v1.60.2

[gardener/gardener-extension-provider-aws]

🐛 Bug Fixes

• [OPERATOR] Fixed an issue that caused deployment issues with the gardener.cloud-fast storage class when the extension was deployed by gardener-operator in the garden runtime cluster. The deployment of this StorageClass object is now only done for AWS seeds. by @timuthy [#1239]

Helm Charts

• admission-aws-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-application:v1.60.2
• admission-aws-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-runtime:v1.60.2
• provider-aws: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-aws:v1.60.2

Docker Images

• gardener-extension-admission-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.60.2
• gardener-extension-provider-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.60.2

v1.60.1

[gardener/gardener-extension-provider-aws]

🐛 Bug Fixes

• [OPERATOR] Add specific object selectors for shoot webhooks to avoid high load in large landscapes by @kon-angelo [#1235]

Helm Charts

• admission-aws-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-application:v1.60.1
• admission-aws-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-runtime:v1.60.1
• provider-aws: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-aws:v1.60.1

Docker Images

• gardener-extension-admission-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.60.1
• gardener-extension-provider-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.60.1

v1.59.3

[gardener/machine-controller-manager-provider-aws]

🐛 Bug Fixes

• [OPERATOR] Fixed a panic that occurs while fetching the status of a VM backing a machine from the provider. by @renormalize [gardener/machine-controller-manager-provider-aws#180]

🏃 Others

• [DEVELOPER] Updated go lang version to 1.23.3 by @thiyyakat [gardener/machine-controller-manager-provider-aws#179]
• [DEVELOPER] The gardener/machine-controller-manager dependency has been updated to v0.55.1. Release Notes by @thiyyakat [gardener/machine-controller-manager-provider-aws#179]
• [OPERATOR] Added gosec for Static Application Security Testing (SAST). by @thiyyakat [gardener/machine-controller-manager-provider-aws#179]

Helm Charts

• admission-aws-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-application:v1.59.3
• admission-aws-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-runtime:v1.59.3
• provider-aws: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-aws:v1.59.3

Docker Images

• gardener-extension-admission-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.59.3
• gardener-extension-provider-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.59.3

v1.60.0

[gardener/gardener-extension-provider-aws]

📰 Noteworthy

• [USER] The kube-system/csi-driver-node DaemonSet is no longer scaled by a VerticalPodAutoscaler as it does not really benefit from it. Removing VerticalPodAutoscaler for that component will reduce unnecessary evictions by VPA and will be a mitigation for https://issues.k8s.io/126921. by @ialidzhikov [#1179]

✨ New Features

• [USER] Support for VolumeAttributesClasses can now be enabled via shoot annotation. by @AndreasBurger [#1152]

🏃 Others

• [OPERATOR] In IPv6 and dual stack shoot cluster external load balancers will get the aws dual stack load balancer annotations in order to work properly. by @DockToFuture [#1160]
• [OPERATOR] Add validation of internal-subnet CIDR for IPv6 shoots by @AndreasBurger [#1186]
• [OPERATOR] Set primary-ip-family flag for aws-ipam-controller by @DockToFuture [#1168]
• [USER] Shoots with NodeLocalDNS enabled will use UDP instead of TCP for upstream DNS queries by default to avoid performance issues on AWS. by @domdom82 [#1161]
• [DEPENDENCY] Update gardener to v1.110.0 by @hebelsan [#1176]

[gardener/machine-controller-manager-provider-aws]

🐛 Bug Fixes

• [OPERATOR] Fixed a panic that occurs while fetching the status of a VM backing a machine from the provider. by @renormalize [gardener/machine-controller-manager-provider-aws#180]

🏃 Others

• [OPERATOR] Added gosec for Static Application Security Testing (SAST). by @thiyyakat [gardener/machine-controller-manager-provider-aws#179]
• [DEVELOPER] Updated go lang version to 1.23.3 by @thiyyakat [gardener/machine-controller-manager-provider-aws#179]
• [DEVELOPER] The gardener/machine-controller-manager dependency has been updated to v0.55.1. Release Notes by @thiyyakat [gardener/machine-controller-manager-provider-aws#179]

[gardener/terraformer]

🐛 Bug Fixes

• [DEVELOPER] Provider azurerm was updated to version 3.47.0 and is now properly recognising the ARM_OIDC_TOKEN_FILE_PATH env variable. by @dimityrmirchev [gardener/terraformer#156]

🏃 Others

• [OPERATOR] Update alpine to v3.21.2 by @kon-angelo [gardener/terraformer#157]
• [OPERATOR] Update golang to v1.23.5 by @kon-angelo [gardener/terraformer#157]

Helm Charts

• admission-aws-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-application:v1.60.0
• admission-aws-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-runtime:v1.60.0
• provider-aws: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-aws:v1.60.0

Docker Images

• gardener-extension-admission-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.60.0
• gardener-extension-provider-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.60.0

v1.59.2

[gardener/gardener-extension-provider-aws]

🐛 Bug Fixes

• [USER] Fix the NamespacedCloudProfile status mutation. by @LucaBernstein [#1172]

Helm Charts

• admission-aws-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-application:v1.59.2
• admission-aws-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-runtime:v1.59.2
• provider-aws: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-aws:v1.59.2

Docker Images

• gardener-extension-admission-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.59.2
• gardener-extension-provider-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.59.2

v1.59.1

[gardener/gardener-extension-provider-aws]

🐛 Bug Fixes

• [USER] Use ipv6 CIDR in ID string only for IPv6 only subnets. by @AndreasBurger [#1163]

Helm Charts

• admission-aws-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-application:v1.59.1
• admission-aws-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-runtime:v1.59.1
• provider-aws: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-aws:v1.59.1

Docker Images

• gardener-extension-admission-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.59.1
• gardener-extension-provider-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.59.1

v1.59.0

[gardener/gardener-extension-provider-aws]

⚠️ Breaking Changes

• [OPERATOR] The Helm charts for the application and runtime parts of the gardener-extension-admission-aws admission controller have been separated into standalone charts. These charts now assume a Garden setup with a virtual garden. Both charts must be deployed individually: the runtime chart on the Garden runtime cluster, and the application chart on the virtual garden. Additionally, the intermediate global level in the Helm values has been removed, so you may need to adjust your provided values accordingly. by @MartinWeindel [#1100]

📰 Noteworthy

• [DEVELOPER] Updated AWS SDK from v1 to v2 by @AndreasBurger [#1060]

✨ New Features

• [OPERATOR] Adjustments for additional deployment of extension and admission controller on Garden runtime cluster by gardener-operator. by @MartinWeindel [#1100]
• [OPERATOR] Support specification of extended resources in provider config node template without re-specifying core resources. by @elankath [#1010]

🏃 Others

• [OPERATOR] Fixed terraform deploy and integration tests for IPv6. by @axel7born [#1112]
• [OPERATOR] update images of pause and alpine container by @hebelsan [#1101]
• [OPERATOR] Add IPv4 ranges from Spec.Networking to Status.Networking. by @axel7born [#1094]
• [OPERATOR] Filter pod ranges for IPv4 CIDRs to configure Custom-Route-Controller. by @axel7born [#1138]
• [OPERATOR] Create bastion vm from the info provided in the cloud profile bastion section by @hebelsan [#1040]
• [OPERATOR] Added validation to allow only IPv6-only shoot clusters, but not dual-stack as it is not supported, yet. by @ScheererJ [#1095]
• [OPERATOR] Fixed an issue preventing the deployment of internal load balancers in IPv6-only shoots. by @axel7born [#1108]
• [OPERATOR] Add NamespacedCloudProfile admission mutation and validation to support custom machine images and types. by @LucaBernstein [#1136]
• [OPERATOR] Remove the duplicate provider type check from the admission webhooks. by @LucaBernstein [#1117]
• [OPERATOR] Fix an issue where the "0.0.0.0/0" route creation would fail if the nat-gateway was previously deleted. by @kon-angelo [#1111]
• [OPERATOR] Update gardener to v1.106.1 by @hebelsan [#1110]
• [OPERATOR] Dual-stack networking, i.e. networks with IPv4 and IPv6, are allowed now. by @ScheererJ [#1139]
• [OPERATOR] AWS load balancers controller is always enabled for IPv6-only and dual-stack shoot clusters. by @ScheererJ [#1099]
• [OPERATOR] Harmonize logging output from controller-runtime logger and kubernetes logger. by @DockToFuture [#1105]
• [OPERATOR] gosec was introduced for Static Application Security Testing (SAST). by @DockToFuture [#1105]
• [DEPENDENCY] Update go to version 1.23.3 by @hebelsan [#1121]
• [DEVELOPER] Add gosec as sast makefile target by @hebelsan [#1123]

📖 Documentation

• [USER] Add overview documentation for IPv6 by @ScheererJ [#1143]

[gardener/aws-custom-route-controller]

✨ New Features

• [USER] gosec was introduced for Static Application Security Testing (SAST). by @ScheererJ [gardener/aws-custom-route-controller#34]
• [USER] Update sdk version to v2 by @kon-angelo [gardener/aws-custom-route-controller#48]
• [USER] The aws-custom-route-controller only adds node routes for IPv4 pod CIDR ranges and does not interfere with IPv6 routes. by @DockToFuture [gardener/aws-custom-route-controller#43]

🏃 Others

• [OPERATOR] Bumps golang from 1.23.2 to 1.23.3. by @dependabot[bot] [gardener/aws-custom-route-controller#44]
• [OPERATOR] Bumps golang from 1.23.1 to 1.23.2. by @dependabot[bot] [gardener/aws-custom-route-controller#33]

v1.58.3

[gardener/gardener-extension-provider-aws]

🏃 Others

• [OPERATOR] Ignore alreadyDetached errors when detaching instead of erroring out by @kon-angelo [#1118]

Helm Charts

• admission-aws-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-application:v1.58.3
• admission-aws-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-runtime:v1.58.3
• provider-aws: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-aws:v1.58.3

Docker Images

• gardener-extension-admission-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.58.3
• gardener-extension-provider-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.58.3

v1.58.2

[gardener/gardener-extension-provider-aws]

🐛 Bug Fixes

• [OPERATOR] Fix missing nil check after getting route table by @hebelsan [#1107]

Helm Charts

• admission-aws-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-application:v1.58.2
• admission-aws-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-runtime:v1.58.2
• provider-aws: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-aws:v1.58.2

Docker Images

• gardener-extension-admission-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.58.2
• gardener-extension-provider-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.58.2

v1.58.1

[gardener/gardener-extension-provider-aws]

🐛 Bug Fixes

• [OPERATOR] Fix flow: Ignore subnet not found in infra state while deleting routing table associations by @hebelsan [#1098]

Helm Charts

• admission-aws-application: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-application:v1.58.1
• admission-aws-runtime: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/admission-aws-runtime:v1.58.1
• provider-aws: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/extensions/provider-aws:v1.58.1

Docker Images

• gardener-extension-admission-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/admission-aws:v1.58.1
• gardener-extension-provider-aws: europe-docker.pkg.dev/gardener-project/releases/gardener/extensions/provider-aws:v1.58.1