Update module github.com/gardener/gardener to v1.98.2

gardener-ci-robot commented 2 months ago

This PR contains the following updates:

Package	Type	Update	Change
github.com/gardener/gardener	require	minor	`v1.97.2` -> `v1.98.2`

Release Notes

gardener/gardener (github.com/gardener/gardener)

### [`v1.98.2`](https://togithub.com/gardener/gardener/releases/tag/v1.98.2) [Compare Source](https://togithub.com/gardener/gardener/compare/v1.98.1...v1.98.2) ### \[gardener/gardener] #### 🏃 Others - `[DEPENDENCY]` The following dependencies have been upgraded. - github.com/gardener/autoscaler v1.29.0->v1.29.1 - github.com/gardener/autoscaler v1.28.2->v1.28.3 - github.com/gardener/autoscaler v1.27.2->v1.27.3 by [@gardener-ci-robot](https://togithub.com/gardener-ci-robot) \[[#10076](https://togithub.com/gardener/gardener/issues/10076)] #### Helm Charts - controlplane: `europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.98.2` - gardenlet: `europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.98.2` - operator: `europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.98.2` - resource-manager: `europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.98.2` #### Docker Images - admission-controller: `europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.98.2` - apiserver: `europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.98.2` - controller-manager: `europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.98.2` - gardenlet: `europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.98.2` - node-agent: `europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.98.2` - operator: `europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.98.2` - resource-manager: `europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.98.2` - scheduler: `europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.98.2` ### [`v1.98.1`](https://togithub.com/gardener/gardener/releases/tag/v1.98.1) [Compare Source](https://togithub.com/gardener/gardener/compare/v1.98.0...v1.98.1) ### \[gardener/gardener] #### 🐛 Bug Fixes - `[OPERATOR]` An issue causing gardenlet to panic while deleting `dependency-watchdog-access` secrets for workerless Shoots if the `status.technicalID` is not set for the Shoot is now fixed. by [@shafeeqes](https://togithub.com/shafeeqes) \[[#10068](https://togithub.com/gardener/gardener/issues/10068)] #### Helm Charts - controlplane: `europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.98.1` - gardenlet: `europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.98.1` - operator: `europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.98.1` - resource-manager: `europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.98.1` #### Docker Images - admission-controller: `europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.98.1` - apiserver: `europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.98.1` - controller-manager: `europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.98.1` - gardenlet: `europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.98.1` - node-agent: `europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.98.1` - operator: `europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.98.1` - resource-manager: `europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.98.1` - scheduler: `europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.98.1` ### [`v1.98.0`](https://togithub.com/gardener/gardener/releases/tag/v1.98.0) [Compare Source](https://togithub.com/gardener/gardener/compare/v1.97.2...v1.98.0) ### \[gardener/gardener] #### ⚠️ Breaking Changes - `[DEPENDENCY]` The `Registry` in `pkg/utils/managedresources/registry.go` was changed to return all objects as a compressed data chunk.\ As soon as you update the `github.com/gardener/gardener` dependency to this version, `ManagedResource` secrets will be rewritten in a [Brotli](https://togithub.com/google/brotli) compressed format (combined under data key `data.yaml.br`). by [@timuthy](https://togithub.com/timuthy) \[[#9964](https://togithub.com/gardener/gardener/issues/9964)] - `[DEPENDENCY]` The `github.com/gardener/gardener/extensions/pkg/webhook/cloudprovider.Args#EnableObjectSelector` field is now removed. The corresponding webhook's object selector is now enforced unconditionally. by [@ialidzhikov](https://togithub.com/ialidzhikov) \[[#10027](https://togithub.com/gardener/gardener/issues/10027)] - `[OPERATOR]` Provider extensions specifying a "controlplane" mutating webhook `ObjectSelector` are incompatible with gardenlet < `v1.98.0`. by [@LucaBernstein](https://togithub.com/LucaBernstein) \[[#9981](https://togithub.com/gardener/gardener/issues/9981)] - `[OPERATOR]` The [Resource Size Validator](https://togithub.com/gardener/gardener/blob/master/docs/concepts/admission-controller.md) of the `gardener-admission-controller` ignores `status` subresource and `metadata.managedFields` for resource size limits. Please consider adjusting your configuration if you already increased the limits because of these now ignored sections. by [@LucaBernstein](https://togithub.com/LucaBernstein) \[[#10011](https://togithub.com/gardener/gardener/issues/10011)] - `[USER]` Separately configuring resource reservations for system processes via `shoot.spec.kubernetes.kubelet.systemReserved` or `spec.provider.workers[].kubernetes.kubelet.systemReserved` is deprecated in Gardener and will be removed in a future release. Please merge existing resource reservations into the corresponding `kubeReserved` field. by [@MichaelEischer](https://togithub.com/MichaelEischer) \[[#9985](https://togithub.com/gardener/gardener/issues/9985)] - `[DEVELOPER]` The function `github.com/gardener/gardener/extensions/pkg/controller/worker/WorkerPoolHash` now expects separate additional data for version 1 and 2 of the hash calculation. Version 2 does not include extension provider specific fields by default. Add those to the additional data for version 2 if necessary. by [@MichaelEischer](https://togithub.com/MichaelEischer) \[[#9865](https://togithub.com/gardener/gardener/issues/9865)] #### 📰 Noteworthy - `[DEVELOPER]` The resources mutated by the "controlplane" mutating webhooks are labeled with `provider.extensions.gardener.cloud/mutated-by-controlplane-webhook: true` by gardenlet. The provider extensions can add an object selector to their "controlplane" mutating webhooks to do not intercept requests for unrelated objects. by [@LucaBernstein](https://togithub.com/LucaBernstein) \[[#9981](https://togithub.com/gardener/gardener/issues/9981)] #### ✨ New Features - `[OPERATOR]` Version 2 of the WorkerPoolHash calculation now takes the current name of the OperatingSystemConfig into account. Its usage is controlled by the gardenlet feature gate `NewWorkerPoolHash`. All provider extension must be upgraded before enabling this feature gate. The new calculation also ensures that changes of the fields kubeReserved, evictionHard and cpuManagerPolicy in the kubelet config of a worker pool result in node rolls. by [@MichaelEischer](https://togithub.com/MichaelEischer) \[[#9865](https://togithub.com/gardener/gardener/issues/9865)] - `[OPERATOR]` Failure of snapshot compaction jobs at a rate greater than 10% of shoots in a seed will raise alerts now. by [@renormalize](https://togithub.com/renormalize) \[[#9739](https://togithub.com/gardener/gardener/issues/9739)] - `[DEVELOPER]` `gosec` was introduced for Static Application Security Testing (SAST). by [@oliver-goetz](https://togithub.com/oliver-goetz) \[[#9959](https://togithub.com/gardener/gardener/issues/9959)] - `[USER]` A new field `.spec.CredentialsBindingName` referencing a `CredentialsBinding` was introduced to shoot specification. It is meant to replace the existing `SecretBindingName`. As of now the field is guarded by a feature gate called `AllowCredentialsBinding`. by [@dimityrmirchev](https://togithub.com/dimityrmirchev) \[[#9853](https://togithub.com/gardener/gardener/issues/9853)] #### 🐛 Bug Fixes - `[OPERATOR]` Fix a bug where the Reversed VPN OpenVPN Server (HA) doesn't display any data. by [@axel7born](https://togithub.com/axel7born) \[[#10035](https://togithub.com/gardener/gardener/issues/10035)] #### 🏃 Others - `[DEPENDENCY]` The `envoyproxy/envoy` image has been updated to `v1.30.3`. [Release Notes](https://togithub.com/envoyproxy/envoy/releases/tag/v1.30.3) by [@gardener-ci-robot](https://togithub.com/gardener-ci-robot) \[[#10031](https://togithub.com/gardener/gardener/issues/10031)] - `[DEPENDENCY]` The `gardener/alpine-conntrack` image has been updated to `3.20.1`. [Release Notes](https://togithub.com/gardener/alpine-conntrack/releases/tag/3.20.1) by [@gardener-ci-robot](https://togithub.com/gardener-ci-robot) \[[#10010](https://togithub.com/gardener/gardener/issues/10010)] - `[DEPENDENCY]` The `gcr.io/istio-release/pilot` image has been updated to `1.21.3`. by [@gardener-ci-robot](https://togithub.com/gardener-ci-robot) \[[#9914](https://togithub.com/gardener/gardener/issues/9914)] - `[DEPENDENCY]` extensions lib: The shoot webhook does now support specifying an object selector. by [@ialidzhikov](https://togithub.com/ialidzhikov) \[[#10026](https://togithub.com/gardener/gardener/issues/10026)] - `[DEPENDENCY]` The `credativ/vali` image has been updated to `v2.2.16`. [Release Notes](https://togithub.com/credativ/vali/releases/tag/v2.2.16) by [@gardener-ci-robot](https://togithub.com/gardener-ci-robot) \[[#9976](https://togithub.com/gardener/gardener/issues/9976)] - `[DEPENDENCY]` The `credativ/plutono` image has been updated to `v7.5.31`. [Release Notes](https://togithub.com/credativ/plutono/releases/tag/v7.5.31) by [@gardener-ci-robot](https://togithub.com/gardener-ci-robot) \[[#9978](https://togithub.com/gardener/gardener/issues/9978)] - `[DEVELOPER]` The "remote local setup" is enhanced e.g. to support multiple scenarios. by [@istvanballok](https://togithub.com/istvanballok) \[[#9980](https://togithub.com/gardener/gardener/issues/9980)] - `[OPERATOR]` `machine-controller-manager-provider-xxx` container now exposes metrics that prometheus can scrapes by [@aaronfern](https://togithub.com/aaronfern) \[[#9933](https://togithub.com/gardener/gardener/issues/9933)] - `[OPERATOR]` kube-apiserver HPA's max replicas count from 3 to 6 in `VPAAndHPA` autoscaling mode to support very large control planes. by [@ialidzhikov](https://togithub.com/ialidzhikov) \[[#9971](https://togithub.com/gardener/gardener/issues/9971)] - `[OPERATOR]` Gardener Enhancement Proposal for a bastion section in the CloudProfile by [@hebelsan](https://togithub.com/hebelsan) \[[#9935](https://togithub.com/gardener/gardener/issues/9935)] - `[OPERATOR]` Introduce the operator `Extension` type. An `Extension` is responsible for installing the `ControllerRegistration` and `ControllerRuntime` in the garden cluster and also install any extensions necessary to manage infrastructure resources in the runtime cluster. This release contains the API only, further functionality will be released in future Gardener versions. by [@kon-angelo](https://togithub.com/kon-angelo) \[[#9924](https://togithub.com/gardener/gardener/issues/9924)] - `[OPERATOR]` The data in `ManagedResource` secrets is now compressed with [Brotli](https://togithub.com/google/brotli) and stored under a single data key `data.yaml.br`. by [@timuthy](https://togithub.com/timuthy) \[[#9964](https://togithub.com/gardener/gardener/issues/9964)] #### Helm Charts - controlplane: `europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.98.0` - gardenlet: `europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.98.0` - operator: `europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.98.0` - resource-manager: `europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.98.0` #### Docker Images - admission-controller: `europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.98.0` - apiserver: `europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.98.0` - controller-manager: `europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.98.0` - gardenlet: `europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.98.0` - node-agent: `europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.98.0` - operator: `europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.98.0` - resource-manager: `europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.98.0` - scheduler: `europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.98.0`

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

[ ] If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

gardener-ci-robot commented 2 months ago

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

8 additional dependencies were updated

Details:

Package	Change
`golang.org/x/exp`	`v0.0.0-20240604190554-fc45aab8b7f8` -> `v0.0.0-20240613232115-7f521ea00fb8`
`k8s.io/apiextensions-apiserver`	`v0.29.5` -> `v0.29.6`
`k8s.io/apiserver`	`v0.29.5` -> `v0.29.6`
`k8s.io/cluster-bootstrap`	`v0.29.5` -> `v0.29.6`
`k8s.io/component-helpers`	`v0.29.5` -> `v0.29.6`
`k8s.io/kube-aggregator`	`v0.29.5` -> `v0.29.6`
`k8s.io/kubelet`	`v0.29.5` -> `v0.29.6`
`k8s.io/metrics`	`v0.29.5` -> `v0.29.6`

gardener-robot commented 2 months ago

@gardener-ci-robot Thank you for your contribution.

gardener-ci-robot commented 2 months ago

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

any of the package files in this branch needs updating, or
the branch becomes conflicted, or
you click the rebase/retry checkbox if found above, or
you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: go.sum

Command failed: install-tool golang 1.22.5

gardener-ci-robot commented 2 months ago

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

gardener-prow[bot] commented 2 months ago

@gardener-ci-robot: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
pull-extension-networking-cilium-e2e-kind	de8b0660a8315d2b40042280b6ff438d029b762f	link	true	`/test pull-extension-networking-cilium-e2e-kind`

Full PR test history. Your PR dashboard. Command help for this repository. Please help us cut down on flakes by linking this test failure to an open flake report or filing a new flake report if you can't find an existing one. Also see our testing guideline for how to avoid and hunt flakes.

Instructions for interacting with me using PR comments are available [here](https://git.k8s.io/community/contributors/guide/pull-requests.md). If you have questions or suggestions related to my behavior, please file an issue against the [kubernetes-sigs/prow](https://github.com/kubernetes-sigs/prow/issues/new?title=Prow%20issue:) repository. I understand the commands that are listed [here](https://go.k8s.io/bot-commands).

axel7born commented 2 months ago

/test pull-extension-networking-cilium-e2e-kind

axel7born commented 2 months ago

/lgtm

gardener / gardener-extension-networking-cilium