Added
- Add nftables information in Agent supportbundle. (#7547, @molegit9)
- Support IPv6 traffic over IPv4 IPsec tunnel. (#7759, @xliuxu)
Fixed
- Fix host tunnel traffic rules ignoring the configured TunnelPort and always using a fixed port value. (#7824, @hongliangl)
- Fix a bug in hybrid mode where a failed nftables delete for a non-existent Pod CIDR element left stale cached state, preventing OVS flows and routes from being installed when a new Node reused the same Pod CIDR. (#7760, @hongliangl)
- Update to latest iptables-wrapper, which fixes Antrea with recent versions of Talos. (#7729, @antoninbas)
- Add missing Service info in AntreaProxy for Pod to Service flows. (#7614, @petertran-avgo)
- Fix FlowAggregator skipping Service UID population for flows from Services without a port name, causing exported flows to be missing Service UID information. (#7681, @luolanzone)
- Fix concurrent map access in GetFQDNCache to avoid Antrea agent crash issue. (#7794, @Ady0333)
- Update CNI plugins to 1.9.1 with CVE fix. (#7896, @luolanzone)
- Update module google.golang.org/grpc to v1.79.3 with CVE fix. (#7860, @renovatebot)
- Update module go.opentelemetry.io/otel/sdk to v1.40.0 with CVE fix. (#7815, @renovatebot)