[gardener]
⚠️ Breaking Changes
- [DEVELOPER] Deployment specific information from
ControllerRegistrations was outsourced to a new resource typeControllerDeployment. If you use Gardener's/hackscripts and utilities, please make sure to runmake generateafter you have updated your Gardener dependencies to this version, as it updates the example registration in your extension. Otherwise, please make sure to adjust your exampleControllerRegistrationmanifest to the new structure. (#3995, @timuthy)
✨ New Features
- [USER] The shoot resource now support optional columns that are shown only when
kubectl getis used with the-o wideflag. (#4032, @vpnachev)- The optional columns are:
SEED,PURPOSE,GARDENER VERSION,APISERVER,CONTROL,NODESandSYSTEM. - New mandatory columns
REGIONandSTATUSare introduced.
- The optional columns are:
- [USER] Add the resource
ShootExtensionStatusto the resource groupcore.gardener.cloudwhich is intended to hold the information of theProviderStatusfield from multiple Gardener Extension resources from the Seed cluster. (#3878, @danielfoehrKn) - [OPERATOR] A new resource
ControllerDeploymentwas added to thecore.gardener.cloudAPI group. AControllerDeploymentis supposed to contain specifications about how extension controllers are deployed to seed clusters. Specifying deployments viaControllerRegistrations directly is therefore deprecated. Instead, we recommend to use a dedicatedControllerDeploymentresource and reference it in aControllerRegistrationviaspec.deployment.DeploymentRefs[].Name. Please consult the documentation for more information. (#3995, @timuthy)- As
ControllerDeployments may contain sensitive information, we recommend to add this type to the Gardener API server'sEncryptionConfiguration. This happens automatically if you deploy Gardener via our pre-configured Helm charts (/charts/gardener).
- As
- [OPERATOR] Introduce compressed etcd backups for faster upload and download of etcd snapshots. (#3953, @shreyas-s-rao)
🐛 Bug Fixes
- [OPERATOR] A bug generally preventing
ManagedSeeddeletion has been fixed. (#4045, @rfranzke) - [OPERATOR] Fix an issue where the gardenlet overwrites changes from
hvpafor theaggregate-prometheus. (#3998, @wyb1)
🏃 Others
- [OPERATOR] Fixed an issue that prevented the update and deletion of managed seeds on soil clusters. (#4070, @stoyanr)
- [OPERATOR] Gardener administrators are now allowed to access certificatesigningrequests. (#4059, @ialidzhikov)
- [OPERATOR] Some shoot clusters try to wrongly configure the
kube-apiserverand it fails to start. Since some time, Gardener shows the last 10 log lines for such kube-apiservers in the `shoot..status.lastOperation.description', but error message with the useful information might not be in those lines. Therefore, for shoots clusters running on k8s <1.19 now also the first 1KiB of logs will be shown. (#4050, @vpnachev) - [OPERATOR] Adjust hvpa
limitsRequestsGapScaleParamsfor prometheus (#4049, @wyb1) - [OPERATOR] Apply a mitigation that will prevent gardenlet to panic under certain circumstances. (#4046, @ialidzhikov)
- [OPERATOR] istio images are now pulled from the official mirrors to Google Container Registry to prevent any potential dockerhub rate limit issues in environments that use the default images (don't specify any imagevector overwrite). (#4022, @ialidzhikov)
- [OPERATOR] Increase limits for metrics-server. This is a temporary fix until we have non-circular auto-scaling for metrics-server. (#4017, @amshuman-kr)
- [OPERATOR] Disable etcd scale down for shoot clusters with purpose "production". This avoids multiple etcd restarts during the shoot's maintenance time window if VPA recommendation for scale down is inappropriate. (#4016, @amshuman-kr)
- [DEVELOPER] The unknown github label
area/operationshas been removed from the github issues templates. (#4013, @vpnachev)
📰 Noteworthy
- [OPERATOR] The
.gardener.garden.identityvalue (deprecated with v1.11.0, removed with v1.22.0) is added again and will be passed to the Helm chart values ofControllerInstallations. It's still deprecated and planned to be removed in a future version, hence, Gardener operators have to make sure to update affected provider extensions accordingly. (#4021, @rfranzke)
[autoscaler]
🐛 Bug Fixes
- [DEVELOPER] Avoids panics when VM type isn't found during scale from zero (gardener/autoscaler#78, @prashanth26)
- [DEVELOPER] Fetches the VM from the correct map for MCM provider Azure and hence doesn't panic anymore (gardener/autoscaler#78, @prashanth26)
🏃 Others
- [OPERATOR] Bug fix: Allow scaling down of machine with already lowered priority (gardener/autoscaler#75, @prashanth26)
[etcd-backup-restore]
🏃 Others
- [USER] Added CLI flags
--auto-compaction-modeand--auto-compaction-retentionto configure auto-compaction for embedded etcd. Default values: auto-compaction-mode="periodic" and auto-compaction-retention="30m" (gardener/etcd-backup-restore#315, @ishan16696) - [OPERATOR] Added a new metric
etcdbr_snapshotter_failureused as a blanket metric to capture any snapshotter error. (gardener/etcd-backup-restore#326, @aaronfern) - [OPERATOR] etcdbr-compression specification can be configured through helm-charts. (gardener/etcd-backup-restore#307, @ishan16696)
- [OPERATOR] Added CLI-flags (
max-call-send-message-size,max-request-bytesandmax-txn-ops) to enable restoration for delta snapshots with large amount of data (large number of events or events with large data). (gardener/etcd-backup-restore#282, @abdasgupta)
📰 Noteworthy
- [USER] Move bootstrap script out of the helm chart, as it will now be part of the
etcd-custom-image. (gardener/etcd-backup-restore#327, @shreyas-s-rao) - [USER] Add support for snapshot compression/decompression. Compression and compression policy can be configured through flags:
--compress-snapshotsand--compression-policyrespectively. Supported compression policies currently aregzip(default),lzwandzlib. Snapshot compression is disabled by default. (gardener/etcd-backup-restore#293, @ishan16696)
[etcd-druid]
✨ New Features
- [USER] Configure auto-compaction policy for etcd and backup sidecar's embedded etcd via Etcd resource via
.spec.sharedConfig.autoCompactionModeand.spec.sharedConfig.autoCompactionRetention. (gardener/etcd-druid#157, @ishan16696) - [OPERATOR] Etcd bootstrap script now resides in the custom etcd image instead of being mounted as a configmap. (gardener/etcd-druid#162, @shreyas-s-rao)
🏃 Others
- [OPERATOR] If an etcd
StatefulSetremains pending, warning events of unboundPVCs are now added to the.status.lastErrorof theetcdresource. This makes it easier for operators to spot potential issues. (gardener/etcd-druid#146, @timuthy) - [OPERATOR] Snapshot compression specification can be configured through helm-charts as well as etcd resource spec configuration file. (gardener/etcd-druid#138, @ishan16696)
📰 Noteworthy
- [USER] Moved parts of reconciliation for ETCD status that deals with Statefulset to a separate controller. (gardener/etcd-druid#133, @abdasgupta)
Docker Images
admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.23.0
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.23.0
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.23.0
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.23.0
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.23.0
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.23.0
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.23.0