v1.12.0 - 2025-11-21

Changelog since v1.11.0

Update RockyLinux 8 -> 9 and RHEL 8 -> 9 versions for the supported providers. (#3822, @rajaSahil).
RockyLinux 8 and RHEL 8 are not supported anymore because of their too old kernel version fall off minimal required version by Kubernetes.

rocky-9 image on hetzner doesn't work as of time of the release, since it only has IPv6 NS servers configured, regardless of the stack.

Add --all flag to config images list showing all images independent of Kubernetes version (#3782, @peschmae)
Add remove-volumes and remove-lb-services flags to delete dynamically provisioned and unretained PersistentVolumes and LoadBalancer Services before resetting the cluster (#3507, @rajaSahil)
Add bastion SSH private key file setting in host config (#3814, @kron4eg)
Add overridePath API, to configure containerd override_path mirrors parameter (#3843, @kron4eg)
Add support for k8s version 1.34 (#3823, @archups)
Cleanup /etc/kubernetes/tmp after upgrades (#3775, @kron4eg)
Cluster wide KubeletConfig (#3845, @kron4eg)
Export NewRoot() function (#3809, @kron4eg)
Make machine-controller -join-cluster-timeout configurable (#3779, @kron4eg)
Non-root device usage on non-static worker nodes can now be enabled for containerd runtime by setting the value operatingSystemManager.enableNonRootDeviceOwnership to true when OSM is enabled. (#3793, @soer3n)
TBD (#3835, @archups)
kubeone certificates renew command can be used to renew control plane certificates in a KubeOne cluster (#3773, @kron4eg)

Default canal_iface_regex only for hetzner (#3797, @kron4eg)
Don't install software-properties-common on deb systems (#3833, @ttuellmann)
Enable_disk_uuid in vsphere terraform (#3772, @kron4eg)
Fix CSI snapshot webhook name for Nutanix (#3761, @kron4eg)
Fix Nutanix credentials (#3776, @kron4eg)
Fix upgrading OCI helm releases and uninstalling them without reason (#3849, @mohamed-rafraf)
Fix validation to pass when ChartURL is given (#3821, @kron4eg)
Fixed an invalid image reference for the GCE Persistent Disk CSI Driver and update associated images. (#3884, @rajaSahil)
Fixed defaulting of LoggingConfig (#3881, @kron4eg)
Fixes the Hubbele Relay Connection Issues with the Cilium Agent, SSL Connection is fixed by mounting the Server Certificates in the Cilium Agent Container (#3795, @tobstone)
Make it possible to configure FLANNELD_IFACE (#3790, @kron4eg)
Restart kubelets sequentially (#3770, @kron4eg)
Terraform configs for Hetzner are now using cx23 instead of cx22 instance type by default. The cx22 server type is deprecated and will no longer be available for order as of January 1, 2026. Make sure to override the instance type if you are using the new Terraform configs with an existing cluster. (#3871, @adoi)
Upgrade helm v3.18.5 (#3781, @kron4eg)

Add RHEL and RockyLinux 9.6 test scenarios for v1.34 (#3851, @kron4eg)
Bump machine-controller version to v1.63.1 and operating-system-manager version to v1.7.6 (#3817, @archups)
Cluster-autoscaler addon now supports new variable CLUSTER_AUTOSCALER_SCALE_DOWN_UTIL_THRESHOLD to control --scale-down-utilization-threshold parameter. (#3780, @dharapvj)
Update Azure CCM to v1.34.1
Update DigitalOcean CCM to v0.1.64
Update Hetzner CCM and CSI to v2.18.0
Update AWS EBS CSI to v1.51.0
Update ClusterAutoscaler to v1.34.1 (#3847, @archups)
Update OpenStack CCM and CSI version to 1.34.0 (#3846, @archups)
Update machine-controller and operating-system-manager images to v1.64.0 and v1.8.0 respectively (#3848, @kron4eg)
Update machine-controller to v1.63.0 (#3799, @archups)
Upgrade nutanix CSI driver to 3.3.4 (#3808, @kron4eg)
Use flatcar-container-linux-corevm-amd64 for flatcar Azure terraform example (#3806, @kron4eg)