[OPERATOR] The .monitoring.shoot.remoteWrite.queueConfig field is no longer available in the gardenlet component configuration. If needed, you have to register a webhook for the monitoring.coreos.com/v1.Prometheus object named shoot in the shoot namespaces. The webhook can inject the needed configuration in .spec.remoteWrite[0].queueConfig. by @rfranzke#9695
📰 Noteworthy
[DEVELOPER] The extensions.gardener.cloud/v1alpha1.Worker resource now has a new .spec.pools[].userDataSecretRef field which references a Secret containing the actual user data. the .spec.pools[].userData field is deprecated and will be removed in a future version. Worker extensions should fetch the user data from the secret and can use the extensions/pkg/controller/worker.FetchUserData helper function for it. by @rfranzke#9722
[DEVELOPER] The legacy method for extensions to provide observability configuration for shoot clusters (via ConfigMaps labelled with extensions.gardener.cloud/configuration=monitoring) is deprecated and will be removed in a future release. Please refer to this document to get information about the new, recommended way, and start migrating to it. by @rfranzke#9695
✨ New Features
[OPERATOR] Gardener can now support clusters with Kubernetes version 1.30. To allow creation/update of 1.30 clusters you will have to update the version of your provider extension(s) to a version that supports 1.30 as well. Please consult the respective releases and notes in the provider extension's repository. by @shafeeqes#9689
[OPERATOR] A new feature gate named VPAAndHPAForAPIServer is introduced to gardenlet. When enabled, the Shoot Kubernetes API Server is scaled simultaneously by VPA and HPA on the same metric (CPU and memory usage). The new feature aims to replace the existing HVPA autoscaling mechanism for the Shoot Kubernetes API server. by @ialidzhikov#9678
[USER] It is now possible to configure Projects with the "four-👀 approval concept for deletion" concept. For now, this can only be applied to Shoots. If configured, the user confirming a Shoot deletion (via the confirmation.gardener.cloud/deletion annotation) must not be the same user who is sending the DELETE request. This can help preventing accidental/unintentional Shoot deletion. Find all information about the feature in this document. by @rfranzke#9680
[DEVELOPER] Gardener can now support clusters with Kubernetes version 1.30. Extension developers have to prepare individual extensions as well to work with 1.30. by @shafeeqes#9689
🐛 Bug Fixes
[OPERATOR] A bug has been fixed which caused regeneration of managedresource-shoot-core-system-*Secrets on each Shoot reconciliation. by @rfranzke#9718
[USER] A bug has has been fixed which caused unneeded gardener-node-agent reconciliations after each Shoot reconciliation even if the underlying OperatingSystemConfig did not contain relevant changes. by @rfranzke#9723
🏃 Others
[OPERATOR] e2e-kind tests can now run successfully in an IPv4-only environment by @ScheererJ#9693
[OPERATOR] Validation of DNSRecords: allow domain names starting with an underscore "_" by @MartinWeindel#9714
[OPERATOR] The istio ingress gateway access log now includes the connections initiated via apiserver-proxy, i.e. cluster-internal communication via kubernetes.default.svc.cluster.local. by @ScheererJ#9686
[OPERATOR] Replaced HVPA for the vali StatefulSet with VPA. Additionally, the curatorkube-rbac-proxy and telegraf containers of the vali StatefulSet now specify CPU resource requests of 5m each. by @plkokanov#9611
[OPERATOR] Updated MCM metrics list used to configure prometheus by @rishabh-11#9684
[OPERATOR] The kube-controller-manager component is now scaled by VPA, instead of HVPA. by @andrerun#9698
[OPERATOR] Modified the CPU and memory resource requests for the plutono container to 5m and 45Mi, respectively. Additionally, reduced the vali container CPU resource requests to 20m. by @plkokanov#9754
[USER] A bug has has been fixed which caused unneeded gardener-node-agent reconciliations after each Shoot reconciliation even if the underlying OperatingSystemConfig did not contain relevant changes. by @rfranzke#9731
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps github.com/gardener/gardener from 1.90.4 to 1.95.0.
Release notes
Sourced from github.com/gardener/gardener's releases.
... (truncated)
Commits
706bf65
Release v1.95.0e370e50
Fix shoot control plane federation regression (2) (#9772)21a346d
[release-v1.95] Fix shoot control plane federation regression (#9768)6d6c06c
Introduce a new autoscaling mode (VPAAndHPA
) for Shoot Kubernetes API serve...883320b
Optimise plutono and vali resource requests (#9754)a796070
chore(deps): update dependency googlecontainertools/skaffold to v2.12.0 (#9751)2c9e497
Remove unneeded code for dwd deployment (#9747)c024f37
chore(deps): update quay.io/kiwigrid/k8s-sidecar docker tag to v1.27.1 (#9741)0a6c424
chore(deps): update dependency kubernetes-sigs/kind to v0.23.0 (#9744)7ea06a4
chore(deps): update kindest/node docker tag to v1.29.4 (#9742)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show