v1.29.1+k3s2
·
128 commits
to master
since this release
This release updates Kubernetes to v1.29.1, and fixes a number of issues.
For more details on what's new, see the Kubernetes release notes.
Important Notes
Addresses the runc CVE: CVE-2024-21626 by updating runc to v1.1.12.
Changes since v1.29.0+k3s1:
- Bump Sonobuoy version (#8910)
- Bump actions/setup-go from 4 to 5 (#9036)
- Chore: Update Code of Conduct to Redirect to CNCF CoC (#9104)
- NONE
- Update stable channel to v1.28.5+k3s1 and add v1.29 channel (#9110)
- Added support for env *_PROXY variables for agent loadbalancer (#9070)
- HTTP_PROXY, HTTPS_PROXY and NO_PROXY environment variables are now taken into account by the agent loadbalancer if K3S_AGENT_HTTP_PROXY_ALLOWED env variable is set to true.
- This however doesn't affect local requests as the function used prevents that: https://pkg.go.dev/net/http#ProxyFromEnvironment.
- Add a retry around updating a secrets-encrypt node annotations (#9039)
- Silence SELinux warning on INSTALL_K3S_SKIP_SELINUX_RPM (#8703)
- Add ServiceLB support for PodHostIPs FeatureGate (#8917)
- Added support for env *_PROXY variables for agent loadbalancer (#9118)
- Redirect error stream to null when checking nm-cloud systemd unit (#8815)
- Remove confusing "nm-cloud-setup.service: No such file or directory" journalctl log
- Dockerfile.dapper: set $HOME properly (#9090)
- Add system-agent-installer-k3s step to GA release instructions (#9153)
- Fix install script checksum (#9159)
- Fix the OTHER etcd snapshot s3 log message that prints the wrong variable (#8944)
- Handle logging flags when parsing kube-proxy args (#8916)
- Fix nil map in full snapshot configmap reconcile (#9049)
- Add support for containerd cri registry config_path (#8973)
- Add more paths to crun runtime detection (#9086)
- Add runtime checking of golang version (#9054)
- Fix OS PRETTY_NAME on tagged releases (#9062)
- Print error when downloading file error inside install script (#6874)
- Wait for cloud-provider taint to be gone before starting the netpol controller (#9076)
- Bump Trivy version (#8812)
- Use
ipFamilyPolicy: RequireDualStackfor dual-stack kube-dns (#8984) - Handle etcd status condition when node is not ready and disable etcd (#9084)
- Update s3 e2e test (#9025)
- Add e2e startup test for rootless k3s (#8383)
- Add spegel distributed registry mirror (#8977)
- Bump quic-go for CVE-2023-49295 (#9208)
- Enable network policy controller metrics (#9195)
- Kube-router network policy controller metrics are now exposed via the default node metrics endpoint
- Fix nonexistent dependency repositories (#9213)
- Move proxy dialer out of init() and fix crash when using
K3S_AGENT_HTTP_PROXY_ALLOWED=true(#9219) - Error getting node in setEtcdStatusCondition (#9210)
- Update to v1.29.1 and Go 1.21.6 (#9259)
- New stale action (#9278)
- Fix handling of bare hostname or IP as endpoint address in registries.yaml (#9323)
- Bump runc to v1.1.12 and helm-controller to v0.15.7 (#9332)
- Bump helm-controller to fix issue with ChartContent (#9345)
Embedded Component Versions
| Component | Version |
|---|---|
| Kubernetes | v1.29.1 |
| Kine | v0.11.0 |
| SQLite | 3.42.0 |
| Etcd | v3.5.9-k3s1 |
| Containerd | v1.7.11-k3s2 |
| Runc | v1.1.12-k3s1 |
| Flannel | v0.24.0 |
| Metrics-server | v0.6.3 |
| Traefik | v2.10.5 |
| CoreDNS | v1.10.1 |
| Helm-controller | v0.15.8 |
| Local-path-provisioner | v0.0.24 |
Helpful Links
As always, we welcome and appreciate feedback from our community of users. Please feel free to:
- Open issues here
- Join our Slack channel
- Check out our documentation for guidance on how to get started or to dive deep into K3s.
- Read how you can contribute here