This is a feature rich release adding a lot of new improvements. The biggest changes are #972 - where we start storing IPAM state in a file and use this across restarts and #955 - to copy portmap and loopback binaries and set up rp_filter in an init-container. Because of these changes, upgrades should not be done by just editing the image tag.
Warning! If you use Calico, please use v1.7.1 instead because of issue #1159.
Thanks to all the contributors - @anguslees, @bnapolitan, @gyuho, @mogren, @nithu0115, @nprab428, @saiteja313, @willejs, @SaranBalaji90, @anguslees, @abhinavmpandey08, @bnapolitan!
Full changelog
- Improvement - Use install command instead of cp (#1061, @mogren)
- Improvement - Updated manifest configs with default env vars (#1057, @saiteja313)
- Improvement - Default to random-fully (#1048, @mogren)
- Improvement - Update probe settings (#1028, @mogren)
- Improvement - Added warning if delete on termination is set to false for the primary ENI (#1024, @jayanthvn)
- Improvement - Use sed as a stream editor and redirect to file (#1069, @willejs)
- Improvement - JSON output format for the entrypoint script (#1066, @jayanthvn)
- Improvement - Limit scope of logs writable by ipamd container (#987, @anguslees)
- Improvement - Autogenerate per-region YAML manifests from a common template (#986, @anguslees)
- Improvement - Persist IPAM state to local file and use across restarts (#972, @anguslees)
- Improvement - Add init container (#955, @mogren)
- Improvement - Refresh subnet/CIDR information periodically (#903, @nithu0115)
- Improvement - Add ipamd changes for sg support (#1126, @mogren)
- Improvement - Add support to setup pod network using VLANss (#1125, @SaranBalaji90)
- Improvement - Improve CRI->checkpoint logic in the face of downgrades (#1123, @anguslees)
- Improvement - Slash and burn unused code (#1115, @anguslees)
- Improvement - Remove references to unused metadata owner-id (#1111, @anguslees)
- Improvement - Remove old pre-1.3 migration code (#1110, @anguslees)
- Improvement - Enable log config for the metrics agent (#1104, @mogren)
- Improvement - Refactor ENI limit struct (#1035, @mogren)
- Docs - Changed data type for variables in README (#1116, @abhinavmpandey08)
- Docs - Fix docs links for cni-metrics-agent (#1072, @mogren)
- Bug - Make metrics-helper docker logging statement multi-arch compatible (#1067, @nprab428)
- Bug - Use limits from API for g4dn.16xlarge (#1086, @mogren)
- Testing - scripts/lib: bump up tester to v1.4.0 (#1065, @gyuho)
- Testing - Create script to run all release tests (#1106, @bnapolitan)
- Testing - Add parallel testing to conformance (#1018, @bnapolitan)
- Testing - Cache go packages in CircleCI (#1017, @bnapolitan)
- Testing - Create roles by default for e2e test cluster creation (#994, @bnapolitan)
- Testing - Cover bottlerocket cluster test (#1096, @bnapolitan)
- Testing - Introduce automated performance testing (#1068, @bnapolitan)
To update your cluster to use this release in one of your clusters, you should download the sample aws-node daemonset config and edit it to match your region and settings, or alternatively for us-west-2 just:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.7.0/config/v1.7/aws-k8s-cni.yaml
To verify the update:
kubectl describe ds aws-node -n kube-system | grep Image | cut -d ":" -f 2-3
602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon-k8s-cni:v1.7.0
To use version v1.7.0 of the cni-metrics-helper in a cluster:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.7.0/config/v1.7/cni-metrics-helper.yaml