v2.4.0

Release notes for Cluster API Provider AWS (CAPA) v2.4.0

Documentation

Changelog since v2.3.0

Urgent Upgrade Notes

(No, really, you MUST read this before you upgrade)

• v1beta1 types are not going to be served any longer and will be removed in the next release (#4757, @vincepri)

Changes by Kind

Feature

• A new enum value, disabled, is added for the AWSCluster.spec.controlPlaneLoadBalancer.loadBalancerType field, which skips the reconciliation of the load balancer for the given cluster, useful for clusters which are consuming an externally managed Control Plane. (#4438, @prometherion)
• Add & Reconcile ROSAMachinePools.spec.version (#4764, @muraee)
• Add tests for the re-introduced managed subnet functionality in #4474 (#4637, @AndiDog)
• Added AWSMachine and AWSMachineTemplate fields to control vpc placement for individual instances (#4541, @cnmcavoy)
• Adds support for a secondary, internal API server load balancer within clusters. (#4733, @nrb)
• Allow to configure garbage collector using clusterawsadm (#4500, @Fedosin)
• Enable transit encryption on S3 buckets (#4676, @fiunchinho)
• Generate CAPI kubeconfig secret for ROSA clusters (#4742, @muraee)
• Ignition: add option to store User Data in plain text (#4700, @damdo)
• Introduce basic support for ROSAMachinePools (#4725, @muraee)
• Log full ARN in GC error messages (#4709, @AndiDog)
• Prevent users setting SpotMarketOptions and MixedInstancesPolicy at the same time (#4656, @fiunchinho)
• Reconcile ROSAControlPlane version to trigger upgrades (#4761, @muraee)
• Reconcile ROSAControlePlane status (#4759, @muraee)
• Remove ingress and egress rules from vpc default security group (#4707, @fiunchinho)
• Skip AWSCluster deletion reconciliation once CAPA finalizer is gone (#4730, @AndiDog)
• Support setting HostnameType options for subnets and machines (#4664, @MaxFedotov)
• Trigger machine pool instance refresh (node rollout) if bootstrap config reference changes (#4619, @AndiDog)
• Use go 1.21.5 (#4710, @fiunchinho)
• Bump CAPI to v1.6.x (#4739, @damdo)

Bug or Regression

• Don't error when ASG is not present while deciding whether or not to refresh ASG instances. (#4660, @fiunchinho)
• Fix logging verbosity for machine pool reconciliation (#4620, @AndiDog)
• Fix: bump rosa deps to fix int overflow on non-64bit arch (#4836, @damdo)
• Make VPC creation idempotent to avoid indefinite creation of new VPCs if storage of the ID fails (#4723, @AndiDog)
• Resolved issue where deleted control planes were still registered in the kube-apiserver load balancer, causing potential disruptions. (#4701, @tobiasgiese)
• Skip instance refresh attempt if ASG does not yet exist (#4662, @fiunchinho)
• Treat the annotation cluster.x-k8s.io/replicas-managed-by on MachinePool CR as described in CAPI documentation and do not set desired replicas on ASG when the annotation is present. (#4654, @calvix)
• Update AWSMachine providerID and instanceID earlier to minimize scenarios where tag-based searching is needed (#4670, @mjlshen)
• Various changes to the releases process. (#4813, @richardcase)
• When using Ignition, the S3 bucket was previously created in us-east-1 regardless of where the cluster was located, new S3 buckets will be created within the same region as the cluster. (#4732, @vincepri)

Failing Test

• Add CI script to test docker builds for the controller and clusterawsadm with all architectures. (#4834, @richardcase)

Support

• Disable dependency report short term. (#4825, @richardcase)
• Move @AndiDog to reviewer status (#4687, @richardcase)
• Update metadata for v2.4.x release series. (#4833, @richardcase)

Other (Cleanup or Flake)

• Dependabot configuration update to group updates, (#4688, @richardcase)
• Fix some logging and error cases (#4724, @AndiDog)
• If you're using S3 buckets for bootstrap data, the following permissions are required on the controller to automatically detect whether an object is still needing to be deleted: s3:GetObject. The following permissions are optional: s3:ListBucket. (#4667, @thefirstofthe300)

Uncategorized

• Updated the default clusterctl template to use external cloud-controller-manager (#4678, @nrb)
• Use seedling emoji for dependabot pull requests (#4652, @kranurag7)
• Wrap the underlying error when the AWSMachinePool reconciler fails to get the infra provider cluster or control plane object (#4685, @harveyxia)

The images for this release are: registry.k8s.io/cluster-api-aws/cluster-api-aws-controller:v2.4.0

Thanks to all our contributors.

v2.3.5

Release notes for Cluster API Provider AWS (CAPA) v2.3.5

Documentation

Changelog since v2.3.1

NOTE: there are no v2.3.2-v2.3.4 releases due to issues with the release process.

Changes by Kind

Bug or Regression

• Delete VPC endpoints only if s3 bucket is enabled (#4805, @k8s-infra-cherrypick-robot)

Support

• Bump go version to 1.21 (#4803, @damdo)
• Various changes to the releases process. (#4814 #4819 #4809, @richardcase)

The images for this release are: registry.k8s.io/cluster-api-aws/cluster-api-aws-controller:v2.3.5

Thanks to all our contributors.

v2.3.1

Release notes for Cluster API Provider AWS (CAPA) v2.3.1

Documentation

Changelog since v2.3.0

NOTE: This release updates the default cluster template to use the external cloud provider which is deployed using CRS. You will need to enable the CRS.

Changes by Kind

Uncategorized

• Resolved issue where deleted control planes were still registered in the kube-apiserver load balancer, causing potential disruptions. (#4704, @k8s-infra-cherrypick-robot)
• Skip instance refresh attempt if ASG does not yet exist (#4698, @AndiDog)
• Updated the default clusterctl template to use external cloud-controller-manager (#4695, @k8s-infra-cherrypick-robot)
• Use seedling emoji for dependabot pull requests (#4652, @kranurag7)

The image for this release is:
registry.k8s.io/cluster-api-aws/cluster-api-aws-controller:v2.3.1

Thanks to all our contributors.

Dependencies

Added

Nothing has changed.

Changed

Nothing has changed.

Removed

Nothing has changed.

v2.2.5

Release notes for Cluster API Provider AWS (CAPA) v2.2.5

Documentation

Changelog since v2.2.4

Changes by Kind

Support

• Bump CAPI to v1.5.3 (#4647, @Ankitasw)

Failing Test

• Fix EKS E2E tests (#4645, @Ankitasw)

Bug or Regression

• Fix: remove unused context imports (#4547, @damdo)
• Fixed: Additional Tags specified on the AWSCluster will now propagate to root storage volumes. (#4590, @cnmcavoy)
• Make kpromo versioned consistent (#4542, @richardcase)

Uncategorized

• Bump CAPI to v1.5.2 (#4643, @k8s-infra-cherrypick-robot)
• Resolved issue where deleted control planes were still registered in the kube-apiserver load balancer, causing potential disruptions. (#4706, @k8s-infra-cherrypick-robot)

The images for this release are:
registry.k8s.io/cluster-api-aws/cluster-api-aws-controller:v2.2.5

Thanks to all our contributors.

Dependencies

Added

• github.com/AdaLogics/go-fuzz-headers: 43070de
• github.com/samber/lo: v1.38.1
• github.com/xhit/go-str2duration/v2: v2.1.0
• google.golang.org/genproto/googleapis/api: 782d3b1
• google.golang.org/genproto/googleapis/rpc: 782d3b1

Changed

• cloud.google.com/go/bigquery: v1.50.0 → v1.8.0
• cloud.google.com/go/compute: v1.20.1 → v1.21.0
• cloud.google.com/go/datastore: v1.11.0 → v1.1.0
• cloud.google.com/go/pubsub: v1.30.0 → v1.3.1
• github.com/Masterminds/semver/v3: v3.2.0 → v3.2.1
• github.com/Masterminds/squirrel: v1.5.3 → v1.5.4
• github.com/alecthomas/kingpin/v2: v2.3.1 → v2.3.2
• github.com/aws/amazon-vpc-cni-k8s: v1.14.1 → v1.15.0
• github.com/aws/amazon-vpc-resource-controller-k8s: v1.1.5 → v1.3.0
• github.com/aws/aws-sdk-go: v1.44.213 → v1.44.298
• github.com/cenkalti/backoff/v4: v4.1.3 → v4.2.1
• github.com/cncf/xds/go: 32f1caf → e9ce688
• github.com/containerd/containerd: v1.6.15 → v1.7.0
• github.com/containernetworking/cni: v1.1.1 → v1.1.2
• github.com/containernetworking/plugins: v1.1.1 → v1.2.0
• github.com/coreos/go-semver: v0.3.0 → v0.3.1
• github.com/cpuguy83/go-md2man/v2: v2.0.2 → v2.0.3
• github.com/docker/cli: v20.10.21+incompatible → v23.0.1+incompatible
• github.com/docker/docker: v24.0.5+incompatible → v24.0.7+incompatible
• github.com/docker/go-units: v0.4.0 → v0.5.0
• github.com/envoyproxy/go-control-plane: v0.11.0 → v0.11.1
• github.com/envoyproxy/protoc-gen-validate: v0.10.0 → v1.0.2
• github.com/go-gorp/gorp/v3: v3.0.2 → v3.0.5
• github.com/go-logr/logr: v1.2.4 → v1.3.0
• github.com/google/go-cmp: v0.5.9 → v0.6.0
• github.com/grpc-ecosystem/grpc-gateway/v2: v2.7.0 → v2.16.0
• github.com/hashicorp/errwrap: v1.0.0 → v1.1.0
• github.com/hashicorp/go-multierror: v1.0.0 → v1.1.1
• github.com/huandu/xstrings: v1.3.3 → v1.4.0
• github.com/klauspost/compress: v1.13.6 → v1.16.0
• github.com/lib/pq: v1.10.7 → v1.10.9
• github.com/onsi/ginkgo/v2: v2.12.1 → v2.13.1
• github.com/onsi/gomega: v1.27.10 → v1.30.0
• github.com/opencontainers/image-spec: v1.1.0-rc2 → 3a7f492
• github.com/prometheus/client_golang: v1.16.0 → v1.17.0
• github.com/prometheus/client_model: v0.4.0 → 9a2bf30
• github.com/prometheus/common: v0.42.0 → v0.44.0
• github.com/prometheus/procfs: v0.10.1 → v0.11.1
• github.com/rubenv/sql-migrate: v1.2.0 → v1.3.1
• github.com/spf13/cobra: v1.7.0 → v1.8.0
• github.com/spf13/pflag: v1.0.5 → d5e0c06
• github.com/vishvananda/netlink: f5de759 → v1.2.1-beta.2
• go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp: v0.35.1 → v0.44.0
• go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc: v1.10.0 → v1.19.0
• go.opentelemetry.io/otel/exporters/otlp/otlptrace: v1.10.0 → v1.19.0
• go.opentelemetry.io/otel/metric: v0.31.0 → v1.19.0
• go.opentelemetry.io/otel/sdk: v1.10.0 → v1.19.0
• go.opentelemetry.io/otel/trace: v1.10.0 → v1.19.0
• go.opentelemetry.io/otel: v1.10.0 → v1.19.0
• go.opentelemetry.io/proto/otlp: v0.19.0 → v1.0.0
• golang.org/x/crypto: v0.13.0 → v0.15.0
• golang.org/x/exp: 6cc2880 → 642cace
• golang.org/x/mod: v0.12.0 → v0.13.0
• golang.org/x/net: v0.14.0 → v0.17.0
• golang.org/x/sync: v0.3.0 → v0.4.0
• golang.org/x/sys: v0.12.0 → v0.14.0
• golang.org/x/term: v0.12.0 → v0.14.0
• golang.org/x/text: v0.13.0 → v0.14.0
• golang.org/x/tools: v0.12.0 → v0.14.0
• google.golang.org/genproto: daa745c → 782d3b1
• google.golang.org/grpc: v1.55.0 → v1.58.2
• helm.sh/helm/v3: v3.11.1 → v3.12.3
• k8s.io/api: v0.27.2 → v0.27.3
• k8s.io/apiextensions-apiserver: v0.27.2 → v0.27.3
• k8s.io/apimachinery: v0.27.2 → v0.27.3
• k8s.io/apiserver: v0.27.2 → v0.27.3
• k8s.io/cli-runtime: v0.27.2 → v0.27.3
• k8s.io/client-go: v0.27.2 → v0.27.3
• k8s.io/code-generator: v0.27.2 → v0.27.3
• k8s.io/component-base: v0.27.2 → v0.27.3
• k8s.io/component-helpers: v0.27.2 → v0.27.3
• k8s.io/kms: v0.27.2 → v0.27.3
• k8s.io/kubectl: v0.27.2 → v0.27.3
• k8s.io/metrics: v0.27.2 → v0.27.3
• k8s.io/utils: a36077c → a5ecb01
• oras.land/oras-go: v1.2.2 → v1.2.3
• sigs.k8s.io/cluster-api/test: v1.5.2 → v1.5.3
• sigs.k8s.io/cluster-api: v1.5.2 → v1.5.3
• sigs.k8s.io/yaml: v1.3.0 → v1.4.0

Removed

• cloud.google.com/go/accessapproval: v1.6.0
• cloud.google.com/go/accesscontextmanager: v1.7.0
• cloud.google.com/go/aiplatform: v1.37.0
• cloud.google.com/go/analytics: v0.19.0
• cloud.google.com/go/apigateway: v1.5.0
• cloud.google.com/go/apigeeconnect: v1.5.0
• cloud.google.com/go/apigeeregistry: v0.6.0
• cloud.google.com/go/apikeys: v0.6.0
• cloud.google.com/go/appengine: v1.7.1
• cloud.google.com/go/area120: v0.7.1
• cloud.google.com/go/artifactregistry: v1.13.0
• cloud.google.com/go/asset: v1.13.0
• cloud.google.com/go/assuredworkloads: v1.10.0
• cloud.google.com/go/automl: v1.12.0
• cloud.google.com/go/baremetalsolution: v0.5.0
• cloud.google.com/go/batch: v0.7.0
• cloud.google.com/go/beyondcorp: v0.5.0
• cloud.google.com/go/billing: v1.13.0
• cloud.google.com/go/binaryauthorization: v1.5.0
• cloud.google.com/go/certificatemanager: v1.6.0
• cloud.google.com/go/channel: v1.12.0
• cloud.google.com/go/cloudbuild: v1.9.0
• cloud.google.com/go/clouddms: v1.5.0
• cloud.google.com/go/cloudtasks: v1.10.0
• cloud.google.com/go/contactcenterinsights: v1.6.0
• cloud.google.com/go/container: v1.15.0
• cloud.google.com/go/containeranalysis: v0.9.0
• cloud.google.com/go/datacatalog: v1.13.0
• cloud.google.com/go/dataflow: v0.8.0
• cloud.google.com/go/dataform: v0.7.0
• cloud.google.com/go/datafusion: v1.6.0
• cloud.google.com/go/d...

v2.3.0

Release notes for Cluster API Provider AWS (CAPA) v2.3.0

Documentation

Changelog since v2.2.4

Urgent Upgrade Notes

(No, really, you MUST read this before you upgrade)

• If you're using the S3 bucket functionality, the following permissions are required for the VPCEndpoint to be managed
  ec2:CreateVpcEndpoint, ec2:ModifyVpcEndpoint, ec2:DeleteVpcEndpoints, ec2:DescribeVpcEndpoints. Rerun clusterawsadm to update IAM permissions, or update it manually. (#4577, @vincepri)
• When the VPC is managed, the SubnetSpec.ID field can be used now to offload subnet management to the AWSCluster controller. The id should be set to a string that DOES NOT start with subnet-; the value is used to set the Name tag in the subnet resource and the actual AWS resource ID is stored in SubnetSpec.ResourceID. (#4474, @vincepri)

Changes by Kind

Feature

• AWSCluster.Spec.ControlPlaneLoadBalancer of type NLB now support setting up additional TCP listeners through AdditionalListeners (#4563, @vincepri)
• Ignition v3 is now supported as a valid version. S3 Bucket to store bootstrap data can now optionally use presigned URLs instead of relying on IAM permissions for nodes and control-plane nodes. The feature is opt-in and backward compatible, if you'd like to switch using presigned URLs, set AWSCluster.S3Bucket.PresignedURLDuration. (#4553, @vincepri)
• Tag S3 bucket as owned by the cluster (#4518, @AndiDog)
• Use AdditionalTags for S3 buckets (#4625, @AndiDog)

Bug or Regression

• Filter out reconciling events on externally managed AWSManagedClusters (#4604, @fiunchinho)
• Fix issue with EKE e2e tests due to a issue when specifying which subnets to use. (#4575, @richardcase)
• Fix issues with kpromo to do with project name and fork (#4545, @richardcase)
• Fix launch template reconciliation if bootstrap data secret cannot be read (#4589, @AndiDog)
• Fix: sorting the tags list to make it determined (#4579, @Skarlso)

Support

• Maintainer and reviewer changes. (#4536, #4598, @richardcase)
• Bump CAPI to v1.5.3 (#4627, @Ankitasw)
• Bump dependencies (#4612, @Ankitasw)
• Update CAPA supported AMI OS: support on ubuntu2204 added, ubuntu1804 dropped (#4597, @wyike)

Other

• Update metadata for the v2.3.0 release (#4651, @richardcase)
• If you're using --verbosity (or -v) flags to gather more logs, the new guidelines show: warn at level 1, debug at level 4, and trace at level 5. (#4576, @vincepri)
• Added verifier for action for pull request (#4634, @kranurag7)
• Use seedling emoji for dependabot pull requests (#4652, @kranurag7)

The images for this release are:
registry.k8s.io/cluster-api-aws/cluster-api-aws-controller:v2.3.0

Thanks to all our contributors.

Dependencies

Added

• github.com/aymerick/douceur: v0.2.0
• github.com/beevik/etree: v1.2.0
• github.com/containers/libhvee: v0.3.0
• github.com/coreos/go-json: 18775e0
• github.com/coreos/ignition/v2: v2.16.2
• github.com/coreos/ignition: v0.35.0
• github.com/coreos/vcontext: d72178a
• github.com/godbus/dbus/v5: v5.0.4
• github.com/google/renameio/v2: v2.0.0
• github.com/gorilla/css: v1.0.0
• github.com/itchyny/gojq: v0.12.7
• github.com/itchyny/timefmt-go: v0.1.3
• github.com/jackc/chunkreader/v2: v2.0.1
• github.com/jackc/pgconn: v1.12.0
• github.com/jackc/pgio: v1.0.0
• github.com/jackc/pgpassfile: v1.0.0
• github.com/jackc/pgproto3/v2: v2.3.0
• github.com/jackc/pgservicefile: 2b9c447
• github.com/jackc/pgtype: v1.11.0
• github.com/jackc/pgx/v4: v4.16.0
• github.com/microcosm-cc/bluemonday: v1.0.18
• github.com/openshift-online/ocm-sdk-go: v0.1.386
• github.com/xhit/go-str2duration/v2: v2.1.0
• google.golang.org/genproto/googleapis/api: 782d3b1
• google.golang.org/genproto/googleapis/rpc: 782d3b1

Changed

• cloud.google.com/go/bigquery: v1.50.0 → v1.8.0
• cloud.google.com/go/compute: v1.20.1 → v1.21.0
• cloud.google.com/go/datastore: v1.11.0 → v1.1.0
• cloud.google.com/go/iam: v0.13.0 → v1.1.0
• cloud.google.com/go/pubsub: v1.30.0 → v1.3.1
• cloud.google.com/go/storage: v1.14.0 → v1.31.0
• cloud.google.com/go: v0.110.0 → v0.110.2
• github.com/Masterminds/semver/v3: v3.2.0 → v3.2.1
• github.com/alecthomas/kingpin/v2: v2.3.1 → v2.3.2
• github.com/aws/amazon-vpc-cni-k8s: v1.14.1 → v1.15.4
• github.com/aws/aws-sdk-go: v1.44.213 → v1.44.298
• github.com/cenkalti/backoff/v4: v4.1.3 → v4.2.1
• github.com/cncf/xds/go: 32f1caf → e9ce688
• github.com/coreos/go-semver: v0.3.0 → v0.3.1
• github.com/coreos/go-systemd/v22: v22.4.0 → v22.5.0
• github.com/cpuguy83/go-md2man/v2: v2.0.2 → v2.0.3
• github.com/docker/docker: v24.0.5+incompatible → v24.0.7+incompatible
• github.com/docker/go-units: v0.4.0 → v0.5.0
• github.com/envoyproxy/go-control-plane: v0.11.0 → v0.11.1
• github.com/envoyproxy/protoc-gen-validate: v0.10.0 → v1.0.2
• github.com/go-logr/logr: v1.2.4 → v1.3.0
• github.com/google/go-cmp: v0.5.9 → v0.6.0
• github.com/google/s2a-go: v0.1.3 → v0.1.4
• github.com/googleapis/enterprise-certificate-proxy: v0.2.3 → v0.2.5
• github.com/googleapis/gax-go/v2: v2.8.0 → v2.11.0
• github.com/grpc-ecosystem/grpc-gateway/v2: v2.7.0 → v2.16.0
• github.com/huandu/xstrings: v1.3.3 → v1.4.0
• github.com/onsi/ginkgo/v2: [v2.12.1 → v2.13.1](https://github.com/onsi/ginkgo/v2/c...

v2.2.4

Release notes for Cluster API Provider AWS (CAPA) v2.2.4

Documentation

Changelog since v2.2.2

There is no v2.2.3 release due to an issue with the release.

Changes by Kind

Support

• Bump CAPI to v1.5.2 (#4526, @Ankitasw)

Bug or Regression

• Fixed a bug with the sigs.k8s.io/cluster-api-provider-aws-last-applied-tags annotation that could cause excessive metadata values on AWSMachines. (#4535, @Ankitasw)
• Make kpromo versioned consistent (#4542, @richardcase)

Uncategorized

• Additional ingress rules for control plane (#4524, @fiunchinho)
• Availability zone status is correctly set when using BYO NLBs, fixing an issue where control plane nodes were only created in a single AZ (#4498, @k8s-infra-cherrypick-robot)
• Change generated nodegroup IAM role name from -nodegroup-iam-service-role_<cluster-name>-<nodegroup-name> to <cluster-name>-<nodegroup-name>_nodegroup-iam-service-role (#4516, @k8s-infra-cherrypick-robot)
• Fix how NAT gateways IPs are saved in the status field (#4520, @k8s-infra-cherrypick-robot)

The images for this release are:

registry.k8s.io/cluster-api-aws/cluster-api-aws-controller:v2.2.4

Thanks to all our contributors.

Dependencies

Added

• cloud.google.com/go/apigeeregistry: v0.6.0
• cloud.google.com/go/apikeys: v0.6.0
• github.com/adrg/xdg: v0.4.0
• github.com/golang-jwt/jwt/v4: v4.4.2
• github.com/golangplus/bytes: v1.0.0
• github.com/golangplus/fmt: v1.0.0
• github.com/golangplus/testing: v1.0.0
• github.com/google/s2a-go: v0.1.3
• sigs.k8s.io/kustomize/cmd/config: v0.11.1
• sigs.k8s.io/kustomize/kustomize/v5: v5.0.1

Changed

• cloud.google.com/go/accessapproval: v1.5.0 → v1.6.0
• cloud.google.com/go/accesscontextmanager: v1.4.0 → v1.7.0
• cloud.google.com/go/aiplatform: v1.27.0 → v1.37.0
• cloud.google.com/go/analytics: v0.12.0 → v0.19.0
• cloud.google.com/go/apigateway: v1.4.0 → v1.5.0
• cloud.google.com/go/apigeeconnect: v1.4.0 → v1.5.0
• cloud.google.com/go/appengine: v1.5.0 → v1.7.1
• cloud.google.com/go/area120: v0.6.0 → v0.7.1
• cloud.google.com/go/artifactregistry: v1.9.0 → v1.13.0
• cloud.google.com/go/asset: v1.10.0 → v1.13.0
• cloud.google.com/go/assuredworkloads: v1.9.0 → v1.10.0
• cloud.google.com/go/automl: v1.8.0 → v1.12.0
• cloud.google.com/go/baremetalsolution: v0.4.0 → v0.5.0
• cloud.google.com/go/batch: v0.4.0 → v0.7.0
• cloud.google.com/go/beyondcorp: v0.3.0 → v0.5.0
• cloud.google.com/go/bigquery: v1.44.0 → v1.50.0
• cloud.google.com/go/billing: v1.7.0 → v1.13.0
• cloud.google.com/go/binaryauthorization: v1.4.0 → v1.5.0
• cloud.google.com/go/certificatemanager: v1.4.0 → v1.6.0
• cloud.google.com/go/channel: v1.9.0 → v1.12.0
• cloud.google.com/go/cloudbuild: v1.4.0 → v1.9.0
• cloud.google.com/go/clouddms: v1.4.0 → v1.5.0
• cloud.google.com/go/cloudtasks: v1.8.0 → v1.10.0
• cloud.google.com/go/compute: v1.15.1 → v1.20.1
• cloud.google.com/go/contactcenterinsights: v1.4.0 → v1.6.0
• cloud.google.com/go/container: v1.7.0 → v1.15.0
• cloud.google.com/go/containeranalysis: v0.6.0 → v0.9.0
• cloud.google.com/go/datacatalog: v1.8.0 → v1.13.0
• cloud.google.com/go/dataflow: v0.7.0 → v0.8.0
• cloud.google.com/go/dataform: v0.5.0 → v0.7.0
• cloud.google.com/go/datafusion: v1.5.0 → v1.6.0
• cloud.google.com/go/datalabeling: v0.6.0 → v0.7.0
• cloud.google.com/go/dataplex: v1.4.0 → v1.6.0
• cloud.google.com/go/dataproc: v1.8.0 → v1.12.0
• cloud.google.com/go/dataqna: v0.6.0 → v0.7.0
• cloud.google.com/go/datastore: v1.10.0 → v1.11.0
• cloud.google.com/go/datastream: v1.5.0 → v1.7.0
• cloud.google.com/go/deploy: v1.5.0 → v1.8.0
• cloud.google.com/go/dialogflow: v1.19.0 → v1.32.0
• cloud.google.com/go/dlp: v1.7.0 → v1.9.0
• cloud.google.com/go/documentai: v1.10.0 → v1.18.0
• cloud.google.com/go/domains: v0.7.0 → v0.8.0
• cloud.google.com/go/edgecontainer: v0.2.0 → v1.0.0
• cloud.google.com/go/essentialcontacts: v1.4.0 → v1.5.0
• cloud.google.com/go/eventarc: v1.8.0 → v1.11.0
• cloud.google.com/go/filestore: v1.4.0 → v1.6.0
• cloud.google.com/go/functions: v1.9.0 → v1.13.0
• cloud.google.com/go/gaming: v1.8.0 → v1.9.0
• cloud.google.com/go/gkebackup: v0.3.0 → v0.4.0
• cloud.google.com/go/gkeconnect: v0.6.0 → v0.7.0
• cloud.google.com/go/gkehub: v0.10.0 → v0.12.0
• cloud.google.com/go/gkemulticloud: v0.4.0 → v0.5.0
• cloud.google.com/go/gsuiteaddons: v1.4.0 → v1.5.0
• cloud.google.com/go/iam: v0.8.0 → v0.13.0
• cloud.google.com/go/iap: v1.5.0 → v1.7.1
• cloud.google.com/go/ids: v1.2.0 → v1.3.0
• cloud.google.com/go/iot: v1.4.0 → v1.6.0
• cloud.google.com/go/kms: v1.6.0 → v1.10.1
• cloud.google.com/go/language: v1.8.0 → v1.9.0
• cloud.google.com/go/lifesciences: v0.6.0 → v0.8.0
• cloud.google.com/go/logging: v1.6.1 → v1.7.0
• cloud.google.com/go/longrunning: v0.3.0 → v0.4.1
• cloud.google.com/go/managedidentities: v1.4.0 → v1.5.0
• cloud.google.com/go/maps: v0.1.0 → v0.7.0
• cloud.google.com/go/mediatranslation: v0.6.0 → v0.7.0
• cloud.google.com/go/memcache: v1.7.0 → v1.9.0
• cloud.google.com/go/metastore: v1.8.0 → v1.10.0
• cloud.google.com/go/monitoring: v1.8.0 → v1.13.0
• cloud.google.com/go/networkconnectivity: v1.7.0 → v1.11.0
• cloud.google.com/go/networkmanagement: v1.5.0 → v1.6.0
• cloud.google.com/go/networksecurity: v0.6.0 → v0.8.0
• cloud.google.com/go/notebooks: v1.5.0 → v1.8.0
• cloud.google.com/go/optimization: v1.2.0 → v1.3.1
• cloud.google.com/go/orchestration: v1.4.0 → v1.6.0
• cloud.google.com/go/orgpolicy: v1.5.0 → v1.10.0
• cloud.google.com/go/osconfig: v1.10.0 → v1.11.0
• cloud.google.com/go/oslogin: v1.7.0 → v1.9.0
• cloud.google.com/go/phishingprotection: v0.6.0 → v0.7.0
• cloud.google.com/go/policytroubleshooter: v1.4.0 → v1.6.0
• cloud.google.com/go/privatecatalog: v0.6.0 → v0.8.0
• cloud.google.com/go/pubsub: v1.27.1 → v1.30.0
• cloud.google.com/go/pubsublite: v1.5.0 → v1.7.0
• cloud.google.com/go/recaptchaenterprise/v2: v2.5.0 → v2.7.0
• cloud.google.com/go/recommendationengine: v0.6.0 → v0.7.0
• cloud.google.com/go/recommender: v1.8.0 → v1.9.0
• cloud.google.com/go/redis: v1.10.0 → v1.11.0
• cloud.google.com/go/resourcemanager: v1.4.0 → v1.7.0
• cloud.google.com/go/resourcesettings: v1.4.0 → v1.5.0
• cloud.google.com/go/retail: v1.11.0 → v1.12.0
• cloud.google.com/go/run: v0.3.0 → v0.9.0
• cloud.google.com/go/scheduler: v1.7.0 → v1.9.0
• cloud.google.com/go/secretmanager: v1.9.0 → v1.10.0
• cloud.google.com/go/security: v1.10.0 → v1.13.0
• cloud.google.com/go/securitycenter: v1.16.0 → v1.19.0
• cloud.google.com/go/servicecontrol: v1.5.0 → v1.11.1
• cloud.google.com/go/servicedirectory: v1.7.0 → v1.9.0
• cloud.google.com/go/servicemanagement: v1.5.0 → v1.8.0
• cloud.google.com/go/serviceusage: v1.4.0 → v1.6.0
• cloud.google.com/go/shell: v1.4.0 → v1.6.0
• cloud.google.com/go/spanner: v1.41.0 → v1.45.0
• cloud.google.com/go/speech: v1.9.0 → v1.15.0
• cloud.google.com/go/storagetransfer: v1.6.0 → v1.8.0
• cloud.google.com/go/talent: v1.4.0 → v1.5.0
• cloud.google.com/go/texttospeech: v1.5.0 → v1.6.0
• cloud.google.com/go/tpu: v1.4.0 → v1.5.0
• cloud.google.com/go/trace: v1.4.0 → v1.9.0
• cloud.google.com/go/translate: v1.4.0 → v1.7.0
• cloud.google.com/go/video: v1.9.0 → v1.15.0
• cloud.google.com/go/videointelligence: v1.9.0 → v1.10.0
• cloud.google.com/go/vision/v2: v2.5.0 → v2.7.0
• cloud.google.com/go/vmmigration: v1.3.0 → v1.6.0
• cloud.google.com/go/vmwareengine: v0.1.0 → v0.3.0
• cloud.google.com/go/vpcaccess: v1.5.0 → v1.6.0
• cloud.google.com/go/webrisk: v1.7.0 → v1.8.0
• cloud.google.com/go/websecurityscanner: v1.4.0 → v1.5.0
• cloud.google.com/go/workflows: v1.9.0 → v1.10.0
• cloud.google.com/go: v0.105.0 → v0.110.0
• github.com/alessio/shellescape: v1.4.1 → v1.4.2
• github.com/aws/amazon-vpc-cni-k8s: v1.13.2 → v1.14.1
• github.com/cncf/xds/go: 06c439d → 32f1caf
• github.com/coredns/corefile-migration: v1.0.20 → v1.0.21
• github.com/coreos/go-systemd/v22: v22.3.2 → v22.4.0
• github.com/docker/docker: v20.10.24+incompatible → v24.0.5+incompatible
• github.com/emicklei/go-restful/v3: v3.10.1 → v3.10.2
• github.com/envoyproxy/go-control-plane: v0.10.3 → v0.11.0
• github.com/envoyproxy/protoc-gen-validate: [v0.9.1 → v0.10.0](https://github.com/envoyproxy/protoc-gen-validate/compare...

v2.2.2

Release notes for Cluster API Provider AWS (CAPA) v2.2.2

Documentation

Changelog since v2.2.1

Urgent Upgrade Notes

(No, really, you MUST read this before you upgrade)

• A new required permission must be added to your controllers policy by running clusterawsadm bootstrap iam create-cloudformation-stack again (or can manually add elasticloadbalancing:SetSubnets permission to controllers policy). (#4413, @k8s-infra-cherrypick-robot)

Changes by Kind

Support

• Customize golang version when compiling our binaries and images (#4410, @wyike)

Bug Fixes

• Availability zone status is correctly set when using BYO NLBs, fixing an issue where control plane nodes were only created in a single AZ (#4498, @k8s-infra-cherrypick-robot)
• Fix control plane LB ingress rules so that kubelet can access the API (#4496, @k8s-infra-cherrypick-robot)
• Generate release notes using Kubernetes tooling (#4478, @k8s-infra-cherrypick-robot)

The images for this release are: registry.k8s.io/cluster-api-aws/cluster-api-aws-controller:v2.2.2

Thanks to all our contributors.

Dependencies

Added

Nothing has changed.

Changed

Nothing has changed.

Removed

Nothing has changed.

v2.0.3

Release notes for Cluster API Provider AWS (CAPA) v2.0.3

Documentation

Changelog since v2.0.2

What's Changed

🐛 Bug Fixes

• fix: resolve secrets when generating eks userdata (backport #4285) by @faiq in #4288

🌱 Others

• [release-2.0] fix: building release-binaries fails by @k8s-infra-cherrypick-robot in #4311
• [release-2.0] Reconcile EKSConfig correctly for MachinePool and other Owner kinds by @Ankitasw in #4353
• [release-2.0] [E2E] Fix kubernetes version for EKS upgrade tests by @k8s-infra-cherrypick-robot in #4355
• [release-2.0] Move all E2E test templates to use external CCM and CSI by @k8s-infra-cherrypick-robot in #4352
• Bump docker/distribution to v2.8.2 and golang.org/x/net to v0.7.0 by @wyike in #4400
• Customize golang version by @wyike in #4412

Full Changelog: v2.0.2...v2.0.3

The image for this release is: registry.k8s.io/cluster-api-aws/cluster-api-aws-controller:v2.0.3

Thanks to all our contributors!

v2.2.1

Release notes for Cluster API Provider AWS (CAPA) v2.2.1

Documentation

Changelog since v2.2.0

What's Changed

🌱 Others

• [release-2.2] Update metadata.yaml by @Ankitasw in #4383
• [release-2.2] chore: update metedata.yaml with the release series by @k8s-infra-cherrypick-robot in #4389
• Customize golang version by @wyike in #4410

Full Changelog: v2.2.0...v2.2.1

The image for this release is: registry.k8s.io/cluster-api-aws/cluster-api-aws-controller:v2.2.1

Thanks to all our contributors!

v2.2.0

Release notes for Cluster API Provider AWS (CAPA) v2.2.0

Documentation

Changelog since v2.1.4

What's Changed

🚀 Features

• feat: Include controller IAM for instance metadata operations by @dntosas in #4255
• Remove CAPA tagging from unmanaged network resources by @Ankitasw in #4130
• Feature: add default behaviour for clusterawsadm bootstrap iam print-policy by @Atharva-Shinde in #4249
• ✨ Add support to specify PlacementGroup Name in instances by @vincepri in #4273
• 4046 - Add AssumeRole and update appropriate tests by @ryan-dyer-sp in #4132
• Additional ingress rules for control plane by @alexander-demicev in #4228
• Allow customization of ingress rules in control plane LB security group by @fiunchinho in #4304
• feat: add support for EKS addon configuration by @synthe102 in #4346

🐛 Bug Fixes

• Set httpPutResponseHopLimit to 2 when creating instances by @wyike in #4250
• Zero csi driver aws credentials to fallback to use instance profile role by @wyike in #4262
• fix: remove modification of networkinterface for ipv6 by @Skarlso in #4264
• fix: correct the enum types for protocol values by @Skarlso in #4287
• fix: resolve secrets when generating eks userdata by @faiq in #4285
• fix: remove set nodes role by @faiq in #4292
• Requque when awsmachine is pending by @wyike in #4300
• fix: the quickstart guide needs update for external cloud provider by @Skarlso in #4301
• Fix EKSControlPlaneReconciliationFailed when OIDC already exists by @iamjanr in #4017
• check TagUmanagedNetworkResources feature gate before tagging subnets for LBs by @Jacobious52 in #4341
• Pass right SGs for IsExternallyManaged on creation by @enxebre in #4362
• Use default arch x86_64 for AMI lookup if ec2:DescribeInstanceTypes permission is missing by @muraee in #4347
• 🐛 compare string value of protocol in health check instead of pointer by @faiq in #4360
• Drop unwanted SGs when calling attachSecurityGroupsToNetworkInterface by @enxebre in #4363

📖 Documentation

• chore: update release notes by @Skarlso in #4254

🌱 Others

• build(deps): bump github.com/aws/aws-lambda-go from 1.40.0 to 1.41.0 by @dependabot in #4248
• build(deps): bump sigs.k8s.io/kustomize/api from 0.13.2 to 0.13.3 by @dependabot in #4252
• 🐛 Allow the defaulting of InstanceMetadataOptions to go through for AWSMachineTemplates by @yastij in #4256
• build(deps): bump golang.org/x/crypto from 0.8.0 to 0.9.0 by @dependabot in #4259
• build(deps): bump sigs.k8s.io/kustomize/api from 0.13.3 to 0.13.4 by @dependabot in #4261
• Use dl.k8s.io instead of kubernetes-release bucket by @askulkarni2 in #4263
• Bump CAPI to v1.4.2 by @Ankitasw in #4244
• build(deps): bump github.com/docker/distribution from 2.8.1+incompatible to 2.8.2+incompatible in /hack/tools by @dependabot in #4267
• build(deps): bump github.com/cloudflare/circl from 1.1.0 to 1.3.3 in /hack/tools by @dependabot in #4266
• E2E tests for AlternativeGCStrategy by @wyike in #4210
• build(deps): bump github.com/docker/distribution from 2.8.1+incompatible to 2.8.2+incompatible by @dependabot in #4265
• e2e: add elasticfilesystem:TagResource action by @xmudrii in #4272
• build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.4 to 2.9.5 by @dependabot in #4270
• Set IMDSv2 as optional by @wyike in #4274
• build(deps): bump github.com/onsi/gomega from 1.27.6 to 1.27.7 by @dependabot in #4277
• build(deps): bump sigs.k8s.io/aws-iam-authenticator from 0.6.9 to 0.6.10 by @dependabot in #4276
• build(deps): bump sigs.k8s.io/promo-tools/v3 from 3.5.2 to 3.6.0 in /hack/tools by @dependabot in #4282
• add IRSA for self-managed clusters proposal by @luthermonson in #4164
• build(deps): bump github.com/mikefarah/yq/v4 from 4.33.3 to 4.34.1 in /hack/tools by @dependabot in #4297
• build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.5 to 2.9.7 by @dependabot in #4302
• fix: building release-binaries fails by @richardcase in #4306
• build(deps): bump github.com/itchyny/gojq from 0.12.12 to 0.12.13 in /hack/tools by @dependabot in #4312
• build(deps): bump github.com/aws/amazon-vpc-cni-k8s from 1.12.5 to 1.13.0 by @dependabot in #4313
• build(deps): bump github.com/onsi/ginkgo/v2 from 2.9.7 to 2.10.0 by @dependabot in #4318
• build(deps): bump github.com/onsi/gomega from 1.27.7 to 1.27.8 by @dependabot in #4319
• E2E tests for AlternativeGCStrategy by @wyike in #4328
• build(deps): bump actions/checkout from 3.5.2 to 3.5.3 by @dependabot in #4330
• chore: Bump CAPI to v1.4.3 by @Ankitasw in #4321
• build(deps): bump golang.org/x/text from 0.9.0 to 0.10.0 by @dependabot in #4337
• [E2E] Enable EventBridge in the tests by @Ankitasw in #4100
• build(deps): bump golang.org/x/crypto from 0.9.0 to 0.10.0 by @dependabot in #4338
• build(deps): bump github.com/prometheus/client_golang from 1.15.1 to 1.16.0 by @dependabot in #4343
• build(deps): bump github.com/aws/amazon-vpc-cni-k8s from 1.13.0 to 1.13.2 by @dependabot in #4349
• build(deps): bump github.com/onsi/ginkgo/v2 from 2.10.0 to 2.11.0 by @dependabot in #4350
• build(deps): bump sigs.k8s.io/kind from 0.18.0 to 0.20.0 in /hack/tools by @dependabot in #4348
• Use public.ecr.aws for golang image by @ameukam in #4365
• chore: remove usage of script to install golangci-lint by @richardcase in #4367
• Do not return error if secret does not exist by @enxebre in #3805
• build(deps): bump golang.org/x/text from 0.10.0 to 0.11.0 by @dependabot in #4376
• build(deps): bump google.golang.org/grpc from 1.52.0 to 1.53.0 by @dependabot in #4381
• build(deps): bump golang.org/x/crypto from 0.10.0 to 0.11.0 by @dependabot in #4382
• Switch to constants for asg not found events, simplify asg lookup by @cnmcavoy in https://github.com/kubernetes-sigs/clu...