Urgent Upgrade Notes
(No, really, you MUST read this before you upgrade)
- Update machine-controller to v1.43.7. This update fixes several issues for RHEL clusters on Azure. If you have RHEL-based MachineDeployments on Azure, we strongly recommend upgrading to KubeOne 1.4.8 and rotating those MachineDeployments BEFORE upgrading to KubeOne 1.5. If not done, the Canal CNI update might break the cluster networking when upgrading to KubeOne 1.5. (#2333, @xmudrii)
Changes by Kind
Bug or Regression
- Mount
/etc/pkito the OpenStack CCM container to fix CrashLoopBackoff on clusters running CentOS 7 (#2303, @xmudrii) - Explicitly create
/opt/binon Flatcar before trying to untar anything to that directory (#2305, @xmudrii) - Mount
/etc/pkito the Azure CCM container to fix CrashLoopBackoff on clusters running CentOS 7 and Rocky Linux (#2310, @kubermatic-bot) - Mount
/usr/share/ca-certificatesto the Azure CCM container to fix CrashLoopBackoff on clusters running Flatcar (#2334, @xmudrii) - Set iptables backend (
FELIX_IPTABLESBACKEND) toNFTfor Canal and Calico VXLAN on clusters running Flatcar Linux and RHEL. For non Flatcar/RHEL clusters, iptables backend is set to Auto, which is the default value and results in Calico determining the iptables backend automatically. The value can be overridden by setting theiptablesBackendaddon parameter (see the PR description for an example). (#2334, @xmudrii)
Checksums
SHA256 checksums can be found in the kubeone_1.4.8_checksums.txt file.