Changelog v1.29.0-alpha.3 since v1.28.0
Components that will be restarted during the update
- Grafana
bashible-api-server
control-plane-manager
cert-manager
chrony
upmeter
Significant Changes
Bump Grafana version to fix zero-day path
The certmanager.k8s.io/v1alpha1 API version is no longer supported
Other Changes
[bashible]
- fixes
- fix incorrect auth value for containerd config only
- Cluster bootstrap on Azure works for Ubuntu 20.04
- fix incorrect auth value for containerd config only
[cert-manager]
- features
- Upgrade cert-manager to v1.6.1
- Pull request
- NOTE! cert-manager controller will be restarted. Cert-manager's CRD with version v1/alphaX is no longer supported
- Pull request
- Instructions for connection Vault with cert-manager
- Pull request
- NOTE! only docs change
- Pull request
- Upgrade cert-manager to v1.6.1
[chrony]
- fixes
- Fixed rollout restart time of chrony daemonset.
- Pull request
- NOTE! chrony module will be restarted.
- Pull request
- Fixed rollout restart time of chrony daemonset.
[deckhouse]
- fixes
- clear values cache when module disabled
- Move context generation into bashible-apiserver
- Pull request
- NOTE! bashible-apiserver will restart
- Pull request
- Fix Deckhouse Manual update mode.
- clear values cache when module disabled
[deckhouse-web]
- fixes
- Added missing 'ca.crt' field to internal values schema
- Added missing 'ca.crt' field to internal values schema
[log-shipper]
- features
- Support storing data in Elasticsearch datastreams
- Support storing data in Elasticsearch datastreams
- fixes
- Fix default CRD values
- Pull request
- NOTE! ClusterLogDestination created in v1.29.0-alpha should be recreated
- Pull request
- Fix default CRD values
[monitoring-kubernetes]
- fixes
- Fixed description for alert
NTPDaemonOnNodeDoesNotSynchronizeTime.
- Pull request
- NOTE! We only use the Deckhouse chrony module, so a description about another NTP daemons is not needed.
- Pull request
- Fixed description for alert
[node-manager]
- features
- Added delete pods from node that requests disruption update when pod eviction is failed.
- Added delete pods from node that requests disruption update when pod eviction is failed.
[prometheus]
- features
- Improved Prometheus FAQ about Lens access.
- Improved Prometheus FAQ about Lens access.
- fixes
- Bump Grafana version to fix zero-day path traversal bug (CVE-2021-43798)
- Bump Grafana version to fix zero-day path traversal bug (CVE-2021-43798)
[secret-copier]
- features
- Implement create–or–update logic for proper reconcile.
- Pull request
- NOTE! Add support of namespace label-selector in
secret-copier.deckhouse.io/target-namespace-selectorannotation value.
- Pull request
- Implement create–or–update logic for proper reconcile.
[yandex-cloud-provider]
- fixes
- Add
additionalExternalNetworkIDsconfig in OpenAPI spec, because Deckhouse does not converge if this field exists in a cluster.
- Add
[ingress-nginx]
- features
- Add the ability to set a default certificate.
- Add the ability to set a default certificate.