Releases: aws/amazon-vpc-cni-k8s
v1.21.0
What's New
- This release adds support for Cluster Network Policy in AWS Network Policy Agent which allows cluster administrators to define network policies with Layer 3 and 4 network rules at the cluster scope
What's Changed
- chore: update VPC IP resource limits by @github-actions[bot] in #3521
- Bump peter-evans/create-pull-request from 7.0.5 to 7.0.9 by @dependabot[bot] in #3519
- Bump golang.org/x/crypto from 0.40.0 to 0.45.0 by @dependabot[bot] in #3515
- Merge into release branch by @jaydeokar in #3522
- updating changelog by @yash97 in #3525
- chore: update VPC IP resource limits by @github-actions[bot] in #3532
- updating setup go fo gh action by @yash97 in #3537
- update tags by @yash97 in #3535
- update golang version by @yash97 in #3536
- Master to Release-1.21 sync by @jaydeokar in #3539
- Merge pull request #3522 from aws/master by @jaydeokar in #3540
- Release notes for v1.21.0 by @jaydeokar in #3547
- release-1.21 sync with master by @jaydeokar in #3548
Full Changelog: v1.20.5...v1.21.0
To manually apply this release:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.21.0/config/master/aws-k8s-cni.yaml
Note that the following regions use different manifests:
us-gov-east-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.21.0/config/master/aws-k8s-cni-us-gov-east-1.yaml
us-gov-west-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.21.0/config/master/aws-k8s-cni-us-gov-west-1.yaml
cn:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/refs/heads/v1.21.0/config/master/aws-k8s-cni-cn.yaml
To apply this release using helm:
Follow the installation instructions in https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.21.0/charts/aws-vpc-cni/README.md#installing-the-chart
Verify the update:
$ kubectl describe daemonset aws-node -n kube-system | grep Image | cut -d "/" -f 2-3
amazon-k8s-cni-init:v1.21.0
amazon-k8s-cni:v1.21.0
amazon/aws-network-policy-agent:v1.3.0
Contributors
Assets 2
v1.20.5
What's Changed
- enabling pod egress traffic test for under mac address policy variation by @yash97 in #3459
- Bump the aws-dependencies group with 9 updates by @dependabot[bot] in #3465
- chore: update VPC IP resource limits by @github-actions[bot] in #3476
- bumping kops tag to v1.34 by @Supreeth095 in #3477
- feat: add retry logic for netlink dump operations by @dcoppa in #3440
- chore: update VPC IP resource limits by @github-actions[bot] in #3481
- Updating network policy agent version by @jaydeokar in #3491
- Bump actions/dependency-review-action from 4.3.3 to 4.8.1 by @dependabot[bot] in #3485
- Bump actions/setup-go from 5.5.0 to 6.0.0 by @dependabot[bot] in #3486
- Gracefully handle v4 (unmanaged) ENIs on IPv6 node by @jupdec in #3489
- Go bump by @Supreeth095 in #3500
- chore: update VPC IP resource limits by @github-actions[bot] in #3502
- nit: Update README to separate ENI Tags from Subnet Tags by @cdirubbio in #3508
- Merge master to Release 1.20 for v1.20.5 release by @Supreeth095 in #3504
- Sync Release 1.20 with Master by @jaydeokar in #3510
- Bumping up containerd version for CVE fix by @jaydeokar in #3512
- chore: update VPC IP resource limits by @github-actions[bot] in #3514
- Adding change log and release notes for v1.20.5 by @nakshah87 in #3511
- Merge master into release-1.20 branch by @yash97 in #3517
New Contributors
- @cdirubbio made their first contribution in #3508
- @nakshah87 made their first contribution in #3511
Full Changelog: v1.20.4...v1.20.5
To manually apply this release:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.5/config/master/aws-k8s-cni.yaml
Note that the following regions use different manifests:
us-gov-east-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.5/config/master/aws-k8s-cni-us-gov-east-1.yaml
us-gov-west-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.5/config/master/aws-k8s-cni-us-gov-west-1.yaml
cn:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/refs/heads/release-1.20/config/master/aws-k8s-cni-cn.yaml
To apply this release using helm:
Follow the installation instructions in https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.20.5/charts/aws-vpc-cni/README.md#installing-the-chart
Verify the update:
$ kubectl describe daemonset aws-node -n kube-system | grep Image | cut -d "/" -f 2-3
amazon-k8s-cni-init:v1.20.5
amazon-k8s-cni:v1.20.5
amazon/aws-network-policy-agent:v1.2.7
Contributors
Assets 2
v1.20.4
What's Changed
- Updating SNAT variable documentation by @jaydeokar in #3439
- Bump the k8s-dependencies group with 5 updates by @dependabot[bot] in #3426
- Bump the aws-dependencies group with 11 updates by @dependabot[bot] in #3424
- Optimize ENI slot reservation for non-supported instance type by @phuhung273 in #3250
- Include all plugins for Multus by @jaydeokar in #3470
- fix: format string bug in GetPodMTU error logging by @dcoppa in #3471
- Adding change log and release notes for v1.20.4 by @jaydeokar in #3472
New Contributors
- @phuhung273 made their first contribution in #3250
Full Changelog: v1.20.3...v1.20.4
To manually apply this release:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.4/config/master/aws-k8s-cni.yaml
Note that the following regions use different manifests:
us-gov-east-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.4/config/master/aws-k8s-cni-us-gov-east-1.yaml
us-gov-west-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.4/config/master/aws-k8s-cni-us-gov-west-1.yaml
cn:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.4/config/master/aws-k8s-cni-cn.yaml
To apply this release using helm:
Follow the installation instructions in https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.20.4/charts/aws-vpc-cni/README.md#installing-the-chart
Verify the update:
$ kubectl describe daemonset aws-node -n kube-system | grep Image | cut -d "/" -f 2-3
amazon-k8s-cni-init:v1.20.4
amazon-k8s-cni:v1.20.4
amazon/aws-network-policy-agent:v1.2.7
Contributors
Assets 2
v1.20.3
🚨 🚨 🚨 v1.20.2 and v1.20.3 removes the cni plugins which are not required for regular amazon-vpc-cni operations. However this might break Multus, if you are using the plugins which is not bundled with the container 🚨 🚨 🚨
What's Changed
- chore: update VPC IP resource limits by @github-actions[bot] in #3441
- chore: update VPC IP resource limits by @github-actions[bot] in #3453
- Optionally setting up Route table for non zero Network Cards if AMI is already configuring at bootup by @jaydeokar in #3452
- feat(helm_chart/aws-vpc-cni): add overrideRepository images option by @QuentinBtd in #3435
- fix: initialize controller-runtime logger by @dcoppa in #3443
- Chart updates and release notes by @jaydeokar in #3455
New Contributors
- @QuentinBtd made their first contribution in #3435
- @dcoppa made their first contribution in #3443
Full Changelog: v1.20.2...v1.20.3
To manually apply this release:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.3/config/master/aws-k8s-cni.yaml
Note that the following regions use different manifests:
us-gov-east-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.3/config/master/aws-k8s-cni-us-gov-east-1.yaml
us-gov-west-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.3/config/master/aws-k8s-cni-us-gov-west-1.yaml
cn:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.3/config/master/aws-k8s-cni-cn.yaml
To apply this release using helm:
Follow the installation instructions in https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.20.3/charts/aws-vpc-cni/README.md#installing-the-chart
Verify the update:
$ kubectl describe daemonset aws-node -n kube-system | grep Image | cut -d "/" -f 2-3
amazon-k8s-cni-init:v1.20.3
amazon-k8s-cni:v1.20.3
amazon/aws-network-policy-agent:v1.2.6
Contributors
Assets 2
v1.20.2
🚨 🚨 🚨 v1.20.2 and v1.20.3 removes the cni plugins which are not required for regular amazon-vpc-cni operations. However this might break Multus, if you are using the plugins which is not bundled with the container 🚨 🚨 🚨
What's Changed
- Bump github.com/samber/lo from 1.49.1 to 1.51.0 by @dependabot[bot] in #3386
- Bump github.com/prometheus/client_model from 0.6.1 to 0.6.2 by @dependabot[bot] in #3385
- Bump the aws-dependencies group with 11 updates by @dependabot[bot] in #3384
- Adding release notes and chart update by @yash97 in #3399
- updating tags by @yash97 in #3400
- Add and configure soak tests workflow by @Supreeth095 in #3404
- Add and configure soak tests workflow by @Supreeth095 in #3407
- Bump actions/checkout from 4.1.7 to 5.0.0 by @dependabot[bot] in #3409
- Bump helm.sh/helm/v3 from 3.18.4 to 3.18.5 by @dependabot[bot] in #3401
- Removing pinning of golang version by @jaydeokar in #3411
- Bump the k8s-dependencies group across 1 directory with 5 updates by @dependabot[bot] in #3359
- chore: update VPC IP resource limits by @github-actions[bot] in #3419
- chore: update VPC IP resource limits by @github-actions[bot] in #3420
- Fetch only necessary plugins by @jaydeokar in #3416
- chore: update VPC IP resource limits by @github-actions[bot] in #3422
- chore: update VPC IP resource limits by @github-actions[bot] in #3438
- Move npagent server port to unix socket by @Pavani-Panakanti in #3442
- Merge main to release-1.20 by @Pavani-Panakanti in #3444
- fix build:fetch selected binaries by @jupdec in #3447
- Update charts and configs by @Pavani-Panakanti in #3448
- Merge from master to release-1.20 by @Pavani-Panakanti in #3449
New Contributors
- @github-actions[bot] made their first contribution in #3419
Full Changelog: v1.20.1...v1.20.2
To manually apply this release:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.2/config/master/aws-k8s-cni.yaml
Note that the following regions use different manifests:
us-gov-east-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.2/config/master/aws-k8s-cni-us-gov-east-1.yaml
us-gov-west-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.2/config/master/aws-k8s-cni-us-gov-west-1.yaml
cn:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.2/config/master/aws-k8s-cni-cn.yaml
To apply this release using helm:
Follow the installation instructions in https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.20.2/charts/aws-vpc-cni/README.md#installing-the-chart
Verify the update:
$ kubectl describe daemonset aws-node -n kube-system | grep Image | cut -d "/" -f 2-3
amazon-k8s-cni-init:v1.20.2
amazon-k8s-cni:v1.20.2
amazon/aws-network-policy-agent:v1.2.6
Contributors
Assets 2
v1.20.1
What's Changed
- bumping kops tag by @yash97 in #3355
- updating kops tag in workflow by @yash97 in #3356
- bumping kops tag to v1.33.0-beta.1 by @yash97 in #3357
- adding github action monitoring in dependabot by @yash97 in #3360
- Bump actions/setup-go from 5.0.1 to 5.5.0 by @dependabot[bot] in #3365
- Bump docker/setup-buildx-action from 3.3.0 to 3.11.1 by @dependabot[bot] in #3362
- adding manual run option to integration test workflow by @yash97 in #3369
- Bump google.golang.org/protobuf from 1.36.5 to 1.36.6 by @dependabot[bot] in #3367
- Bump the aws-dependencies group with 3 updates by @dependabot[bot] in #3366
- updated README.md by @viveksb007 in #3371
- Bump docker/setup-qemu-action from 3.0.0 to 3.6.0 by @dependabot[bot] in #3373
- bypassing udev interference by assigning mac address to host side veth by @yash97 in #3354
- Updating static config for instances and better error handling by @jaydeokar in #3378
- fixing codecoverage report issue by @jaydeokar in #3382
- Adding release notes and chart update by @yash97 in #3397
Full Changelog: v1.20.0...v1.20.1
To manually apply this release:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.1/config/master/aws-k8s-cni.yaml
Note that the following regions use different manifests:
us-gov-east-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.1/config/master/aws-k8s-cni-us-gov-east-1.yaml
us-gov-west-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.1/config/master/aws-k8s-cni-us-gov-west-1.yaml
cn:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.1/config/master/aws-k8s-cni-cn.yaml
To apply this release using helm:
Follow the installation instructions in https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.20.0/charts/aws-vpc-cni/README.md#installing-the-chart
Verify the update:
$ kubectl describe daemonset aws-node -n kube-system | grep Image | cut -d "/" -f 2-3
amazon-k8s-cni-init:v1.20.1
amazon-k8s-cni:v1.20.1
amazon/aws-network-policy-agent:v1.2.4
Contributors
Assets 2
v1.20.0
Release Notes
This release introduces multi-NIC support in Amazon VPC-CNI plugin where the plugin can manage all the eligible network cards on the instance and create multi-homed pods based on the annotation.
This feature is currently not supported in us-isof-south-1 and us-isof-east-1 regions
What's Changed
- Feature - Adding support in CNI for managing multiple network interface card on the instance in #3347,#3349
- Dependency - Bump helm.sh/helm/v3 from 3.18.1 to 3.18.4 in #3346
- Dependency - Bump aws-dependencies in #3337
- Improvement - Build CNI plugins from source in #3343
- Fix - Fix error when Network policy agent GRPC call fails in #3320
- Fix - Fix race condition when force deleting pod using a security group for pod feature in #3304
- Improvement - Add latency metrics for ipamd init in #3301
Full Changelog: v1.19.6...v1.20.0
To manually apply this release:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.0/config/master/aws-k8s-cni.yaml
Note that the following regions use different manifests:
us-gov-east-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.0/config/master/aws-k8s-cni-us-gov-east-1.yaml
us-gov-west-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.0/config/master/aws-k8s-cni-us-gov-west-1.yaml
cn:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.20.0/config/master/aws-k8s-cni-cn.yaml
To apply this release using helm:
Follow the installation instructions in https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.20.0/charts/aws-vpc-cni/README.md#installing-the-chart
Verify the update:
$ kubectl describe daemonset aws-node -n kube-system | grep Image | cut -d "/" -f 2-3
amazon-k8s-cni-init:v1.20.0
amazon-k8s-cni:v1.20.0
amazon/aws-network-policy-agent:v1.2.3
v1.19.6
What's Changed
- Dependency - Bump k8s.io/apimachinery from 0.32.3 to 0.33.0 by @dependabot in #3279
- Dependency - Bump golang.org/x/sys from 0.31.0 to 0.32.0 in /test/agent in #3280
- Fix - fixed integration test script by @viveksb007 in #3282
- Fix - Adding CVE fixes and remove pinned dependencies by @jaydeokar in #3283
- Dependency - Updating netlink to v1.3.1 by @jaydeokar in #3286
- Feature - adding ENABLE_IMDS_ONLY_MODE configuration so ipamd will not interact with EC2 for node init and reconcile by @bhaoz in #3287
Full Changelog: v1.19.5...v1.19.6
To manually apply this release:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.19.6/config/master/aws-k8s-cni.yaml
Note that the following regions use different manifests:
us-gov-east-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.19.6/config/master/aws-k8s-cni-us-gov-east-1.yaml
us-gov-west-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.19.6/config/master/aws-k8s-cni-us-gov-west-1.yaml
cn:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.19.6/config/master/aws-k8s-cni-cn.yaml
To apply this release using helm:
Follow the installation instructions in https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.19.6/charts/aws-vpc-cni/README.md#installing-the-chart
Verify the update:
$ kubectl describe daemonset aws-node -n kube-system | grep Image | cut -d "/" -f 2-3
amazon-k8s-cni-init:v1.19.6
amazon-k8s-cni:v1.19.6
amazon/aws-network-policy-agent:v1.2.2
Contributors
Assets 2
v1.19.5
What's Changed
- Fix - fixed node init failure when using custom networking and SGPP @oliviassss in #3277
- Doc and charts update
Full Changelog: v1.19.4...v1.19.5
To manually apply this release:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.19.5/config/master/aws-k8s-cni.yaml
Note that the following regions use different manifests:
us-gov-east-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.19.5/config/master/aws-k8s-cni-us-gov-east-1.yaml
us-gov-west-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.19.5/config/master/aws-k8s-cni-us-gov-west-1.yaml
cn:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.19.5/config/master/aws-k8s-cni-cn.yaml
To apply this release using helm:
Follow the installation instructions in https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.19.5/charts/aws-vpc-cni/README.md#installing-the-chart
Verify the update:
$ kubectl describe daemonset aws-node -n kube-system | grep Image | cut -d "/" -f 2-3
amazon-k8s-cni-init:v1.19.5
amazon-k8s-cni:v1.19.5
amazon/aws-network-policy-agent:v1.2.1
Contributors
Assets 2
v1.19.4
🚨 🚨 🚨 v1.19.4 has issue with custom networking, for users with custom networking/security group per pod please stay on v1.19.3 until we release the fix with v1.19.5.🚨 🚨 🚨
Fix is now in v1.19.5 release
Release Notes
From 1.19.4, If you remove the Network Policy Agent container from the aws-node DaemonSet, you must also ensure that NETWORK_POLICY_ENFORCING_MODE environment variable is not set. Setting this value while the NP agent is absent can lead to failures during pod creation. Check https://github.com/aws/amazon-vpc-cni-k8s/tree/master
What's Changed
- Improvement - Update AWS VPC CNI to SDK V2 Update - master branch by @orsenthil in #3070
- Fix - Handle EKS Service for the Beta Endpoint by @orsenthil in #3143
- Manifest - Adding multus v4.1.4 manifest by @jaydeokar in #3154
- Tests - KOps Integration Test Follow Up by @dshehbaj in #3149
- Fix - fix(test): add volume mount for docker-func-test target by @omerap12 in #3160
- Fix - cni-metrics-helper metrics: do type assertion before type casting by @dshehbaj in #3152
- Improvement - Add CNINode to cache filter by @dims in #3164
- Fix - remove null creationTimestamp from CRD metadata by @omerap12 in #3163
- Fix - issue with primary ENI ip lookup when an ENI has both IPv4 and IPv6 Address Assigned by @orsenthil in #3156
- Improvement - Use awshttp client instead of smithy httpclient by @orsenthil in #3193
- Fix - retryOnConflict shouldnt' retry on NotFound by @haouc in #3192
- Improvement - Update awsutils.go by @git4example in #3191
- Improvement - Add grpc call to fetch networkpolicymode from NP by @Pavani-Panakanti in #3202
- Improvement - Changes to attach probes at pod start by @haouc in #3206
- Improvement - adding eni owner tag if cluster name is present by @yash97 #3228
- Improvement - only cache CNINode when SGP is in use by @oliviassss #3242
- Improvement - Remove dependency on apiserver for IPAMD startup by @oliviassss #3243
- Fix - Skip configuring NP related if network_policy_enforcing_mode is not set by @Pavani-Panakanti #3254
- Doc and charts update
Full Changelog: v1.19.3...v1.19.4
To manually apply this release:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.19.4/config/master/aws-k8s-cni.yaml
Note that the following regions use different manifests:
us-gov-east-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.19.4/config/master/aws-k8s-cni-us-gov-east-1.yaml
us-gov-west-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.19.4/config/master/aws-k8s-cni-us-gov-west-1.yaml
cn:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.19.4/config/master/aws-k8s-cni-cn.yaml
To apply this release using helm:
Follow the installation instructions in https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.19.4/charts/aws-vpc-cni/README.md#installing-the-chart
Verify the update:
$ kubectl describe daemonset aws-node -n kube-system | grep Image | cut -d "/" -f 2-3
amazon-k8s-cni-init:v1.19.4
amazon-k8s-cni:v1.19.4
amazon/aws-network-policy-agent:v1.2.1
