Releases: kubernetes-sigs/kubespray
Releases · kubernetes-sigs/kubespray
v2.12.2
This release includes the following changes:
- Ensures the correct API address in kube-proxy kubeconfig when running upgrade_cluster.yml to have properly working HA (#5558)
You can check how your cluster is currently configured kubectl get -n kube-system configmaps kube-proxy -o yaml | grep server
v2.12.1
v2.12.0
This release includes the following changes.
Announcements
We are looking for maintainers.
Deprecation / Removal
- Removed support for hyperkube (#5378)
- Deprecate in-tree OpenStack cloud controller
- Drop support for Kubernetes version older than v1.15
- Deprecate canal support
Major changes:
- Added experimental support for Amazon Linux 2 (#5301 #5410)
- Added support for Debian 10 (#5408)
- Added support for Terraform v0.12 (#5298)
- Added containerd support on Debian (#5326)
- Added support for Cinder CSI driver (#5184)
- Added CRI-O support for Ubuntu (#4629)
- Adds TLS support for Calico Typha (#5258)
- Added support for Helm3 (#5441)
Applications
- When changing
helm_versionto v3.0.0 or higher in an existing cluster, Tiller will be left alone and has to be removed manually.
Network
N/A
Component versions:
- Kubernetes v1.16.3
- Etcd 3.3.10
- Docker 18.06
- containerd 1.2.10
- Cri-O 1.14.0
- Calico v3.7.3
- Cilium 1.5.5
- Contiv 1.2.1
- Flannel 0.11.0
- Kube-Router 0.2.5
- Multus 3.1-autoconf
- Weave 2.5.2
- CoreDNS 1.6.0
- nodelocaldns 1.15.8
- Helm 2.16.1
- nginx-ingress 0.26.1
- cert-manager 0.11.0
- Kubernetes Dashboard v1.10.1
- Oracle OCI: v0.7.0
Known issues
- macvlan and kube-router tests fail intermittently
Notes
N/A
v2.11.0
This release includes the following changes.
Deprecation/Remval
- Remove support for calico v2.x (#4974)
Major changes:
- Add calico 3.7.3 support (#4953)
- Support for Oracle Linux (#3655)
- Add Kube-OVN cni to kubespray (#5020)
- Add macvlan cni to kubespray (#4901)
- Add an option to reserve resources for OS system daemons (#5007)
- nodelocaldns: allow to set health port, switch to 9254 by default (#4902)
- Change default for kubelet_flexvolumes_plugins_dir (#4752)
- Added file and container image caching (#4828)
- Upgrade to etcd version 3.3.10 per 1.14 release notes. (#4898)
- Containerd support (#4664)
Applications
- Add support for Docker plugins (#4934)
- Add support for http(s)_proxy to CoreOS, Fedora and OpenSUSE (#4669)
- Add Load Balancer IP to API servers SANs (#4775)
- Added configurable min memory assertions (#4307)
- Allow to specify feature_control in calico cni config (#4879)
- Add kube_override_hostname to kubeadm certs. (#4903)
- Refactor calico route reflector to run in k8s cluster (#4975)
Fixes
- Fix for calico with kdd datastore (#4922)
- Fixup deploy of kubeadm etcd for Kubernetes v1.15.0 (#4952)
- Add ansible_hostname and ansible_fqdn to apiserver_sans (#4990)
- Apply etcd_extra_vars to etcd-events.env as well. (#4219)
- Fixed runc path in runtime for RedHat os family (#4731)
Component versions:
- kubernetes v1.15.3
- etcd v3.3.10
- docker v18.06 (see note)
- cri-o v1.11.5 (experimental: see CRI-O Note. Only on centos based OS)
- cni-plugins v0.8.1
- calico v3.7.3
- canal (given calico/flannel versions)
- cilium v1.5.5
- contiv v1.2.1
- flanneld v0.11.0
- kube-router v0.2.5
- multus v3.2.1
- weave v2.5.2
- cephfs-provisioner v2.1.0-k8s1.11
- rbd-provisioner v2.1.1-k8s1.11
- cert-manager v0.5.2
- coredns v1.6.0
- ingress-nginx v0.25.1
v2.10.4
v2.10.3
v2.10.0
This release includes the following changes.
Deprecation / Removal
- rkt is no longer a supported container platform (#4671)
- kube-router deployment is no longer maintained and is considered unstable. Without a maintainer, it will be removed permanently.
nginx_memory_requestshas been renamed toloadbalancer_apiserver_memory_requests,nginx_cpu_requeststoloadbalancer_apiserver_cpu_requestsandnginx_kube_apiserver_porttoloadbalancer_apiserver_port(#4480)
Major changes:
- Add support for Kubeadm experimental control plane (#4514)
- Non-master nodes no longer have label node-role.kubernetes.io/node (#4514)
- All tasks are validated by ansible-lint (#4411)
- Reworked liveness/readiness checks to speed up deploy (#4612)
- Nodelocaldns mode is enabled by default now (#4461)
- Add HAProxy as internal loadbalancer (#4480)
- Nodelocaldns was expecting to use TCP connections towards upstreams (#4492)
- Added generic CNI network plugin (#4322)
Applications
- Nginx ingress proxy now defaults to the label beta.kubernetes.io/os=linux
- Add support calico kubernetes datastore and typha (CURRENTLY NOT WORKING DUE TO #4727)
- Add an ability to provide oidc cert in base64
- Support Azure load balancer standard sku
- Install cri-tools on fedora
- Fix ipip: false in calico v3
Fixes
- Unmask Docker service in ClearLinux
- Avoid creating k8s cert dir on non-k8s nodes
- Fix runc absolute path
- Disable cloud-routes for non-cloud plugin
Component versions:
- Kubernetes v1.14.1
- Etcd 3.2.26
- Docker 18.06
- Cri-O 1.11.5
- Calico v3.4.0
- Cilium 1.3.0
- Contiv 1.2.1
- Flannel 0.11.0
- Kube-Router 0.2.5
- Multus 3.1-autoconf
- Weave 2.5.1
- CoreDNS 1.5.0
- Helm 2.13.1
- Kubernetes Dashboard v1.10.1
- Oracle OCI: v0.7.0
Known issues
- Non-master nodes can no longer set reserved labels (see kubernetes/kubernetes/#68267)
- Kube-router inter-node communication does not work
- Calico KDD does currently not work (see #4727)
v2.8.5
v2.9.0
This release includes the following changes.
Deprecation / Removal
- Non-kubeadm deployment mode (kubeadm_enabled: false) is removed
- Remove support for Ansible 2.5 and 2.6. Ansible 2.7.6 or newer required
- Remove KubeDNS and DNSmasq support
Major changes:
- Add ARM support
- Add support for ClearLinux OS (#3855)
- Add support for webhook token auth (#3939)
- Add support for EPEL repository (Centos and RedHat) (#4088)
- Add support for local-path-provisioner #4232
- Add support for Packet
Applications
- Add support for running a nodelocal dns cache (#3861)
- Dashboard replicas are now configurable (#4344)
- master tolerations for dashboard ar enow configurable (#4290)
- Dashboard
--skip-loginnow configurable (#4265) - Allow customizing container image path used in NVIDIA GPU addon (#4229)
Network
- Upgrade to calico v3.4.0
Component versions:
- Kubernetes v1.13.5
- Etcd 3.2.26
- Docker 18.06
- Rkt 1.21.0
- Cri-O 1.11.5
- Calico v3.4.0
- Cilium 1.3.0
- Contiv 1.2.1
- Flannel 0.11.0
- Kube-Router 0.2.5
- Multus 3.1-autoconf
- Weave 2.5.1
- CoreDNS 1.4.0
- Helm 2.13.1
- Kubernetes Dashboard v1.10.1
- Oracle OCI: v0.7.0
Known issues
Notes
kube_api_anonymous_authnow defaults totrue
Security Patch CVE-2019-1002101
[SECURITY] Kubernetes fix for CVE-2019-1002101
This updates kubernetes version to 1.12.7