chore(deps): update kubezero-network-dependencies #154
Loading…
Reference in New Issue
No description provided.
Delete Branch "renovate/kubezero-network-kubezero-network-dependencies"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
This PR contains the following updates:
1.14.4
->1.15.2
0.13.12
->0.14.3
Release Notes
cilium/cilium (cilium)
v1.15.2
: 1.15.2Compare Source
We are pleased to release Cilium v1.15.2. This release contains various bug fixes and improvements.
Security Advisories
This patch release addresses security vulnerabilities. See the following security advisories
for details.
IPsec
This patch release includes significant changes for the IPsec stack, to resolve issues for connections that are selected by a L7 Network Policy or a DNS Policy.
Such connections may experience disruption during the upgrade, in particular in configurations with overlay routing mode.
Summary of Changes
Minor Changes:
Bugfixes:
eni+
instead oflxc+
) when--enable-endpoint-routes=true
and--cni-chaining-mode="aws-cni"
(Backport PR #31154, Upstream PR #30766, @pippolo84)CI Changes:
Misc Changes:
549dd88
(v1.15) (#30855, @renovate[bot])f9d633f
(v1.15) (#30738, @renovate[bot])Other Changes:
v1.15.1
: 1.15.1Compare Source
We are pleased to release Cilium v1.15.1. This release contains various bug fixes and improvements, including a fix for a regression where veth devices were incorrectly getting classified as native devices (https://github.com/cilium/cilium/pull/30762).
Summary of Changes
Minor Changes:
Bugfixes:
CI Changes:
Misc Changes:
FuzzDenyPreferredInsert
test (Backport PR #30681, Upstream PR #30368, @christarazi)Other Changes:
v1.15.0
Docker Manifests
v1.15.0
: 1.15.0Compare Source
Changelog
The Cilium core team are excited to announce the Cilium 1.15 release. 🎉
Summary of Changes
Major Changes:
By setting the flag
--max-connected-clusters=511
, a new cluster will be able to connect to a ClusterMesh with up to 511 clusters. If enabled, the number of possible cluster-local identities will be reduced to 32,768. This feature can only be enabled on new clusters, and all clusters in the ClusterMesh must share the same configuration. (#27520, @thorn3r)bgp/routes
API endpoint andcilium bgp routes
CLI command (#27182, @rastislavs)Minor Changes:
io.cilium.podippool.namespace: <CiliumPodIPPool_NAMESPACE>
andio.cilium.podippool.name: <CiliumPodIPPool_NAME>
selectors can be specified for a PodIPPoolSelector of a CiliumBGPPeeringPolicy to select a CiliumPodIPPool by namespaced name instead of labels. (#28314, @danehans)cilium bpf auth flush
command for debugging purposes (#27216, @meyskens)ingress.cilium.io/ssl-passthrough
annotation for Ingress objects (#28751, @youngnick)cilium status
CLI to report on agent modules health status. (#25714, @derailed)cilium-dbg bgp route-policies
command & include it in the bugtool (#28973, @rastislavs)cilium-dbg bgp routes advertised
command without specifying a peer (Backport PR #30230, Upstream PR #30033, @rastislavs)cilium policy import
to allow policy replacement by label (#27103, @deverton-godaddy)Corresponding flag "enable-k8s-event-handover" in Agent and "cnp-status-update-interval" in operator were removed. (#29395, @marseel)
cilium endpoint regenerate
command (#27326, @christarazi)batch.kubernetes.io/job-completion-index
. (#28897, @tosi3k)AdvertisedPathAttributes
forCiliumBGPNeighbor
in theCiliumBGPPeeringPolicy
CRD to allow setting BGP Community and Local Preference path attributes for advertised BGP routes. (#27705, @rastislavs)cilium status --verbose
andcilium-health status --succinct
support to show IPv6 IPs as well (#27912, @chaunceyjiang)cilium policy selectors
command by including the policy name and namespace in order to easily understand which selector comes from what policy (#27838, @christarazi)--single-cluster-route
flag (#29221, @gandro)policy_import_errors_total
metric (#28423, @tklauser)Upgrade etcd to v3.5.10. (#29109, @JamesLaverack)
Bugfixes:
ImplementationSpecific
Ingress paths (which for Cilium Ingress means regex path matches) are now sorted correctly in betweenExact
andPrefix
matches. (#29381, @youngnick)resource.Store
inStart()
hive hooks of BGP CP to ensure proper BGP CP initialization. (Backport PR #30079, Upstream PR #29954, @rastislavs)dashboards.enabled=true
(#28542, @bakito).status.conditions
onService
s using in accordance with KEP-1623 (#27399, @addreas)cilium-dbg bpf auth ls
to flush the map. (Backport PR #30529, Upstream PR #30445, @meyskens)strict
to true for kubeProxyReplacement in helm chart (#27433, @xtineskim)CI Changes:
loop not unrolled
error in pktgen (#28942, @dylandreimerink)github.event.pull_request.head.sha
(#26775, @mhofstetter)go vet ./...
from integration tests (#26565, @tklauser)Misc Changes:
USERS.md
(#27483, @bernardhalas)make dev-doctor
. (#28269, @fujitatomoya)4d47f33
(main) (#27286, @renovate[bot])1633d7b
(main) (#28868, @renovate[bot])614f2dd
(main) (#29386, @renovate[bot])6180087
(main) (#28096, @renovate[bot])8a11744
(main) (#28077, @renovate[bot])93f26fd
(main) (#29141, @renovate[bot])a79241a
(main) (#28721, @renovate[bot])ccaaa85
(main) (#28069, @renovate[bot])ce02445
(main) (#28629, @renovate[bot])ef8ca62
(main) (#29120, @renovate[bot])344193a
(main) (#26481, @renovate[bot])cfc9d1b
(main) (#26818, @renovate[bot])b490ae1
(main) (#27598, @renovate[bot])cffaba7
(main) (#28189, @renovate[bot])d2aad22
(main) (#28064, @renovate[bot])24a0937
(main) (#28602, @renovate[bot])9baee0e
(main) (#29261, @renovate[bot])2ff79bc
(main) (#29765, @renovate[bot])6fbd2d3
(v1.15) (#30050, @renovate[bot])76aadd9
(v1.15) (#30464, @renovate[bot])0bced47
(main) (#26689, @renovate[bot])2b7412e
(main) (#28722, @renovate[bot])6120be6
(main) (#26432, @renovate[bot])8eab65d
(main) (#29572, @renovate[bot])990350f
(main) (#28578, @renovate[bot])9b8dec3
(main) (#28383, @renovate[bot])aabed32
(main) (#27895, @renovate[bot])e6173d4
(v1.15) (#30465, @renovate[bot])ec050c3
(main) (#27529, @renovate[bot])112a87f
(v1.15) (#30473, @renovate[bot])91ca472
(main) (#28468, @renovate[bot])92d40ee
(main) (#27905, @renovate[bot])cilium_event_ts metric
description (#29303, @christarazi)(containerID, ifName)
as unique endpoint identifier (#26894, @gandro)pkg/common/ipsec
(#29002, @pchaigno)cilium_host
IP restoration (#28781, @gandro)egressIP
andinterface
being mutually exclusive in theegressGateway
spec. (Backport PR #30529, Upstream PR #30236, @soggiest)Add retry logic to ensure this process is attempted more than once should errors occur during reconciliation. (#27593, @derailed)
13b15b7
(main) (#29279, @renovate[bot])External Traffic Policy: Local
Service health returns http header "X-Load-Balancing-Endpoint-Weight" with number of local endpoints. The same information is still available in response body JSON payload.LocalEndpoints. (#27017, @cezarygerard)netip.Addr
tonet.IP
and back (#29625, @tklauser)allocator.Dump
return map of allocated IPs per pool (#27997, @tklauser)cilium-dbg node list
(#29196, @tklauser)Other Changes:
Docker Manifests
cilium
quay.io/cilium/cilium:v1.15.0@​sha256:9cfd6a0a3a964780e73a11159f93cc363e616f7d9783608f62af6cfdf3759619
quay.io/cilium/cilium:stable@sha256:9cfd6a0a3a964780e73a11159f93cc363e616f7d9783608f62af6cfdf3759619
clustermesh-apiserver
quay.io/cilium/clustermesh-apiserver:v1.15.0@​sha256:43feb49dfbaa82388dc653ce12c7626ce40ae375e9853d71b9f5cff0ce61d54a
quay.io/cilium/clustermesh-apiserver:stable@sha256:43feb49dfbaa82388dc653ce12c7626ce40ae375e9853d71b9f5cff0ce61d54a
docker-plugin
quay.io/cilium/docker-plugin:v1.15.0@​sha256:6c79c492da7b3574509a94b0c6b4ef0570c005aa6be5879b71d8e59e103f2a7b
quay.io/cilium/docker-plugin:stable@sha256:6c79c492da7b3574509a94b0c6b4ef0570c005aa6be5879b71d8e59e103f2a7b
hubble-relay
quay.io/cilium/hubble-relay:v1.15.0@​sha256:45b3ea70b73aee01644f800b8f6138c36446bfb130d2b88b0f75775ebe6a9ab6
quay.io/cilium/hubble-relay:stable@sha256:45b3ea70b73aee01644f800b8f6138c36446bfb130d2b88b0f75775ebe6a9ab6
operator-alibabacloud
quay.io/cilium/operator-alibabacloud:v1.15.0@​sha256:ee03349caef5519f8e9123132cf17c85b771f8fff095c57f00a2af8bb3224b79
quay.io/cilium/operator-alibabacloud:stable@sha256:ee03349caef5519f8e9123132cf17c85b771f8fff095c57f00a2af8bb3224b79
operator-aws
quay.io/cilium/operator-aws:v1.15.0@​sha256:cf45167a8bb336c763046553c6a97c0d7f12f7e2a498dfb2340fa27832a81b3a
quay.io/cilium/operator-aws:stable@sha256:cf45167a8bb336c763046553c6a97c0d7f12f7e2a498dfb2340fa27832a81b3a
operator-azure
quay.io/cilium/operator-azure:v1.15.0@​sha256:498a9e940cddd4e58d401a13005b0784ed9597bfe1e5cf2f52b6ba9ccceee768
quay.io/cilium/operator-azure:stable@sha256:498a9e940cddd4e58d401a13005b0784ed9597bfe1e5cf2f52b6ba9ccceee768
operator-generic
quay.io/cilium/operator-generic:v1.15.0@​sha256:e26ecd316e742e4c8aa1e302ba8b577c2d37d114583d6c4cdd2b638493546a79
quay.io/cilium/operator-generic:stable@sha256:e26ecd316e742e4c8aa1e302ba8b577c2d37d114583d6c4cdd2b638493546a79
operator
quay.io/cilium/operator:v1.15.0@​sha256:949ec05e962d370437deb6ca4b27b05b8e9c8077bfa6a5b9b4d80d08a26d4fee
quay.io/cilium/operator:stable@sha256:949ec05e962d370437deb6ca4b27b05b8e9c8077bfa6a5b9b4d80d08a26d4fee
v1.14.8
: 1.14.8Compare Source
We are pleased to release Cilium v1.14.8.
Security Advisories
This patch release addresses security vulnerabilities. See the following security advisories
for details.
IPsec
This patch release includes significant changes for the IPsec stack, to resolve issues for connections that are selected by a L7 Network Policy or a DNS Policy.
Such connections may experience disruption during the upgrade, in particular in configurations with overlay routing mode.
Summary of Changes
Minor Changes:
Bugfixes:
CI Changes:
Misc Changes:
77906da
(v1.14) (#31291, @renovate[bot])e9569c2
(v1.14) (#30739, @renovate[bot])Other Changes:
v1.14.7
: 1.14.7Compare Source
We are pleased to release Cilium v1.14.7. This release contains various bug fixes and performance / usability improvements, including a fix for performance regression for pod-to-pod traffic WireGuard and tunneling (https://github.com/cilium/cilium/pull/30329).
Summary of Changes
Minor Changes:
Bugfixes:
CI Changes:
Misc Changes:
egressIP
andinterface
being mutually exclusive in theegressGateway
spec. (Backport PR #30554, Upstream PR #30236, @soggiest)Other Changes:
v1.14.6
: 1.14.6Compare Source
We are pleased to release Cilium v1.14.6.
This release includes various bugfixes and performance enhancements. The amount of trace events is reduced when monitor aggregation is enabled, allowing to improve pod-to-pod performance with tunneling and IPsec. An inconsistency in the node manager is fixed, which led to incorrect masquerading of traffic to node internal IP addresses. Other fixes include fixes for mTLS, DNS proxy, datapath, etc.
Summary of Changes
Minor Changes:
Bugfixes:
CI Changes:
Misc Changes:
Other Changes:
v1.14.5
: 1.14.5Compare Source
We are pleased to release Cilium v1.14.5.
This release include expanded credential and resource limit related configuration parameters for the Agent DaemonSet and SPIRE agent, fixes to an issue where stale nodes would appear in the cilium_node_connectivity_* metrics, enhancements to the detail shown by the IPsec CLI subcommands, a fix to a datapath fix for SNAT running behind multiple network interfaces, a fix to NAT entry GC when DSR enabled, a fix for endpoint label changes during the re-init restoration, and a variety of other stability enhancements. Also included are performance enhancements to concurrency techniques used in policy generation and the selectorcache read/write path.
Summary of Changes
Minor Changes:
Bugfixes:
cilium bpf nat list
that used to display the same values. (Backport PR #29187, Upstream PR #27062, @gentoo-root)cilium encrypt status
. (Backport PR #29641, Upstream PR #29182, @viktor-kurchenko)CI Changes:
Misc Changes:
d42be92
(v1.14) (#29133, @renovate[bot])4e4a34f
(v1.14) (#29416, @renovate[bot])77e4e42
(v1.14) (#29281, @renovate[bot])8eab65d
(v1.14) (#29575, @renovate[bot])Other Changes:
metallb/metallb (metallb)
v0.14.3
Compare Source
See https://metallb.universe.tf/release-notes/ for details
v0.14.2
Compare Source
See https://metallb.universe.tf/release-notes/ for details
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Renovate Bot.
99238df192
tocf87dc3df4
chore(deps): update helm release cilium to v1.14.5to chore(deps): update helm release cilium to v1.14.6cf87dc3df4
to648a188b76
chore(deps): update helm release cilium to v1.14.6to chore(deps): update kubezero-network-dependencies648a188b76
tobe550bef71
be550bef71
tof2d15d4e76
f2d15d4e76
to06e1b18a9c
06e1b18a9c
to48e381cb0f