Kubernetes-native system managing the full lifecycle of conformant Kubernetes clusters as a service on Alicloud, AWS, Azure, GCP, OpenStack, vSphere, KubeVirt, Hetzner, EquinixMetal, MetalStack, and OnMetal with minimal TCO.
OTHER License
Published by gardener-robot-ci-2 over 3 years ago
RequestLimitExceeded
are now treated as ERR_INFRA_RATE_LIMITS_EXCEEDED
(instead of ERR_INFRA_QUOTA_EXCEEDED
before). (#4255, @vpnachev)ownerReferences
before adopting it. (#4233, @timebertt)admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.25.1
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.25.1
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.25.1
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.25.1
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.25.1
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.25.1
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.25.1
Published by gardener-robot-ci-2 over 3 years ago
hack/hook-me.sh
from its proper location (#4146, @deitch)gardener-resource-manager
is unable to apply/reconcile its desired state due to a conflicting state of resources in the shoot then it will be marked as "configuration problem" error. (#4177, @rfranzke)5m
instead of being waited for the configured deadline period (usually > 20m
/30m
). (#4176, @rfranzke)node-local-dns
feature are added to gardener. (#4136, @DockToFuture)vpn-shoot
service are now read and returned to the user. (#4183, @rfranzke).spec.kubernetes.kubeAPIServer.oidc.signingAlgs[]
list is now validated such that it may only contain algorithms listed in https://datatracker.ietf.org/doc/html/rfc7518#section-3.1. (#4175, @rfranzke)ManagedSeed
if there are shoots scheduled on its seed. (#4166, @stoyanr)admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.25.0
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.25.0
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.25.0
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.25.0
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.25.0
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.25.0
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.25.0
Published by gardener-robot-ci-3 over 3 years ago
admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.24.1
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.24.1
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.24.1
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.24.1
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.24.1
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.24.1
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.24.1
Published by gardener-robot-ci-1 over 3 years ago
admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.23.3
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.23.3
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.23.3
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.23.3
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.23.3
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.23.3
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.23.3
Published by gardener-robot-ci-3 over 3 years ago
Bastion
to be specified for ControllerRegistration .spec.resources[].type
. (#4092, @ialidzhikov)admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.22.6
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.22.6
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.22.6
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.22.6
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.22.6
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.22.6
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.22.6
Published by gardener-robot-ci-3 over 3 years ago
ShootStateDeletionValidator
is removed. Explicitly enabling or disabling it via the gardener-api-server will cause the gardener-api-server to fail to start. This fixes an error caused by a not-in-time cleaned up ShootState resulting in Shoot creation to fail if a Shoot was deleted and created with the same name in quick succession. (#4100, @BeckerMax).spec.kubernetes.kubeAPIServer.enableAnonymousAuthentication=true
. Anonymous authentication will be disabled by default. (#4072, @dimityrmirchev)gardener-apiserver
, AdminKubeConfigRequest can be used to issue a kubeconfig with cluster-admin privileges for shoot clusters. The default expiration for such request is one hour, but the expiration time can be configured by setting .spec.expirationSeconds
(minimum 10 minutes or 600 seconds). (#3932, @mvladev)AdminKubeConfigRequest
alpha feature gate enables AdminKubeConfigRequest subresource on shoot resources. The feature gate is disabled by default in the gardener-apiserver
and must be explicitly enabled. (#3932, @mvladev)--shoot-admin-kubeconfig-max-expiration
flag in gardener-apiserver
allows to specify the maximum validity duration of a credential requested to a Shoot by an AdminKubeconfigRequest
. If an otherwise valid AdminKubeconfigRequest
with a validity duration larger than this value is requested, a credential will be issued with a validity duration of this value. This flag is only effective when AdminKubeConfigRequest
feature gate is enabled. (#3932, @mvladev)Bastion
to be specified for ControllerRegistration .spec.resources[].type
. (#4090, @ialidzhikov)hack/generate-controller-registration.sh
script does now produce valid ControllerDeployment
resources. (#4088, @rfranzke)1.8.3
. (#4116, @DockToFuture)ManagedIstio
feature gate, is upgraded from 1.8.0
to 1.9.5
(#4101, @mvladev)transmitUnencoded
flag similar to os-gardenlinx. Currently, the old flow is still supported but we plan to deprecate it in the future. (#3902, @BeckerMax)master
branch are only mergeable if they are assigned to this milestone. (#4085, @rfranzke)admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.24.0
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.24.0
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.24.0
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.24.0
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.24.0
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.24.0
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.24.0
Published by gardener-robot-ci-2 over 3 years ago
admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.23.2
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.23.2
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.23.2
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.23.2
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.23.2
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.23.2
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.23.2
Published by gardener-robot-ci-1 over 3 years ago
Bastion
to be specified for ControllerRegistration .spec.resources[].type
. (#4091, @ialidzhikov)hack/generate-controller-registration.sh
script does now produce valid ControllerDeployment
resources. (#4089, @ialidzhikov)admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.23.1
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.23.1
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.23.1
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.23.1
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.23.1
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.23.1
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.23.1
Published by gardener-robot-ci-2 over 3 years ago
admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.22.5
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.22.5
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.22.5
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.22.5
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.22.5
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.22.5
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.22.5
Published by gardener-robot-ci-2 over 3 years ago
limitsRequestsGapScaleParams
for prometheus (#4058, @wyb1)admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.22.4
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.22.4
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.22.4
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.22.4
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.22.4
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.22.4
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.22.4
Published by gardener-robot-ci-1 over 3 years ago
admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.21.2
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.21.2
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.21.2
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.21.2
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.21.2
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.21.2
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.21.2
Published by gardener-robot-ci-1 over 3 years ago
.
(dot) in the name. Before upgrading to this version of Gardener, make sure that you don't have Seed or ManagedSeed with .
(dot) in the system. (#3929, @ialidzhikov)admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.20.5
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.20.5
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.20.5
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.20.5
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.20.5
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.20.5
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.20.5
Published by gardener-robot-ci-1 over 3 years ago
ControllerRegistration
s was outsourced to a new resource type ControllerDeployment
. If you use Gardener's /hack
scripts and utilities, please make sure to run make generate
after you have updated your Gardener dependencies to this version, as it updates the example registration in your extension. Otherwise, please make sure to adjust your example ControllerRegistration
manifest to the new structure. (#3995, @timuthy)kubectl get
is used with the -o wide
flag. (#4032, @vpnachev)
SEED
, PURPOSE
, GARDENER VERSION
, APISERVER
, CONTROL
, NODES
and SYSTEM
.REGION
and STATUS
are introduced.ShootExtensionStatus
to the resource group core.gardener.cloud
which is intended to hold the information of the ProviderStatus
field from multiple Gardener Extension resources from the Seed cluster. (#3878, @danielfoehrKn)ControllerDeployment
was added to the core.gardener.cloud
API group. A ControllerDeployment
is supposed to contain specifications about how extension controllers are deployed to seed clusters. Specifying deployments via ControllerRegistration
s directly is therefore deprecated. Instead, we recommend to use a dedicated ControllerDeployment
resource and reference it in a ControllerRegistration
via spec.deployment.DeploymentRefs[].Name
. Please consult the documentation for more information. (#3995, @timuthy)
ControllerDeployment
s may contain sensitive information, we recommend to add this type to the Gardener API server's EncryptionConfiguration
. This happens automatically if you deploy Gardener via our pre-configured Helm charts (/charts/gardener
).ManagedSeed
deletion has been fixed. (#4045, @rfranzke)hvpa
for the aggregate-prometheus
. (#3998, @wyb1)kube-apiserver
and it fails to start. Since some time, Gardener shows the last 10 log lines for such kube-apiservers in the `shoot..status.lastOperation.description', but error message with the useful information might not be in those lines. Therefore, for shoots clusters running on k8s <1.19 now also the first 1KiB of logs will be shown. (#4050, @vpnachev)limitsRequestsGapScaleParams
for prometheus (#4049, @wyb1)area/operations
has been removed from the github issues templates. (#4013, @vpnachev).gardener.garden.identity
value (deprecated with v1.11.0, removed with v1.22.0) is added again and will be passed to the Helm chart values of ControllerInstallation
s. It's still deprecated and planned to be removed in a future version, hence, Gardener operators have to make sure to update affected provider extensions accordingly. (#4021, @rfranzke)--auto-compaction-mode
and --auto-compaction-retention
to configure auto-compaction for embedded etcd. Default values: auto-compaction-mode="periodic" and auto-compaction-retention="30m" (gardener/etcd-backup-restore#315, @ishan16696)etcdbr_snapshotter_failure
used as a blanket metric to capture any snapshotter error. (gardener/etcd-backup-restore#326, @aaronfern)max-call-send-message-size
, max-request-bytes
and max-txn-ops
) to enable restoration for delta snapshots with large amount of data (large number of events or events with large data). (gardener/etcd-backup-restore#282, @abdasgupta)etcd-custom-image
. (gardener/etcd-backup-restore#327, @shreyas-s-rao)--compress-snapshots
and --compression-policy
respectively. Supported compression policies currently are gzip
(default), lzw
and zlib
. Snapshot compression is disabled by default. (gardener/etcd-backup-restore#293, @ishan16696).spec.sharedConfig.autoCompactionMode
and .spec.sharedConfig.autoCompactionRetention
. (gardener/etcd-druid#157, @ishan16696)StatefulSet
remains pending, warning events of unbound PVC
s are now added to the .status.lastError
of the etcd
resource. This makes it easier for operators to spot potential issues. (gardener/etcd-druid#146, @timuthy)admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.23.0
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.23.0
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.23.0
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.23.0
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.23.0
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.23.0
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.23.0
Published by gardener-robot-ci-1 over 3 years ago
admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.22.3
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.22.3
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.22.3
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.22.3
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.22.3
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.22.3
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.22.3
Published by gardener-robot-ci-1 over 3 years ago
.gardener.garden.identity
value (deprecated with v1.11.0, removed with v1.22.0) is added again and will be passed to the Helm chart values of ControllerInstallation
s. It's still deprecated and planned to be removed in a future version, hence, Gardener operators have to make sure to update affected provider extensions accordingly. (#4024, @rfranzke)admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.22.2
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.22.2
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.22.2
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.22.2
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.22.2
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.22.2
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.22.2
Published by gardener-robot-ci-1 over 3 years ago
.
(dot) in the name. Before upgrading to this version of Gardener, make sure that you don't have Seed or ManagedSeed with .
(dot) in the system. (#3928, @ialidzhikov)admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.21.1
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.21.1
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.21.1
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.21.1
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.21.1
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.21.1
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.21.1
Published by gardener-robot-ci-2 over 3 years ago
hvpa
for the aggregate-prometheus
. (#4009, @ialidzhikov)ToBeDeletedByClusterAutoscaler
taints. This solves issues where pods are pending due to nodes with such taints. (gardener/autoscaler#75, @prashanth26)admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.22.1
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.22.1
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.22.1
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.22.1
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.22.1
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.22.1
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.22.1
Published by gardener-robot-ci-2 over 3 years ago
ClusterRole
s for the gardener-apiserver
and gardener-controller-manager
. As the roleRef
fields of the binding ClusterRoleBinding
s are immutable, also the names of the ClusterRoleBinding
s have been changed. When you apply this version of Gardener then you have to make sure to cleanup the old resources that will be still left in your system be running the following command: (#3975, @rfranzke)
kubectl delete clusterrolebinding/gardener.cloud:apiserver:admin clusterrolebinding/gardener.cloud:controller-manager:admin clusterrole/gardener.cloud:system:gardener-scheduler clusterrolebinding/gardener.cloud:system:gardener-scheduler --ignore-not-found --wait=false
.gardener.garden.identity
value (deprecated with v1.11.0) is removed and no longer passed to the Helm chart values of ControllerInstallation
s. Gardener operators have to make sure to update affected provider extensions accordingly. (#3941, @rfranzke).
(dot) in the name. Before upgrading to this version of Gardener, make sure that you don't have Seed or ManagedSeed with .
(dot) in the system. (#3927, @ialidzhikov)garden/gardener-controller-manager-internal-config
ConfigMap
is now deleted on start-up of gardener-controller-manager
. Please ensure that you run at least v1.20
of your gardenlets before upgrading to this version. (#3888, @rfranzke)spec.machineTypes[].storage.minSize
, spec.machineTypes[].storage.size
is now optional as well. Please perform a nil
check before accessing this field. (#3976, @timuthy)minSize
has been added to spec.volumeTypes[]
and spec.machineTypes[].storage
of the CloudProfile
. It allows to configure the minimum allowed size of a volume configured for shoots (shoot.spec.workers[].volume.size
). (#3976, @timuthy)--node-monitor-grace-period
via .spec.kubernetes.kubeControllerManager.nodeMonitorGracePeriod
(should not be less than 2m). (#3947, @mwennrich)ReversedVPN
feature gate (disabled by default). If enabled, the network connection between the shoot control plane in the seed and the shoot worker nodes will be established from shoot to seed instead of seed to shoot like earlier. Furthermore, in this case the additional "vpn-shoot" load balancer in the shoot cluster will no longer be required. Please note that the feature is in alpha state and might be promoted in future Gardener releases. (#3812, @DockToFuture)
ReversedVPN
only works if APIServerSNI
is enabled.alpha.featuregates.shoot.gardener.cloud/reversed-vpn
can be used for this purpose.RoleBinding
s were changed. (#3985, @timebertt)extensions.gardener.cloud.BackupEntry
resources is now handled by the BackupEntry controller in the gardenlet
. (#3880, @plkokanov)core.gardener.cloud.BackupEntry
resource is no longer reconciled multiple times in a row. (#3880, @plkokanov)Shoot.Status
to reflect the start of a reconcile, restore or migrate operation, instead of retrying the update on conflict. (#3845, @plkokanov)7.5.4
(#3891, @Kristian-ZH)reconciliation
, deletion
and migration
. (#3969, @timuthy)gardener-resource-manager
now uses the default leader election settings again (retries leader election every 2s
). (#3964, @timebertt)FluentBitIdleInputPlugins
for idle fluent-bit pods. (#3943, @vlvasilev)gardener-resource-manager
is present during hibernation. (#3926, @timebertt)infrastructure
and to leave the machine image version empty in a ManagedSeedSet's shootTemplate
. (#3924, @stoyanr)ManagedSeedSet
by adding the annotation gardener.cloud/operation=reconcile
. (#3922, @stoyanr)VolumeAttachment
s on hibernation to unblock hibernation of clusters with custom CSI drivers. (#3916, @timebertt)scale
command, e.g. kubectl scale mss/my-seeds --replicas 3
(#3911, @stoyanr)seed-bootstrap
(#3903, @wyb1)2.2.1
and Fluent-bit to 1.7.3
(#3891, @Kristian-ZH)ERR_INFRA_REQUEST_THROTTLING
error code. Previously these errors were classified as ERR_INFRA_QUOTA_EXCEEDED
and they were no longer retried. There is now a new control loop in GCM that is responsible for retrying such failed Shoots due to rate limit exceeded errors. (#3925, @ialidzhikov)gardener-resource-manager
has been changed from configmapsleases
to leases
. (gardener/gardener-resource-manager#119, @timebertt)
[email protected]
running before upgrading to v0.24
, so that it has successfully required leadership with the hybrid resource lock (configmapsleases
) at least once.vpn-seed-server
pod via the OpenVPN connection. Connectivity from the shoot cluster to the seed cluster via the VPN connection is not needed and blocked with this PR for security reasons. (gardener/vpn2#2, @marwinski)admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.22.0
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.22.0
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.22.0
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.22.0
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.22.0
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.22.0
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.22.0
Published by gardener-robot-ci-3 over 3 years ago
Status
sub-resource of a shoot always reflects the latest results of health and constraint checks. (#3920, @timuthy)minAllowed
for dependency-watchdog. (#3919, @timuthy)shoot.spec.resources
. (#3915, @timuthy)control-apiserver-burst
, control-apiserver-qps
, target-apiserver-burst
, target-apiserver-qps
and min-resync-period
for kubernetes client configurations while fetching objects for MCM cloud provider. (gardener/autoscaler#73, @prashanth26)admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.20.4
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.20.4
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.20.4
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.20.4
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.20.4
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.20.4
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.20.4
Published by gardener-robot-ci-3 over 3 years ago
ProblematicWebhooks
check that was skipping Shoot webhooks is now removed. Before updating to this version of Gardener, please make sure that the provider extensions in the system vendor at least github.com/gardener/[email protected]
. (#3867, @ialidzhikov).spec.kubernetes.kubeControllerManager.horizontalPodAutoscaler.{up,down}scaleDelay
fields have been dropped because they are no longer meaningful. Make sure to upgrade all existing clusters before upgrading to this Gardener version. (#3862, @rfranzke)v1.11
to v1.15
. Make sure that all your registered seed clusters meet this requirement before upgrading to this Gardener version. (#3862, @rfranzke)ConfigMap
or ComponentRegistration
resources are valid. (#3853, @stoyanr)ManagedResource
s have been mostly moved from pkg/operation/common
to pkg/utils/managedresources
. Please note that the signature of the functions might have changed. Especially, the order of the name, namespace string
parameters is now namespace, name string
. (#3780, @rfranzke).status.advertisedAddresses
field in the Shoot
resource now provides a list of advertised URLs of the Kubernetes API Server. (#3883, @mvladev)AuditPolicy
validation are fixed. (#3855, @timebertt)BackupEntries
. Earlier, the controller retrieved all entries instead of only checking the one that is associated to the processed shoot. (#3854, @timuthy)shoot.spec.resources
. (#3906, @timuthy)Status
sub-resource of a shoot always reflects the latest results of health and constraint checks. (#3861, @timuthy)ManagedSeed
(and therefore a rollout of its gardenlet
) by adding the annotation gardener.cloud/operation=reconcile
. (#3847, @stoyanr)minAllowed
for dependency-watchdog. (#3831, @amshuman-kr)control-apiserver-burst
, control-apiserver-qps
, target-apiserver-burst
, target-apiserver-qps
and min-resync-period
for kubernetes client configurations while fetching objects for MCM cloud provider. (gardener/autoscaler#73, @prashanth26)--leader-election-resource-lock
(defaults to configmapsleases
) and the chart value leaderElection.resourceLock
. Please be careful when changing the resource lock and always migrate via multilocks in order to prevent situations where multiple instances of the controller are running with leader election and thus acting on the same resources. (gardener/gardener-resource-manager#117, @timebertt)Ignore
mode for resources managed by a ManagedResource. The primary use case for this mode is a migration of resource from one ManagedResource to another one. (gardener/gardener-resource-manager#118, @ialidzhikov)admission-controller: eu.gcr.io/gardener-project/gardener/admission-controller:v1.21.0
apiserver: eu.gcr.io/gardener-project/gardener/apiserver:v1.21.0
controller-manager: eu.gcr.io/gardener-project/gardener/controller-manager:v1.21.0
scheduler: eu.gcr.io/gardener-project/gardener/scheduler:v1.21.0
gardenlet: eu.gcr.io/gardener-project/gardener/gardenlet:v1.21.0
seed-admission-controller: eu.gcr.io/gardener-project/gardener/seed-admission-controller:v1.21.0
landscaper-gardenlet: eu.gcr.io/gardener-project/gardener/landscaper-gardenlet:v1.21.0