This repository has been archived by the owner on Sep 30, 2020. It is now read-only.
v0.9.10: Kubernetes 1.9.x, Self Hosted Calico + Flannel, GPU support via device plugin, IPVS proxy mode, More fine-grained IAM roles management w/ kube2iam and kiam
SEEMS TO BE BROKEN. See #1280 for more information. Probably v0.10.0 will be cut soon with the fix proposed there.
Changelog since v0.9.9
Please see our roadmap for details on upcoming releases.
Component versions
Kubernetes: v1.9.3
Etcd: v3.2.13
Calico: v
Helm/Tiller: v2.6.0
Actions required
Features
- #1066: Added Priority to the admissioncontrol list(Thanks to @zonzamas)
- #1074: Add [experimental] option for using IPVS proxy mode(Thanks to @ivanilves)
- #1086: controlplane config: Rotate Certificates on workers kubelet(Thanks to @zonzamas)
- #1090: Set V4 signatures to enable kube-resources-autosave to work in all regions(Thanks to @whereisaaron)
- #1092: Allow exposing several ports so that external Prometheus can scrape K8S system components' metrics(Thanks to @zach-dunton-sf)
- #1098: Add missing admission controllers(Thanks to @danielfm)
- #1108: Add RotateKubeletClientCertificate feature gate automatically when rotating certificates(Thanks to @zonzamas)
- #1113: Add support for CloudFormation service role
- #1116: conditionally deploy kube-dns to controllers(Thanks to @zonzamas)
- #1117: Add priorityClassName to cloud-config-controller(Thanks to @sergi)
- #1123: Add [optional] explicit IAM role specification to NodeDrainer(Thanks to @ivanilves)
- #1127: Swap out wget for curl in node drainer scripts(Thanks to @c-knowles)
- #1129: Template kube-dns-autoscaler parameters(Thanks to @SomeoneWeird)
- #1134: feat(integration): kiam support
- #1141: Add Mutating/ValidatingAdmissionWebhook to Admission Control List(Thanks to @shraykay)
- #1164: Apply Kiam TLS Secrets to kube-system(Thanks to @kevtaylor)
- #1167: Change bash to sh in autosave(Thanks to @kevtaylor)
- #1172: added autoscaling:DescribeAutoScalingGroups to stack-template(Thanks to @luck02)
- #1177: Integrate s3-uri flag into cluster.yml(Thanks to @jorge07)
- #1178: Ask for confirmation in destroy command(Thanks to @jorge07)
- #1179: Correct insignificant error message typo(Thanks to @whereisaaron)
- #1181: Enable DescribeLaunchConfigurations(Thanks to @luck02)
- #1184: Add IAM roles for resources auto saver(Thanks to @kevtaylor)
- #1195: Add networking-daemonsets feature(Thanks to @davidmccormick)
- #1197: do not use metric server when metricsServers addon is disabled(Thanks to @Fsero)
- #1201: Make CoreOS AMI ID mandatory in cluster YAML(Thanks to @jorge07)
- #1202: Dedicated Service account / Cluster Role for Tiller Deploy(Thanks to @kylehodgetts)
- #1205: core: add OwnerReferencesADM(Thanks to @luck02)
- #1222: Add GPU support for kubernetes 1.9+ using device plugins(Thanks to @Lemmons)
- #1227: Enable user provided service-account-signing-keys(Thanks to @davidmccormick)
- #1228: Another implementation of user-data fingerprinting(Thanks to @davidmccormick)
- #1234: handle kubectl apply failures by trying delete+create(Thanks to @davidmccormick)
- #1235: Bug/flannel cni binary install(Thanks to @davidmccormick)
- #1239: KIAMImage should affect server as well as client.(Thanks to @davidmccormick)
- #1243: Admission Controller for PersistentVolumeClaimResize(Thanks to @kevtaylor)
- #1244: Inherit controlplane Kubenetes-Newtworking config in node pools.(Thanks to @davidmccormick)
- #1249: [Canal] Support tainted worker(Thanks to @ArchiFleKs)
Improvements
- #1241: Disable coreOS auto-updates(Thanks to @jorge07)
- #1259: update kubernetes-dashboard to 1.8.3(Thanks to @Vrtak-CZ)
- #1268: autoscaler: update cloud-config-controller(Thanks to @cmcconnell1)
- #1103: Update various components(Thanks to @camilb)
- #1104: Bump Kubernetes version to 1.9.1. Use Google's hyperkube image.(Thanks to @camilb)
- #1107: Warn that 'kube-aws update' can replace all if 'amiId' is blank(Thanks to @whereisaaron)
- #1236: Bump Kubernetes to v1.9.3
- #1251: Bump Calico/Typha Versions now Typha Issue resolved.(Thanks to @davidmccormick)
Bug fixes
- #1270: Fix etcd startup(Thanks to @Confushion)
- #1095: fix restore.sh(Thanks to @skloss)
- #1101: Fix kubelet.service startup.(Thanks to @camilb)
- #1131: Fix Key name for kubernetesDashboardImage(Thanks to @bgeesaman)
- #1171: Fix validation failure on gp2 volume type for node pools(Thanks to @luck02)
- #1225: Fix synchronization on starting etcdadm-reconfigure(Thanks to @ktateish)
- #1229: Fix issue with tiller having to restrictive permissions(Thanks to @kylehodgetts)
Documentation
- #1097: Update documentation that hostPort issue fixed since Kubernetes 1.7.0(Thanks to @whereisaaron)
- #1118: Tidy up markdown(Thanks to @whereisaaron)
- #1155: Prompt for passphrase when dealing with encrypted ca key(Thanks to @tomas-edwardsson)
- #1198: Doc: notice about service token invalidation after credentials update.(Thanks to @hartym)
- #1216: Fix documentation of s3-uri(Thanks to @c-knowles)
- #1250: Fix typo of Getting Started.(Thanks to @manabusakai)