Bump github.com/aws/amazon-vpc-cni-k8s from 1.16.0 to 1.17.1

[dependabot[bot]]

Bumps github.com/aws/amazon-vpc-cni-k8s from 1.16.0 to 1.17.1.

Release notes

Sourced from github.com/aws/amazon-vpc-cni-k8s's releases.

v1.17.1

Release Notes

Network Policy agent now supports a strict mode for network policy enforcement.

Changes since v1.16.4

• Feature - Send pod name/ns to nodeagent for strict mode (@​jayanthvn)
• Feature - gRPC call for networkpolicy agent (@​jayanthvn)
• Improvement - Bump golang.org/x/sys from 0.16.0 to 0.17.0 in /test/agent (@​dependabot)
• Improvement - Bump google.golang.org/grpc from 1.61.0 to 1.62.0 (@​dependabot)
• Improvement - Bump google.golang.org/grpc from 1.61.0 to 1.62.0 (@​dependabot)
• Improvement - Bump github.com/aws/aws-sdk-go from 1.49.13 to 1.50.29 (@​dependabot)
• Improvement - Bump k8s.io/apimachinery from 0.29.0 to 0.29.2 (@​dependabot)
• Improvement - make generate; make generate-limits; remove soak tests (@​jdn5126)
• Improvement - Bump github.com/prometheus/client_golang from 1.18.0 to 1.19.0 (@​dependabot)
• Improvement - Make vpc cni as master CNI in multus-daemonset-thick.yml (@​raghs-aws)
• Improvement - Bump github.com/prometheus/client_model from 0.5.0 to 0.6.0 (@​dependabot)
• Improvement - Repo controlled build go version (@​xdu31)

To manually apply this release:

kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.17.1/config/master/aws-k8s-cni.yaml

Note that the following regions use different manifests:

us-gov-east-1:

kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.17.1/config/master/aws-k8s-cni-us-gov-east-1.yaml

us-gov-west-1:

kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.17.1/config/master/aws-k8s-cni-us-gov-west-1.yaml

cn:

kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.17.1/config/master/aws-k8s-cni-cn.yaml

To apply this release using helm:

Follow the installation instructions in https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.17.1/charts/aws-vpc-cni/README.md#installing-the-chart

Verify the update:

</tr></table> 

... (truncated)

Changelog

Sourced from github.com/aws/amazon-vpc-cni-k8s's changelog.

v1.17.1

• Feature - Send pod name/ns to nodeagent for strict mode (@​jayanthvn)
• Feature - gRPC call for networkpolicy agent(@​jayanthvn)
• Improvement - Bump golang.org/x/sys from 0.16.0 to 0.17.0 in /test/agent (@​dependabot)
• Improvement - Bump google.golang.org/grpc from 1.61.0 to 1.62.0 (@​dependabot)
• Improvement - Bump google.golang.org/grpc from 1.61.0 to 1.62.0 (@​dependabot)
• Improvement - Bump github.com/aws/aws-sdk-go from 1.49.13 to 1.50.29 (@​dependabot)
• Improvement - Bump k8s.io/apimachinery from 0.29.0 to 0.29.2 (@​dependabot)
• Improvement - make generate; make generate-limits; remove soak tests (@​dependabot)
• Improvement - Bump github.com/prometheus/client_golang from 1.18.0 to 1.19.0 (@​dependabot)
• Improvement - Make vpc cni as master CNI in multus-daemonset-thick.yml (@​raghs-aws)
• Improvement - Bump github.com/prometheus/client_model from 0.5.0 to 0.6.0 (@​dependabot)
• Improvement - Repo controlled build go version (@​xdu31)

v1.16.4

• Bug - [Revert #2744 to prevent livelock when attempting to increase datastore pool](aws/amazon-vpc-cni-k8s#2810) (@​jdn5126 )
• Bug - Do not allocate IPs or prefixes to trunk ENIs; enable Custom Networking before Security Groups for Pods (@​jdn5126 )
• Bug - Ignore non-zero cards (@​jchen6585 )
• Documentation - Added description to list of metrics reported by cni-metrics-helper (@​zachdorame )
• Enhancement - Bump helm.sh/helm/v3 from 3.14.1 to 3.14.2 (@​dependabot )
• Enhancement - Add validation for MTU, update ANNOTATE_POD_IP README (@​jdn5126 )
• Enhancement - Update Golang version to 1.21.7; update aws-vpc-cni chart README (@​jdn5126 )
• Enhancement - Bump helm.sh/helm/v3 from 3.14.0 to 3.14.1 (@​jdn5126 )
• Feature - Pod MTU (@​jchen6585 )

v1.16.3

• Dependency - Dependabot updates (@​jdn5126 )
• Dependency - Upgrade Golang version to 1.21.6 (@​jdn5126 )
• Improvement - Enable ENABLE_V6_EGRESS on Clusters with Mixed IPv6/IPv4 Subnets (@​sergeylanzman )
• Improvement - cni-metrics-helper add podAnnotation value (@​prysmakou )
• Improvement - Track max pods, simplify warm IP pool management (@​jdn5126 )
• Improvement - Faster eni scaleup (@​jchen6585 )

v1.16.2

• Bug - Refactor IPTable Rules (@​jchen6585 )
• Bug - log for DelNetworkReply now differentiates between IPv4 and IPv6 addr… (@​zachdorame )
• Dependency - revert CNI spec to 0.4.0 (@​jdn5126 )
• Dependency - update crypto to patch CVE-2023-48795 (@​haouc )
• Dependency - Dependabot updates: aws-sdk-go, containernetworking/plugins, go-logr, grpc, k8s.io/cli-runtime (@​jdn5126 )
• Improvement - Iptables mock (@​jchen6585 )

Commits

• 58f8e21 Update charts manifest for v1.17.1 release (#2851)
• f2c3f73 CHANGELOG, chart, and manifest changes following VPC CNI v1.16.4 release (#2832)
• 5aa2e90 Repo controlled build go version (#2831)
• bcd7214 Bump github.com/prometheus/client_model from 0.5.0 to 0.6.0 (#2829)
• 8ca4e24 Make vpc cni as master CNI in multus-daemonset-thick.yml (#2828)
• 9263973 Bump github.com/prometheus/client_golang from 1.18.0 to 1.19.0 (#2824)
• 482d4fb make generate; make generate-limits; remove soak tests (#2819)
• e57ec68 Bump k8s.io/apimachinery from 0.29.0 to 0.29.2 (#2825)
• 9b7fd42 Bump github.com/aws/aws-sdk-go from 1.49.13 to 1.50.29 (#2826)
• b2f187f Bump google.golang.org/grpc from 1.61.0 to 1.62.0 (#2827)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)