[gardener]
⚠️ Breaking Changes
- [OPERATOR] Gardener now requires seed clusters to run at least Kubernetes version
1.18. Please update your seed clusters if necessary before updating to this Gardener version. Older Kubernetes releases will not be supported any more. Please note, the version support for shoot clusters is not affected by this change. (#4426, @timuthy)
✨ New Features
- [OPERATOR] Gardener API server now has a feature gate
DisallowKubeconfigRotationForShootInDeletion, disabled by default, that disallows kubeconfig rotation to be requested for shoot cluster in deletion. (#4379, @vpnachev) - [OPERATOR] Shoot SSH Keys are regularly rotated, with both the current and previous key being deployed onto each shoot node. (#4224, @xrstf)
- [DEVELOPER] Support option requiring shoot connection to be external (#4366, @deitch)
🐛 Bug Fixes
- [USER] A fix included in v1.27.0 and v1.27.1 was reverted, because it introduced a regression which caused clusters configured with
containerdas a runtime to fail to reconcile (see #4390 for more details). This now means that bug #4254 still exists in gardener >1.27.1. (#4408, @voelzmo) - [OPERATOR] A bug has been fixed which caused seed clusters running Kubernetes v1.15 not to get ready. (#4431, @timuthy)
- [OPERATOR] An issue that was not allowing creation of garden Project (with .spec.namespace=garden) is now fixed. (#4423, @mliepold)
- [OPERATOR] A bug in the cloud config downloader script that was generating error messages like
bash: line 161: ;: command not foundhas been fixed. (#4355, @vpnachev)
🏃 Others
- [OPERATOR] A potential race condition in gardenlet that can lead to nil pointer dereference during the deletion of hibernated Shoot is now fixed. (#4439, @ialidzhikov)
- [OPERATOR] Fluent-bit priority class value is increased from 50 to 150 (#4407, @vlvasilev)
- [OPERATOR] The SSH keypair rotation on maintenance window is now set behind a new alpha feature gate in gardener-controller-manager -
RotateSSHKeypairOnMaintenance. (#4397, @ialidzhikov) - [OPERATOR] Upgrade grafana to 7.5.10 (#4389, @wyb1)
[autoscaler]
🐛 Bug Fixes
- [USER] Avoids panics when VM type isn't found during scale from zero (gardener/autoscaler#81, @ialidzhikov)
- [USER] Fetches the VM from the correct map for MCM provider Azure and hence doesn't panic anymore (gardener/autoscaler#81, @ialidzhikov)
[gardener-resource-manager]
✨ New Features
- [OPERATOR] Don't overwrite resources/replicas of objects annotated with
resources.gardener.cloud/preserve-{resources,replicas}. (gardener/gardener-resource-manager#122, @harishmanasa) - [DEVELOPER] The
gardener-resource-managernow features an optional garbage collector controller (disabled by default) for immutableConfigMaps/Secrets. Please take a look at this document if you want to use it. (gardener/gardener-resource-manager#127, @rfranzke)
🐛 Bug Fixes
- [OPERATOR] Fix the
--versionflag to print the appropriate metadata. (gardener/gardener-resource-manager#129, @ialidzhikov)
📰 Noteworthy
- [DEVELOPER] Most dependencies have been revendored, most prominently: (gardener/gardener-resource-manager#126, @rfranzke)
github.com/gardener/gardener@v1.26.1k8s.io/*@v0.21.2sigs.k8s.io/controller-runtime@v0.9.1
Docker Images
admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.28.0
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.28.0
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.28.0
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.28.0
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.28.0
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.28.0
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.28.0