Skip to content

Releases: AbsaOSS/cluster-api-provider-aws

v2.9.3

31 Oct 13:49
@github-actions github-actions
v2.9.3
aadab40
This commit was signed with the committer’s verified signature.
k0da Dinar Valeev
GPG key ID: 463AD0BA4B193CEE
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v2.9.3 Latest
Latest

Release notes for Cluster API Provider AWS (CAPA) <RELEASE_VERSION>

Documentation

Changelog since <PREVIOUS_VERSION>

Urgent Upgrade Notes

(No, really, you MUST read this before you upgrade)

  • Action required
    Add missing permissions for controller. Its recommended that you update your CloudFormation stack. (kubernetes-sigs#5537, @richardcase)
  • Action required
    Bump CAPI to v1.9.z
    !! ACTION REQUIRED BEFORE UPGRADING !!
    If you are using the AWSManagedControlPlane to provision EKS clusters and you do not have a spec.Version specified in such resource (meaning you are relying on the default that AWS provides), you will need to either:
    a) explicitly set such spec.Version field before upgrading CAPA
    or b) disable the MachineSetPreflightChecks in your cluster either:
    b1) by setting this core CAPI feature gate to false
    b2) or by disabling it via the relevant annotation on all the machineSets belonging to said cluster (follow this guide on how to do this: https://cluster-api.sigs.k8s.io/tasks/experimental-features/machineset-preflight-checks).
    This is necessary as core CAPI 1.9 introduces a feature gate change, setting MachineSetPreflightChecks=true, which in turn relies on the presence of spec.Version and status.Version on the AWSManagedControlPlane object.
    We are planning a future refactor of these API fields in v1beta3 (kubernetes-sigs#3853).
    Other places where you can find details on this are:
  • kubernetes-sigs#5225
  • kubernetes-sigs/cluster-api#11117
  • https://kubernetes.slack.com/archives/CD6U2V71N/p1739783013734149 (kubernetes-sigs#5209, @damdo)
  • Action required
    From this release onwards we recommend not creating clusters using the classic ELB (which is the default for the API). Classic ELB support is deprected and support will be removed in a future version.
    For new & existing clusters that use a classic elb AND do not specify the health check protocol then the protocol will be changed/set to TCP instead of SSL.
    If you want to use a classic elb with an SSL healthcheck then you will need to specify the cipher suites to use in the KubeadmControlPlane:

apiVersion: controlplane.cluster.x-k8s.io/v1beta1
kind: KubeadmControlPlane
metadata:
name: "${CLUSTER_NAME}-control-plane"
spec:
kubeadmConfigSpec:
clusterConfiguration:
apiServer:
extraArgs:
cloud-provider: external

        # This is needed for Kubernetes v1.30+ since else it uses the Go defaults which don't
        # work with AWS classic load balancers, see
        # https://github.com/kubernetes-sigs/cluster-api-provider-aws/issues/5139. If you use
        # another load balancer type such as NLB, this is not needed.
        #
        # The list consists of the secure ciphers from Go 1.23.3, plus some less secure
        # RSA ciphers which the AWS classic load balancer instance health check supports.
        tls-cipher-suites: TLS_AES_128_GCM_SHA256,TLS_AES_256_GCM_SHA384,TLS_CHACHA20_POLY1305_SHA256,TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256,TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 (#5346, @richardcase)
  • Action required
    Garbage collection graduated out of experimental. If you don't want this feature enabled please see the docs on how rto disabled it. (kubernetes-sigs#5348, @richardcase)
  • Action required
    Support setting role path and permissions boundary on managed IAM roles. If you want to use permission boundaries, then you will need to update your IAM permissions by running clusterawsadm bootstrap iam create-cloudformation-stack again. (kubernetes-sigs#5286, @robinkb)
  • Action required
    Support storing Ignition user data in S3 bucket for AWSMachinePool. If you plan to use this feature then you will need to update the permissions for CAPA using clusterawsadm. (kubernetes-sigs#5318, @AndiDog)
  • Action required
    The short name for AWSManagedClusterTemplate has changed from amct to awsmct. If you have any automation that relies on the short name it will needf to be updated. (kubernetes-sigs#5663, @k8s-infra-cherrypick-robot)
  • If deploying clusters to an existing VPC (not managed by the AWS provider), the provider will no longer automatically create a security group rule allowing traffic from all addresses (0.0.0.0/0). You may need to update AWSCluster.spec.controlPlaneLoadBalancer.ingressRules with the source address of your Management Cluster. (kubernetes-sigs#5198, @sl1pm4t)

Changes by Kind

Support

Deprecation

API Change

Feature

Documentation

Failing Test

Bug or Regression

Read more

Contributors

tamalsaha, tinaafitz, and 40 other contributors
Assets 41

v2.7.9

15 Jul 20:59
@github-actions github-actions
v2.7.9
a10fc5d
This commit was signed with the committer’s verified signature.
k0da Dinar Valeev
GPG key ID: 463AD0BA4B193CEE
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v2.7.9

Release notes for Cluster API Provider AWS (CAPA) <RELEASE_VERSION>

Documentation

Changelog since <PREVIOUS_VERSION>

Changes by Kind

Support

Uncategorized

The images for this release are:
<ADD_IMAGE_HERE>

Thanks to all our contributors.

Contributors

richardcase, damdo, and k8s-infra-cherrypick-robot
Loading

v2.7.8

04 Jul 18:06
@github-actions github-actions
v2.7.8
b379dcc
This commit was signed with the committer’s verified signature.
k0da Dinar Valeev
GPG key ID: 463AD0BA4B193CEE
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v2.7.8

Release notes for Cluster API Provider AWS (CAPA) <RELEASE_VERSION>

Documentation

Changelog since <PREVIOUS_VERSION>

Changes by Kind

Support

Uncategorized

The images for this release are:
<ADD_IMAGE_HERE>

Thanks to all our contributors.

Contributors

richardcase, damdo, and k8s-infra-cherrypick-robot
Loading

v2.7.7

02 Jul 10:25
@github-actions github-actions
v2.7.7
6992902
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v2.7.7

Release notes for Cluster API Provider AWS (CAPA) <RELEASE_VERSION>

Documentation

Changelog since <PREVIOUS_VERSION>

Changes by Kind

Support

Uncategorized

The images for this release are:
<ADD_IMAGE_HERE>

Thanks to all our contributors.

Contributors

richardcase, damdo, and k8s-infra-cherrypick-robot
Loading

v2.7.6

02 Jul 09:40
@github-actions github-actions
v2.7.6
b84409a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v2.7.6

Release notes for Cluster API Provider AWS (CAPA) <RELEASE_VERSION>

Documentation

Changelog since <PREVIOUS_VERSION>

Changes by Kind

Support

Uncategorized

The images for this release are:
<ADD_IMAGE_HERE>

Thanks to all our contributors.

Contributors

richardcase, damdo, and k8s-infra-cherrypick-robot
Loading

v2.7.5

24 Jan 17:47
@github-actions github-actions
v2.7.5
4b19445
This commit was signed with the committer’s verified signature.
k0da Dinar Valeev
GPG key ID: 463AD0BA4B193CEE
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v2.7.5

Release notes for Cluster API Provider AWS (CAPA) <RELEASE_VERSION>

Documentation

Changelog since <PREVIOUS_VERSION>

Changes by Kind

Support

Uncategorized

The images for this release are:
<ADD_IMAGE_HERE>

Thanks to all our contributors.

Contributors

richardcase and k8s-infra-cherrypick-robot
Loading

v2.7.3

24 Jan 10:33
@github-actions github-actions
v2.7.3
879961e
This commit was signed with the committer’s verified signature.
k0da Dinar Valeev
GPG key ID: 463AD0BA4B193CEE
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v2.7.3

Release notes for Cluster API Provider AWS (CAPA) <RELEASE_VERSION>

Documentation

Changelog since <PREVIOUS_VERSION>

Changes by Kind

Support

Uncategorized

The images for this release are:
<ADD_IMAGE_HERE>

Thanks to all our contributors.

Contributors

richardcase and k8s-infra-cherrypick-robot
Loading

v2.7.2

19 Nov 22:23
@github-actions github-actions
v2.7.2
98b66d3
This commit was signed with the committer’s verified signature.
k0da Dinar Valeev
GPG key ID: 463AD0BA4B193CEE
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v2.7.2

Release notes for Cluster API Provider AWS (CAPA) <RELEASE_VERSION>

Documentation

Changelog since <PREVIOUS_VERSION>

Changes by Kind

Support

Uncategorized

The images for this release are:
<ADD_IMAGE_HERE>

Thanks to all our contributors.

Contributors

richardcase and k8s-infra-cherrypick-robot
Loading