luolanzone)
• Delete Pod specific VF resource cache when a Pod gets deleted. (#4285, @arunvelayutham)
• Fix OpenAPI descriptions for AntreaAgentInfo and AntreaControllerInfo. (#4390, @tnqn)