Skip to content

Releases: aws/eks-anywhere

v0.21.1

18 Nov 15:17
382a27a
Compare
Choose a tag to compare

Supported OS version details

vSphere Bare Metal Nutanix CloudStack Snow
Ubuntu 20.04 βœ” βœ” βœ” β€” βœ”
Ubuntu 22.04 βœ” βœ” βœ” β€” β€”
Bottlerocket 1.26.1 βœ” * β€” β€” β€”
RHEL 8.x βœ” βœ” βœ” βœ” β€”
RHEL 9.x β€” βœ” βœ” βœ” β€”

* EKS Anywhere issue regarding deprecation of Bottlerocket bare metal variants

Upgraded

v0.20.9

09 Nov 21:33
31ceba6
Compare
Choose a tag to compare

Supported OS version details

vSphere Bare Metal Nutanix CloudStack Snow
Ubuntu 20.04 βœ” βœ” βœ” β€” βœ”
Ubuntu 22.04 βœ” βœ” βœ” β€” β€”
Bottlerocket 1.20.5 βœ” β€” β€” β€” β€”
RHEL 8.x βœ” βœ” βœ” βœ” β€”
RHEL 9.x β€” βœ” βœ” βœ” β€”

Changed

  • cilium: v1.13.20-eksa.1 to v1.13.21-eksa.5
  • cloud-provider-vsphere
    • v1.29.1 to v1.29.2
    • v1.30.1 to v1.30.2
  • EKS Distro:
  • cluster-api-provider-vsphere(CAPV): v1.10.3 to v1.10.4
  • etcdadm-bootstrap-provider: v1.0.14 to v1.0.15
  • kube-vip: v0.8.4 to v0.8.6

Fixed

  • Release init-lock when the owner machine fails to launch. (#41)

Weekly Release 2024-11-07

07 Nov 23:53
c448e9e
Compare
Choose a tag to compare
Pre-release

This is the weekly bundle and EKS-A CLI release from main.

Date: 2024-11-07
Build-tooling repo commit: 6507fc0d168a2ad318e71ce156f3ad507caebab2
CLI repo commit: c448e9e

Weekly Release 2024-10-31

31 Oct 23:30
56cd147
Compare
Choose a tag to compare
Pre-release

This is the weekly bundle and EKS-A CLI release from main.

Date: 2024-10-31
Build-tooling repo commit: 10f8e84960be10160d96927e88468285c13a89b5
CLI repo commit: 9713aab

v0.21.0

30 Oct 16:46
789cb12
Compare
Choose a tag to compare

Supported OS version details

vSphere Bare Metal Nutanix CloudStack Snow
Ubuntu 20.04 βœ” βœ” βœ” β€” βœ”
Ubuntu 22.04 βœ” βœ” βœ” β€” β€”
Bottlerocket 1.26.1 βœ” * β€” β€” β€”
RHEL 8.x βœ” βœ” βœ” βœ” β€”
RHEL 9.x β€” βœ” βœ” βœ” β€”

* EKS Anywhere issue regarding deprecation of Bottlerocket bare metal variants

Added

  • Support for Kubernetes v1.31
  • Support for configuring tinkerbell stack load balancer interface in cluster spec (#8805)
  • GPU support for Nutanix provider (#8745)
  • Support for worker nodes failure domains on Nutanix (#8837)

Upgraded

  • Added EKS-D for 1-31:
  • Cert Manager: v1.14.7 to v1.15.3
  • Cilium: v1.13.20 to v1.14.12
  • Cluster API: v1.7.2 to v1.8.3
  • Cluster API Provider CloudStack: v0.4.10-rc.1 to v0.5.0
  • Cluster API Provider Nutanix: v1.3.5 to v1.4.0
  • Cluster API Provider vSphere: v1.10.4 to v1.11.2
  • Cri-tools: v1.30.1 to v1.31.1
  • Flux: v2.3.0 to v2.4.0
  • Govmomi: v0.37.3 to v0.44.1
  • Kind: v0.23.0 to v0.24.0
  • Kube-vip: v0.7.0 to v0.8.0
  • Tinkerbell Stack:
    • Rufio: v0.3.3 to v0.4.1
    • Hook: v0.8.1 to v0.9.1
  • Troubleshoot: v0.93.2 to v0.107.4

Changed

  • Use HookOS embedded images in Tinkerbell Templates by default (#8708 and #3471)

Removed

  • Support for Kubernetes v1.26

v0.20.8

23 Oct 22:41
Compare
Choose a tag to compare

Supported OS version details

vSphere Bare Metal Nutanix CloudStack Snow
Ubuntu 20.04 βœ” βœ” βœ” β€” βœ”
Ubuntu 22.04 βœ” βœ” βœ” β€” β€”
Bottlerocket 1.20.5 βœ” β€” β€” β€” β€”
RHEL 8.x βœ” βœ” βœ” βœ” β€”
RHEL 9.x β€” βœ” βœ” βœ” β€”

Must read before upgrade

  • On October 11, 2024, a security issue CVE-2024-9594 was discovered in the Kubernetes Image Builder where default credentials are enabled during the image build process when using the Nutanix, OVA, QEMU or raw providers. The credentials can be used to gain root access. The credentials are disabled at the conclusion of the image build process. Kubernetes clusters are only affected if their nodes use VM images created via the Image Builder project. Clusters using virtual machine images built with Kubernetes Image Builder version v0.1.37 or earlier are affected if built with the Nutanix, OVA, QEMU or raw providers. These images built using previous versions of image-builder will be vulnerable only during the image build process, if an attacker was able to reach the VM where the image build was happening, login using these default credentials and modify the image at the time the image build was occurring. This CVE has been fixed in image-builder versions >= v0.1.38, which has been included in EKS Anywhere releases v0.19.11 and v0.20.8.

Changed

  • EKS Distro:
  • image-builder: v0.1.36 to v0.1.39
  • cluster-api-provider-vsphere(CAPV): v1.10.3 to v1.10.4
  • etcdadm-controller: v1.0.23 to v1.0.24
  • etcdadm-bootstrap-provider: v1.0.13 to v1.0.14
  • kube-vip: v0.8.3 to v0.8.4
  • containerd: v1.7.22 to v1.7.23
  • runc: v1.1.14 to v1.1.15
  • local-path-provisioner: v0.0.29 to v0.0.30

Fixed

  • Skip hardware validation logic for InPlace upgrades. #8779
  • Status reconciliation of etcdadm cluster in etcdadm-controller when etcd-machines are unhealthy. #63
  • Skip generating AWS IAM Kubeconfig on cluster upgrade. #8851

Weekly Release 2024-10-24

24 Oct 23:31
37b11d0
Compare
Choose a tag to compare
Pre-release

This is the weekly bundle and EKS-A CLI release from main.

Date: 2024-10-24
Build-tooling repo commit: 1d8f6dfb24a7940049a1375531031bba0eaed46d
CLI repo commit: 37b11d0

v0.19.11

19 Oct 19:58
2905e21
Compare
Choose a tag to compare

v0.19.11

Supported OS version details

vSphere Bare Metal Nutanix CloudStack Snow
Ubuntu 20.04 βœ” βœ” βœ” β€” βœ”
Ubuntu 22.04 βœ” βœ” βœ” β€” β€”
Bottlerocket 1.20.5 βœ” * β€” β€” β€”
RHEL 8.x βœ” βœ” βœ” βœ” β€”
RHEL 9.x β€” β€” βœ” βœ” β€”

Must read before upgrade

  • On October 11, 2024, a security issue CVE-2024-9594 was discovered in the Kubernetes Image Builder where default credentials are enabled during the image build process when using the Nutanix, OVA, QEMU or raw providers. The credentials can be used to gain root access. The credentials are disabled at the conclusion of the image build process. Kubernetes clusters are only affected if their nodes use VM images created via the Image Builder project. Clusters using virtual machine images built with Kubernetes Image Builder version v0.1.37 or earlier are affected if built with the Nutanix, OVA, QEMU or raw providers. These images built using previous versions of image-builder will be vulnerable only during the image build process, if an attacker was able to reach the VM where the image build was happening, login using these default credentials and modify the image at the time the image build was occurring. This CVE has been fixed in image-builder versions >= v0.1.38, which has been included in EKS Anywhere release v0.19.11.

Changed

  • EKS Distro:
  • Image-builder: v0.1.36 to v0.1.39 (CVE-2024-9594)
  • containerd: v1.7.22 to v1.7.23
  • Cilium: v1.13.19 to v1.13.20
  • etcdadm-controller: v1.0.23 to v1.0.24
  • etcdadm-bootstrap-provider: v1.0.13 to v1.0.14
  • local-path-provisioner: v0.0.29 to v0.0.30
  • runc: v1.1.14 to v1.1.15

Fixed

  • Skip hardware validation logic for InPlace upgrades. #8779
  • Status reconciliation of etcdadm cluster in etcdadm-controller when etcd-machines are unhealthy. #63
  • Skip generating AWS IAM Kubeconfig on cluster upgrade. #8851

Weekly Release 2024-10-17

17 Oct 23:53
b1ebe82
Compare
Choose a tag to compare
Pre-release

This is the weekly bundle and EKS-A CLI release from main.

Date: 2024-10-17
Build-tooling repo commit: 8c6cb61c206f03c401b2799fc1291054eac7fb9d
CLI repo commit: b1ebe82

v0.20.7

07 Oct 18:05
f997230
Compare
Choose a tag to compare

v0.20.7

Supported OS version details

vSphere Bare Metal Nutanix CloudStack Snow
Ubuntu 20.04 βœ” βœ” βœ” β€” βœ”
Ubuntu 22.04 βœ” βœ” βœ” β€” β€”
Bottlerocket 1.20.5 βœ” β€” β€” β€” β€”
RHEL 8.x βœ” βœ” βœ” βœ” β€”
RHEL 9.x β€” βœ” βœ” βœ” β€”

Changed

  • EKS Distro:
  • cilium: v1.13.19 to v1.13.20
  • image-builder: v0.1.30 to v0.1.36
  • cluster-api-provider-vsphere(CAPV): v1.10.2 to v1.10.3

Fixed

  • Fixed support for efi on rhel 9 raw builds. (#3824)