v1.27.0

Cloud Provider Azure v1.27.0

Full Changelog: v1.26.0..v1.27.0

Changes by Kind

Feature

  • Add tolerations in values for cloud-controller-manager in Helm chart
    • Add nodeSelector in values for cloud-controller-manager in Helm chart (#3416, @lzhecheng)
  • Feat: Support private endpoint for blob-csi-driver (#2992, @cvvz)
  • Feat: add DisableUpdateCache flag (#2993, @andyzhangx)
  • Feat: support private endpoint for blob and file csi driver (#2998, @cvvz)
  • Feat: update cache support for starndard and vmss flex (#2950, @andyzhangx)
  • Fix: add disk attach/detach delay time to allow more batch (#3284, @andyzhangx)
  • Support data protection for blob csi driver (#3115, @cvvz)
  • Support dualstack for PIP in azure_loadbalancer.go (#3404, @lzhecheng)

Bug or Regression

  • CCM will now shut down gracefully when losing leader election, will no longer panic (#3504, @JoelSpeed)

  • Choose correct primary IP config in ensureBackendPoolDeletedFromNode(). Regardless of IPv6 only or dualstack clusters, IPv4 IP config is always primary. So for IPv6 backend address pool, IP config’s IP version needs consideration. (#3715, @lzhecheng)

  • Deprecate numberOfProbes and adopt ProbeThreshold in network api to address a probe issue in nrp (#3623, @MartinForReal)

  • Fix incorrect security rule name with IPv6 address prefix (#3289, @lzhecheng)

  • Fix nic CreateOrUpdate bug when there are more than one nic. (#3417, @lzhecheng)

  • Fix nodeAddressesChangeDetected() bug when dual-stack. In a dual-stack cluster, a Node has 2 internal IPs but current logic doesn’t distinguish between these 2. As a result, CNM always assumes that NodeAddresses changed. (#3586, @lzhecheng)

  • Fix: CVE-2022-41723 (#3392, @andyzhangx)

  • Fix: account matching issue in account search (#3082, @andyzhangx)

  • Fix: add more account search options (#3085, @andyzhangx)

  • Fix: detach disk failure when there is throttling (#3482, @andyzhangx)

  • Fix: do not tag user-assigned public IP (#3527, @nilo19)

  • Fix: get vmss name and resource group from vm ID if the provider ID of the node is empty (#2984, @nilo19)

  • Fix: race condition in lockMap (#2985, @andyzhangx)

  • Fix: remove unused shared nsg rule when there is no svc having azure-shared-securityrule annotations set (#3391, @MartinForReal)

  • Fix: set ForceAttemptHTTP2 to increase ARM throttling limit (#3006, @umagnus)

  • Fix: skip removing nics from lb if there will be no nics in the backend pool (#3212, @nilo19)

  • Fix: support PrivateDNSZone in sovereign cloud (#2964, @andyzhangx)

  • Fix: update network api to 2022-07-01 to support backend pool level virtual network id (#3232, @nilo19)

  • Fix: update resources in batches asynchronously

    A regression was introduced by #1687 where the behavior of updating resources in batches changes from sending requests asynchronously to synchronously. This would lead to latencies when updating vmss vms, especially when the cluster size is huge. This unexpected change is reverted in this fix. (#3757, @nilo19)

  • Fixes an issue in the TimedCache implementation that could result in multiple concurrent calls to the getter function. (#3084, @edreed)

  • [IPv6] Fix CNM not properly handling IPv6 from imds LB. imds LB returns IPv6 IPs wrapped by brackets so extra trimming is needed. (#3726, @lzhecheng)

Other (Cleanup or Flake)

  • Chore: set default loadBalancerSKU to Standard (#3768, @nilo19)
  • Chore: upgrade credentialprovider-api-version to v1 (#3756, @andyzhangx)
  • Removing container images for Windows Server, Version 2004 and 20H2 (#3555, @marosset)

Dependencies

Added

  • github.com/Azure/azure-kusto-go: v0.10.2
  • github.com/Azure/azure-pipeline-go: v0.1.8
  • github.com/Azure/azure-sdk-for-go/sdk/azcore: v1.2.0
  • github.com/Azure/azure-sdk-for-go/sdk/azidentity: v1.2.0
  • github.com/Azure/azure-sdk-for-go/sdk/internal: v1.1.1
  • github.com/Azure/azure-sdk-for-go/sdk/storage/azblob: v0.6.1
  • github.com/Azure/azure-storage-queue-go: 6368018
  • github.com/AzureAD/microsoft-authentication-library-for-go: v0.7.0
  • github.com/dnaeon/go-vcr: v1.1.0
  • github.com/gofrs/uuid: v4.2.0+incompatible
  • github.com/golang-jwt/jwt: v3.2.1+incompatible
  • github.com/kylelemons/godebug: v1.1.0
  • github.com/montanaflynn/stats: v0.6.6
  • github.com/pkg/browser: 681adbf
  • github.com/tj/assert: v0.0.3

Changed

  • github.com/Azure/azure-sdk-for-go: v67.1.0+incompatible → v68.0.0+incompatible
  • github.com/Azure/go-autorest/autorest/adal: v0.9.21 → v0.9.23
  • github.com/cenkalti/backoff/v4: v4.1.3 → v4.2.0
  • github.com/go-logr/logr: v1.2.3 → v1.2.4
  • github.com/golang-jwt/jwt/v4: v4.2.0 → v4.5.0
  • github.com/google/cel-go: v0.12.5 → v0.12.6
  • github.com/google/uuid: v1.1.2 → v1.3.0
  • github.com/inconshreveable/mousetrap: v1.0.1 → v1.1.0
  • github.com/onsi/ginkgo/v2: v2.5.1 → v2.8.1
  • github.com/onsi/gomega: v1.24.1 → v1.27.1
  • github.com/spf13/cobra: v1.6.1 → v1.7.0
  • github.com/stretchr/testify: v1.8.1 → v1.8.2
  • github.com/yuin/goldmark: v1.3.5 → v1.4.13
  • golang.org/x/crypto: v0.1.0 → v0.8.0
  • golang.org/x/mod: 86c51ed → v0.8.0
  • golang.org/x/net: v0.4.0 → v0.9.0
  • golang.org/x/sync: 886fb93 → v0.1.0
  • golang.org/x/sys: v0.3.0 → v0.7.0
  • golang.org/x/term: v0.3.0 → v0.7.0
  • golang.org/x/text: v0.5.0 → v0.9.0
  • golang.org/x/tools: v0.2.0 → v0.6.0
  • k8s.io/api: v0.26.0 → v0.26.3
  • k8s.io/apimachinery: v0.26.0 → v0.26.3
  • k8s.io/apiserver: v0.26.0 → v0.26.3
  • k8s.io/client-go: v0.26.0 → v0.26.3
  • k8s.io/cloud-provider: v0.26.0 → v0.26.3
  • k8s.io/component-base: v0.26.0 → v0.26.3
  • k8s.io/component-helpers: v0.26.0 → v0.26.3
  • k8s.io/controller-manager: v0.26.0 → v0.26.3
  • k8s.io/klog/v2: v2.80.1 → v2.90.1
  • k8s.io/kms: v0.26.0 → v0.26.3
  • k8s.io/kubelet: v0.26.0 → v0.26.3
  • sigs.k8s.io/apiserver-network-proxy/konnectivity-client: v0.0.33 → v0.0.36

Removed

Nothing has changed.

Last modified October 28, 2023: fix spellcheck errs (df8b22d09)