tigera/operator v1.27.0

on GitHub

0 May 2022

Included Calico versions

Calico version: v3.23.0
Calico Enterprise version: v3.13.1

Enhancements

• Add Typha preferred zone anti-affinity #1937 (@tmjd)
• Update IPv6 migration for VXLAN #1924 (@lmm)
• Add list/watch permissions for clusterinformations on calico-kube-controller #1892 (@sknat)
• BGPConfiguration operator in tigera #1888 (@hanamantagoudvk)
• Make password generation more secure. #1882 (@fasaxc)
• Migrate IPv6 and dual-stack clusters #1877 (@lmm)
• Support for migrating a BPF cluster to operator install #1860 (@sridhartigera)
• [Calico Enterprise] Update AD GlobalalertTemplate + add feature toggle flag for intrusion detection #1856 (@freecaykes)
• Update felixconfig CRD for DNSPolicyMode #1844 (@robbrockbank)
• Use certificatemanager for dex #1822 (@rene-dekker)

Bug fixes

• [Calico Enterprise] Fix enabling/disabling compliance flag for Voltron #1866 (@rene-dekker)
• [Calico Enterprise] Move pullsecret creation right after the namespace is created #1853 (@doublek)
• Fix setting of Typha healthport #1933 (@caseydavenport)
• [master] Add missing rbac for kube controllers #1848 (@rene-dekker)
• Respect felixconfig health port #1846 (@caseydavenport)

Other changes

• Update CRDs to the latest #1947 (@hjiawei)
• Update to Calico v3.23.0 #1946 (@mgleung)
• bump go to 1.17.9 #1941 (@doublek)
• Set VXLAN encap for IPv6 pools #1939 (@caseydavenport)
• [release-v1.27] Auto pick #1934: Fix formatting and generated files #1936 (@caseydavenport)
• Enable static-checks in CI and fix all checks #1932 (@tmjd)
• hack: add calico/windows to ignored images for gen-versions #1929 (@lmm)
• A small typo makes the files harder to find #1928 (@rene-dekker)
• Ignore csi driver, not installed via operator #1927 (@caseydavenport)
• Update CRDs #1925 (@lmm)
• Update containernetworking pin #1921 (@caseydavenport)
• Update CRDs #1895 (@lmm)
• Disable WireguardHostToHost encryption for AKS/EKS with Calico CNI #1894 (@song-jiang)
• Add run options to test code in real clusters #1893 (@rene-dekker)
• Update with latest CRDs #1886 (@tmjd)
• Fix tests #1884 (@doublek)
• make validate-gen-versions #1880 (@rene-dekker)
• Add the internal-manager-tls pem to the trusted bundle for es-proxy #1878 (@rene-dekker)
• Update with latest CRDs #1876 (@tmjd)
• Improve error message and fix ns for manager-internal-tls #1873 (@rene-dekker)
• Change to populate HTTP details in all cases when rule is triggered #1871 (@StevenTigera)
• Updating ids forward cert path #1868 (@freecaykes)
• image name change: app-policy -> dikastes. #1865 (@bartolini)
• Bump go-build to 0.65.1 #1863 (@doublek)
• Add pull policy explicitly #1850 (@caseydavenport)
• make validate-gen-versions #1849 (@rene-dekker)
• Update kube-controllers RBAC #1828 (@pasanw)