What's Changed
- Promote out-of-bound Kubernetes releases by @yurrriq in #14312
- Update dependencies by @github-actions in #14316
- Avoid spurious changes with bastion hosts due to user data by @hakman in #14318
- Replace --vpc flag with --network-id by @hakman in #14295
- Avoid spurious changes with NLB due to access log config by @hakman in #14319
- Add more details to the NTH documentation by @yurrriq in #14323
- cluster-autoscaler : Add iam permission autoscaling:DescribeScalingActivities needed since 1.24 version by @noony in #14317
- Bump peter-evans/create-pull-request from 4.1.1 to 4.1.2 by @dependabot in #14330
- Bump actions/dependency-review-action from 2.1.0 to 2.4.0 by @dependabot in #14331
- Fix typo in doc for enabling cert-manager dns-01 challenges by @ilyasotkov in #14332
- Scaleway init and nodeup by @Mia-Cross in #14322
- Set metrics-server
--kubelet-preferred-address-typesby k8s version by @hakman in #14336 - Validate
--zonesflag earlier by @hakman in #14343 - Make kOps release and deprecation policy more clear by @olemarkus in #14342
- Bump Terraform tag to v1.3.0 by @hakman in #14335
- Revert "Set metrics-server
--kubelet-preferred-address-typesby k8s version" by @hakman in #14349 - hetzner: Fix metrics-server config to use internal IP by @hakman in #14350
- Set higher verbosity when logging Gossip DNS info by @hakman in #14339
- Update channels with the latest Ubuntu images by @hakman in #14351
- Update channels with the latest Ubuntu images by @hakman in #14354
- Scaleway support in protokube by @Mia-Cross in #14345
- Add node/master size from create cluster into IG spec by @olemarkus in #14347
- Ensure kubelet configuration from IG takes precedence over cluster's by @olemarkus in #14333
- Update dependencies by @github-actions in #14358
- gce: memberlist needs TCP also by @justinsb in #14364
- Bump peter-evans/create-pull-request from 4.1.2 to 4.1.3 by @dependabot in #14367
- Always infer gossip DNS from cluster name by @hakman in #14366
- Refactor NodeUp GossipBuilder to EtcHostsBuilder by @hakman in #14368
- Disable rp_filter on cilium hosts by @olemarkus in #14369
- Fix logic for pre-creating DNS records by @hakman in #14377
- Karpenter : fallback on ondemand instance by default by @noony in #14378
- cluster-autoscaler : Add scaleDownUnneededTime and scaleDownUnreadyTime by @noony in #14379
- update node-problem-detector to version 0.8.12 by @jjinno in #14382
- hetzner: Update CCM to v1.13.2 by @hakman in #14386
- Bump EBS CSI driver to 1.12.0 by @olemarkus in #14388
- Remove fsGroupPolicy as it is immutable by @olemarkus in #14390
- Fix default launch spec detection for spotinst by @2solt in #14389
- Update dependencies by @github-actions in #14395
- Let kOps take ownership of any field currently owned by kubectl by @olemarkus in #14362
- nodeup script: accept strongly typed nodeup.Config by @justinsb in #14397
- Fix typo in format string by @justinsb in #14399
- Bump actions/checkout from 3.0.2 to 3.1.0 by @dependabot in #14400
- update k8s cloudprovider openstack images by @zetaab in #14401
- update k8s openstack by @zetaab in #14406
- karpenter: upgrade to version 0.16.3 and support kubeReserved configuration by @noony in #14408
- Deprecate AWS Classic Load Balancer support for API by @hakman in #14410
- Update dependencies by @github-actions in #14412
- Bump k8s and ubuntu ami version in alpha by @MoShitrit in #14415
- Bump actions/dependency-review-action from 2.4.0 to 2.5.0 by @dependabot in #14416
- bump Openstack ccm version by @zetaab in #14417
- Remove usage of cluster kubelet config in nodeup by @olemarkus in #14419
- Allow snapshot controller to create volumesnapshotcontent by @TwoStone in #14413
- Ensure kOps doesn't surge on karpenter IGs by @olemarkus in #14423
- Bump AWS CCM to 1.25.1 by @olemarkus in #14424
- get-keypairs: Tolerate key set items without certificates by @seh in #14370
- Move setting role taints to cloudup by @olemarkus in #14420
- Bump alpha and stable channel with the latest kops releases by @olemarkus in #14433
- Log and aggregate errors from rolling update by @olemarkus in #14436
- add option to query AMI IDs from SSM by @heybronson in #14434
- Update dependencies by @github-actions in #14438
- Move Gossip check to cluster struct by @hakman in #14439
- Fix pdb for identity webhook by @olemarkus in #14442
- Update Kubernetes support removal documentation by @johngmyers in #14445
- Remove dead code by @johngmyers in #14446
- Bump peter-evans/create-pull-request from 4.1.3 to 4.2.0 by @dependabot in #14447
- Bump actions/setup-go from 3.3.0 to 3.3.1 by @dependabot in #14448
- Fix 1.22 deprecation notice by @johngmyers in #14449
- Need to setup topology before control plane for IPv6 private topology by @johngmyers in #14455
- hack: add support for dev-build script for scaleway by @remyleone in #14456
- Update containerd to v1.6.9 by @hakman in #14458
- ipv6: Tolerate multiple routes to the same NAT Gateway by @johngmyers in #14461
- Update dependencies by @github-actions in #14467
- Update Calico and Canal to v3.24.3 by @hakman in #14466
- Stop applying the beta.kubernetes.io/os by @pacoxu in #14459
- Fix Prometheus scraping for pod-identity-webhook by @jim-barber-he in #14463
- ipv6: NPE fixes for IPv6-only instances by @johngmyers in #14470
- aws: Set the target group health check interval to 10s by @hakman in #14473
- Bump actions/dependency-review-action from 2.5.0 to 2.5.1 by @dependabot in #14476
- Refactor to avoid looking up SSH keypairs twice by @johngmyers in #14475
- Refactor all normalization code into new Normalize() method by @johngmyers in #14477
- Move GCE project under CloudProvider in v1alpha3 API by @johngmyers in #14443
- Upgrade Amazon VPC CNI to v1.12.0 by @MoShitrit in #14485
- Remove well known account aliases for unsupported distros by @johngmyers in #14484
- Update aws.md by @slb235 in #14486
- doc_fix: fixing update cluster command by @swagftw in #14487
- hetzner: Create cluster without DNS or Gossip by @hakman in #14440
- hetzner: Use kops-controller for node bootstrap by @hakman in #14460
- Add e2e template for dedicated APIserver nodes without DNS by @hakman in #14489
- hetzner: Add listener for kops-controller when using it for node bootstrap by @hakman in #14492
- Update dependencies by @github-actions in #14494
- Revert deprecation of positional clustername args by @johngmyers in #14454
- Create NLB instead of CLB for bastion by @johngmyers in #14468
- Deprecate Ubuntu 18.04 by @johngmyers in #14488
- Also dump logs from IPv6 nodes by @johngmyers in #14500
- aws: Create cluster without DNS or Gossip by @hakman in #14452
- aws: delete CLBs after migration to NLB by @johngmyers in #14499
- Update TopologySpec for v1alpha3 API by @johngmyers in #14498
- Set customizable affinity and tolerations for coredns-autoscaler to match main coredns deployment by @MoShitrit in #14503
- azure: Update clients to latest (previous) versions by @hakman in #14509
- do: Return ingress addresses even when public name is not set by @hakman in #14508
- AWS CNI template updates by @MoShitrit in #14513
- azure: Fix various issues when creating and updating clusters by @hakman in #14514
- Remove support for "external" networking as of k8s 1.26 by @johngmyers in #14511
- Remove obsolete kubenet information from networking.md by @johngmyers in #14512
- aws: Fix TestPolicyGeneration output by @hakman in #14517
- Use bastion to dump private instances by @johngmyers in #14522
- bump k8s patch versions in alpha for November releases by @MoShitrit in #14526
- Change the default networking provider to Cilium by @johngmyers in #14524
- Promote Ubuntu Version from Alpha to Stable by @MoShitrit in #14525
- Can only request agent forwarding once per connection by @johngmyers in #14529
- Update dependencies by @github-actions in #14528
- Skip the SSH-to-nodes test in private topology by @johngmyers in #14530
- Fix a spot missed when changing default CNI to Cilium by @johngmyers in #14533
- Bump channels by @hakman in #14534
- Add --bastion-image flag to "kops create cluster" by @johngmyers in #14535
- Document that Flatcar can run Calico IPv6 by @johngmyers in #14536
- build(deps): bump actions/dependency-review-action from 2.5.1 to 3.0.0 by @dependabot in #14537
- Use local API server on control plane nodes for clusters without DNS by @hakman in #14538
- Use ARM instancetype for ARM images in tests by @johngmyers in #14539
- c7g.large doesn't exist in all regions yet by @johngmyers in #14542
- Clearer error messages around instance types not found by @justinsb in #14544
- Update Go to v1.19.3 by @hakman in #14549
- Update Calico and Canal to latest versions by @hakman in #14551
- Update containerd to v1.6.10 by @hakman in #14550
- Update topology.md by @johngmyers in #14543
- Add missing create tags permissions for cilium operator in ENI mode by @olemarkus in #14563
- Bump AWS Load Balancer Controller to 2.4.5 by @olemarkus in #14540
- Ensure IRSA is enabled when using Karpenter by @olemarkus in #14541
- use sprig join for template functions by @heybronson in #14564
- Remove dead code by @johngmyers in #14565
- Run some scenarios on ARM by @johngmyers in #14548
- Boot nodes without state store access by @hakman in #14501
- Allow using the price-capacity-optimized spot allocation strategy by @olemarkus in #14573
- Add "kops get all" command by @johngmyers in #14532
- aws: Fix SIGSEGV when using instance selector by @hakman in #14576
- Set IMDS max hop limit to 1 for control plane nodes if IRSA is enabled by @olemarkus in #14572
- Update dependencies by @github-actions in #14584
- Bump cilium to 1.11.11 by @olemarkus in #14586
- Update ko to v0.12.0 by @hakman in #14585
- Fix disabling StorageClass management by @olemarkus in #14589
- Switch to using k8s.io/cloud-provider-gcp by @hakman in #14587
- skip Loadbalancer UDP tests by @aojea in #14594
- Stop making MasterInternalName configurable by @johngmyers in #14507
- Add generics alternatives for fi.Bool/Float*/Int*/String*() by @hakman in #14595
- Re-add inadvertently-dropped deprecation notices by @johngmyers in #14596
- New IPv6 clusters now default to private topology by @johngmyers in #14531
- Use generics to refactor fi.Bool/Float*/Int*/String*() by @hakman in #14592
- Remove CloudFormation tests by @johngmyers in #14602
- Fix the keypair-rotation scenario test by @johngmyers in #14604
- Add option for setting Kubernetes feature gates by @hakman in #14577
- build(deps): bump actions/dependency-review-action from 3.0.0 to 3.0.1 by @dependabot in #14607
- v1alpha3: Move API-related settings under API by @johngmyers in #14504
- Update AMI used in many-addons scenarios by @johngmyers in #14610
- Load images before starting the kubelet service by @hakman in #14613
- Miscellaneous non-user-visible API changes by @johngmyers in #14609
- Remove support for IPv6 on Debian by @johngmyers in #14612
- Add minimum version for specifying an AMI through an SSM parameter by @hakman in #14614
- Scaleway cloud interface, model and tasks by @Mia-Cross in #14431
- Add best practices to getting started with GCE docs by @danielvegamyhre in #14569
- kubetest: dump poddisruptionbudgets and fieldManagers by @justinsb in #14624
- Don't use ptr for CAS expander field by @olemarkus in #14625
- Switch IPv6 integration tests to private topology by @johngmyers in #14620
- aws: Add capacityRebalance flag for ASGs by @heybronson in #14583
- Don't serve config from kops-controller for APIServer nodes by @hakman in #14608
- Change the control-plane IG role to "ControlPlane" in v1alpha3 API by @johngmyers in #14545
- Remove CloudFormation support by @johngmyers in #14599
- hetzner: Update CSI driver to v2.0.0 by @hakman in #14632
- Fix missing locking in mock ModifySubnetAttribute() by @johngmyers in #14634
- Add SELinuxMount feature gate by @jsafrane in #14628
- Create new clusters with updated control plane IG names by @johngmyers in #14633
- Add networking flag option for cilium in eni mode by @olemarkus in #14622
- Add a create cluster integration test for openstack by @olemarkus in #14630
- Set AssignIPv6AddressOnCreation on subnets by @johngmyers in #14635
- Write Terraform vpc_cidr_block output for shared VPCs by @johngmyers in #14631
- Additional control-plane terminology changes by @johngmyers in #14643
- Even more control-plane terminology fixes by @johngmyers in #14645
- hetzner: Set default image to
ubuntu-20.04by @hakman in #14647 - Implement subnet "/64#N" notation in Terraform by @johngmyers in #14621
- aws: Limit the number of target groups updated per operation by @hakman in #14648
- gce: Allow Cilium to connect to its etcd cluster by @hakman in #14655
- e2e: always upload to a versioned directory by @justinsb in #14640
- Declare IPv6 on AWS beta by @johngmyers in #14658
- Refactor rendering Terraform functions into constructor by @johngmyers in #14659
- Update dependencies by @github-actions in #14663
- aws: Add
ec2:DescribeAvailabilityZonesto the AWS CCM permissions list by @lobziik in #14650 - Release 1.26.0-alpha.2 by @johngmyers in #14665
New Contributors
- @noony made their first contribution in #14317
- @ilyasotkov made their first contribution in #14332
- @jjinno made their first contribution in #14382
- @2solt made their first contribution in #14389
- @TwoStone made their first contribution in #14413
- @pacoxu made their first contribution in #14459
- @slb235 made their first contribution in #14486
- @swagftw made their first contribution in #14487
- @danielvegamyhre made their first contribution in #14569
- @jsafrane made their first contribution in #14628
- @lobziik made their first contribution in #14650
Full Changelog: v1.26.0-alpha.1...v1.26.0-alpha.2