diff --git a/releases/release-1.26/release-notes/maps/pr-103177-map.yaml b/releases/release-1.26/release-notes/maps/pr-103177-map.yaml new file mode 100644 index 00000000000..05998e206dd --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-103177-map.yaml @@ -0,0 +1,4 @@ +pr: 103177 +releasenote: + text: Added a method `StreamWithContext` to `remotecommand.Executor` to support + cancelable SPDY executor stream. diff --git a/releases/release-1.26/release-notes/maps/pr-108250-map.yaml b/releases/release-1.26/release-notes/maps/pr-108250-map.yaml new file mode 100644 index 00000000000..cd20509e59d --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-108250-map.yaml @@ -0,0 +1,5 @@ +pr: 108250 +releasenote: + text: 'Added a `kube-proxy` flag (`--iptables-localhost-nodeports`, default true) + to allow disabling `NodePort` services on loopback addresses. Note: this only applies + to iptables mode and ipv4.' diff --git a/releases/release-1.26/release-notes/maps/pr-109189-map.yaml b/releases/release-1.26/release-notes/maps/pr-109189-map.yaml new file mode 100644 index 00000000000..42e48593306 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-109189-map.yaml @@ -0,0 +1,4 @@ +pr: 109189 +releasenote: + text: '`kubectl config view` now automatically redacts any secret fields marked + with a `datapolicy` tag.' diff --git a/releases/release-1.26/release-notes/maps/pr-109505-map.yaml b/releases/release-1.26/release-notes/maps/pr-109505-map.yaml new file mode 100644 index 00000000000..7e0e85747a8 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-109505-map.yaml @@ -0,0 +1,4 @@ +pr: 109505 +releasenote: + text: Removed raising an error when setting an annotation with the same value, + just ignore it. diff --git a/releases/release-1.26/release-notes/maps/pr-110268-map.yaml b/releases/release-1.26/release-notes/maps/pr-110268-map.yaml new file mode 100644 index 00000000000..cfc8301b570 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-110268-map.yaml @@ -0,0 +1,5 @@ +pr: 110268 +releasenote: + text: |- + 'The iptables kube-proxy backend now process service/endpoint changes + more efficiently in very large clusters.' diff --git a/releases/release-1.26/release-notes/maps/pr-110618-map.yaml b/releases/release-1.26/release-notes/maps/pr-110618-map.yaml new file mode 100644 index 00000000000..5eec4a65e93 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-110618-map.yaml @@ -0,0 +1,4 @@ +pr: 110618 +releasenote: + text: Dropped support for the Container Runtime Interface (CRI) version `v1alpha2`, + which means that container runtimes just have to implement `v1`. diff --git a/releases/release-1.26/release-notes/maps/pr-110907-map.yaml b/releases/release-1.26/release-notes/maps/pr-110907-map.yaml new file mode 100644 index 00000000000..399f4489ad7 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-110907-map.yaml @@ -0,0 +1,6 @@ +pr: 110907 +releasenote: + text: | + '`kubectl apply`: Added a warning that "`kubectl apply` will no longer prune + non-namespaced resources by default when used with the --namespace flag in + a future release".' diff --git a/releases/release-1.26/release-notes/maps/pr-111023-map.yaml b/releases/release-1.26/release-notes/maps/pr-111023-map.yaml new file mode 100644 index 00000000000..8656b54504f --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-111023-map.yaml @@ -0,0 +1,8 @@ +pr: 111023 +releasenote: + text: |- + 'Added a `ResourceClaim` API (in the `resource.k8s.io/v1alpha1` API group and + behind the `DynamicResourceAllocation` feature gate). + The new API is now more flexible than the existing Device Plugins feature of Kubernetes because it + allows Pods to request (claim) special kinds of resources, which can be available at node level, cluster + level, or following any other model you implement.' diff --git a/releases/release-1.26/release-notes/maps/pr-111384-map.yaml b/releases/release-1.26/release-notes/maps/pr-111384-map.yaml new file mode 100644 index 00000000000..9c3b56d5c66 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-111384-map.yaml @@ -0,0 +1,3 @@ +pr: 111384 +releasenote: + text: Added support for Evented PLEG feature gate. diff --git a/releases/release-1.26/release-notes/maps/pr-111520-map.yaml b/releases/release-1.26/release-notes/maps/pr-111520-map.yaml deleted file mode 100644 index 93e72f6e65d..00000000000 --- a/releases/release-1.26/release-notes/maps/pr-111520-map.yaml +++ /dev/null @@ -1,5 +0,0 @@ -pr: 111520 -releasenote: - text: 'kubelet: changed default value of `cpuCFSQuotaPeriod` from 100ms to 100µs - to match the Linux CFS and k8s defaults. `cpuCFSQuotaPeriod` of 100ms now requires - `customCPUCFSQuotaPeriod` flag to be set to work.' diff --git a/releases/release-1.26/release-notes/maps/pr-111930-map.yaml b/releases/release-1.26/release-notes/maps/pr-111930-map.yaml new file mode 100644 index 00000000000..c0f9706200f --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-111930-map.yaml @@ -0,0 +1,3 @@ +pr: 111930 +releasenote: + text: Added the metric `pod_start_sli_duration_seconds` to kubelet. diff --git a/releases/release-1.26/release-notes/maps/pr-112011-map.yaml b/releases/release-1.26/release-notes/maps/pr-112011-map.yaml new file mode 100644 index 00000000000..7c30526021d --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-112011-map.yaml @@ -0,0 +1,7 @@ +pr: 112011 +releasenote: + text: | + 'Added selector validation to `HorizontalPodAutoscaler`: when multiple HPAs + select the same set of Pods, scaling now will be disabled for those HPAs with + the reason `AmbiguousSelector`. This change also covers a case when multiple HPAs + point to the same deployment.' diff --git a/releases/release-1.26/release-notes/maps/pr-112127-map.yaml b/releases/release-1.26/release-notes/maps/pr-112127-map.yaml new file mode 100644 index 00000000000..e992c59c37e --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-112127-map.yaml @@ -0,0 +1,3 @@ +pr: 112127 +releasenote: + text: Fixed `DaemonSet` to update the status even if it fails to create a pod. diff --git a/releases/release-1.26/release-notes/maps/pr-112261-map.yaml b/releases/release-1.26/release-notes/maps/pr-112261-map.yaml new file mode 100644 index 00000000000..0e1326d9d4a --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-112261-map.yaml @@ -0,0 +1,5 @@ +pr: 112261 +releasenote: + text: 'Deprecated the following kubectl run flags, which are ignored if set: `--cascade`, + `--filename`, `--force`, `--grace-period`, `--kustomize`, `--recursive`, `--timeout`, + `--wait`.' diff --git a/releases/release-1.26/release-notes/maps/pr-112360-map.yaml b/releases/release-1.26/release-notes/maps/pr-112360-map.yaml new file mode 100644 index 00000000000..ba4ead43fc1 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-112360-map.yaml @@ -0,0 +1,5 @@ +pr: 112360 +releasenote: + text: |- + 'kubelet: Added the following Pod failure conditions: + - `DisruptionTarget` (graceful node shutdown, node pressure eviction)' diff --git a/releases/release-1.26/release-notes/maps/pr-112679-map.yaml b/releases/release-1.26/release-notes/maps/pr-112679-map.yaml new file mode 100644 index 00000000000..09141246cf4 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-112679-map.yaml @@ -0,0 +1,5 @@ +pr: 112679 +releasenote: + text: Deprecated the `apiserver_request_slo_duration_seconds` metric for v1.27 in + favor of `apiserver_request_sli_duration_seconds` for naming consistency purposes + with other SLI-specific metrics and to avoid any confusion between SLOs and SLIs. diff --git a/releases/release-1.26/release-notes/maps/pr-112744-map.yaml b/releases/release-1.26/release-notes/maps/pr-112744-map.yaml new file mode 100644 index 00000000000..22c36787ae2 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-112744-map.yaml @@ -0,0 +1,4 @@ +pr: 112744 +releasenote: + text: Added a feature that allows a `StatefulSet` to start numbering replicas from + an arbitrary non-negative ordinal, using the `.spec.ordinals.start` field. diff --git a/releases/release-1.26/release-notes/maps/pr-112838-map.yaml b/releases/release-1.26/release-notes/maps/pr-112838-map.yaml new file mode 100644 index 00000000000..15c255e1ebe --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-112838-map.yaml @@ -0,0 +1,4 @@ +pr: 112838 +releasenote: + text: The `LegacyServiceAccountTokenNoAutoGeneration` feature gate was promoted + to GA. diff --git a/releases/release-1.26/release-notes/maps/pr-112895-map.yaml b/releases/release-1.26/release-notes/maps/pr-112895-map.yaml new file mode 100644 index 00000000000..a037adcd4ca --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-112895-map.yaml @@ -0,0 +1,3 @@ +pr: 112895 +releasenote: + text: Moved `MixedProtocolLBService` from beta to GA. diff --git a/releases/release-1.26/release-notes/maps/pr-112905-map.yaml b/releases/release-1.26/release-notes/maps/pr-112905-map.yaml new file mode 100644 index 00000000000..24719faf324 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-112905-map.yaml @@ -0,0 +1,6 @@ +pr: 112905 +releasenote: + text: For `kubectl`, `--server-side` now migrates ownership of all fields used by + client-side-apply to the specified `--fieldmanager`. This prevents fields previously + specified using kubectl from being able to live outside of server-side-apply's + management and become undeleteable. diff --git a/releases/release-1.26/release-notes/maps/pr-112914-map.yaml b/releases/release-1.26/release-notes/maps/pr-112914-map.yaml new file mode 100644 index 00000000000..c05cb12ee1c --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-112914-map.yaml @@ -0,0 +1,6 @@ +pr: 112914 +releasenote: + text: Added a `--topology-manager-policy-options` flag to the kubelet to support + fine tuning the topology manager policies. The first policy option, `prefer-closest-numa-nodes`, + allows these policies to favor sets of NUMA nodes with shorter distance between + nodes when making admission decisions. diff --git a/releases/release-1.26/release-notes/maps/pr-112961-map.yaml b/releases/release-1.26/release-notes/maps/pr-112961-map.yaml new file mode 100644 index 00000000000..71a83ff4975 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-112961-map.yaml @@ -0,0 +1,3 @@ +pr: 112961 +releasenote: + text: Added alpha support for `WindowsHostNetworking` feature. diff --git a/releases/release-1.26/release-notes/maps/pr-112980-map.yaml b/releases/release-1.26/release-notes/maps/pr-112980-map.yaml new file mode 100644 index 00000000000..fc01fad7a04 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-112980-map.yaml @@ -0,0 +1,3 @@ +pr: 112980 +releasenote: + text: Graduated Kubelet Device Manager to GA. diff --git a/releases/release-1.26/release-notes/maps/pr-113008-map.yaml b/releases/release-1.26/release-notes/maps/pr-113008-map.yaml new file mode 100644 index 00000000000..1d5f1ac7e76 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113008-map.yaml @@ -0,0 +1,6 @@ +pr: 113008 +releasenote: + text: |- + 'Promoted `cronjob_job_creation_skew` metric to stable to follow the cronjob v2 controller, + the following metrics had their name updated to match metrics API guidelines: + - `cronjob_job_creation_skew_duration_seconds` -> `job_creation_skew_duration_seconds`.' diff --git a/releases/release-1.26/release-notes/maps/pr-113010-map.yaml b/releases/release-1.26/release-notes/maps/pr-113010-map.yaml new file mode 100644 index 00000000000..5da01c13ad8 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113010-map.yaml @@ -0,0 +1,6 @@ +pr: 113010 +releasenote: + text: |- + 'Promoted job-related metrics to stable to follow IndexedJobs GA. The following metrics have their name updated to match metrics API guidelines: + - `job_sync_total` -> `job_syncs_total` + - `job_finished_total` -> `jobs_finished_total`' diff --git a/releases/release-1.26/release-notes/maps/pr-113018-map.yaml b/releases/release-1.26/release-notes/maps/pr-113018-map.yaml new file mode 100644 index 00000000000..5f492ec3b8f --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113018-map.yaml @@ -0,0 +1,3 @@ +pr: 113018 +releasenote: + text: Graduated Kubelet CPU Manager to GA. diff --git a/releases/release-1.26/release-notes/maps/pr-113021-map.yaml b/releases/release-1.26/release-notes/maps/pr-113021-map.yaml new file mode 100644 index 00000000000..57df8d5d07a --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113021-map.yaml @@ -0,0 +1,3 @@ +pr: 113021 +releasenote: + text: 'kubelet: Fixed a startup crash in devicemanager.' diff --git a/releases/release-1.26/release-notes/maps/pr-113116-map.yaml b/releases/release-1.26/release-notes/maps/pr-113116-map.yaml new file mode 100644 index 00000000000..7ad12fb248a --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113116-map.yaml @@ -0,0 +1,5 @@ +pr: 113116 +releasenote: + text: Added a `--prune-allowlist` flag that can be used with `kubectl apply --prune`. + This flag now replaces and functions the same as the `--prune-whitelist` flag, + which has been deprecated. diff --git a/releases/release-1.26/release-notes/maps/pr-113160-map.yaml b/releases/release-1.26/release-notes/maps/pr-113160-map.yaml new file mode 100644 index 00000000000..bcc584d78a1 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113160-map.yaml @@ -0,0 +1,3 @@ +pr: 113160 +releasenote: + text: Azure File CSI migration is now GA. diff --git a/releases/release-1.26/release-notes/maps/pr-113171-map.yaml b/releases/release-1.26/release-notes/maps/pr-113171-map.yaml new file mode 100644 index 00000000000..391d79b59d4 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113171-map.yaml @@ -0,0 +1,4 @@ +pr: 113171 +releasenote: + text: Aggregated discovery will be alpha and can be toggled with the `AggregatedDiscoveryEndpoint` + feature flag. diff --git a/releases/release-1.26/release-notes/maps/pr-113186-map.yaml b/releases/release-1.26/release-notes/maps/pr-113186-map.yaml new file mode 100644 index 00000000000..4487eb106c5 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113186-map.yaml @@ -0,0 +1,4 @@ +pr: 113186 +releasenote: + text: Added a new namespace alpha field to `DataSourceRef` field in `PersistentVolumeClaim` + API. diff --git a/releases/release-1.26/release-notes/maps/pr-113206-map.yaml b/releases/release-1.26/release-notes/maps/pr-113206-map.yaml new file mode 100644 index 00000000000..105af1ae879 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113206-map.yaml @@ -0,0 +1,4 @@ +pr: 113206 +releasenote: + text: Fixed cost estimation of token creation request for service account in Priority + and Fairness. diff --git a/releases/release-1.26/release-notes/maps/pr-113217-map.yaml b/releases/release-1.26/release-notes/maps/pr-113217-map.yaml new file mode 100644 index 00000000000..2e4fc8f62d7 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113217-map.yaml @@ -0,0 +1,4 @@ +pr: 113217 +releasenote: + text: API Server tracing now includes the latency of authorization, priorityandfairness, + impersonation, audit, and authentication filters. diff --git a/releases/release-1.26/release-notes/maps/pr-113225-map.yaml b/releases/release-1.26/release-notes/maps/pr-113225-map.yaml new file mode 100644 index 00000000000..d7348ff94d6 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113225-map.yaml @@ -0,0 +1,4 @@ +pr: 113225 +releasenote: + text: | + '`DelegateFSGroupToCSIDriver` feature is GA.' diff --git a/releases/release-1.26/release-notes/maps/pr-113274-map.yaml b/releases/release-1.26/release-notes/maps/pr-113274-map.yaml new file mode 100644 index 00000000000..278fb5a7be0 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113274-map.yaml @@ -0,0 +1,4 @@ +pr: 113274 +releasenote: + text: New Pod API field `.spec.schedulingGates` was introduced to enable users to + control when to mark a Pod as scheduling ready. diff --git a/releases/release-1.26/release-notes/maps/pr-113275-map.yaml b/releases/release-1.26/release-notes/maps/pr-113275-map.yaml new file mode 100644 index 00000000000..8aa0da90a2d --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113275-map.yaml @@ -0,0 +1,5 @@ +pr: 113275 +releasenote: + text: | + 'A new `preEnqueue` extension point was added to scheduler's component config + `v1beta2/v1beta3/v1`.' diff --git a/releases/release-1.26/release-notes/maps/pr-113291-map.yaml b/releases/release-1.26/release-notes/maps/pr-113291-map.yaml new file mode 100644 index 00000000000..b6c8141df6c --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113291-map.yaml @@ -0,0 +1,4 @@ +pr: 113291 +releasenote: + text: Fixed the `PodAndContainerStatsFromCRI` feature, instead of supplementing + with stats from cAdvisor. diff --git a/releases/release-1.26/release-notes/maps/pr-113307-map.yaml b/releases/release-1.26/release-notes/maps/pr-113307-map.yaml new file mode 100644 index 00000000000..27075dfbd3d --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113307-map.yaml @@ -0,0 +1,4 @@ +pr: 113307 +releasenote: + text: Updated the Lease identity naming format for the `APIServerIdentity` feature + to use a persistent name. diff --git a/releases/release-1.26/release-notes/maps/pr-113314-map.yaml b/releases/release-1.26/release-notes/maps/pr-113314-map.yaml new file mode 100644 index 00000000000..d2a6716ab85 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113314-map.yaml @@ -0,0 +1,6 @@ +pr: 113314 +releasenote: + text: 'Introduced `v1alpha1` API for validating admission policies, enabling extensible + admission control via CEL expressions (KEP 3488: CEL for Admission Control). + To use, enable the `ValidatingAdmissionPolicy` feature gate and the `admissionregistration.k8s.io/v1alpha1` + API via `--runtime-config`.' diff --git a/releases/release-1.26/release-notes/maps/pr-113329-map.yaml b/releases/release-1.26/release-notes/maps/pr-113329-map.yaml new file mode 100644 index 00000000000..03b642498a5 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113329-map.yaml @@ -0,0 +1,4 @@ +pr: 113329 +releasenote: + text: | + '`RetroactiveDefaultStorageClass` feature is now beta.' diff --git a/releases/release-1.26/release-notes/maps/pr-113336-map.yaml b/releases/release-1.26/release-notes/maps/pr-113336-map.yaml new file mode 100644 index 00000000000..91638c8aa65 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113336-map.yaml @@ -0,0 +1,6 @@ +pr: 113336 +releasenote: + text: | + '`CSIMigrationvSphere` was upgraded to GA and locked to true. Do not upgrade to K8s + 1.26 if you need Windows, or XFS, or raw block support until vSphere CSI Driver + adds support for them in a version post v2.7.x.' diff --git a/releases/release-1.26/release-notes/maps/pr-113340-map.yaml b/releases/release-1.26/release-notes/maps/pr-113340-map.yaml new file mode 100644 index 00000000000..d15390ead26 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113340-map.yaml @@ -0,0 +1,4 @@ +pr: 113340 +releasenote: + text: If `ComponentSLIs` feature gate is enabled, then `/metrics/slis` now becomes + available on cloud-controller-manager allowing you to scrape health check metrics. diff --git a/releases/release-1.26/release-notes/maps/pr-113351-map.yaml b/releases/release-1.26/release-notes/maps/pr-113351-map.yaml new file mode 100644 index 00000000000..d69c3ec0efc --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113351-map.yaml @@ -0,0 +1,4 @@ +pr: 113351 +releasenote: + text: The `EndpointSliceTerminatingCondition` feature gate was graduated to GA. + The gate is now locked and will be removed in v1.28. diff --git a/releases/release-1.26/release-notes/maps/pr-113360-map.yaml b/releases/release-1.26/release-notes/maps/pr-113360-map.yaml new file mode 100644 index 00000000000..3fa5188d28f --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113360-map.yaml @@ -0,0 +1,4 @@ +pr: 113360 +releasenote: + text: Enabled the "Retriable and non-retriable pod failures for jobs" feature into + beta. diff --git a/releases/release-1.26/release-notes/maps/pr-113363-map.yaml b/releases/release-1.26/release-notes/maps/pr-113363-map.yaml new file mode 100644 index 00000000000..0524656455f --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113363-map.yaml @@ -0,0 +1,6 @@ +pr: 113363 +releasenote: + text: The `ProxyTerminatingEndpoints` feature is now Beta and enabled by default. + When enabled, kube-proxy will attempt to route traffic to terminating pods when + the traffic policy is `Local` and there are only terminating pods remaining on + a node. diff --git a/releases/release-1.26/release-notes/maps/pr-113369-map.yaml b/releases/release-1.26/release-notes/maps/pr-113369-map.yaml new file mode 100644 index 00000000000..c3f41b8a9fc --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113369-map.yaml @@ -0,0 +1,4 @@ +pr: 113369 +releasenote: + text: The `ResourceVersion` returned in objects from delete responses is now consistent + with the `ResourceVersion` contained in the delete watch event. diff --git a/releases/release-1.26/release-notes/maps/pr-113375-map.yaml b/releases/release-1.26/release-notes/maps/pr-113375-map.yaml new file mode 100644 index 00000000000..f0b5d237b34 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113375-map.yaml @@ -0,0 +1,8 @@ +pr: 113375 +releasenote: + text: | + '`PodDisruptionBudget` now adds an alpha `spec.unhealthyPodEvictionPolicy` field. + When the `PDBUnhealthyPodEvictionPolicy` feature-gate is enabled in `kube-apiserver`, + setting this field to `"AlwaysAllow"` allows pods to be evicted if they do not + have a ready condition, regardless of whether the PodDisruptionBudget is currently + healthy.' diff --git a/releases/release-1.26/release-notes/maps/pr-113476-map.yaml b/releases/release-1.26/release-notes/maps/pr-113476-map.yaml new file mode 100644 index 00000000000..4a6ca3c20d2 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113476-map.yaml @@ -0,0 +1,3 @@ +pr: 113476 +releasenote: + text: Promoting `WindowsHostProcessContainers` to stable. diff --git a/releases/release-1.26/release-notes/maps/pr-113481-map.yaml b/releases/release-1.26/release-notes/maps/pr-113481-map.yaml new file mode 100644 index 00000000000..6a22374b829 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113481-map.yaml @@ -0,0 +1,3 @@ +pr: 113481 +releasenote: + text: Pod logs using `--timestamps` are not broken up with timestamps anymore. diff --git a/releases/release-1.26/release-notes/maps/pr-113485-map.yaml b/releases/release-1.26/release-notes/maps/pr-113485-map.yaml new file mode 100644 index 00000000000..ad31799a729 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113485-map.yaml @@ -0,0 +1,20 @@ +pr: 113485 +releasenote: + text: |- + 'Priority and Fairness has introduced a new feature called _borrowing_ that allows an API priority level + to borrow a number of seats from other priority level(s). As a cluster operator, you can enable borrowing + for a certain priority level configuration object via the two newly introduced fields `lendablePercent`, and + `borrowingLimitPercent` located under the `.spec.limited` field of the designated priority level. + This change added the following metrics: + - `apiserver_flowcontrol_nominal_limit_seats`: Nominal number of execution seats configured for each priority level + - `apiserver_flowcontrol_lower_limit_seats`: Configured lower bound on number of execution seats available to each priority level + - `apiserver_flowcontrol_upper_limit_seats`: Configured upper bound on number of execution seats available to each priority level + - `apiserver_flowcontrol_demand_seats`: Observations, at the end of every nanosecond, of (the number of seats each priority level could use) / (nominal number of seats for that level) + - `apiserver_flowcontrol_demand_seats_high_watermark`: High watermark, over last adjustment period, of demand_seats + - `apiserver_flowcontrol_demand_seats_average`: Time-weighted average, over last adjustment period, of demand_seats + - `apiserver_flowcontrol_demand_seats_stdev`: Time-weighted standard deviation, over last adjustment period, of demand_seats + - `apiserver_flowcontrol_demand_seats_smoothed`: Smoothed seat demands + - `apiserver_flowcontrol_target_seats`: Seat allocation targets + - `apiserver_flowcontrol_seat_fair_frac`: Fair fraction of server's concurrency to allocate to each priority level that can use it + - `apiserver_flowcontrol_current_limit_seats`: current derived number of execution seats available to each priority level + The possibility of borrowing means that the old metric `apiserver_flowcontrol_request_concurrency_limit` can no longer mean both the configured concurrency limit and the enforced concurrency limit. Henceforth it means the configured concurrency limit.' diff --git a/releases/release-1.26/release-notes/maps/pr-113491-map.yaml b/releases/release-1.26/release-notes/maps/pr-113491-map.yaml new file mode 100644 index 00000000000..b221dbf8c21 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113491-map.yaml @@ -0,0 +1,5 @@ +pr: 113491 +releasenote: + text: | + 'Pod Security admission: the pod-security `warn` level will now default to + the `enforce` level.' diff --git a/releases/release-1.26/release-notes/maps/pr-113496-map.yaml b/releases/release-1.26/release-notes/maps/pr-113496-map.yaml new file mode 100644 index 00000000000..06ff5e5927a --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113496-map.yaml @@ -0,0 +1,3 @@ +pr: 113496 +releasenote: + text: Graduated `ServiceInternalTrafficPolicy` feature to GA. diff --git a/releases/release-1.26/release-notes/maps/pr-113500-map.yaml b/releases/release-1.26/release-notes/maps/pr-113500-map.yaml new file mode 100644 index 00000000000..1a0d2053d26 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113500-map.yaml @@ -0,0 +1,4 @@ +pr: 113500 +releasenote: + text: | + '`NodeInclusionPolicy` in `podTopologySpread` plugin is now enabled by default.' diff --git a/releases/release-1.26/release-notes/maps/pr-113501-map.yaml b/releases/release-1.26/release-notes/maps/pr-113501-map.yaml new file mode 100644 index 00000000000..4eeb63d4d50 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113501-map.yaml @@ -0,0 +1,3 @@ +pr: 113501 +releasenote: + text: 'kubelet: fixed nil pointer in reflector start for standalone mode.' diff --git a/releases/release-1.26/release-notes/maps/pr-113510-map.yaml b/releases/release-1.26/release-notes/maps/pr-113510-map.yaml new file mode 100644 index 00000000000..8f5c7790233 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113510-map.yaml @@ -0,0 +1,9 @@ +pr: 113510 +releasenote: + text: |- + 'Graduated `JobTrackingWithFinalizers` to stable. + Jobs created before the feature was enabled are still tracked without finalizers. + Jobs tracked with finalizers have the annotation batch.kubernetes.io/job-tracking. + If the annotation is present and the user attempts to remove it, the control plane adds it back. + The annotation `batch.kubernetes.io/job-tracking` is now deprecated. + The control plane will ignore it and stop adding it for new Jobs in v1.27.' diff --git a/releases/release-1.26/release-notes/maps/pr-113511-map.yaml b/releases/release-1.26/release-notes/maps/pr-113511-map.yaml new file mode 100644 index 00000000000..44a27cb52d5 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113511-map.yaml @@ -0,0 +1,4 @@ +pr: 113511 +releasenote: + text: | + '`NodeOutOfServiceVolumeDetach` is now beta.' diff --git a/releases/release-1.26/release-notes/maps/pr-113521-map.yaml b/releases/release-1.26/release-notes/maps/pr-113521-map.yaml new file mode 100644 index 00000000000..420d57efcbd --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113521-map.yaml @@ -0,0 +1,3 @@ +pr: 113521 +releasenote: + text: Resolved an issue that caused winkernel proxier to treat stale VIPs as valid. diff --git a/releases/release-1.26/release-notes/maps/pr-113529-map.yaml b/releases/release-1.26/release-notes/maps/pr-113529-map.yaml new file mode 100644 index 00000000000..bd57ad1e22f --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113529-map.yaml @@ -0,0 +1,7 @@ +pr: 113529 +releasenote: + text: A new API server flag `--encryption-provider-config-automatic-reload` was + added to control when the encryption config should be automatically reloaded without + needing to restart the server. All KMS plugins are now merged into a single healthz + check at `/healthz/kms-providers` when reload is enabled, or when only KMS v2 + plugins are used. diff --git a/releases/release-1.26/release-notes/maps/pr-113544-map.yaml b/releases/release-1.26/release-notes/maps/pr-113544-map.yaml new file mode 100644 index 00000000000..be78d682849 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113544-map.yaml @@ -0,0 +1,3 @@ +pr: 113544 +releasenote: + text: Added publishing events when enabling/disabling `TopologyAwareHints`. diff --git a/releases/release-1.26/release-notes/maps/pr-113550-map.yaml b/releases/release-1.26/release-notes/maps/pr-113550-map.yaml new file mode 100644 index 00000000000..cdbea8018f0 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113550-map.yaml @@ -0,0 +1,3 @@ +pr: 113550 +releasenote: + text: Kubernetes is now built with Go `1.19.3`. diff --git a/releases/release-1.26/release-notes/maps/pr-113580-map.yaml b/releases/release-1.26/release-notes/maps/pr-113580-map.yaml new file mode 100644 index 00000000000..48a5e46eec6 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113580-map.yaml @@ -0,0 +1,4 @@ +pr: 113580 +releasenote: + text: Fixed that disruption controller used to change the status of a stale disruption + condition after 2 min when the `PodDisruptionConditions` feature gate is enabled. diff --git a/releases/release-1.26/release-notes/maps/pr-113596-map.yaml b/releases/release-1.26/release-notes/maps/pr-113596-map.yaml new file mode 100644 index 00000000000..f55ded69050 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113596-map.yaml @@ -0,0 +1,5 @@ +pr: 113596 +releasenote: + text: Added reconstruction of SELinux mount context after kubelet restart. Feature + `SELinuxMountReadWriteOncePod` is now fully implemented and kubelet does not lose + its cache of SELinux contexts after kubelet process restart. diff --git a/releases/release-1.26/release-notes/maps/pr-113609-map.yaml b/releases/release-1.26/release-notes/maps/pr-113609-map.yaml new file mode 100644 index 00000000000..8bda7fc9d89 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113609-map.yaml @@ -0,0 +1,4 @@ +pr: 113609 +releasenote: + text: Added alpha support for returning container and pod metrics from CRI, instead + of cAdvsior. diff --git a/releases/release-1.26/release-notes/maps/pr-113629-map.yaml b/releases/release-1.26/release-notes/maps/pr-113629-map.yaml new file mode 100644 index 00000000000..ea377121758 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113629-map.yaml @@ -0,0 +1,7 @@ +pr: 113629 +releasenote: + text: | + 'Promoted the `APIServerIdentity` feature to Beta. By default, each `kube-apiserver` + will now create a Lease in the `kube-system` namespace. These lease objects can + be used to identify the number of active API servers in the cluster, and may also + be used for future features such as the Storage Version API.' diff --git a/releases/release-1.26/release-notes/maps/pr-113636-map.yaml b/releases/release-1.26/release-notes/maps/pr-113636-map.yaml new file mode 100644 index 00000000000..9b94de4ca16 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113636-map.yaml @@ -0,0 +1,3 @@ +pr: 113636 +releasenote: + text: kubectl shell completions for the bash shell now include descriptions. diff --git a/releases/release-1.26/release-notes/maps/pr-113697-map.yaml b/releases/release-1.26/release-notes/maps/pr-113697-map.yaml new file mode 100644 index 00000000000..62d9d8481bb --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113697-map.yaml @@ -0,0 +1,6 @@ +pr: 113697 +releasenote: + text: 'KMS: added validation for duplicate kms config name when auto reload is enabled. + If you enabled automatic reload of encryption configuration with API server flag + `--encryption-provider-config-automatic-reload`, ensure all the KMS provider names + (v1 and v2) in the encryption configuration are unique.' diff --git a/releases/release-1.26/release-notes/maps/pr-113699-map.yaml b/releases/release-1.26/release-notes/maps/pr-113699-map.yaml new file mode 100644 index 00000000000..1850f96aec5 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113699-map.yaml @@ -0,0 +1,7 @@ +pr: 113699 +releasenote: + text: | + '`metav1.LabelSelectors` specified in API objects are now validated to ensure + they do not contain invalid label values that will error at time of use. Existing + invalid objects can be updated, but new objects are required to contain valid + label selectors.' diff --git a/releases/release-1.26/release-notes/maps/pr-113710-map.yaml b/releases/release-1.26/release-notes/maps/pr-113710-map.yaml new file mode 100644 index 00000000000..3c1313d58da --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113710-map.yaml @@ -0,0 +1,4 @@ +pr: 113710 +releasenote: + text: CLI flag `pod-eviction-timeout` is deprecated and will be removed together + with `enable-taint-manager` in `v1.27`. diff --git a/releases/release-1.26/release-notes/maps/pr-113711-map.yaml b/releases/release-1.26/release-notes/maps/pr-113711-map.yaml new file mode 100644 index 00000000000..1ad2dfbfa01 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113711-map.yaml @@ -0,0 +1,3 @@ +pr: 113711 +releasenote: + text: 'apiserver: used the correct error when logging errors updating managedFields.' diff --git a/releases/release-1.26/release-notes/maps/pr-113719-map.yaml b/releases/release-1.26/release-notes/maps/pr-113719-map.yaml new file mode 100644 index 00000000000..7a47de468fc --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113719-map.yaml @@ -0,0 +1,3 @@ +pr: 113719 +releasenote: + text: bumped `runc` to `v1.1.4`. diff --git a/releases/release-1.26/release-notes/maps/pr-113735-map.yaml b/releases/release-1.26/release-notes/maps/pr-113735-map.yaml new file mode 100644 index 00000000000..7abc0d46126 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113735-map.yaml @@ -0,0 +1,3 @@ +pr: 113735 +releasenote: + text: Renamed the feature gate for CEL in Admission Control to `ValidatingAdmissionPolicy`. diff --git a/releases/release-1.26/release-notes/maps/pr-113754-map.yaml b/releases/release-1.26/release-notes/maps/pr-113754-map.yaml new file mode 100644 index 00000000000..924f5d36a9d --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113754-map.yaml @@ -0,0 +1,5 @@ +pr: 113754 +releasenote: + text: | + '`kubelet_kubelet_credential_provider_plugin_duration` was renamed to `kubelet_credential_provider_plugin_duration` + and `kubelet_kubelet_credential_provider_plugin_errors` was renamed to `kubelet_credential_provider_plugin_errors`.' diff --git a/releases/release-1.26/release-notes/maps/pr-113769-map.yaml b/releases/release-1.26/release-notes/maps/pr-113769-map.yaml new file mode 100644 index 00000000000..438f170d913 --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113769-map.yaml @@ -0,0 +1,3 @@ +pr: 113769 +releasenote: + text: Updated `cAdvisor` to `v0.46.0`. diff --git a/releases/release-1.26/release-notes/maps/pr-113819-map.yaml b/releases/release-1.26/release-notes/maps/pr-113819-map.yaml new file mode 100644 index 00000000000..cd3157403cd --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113819-map.yaml @@ -0,0 +1,3 @@ +pr: 113819 +releasenote: + text: Promoted `kubectl alpha events` to `kubectl events`. diff --git a/releases/release-1.26/release-notes/maps/pr-113856-map.yaml b/releases/release-1.26/release-notes/maps/pr-113856-map.yaml new file mode 100644 index 00000000000..df459086bae --- /dev/null +++ b/releases/release-1.26/release-notes/maps/pr-113856-map.yaml @@ -0,0 +1,4 @@ +pr: 113856 +releasenote: + text: 'Known issue: Job field `.spec.podFailurePolicy.rules[*].onExitCode` might + be ignored if the Pod is deleted before it terminates.' diff --git a/releases/release-1.26/release-notes/release-notes-draft.json b/releases/release-1.26/release-notes/release-notes-draft.json index 44c297ed3c9..9432786c851 100644 --- a/releases/release-1.26/release-notes/release-notes-draft.json +++ b/releases/release-1.26/release-notes/release-notes-draft.json @@ -1,8 +1,36 @@ { + "103177": { + "commit": "3cf75a2f760b8093f7c97f26b4b2b059f3777bec", + "text": "Added a method `StreamWithContext` to `remotecommand.Executor` to support cancelable SPDY executor stream.", + "markdown": "Added a method `StreamWithContext` to `remotecommand.Executor` to support cancelable SPDY executor stream. ([#103177](https://github.com/kubernetes/kubernetes/pull/103177), [@arkbriar](https://github.com/arkbriar))", + "author": "arkbriar", + "author_url": "https://github.com/arkbriar", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/103177", + "pr_number": 103177, + "areas": [ + "test", + "kubelet", + "kubectl", + "e2e-test-framework" + ], + "kinds": [ + "bug", + "feature" + ], + "sigs": [ + "node", + "api-machinery", + "cli", + "testing" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, "105867": { "commit": "797536fc76854a856bc1d1156c2355705af461ca", - "text": "Shell completion now shows plugin names when appropriate. Furthermore, shell completion will work for plugins that provide such support.", - "markdown": "Shell completion now shows plugin names when appropriate. Furthermore, shell completion will work for plugins that provide such support. ([#105867](https://github.com/kubernetes/kubernetes/pull/105867), [@marckhouzam](https://github.com/marckhouzam))", + "text": "Shell completion now shows plugin names when appropriate. Furthermore, shell completion will work for plugins that provide such support.", + "markdown": "Shell completion now shows plugin names when appropriate. Furthermore, shell completion will work for plugins that provide such support. ([#105867](https://github.com/kubernetes/kubernetes/pull/105867), [@marckhouzam](https://github.com/marckhouzam))", "author": "marckhouzam", "author_url": "https://github.com/marckhouzam", "pr_url": "https://github.com/kubernetes/kubernetes/pull/105867", @@ -59,6 +87,37 @@ "feature": true, "duplicate": true }, + "108250": { + "commit": "d86c013b0da0db4c0790270c4739c79d01ce1593", + "text": "Added a kube-proxy flag (`--iptables-localhost-nodeports`, default true) to allow disabling NodePort services on loopback addresses. Note: this only applies to iptables mode and ipv4.", + "markdown": "Added a kube-proxy flag (`--iptables-localhost-nodeports`, default true) to allow disabling NodePort services on loopback addresses. Note: this only applies to iptables mode and ipv4. ([#108250](https://github.com/kubernetes/kubernetes/pull/108250), [@cyclinder](https://github.com/cyclinder))", + "author": "cyclinder", + "author_url": "https://github.com/cyclinder", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/108250", + "pr_number": 108250, + "areas": [ + "test", + "kubelet", + "cloudprovider", + "code-generation" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "network", + "scalability", + "storage", + "node", + "api-machinery", + "testing", + "cloud-provider" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, "108501": { "commit": "85643c0f93064ad9f9bcd9303972d8308734d269", "text": "Enabled `kube-controller-manager` to support '--concurrent-horizontal-pod-autoscaler-syncs' flag to set the number of horizontal pod autoscaler controller workers.", @@ -124,6 +183,48 @@ "feature": true, "duplicate": true }, + "109189": { + "commit": "e721272d10dd6c4d85ff613182ba0eaddcec9272", + "text": "`kubectl config view` now automatically redacts any secret fields marked with a `datapolicy` tag.", + "markdown": "`kubectl config view` now automatically redacts any secret fields marked with a `datapolicy` tag. ([#109189](https://github.com/kubernetes/kubernetes/pull/109189), [@mpuckett159](https://github.com/mpuckett159))", + "author": "mpuckett159", + "author_url": "https://github.com/mpuckett159", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/109189", + "pr_number": 109189, + "areas": [ + "test", + "kubectl" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "api-machinery", + "auth", + "cli", + "testing" + ], + "feature": true, + "duplicate": true + }, + "109505": { + "commit": "d96e052d981537ae9d2376ee6ac73f3ae6817f69", + "text": "Removed of raising an error when setting an annotation with the same value, just ignore it.", + "markdown": "Removed of raising an error when setting an annotation with the same value, just ignore it. ([#109505](https://github.com/kubernetes/kubernetes/pull/109505), [@zigarn](https://github.com/zigarn))", + "author": "zigarn", + "author_url": "https://github.com/zigarn", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/109505", + "pr_number": 109505, + "areas": [ + "kubectl" + ], + "kinds": [ + "bug" + ], + "sigs": [ + "cli" + ] + }, "109525": { "commit": "526650fc137b2e68267182b1b5116aa566be51e5", "text": "`kubectl wait` command with `jsonpath` flag will wait for target path until timeout.\n", @@ -148,24 +249,26 @@ "duplicate": true, "duplicate_kind": true }, - "110498": { - "commit": "cf4d2cc545f62fcfd748a084dff7744f9402bf57", - "text": "\"NONE\"", - "markdown": "\"NONE\" ([#110498](https://github.com/kubernetes/kubernetes/pull/110498), [@yangjunmyfm192085](https://github.com/yangjunmyfm192085)) [SIG Release]", - "author": "yangjunmyfm192085", - "author_url": "https://github.com/yangjunmyfm192085", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/110498", - "pr_number": 110498, + "110268": { + "commit": "3edbebe3488ccb085826d7a3a6d225101ff11ee6", + "text": "'The iptables kube-proxy backend now process service/endpoint changes\nmore efficiently in very large clusters.'", + "markdown": "'The iptables kube-proxy backend now process service/endpoint changes\n more efficiently in very large clusters.' ([#110268](https://github.com/kubernetes/kubernetes/pull/110268), [@danwinship](https://github.com/danwinship))", + "author": "danwinship", + "author_url": "https://github.com/danwinship", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/110268", + "pr_number": 110268, "areas": [ - "release-eng" + "ipvs" ], "kinds": [ - "cleanup" + "feature" ], "sigs": [ - "release" + "network", + "instrumentation" ], - "do_not_publish": true + "feature": true, + "duplicate": true }, "110559": { "commit": "962235c86a1a934fc759be1d3fd3a764fa2efa18", @@ -185,23 +288,43 @@ "feature": true, "duplicate": true }, - "110695": { - "commit": "5ade6c833fdde89618791b130bd2e9cad9519842", - "text": "NONE", - "markdown": "NONE ([#110695](https://github.com/kubernetes/kubernetes/pull/110695), [@lokichoggio](https://github.com/lokichoggio)) [SIG Apps and Autoscaling]", - "author": "lokichoggio", - "author_url": "https://github.com/lokichoggio", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/110695", - "pr_number": 110695, + "110618": { + "commit": "4086b45af3761d59cb82af6ee427d2d6557c1cbc", + "text": "Dropped support for the Container Runtime Interface (CRI) version `v1alpha2`, which means that container runtimes just have to implement `v1`.", + "markdown": "Dropped support for the Container Runtime Interface (CRI) version `v1alpha2`, which means that container runtimes just have to implement `v1`. ([#110618](https://github.com/kubernetes/kubernetes/pull/110618), [@saschagrunert](https://github.com/saschagrunert))", + "author": "saschagrunert", + "author_url": "https://github.com/saschagrunert", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/110618", + "pr_number": 110618, + "areas": [ + "kubelet" + ], "kinds": [ "cleanup" ], "sigs": [ - "autoscaling", - "apps" + "node", + "security" ], - "duplicate": true, - "do_not_publish": true + "duplicate": true + }, + "110907": { + "commit": "20a9f7786aa4ee0b6e1619c7974ea4562d2b2500", + "text": "kubectl apply: warning that kubectl will ignore no-namespaced resource `pv \u0026 namespace` in a future release if the namespace is specified and allowlist is not specified.", + "markdown": "Kubectl apply: warning that kubectl will ignore no-namespaced resource `pv \u0026 namespace` in a future release if the namespace is specified and allowlist is not specified. ([#110907](https://github.com/kubernetes/kubernetes/pull/110907), [@pacoxu](https://github.com/pacoxu))", + "author": "pacoxu", + "author_url": "https://github.com/pacoxu", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/110907", + "pr_number": 110907, + "areas": [ + "kubectl" + ], + "kinds": [ + "bug" + ], + "sigs": [ + "cli" + ] }, "110972": { "commit": "891cbede96ab4b64c48edf25f8bbd331d8731622", @@ -221,6 +344,56 @@ "cluster-lifecycle" ] }, + "111023": { + "commit": "d1c0171aed848900daa07212370c991c19c318b1", + "text": "'Added a `ResourceClaim` API (in the `resource.k8s.io/v1alpha1` API group and\nbehind the `DynamicResourceAllocation` feature gate).\nThe new API is now more flexible than the existing Device Plugins feature of Kubernetes because it\nallows Pods to request (claim) special kinds of resources, which can be available at node level, cluster\nlevel, or following any other model you implement.'", + "markdown": "'Added a `ResourceClaim` API (in the `resource.k8s.io/v1alpha1` API group and\n behind the `DynamicResourceAllocation` feature gate).\n The new API is now more flexible than the existing Device Plugins feature of Kubernetes because it\n allows Pods to request (claim) special kinds of resources, which can be available at node level, cluster\n level, or following any other model you implement.' ([#111023](https://github.com/kubernetes/kubernetes/pull/111023), [@pohly](https://github.com/pohly))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/issues/3063", + "type": "KEP" + } + ], + "author": "pohly", + "author_url": "https://github.com/pohly", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/111023", + "pr_number": 111023, + "areas": [ + "test", + "kubelet", + "apiserver", + "kubectl", + "cloudprovider", + "provider/gcp", + "release-eng", + "code-generation", + "e2e-test-framework", + "dependency" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "scheduling", + "storage", + "node", + "api-machinery", + "cluster-lifecycle", + "auth", + "apps", + "cli", + "instrumentation", + "testing", + "release", + "architecture", + "cloud-provider" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, "111093": { "commit": "8674ce53ff15e1dd9a375c182029cca8ecdb4a37", "text": "Fixed bug in `kubectl rollout history` where only the latest revision was displayed when a specific revision was requested and an output format was specified.", @@ -349,78 +522,28 @@ "network" ] }, - "111379": { - "commit": "9efbe6eb9b648bfdf95ccf228175ff57f7ba8f43", - "text": "\"NONE\"", - "markdown": "\"NONE\" ([#111379](https://github.com/kubernetes/kubernetes/pull/111379), [@muyangren2](https://github.com/muyangren2)) [SIG Network]", - "author": "muyangren2", - "author_url": "https://github.com/muyangren2", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/111379", - "pr_number": 111379, - "areas": [ - "ipvs" - ], - "kinds": [ - "cleanup" - ], - "sigs": [ - "network" - ], - "do_not_publish": true - }, - "111381": { - "commit": "178f246bbc9e4b6bd56ef0605e94bb51dbe6d27a", - "text": "\"NONE\"", - "markdown": "\"NONE\" ([#111381](https://github.com/kubernetes/kubernetes/pull/111381), [@muyangren2](https://github.com/muyangren2)) [SIG Storage]", - "author": "muyangren2", - "author_url": "https://github.com/muyangren2", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/111381", - "pr_number": 111381, - "kinds": [ - "cleanup" - ], - "sigs": [ - "storage" - ], - "do_not_publish": true - }, - "111420": { - "commit": "b077a9ad87f7219782f12f6247447dad1197be33", - "text": "\"NONE\"", - "markdown": "\"NONE\" ([#111420](https://github.com/kubernetes/kubernetes/pull/111420), [@muyangren2](https://github.com/muyangren2)) [SIG Cloud Provider]", - "author": "muyangren2", - "author_url": "https://github.com/muyangren2", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/111420", - "pr_number": 111420, - "areas": [ - "cloudprovider" - ], - "kinds": [ - "cleanup" - ], - "sigs": [ - "cloud-provider" - ], - "do_not_publish": true - }, - "111458": { - "commit": "8206c9d458e321d7ad22ea9fc2e21a890790fc09", - "text": "\"NONE\"", - "markdown": "\"NONE\" ([#111458](https://github.com/kubernetes/kubernetes/pull/111458), [@muyangren2](https://github.com/muyangren2)) [SIG Cluster Lifecycle]", - "author": "muyangren2", - "author_url": "https://github.com/muyangren2", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/111458", - "pr_number": 111458, + "111384": { + "commit": "114594e1d265a90820683acd2ed2783513aac4c3", + "text": "Added support for Evented PLEG feature gate.", + "markdown": "Added support for Evented PLEG feature gate. ([#111384](https://github.com/kubernetes/kubernetes/pull/111384), [@harche](https://github.com/harche))", + "author": "harche", + "author_url": "https://github.com/harche", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/111384", + "pr_number": 111384, "areas": [ - "kubeadm" + "test", + "kubelet", + "dependency" ], "kinds": [ - "cleanup" + "feature" ], "sigs": [ - "cluster-lifecycle" + "node", + "testing" ], - "do_not_publish": true + "feature": true, + "duplicate": true }, "111512": { "commit": "065a761547fcb6cb4944abac1541c8a0b76a5fe1", @@ -443,47 +566,6 @@ "feature": true, "duplicate_kind": true }, - "111520": { - "commit": "08aac4f0acbfb7ca2da2ced281fe694ddd29a4d7", - "text": "kubelet: changed default value of `cpuCFSQuotaPeriod` from 100ms to 100µs to match the Linux CFS and k8s defaults. `cpuCFSQuotaPeriod` of 100ms now requires `customCPUCFSQuotaPeriod` flag to be set to work.", - "markdown": "Kubelet: changed default value of `cpuCFSQuotaPeriod` from 100ms to 100µs to match the Linux CFS and k8s defaults. `cpuCFSQuotaPeriod` of 100ms now requires `customCPUCFSQuotaPeriod` flag to be set to work. ([#111520](https://github.com/kubernetes/kubernetes/pull/111520), [@paskal](https://github.com/paskal))", - "author": "paskal", - "author_url": "https://github.com/paskal", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/111520", - "pr_number": 111520, - "areas": [ - "kubelet", - "code-generation" - ], - "kinds": [ - "documentation", - "api-change" - ], - "sigs": [ - "node", - "api-machinery" - ], - "duplicate": true, - "duplicate_kind": true - }, - "111533": { - "commit": "0d7e51b2e806543c245c70829510258c8a907c7c", - "text": "NoneNone", - "markdown": "NoneNone ([#111533](https://github.com/kubernetes/kubernetes/pull/111533), [@zhoumingcheng](https://github.com/zhoumingcheng)) [SIG CLI]", - "author": "zhoumingcheng", - "author_url": "https://github.com/zhoumingcheng", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/111533", - "pr_number": 111533, - "areas": [ - "kubectl" - ], - "kinds": [ - "cleanup" - ], - "sigs": [ - "cli" - ] - }, "111554": { "commit": "2b5475b3fa5fefdb784f9b04bef3fab666ef19d7", "text": "Clarified the default CFS quota period as being 100µs and not 100ms.", @@ -758,6 +840,30 @@ "feature": true, "duplicate": true }, + "111930": { + "commit": "1bf4af4584234741ed7ffeea5eda3ec1127aa335", + "text": "Added the metric `pod_start_sli_duration_seconds` to kubelet.", + "markdown": "Added the metric `pod_start_sli_duration_seconds` to kubelet. ([#111930](https://github.com/kubernetes/kubernetes/pull/111930), [@azylinski](https://github.com/azylinski))", + "author": "azylinski", + "author_url": "https://github.com/azylinski", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/111930", + "pr_number": 111930, + "areas": [ + "test", + "kubelet", + "e2e-test-framework" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "node", + "instrumentation", + "testing" + ], + "feature": true, + "duplicate": true + }, "111936": { "commit": "673895dc5519f5b1fba386d7573f0a452faf7635", "text": "Protobuf serialization of metav1.MicroTime timestamps (used in `Lease` and `Event` API objects) has been corrected to truncate to microsecond precision, to match the documented behavior and JSON/YAML serialization. Any existing persisted data is truncated to microsecond when read from etcd.", @@ -889,6 +995,24 @@ "cluster-lifecycle" ] }, + "112011": { + "commit": "c519bc02e83d22c517a3063b24d0ced7934ca927", + "text": "'Added selector validation to `HorizontalPodAutoscaler`: when multiple HPAs\nselect the same set of Pods, scaling now will be disabled for those HPAs with\nthe reason `AmbiguousSelector`. This change also covers a case when multiple HPAs\npoint to the same deployment.'\n", + "markdown": "'Added selector validation to `HorizontalPodAutoscaler`: when multiple HPAs\n select the same set of Pods, scaling now will be disabled for those HPAs with\n the reason `AmbiguousSelector`. This change also covers a case when multiple HPAs\n point to the same deployment.'\n ([#112011](https://github.com/kubernetes/kubernetes/pull/112011), [@pbeschetnov](https://github.com/pbeschetnov))", + "author": "pbeschetnov", + "author_url": "https://github.com/pbeschetnov", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/112011", + "pr_number": 112011, + "kinds": [ + "feature" + ], + "sigs": [ + "autoscaling", + "apps" + ], + "feature": true, + "duplicate": true + }, "112015": { "commit": "ee94dce5b179923e362356a62738fa1de06c62b6", "text": "`GlusterFS` in-tree storage driver which was deprecated in kubernetes 1.25 release is now removed entirely in 1.26.", @@ -1128,16 +1252,36 @@ "duplicate": true, "duplicate_kind": true }, - "112133": { - "commit": "6705015101d9572157325ddf237ff65c5efb3cef", - "text": "In 'kube-proxy`: The \"userspace\" proxy mode (deprecated for over a year) is no\nlonger supported on either Linux or Windows. Users should use \"iptables\" or \"ipvs\"\non Linux, or \"kernelspace\" on Windows.\n", - "markdown": "In 'kube-proxy`: The \"userspace\" proxy mode (deprecated for over a year) is no\n longer supported on either Linux or Windows. Users should use \"iptables\" or \"ipvs\"\n on Linux, or \"kernelspace\" on Windows.\n ([#112133](https://github.com/kubernetes/kubernetes/pull/112133), [@knabben](https://github.com/knabben))", - "author": "knabben", - "author_url": "https://github.com/knabben", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/112133", - "pr_number": 112133, + "112127": { + "commit": "b4f42864f58f6feac250b2dd32f99b992c8ed184", + "text": "Fixed `DaemonSet` to update the status even if it fails to create a pod.", + "markdown": "Fixed `DaemonSet` to update the status even if it fails to create a pod. ([#112127](https://github.com/kubernetes/kubernetes/pull/112127), [@gjkim42](https://github.com/gjkim42))", + "author": "gjkim42", + "author_url": "https://github.com/gjkim42", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/112127", + "pr_number": 112127, "areas": [ - "test", + "test" + ], + "kinds": [ + "bug" + ], + "sigs": [ + "apps", + "testing" + ], + "duplicate": true + }, + "112133": { + "commit": "6705015101d9572157325ddf237ff65c5efb3cef", + "text": "In 'kube-proxy`: The \"userspace\" proxy mode (deprecated for over a year) is no\nlonger supported on either Linux or Windows. Users should use \"iptables\" or \"ipvs\"\non Linux, or \"kernelspace\" on Windows.\n", + "markdown": "In 'kube-proxy`: The \"userspace\" proxy mode (deprecated for over a year) is no\n longer supported on either Linux or Windows. Users should use \"iptables\" or \"ipvs\"\n on Linux, or \"kernelspace\" on Windows.\n ([#112133](https://github.com/kubernetes/kubernetes/pull/112133), [@knabben](https://github.com/knabben))", + "author": "knabben", + "author_url": "https://github.com/knabben", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/112133", + "pr_number": 112133, + "areas": [ + "test", "code-generation", "e2e-test-framework" ], @@ -1394,6 +1538,24 @@ "scheduling" ] }, + "112261": { + "commit": "3e8c848cfce00a9ac80a0b2a44dbc671891a33ef", + "text": "Deprecated the following kubectl run flags, which are ignored if set: `--cascade`, `--filename`, `--force`, `--grace-period`, `--kustomize`, `--recursive`, `--timeout`, `--wait`.", + "markdown": "Deprecated the following kubectl run flags, which are ignored if set: `--cascade`, `--filename`, `--force`, `--grace-period`, `--kustomize`, `--recursive`, `--timeout`, `--wait`. ([#112261](https://github.com/kubernetes/kubernetes/pull/112261), [@brianpursley](https://github.com/brianpursley))", + "author": "brianpursley", + "author_url": "https://github.com/brianpursley", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/112261", + "pr_number": 112261, + "areas": [ + "kubectl" + ], + "kinds": [ + "cleanup" + ], + "sigs": [ + "cli" + ] + }, "112267": { "commit": "9cd6331f9584dae9db803e01249c87c7697711de", "text": "Updated creation of `LoadBalancer` services, for there to be fewer AWS security group rules in most cases.", @@ -1570,6 +1732,39 @@ "duplicate": true, "duplicate_kind": true }, + "112360": { + "commit": "47952e0917a26408ac0bdd450d09b0557e2294b7", + "text": "'Kubelet added the following Pod failure conditions:\n- `DisruptionTarget` (graceful node shutdown, node pressure eviction)'", + "markdown": "'Kubelet added the following Pod failure conditions:\n - `DisruptionTarget` (graceful node shutdown, node pressure eviction)' ([#112360](https://github.com/kubernetes/kubernetes/pull/112360), [@mimowo](https://github.com/mimowo))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-apps/3329-retriable-and-non-retriable-failures", + "type": "KEP" + } + ], + "author": "mimowo", + "author_url": "https://github.com/mimowo", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/112360", + "pr_number": 112360, + "areas": [ + "test", + "kubelet", + "e2e-test-framework" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "node", + "apps", + "testing" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, "112374": { "commit": "8fb8bb4e9ae2d2cb2b7cdb4c79c73be344fdc164", "text": "Logs of requests that were timed out by a timeout handler no longer contain a `statusStack` and `logging error output` fields.", @@ -1662,22 +1857,6 @@ ], "duplicate": true }, - "112437": { - "commit": "21dfce2d7daa13e616107179acc11c05f20ecce1", - "text": "\"NONE\"", - "markdown": "\"NONE\" ([#112437](https://github.com/kubernetes/kubernetes/pull/112437), [@yangjunmyfm192085](https://github.com/yangjunmyfm192085)) [SIG Network]", - "author": "yangjunmyfm192085", - "author_url": "https://github.com/yangjunmyfm192085", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/112437", - "pr_number": 112437, - "kinds": [ - "cleanup" - ], - "sigs": [ - "network" - ], - "do_not_publish": true - }, "112489": { "commit": "06fd0a07286faaef2008fd97c888debe0ca1d74a", "text": "etcd: Updated to v3.5.5.", @@ -2123,39 +2302,27 @@ ], "duplicate": true }, - "112671": { - "commit": "7f129f1c9af62cc3cd4f6b754dacdf5932f39d5c", - "text": "\"NONE\"", - "markdown": "\"NONE\" ([#112671](https://github.com/kubernetes/kubernetes/pull/112671), [@yangjunmyfm192085](https://github.com/yangjunmyfm192085)) [SIG Instrumentation and Scalability]", - "author": "yangjunmyfm192085", - "author_url": "https://github.com/yangjunmyfm192085", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/112671", - "pr_number": 112671, - "kinds": [ - "cleanup" - ], - "sigs": [ - "scalability", - "instrumentation" + "112679": { + "commit": "7752c3a8e0fbf59739f40526b2235347ff78000e", + "text": "Deprecated the `apiserver_request_slo_duration_seconds` metric for v1.27 in favor of `apiserver_request_sli_duration_seconds` for naming consistency purposes with other SLI-specific metrics and to avoid any confusion between SLOs and SLIs.", + "markdown": "Deprecated the `apiserver_request_slo_duration_seconds` metric for v1.27 in favor of `apiserver_request_sli_duration_seconds` for naming consistency purposes with other SLI-specific metrics and to avoid any confusion between SLOs and SLIs. ([#112679](https://github.com/kubernetes/kubernetes/pull/112679), [@dgrisonnet](https://github.com/dgrisonnet))", + "author": "dgrisonnet", + "author_url": "https://github.com/dgrisonnet", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/112679", + "pr_number": 112679, + "areas": [ + "apiserver" ], - "duplicate": true, - "do_not_publish": true - }, - "112672": { - "commit": "0094662cbbca3d3f3e2e4fbb6ee4eb65f26d197a", - "text": "\"NONE\"", - "markdown": "\"NONE\" ([#112672](https://github.com/kubernetes/kubernetes/pull/112672), [@yangjunmyfm192085](https://github.com/yangjunmyfm192085)) [SIG Instrumentation]", - "author": "yangjunmyfm192085", - "author_url": "https://github.com/yangjunmyfm192085", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/112672", - "pr_number": 112672, "kinds": [ - "cleanup" + "cleanup", + "api-change" ], "sigs": [ + "api-machinery", "instrumentation" ], - "do_not_publish": true + "duplicate": true, + "duplicate_kind": true }, "112690": { "commit": "d2ae6fbeb10fe3c68f631b59a266e729688058a9", @@ -2313,6 +2480,29 @@ "feature": true, "duplicate": true }, + "112744": { + "commit": "ff19efdf9bd2d1f4abece3229f1e36c1d58b96df", + "text": "Added a feature that allows a `StatefulSet` to start numbering replicas from an arbitrary non-negative ordinal, using the `.spec.ordinals.start` field.", + "markdown": "Added a feature that allows a `StatefulSet` to start numbering replicas from an arbitrary non-negative ordinal, using the `.spec.ordinals.start` field. ([#112744](https://github.com/kubernetes/kubernetes/pull/112744), [@pwschuurman](https://github.com/pwschuurman))", + "author": "pwschuurman", + "author_url": "https://github.com/pwschuurman", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/112744", + "pr_number": 112744, + "areas": [ + "code-generation" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "api-machinery", + "apps" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, "112748": { "commit": "97d37c29552790384b0a8b8f6f05648f28e07c55", "text": "Locked `ServerSideApply` feature gate to true with the feature already being GA.", @@ -2509,6 +2699,36 @@ "duplicate": true, "duplicate_kind": true }, + "112838": { + "commit": "32ea818d21c64bc0f9ab65b131d763e0c4401f79", + "text": "The `LegacyServiceAccountTokenNoAutoGeneration` feature gate was promoted to GA.", + "markdown": "The `LegacyServiceAccountTokenNoAutoGeneration` feature gate was promoted to GA. ([#112838](https://github.com/kubernetes/kubernetes/pull/112838), [@zshihang](https://github.com/zshihang))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/2799-reduction-of-secret-based-service-account-token", + "type": "KEP" + } + ], + "author": "zshihang", + "author_url": "https://github.com/zshihang", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/112838", + "pr_number": 112838, + "areas": [ + "test" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "api-machinery", + "auth", + "apps", + "testing" + ], + "feature": true, + "duplicate": true + }, "112855": { "commit": "d0e86111ef91615f3a17f860a2e9e6aa0c6a259a", "text": "Added kubelet metrics to track the cpumanager cpu allocation and pinning", @@ -2550,6 +2770,31 @@ "api-machinery" ] }, + "112895": { + "commit": "c98aef484d59dd92bb8bfc2cf02d4bc7c10f93c9", + "text": "Moved `MixedProtocolLBService` from beta to GA.", + "markdown": "Moved `MixedProtocolLBService` from beta to GA. ([#112895](https://github.com/kubernetes/kubernetes/pull/112895), [@janosi](https://github.com/janosi))", + "author": "janosi", + "author_url": "https://github.com/janosi", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/112895", + "pr_number": 112895, + "areas": [ + "test", + "e2e-test-framework" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "network", + "apps", + "testing" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, "112900": { "commit": "8836d51e4331920883dd1a0e57c89bbdb64aa31e", "text": "Kubernetes is now built with Go 1.19.2", @@ -2573,10 +2818,39 @@ "feature": true, "duplicate": true }, + "112905": { + "commit": "2f837dc113ba35f84e7012a6d1b06b075b349353", + "text": "For `kubectl`, `--server-side` now migrates ownership of all fields used by client-side-apply to the specified `--fieldmanager`. This prevents fields previously specified using kubectl from being able to live outside of server-side-apply's management and become undeleteable.", + "markdown": "For `kubectl`, `--server-side` now migrates ownership of all fields used by client-side-apply to the specified `--fieldmanager`. This prevents fields previously specified using kubectl from being able to live outside of server-side-apply's management and become undeleteable. ([#112905](https://github.com/kubernetes/kubernetes/pull/112905), [@alexzielenski](https://github.com/alexzielenski))", + "documentation": [ + { + "description": "[Discussion]", + "url": "https://github.com/kubernetes/enhancements/pull/3518#discussion_r984724392", + "type": "KEP" + } + ], + "author": "alexzielenski", + "author_url": "https://github.com/alexzielenski", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/112905", + "pr_number": 112905, + "areas": [ + "test", + "kubectl" + ], + "kinds": [ + "bug" + ], + "sigs": [ + "api-machinery", + "cli", + "testing" + ], + "duplicate": true + }, "112907": { "commit": "609bf91c95bdaae1034dbee7ba82e41875915e32", - "text": "`registered_metric_total` will now report the number of metrics broken down by\n stability level and deprecated version.\n", - "markdown": "`registered_metric_total` will now report the number of metrics broken down by\n stability level and deprecated version.\n ([#112907](https://github.com/kubernetes/kubernetes/pull/112907), [@logicalhan](https://github.com/logicalhan))", + "text": "'`registered_metric_total` will now report the number of metrics broken down by\nstability level and deprecated version.'\n", + "markdown": "'`registered_metric_total` will now report the number of metrics broken down by\n stability level and deprecated version.'\n ([#112907](https://github.com/kubernetes/kubernetes/pull/112907), [@logicalhan](https://github.com/logicalhan))", "documentation": [ { "description": "[KEP]", @@ -2598,6 +2872,30 @@ "feature": true, "duplicate": true }, + "112914": { + "commit": "243ba086e7f4cb73ea32bdd25d635d06cda26085", + "text": "Added a `--topology-manager-policy-options` flag to the kubelet to support fine tuning the topology manager policies. The first policy option, `prefer-closest-numa-nodes`, allows these policies to favor sets of NUMA nodes with shorter distance between nodes when making admission decisions.", + "markdown": "Added a `--topology-manager-policy-options` flag to the kubelet to support fine tuning the topology manager policies. The first policy option, `prefer-closest-numa-nodes`, allows these policies to favor sets of NUMA nodes with shorter distance between nodes when making admission decisions. ([#112914](https://github.com/kubernetes/kubernetes/pull/112914), [@PiotrProkop](https://github.com/PiotrProkop))", + "author": "PiotrProkop", + "author_url": "https://github.com/PiotrProkop", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/112914", + "pr_number": 112914, + "areas": [ + "kubelet", + "code-generation" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "node", + "api-machinery" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, "112924": { "commit": "b60176972182bc2a459e019bc039dfcffa2ff868", "text": "Removing Windows Server, Version 20H2 flavors from various container images.", @@ -2682,6 +2980,34 @@ ], "duplicate": true }, + "112961": { + "commit": "2ef00038d331e781799939c50ebebcfd283d85b1", + "text": "Added alpha support for `WindowsHostNetworking` feature.", + "markdown": "Added alpha support for `WindowsHostNetworking` feature. ([#112961](https://github.com/kubernetes/kubernetes/pull/112961), [@marosset](https://github.com/marosset))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-windows/3503-host-network-support-for-windows-pods", + "type": "KEP" + } + ], + "author": "marosset", + "author_url": "https://github.com/marosset", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/112961", + "pr_number": 112961, + "areas": [ + "kubelet" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "node", + "windows" + ], + "feature": true, + "duplicate": true + }, "112978": { "commit": "335fd41484a86bcd4d213924871eb1cabc6c6244", "text": "When `ComponentSLIs` feature gate is enabled, then `/metrics/slis` becomes available on kube-controller-manager, allowing you to scrape health check metrics.", @@ -2729,6 +3055,35 @@ ], "duplicate": true }, + "112980": { + "commit": "25dc4c4f320ecb75b936220c1c66741bce4b9014", + "text": "Graduated Kubelet Device Manager to GA.", + "markdown": "Graduated Kubelet Device Manager to GA. ([#112980](https://github.com/kubernetes/kubernetes/pull/112980), [@swatisehgal](https://github.com/swatisehgal))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/pull/3574", + "type": "KEP" + } + ], + "author": "swatisehgal", + "author_url": "https://github.com/swatisehgal", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/112980", + "pr_number": 112980, + "areas": [ + "kubelet", + "provider/gcp" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "node", + "cloud-provider" + ], + "feature": true, + "duplicate": true + }, "112989": { "commit": "054d86feb42b67bb13608d9aa9a7c986750da753", "text": "Updates `golang.org/x/text`` to `v0.3.8`` to fix CVE-2022-32149", @@ -2779,37 +3134,138 @@ ], "feature": true }, - "113015": { - "commit": "52f5816b8b9ed030dd1ebc4baefc6527f74254ed", - "text": "In `kube-apiserver`, custom resources can now be specified in the `--encryption-provider-config` file and can be encrypted in etcd.", - "markdown": "In `kube-apiserver`, custom resources can now be specified in the `--encryption-provider-config` file and can be encrypted in etcd. ([#113015](https://github.com/kubernetes/kubernetes/pull/113015), [@ritazh](https://github.com/ritazh))", - "author": "ritazh", - "author_url": "https://github.com/ritazh", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/113015", - "pr_number": 113015, + "113008": { + "commit": "ead17f3dc806d54b1fa2dc6e7a95180b4b90460b", + "text": "'Promoted `cronjob_job_creation_skew` metric to stable to follow the cronjob v2 controller,\nthe following metrics had their name updated to match metrics API guidelines:\n - `cronjob_job_creation_skew_duration_seconds` -\u003e `job_creation_skew_duration_seconds`.'", + "markdown": "'Promoted `cronjob_job_creation_skew` metric to stable to follow the cronjob v2 controller,\n the following metrics had their name updated to match metrics API guidelines:\n - `cronjob_job_creation_skew_duration_seconds` -\u003e `job_creation_skew_duration_seconds`.' ([#113008](https://github.com/kubernetes/kubernetes/pull/113008), [@soltysh](https://github.com/soltysh))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/issues/19", + "type": "KEP" + } + ], + "author": "soltysh", + "author_url": "https://github.com/soltysh", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113008", + "pr_number": 113008, "areas": [ - "test", - "apiserver" + "stable-metrics" ], "kinds": [ - "bug" + "cleanup" ], "sigs": [ - "api-machinery", - "auth", - "testing" + "apps", + "instrumentation" ], "duplicate": true }, - "113026": { - "commit": "52b47dac4fe26644a91f44191ff7052b73c3afd7", - "text": "When `ComponentSLIs` feature gate is enabled, `/metrics/slis` becomes available on kube-scheduler, allowing you to scrape health check metrics.", - "markdown": "When `ComponentSLIs` feature gate is enabled, `/metrics/slis` becomes available on kube-scheduler, allowing you to scrape health check metrics. ([#113026](https://github.com/kubernetes/kubernetes/pull/113026), [@Richabanker](https://github.com/Richabanker))", + "113010": { + "commit": "aef9a37df93b7207d7aac9fe4b8e19b6129f8c7a", + "text": "'Promoted job-related metrics to stable to follow IndexedJobs GA. The following metrics have their name updated to match metrics API guidelines:\n- `job_sync_total` -\u003e `job_syncs_total`\n- `job_finished_total` -\u003e `jobs_finished_total`'", + "markdown": "'Promoted job-related metrics to stable to follow IndexedJobs GA. The following metrics have their name updated to match metrics API guidelines:\n - `job_sync_total` -\u003e `job_syncs_total`\n - `job_finished_total` -\u003e `jobs_finished_total`' ([#113010](https://github.com/kubernetes/kubernetes/pull/113010), [@soltysh](https://github.com/soltysh))", "documentation": [ { "description": "[KEP]", - "url": "https://kep.k8s.io/3466", - "type": "external" + "url": "https://github.com/kubernetes/enhancements/issues/2214", + "type": "KEP" + } + ], + "author": "soltysh", + "author_url": "https://github.com/soltysh", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113010", + "pr_number": 113010, + "areas": [ + "stable-metrics" + ], + "kinds": [ + "cleanup" + ], + "sigs": [ + "apps", + "instrumentation" + ], + "duplicate": true + }, + "113015": { + "commit": "52f5816b8b9ed030dd1ebc4baefc6527f74254ed", + "text": "In `kube-apiserver`, custom resources can now be specified in the `--encryption-provider-config` file and can be encrypted in etcd.", + "markdown": "In `kube-apiserver`, custom resources can now be specified in the `--encryption-provider-config` file and can be encrypted in etcd. ([#113015](https://github.com/kubernetes/kubernetes/pull/113015), [@ritazh](https://github.com/ritazh))", + "author": "ritazh", + "author_url": "https://github.com/ritazh", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113015", + "pr_number": 113015, + "areas": [ + "test", + "apiserver" + ], + "kinds": [ + "bug" + ], + "sigs": [ + "api-machinery", + "auth", + "testing" + ], + "duplicate": true + }, + "113018": { + "commit": "433787d25ba51755bb913eb6a33d1b37e6444aeb", + "text": "Graduated Kubelet CPU Manager to GA.", + "markdown": "Graduated Kubelet CPU Manager to GA. ([#113018](https://github.com/kubernetes/kubernetes/pull/113018), [@fromanirh](https://github.com/fromanirh))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/pull/3570", + "type": "KEP" + } + ], + "author": "fromanirh", + "author_url": "https://github.com/fromanirh", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113018", + "pr_number": 113018, + "areas": [ + "test", + "kubelet" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "node", + "testing" + ], + "feature": true, + "duplicate": true + }, + "113021": { + "commit": "1a41cb898547683b73a6f91b6d731d439c84f48a", + "text": "kubelet: Fixed a startup crash in devicemanager.", + "markdown": "Kubelet: Fixed a startup crash in devicemanager. ([#113021](https://github.com/kubernetes/kubernetes/pull/113021), [@rphillips](https://github.com/rphillips))", + "author": "rphillips", + "author_url": "https://github.com/rphillips", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113021", + "pr_number": 113021, + "areas": [ + "kubelet" + ], + "kinds": [ + "bug" + ], + "sigs": [ + "node" + ] + }, + "113026": { + "commit": "52b47dac4fe26644a91f44191ff7052b73c3afd7", + "text": "When `ComponentSLIs` feature gate is enabled, `/metrics/slis` becomes available on kube-scheduler, allowing you to scrape health check metrics.", + "markdown": "When `ComponentSLIs` feature gate is enabled, `/metrics/slis` becomes available on kube-scheduler, allowing you to scrape health check metrics. ([#113026](https://github.com/kubernetes/kubernetes/pull/113026), [@Richabanker](https://github.com/Richabanker))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://kep.k8s.io/3466", + "type": "external" } ], "author": "Richabanker", @@ -2906,6 +3362,24 @@ "scheduling" ] }, + "113116": { + "commit": "bbbb79712cb6b0a72b2695f21a95ad7bb4cc45e6", + "text": "Added a `--prune-allowlist` flag that can be used with `kubectl apply --prune`. This flag now replaces and functions the same as the `--prune-whitelist` flag, which has been deprecated.", + "markdown": "Added a `--prune-allowlist` flag that can be used with `kubectl apply --prune`. This flag now replaces and functions the same as the `--prune-whitelist` flag, which has been deprecated. ([#113116](https://github.com/kubernetes/kubernetes/pull/113116), [@brianpursley](https://github.com/brianpursley))", + "author": "brianpursley", + "author_url": "https://github.com/brianpursley", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113116", + "pr_number": 113116, + "areas": [ + "kubectl" + ], + "kinds": [ + "cleanup" + ], + "sigs": [ + "cli" + ] + }, "113133": { "commit": "615929ed889e7bf921798142ecdef9f87832da43", "text": "kube-apiserver: `DELETECOLLECTION API` requests are now recorded in metrics with the correct verb.", @@ -2924,6 +3398,100 @@ "api-machinery" ] }, + "113146": { + "commit": "b0cbf71f5c443460679052ca0cf4800e9d61ab5b", + "text": "Adds alpha --output plaintext protected by environment variable `KUBECTL_EXPLAIN_OPENAPIV3`", + "markdown": "Adds alpha --output plaintext protected by environment variable `KUBECTL_EXPLAIN_OPENAPIV3` ([#113146](https://github.com/kubernetes/kubernetes/pull/113146), [@alexzielenski](https://github.com/alexzielenski)) [SIG CLI]", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-cli/3515-kubectl-explain-openapiv3", + "type": "KEP" + } + ], + "author": "alexzielenski", + "author_url": "https://github.com/alexzielenski", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113146", + "pr_number": 113146, + "areas": [ + "kubectl" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "cli" + ], + "feature": true + }, + "113160": { + "commit": "7cd98dec08cbe3ac1ed7d5238bb179760103795d", + "text": "Azure File CSI migration is now GA.", + "markdown": "Azure File CSI migration is now GA. ([#113160](https://github.com/kubernetes/kubernetes/pull/113160), [@andyzhangx](https://github.com/andyzhangx))", + "author": "andyzhangx", + "author_url": "https://github.com/andyzhangx", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113160", + "pr_number": 113160, + "areas": [ + "provider/azure" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "cloud-provider" + ], + "feature": true + }, + "113171": { + "commit": "8058e8eff8ba8541ddd48cd54bbb19a3fce62c09", + "text": "Aggregated discovery will be alpha and can be toggled with the `AggregatedDiscoveryEndpoint` feature flag.", + "markdown": "Aggregated discovery will be alpha and can be toggled with the `AggregatedDiscoveryEndpoint` feature flag. ([#113171](https://github.com/kubernetes/kubernetes/pull/113171), [@Jefftree](https://github.com/Jefftree))", + "author": "Jefftree", + "author_url": "https://github.com/Jefftree", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113171", + "pr_number": 113171, + "areas": [ + "test", + "kubelet", + "apiserver", + "kubectl", + "cloudprovider", + "provider/gcp", + "release-eng", + "kubeadm", + "conformance", + "code-generation", + "ipvs", + "e2e-test-framework", + "dependency", + "stable-metrics" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "network", + "scalability", + "scheduling", + "storage", + "node", + "api-machinery", + "cluster-lifecycle", + "autoscaling", + "auth", + "apps", + "cli", + "testing", + "release", + "architecture", + "cloud-provider" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, "113172": { "commit": "ae6dc598bd23c29480ce5ec426b75954dbd1b65b", "text": "API Server Tracing now includes a variety of new spans and span events.", @@ -2987,10 +3555,43 @@ "feature": true, "duplicate": true }, + "113186": { + "commit": "d94261e904c90578e913c42c4d2a0fc8cb30937f", + "text": "Added a new namespace alpha field to `DataSourceRef` field in `PersistentVolumeClaim` API.", + "markdown": "Added a new namespace alpha field to `DataSourceRef` field in `PersistentVolumeClaim` API. ([#113186](https://github.com/kubernetes/kubernetes/pull/113186), [@ttakahashi21](https://github.com/ttakahashi21))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/3294-provision-volumes-from-cross-namespace-snapshots", + "type": "KEP" + } + ], + "author": "ttakahashi21", + "author_url": "https://github.com/ttakahashi21", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113186", + "pr_number": 113186, + "areas": [ + "test", + "code-generation" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "storage", + "api-machinery", + "apps", + "testing" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, "113198": { "commit": "3df170d1c49ed8a75df0a87ca4ba335cfa600145", - "text": "\u003cNONE\u003e", - "markdown": "\u003cNONE\u003e ([#113198](https://github.com/kubernetes/kubernetes/pull/113198), [@pacoxu](https://github.com/pacoxu))", + "text": "STEP: expect not showing any WARNING message 10/19/22 21:20:25.015\nOct 19 21:20:25.015: INFO: Running '/home/prow/go/src/k8s.io/kubernetes/_output/bin/kubectl --server=https://[::1]:34867 --kubeconfig=/root/.kube/kind-test-config --namespace=kubectl-6045 alpha events --types=WARNING --for=pod/e2e-test-httpd-pod'\nOct 19 21:20:25.114: INFO: stderr: \"\"\nOct 19 21:20:25.114: INFO: stdout: \"LAST SEEN TYPE REASON OBJECT MESSAGE\\n27s (x2 over 29s) Warning FailedMount Pod/e2e-test-httpd-pod MountVolume.SetUp failed for volume \\\"kube-api-access-9gvsx\\\" : failed to sync configmap cache: timed out waiting for the condition\\n\"\nOct 19 21:20:25.114: FAIL: unexpected WARNING event fired", + "markdown": "STEP: expect not showing any WARNING message 10/19/22 21:20:25.015\n Oct 19 21:20:25.015: INFO: Running '/home/prow/go/src/k8s.io/kubernetes/_output/bin/kubectl --server=https://[::1]:34867 --kubeconfig=/root/.kube/kind-test-config --namespace=kubectl-6045 alpha events --types=WARNING --for=pod/e2e-test-httpd-pod'\n Oct 19 21:20:25.114: INFO: stderr: \"\"\n Oct 19 21:20:25.114: INFO: stdout: \"LAST SEEN TYPE REASON OBJECT MESSAGE\\n27s (x2 over 29s) Warning FailedMount Pod/e2e-test-httpd-pod MountVolume.SetUp failed for volume \\\"kube-api-access-9gvsx\\\" : failed to sync configmap cache: timed out waiting for the condition\\n\"\n Oct 19 21:20:25.114: FAIL: unexpected WARNING event fired ([#113198](https://github.com/kubernetes/kubernetes/pull/113198), [@pacoxu](https://github.com/pacoxu)) [SIG CLI and Testing]", "author": "pacoxu", "author_url": "https://github.com/pacoxu", "pr_url": "https://github.com/kubernetes/kubernetes/pull/113198", @@ -3008,6 +3609,24 @@ "duplicate": true, "do_not_publish": true }, + "113206": { + "commit": "b7f5de17aeef93481f32a4cb804a72cd9ed9c8f3", + "text": "Fixed cost estimation of token creation request for service account in Priority and Fairness.", + "markdown": "Fixed cost estimation of token creation request for service account in Priority and Fairness. ([#113206](https://github.com/kubernetes/kubernetes/pull/113206), [@marseel](https://github.com/marseel))", + "author": "marseel", + "author_url": "https://github.com/marseel", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113206", + "pr_number": 113206, + "areas": [ + "apiserver" + ], + "kinds": [ + "bug" + ], + "sigs": [ + "api-machinery" + ] + }, "113212": { "commit": "dbb3b4f340d11ccc87a05a70af1c2f327b5f4815", "text": "The `e2e.test` binary no longer emits JSON structs to document progress.", @@ -3026,66 +3645,280 @@ "testing" ] }, - "113304": { - "commit": "3c9928e4f87c1d023e595292e6139cbd8dfedd5c", - "text": "The `kube-scheduler` and `kube-controller-manager` now use server side apply to set conditions related to pod disruption.", - "markdown": "The `kube-scheduler` and `kube-controller-manager` now use server side apply to set conditions related to pod disruption. ([#113304](https://github.com/kubernetes/kubernetes/pull/113304), [@mimowo](https://github.com/mimowo)) [SIG API Machinery, Apps and Scheduling]", + "113217": { + "commit": "f522df5b49e3165f228fc6e3fd03df76c738bb72", + "text": "API Server tracing now includes the latency of authorization, priorityandfairness, impersonation, audit, and authentication filters.", + "markdown": "API Server tracing now includes the latency of authorization, priorityandfairness, impersonation, audit, and authentication filters. ([#113217](https://github.com/kubernetes/kubernetes/pull/113217), [@dashpole](https://github.com/dashpole))", "documentation": [ { "description": "[KEP]", - "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-apps/3329-retriable-and-non-retriable-failures", + "url": "https://github.com/kubernetes/enhancements/blob/bddca24910fb349e2eb0ac1c822c77f0f32fe9c6/keps/sig-instrumentation/647-apiserver-tracing/README.md", "type": "KEP" } ], - "author": "mimowo", - "author_url": "https://github.com/mimowo", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/113304", - "pr_number": 113304, + "author": "dashpole", + "author_url": "https://github.com/dashpole", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113217", + "pr_number": 113217, + "areas": [ + "apiserver" + ], "kinds": [ - "bug", - "cleanup" + "feature" ], "sigs": [ - "scheduling", "api-machinery", - "apps" + "instrumentation" ], - "duplicate": true, - "duplicate_kind": true + "feature": true, + "duplicate": true }, - "113310": { - "commit": "19ab5b69108172a1c1725a23fdf4e30eba4ff629", - "text": "The metric `etcd_db_total_size_in_bytes` is renamed to `apiserver_storage_db_total_size_in_bytes`.", - "markdown": "The metric `etcd_db_total_size_in_bytes` is renamed to `apiserver_storage_db_total_size_in_bytes`. ([#113310](https://github.com/kubernetes/kubernetes/pull/113310), [@logicalhan](https://github.com/logicalhan)) [SIG API Machinery]", - "author": "logicalhan", - "author_url": "https://github.com/logicalhan", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/113310", - "pr_number": 113310, + "113225": { + "commit": "d3601a0f0625503993539809b1ef9f59c709a237", + "text": "'`DelegateFSGroupToCSIDriver` feature is GA.'\n", + "markdown": "'`DelegateFSGroupToCSIDriver` feature is GA.'\n ([#113225](https://github.com/kubernetes/kubernetes/pull/113225), [@bertinatto](https://github.com/bertinatto))", + "author": "bertinatto", + "author_url": "https://github.com/bertinatto", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113225", + "pr_number": 113225, "areas": [ - "apiserver" + "apiserver", + "kubectl", + "cloudprovider", + "code-generation", + "dependency" ], "kinds": [ - "cleanup" + "feature" ], "sigs": [ - "api-machinery" - ] + "storage", + "node", + "cluster-lifecycle", + "auth", + "cli", + "instrumentation", + "architecture", + "cloud-provider" + ], + "feature": true, + "duplicate": true }, - "113323": { - "commit": "ca03736670550056e74b1241790286e1d8a574f2", - "text": "Metrics for `RetroactiveDefaultStorageClass` feature are now available. To see an attempt count for updating PVC retroactively with a default StorageClass see `retroactive_storageclass_total` metric and for total numer of errors see `retroactive_storageclass_errors_total`.", - "markdown": "Metrics for `RetroactiveDefaultStorageClass` feature are now available. To see an attempt count for updating PVC retroactively with a default StorageClass see `retroactive_storageclass_total` metric and for total numer of errors see `retroactive_storageclass_errors_total`. ([#113323](https://github.com/kubernetes/kubernetes/pull/113323), [@RomanBednar](https://github.com/RomanBednar))", + "113274": { + "commit": "8c77820759cc28a5d82e9a68f3d335d1a27f4466", + "text": "New Pod API field `.spec.schedulingGates` is introduced to enable users to control when to mark a Pod as scheduling ready.", + "markdown": "New Pod API field `.spec.schedulingGates` is introduced to enable users to control when to mark a Pod as scheduling ready. ([#113274](https://github.com/kubernetes/kubernetes/pull/113274), [@Huang-Wei](https://github.com/Huang-Wei))", "documentation": [ { "description": "[KEP]", - "url": "https://github.com/kubernetes/enhancements/issues/3333", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-scheduling/3521-pod-scheduling-readiness", "type": "KEP" } ], - "author": "RomanBednar", - "author_url": "https://github.com/RomanBednar", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/113323", - "pr_number": 113323, + "author": "Huang-Wei", + "author_url": "https://github.com/Huang-Wei", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113274", + "pr_number": 113274, + "areas": [ + "test", + "code-generation", + "e2e-test-framework" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "scheduling", + "apps", + "testing" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, + "113275": { + "commit": "95bd687a284f63535cbf48b0696d8ae57c9929ef", + "text": "'A new `preEnqueue` extension point was added to scheduler's component config\n`v1beta2/v1beta3/v1`.'\n", + "markdown": "'A new `preEnqueue` extension point was added to scheduler's component config\n `v1beta2/v1beta3/v1`.'\n ([#113275](https://github.com/kubernetes/kubernetes/pull/113275), [@Huang-Wei](https://github.com/Huang-Wei))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-scheduling/3521-pod-scheduling-readiness", + "type": "KEP" + } + ], + "author": "Huang-Wei", + "author_url": "https://github.com/Huang-Wei", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113275", + "pr_number": 113275, + "areas": [ + "test", + "code-generation", + "e2e-test-framework", + "stable-metrics" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "scheduling", + "api-machinery", + "apps", + "instrumentation", + "testing" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, + "113291": { + "commit": "f328d3dc3d6d7b19045635372f2f7fabd385435e", + "text": "Fixed the `PodAndContainerStatsFromCRI` feature, instead of supplementing with stats from cAdvisor.", + "markdown": "Fixed the `PodAndContainerStatsFromCRI` feature, instead of supplementing with stats from cAdvisor. ([#113291](https://github.com/kubernetes/kubernetes/pull/113291), [@mengjiao-liu](https://github.com/mengjiao-liu))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/2371-cri-pod-container-stats#current-fulfiller-of-metrics-endpoints--future-proposal", + "type": "KEP" + } + ], + "author": "mengjiao-liu", + "author_url": "https://github.com/mengjiao-liu", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113291", + "pr_number": 113291, + "areas": [ + "kubelet" + ], + "kinds": [ + "bug" + ], + "sigs": [ + "node", + "instrumentation" + ], + "duplicate": true + }, + "113304": { + "commit": "3c9928e4f87c1d023e595292e6139cbd8dfedd5c", + "text": "The `kube-scheduler` and `kube-controller-manager` now use server side apply to set conditions related to pod disruption.", + "markdown": "The `kube-scheduler` and `kube-controller-manager` now use server side apply to set conditions related to pod disruption. ([#113304](https://github.com/kubernetes/kubernetes/pull/113304), [@mimowo](https://github.com/mimowo)) [SIG API Machinery, Apps and Scheduling]", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-apps/3329-retriable-and-non-retriable-failures", + "type": "KEP" + } + ], + "author": "mimowo", + "author_url": "https://github.com/mimowo", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113304", + "pr_number": 113304, + "kinds": [ + "bug", + "cleanup" + ], + "sigs": [ + "scheduling", + "api-machinery", + "apps" + ], + "duplicate": true, + "duplicate_kind": true + }, + "113307": { + "commit": "c8a3657bde08fde0240cba2e8579b160e95bc459", + "text": "Updated the Lease identity naming format for the `APIServerIdentity` feature to use a persistent name.", + "markdown": "Updated the Lease identity naming format for the `APIServerIdentity` feature to use a persistent name. ([#113307](https://github.com/kubernetes/kubernetes/pull/113307), [@andrewsykim](https://github.com/andrewsykim))", + "author": "andrewsykim", + "author_url": "https://github.com/andrewsykim", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113307", + "pr_number": 113307, + "areas": [ + "test", + "kubelet", + "apiserver" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "node", + "api-machinery", + "testing" + ], + "feature": true, + "duplicate": true + }, + "113310": { + "commit": "19ab5b69108172a1c1725a23fdf4e30eba4ff629", + "text": "The metric `etcd_db_total_size_in_bytes` is renamed to `apiserver_storage_db_total_size_in_bytes`.", + "markdown": "The metric `etcd_db_total_size_in_bytes` is renamed to `apiserver_storage_db_total_size_in_bytes`. ([#113310](https://github.com/kubernetes/kubernetes/pull/113310), [@logicalhan](https://github.com/logicalhan)) [SIG API Machinery]", + "author": "logicalhan", + "author_url": "https://github.com/logicalhan", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113310", + "pr_number": 113310, + "areas": [ + "apiserver" + ], + "kinds": [ + "cleanup" + ], + "sigs": [ + "api-machinery" + ] + }, + "113314": { + "commit": "595ea324113580ae61f4a15ab3e5b22303a195cf", + "text": "Introduced `v1alpha1` API for validating admission policies, enabling extensible admission control via CEL expressions (KEP 3488: CEL for Admission Control). To use, enable the `ValidatingAdmissionPolicy` feature gate and the `admissionregistration.k8s.io/v1alpha1` API via `--runtime-config`.", + "markdown": "Introduced `v1alpha1` API for validating admission policies, enabling extensible admission control via CEL expressions (KEP 3488: CEL for Admission Control). To use, enable the `ValidatingAdmissionPolicy` feature gate and the `admissionregistration.k8s.io/v1alpha1` API via `--runtime-config`. ([#113314](https://github.com/kubernetes/kubernetes/pull/113314), [@cici37](https://github.com/cici37))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-api-machinery/3488-cel-admission-control", + "type": "KEP" + } + ], + "author": "cici37", + "author_url": "https://github.com/cici37", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113314", + "pr_number": 113314, + "areas": [ + "test", + "apiserver", + "cloudprovider", + "code-generation" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "api-machinery", + "auth", + "testing", + "cloud-provider" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, + "113323": { + "commit": "ca03736670550056e74b1241790286e1d8a574f2", + "text": "Metrics for `RetroactiveDefaultStorageClass` feature are now available. To see an attempt count for updating PVC retroactively with a default StorageClass see `retroactive_storageclass_total` metric and for total numer of errors see `retroactive_storageclass_errors_total`.", + "markdown": "Metrics for `RetroactiveDefaultStorageClass` feature are now available. To see an attempt count for updating PVC retroactively with a default StorageClass see `retroactive_storageclass_total` metric and for total numer of errors see `retroactive_storageclass_errors_total`. ([#113323](https://github.com/kubernetes/kubernetes/pull/113323), [@RomanBednar](https://github.com/RomanBednar))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/issues/3333", + "type": "KEP" + } + ], + "author": "RomanBednar", + "author_url": "https://github.com/RomanBednar", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113323", + "pr_number": 113323, "kinds": [ "feature" ], @@ -3122,29 +3955,922 @@ "feature": true, "duplicate": true }, - "113448": { - "commit": "ac59b03214807ef0319c052a02693f077ee88083", - "text": "kubeadm: removed the `UnversionedKubeletConfigMap` feature gate. The feature has been GA and locked to enabled since `v1.25`.", - "markdown": "Kubeadm: removed the `UnversionedKubeletConfigMap` feature gate. The feature has been GA and locked to enabled since `v1.25`. ([#113448](https://github.com/kubernetes/kubernetes/pull/113448), [@pacoxu](https://github.com/pacoxu))", + "113329": { + "commit": "06ba3835321b85419a2d444a7ac5e8847ba6ec79", + "text": "'`RetroactiveDefaultStorageClass` feature is now beta.'\n", + "markdown": "'`RetroactiveDefaultStorageClass` feature is now beta.'\n ([#113329](https://github.com/kubernetes/kubernetes/pull/113329), [@RomanBednar](https://github.com/RomanBednar))", "documentation": [ { "description": "[KEP]", - "url": "https://kep.k8s.io/2915", + "url": "https://github.com/kubernetes/enhancements/issues/3333", + "type": "KEP" + } + ], + "author": "RomanBednar", + "author_url": "https://github.com/RomanBednar", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113329", + "pr_number": 113329, + "areas": [ + "test" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "storage", + "apps", + "testing" + ], + "feature": true, + "duplicate": true + }, + "113336": { + "commit": "ee640d775637bcb740f6af8f7f0ee03ef853b643", + "text": "'`CSIMigrationvSphere` was upgraded to GA and locked to true. Do not upgrade to K8s\n1.26 if you need Windows, or XFS, or raw block support until vSphere CSI Driver\nadds support for them in a version post v2.7.x.'\n", + "markdown": "'`CSIMigrationvSphere` was upgraded to GA and locked to true. Do not upgrade to K8s\n 1.26 if you need Windows, or XFS, or raw block support until vSphere CSI Driver\n adds support for them in a version post v2.7.x.'\n ([#113336](https://github.com/kubernetes/kubernetes/pull/113336), [@divyenpatel](https://github.com/divyenpatel))", + "author": "divyenpatel", + "author_url": "https://github.com/divyenpatel", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113336", + "pr_number": 113336, + "kinds": [ + "feature" + ], + "sigs": [ + "storage" + ], + "feature": true + }, + "113340": { + "commit": "83fe3aae4b6dbde92c6b130ee059a28814300f52", + "text": "If `ComponentSLIs` feature gate is enabled, then `/metrics/slis` now becomes available on cloud-controller-manager allowing you to scrape health check metrics.", + "markdown": "If `ComponentSLIs` feature gate is enabled, then `/metrics/slis` now becomes available on cloud-controller-manager allowing you to scrape health check metrics. ([#113340](https://github.com/kubernetes/kubernetes/pull/113340), [@Richabanker](https://github.com/Richabanker))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://kep.k8s.io/3466", "type": "external" } ], - "author": "pacoxu", - "author_url": "https://github.com/pacoxu", - "pr_url": "https://github.com/kubernetes/kubernetes/pull/113448", - "pr_number": 113448, + "author": "Richabanker", + "author_url": "https://github.com/Richabanker", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113340", + "pr_number": 113340, "areas": [ - "kubeadm" + "cloudprovider" ], "kinds": [ - "cleanup" + "feature" ], "sigs": [ - "cluster-lifecycle" + "cloud-provider" + ], + "feature": true + }, + "113351": { + "commit": "b20ddbd75acf7e917bd1462688ff2f91edaf4052", + "text": "The `EndpointSliceTerminatingCondition` feature gate was graduated to GA. The gate is now locked and will be removed in v1.28.", + "markdown": "The `EndpointSliceTerminatingCondition` feature gate was graduated to GA. The gate is now locked and will be removed in v1.28. ([#113351](https://github.com/kubernetes/kubernetes/pull/113351), [@andrewsykim](https://github.com/andrewsykim))", + "author": "andrewsykim", + "author_url": "https://github.com/andrewsykim", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113351", + "pr_number": 113351, + "areas": [ + "test", + "code-generation" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "network", + "api-machinery", + "apps", + "testing" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, + "113360": { + "commit": "7e0e0c8ec3a6f68db0a9c259836a9ad8792fa67b", + "text": "Enable the \"Retriable and non-retriable pod failures for jobs\" feature into beta.", + "markdown": "Enable the \"Retriable and non-retriable pod failures for jobs\" feature into beta. ([#113360](https://github.com/kubernetes/kubernetes/pull/113360), [@mimowo](https://github.com/mimowo))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-apps/3329-retriable-and-non-retriable-failures", + "type": "KEP" + } + ], + "author": "mimowo", + "author_url": "https://github.com/mimowo", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113360", + "pr_number": 113360, + "areas": [ + "test", + "kubelet", + "e2e-test-framework" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "scheduling", + "node", + "auth", + "apps", + "testing" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, + "113363": { + "commit": "fccd8b12d0ef817406fde33be8cc1b6b2f5ab718", + "text": "The `ProxyTerminatingEndpoints` feature is now Beta and enabled by default. When enabled, kube-proxy will attempt to route traffic to terminating pods when the traffic policy is `Local` and there are only terminating pods remaining on a node.", + "markdown": "The `ProxyTerminatingEndpoints` feature is now Beta and enabled by default. When enabled, kube-proxy will attempt to route traffic to terminating pods when the traffic policy is `Local` and there are only terminating pods remaining on a node. ([#113363](https://github.com/kubernetes/kubernetes/pull/113363), [@andrewsykim](https://github.com/andrewsykim))", + "author": "andrewsykim", + "author_url": "https://github.com/andrewsykim", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113363", + "pr_number": 113363, + "kinds": [ + "feature" + ], + "sigs": [ + "network" + ], + "feature": true + }, + "113369": { + "commit": "421213b7a17b4d2753b3a00b7332a4bec3aba127", + "text": "The `ResourceVersion` returned in objects from delete responses is now consistent with the `ResourceVersion` contained in the delete watch event.", + "markdown": "The `ResourceVersion` returned in objects from delete responses is now consistent with the `ResourceVersion` contained in the delete watch event. ([#113369](https://github.com/kubernetes/kubernetes/pull/113369), [@wojtek-t](https://github.com/wojtek-t))", + "author": "wojtek-t", + "author_url": "https://github.com/wojtek-t", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113369", + "pr_number": 113369, + "areas": [ + "apiserver" + ], + "kinds": [ + "bug" + ], + "sigs": [ + "api-machinery" + ] + }, + "113375": { + "commit": "cc704f97784c3359db4690b97201ebfe6b481869", + "text": "'`PodDisruptionBudget` now adds an alpha `spec.unhealthyPodEvictionPolicy` field.\nWhen the `PDBUnhealthyPodEvictionPolicy` feature-gate is enabled in `kube-apiserver`,\nsetting this field to `\"AlwaysAllow\"` allows pods to be evicted if they do not\nhave a ready condition, regardless of whether the PodDisruptionBudget is currently\nhealthy.'\n", + "markdown": "'`PodDisruptionBudget` now adds an alpha `spec.unhealthyPodEvictionPolicy` field.\n When the `PDBUnhealthyPodEvictionPolicy` feature-gate is enabled in `kube-apiserver`,\n setting this field to `\"AlwaysAllow\"` allows pods to be evicted if they do not\n have a ready condition, regardless of whether the PodDisruptionBudget is currently\n healthy.'\n ([#113375](https://github.com/kubernetes/kubernetes/pull/113375), [@atiratree](https://github.com/atiratree))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-apps/3017-pod-healthy-policy-for-pdb", + "type": "KEP" + } + ], + "author": "atiratree", + "author_url": "https://github.com/atiratree", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113375", + "pr_number": 113375, + "areas": [ + "test", + "code-generation" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "api-machinery", + "auth", + "apps", + "testing" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, + "113448": { + "commit": "ac59b03214807ef0319c052a02693f077ee88083", + "text": "kubeadm: removed the `UnversionedKubeletConfigMap` feature gate. The feature has been GA and locked to enabled since `v1.25`.", + "markdown": "Kubeadm: removed the `UnversionedKubeletConfigMap` feature gate. The feature has been GA and locked to enabled since `v1.25`. ([#113448](https://github.com/kubernetes/kubernetes/pull/113448), [@pacoxu](https://github.com/pacoxu))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://kep.k8s.io/2915", + "type": "external" + } + ], + "author": "pacoxu", + "author_url": "https://github.com/pacoxu", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113448", + "pr_number": 113448, + "areas": [ + "kubeadm" + ], + "kinds": [ + "cleanup" + ], + "sigs": [ + "cluster-lifecycle" + ] + }, + "113476": { + "commit": "9bbd0fbdb2bf7d9f6b21e268357316fa7c556f83", + "text": "Promoting `WindowsHostProcessContainers` to stable.", + "markdown": "Promoting `WindowsHostProcessContainers` to stable. ([#113476](https://github.com/kubernetes/kubernetes/pull/113476), [@marosset](https://github.com/marosset))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-windows/1981-windows-privileged-container-support", + "type": "KEP" + } + ], + "author": "marosset", + "author_url": "https://github.com/marosset", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113476", + "pr_number": 113476, + "areas": [ + "test", + "kubelet" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "node", + "apps", + "windows", + "testing" + ], + "feature": true, + "duplicate": true + }, + "113481": { + "commit": "5899432f92d27a6acb9198336a7abcad51311c39", + "text": "Pod logs using `--timestamps` are not broken up with timestamps anymore.", + "markdown": "Pod logs using `--timestamps` are not broken up with timestamps anymore. ([#113481](https://github.com/kubernetes/kubernetes/pull/113481), [@rphillips](https://github.com/rphillips))", + "author": "rphillips", + "author_url": "https://github.com/rphillips", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113481", + "pr_number": 113481, + "areas": [ + "kubelet" + ], + "kinds": [ + "bug" + ], + "sigs": [ + "node" + ] + }, + "113485": { + "commit": "1193a9abcbd6c6ce6fc7d4ce38872f1933ef5159", + "text": "'Priority and Fairness has introduced a new feature called _borrowing_ that allows an API priority level\nto borrow a number of seats from other priority level(s). As a cluster operator, you can enable borrowing\nfor a certain priority level configuration object via the two newly introduced fields `lendablePercent`, and\n`borrowingLimitPercent` located under the `.spec.limited` field of the designated priority level.\nThis change added the following metrics:\n - `apiserver_flowcontrol_nominal_limit_seats`: Nominal number of execution seats configured for each priority level\n - `apiserver_flowcontrol_lower_limit_seats`: Configured lower bound on number of execution seats available to each priority level\n - `apiserver_flowcontrol_upper_limit_seats`: Configured upper bound on number of execution seats available to each priority level\n - `apiserver_flowcontrol_demand_seats`: Observations, at the end of every nanosecond, of (the number of seats each priority level could use) / (nominal number of seats for that level)\n - `apiserver_flowcontrol_demand_seats_high_watermark`: High watermark, over last adjustment period, of demand_seats\n - `apiserver_flowcontrol_demand_seats_average`: Time-weighted average, over last adjustment period, of demand_seats\n - `apiserver_flowcontrol_demand_seats_stdev`: Time-weighted standard deviation, over last adjustment period, of demand_seats\n - `apiserver_flowcontrol_demand_seats_smoothed`: Smoothed seat demands\n - `apiserver_flowcontrol_target_seats`: Seat allocation targets\n - `apiserver_flowcontrol_seat_fair_frac`: Fair fraction of server's concurrency to allocate to each priority level that can use it\n - `apiserver_flowcontrol_current_limit_seats`: current derived number of execution seats available to each priority level\nThe possibility of borrowing means that the old metric `apiserver_flowcontrol_request_concurrency_limit` can no longer mean both the configured concurrency limit and the enforced concurrency limit. Henceforth it means the configured concurrency limit.'", + "markdown": "'Priority and Fairness has introduced a new feature called _borrowing_ that allows an API priority level\n to borrow a number of seats from other priority level(s). As a cluster operator, you can enable borrowing\n for a certain priority level configuration object via the two newly introduced fields `lendablePercent`, and\n `borrowingLimitPercent` located under the `.spec.limited` field of the designated priority level.\n This change added the following metrics:\n - `apiserver_flowcontrol_nominal_limit_seats`: Nominal number of execution seats configured for each priority level\n - `apiserver_flowcontrol_lower_limit_seats`: Configured lower bound on number of execution seats available to each priority level\n - `apiserver_flowcontrol_upper_limit_seats`: Configured upper bound on number of execution seats available to each priority level\n - `apiserver_flowcontrol_demand_seats`: Observations, at the end of every nanosecond, of (the number of seats each priority level could use) / (nominal number of seats for that level)\n - `apiserver_flowcontrol_demand_seats_high_watermark`: High watermark, over last adjustment period, of demand_seats\n - `apiserver_flowcontrol_demand_seats_average`: Time-weighted average, over last adjustment period, of demand_seats\n - `apiserver_flowcontrol_demand_seats_stdev`: Time-weighted standard deviation, over last adjustment period, of demand_seats\n - `apiserver_flowcontrol_demand_seats_smoothed`: Smoothed seat demands\n - `apiserver_flowcontrol_target_seats`: Seat allocation targets\n - `apiserver_flowcontrol_seat_fair_frac`: Fair fraction of server's concurrency to allocate to each priority level that can use it\n - `apiserver_flowcontrol_current_limit_seats`: current derived number of execution seats available to each priority level\n The possibility of borrowing means that the old metric `apiserver_flowcontrol_request_concurrency_limit` can no longer mean both the configured concurrency limit and the enforced concurrency limit. Henceforth it means the configured concurrency limit.' ([#113485](https://github.com/kubernetes/kubernetes/pull/113485), [@MikeSpreitzer](https://github.com/MikeSpreitzer))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-api-machinery/1040-priority-and-fairness#dispatching", + "type": "KEP" + } + ], + "author": "MikeSpreitzer", + "author_url": "https://github.com/MikeSpreitzer", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113485", + "pr_number": 113485, + "areas": [ + "test", + "apiserver", + "code-generation" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "api-machinery", + "testing" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, + "113491": { + "commit": "3efd107eb235d06feee95f80e461319d1dda7793", + "text": "'Pod Security admission: the pod-security `warn` level will now default to\nthe `enforce` level.'\n", + "markdown": "'Pod Security admission: the pod-security `warn` level will now default to\n the `enforce` level.'\n ([#113491](https://github.com/kubernetes/kubernetes/pull/113491), [@tallclair](https://github.com/tallclair))", + "author": "tallclair", + "author_url": "https://github.com/tallclair", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113491", + "pr_number": 113491, + "kinds": [ + "feature" + ], + "sigs": [ + "auth", + "security" + ], + "feature": true, + "duplicate": true + }, + "113496": { + "commit": "7a465163694131e6d66fe95a7e91f2f8235306bf", + "text": "Graduated `ServiceInternalTrafficPolicy` feature to GA.", + "markdown": "Graduated `ServiceInternalTrafficPolicy` feature to GA. ([#113496](https://github.com/kubernetes/kubernetes/pull/113496), [@avoltz](https://github.com/avoltz))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/issues/2086", + "type": "KEP" + } + ], + "author": "avoltz", + "author_url": "https://github.com/avoltz", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113496", + "pr_number": 113496, + "areas": [ + "ipvs" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "network", + "apps" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, + "113500": { + "commit": "c326b2713f0d2d836209409bf4387d8e9e84af76", + "text": "'`NodeInclusionPolicy` in `podTopologySpread` plugin is now enabled by default.'\n", + "markdown": "'`NodeInclusionPolicy` in `podTopologySpread` plugin is now enabled by default.'\n ([#113500](https://github.com/kubernetes/kubernetes/pull/113500), [@kerthcet](https://github.com/kerthcet))", + "documentation": [ + { + "description": "KEP", + "url": "https://github.com/kubernetes/enhancements/issues/3094", + "type": "KEP" + } + ], + "author": "kerthcet", + "author_url": "https://github.com/kerthcet", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113500", + "pr_number": 113500, + "areas": [ + "test", + "code-generation" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "scheduling", + "api-machinery", + "apps", + "testing" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, + "113501": { + "commit": "70263d55b281878121684337c0a7f205dabba5ec", + "text": "kubelet: fixed nil pointer in reflector start for standalone mode.", + "markdown": "Kubelet: fixed nil pointer in reflector start for standalone mode. ([#113501](https://github.com/kubernetes/kubernetes/pull/113501), [@pacoxu](https://github.com/pacoxu))", + "author": "pacoxu", + "author_url": "https://github.com/pacoxu", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113501", + "pr_number": 113501, + "areas": [ + "kubelet" + ], + "kinds": [ + "bug" + ], + "sigs": [ + "node" + ] + }, + "113510": { + "commit": "ac95e5b701dff7acc994dcdf5192264e7f6fe02a", + "text": "'Graduated `JobTrackingWithFinalizers` to stable.\nJobs created before the feature was enabled are still tracked without finalizers.\nJobs tracked with finalizers have the annotation batch.kubernetes.io/job-tracking.\nIf the annotation is present and the user attempts to remove it, the control plane adds it back.\nThe annotation `batch.kubernetes.io/job-tracking` is now deprecated.\nThe control plane will ignore it and stop adding it for new Jobs in v1.27.'", + "markdown": "'Graduated `JobTrackingWithFinalizers` to stable.\n Jobs created before the feature was enabled are still tracked without finalizers.\n Jobs tracked with finalizers have the annotation batch.kubernetes.io/job-tracking.\n If the annotation is present and the user attempts to remove it, the control plane adds it back.\n The annotation `batch.kubernetes.io/job-tracking` is now deprecated.\n The control plane will ignore it and stop adding it for new Jobs in v1.27.' ([#113510](https://github.com/kubernetes/kubernetes/pull/113510), [@alculquicondor](https://github.com/alculquicondor))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/a4b5f5c8e9aa857f9bf1f7df2a9a8b9ee660ed1e/keps/sig-apps/2307-job-tracking-without-lingering-pods#beta---ga-graduation", + "type": "KEP" + }, + { + "description": "[Usage]", + "url": "https://kubernetes.io/docs/concepts/workloads/controllers/job/#job-tracking-with-finalizers", + "type": "official" + } + ], + "author": "alculquicondor", + "author_url": "https://github.com/alculquicondor", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113510", + "pr_number": 113510, + "areas": [ + "test", + "code-generation" + ], + "kinds": [ + "api-change", + "feature" + ], + "sigs": [ + "api-machinery", + "apps", + "testing" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, + "113511": { + "commit": "d62cc3dc6d5c07fea79eafd866ac7e1217000ea8", + "text": "'`NodeOutOfServiceVolumeDetach` is now beta.'\n", + "markdown": "'`NodeOutOfServiceVolumeDetach` is now beta.'\n ([#113511](https://github.com/kubernetes/kubernetes/pull/113511), [@xing-yang](https://github.com/xing-yang))", + "author": "xing-yang", + "author_url": "https://github.com/xing-yang", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113511", + "pr_number": 113511, + "kinds": [ + "feature" + ], + "sigs": [ + "storage", + "node" + ], + "feature": true, + "duplicate": true + }, + "113519": { + "commit": "38bcc0c1537cdd0bf2e26968cf10f34002fc7db1", + "text": "Adds metrics `force_delete_pods_total` and `force_delete_pod_errors_total` in the Pod GC Controller.", + "markdown": "Adds metrics `force_delete_pods_total` and `force_delete_pod_errors_total` in the Pod GC Controller. ([#113519](https://github.com/kubernetes/kubernetes/pull/113519), [@xing-yang](https://github.com/xing-yang)) [SIG Apps]", + "author": "xing-yang", + "author_url": "https://github.com/xing-yang", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113519", + "pr_number": 113519, + "kinds": [ + "feature" + ], + "sigs": [ + "apps" + ], + "feature": true + }, + "113521": { + "commit": "b60b0c74c91a2dc12436503f63d1a3b266eb02d4", + "text": "Resolved an issue that caused winkernel proxier to treat stale VIPs as valid.", + "markdown": "Resolved an issue that caused winkernel proxier to treat stale VIPs as valid. ([#113521](https://github.com/kubernetes/kubernetes/pull/113521), [@daschott](https://github.com/daschott))", + "author": "daschott", + "author_url": "https://github.com/daschott", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113521", + "pr_number": 113521, + "kinds": [ + "bug" + ], + "sigs": [ + "network", + "windows" + ], + "duplicate": true + }, + "113529": { + "commit": "b1dd1cd2f177ecf228cbbfb0db9327a276098be8", + "text": "A new API server flag `--encryption-provider-config-automatic-reload` was added to control when the encryption config should be automatically reloaded without needing to restart the server. All KMS plugins are now merged into a single healthz check at `/healthz/kms-providers` when reload is enabled, or when only KMS v2 plugins are used.", + "markdown": "A new API server flag `--encryption-provider-config-automatic-reload` was added to control when the encryption config should be automatically reloaded without needing to restart the server. All KMS plugins are now merged into a single healthz check at `/healthz/kms-providers` when reload is enabled, or when only KMS v2 plugins are used. ([#113529](https://github.com/kubernetes/kubernetes/pull/113529), [@enj](https://github.com/enj))", + "author": "enj", + "author_url": "https://github.com/enj", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113529", + "pr_number": 113529, + "areas": [ + "test", + "apiserver" + ], + "kinds": [ + "cleanup" + ], + "sigs": [ + "api-machinery", + "auth", + "testing" + ], + "duplicate": true + }, + "113544": { + "commit": "0e530f44af57643f37ec87e22780becaf1567822", + "text": "Added publishing events when enabling/disabling `TopologyAwareHints`.", + "markdown": "Added publishing events when enabling/disabling `TopologyAwareHints`. ([#113544](https://github.com/kubernetes/kubernetes/pull/113544), [@LiorLieberman](https://github.com/LiorLieberman))", + "author": "LiorLieberman", + "author_url": "https://github.com/LiorLieberman", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113544", + "pr_number": 113544, + "kinds": [ + "feature" + ], + "sigs": [ + "network", + "apps" + ], + "feature": true, + "duplicate": true + }, + "113550": { + "commit": "2acad1b8c4b5f9a4991885ef34de1dc771139628", + "text": "Kubernetes is now built with Go 1.19.3.", + "markdown": "Kubernetes is now built with Go 1.19.3. ([#113550](https://github.com/kubernetes/kubernetes/pull/113550), [@xmudrii](https://github.com/xmudrii))", + "author": "xmudrii", + "author_url": "https://github.com/xmudrii", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113550", + "pr_number": 113550, + "areas": [ + "test", + "release-eng", + "dependency" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "testing", + "release" + ], + "feature": true, + "duplicate": true + }, + "113580": { + "commit": "208b2b7ca9f211c0d4a8df903bfb65fd6065d527", + "text": "Fixed that disruption controller used to change the status of a stale disruption condition after 2 min when the `PodDisruptionConditions` feature gate is enabled.", + "markdown": "Fixed that disruption controller used to change the status of a stale disruption condition after 2 min when the `PodDisruptionConditions` feature gate is enabled. ([#113580](https://github.com/kubernetes/kubernetes/pull/113580), [@mimowo](https://github.com/mimowo))", + "author": "mimowo", + "author_url": "https://github.com/mimowo", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113580", + "pr_number": 113580, + "kinds": [ + "bug" + ], + "sigs": [ + "auth" + ] + }, + "113596": { + "commit": "da735b541514f65ab4e693a28a3637fad7a288b3", + "text": "Added reconstruction of SELinux mount context after kubelet restart. Feature `SELinuxMountReadWriteOncePod` is now fully implemented and kubelet does not lose its cache of SELinux contexts after kubelet process restart.", + "markdown": "Added reconstruction of SELinux mount context after kubelet restart. Feature `SELinuxMountReadWriteOncePod` is now fully implemented and kubelet does not lose its cache of SELinux contexts after kubelet process restart. ([#113596](https://github.com/kubernetes/kubernetes/pull/113596), [@jsafrane](https://github.com/jsafrane))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1710-selinux-relabeling", + "type": "KEP" + } + ], + "author": "jsafrane", + "author_url": "https://github.com/jsafrane", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113596", + "pr_number": 113596, + "areas": [ + "test", + "kubelet" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "storage", + "node", + "apps", + "testing" + ], + "feature": true, + "duplicate": true + }, + "113609": { + "commit": "b4040b3b863737674a492f8fd415eff8503ba0b4", + "text": "Added alpha support for returning container and pod metrics from CRI, instead of cAdvsior.", + "markdown": "Added alpha support for returning container and pod metrics from CRI, instead of cAdvsior. ([#113609](https://github.com/kubernetes/kubernetes/pull/113609), [@haircommander](https://github.com/haircommander))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/issues/2371", + "type": "KEP" + } + ], + "author": "haircommander", + "author_url": "https://github.com/haircommander", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113609", + "pr_number": 113609, + "areas": [ + "kubelet" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "node", + "instrumentation", + "architecture" + ], + "feature": true, + "duplicate": true + }, + "113629": { + "commit": "3a99a5954d6497b4238d011cec4d33422d3957a0", + "text": "'Promoted the `APIServerIdentity` feature to Beta. By default, each `kube-apiserver`\nwill now create a Lease in the `kube-system` namespace. These lease objects can\nbe used to identify the number of active API servers in the cluster, and may also\nbe used for future features such as the Storage Version API.'\n", + "markdown": "'Promoted the `APIServerIdentity` feature to Beta. By default, each `kube-apiserver`\n will now create a Lease in the `kube-system` namespace. These lease objects can\n be used to identify the number of active API servers in the cluster, and may also\n be used for future features such as the Storage Version API.'\n ([#113629](https://github.com/kubernetes/kubernetes/pull/113629), [@andrewsykim](https://github.com/andrewsykim))", + "author": "andrewsykim", + "author_url": "https://github.com/andrewsykim", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113629", + "pr_number": 113629, + "areas": [ + "test", + "apiserver" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "api-machinery", + "testing" + ], + "feature": true, + "duplicate": true + }, + "113636": { + "commit": "56a0823730b9c4dafe06a18bd8de027b40d1971c", + "text": "kubectl shell completions for the bash shell now include descriptions.", + "markdown": "Kubectl shell completions for the bash shell now include descriptions. ([#113636](https://github.com/kubernetes/kubernetes/pull/113636), [@marckhouzam](https://github.com/marckhouzam))", + "author": "marckhouzam", + "author_url": "https://github.com/marckhouzam", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113636", + "pr_number": 113636, + "areas": [ + "kubectl" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "cli" + ], + "feature": true + }, + "113697": { + "commit": "a236e4ca6f3860a5acbbfc62bb3fdd88ac7e2757", + "text": "KMS: added validation for duplicate kms config name when auto reload is enabled. If you enabled automatic reload of encryption configuration with API server flag `--encryption-provider-config-automatic-reload`, ensure all the KMS provider names (v1 and v2) in the encryption configuration are unique.", + "markdown": "KMS: added validation for duplicate kms config name when auto reload is enabled. If you enabled automatic reload of encryption configuration with API server flag `--encryption-provider-config-automatic-reload`, ensure all the KMS provider names (v1 and v2) in the encryption configuration are unique. ([#113697](https://github.com/kubernetes/kubernetes/pull/113697), [@aramase](https://github.com/aramase))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/3299-kms-v2-improvements", + "type": "KEP" + } + ], + "author": "aramase", + "author_url": "https://github.com/aramase", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113697", + "pr_number": 113697, + "areas": [ + "apiserver" + ], + "kinds": [ + "bug", + "api-change" + ], + "sigs": [ + "api-machinery", + "auth" + ], + "duplicate": true, + "duplicate_kind": true + }, + "113699": { + "commit": "f2c89045f45fc9d03ac49ba7e31c92933c739d20", + "text": "'`metav1.LabelSelectors` specified in API objects are now validated to ensure\nthey do not contain invalid label values that will error at time of use. Existing\ninvalid objects can be updated, but new objects are required to contain valid\nlabel selectors.'\n", + "markdown": "'`metav1.LabelSelectors` specified in API objects are now validated to ensure\n they do not contain invalid label values that will error at time of use. Existing\n invalid objects can be updated, but new objects are required to contain valid\n label selectors.'\n ([#113699](https://github.com/kubernetes/kubernetes/pull/113699), [@liggitt](https://github.com/liggitt))", + "author": "liggitt", + "author_url": "https://github.com/liggitt", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113699", + "pr_number": 113699, + "kinds": [ + "bug", + "api-change" + ], + "sigs": [ + "network", + "storage", + "api-machinery", + "auth", + "apps" + ], + "duplicate": true, + "duplicate_kind": true + }, + "113710": { + "commit": "e2b9fd760ddb3ab3215e71739b6845629ab533c0", + "text": "CLI flag `pod-eviction-timeout` is deprecated and will be removed together with `enable-taint-manager` in v1.27.", + "markdown": "CLI flag `pod-eviction-timeout` is deprecated and will be removed together with `enable-taint-manager` in v1.27. ([#113710](https://github.com/kubernetes/kubernetes/pull/113710), [@kerthcet](https://github.com/kerthcet))", + "author": "kerthcet", + "author_url": "https://github.com/kerthcet", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113710", + "pr_number": 113710, + "kinds": [ + "feature", + "deprecation" + ], + "sigs": [ + "api-machinery", + "apps" + ], + "feature": true, + "duplicate": true, + "duplicate_kind": true + }, + "113711": { + "commit": "429f1527a7ac94e5280cb41931e74ac52d7a3fb1", + "text": "apiserver: used the correct error when logging errors updating managedFields.", + "markdown": "Apiserver: used the correct error when logging errors updating managedFields. ([#113711](https://github.com/kubernetes/kubernetes/pull/113711), [@andrewsykim](https://github.com/andrewsykim))", + "author": "andrewsykim", + "author_url": "https://github.com/andrewsykim", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113711", + "pr_number": 113711, + "areas": [ + "apiserver" + ], + "kinds": [ + "bug" + ], + "sigs": [ + "api-machinery" + ] + }, + "113719": { + "commit": "e21438fca5f5e6988091bf0b39be51fcc19cfd8b", + "text": "bump runc to v1.1.4.", + "markdown": "Bump runc to v1.1.4. ([#113719](https://github.com/kubernetes/kubernetes/pull/113719), [@pacoxu](https://github.com/pacoxu))", + "author": "pacoxu", + "author_url": "https://github.com/pacoxu", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113719", + "pr_number": 113719, + "areas": [ + "dependency" + ], + "kinds": [ + "bug" + ], + "sigs": [ + "node" + ] + }, + "113735": { + "commit": "72a25b17726b3059982dcc740fb8d05ec0c24f95", + "text": "Renamed the feature gate for CEL in Admission Control to `ValidatingAdmissionPolicy`.", + "markdown": "Renamed the feature gate for CEL in Admission Control to `ValidatingAdmissionPolicy`. ([#113735](https://github.com/kubernetes/kubernetes/pull/113735), [@cici37](https://github.com/cici37))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/master/keps/sig-api-machinery/3488-cel-admission-control", + "type": "KEP" + } + ], + "author": "cici37", + "author_url": "https://github.com/cici37", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113735", + "pr_number": 113735, + "areas": [ + "test", + "apiserver" + ], + "kinds": [ + "cleanup" + ], + "sigs": [ + "api-machinery", + "testing" + ], + "duplicate": true + }, + "113749": { + "commit": "c61c3fc492424bfcfabf132650c2bc4404ef2727", + "text": "NOTE", + "markdown": "NOTE ([#113749](https://github.com/kubernetes/kubernetes/pull/113749), [@jpbetz](https://github.com/jpbetz)) [SIG API Machinery]", + "author": "jpbetz", + "author_url": "https://github.com/jpbetz", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113749", + "pr_number": 113749, + "areas": [ + "apiserver" + ], + "kinds": [ + "bug" + ], + "sigs": [ + "api-machinery" + ] + }, + "113754": { + "commit": "e9ef6ee8b363b4e9b2d2d852ecc436d9bfdbd189", + "text": "'`kubelet_kubelet_credential_provider_plugin_duration` was renamed to `kubelet_credential_provider_plugin_duration`\nand `kubelet_kubelet_credential_provider_plugin_errors` was renamed to `kubelet_credential_provider_plugin_errors`.'\n", + "markdown": "'`kubelet_kubelet_credential_provider_plugin_duration` was renamed to `kubelet_credential_provider_plugin_duration`\n and `kubelet_kubelet_credential_provider_plugin_errors` was renamed to `kubelet_credential_provider_plugin_errors`.'\n ([#113754](https://github.com/kubernetes/kubernetes/pull/113754), [@logicalhan](https://github.com/logicalhan))", + "author": "logicalhan", + "author_url": "https://github.com/logicalhan", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113754", + "pr_number": 113754, + "kinds": [ + "cleanup" + ], + "sigs": [ + "node", + "instrumentation" + ], + "duplicate": true + }, + "113769": { + "commit": "37e73b419e455db34f5fe3e8d815418680ab23df", + "text": "Updated cAdvisor to v0.46.0.", + "markdown": "Updated cAdvisor to v0.46.0. ([#113769](https://github.com/kubernetes/kubernetes/pull/113769), [@bobbypage](https://github.com/bobbypage))", + "author": "bobbypage", + "author_url": "https://github.com/bobbypage", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113769", + "pr_number": 113769, + "areas": [ + "kubectl", + "cloudprovider", + "dependency" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "storage", + "node", + "cli", + "architecture", + "cloud-provider" + ], + "feature": true, + "duplicate": true + }, + "113819": { + "commit": "763f68ef77ec0745d0f0772f381bc7af6001121a", + "text": "Promoted `kubectl alpha events` to `kubectl events`.", + "markdown": "Promoted `kubectl alpha events` to `kubectl events`. ([#113819](https://github.com/kubernetes/kubernetes/pull/113819), [@soltysh](https://github.com/soltysh))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/issues/1440", + "type": "KEP" + } + ], + "author": "soltysh", + "author_url": "https://github.com/soltysh", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113819", + "pr_number": 113819, + "areas": [ + "test", + "kubectl" + ], + "kinds": [ + "feature" + ], + "sigs": [ + "cli", + "testing" + ], + "feature": true, + "duplicate": true + }, + "113856": { + "commit": "af7cc0a60fa01138d56d9f46eee5cd06d01d20f1", + "text": "Known issue: Job field `.spec.podFailurePolicy.rules[*].onExitCode` might be ignored if the Pod is deleted before it terminates.", + "markdown": "Known issue: Job field `.spec.podFailurePolicy.rules[*].onExitCode` might be ignored if the Pod is deleted before it terminates. ([#113856](https://github.com/kubernetes/kubernetes/pull/113856), [@alculquicondor](https://github.com/alculquicondor))", + "documentation": [ + { + "description": "[KEP]", + "url": "https://github.com/kubernetes/enhancements/tree/e3f3faeb899e5739db4bbbd60a56715f6a4e8b45/keps/sig-apps/3329-retriable-and-non-retriable-failures", + "type": "KEP" + } + ], + "author": "alculquicondor", + "author_url": "https://github.com/alculquicondor", + "pr_url": "https://github.com/kubernetes/kubernetes/pull/113856", + "pr_number": 113856, + "kinds": [ + "bug" + ], + "sigs": [ + "apps" ] }, "67782": { @@ -3189,8 +4915,8 @@ }, "86139": { "commit": "ad26b315f230ab0b1ce0ed3afed3f9569bff8457", - "text": "\u003cNONE\u003e", - "markdown": "\u003cNONE\u003e ([#86139](https://github.com/kubernetes/kubernetes/pull/86139), [@jasimmons](https://github.com/jasimmons))", + "text": "'Container `preStop` and `postStart` lifecycle handlers using `httpGet` now\nhonor the specified `scheme` and `headers` fields. This enables setting custom\nheaders and changing the scheme to `HTTPS`, consistent with container\nstartup/readiness/liveness probe capabilities. Lifecycle handlers configured\nwith `scheme: HTTPS` that encounter errors indicating the endpoint is actually\nusing HTTP fall back to making the request over HTTP for compatibility with\nprevious releases. When this happens, a `LifecycleHTTPFallback` event is recorded\nin the namespace of the pod and a `kubelet_lifecycle_handler_http_fallbacks_total`\nmetric in the kubelet is incremented. Cluster administrators can opt out of the\nexpanded lifecycle handler capabilities by setting\n`--feature-gates=ConsistentHTTPGetHandlers=false` in `kubelet`.'\n", + "markdown": "'Container `preStop` and `postStart` lifecycle handlers using `httpGet` now\n honor the specified `scheme` and `headers` fields. This enables setting custom\n headers and changing the scheme to `HTTPS`, consistent with container\n startup/readiness/liveness probe capabilities. Lifecycle handlers configured\n with `scheme: HTTPS` that encounter errors indicating the endpoint is actually\n using HTTP fall back to making the request over HTTP for compatibility with\n previous releases. When this happens, a `LifecycleHTTPFallback` event is recorded\n in the namespace of the pod and a `kubelet_lifecycle_handler_http_fallbacks_total`\n metric in the kubelet is incremented. Cluster administrators can opt out of the\n expanded lifecycle handler capabilities by setting\n `--feature-gates=ConsistentHTTPGetHandlers=false` in `kubelet`.'\n ([#86139](https://github.com/kubernetes/kubernetes/pull/86139), [@jasimmons](https://github.com/jasimmons))", "author": "jasimmons", "author_url": "https://github.com/jasimmons", "pr_url": "https://github.com/kubernetes/kubernetes/pull/86139", diff --git a/releases/release-1.26/release-notes/release-notes-draft.md b/releases/release-1.26/release-notes/release-notes-draft.md index 51fb52e09bc..94e65f8e7e5 100644 --- a/releases/release-1.26/release-notes/release-notes-draft.md +++ b/releases/release-1.26/release-notes/release-notes-draft.md @@ -8,20 +8,86 @@ ### Deprecation +- CLI flag `pod-eviction-timeout` is deprecated and will be removed together with `enable-taint-manager` in v1.27. ([#113710](https://github.com/kubernetes/kubernetes/pull/113710), [@kerthcet](https://github.com/kerthcet)) - Kube-apiserver: the unused `--master-service-namespace` flag was deprecated and will be removed in v1.27. ([#112797](https://github.com/kubernetes/kubernetes/pull/112797), [@SataQiu](https://github.com/SataQiu)) - The `gcp` and `azure` auth plugins have been removed from `client-go` and `kubectl`. See [kubelogin](https://github.com/Azure/kubelogin) and [Kubectl Auth Changes in GKE](https://cloud.google.com/blog/products/containers-kubernetes/kubectl-auth-changes-in-gke) for details about the cloud-specific replacements. ([#112341](https://github.com/kubernetes/kubernetes/pull/112341), [@enj](https://github.com/enj)) ### API Change -- ([#86139](https://github.com/kubernetes/kubernetes/pull/86139), [@jasimmons](https://github.com/jasimmons)) +- 'A new `preEnqueue` extension point was added to scheduler's component config + `v1beta2/v1beta3/v1`.' + ([#113275](https://github.com/kubernetes/kubernetes/pull/113275), [@Huang-Wei](https://github.com/Huang-Wei)) +- 'Added a `ResourceClaim` API (in the `resource.k8s.io/v1alpha1` API group and + behind the `DynamicResourceAllocation` feature gate). + The new API is now more flexible than the existing Device Plugins feature of Kubernetes because it + allows Pods to request (claim) special kinds of resources, which can be available at node level, cluster + level, or following any other model you implement.' ([#111023](https://github.com/kubernetes/kubernetes/pull/111023), [@pohly](https://github.com/pohly)) +- 'Container `preStop` and `postStart` lifecycle handlers using `httpGet` now + honor the specified `scheme` and `headers` fields. This enables setting custom + headers and changing the scheme to `HTTPS`, consistent with container + startup/readiness/liveness probe capabilities. Lifecycle handlers configured + with `scheme: HTTPS` that encounter errors indicating the endpoint is actually + using HTTP fall back to making the request over HTTP for compatibility with + previous releases. When this happens, a `LifecycleHTTPFallback` event is recorded + in the namespace of the pod and a `kubelet_lifecycle_handler_http_fallbacks_total` + metric in the kubelet is incremented. Cluster administrators can opt out of the + expanded lifecycle handler capabilities by setting + `--feature-gates=ConsistentHTTPGetHandlers=false` in `kubelet`.' + ([#86139](https://github.com/kubernetes/kubernetes/pull/86139), [@jasimmons](https://github.com/jasimmons)) +- 'Graduated `JobTrackingWithFinalizers` to stable. + Jobs created before the feature was enabled are still tracked without finalizers. + Jobs tracked with finalizers have the annotation batch.kubernetes.io/job-tracking. + If the annotation is present and the user attempts to remove it, the control plane adds it back. + The annotation `batch.kubernetes.io/job-tracking` is now deprecated. + The control plane will ignore it and stop adding it for new Jobs in v1.27.' ([#113510](https://github.com/kubernetes/kubernetes/pull/113510), [@alculquicondor](https://github.com/alculquicondor)) +- 'Kubelet added the following Pod failure conditions: + - `DisruptionTarget` (graceful node shutdown, node pressure eviction)' ([#112360](https://github.com/kubernetes/kubernetes/pull/112360), [@mimowo](https://github.com/mimowo)) +- 'Priority and Fairness has introduced a new feature called _borrowing_ that allows an API priority level + to borrow a number of seats from other priority level(s). As a cluster operator, you can enable borrowing + for a certain priority level configuration object via the two newly introduced fields `lendablePercent`, and + `borrowingLimitPercent` located under the `.spec.limited` field of the designated priority level. + This change added the following metrics: + - `apiserver_flowcontrol_nominal_limit_seats`: Nominal number of execution seats configured for each priority level + - `apiserver_flowcontrol_lower_limit_seats`: Configured lower bound on number of execution seats available to each priority level + - `apiserver_flowcontrol_upper_limit_seats`: Configured upper bound on number of execution seats available to each priority level + - `apiserver_flowcontrol_demand_seats`: Observations, at the end of every nanosecond, of (the number of seats each priority level could use) / (nominal number of seats for that level) + - `apiserver_flowcontrol_demand_seats_high_watermark`: High watermark, over last adjustment period, of demand_seats + - `apiserver_flowcontrol_demand_seats_average`: Time-weighted average, over last adjustment period, of demand_seats + - `apiserver_flowcontrol_demand_seats_stdev`: Time-weighted standard deviation, over last adjustment period, of demand_seats + - `apiserver_flowcontrol_demand_seats_smoothed`: Smoothed seat demands + - `apiserver_flowcontrol_target_seats`: Seat allocation targets + - `apiserver_flowcontrol_seat_fair_frac`: Fair fraction of server's concurrency to allocate to each priority level that can use it + - `apiserver_flowcontrol_current_limit_seats`: current derived number of execution seats available to each priority level + The possibility of borrowing means that the old metric `apiserver_flowcontrol_request_concurrency_limit` can no longer mean both the configured concurrency limit and the enforced concurrency limit. Henceforth it means the configured concurrency limit.' ([#113485](https://github.com/kubernetes/kubernetes/pull/113485), [@MikeSpreitzer](https://github.com/MikeSpreitzer)) +- '`NodeInclusionPolicy` in `podTopologySpread` plugin is now enabled by default.' + ([#113500](https://github.com/kubernetes/kubernetes/pull/113500), [@kerthcet](https://github.com/kerthcet)) +- '`PodDisruptionBudget` now adds an alpha `spec.unhealthyPodEvictionPolicy` field. + When the `PDBUnhealthyPodEvictionPolicy` feature-gate is enabled in `kube-apiserver`, + setting this field to `"AlwaysAllow"` allows pods to be evicted if they do not + have a ready condition, regardless of whether the PodDisruptionBudget is currently + healthy.' + ([#113375](https://github.com/kubernetes/kubernetes/pull/113375), [@atiratree](https://github.com/atiratree)) +- '`metav1.LabelSelectors` specified in API objects are now validated to ensure + they do not contain invalid label values that will error at time of use. Existing + invalid objects can be updated, but new objects are required to contain valid + label selectors.' + ([#113699](https://github.com/kubernetes/kubernetes/pull/113699), [@liggitt](https://github.com/liggitt)) - Add `percentageOfNodesToScore` as a scheduler profile level parameter to API version `v1`. When a profile `percentageOfNodesToScore` is set, it will override global `percentageOfNodesToScore`. ([#112521](https://github.com/kubernetes/kubernetes/pull/112521), [@yuanchen8911](https://github.com/yuanchen8911)) - Add auth API to get self subject attributes (new selfsubjectreviews API is added). The corresponding command for kubctl is provided - `kubectl auth whoami`. ([#111333](https://github.com/kubernetes/kubernetes/pull/111333), [@nabokihms](https://github.com/nabokihms)) [SIG API Machinery, Auth, CLI and Testing] - Added `kubernetes_feature_enabled` metric series to track whether each active feature gate is enabled. ([#112690](https://github.com/kubernetes/kubernetes/pull/112690), [@logicalhan](https://github.com/logicalhan)) +- Added a `--topology-manager-policy-options` flag to the kubelet to support fine tuning the topology manager policies. The first policy option, `prefer-closest-numa-nodes`, allows these policies to favor sets of NUMA nodes with shorter distance between nodes when making admission decisions. ([#112914](https://github.com/kubernetes/kubernetes/pull/112914), [@PiotrProkop](https://github.com/PiotrProkop)) +- Added a feature that allows a `StatefulSet` to start numbering replicas from an arbitrary non-negative ordinal, using the `.spec.ordinals.start` field. ([#112744](https://github.com/kubernetes/kubernetes/pull/112744), [@pwschuurman](https://github.com/pwschuurman)) +- Added a kube-proxy flag (`--iptables-localhost-nodeports`, default true) to allow disabling NodePort services on loopback addresses. Note: this only applies to iptables mode and ipv4. ([#108250](https://github.com/kubernetes/kubernetes/pull/108250), [@cyclinder](https://github.com/cyclinder)) +- Added a new namespace alpha field to `DataSourceRef` field in `PersistentVolumeClaim` API. ([#113186](https://github.com/kubernetes/kubernetes/pull/113186), [@ttakahashi21](https://github.com/ttakahashi21)) +- Aggregated discovery will be alpha and can be toggled with the `AggregatedDiscoveryEndpoint` feature flag. ([#113171](https://github.com/kubernetes/kubernetes/pull/113171), [@Jefftree](https://github.com/Jefftree)) - Clarified the CFS quota as 100ms in the code comments and set the minimum `cpuCFSQuotaPeriod` to 1ms to match Linux kernel expectations. ([#112123](https://github.com/kubernetes/kubernetes/pull/112123), [@paskal](https://github.com/paskal)) - Component-base: make the validation logic about LeaderElectionConfiguration consistent between component-base and client-go ([#111758](https://github.com/kubernetes/kubernetes/pull/111758), [@SataQiu](https://github.com/SataQiu)) [SIG API Machinery and Scheduling] +- Deprecated the `apiserver_request_slo_duration_seconds` metric for v1.27 in favor of `apiserver_request_sli_duration_seconds` for naming consistency purposes with other SLI-specific metrics and to avoid any confusion between SLOs and SLIs. ([#112679](https://github.com/kubernetes/kubernetes/pull/112679), [@dgrisonnet](https://github.com/dgrisonnet)) +- Enable the "Retriable and non-retriable pod failures for jobs" feature into beta. ([#113360](https://github.com/kubernetes/kubernetes/pull/113360), [@mimowo](https://github.com/mimowo)) - Enabled `kube-controller-manager` to support '--concurrent-horizontal-pod-autoscaler-syncs' flag to set the number of horizontal pod autoscaler controller workers. ([#108501](https://github.com/kubernetes/kubernetes/pull/108501), [@zroubalik](https://github.com/zroubalik)) - Fixed spurious `field is immutable` errors validating updates to Event API objects via the `events.k8s.io/v1` API. ([#112183](https://github.com/kubernetes/kubernetes/pull/112183), [@liggitt](https://github.com/liggitt)) +- Graduated `ServiceInternalTrafficPolicy` feature to GA. ([#113496](https://github.com/kubernetes/kubernetes/pull/113496), [@avoltz](https://github.com/avoltz)) - In 'kube-proxy`: The "userspace" proxy mode (deprecated for over a year) is no longer supported on either Linux or Windows. Users should use "iptables" or "ipvs" on Linux, or "kernelspace" on Windows. @@ -29,12 +95,16 @@ - Introduce `v1beta3` for Priority and Fairness with the following changes to the API spec: - rename 'assuredConcurrencyShares' (located under `spec.limited') to 'nominalConcurrencyShares'. - apply strategic merge patch annotations to 'Conditions' of flowschemas and `prioritylevelconfigurations`. ([#112306](https://github.com/kubernetes/kubernetes/pull/112306), [@tkashem](https://github.com/tkashem)) +- Introduced `v1alpha1` API for validating admission policies, enabling extensible admission control via CEL expressions (KEP 3488: CEL for Admission Control). To use, enable the `ValidatingAdmissionPolicy` feature gate and the `admissionregistration.k8s.io/v1alpha1` API via `--runtime-config`. ([#113314](https://github.com/kubernetes/kubernetes/pull/113314), [@cici37](https://github.com/cici37)) +- KMS: added validation for duplicate kms config name when auto reload is enabled. If you enabled automatic reload of encryption configuration with API server flag `--encryption-provider-config-automatic-reload`, ensure all the KMS provider names (v1 and v2) in the encryption configuration are unique. ([#113697](https://github.com/kubernetes/kubernetes/pull/113697), [@aramase](https://github.com/aramase)) - Kubelet external Credential Provider feature is moved to GA. Credential Provider Plugin and Credential Provider Config APIs updated from `v1beta1` to `v1` with no API changes. ([#111616](https://github.com/kubernetes/kubernetes/pull/111616), [@ndixita](https://github.com/ndixita)) -- Kubelet: changed default value of `cpuCFSQuotaPeriod` from 100ms to 100µs to match the Linux CFS and k8s defaults. `cpuCFSQuotaPeriod` of 100ms now requires `customCPUCFSQuotaPeriod` flag to be set to work. ([#111520](https://github.com/kubernetes/kubernetes/pull/111520), [@paskal](https://github.com/paskal)) - Legacy klog flags are no longer available. Only `-v` and `-vmodule` are still supported. ([#112120](https://github.com/kubernetes/kubernetes/pull/112120), [@pohly](https://github.com/pohly)) [SIG Architecture, CLI, Instrumentation, Node and Testing] +- Moved `MixedProtocolLBService` from beta to GA. ([#112895](https://github.com/kubernetes/kubernetes/pull/112895), [@janosi](https://github.com/janosi)) +- New Pod API field `.spec.schedulingGates` is introduced to enable users to control when to mark a Pod as scheduling ready. ([#113274](https://github.com/kubernetes/kubernetes/pull/113274), [@Huang-Wei](https://github.com/Huang-Wei)) - Protobuf serialization of metav1.MicroTime timestamps (used in `Lease` and `Event` API objects) has been corrected to truncate to microsecond precision, to match the documented behavior and JSON/YAML serialization. Any existing persisted data is truncated to microsecond when read from etcd. ([#111936](https://github.com/kubernetes/kubernetes/pull/111936), [@haoruan](https://github.com/haoruan)) - Removed feature gates `ServiceLoadBalancerClass` and `ServiceLBNodePortControl`. These feature gates were enabled (and locked) since `v1.24`. ([#112577](https://github.com/kubernetes/kubernetes/pull/112577), [@andrewsykim](https://github.com/andrewsykim)) - Reverted regression that prevented `client-go` latency metrics to be reported with a template URL to avoid label cardinality. ([#111752](https://github.com/kubernetes/kubernetes/pull/111752), [@aanm](https://github.com/aanm)) +- The `EndpointSliceTerminatingCondition` feature gate was graduated to GA. The gate is now locked and will be removed in v1.28. ([#113351](https://github.com/kubernetes/kubernetes/pull/113351), [@andrewsykim](https://github.com/andrewsykim)) - `DynamicKubeletConfig` feature gate has been removed from the API server. Dynamic kubelet reconfiguration now can't be used even when older nodes are still attempting to rely on it. This is aligned with the Kubernetes version skew policy. @@ -44,12 +114,44 @@ ### Feature +- 'Added selector validation to `HorizontalPodAutoscaler`: when multiple HPAs + select the same set of Pods, scaling now will be disabled for those HPAs with + the reason `AmbiguousSelector`. This change also covers a case when multiple HPAs + point to the same deployment.' + ([#112011](https://github.com/kubernetes/kubernetes/pull/112011), [@pbeschetnov](https://github.com/pbeschetnov)) +- 'Pod Security admission: the pod-security `warn` level will now default to + the `enforce` level.' + ([#113491](https://github.com/kubernetes/kubernetes/pull/113491), [@tallclair](https://github.com/tallclair)) +- 'Promoted the `APIServerIdentity` feature to Beta. By default, each `kube-apiserver` + will now create a Lease in the `kube-system` namespace. These lease objects can + be used to identify the number of active API servers in the cluster, and may also + be used for future features such as the Storage Version API.' + ([#113629](https://github.com/kubernetes/kubernetes/pull/113629), [@andrewsykim](https://github.com/andrewsykim)) +- 'The iptables kube-proxy backend now process service/endpoint changes + more efficiently in very large clusters.' ([#110268](https://github.com/kubernetes/kubernetes/pull/110268), [@danwinship](https://github.com/danwinship)) +- '`CSIMigrationvSphere` was upgraded to GA and locked to true. Do not upgrade to K8s + 1.26 if you need Windows, or XFS, or raw block support until vSphere CSI Driver + adds support for them in a version post v2.7.x.' + ([#113336](https://github.com/kubernetes/kubernetes/pull/113336), [@divyenpatel](https://github.com/divyenpatel)) +- '`DelegateFSGroupToCSIDriver` feature is GA.' + ([#113225](https://github.com/kubernetes/kubernetes/pull/113225), [@bertinatto](https://github.com/bertinatto)) +- '`NodeOutOfServiceVolumeDetach` is now beta.' + ([#113511](https://github.com/kubernetes/kubernetes/pull/113511), [@xing-yang](https://github.com/xing-yang)) +- '`RetroactiveDefaultStorageClass` feature is now beta.' + ([#113329](https://github.com/kubernetes/kubernetes/pull/113329), [@RomanBednar](https://github.com/RomanBednar)) +- '`registered_metric_total` will now report the number of metrics broken down by + stability level and deprecated version.' + ([#112907](https://github.com/kubernetes/kubernetes/pull/112907), [@logicalhan](https://github.com/logicalhan)) - A new `DisableCompression` field (default = `false`) has been added to kubeconfig under cluster info. When set to `true`, clients using the kubeconfig opt out of response compression for all requests to the apiserver. This can help improve list call latencies significantly when client-server network bandwidth is ample (>30MB/s) or if the server is CPU-constrained. ([#112309](https://github.com/kubernetes/kubernetes/pull/112309), [@shyamjvs](https://github.com/shyamjvs)) - A new `pod_status_sync_duration_seconds` histogram is reported at alpha metrics stability that estimates how long the Kubelet takes to write a pod status change once it is detected. ([#107896](https://github.com/kubernetes/kubernetes/pull/107896), [@smarterclayton](https://github.com/smarterclayton)) [SIG Apps, Architecture, CLI, Cloud Provider, Cluster Lifecycle, Instrumentation, Network, Node, Release, Scheduling, Storage and Testing] - API Server Tracing now includes a variety of new spans and span events. ([#113172](https://github.com/kubernetes/kubernetes/pull/113172), [@dashpole](https://github.com/dashpole)) [SIG API Machinery, Architecture, Auth, Instrumentation, Network, Node and Scheduling] +- API Server tracing now includes the latency of authorization, priorityandfairness, impersonation, audit, and authentication filters. ([#113217](https://github.com/kubernetes/kubernetes/pull/113217), [@dashpole](https://github.com/dashpole)) - API Server tracing root span name for opentelemetry is changed from `KubernetesAPI` to `HTTP GET`. ([#112545](https://github.com/kubernetes/kubernetes/pull/112545), [@dims](https://github.com/dims)) - Added `--disable-compression` flag to `kubectl` (default = false). When true, it opts out of response compression for all requests to the `apiserver`. This can help improve list call latencies significantly when client-server network bandwidth is ample (>30MB/s) or if the server is CPU-constrained. ([#112580](https://github.com/kubernetes/kubernetes/pull/112580), [@shyamjvs](https://github.com/shyamjvs)) +- Added a method `StreamWithContext` to `remotecommand.Executor` to support cancelable SPDY executor stream. ([#103177](https://github.com/kubernetes/kubernetes/pull/103177), [@arkbriar](https://github.com/arkbriar)) - Added a new feature gate `CelValidatingAdmissionExtensibility` to enable expression validation for Admission Control. ([#112792](https://github.com/kubernetes/kubernetes/pull/112792), [@cici37](https://github.com/cici37)) [SIG API Machinery] +- Added alpha support for `WindowsHostNetworking` feature. ([#112961](https://github.com/kubernetes/kubernetes/pull/112961), [@marosset](https://github.com/marosset)) +- Added alpha support for returning container and pod metrics from CRI, instead of cAdvsior. ([#113609](https://github.com/kubernetes/kubernetes/pull/113609), [@haircommander](https://github.com/haircommander)) - Added categories column to the `kubectl api-resources` command's wide output (`-o wide`). Added `--categories` flag to the `kubectl api-resources` command, which can be used to filter the output to show only resources belonging to one or more categories. ([#111096](https://github.com/kubernetes/kubernetes/pull/111096), [@brianpursley](https://github.com/brianpursley)) [SIG CLI] - Added kubelet metrics to track the cpumanager cpu allocation and pinning ([#112855](https://github.com/kubernetes/kubernetes/pull/112855), [@fromanirh](https://github.com/fromanirh)) @@ -84,13 +186,23 @@ - go_sched_goroutines_goroutines - go_sched_latencies_seconds ([#111910](https://github.com/kubernetes/kubernetes/pull/111910), [@tosi3k](https://github.com/tosi3k)) - Added new metric `job_controller_terminated_pods_tracking_finalizer` which can be used to monitor whether the job controller is removing Pod finalizers from terminated Pods after accounting them in Job status. ([#113176](https://github.com/kubernetes/kubernetes/pull/113176), [@alculquicondor](https://github.com/alculquicondor)) +- Added publishing events when enabling/disabling `TopologyAwareHints`. ([#113544](https://github.com/kubernetes/kubernetes/pull/113544), [@LiorLieberman](https://github.com/LiorLieberman)) +- Added reconstruction of SELinux mount context after kubelet restart. Feature `SELinuxMountReadWriteOncePod` is now fully implemented and kubelet does not lose its cache of SELinux contexts after kubelet process restart. ([#113596](https://github.com/kubernetes/kubernetes/pull/113596), [@jsafrane](https://github.com/jsafrane)) +- Added support for Evented PLEG feature gate. ([#111384](https://github.com/kubernetes/kubernetes/pull/111384), [@harche](https://github.com/harche)) +- Added the metric `pod_start_sli_duration_seconds` to kubelet. ([#111930](https://github.com/kubernetes/kubernetes/pull/111930), [@azylinski](https://github.com/azylinski)) - Added validation for the `--container-runtime-endpoint` flag of kubelet to be non-empty. ([#112542](https://github.com/kubernetes/kubernetes/pull/112542), [@astraw99](https://github.com/astraw99)) +- Adds alpha --output plaintext protected by environment variable `KUBECTL_EXPLAIN_OPENAPIV3` ([#113146](https://github.com/kubernetes/kubernetes/pull/113146), [@alexzielenski](https://github.com/alexzielenski)) [SIG CLI] +- Adds metrics `force_delete_pods_total` and `force_delete_pod_errors_total` in the Pod GC Controller. ([#113519](https://github.com/kubernetes/kubernetes/pull/113519), [@xing-yang](https://github.com/xing-yang)) [SIG Apps] +- Azure File CSI migration is now GA. ([#113160](https://github.com/kubernetes/kubernetes/pull/113160), [@andyzhangx](https://github.com/andyzhangx)) - Changed `preemption_victims` metric bucket from `LinearBuckets` to `ExponentialBuckets`. ([#112939](https://github.com/kubernetes/kubernetes/pull/112939), [@lengrongfu](https://github.com/lengrongfu)) - Exposed health check SLI metrics on `metrics/slis` for apiserver. ([#112741](https://github.com/kubernetes/kubernetes/pull/112741), [@logicalhan](https://github.com/logicalhan)) - Extend the job `job_finished_total metric by new `reason` label and introduce a new job metric to count pod failures handled by pod failure policy with respect to the action applied. ([#113324](https://github.com/kubernetes/kubernetes/pull/113324), [@mimowo](https://github.com/mimowo)) [SIG Apps and Testing] - Graduate `ServiceIPStaticSubrange` feature to GA. ([#112163](https://github.com/kubernetes/kubernetes/pull/112163), [@aojea](https://github.com/aojea)) +- Graduated Kubelet CPU Manager to GA. ([#113018](https://github.com/kubernetes/kubernetes/pull/113018), [@fromanirh](https://github.com/fromanirh)) +- Graduated Kubelet Device Manager to GA. ([#112980](https://github.com/kubernetes/kubernetes/pull/112980), [@swatisehgal](https://github.com/swatisehgal)) - If `ComponentSLIs` feature gate is enabled, then `/metrics/slis` becomes available on kubelet, allowing you to scrape health check metrics. ([#113030](https://github.com/kubernetes/kubernetes/pull/113030), [@Richabanker](https://github.com/Richabanker)) [SIG Node] +- If `ComponentSLIs` feature gate is enabled, then `/metrics/slis` now becomes available on cloud-controller-manager allowing you to scrape health check metrics. ([#113340](https://github.com/kubernetes/kubernetes/pull/113340), [@Richabanker](https://github.com/Richabanker)) - If more than one StorageClass is designated as default (via the "storageclass.kubernetes.io/is-default-class" annotation), choose the newest one instead of throwing an error.' ([#110559](https://github.com/kubernetes/kubernetes/pull/110559), [@danishprakash](https://github.com/danishprakash)) - In 'client-go` `SharedInformerFactory` will now support waiting for goroutines during shutdown. ([#112200](https://github.com/kubernetes/kubernetes/pull/112200), [@pohly](https://github.com/pohly)) @@ -101,16 +213,24 @@ - Kubeadm: now supports image repository format validation. ([#112732](https://github.com/kubernetes/kubernetes/pull/112732), [@SataQiu](https://github.com/SataQiu)) - Kubeadm: sub-phases are now able to support the dry-run mode, e.g. kubeadm reset phase cleanup-node --dry-run ([#112945](https://github.com/kubernetes/kubernetes/pull/112945), [@chendave](https://github.com/chendave)) [SIG Cluster Lifecycle] - Kubeadm: tried to load CA cert from external CertificateAuthority file when CertificateAuthorityData is empty for existing kubeconfig. ([#111783](https://github.com/kubernetes/kubernetes/pull/111783), [@SataQiu](https://github.com/SataQiu)) +- Kubectl shell completions for the bash shell now include descriptions. ([#113636](https://github.com/kubernetes/kubernetes/pull/113636), [@marckhouzam](https://github.com/marckhouzam)) - Kubernetes is now built with Go 1.19.1 ([#112287](https://github.com/kubernetes/kubernetes/pull/112287), [@palnabarun](https://github.com/palnabarun)) [SIG Release and Testing] - Kubernetes is now built with Go 1.19.2 ([#112900](https://github.com/kubernetes/kubernetes/pull/112900), [@xmudrii](https://github.com/xmudrii)) [SIG Release and Testing] +- Kubernetes is now built with Go 1.19.3. ([#113550](https://github.com/kubernetes/kubernetes/pull/113550), [@xmudrii](https://github.com/xmudrii)) - Logs of requests that were timed out by a timeout handler no longer contain a `statusStack` and `logging error output` fields. ([#112374](https://github.com/kubernetes/kubernetes/pull/112374), [@Argh4k](https://github.com/Argh4k)) - Metrics for `RetroactiveDefaultStorageClass` feature are now available. To see an attempt count for updating PVC retroactively with a default StorageClass see `retroactive_storageclass_total` metric and for total numer of errors see `retroactive_storageclass_errors_total`. ([#113323](https://github.com/kubernetes/kubernetes/pull/113323), [@RomanBednar](https://github.com/RomanBednar)) +- Promoted `kubectl alpha events` to `kubectl events`. ([#113819](https://github.com/kubernetes/kubernetes/pull/113819), [@soltysh](https://github.com/soltysh)) +- Promoting `WindowsHostProcessContainers` to stable. ([#113476](https://github.com/kubernetes/kubernetes/pull/113476), [@marosset](https://github.com/marosset)) - Scheduler now retries updating a pod's status on `ServiceUnavailable` and `InternalError` errors, in addition to `net.ConnectionRefused` error. ([#111809](https://github.com/kubernetes/kubernetes/pull/111809), [@Huang-Wei](https://github.com/Huang-Wei)) -- Shell completion now shows plugin names when appropriate. Furthermore, shell completion will work for plugins that provide such support. ([#105867](https://github.com/kubernetes/kubernetes/pull/105867), [@marckhouzam](https://github.com/marckhouzam)) +- Shell completion now shows plugin names when appropriate. Furthermore, shell completion will work for plugins that provide such support. ([#105867](https://github.com/kubernetes/kubernetes/pull/105867), [@marckhouzam](https://github.com/marckhouzam)) - Switched kubectl to use `github.com/russross/blackfriday/v2` ([#112731](https://github.com/kubernetes/kubernetes/pull/112731), [@pacoxu](https://github.com/pacoxu)) - The ExpandedDNSConfig feature has graduated to beta and is enabled by default. Note that this feature requires container runtime support. ([#112824](https://github.com/kubernetes/kubernetes/pull/112824), [@gjkim42](https://github.com/gjkim42)) [SIG Network and Testing] +- The `LegacyServiceAccountTokenNoAutoGeneration` feature gate was promoted to GA. ([#112838](https://github.com/kubernetes/kubernetes/pull/112838), [@zshihang](https://github.com/zshihang)) +- The `ProxyTerminatingEndpoints` feature is now Beta and enabled by default. When enabled, kube-proxy will attempt to route traffic to terminating pods when the traffic policy is `Local` and there are only terminating pods remaining on a node. ([#113363](https://github.com/kubernetes/kubernetes/pull/113363), [@andrewsykim](https://github.com/andrewsykim)) - The `goroutines` metric is newly added in the scheduler. It replaces `scheduler_goroutines` metric and it counts the number of goroutine in more places than `scheduler_goroutine` does. ([#112003](https://github.com/kubernetes/kubernetes/pull/112003), [@sanposhiho](https://github.com/sanposhiho)) [SIG Instrumentation and Scheduling] +- Updated cAdvisor to v0.46.0. ([#113769](https://github.com/kubernetes/kubernetes/pull/113769), [@bobbypage](https://github.com/bobbypage)) +- Updated the Lease identity naming format for the `APIServerIdentity` feature to use a persistent name. ([#113307](https://github.com/kubernetes/kubernetes/pull/113307), [@andrewsykim](https://github.com/andrewsykim)) - When `ComponentSLIs` feature gate is enabled, `/metrics/slis` becomes available on kube-scheduler, allowing you to scrape health check metrics. ([#113026](https://github.com/kubernetes/kubernetes/pull/113026), [@Richabanker](https://github.com/Richabanker)) - When `ComponentSLIs` feature gate is enabled, then `/metrics/slis` becomes available on `kube-proxy` allowing you to scrape health check metrics. ([#113057](https://github.com/kubernetes/kubernetes/pull/113057), [@Richabanker](https://github.com/Richabanker)) - When `ComponentSLIs` feature gate is enabled, then `/metrics/slis` becomes available on kube-controller-manager, allowing you to scrape health check metrics. ([#112978](https://github.com/kubernetes/kubernetes/pull/112978), [@logicalhan](https://github.com/logicalhan)) @@ -118,9 +238,7 @@ - `CSRDuration` feature gate that graduated to GA in 1.24 and is unconditionally enabled now removed in v1.26. ([#112386](https://github.com/kubernetes/kubernetes/pull/112386), [@Shubham82](https://github.com/Shubham82)) -- `registered_metric_total` will now report the number of metrics broken down by - stability level and deprecated version. - ([#112907](https://github.com/kubernetes/kubernetes/pull/112907), [@logicalhan](https://github.com/logicalhan)) +- `kubectl config view` now automatically redacts any secret fields marked with a `datapolicy` tag. ([#109189](https://github.com/kubernetes/kubernetes/pull/109189), [@mpuckett159](https://github.com/mpuckett159)) ### Documentation @@ -132,13 +250,16 @@ - Added support for RSA and ECDSA format keys in preflight check on `kubeadm`. ([#112508](https://github.com/kubernetes/kubernetes/pull/112508), [@SataQiu](https://github.com/SataQiu)) - Allowed `Label` section in vSphere e2e cloud provider configuration. ([#112427](https://github.com/kubernetes/kubernetes/pull/112427), [@gnufied](https://github.com/gnufied)) - Apiserver `/healthz/etcd` endpoint rate limits the number of forwarded health check requests to the etcd backends, answering with the last known state if the rate limit is exceeded. The rate limit is based on 1/2 of the timeout configured, with no burst allowed. ([#112046](https://github.com/kubernetes/kubernetes/pull/112046), [@aojea](https://github.com/aojea)) +- Apiserver: used the correct error when logging errors updating managedFields. ([#113711](https://github.com/kubernetes/kubernetes/pull/113711), [@andrewsykim](https://github.com/andrewsykim)) - Avoided propagating hosts `search .` into containers in `/etc/resolv.conf`. ([#112157](https://github.com/kubernetes/kubernetes/pull/112157), [@dghubble](https://github.com/dghubble)) - Bump `golang.org/x/net` to `v0.1.1-0.20221027164007-c63010009c80`. ([#112693](https://github.com/kubernetes/kubernetes/pull/112693), [@aimuz](https://github.com/aimuz)) +- Bump runc to v1.1.4. ([#113719](https://github.com/kubernetes/kubernetes/pull/113719), [@pacoxu](https://github.com/pacoxu)) - Callers using `DelegatingAuthenticationOptions` can now use `DisableAnonymous` to disable Anonymous authentication. ([#112181](https://github.com/kubernetes/kubernetes/pull/112181), [@xueqzhan](https://github.com/xueqzhan)) - Changed error message when resource is not supported by given patch type in `kubectl patch`. ([#112556](https://github.com/kubernetes/kubernetes/pull/112556), [@ardaguclu](https://github.com/ardaguclu)) - Correct the calculating error in `podTopologySpread` plugin to avoid unexpected scheduling results. ([#112507](https://github.com/kubernetes/kubernetes/pull/112507), [@kerthcet](https://github.com/kerthcet)) - Etcd: Updated to v3.5.5. ([#112489](https://github.com/kubernetes/kubernetes/pull/112489), [@dims](https://github.com/dims)) - Fixed Admission controllers that caused unnecessary significant load on `apiserver'. ([#112696](https://github.com/kubernetes/kubernetes/pull/112696), [@aimuz](https://github.com/aimuz)) +- Fixed `DaemonSet` to update the status even if it fails to create a pod. ([#112127](https://github.com/kubernetes/kubernetes/pull/112127), [@gjkim42](https://github.com/gjkim42)) - Fixed a bug where a change in the `appProtocol` for a Service did not trigger a load balancer update. ([#112785](https://github.com/kubernetes/kubernetes/pull/112785), [@MartinForReal](https://github.com/MartinForReal)) [SIG Cloud Provider and Network] - Fixed a bug where the kubelet choose the wrong container by its name when running `kubectl exec`. ([#113041](https://github.com/kubernetes/kubernetes/pull/113041), [@saschagrunert](https://github.com/saschagrunert)) - Fixed an ephemeral port exhaustion bug caused by improper connection management that occurred when a large number of objects were handled by `kubectl` while exec auth was in use. ([#112017](https://github.com/kubernetes/kubernetes/pull/112017), [@enj](https://github.com/enj)) @@ -146,16 +267,21 @@ - Fixed bug in `kubectl rollout history` where only the latest revision was displayed when a specific revision was requested and an output format was specified. ([#111093](https://github.com/kubernetes/kubernetes/pull/111093), [@brianpursley](https://github.com/brianpursley)) - Fixed bug where dry run message was not printed when running `kubectl label` with `--dry-run` flag. ([#111571](https://github.com/kubernetes/kubernetes/pull/111571), [@brianpursley](https://github.com/brianpursley)) - Fixed code to ensure that pods running on nodes tainted with `NoExecute` continue to run when the `PodDisruptionConditions` feature gate is enabled. ([#112518](https://github.com/kubernetes/kubernetes/pull/112518), [@mimowo](https://github.com/mimowo)) +- Fixed cost estimation of token creation request for service account in Priority and Fairness. ([#113206](https://github.com/kubernetes/kubernetes/pull/113206), [@marseel](https://github.com/marseel)) - Fixed issue where the APIServer would panic on startup if an egress selector without a controlplane configuration is specified when using APIServerTracing. ([#112979](https://github.com/kubernetes/kubernetes/pull/112979), [@dashpole](https://github.com/dashpole)) - Fixed list cost estimation in Priority and Fairness for list requests with `metadata.name` specified. ([#112557](https://github.com/kubernetes/kubernetes/pull/112557), [@marseel](https://github.com/marseel)) - Fixed race condition in GCE between containerized mounter setup in the kubelet. ([#112195](https://github.com/kubernetes/kubernetes/pull/112195), [@mattcary](https://github.com/mattcary)) - Fixed relative CPU priority for pods where containers explicitly request zero cpu by giving the lowest priority instead of falling back to the cpu limit to avoid possible cpu starvation of other pods. ([#108832](https://github.com/kubernetes/kubernetes/pull/108832), [@waynepeking348](https://github.com/waynepeking348)) +- Fixed that disruption controller used to change the status of a stale disruption condition after 2 min when the `PodDisruptionConditions` feature gate is enabled. ([#113580](https://github.com/kubernetes/kubernetes/pull/113580), [@mimowo](https://github.com/mimowo)) +- Fixed the `PodAndContainerStatsFromCRI` feature, instead of supplementing with stats from cAdvisor. ([#113291](https://github.com/kubernetes/kubernetes/pull/113291), [@mengjiao-liu](https://github.com/mengjiao-liu)) - Fixed the occasional double-counting of the `job_finished_total` metric. ([#112948](https://github.com/kubernetes/kubernetes/pull/112948), [@mimowo](https://github.com/mimowo)) +- For `kubectl`, `--server-side` now migrates ownership of all fields used by client-side-apply to the specified `--fieldmanager`. This prevents fields previously specified using kubectl from being able to live outside of server-side-apply's management and become undeleteable. ([#112905](https://github.com/kubernetes/kubernetes/pull/112905), [@alexzielenski](https://github.com/alexzielenski)) - For raw block CSI volumes on Kubernetes, kubelet was incorrectly calling CSI `NodeStageVolume` for every single "map" (i.e. raw block "mount") operation for a volume already attached to the node. This change modified that behavior to ensure it is only called once per volume per node. ([#112403](https://github.com/kubernetes/kubernetes/pull/112403), [@akankshakumari393](https://github.com/akankshakumari393)) - Improved `kubectl` display of invalid request errors returned by the API server. ([#112150](https://github.com/kubernetes/kubernetes/pull/112150), [@liggitt](https://github.com/liggitt)) - In 'kube-apiserver`,`x-kubernetes-list-type` validation is now enforced when updating status of custom resources.' ([#111866](https://github.com/kubernetes/kubernetes/pull/111866), [@pacoxu](https://github.com/pacoxu)) - In `kube-apiserver`, custom resources can now be specified in the `--encryption-provider-config` file and can be encrypted in etcd. ([#113015](https://github.com/kubernetes/kubernetes/pull/113015), [@ritazh](https://github.com/ritazh)) - Increased the maximum backoff delay of the endpointslice controller to match the expected sequence of delays when syncing Services. ([#112353](https://github.com/kubernetes/kubernetes/pull/112353), [@dgrisonnet](https://github.com/dgrisonnet)) +- Known issue: Job field `.spec.podFailurePolicy.rules[*].onExitCode` might be ignored if the Pod is deleted before it terminates. ([#113856](https://github.com/kubernetes/kubernetes/pull/113856), [@alculquicondor](https://github.com/alculquicondor)) - Kube-apiserver: `DELETECOLLECTION API` requests are now recorded in metrics with the correct verb. ([#113133](https://github.com/kubernetes/kubernetes/pull/113133), [@sxllwx](https://github.com/sxllwx)) - Kube-apiserver: redirect responses are no longer returned from backends by default. Set `--aggregator-reject-forwarding-redirect=false` to continue forwarding redirect responses. ([#112193](https://github.com/kubernetes/kubernetes/pull/112193), [@jindijamie](https://github.com/jindijamie)) [SIG API Machinery and Testing] - Kube-apiserver: redirects from backend API servers are no longer followed when checking availability with requests to `/apis/$group/$version` ([#112772](https://github.com/kubernetes/kubernetes/pull/112772), [@liggitt](https://github.com/liggitt)) [SIG API Machinery and Testing] @@ -165,6 +291,7 @@ - Kubeadm will cleanup the stale data on best effort basis. Stale data will be removed when each reset phase are executed, default etcd data directory will be cleanup when the `remove-etcd-member` phase are executed. ([#110972](https://github.com/kubernetes/kubernetes/pull/110972), [@chendave](https://github.com/chendave)) [SIG Cluster Lifecycle] - Kubeadm: fixed a bug when performing validation on `ClusterConfiguration` networking fields. ([#112751](https://github.com/kubernetes/kubernetes/pull/112751), [@SataQiu](https://github.com/SataQiu)) - Kubeadm: when a sub command is needed but not provided for a kubeadm command, print a help screen instead of showing a short message. ([#111277](https://github.com/kubernetes/kubernetes/pull/111277), [@chymy](https://github.com/chymy)) +- Kubectl apply: warning that kubectl will ignore no-namespaced resource `pv & namespace` in a future release if the namespace is specified and allowlist is not specified. ([#110907](https://github.com/kubernetes/kubernetes/pull/110907), [@pacoxu](https://github.com/pacoxu)) - Kubectl: fixed a bug where `kubectl convert` did not pick the right API version ([#112700](https://github.com/kubernetes/kubernetes/pull/112700), [@SataQiu](https://github.com/SataQiu)) - Kubelet now cleans up the Node's cloud node IP annotation correctly if you stop using `--node-ip`. (In particular, this fixes the problem where people who @@ -172,12 +299,19 @@ and then running into problems with 1.24, could not fix the problem by just removing the unnecessary `--node-ip` from the kubelet arguments, because that wouldn't remove the annotation that caused the problems.) ([#112184](https://github.com/kubernetes/kubernetes/pull/112184), [@danwinship](https://github.com/danwinship)) [SIG Network and Node] +- Kubelet: Fixed a startup crash in devicemanager. ([#113021](https://github.com/kubernetes/kubernetes/pull/113021), [@rphillips](https://github.com/rphillips)) - Kubelet: fixed log spam from kubelet_getters.go `Path does not exist`. ([#112650](https://github.com/kubernetes/kubernetes/pull/112650), [@rphillips](https://github.com/rphillips)) +- Kubelet: fixed nil pointer in reflector start for standalone mode. ([#113501](https://github.com/kubernetes/kubernetes/pull/113501), [@pacoxu](https://github.com/pacoxu)) - Kubelet: when there are multi option lines in /etc/resolv.conf, merge all options into one line in a pod with the `Default` DNS policy. ([#112414](https://github.com/kubernetes/kubernetes/pull/112414), [@pacoxu](https://github.com/pacoxu)) [SIG Network and Node] - Log messages and metrics for the watch cache are now keyed by `.` instead of `go` struct type. This means e.g. that `*v1.Pod` becomes `pods`. Additionally, resources that come from `CustomResourceDefinitions` are displayed as the correct resource and group, instead of `*unstructured.Unstructured`. ([#111807](https://github.com/kubernetes/kubernetes/pull/111807), [@ncdc](https://github.com/ncdc)) - Moved `LocalStorageCapacityIsolationFSQuotaMonitoring` back to Alpha. ([#112076](https://github.com/kubernetes/kubernetes/pull/112076), [@rphillips](https://github.com/rphillips)) +- NOTE ([#113749](https://github.com/kubernetes/kubernetes/pull/113749), [@jpbetz](https://github.com/jpbetz)) [SIG API Machinery] - Nested `MountPoints` are now grouped correctly on all cases. ([#112571](https://github.com/kubernetes/kubernetes/pull/112571), [@claudiubelu](https://github.com/claudiubelu)) - Pod failed in scheduling due to expected error will be updated with the reason of `SchedulerError` rather than `Unschedulable`. ([#111999](https://github.com/kubernetes/kubernetes/pull/111999), [@kerthcet](https://github.com/kerthcet)) +- Pod logs using `--timestamps` are not broken up with timestamps anymore. ([#113481](https://github.com/kubernetes/kubernetes/pull/113481), [@rphillips](https://github.com/rphillips)) +- Removed of raising an error when setting an annotation with the same value, just ignore it. ([#109505](https://github.com/kubernetes/kubernetes/pull/109505), [@zigarn](https://github.com/zigarn)) +- Resolved an issue that caused winkernel proxier to treat stale VIPs as valid. ([#113521](https://github.com/kubernetes/kubernetes/pull/113521), [@daschott](https://github.com/daschott)) +- The `ResourceVersion` returned in objects from delete responses is now consistent with the `ResourceVersion` contained in the delete watch event. ([#113369](https://github.com/kubernetes/kubernetes/pull/113369), [@wojtek-t](https://github.com/wojtek-t)) - The `kube-scheduler` and `kube-controller-manager` now use server side apply to set conditions related to pod disruption. ([#113304](https://github.com/kubernetes/kubernetes/pull/113304), [@mimowo](https://github.com/mimowo)) [SIG API Machinery, Apps and Scheduling] - The errors in `k8s.io/apimachinery/pkg/api/meta` now support for the `stdlibs` `errors.Is` matching, including when wrapped. ([#111808](https://github.com/kubernetes/kubernetes/pull/111808), [@alvaroaleman](https://github.com/alvaroaleman)) - The metrics `etcd_request_duration_seconds` and `etcd_bookmark_counts` now differentiate by group resource instead of object type, allowing unique entries per `CustomResourceDefinition`, instead of grouping them all under `*unstructured.Unstructured`. ([#112042](https://github.com/kubernetes/kubernetes/pull/112042), [@ncdc](https://github.com/ncdc)) @@ -194,7 +328,20 @@ ### Other (Cleanup or Flake) +- 'Promoted `cronjob_job_creation_skew` metric to stable to follow the cronjob v2 controller, + the following metrics had their name updated to match metrics API guidelines: + - `cronjob_job_creation_skew_duration_seconds` -> `job_creation_skew_duration_seconds`.' ([#113008](https://github.com/kubernetes/kubernetes/pull/113008), [@soltysh](https://github.com/soltysh)) +- 'Promoted job-related metrics to stable to follow IndexedJobs GA. The following metrics have their name updated to match metrics API guidelines: + - `job_sync_total` -> `job_syncs_total` + - `job_finished_total` -> `jobs_finished_total`' ([#113010](https://github.com/kubernetes/kubernetes/pull/113010), [@soltysh](https://github.com/soltysh)) +- '`kubelet_kubelet_credential_provider_plugin_duration` was renamed to `kubelet_credential_provider_plugin_duration` + and `kubelet_kubelet_credential_provider_plugin_errors` was renamed to `kubelet_credential_provider_plugin_errors`.' + ([#113754](https://github.com/kubernetes/kubernetes/pull/113754), [@logicalhan](https://github.com/logicalhan)) +- A new API server flag `--encryption-provider-config-automatic-reload` was added to control when the encryption config should be automatically reloaded without needing to restart the server. All KMS plugins are now merged into a single healthz check at `/healthz/kms-providers` when reload is enabled, or when only KMS v2 plugins are used. ([#113529](https://github.com/kubernetes/kubernetes/pull/113529), [@enj](https://github.com/enj)) +- Added a `--prune-allowlist` flag that can be used with `kubectl apply --prune`. This flag now replaces and functions the same as the `--prune-whitelist` flag, which has been deprecated. ([#113116](https://github.com/kubernetes/kubernetes/pull/113116), [@brianpursley](https://github.com/brianpursley)) - Added a `kubernetes_feature_enabled` metric which will tell you if a feature is enabled. ([#112652](https://github.com/kubernetes/kubernetes/pull/112652), [@logicalhan](https://github.com/logicalhan)) +- Deprecated the following kubectl run flags, which are ignored if set: `--cascade`, `--filename`, `--force`, `--grace-period`, `--kustomize`, `--recursive`, `--timeout`, `--wait`. ([#112261](https://github.com/kubernetes/kubernetes/pull/112261), [@brianpursley](https://github.com/brianpursley)) +- Dropped support for the Container Runtime Interface (CRI) version `v1alpha2`, which means that container runtimes just have to implement `v1`. ([#110618](https://github.com/kubernetes/kubernetes/pull/110618), [@saschagrunert](https://github.com/saschagrunert)) - E2e: tests can now register callbacks with `ginkgo.BeforeEach`, `ginkgo.AfterEach` or `ginkgo.DeferCleanup` directly after creating a framework instance and are guaranteed that their code is called after the framework is initialized and before it gets cleaned up. `ginkgo.DeferCleanup` replaces `f.AddAfterEach` and `AddCleanupAction` which got removed to simplify the framework. ([#111998](https://github.com/kubernetes/kubernetes/pull/111998), [@pohly](https://github.com/pohly)) - Introduce `ComponentSLIs` alpha feature-gate for component SLIs metrics endpoint. ([#112884](https://github.com/kubernetes/kubernetes/pull/112884), [@logicalhan](https://github.com/logicalhan)) [SIG API Machinery] - Kube scheduler Component Config release version v1beta3 is deprecated in v1.26 and will be removed in v1.29, @@ -204,11 +351,11 @@ - Kubeadm: removed the toleration for the `node-role.kubernetes.io/master` taint from the CoreDNS deployment of `kubeadm`. With the 1.25 release of kubeadm the taint `node-role.kubernetes.io/master` is no longer applied to control plane nodes and the toleration for it can be removed with the release of 1.26. You can also perform the same toleration removal from your own addon manifests. ([#112008](https://github.com/kubernetes/kubernetes/pull/112008), [@pacoxu](https://github.com/pacoxu)) - Kubeadm: removed the usage of the `--container-runtime=remote` flag for the kubelet during kubeadm init/join/upgrade. The flag value `remote` had been the only possible value since `dockershim` was removed from the kubelet. ([#112000](https://github.com/kubernetes/kubernetes/pull/112000), [@pacoxu](https://github.com/pacoxu)) - Locked `ServerSideApply` feature gate to true with the feature already being GA. ([#112748](https://github.com/kubernetes/kubernetes/pull/112748), [@wojtek-t](https://github.com/wojtek-t)) -- NoneNone ([#111533](https://github.com/kubernetes/kubernetes/pull/111533), [@zhoumingcheng](https://github.com/zhoumingcheng)) [SIG CLI] - Refactored `test/e2e/framework` so that the core framework is smaller. Optional functionality like resource monitoring, log size monitoring, metrics gathering and debug information dumping must be imported by specific e2e test suites. Init packages are provided which can be imported to re-enable the functionality that traditionally was in the core framework. If you have code that no longer compiles because of this PR, you can use the script [from a commit message](https://github.com/kubernetes/kubernetes/pull/112043/commits/dfdf88d4faafa6fd39988832ea0ef6d668f490e9) to update that code. ([#112043](https://github.com/kubernetes/kubernetes/pull/112043), [@pohly](https://github.com/pohly)) - Release-note ([#111708](https://github.com/kubernetes/kubernetes/pull/111708), [@yangjunmyfm192085](https://github.com/yangjunmyfm192085)) [SIG Apps, Instrumentation and Network] - Removed `PodOverhead` feature gate as the feature is in GA since `v1.24`. ([#112579](https://github.com/kubernetes/kubernetes/pull/112579), [@SergeyKanzhelev](https://github.com/SergeyKanzhelev)) - Removing Windows Server, Version 20H2 flavors from various container images. ([#112924](https://github.com/kubernetes/kubernetes/pull/112924), [@marosset](https://github.com/marosset)) +- Renamed the feature gate for CEL in Admission Control to `ValidatingAdmissionPolicy`. ([#113735](https://github.com/kubernetes/kubernetes/pull/113735), [@cici37](https://github.com/cici37)) - Reworded log message upon image garbage collection failure to be more clear. ([#112631](https://github.com/kubernetes/kubernetes/pull/112631), [@tzneal](https://github.com/tzneal)) [SIG Node] - Scheduler dumper now exposes a summary to indicate the number of pending pods in each internal queue. ([#111726](https://github.com/kubernetes/kubernetes/pull/111726), [@Huang-Wei](https://github.com/Huang-Wei)) [SIG Scheduling and Testing] - Service session affinity timeout tests are no longer required for Kubernetes network plugin conformance due to variations in existing implementations. New conformance tests will be developed to better express conformance in future releases. ([#112806](https://github.com/kubernetes/kubernetes/pull/112806), [@dcbw](https://github.com/dcbw)) [SIG Architecture, Network and Testing] diff --git a/releases/release-1.26/release-notes/sessions/maps-1669239784.json b/releases/release-1.26/release-notes/sessions/maps-1669239784.json new file mode 100644 index 00000000000..bb0ab498232 --- /dev/null +++ b/releases/release-1.26/release-notes/sessions/maps-1669239784.json @@ -0,0 +1,315 @@ +{ + "mail": "rodomar@outlook.com", + "name": "Rodolfo Martínez Vega", + "date": 1669239784, + "prs": [ + { + "nr": 113369, + "hash": "354b12adabe255f91e7b7f0f6a869247c042ab5f" + }, + { + "nr": 113360, + "hash": "8acc9eb521c72ff650c47fa782846893cf35c1d2" + }, + { + "nr": 113710, + "hash": "376ddbedd5ad020c6999fd4ccd93fefcc38da5a7" + }, + { + "nr": 113274, + "hash": "afa4a3c3a86dd616593081414b1b4fc2433bc08f" + }, + { + "nr": 113225, + "hash": "e0d9ed88b9115f664e5fc96bcccf860687413066" + }, + { + "nr": 113171, + "hash": "7fa1fcf1afbac0b8292a2b35dc6463f6110ce4fc" + }, + { + "nr": 113160, + "hash": "8a5a9c9ecd2f33d479d4074a89b0964a11b191a2" + }, + { + "nr": 113329, + "hash": "ab59cd79eda8291675ea385d4e8d1acde317ec77" + }, + { + "nr": 113206, + "hash": "037406745352d85ae6a411a86bbdddc96757c557" + }, + { + "nr": 109189, + "hash": "6ba5e5e80a956453dd799a30bdbfa1d7a35685f4" + }, + { + "nr": 113275, + "hash": "eb4d1b8a2bd5242a485a194751ff1f7b7be1f9a8" + }, + { + "nr": 113008, + "hash": "94eb0adfcce10ac35788c2ce581fb849db61d3d0" + }, + { + "nr": 113186, + "hash": "e5a99b19bc624ff0d75c4465a2ffc8c17102b617" + }, + { + "nr": 113749, + "hash": "b81a37ab2fcb49b6d99986c2cfba7d1039ea0f0b" + }, + { + "nr": 113485, + "hash": "324f14a6d322de2278a352d73b32b71443b6794e" + }, + { + "nr": 111879, + "hash": "d1c1ca77a147ee691a9d17eac425db9239b17810" + }, + { + "nr": 113629, + "hash": "aee3355f7ceec77f7853a63318553fcddec379cc" + }, + { + "nr": 112011, + "hash": "8e35da9e8aca96c0f0daeccab65ab1fa0b719d8a" + }, + { + "nr": 112980, + "hash": "fe3f9da541c051922efc082737fab0691d25d0bd" + }, + { + "nr": 113501, + "hash": "0818fb248042ef2ec63a08de200c909d3c8f9ff4" + }, + { + "nr": 112360, + "hash": "b6fd0edbaabf635087f954c08c9b1a8bada85c75" + }, + { + "nr": 111930, + "hash": "02d67cb924c6769079632c0baae66cd8112ec5a7" + }, + { + "nr": 112895, + "hash": "b15ad0969083d7dc31f6597905a1f3d1c591b01f" + }, + { + "nr": 113609, + "hash": "c5e05181dbbfd2428f209d4351ed9f5fcf16171b" + }, + { + "nr": 113491, + "hash": "6a9587739ad8ce08d55468417d8edfdbd5a3ed3b" + }, + { + "nr": 108250, + "hash": "79195ea8cb61e8aa444f167cded8695fc62637a9" + }, + { + "nr": 113856, + "hash": "e9bc045dcf534768f364f2ae45511883c8069be8" + }, + { + "nr": 113521, + "hash": "d0a5d229be388e970c32a2694db412c805031cc2" + }, + { + "nr": 111023, + "hash": "730c836c7073f7401703d063c739679ab0b3ae36" + }, + { + "nr": 112679, + "hash": "292eb0e244bc5359aad6341609d2eb58ed7021b9" + }, + { + "nr": 113476, + "hash": "9ddc50c84de91be87b0c1bb61a77c511fb1b0478" + }, + { + "nr": 112914, + "hash": "8d4b7055ece36e333bcf7b0b45b7f3eb66007a3a" + }, + { + "nr": 110268, + "hash": "88146ea0be6e5dfce12d16d9f548bb9a5df987bb" + }, + { + "nr": 113596, + "hash": "d65d20d46b42c214f9324758bdd2ba716806582c" + }, + { + "nr": 113496, + "hash": "44aff93495f44456365bd81f79e2fe6049171edc" + }, + { + "nr": 109505, + "hash": "18e51dd61136ea9eaa19c2fae404f3c4b8f63a54" + }, + { + "nr": 113217, + "hash": "0e849ceb70dc3da35d163f7d8f15237fa2d39efc" + }, + { + "nr": 113819, + "hash": "310c3836a20fd14acce2a800c32cf74f8a54fa46" + }, + { + "nr": 113351, + "hash": "e72841a7ab17b3a79bc34efd221e746f9c796cc7" + }, + { + "nr": 113550, + "hash": "8345b6dd8cdf9604877c964889b05cf863335786" + }, + { + "nr": 113340, + "hash": "65c3856cf4446c8b34d78ed74950c4600c33b611" + }, + { + "nr": 113010, + "hash": "a64e06132bc156dc5f9639df20cf6036aba62563" + }, + { + "nr": 113711, + "hash": "bfb215c74944992de3de6fcc968ba654992a660c" + }, + { + "nr": 113544, + "hash": "0f6b89da35a747eadea124fc8f4c93cede5a3e33" + }, + { + "nr": 113636, + "hash": "404a94a2618bda6cd3f97b30ecc557ea5f6f8b62" + }, + { + "nr": 113021, + "hash": "a16bc465c00b928887f4e25f225583c9525bae4c" + }, + { + "nr": 113116, + "hash": "e6e31370f41b5ce8c3bfcbb6b2c4deb3e52ee34e" + }, + { + "nr": 113511, + "hash": "9d4d8819051c6a61bbf39a7f0e6c1517ba402956" + }, + { + "nr": 113363, + "hash": "b7a908ec4e2b5ef7f8b07080916de81c9e4f0b13" + }, + { + "nr": 112838, + "hash": "7fef34a1909b9ad35b34c4c17fc28cc5f9693ce5" + }, + { + "nr": 112261, + "hash": "3fb73437bbdd45a336cf01150eb0de4e519347c3" + }, + { + "nr": 113015, + "hash": "f9fa0305f98a6d08304085dae624c72d54121cd8" + }, + { + "nr": 110618, + "hash": "e3fc69d1c64156462486e5e62d782ddee747a50e" + }, + { + "nr": 113699, + "hash": "8e6b3dd32a1f08cbaf59f400d81625378665f947" + }, + { + "nr": 113510, + "hash": "ebb6b1b4d2957bdaa6f7d520fcad001e8e525d33" + }, + { + "nr": 103177, + "hash": "1ae95a6b28d09642722d970fa6235b29f5231293" + }, + { + "nr": 113735, + "hash": "56ec5a3bb8caa2d68e10f7cfdca2aa7e6b66c491" + }, + { + "nr": 113754, + "hash": "3e76ecb90d290e122a30d02a1c7af626ecdc2119" + }, + { + "nr": 113291, + "hash": "17d0648af9a65d3af6681abc0e05f72320a0fedd" + }, + { + "nr": 110907, + "hash": "644f7b6b8bb9c3610d3499dd419db32566e794bb" + }, + { + "nr": 113314, + "hash": "06a96009f1b611cadad3b9436826376c57022566" + }, + { + "nr": 113018, + "hash": "82cac6d50c2edcbb1c80b0ad3a909fbe32a8d7ee" + }, + { + "nr": 113529, + "hash": "0ba1c03b1b6a737cb9f76656421a06904baacfe4" + }, + { + "nr": 113769, + "hash": "a1429257a7dd9813c89f2457417bbe135685bdfe" + }, + { + "nr": 113719, + "hash": "c7f59b8987a23f813f383513e6ac5557cc39b886" + }, + { + "nr": 113307, + "hash": "22dd991b8d7d92599d43d87b9b981c1763c7ba0d" + }, + { + "nr": 111384, + "hash": "1202817c76d78c6f3b952033d9a13806fcceb2c8" + }, + { + "nr": 113500, + "hash": "5b696c327b82168486adc0f9694f3da149bcd1c6" + }, + { + "nr": 112744, + "hash": "87dd0ba455ba9d7508c01a9e73a76886ec303423" + }, + { + "nr": 112961, + "hash": "6ed4d60a442602c4fc144581804eeb0ed57562df" + }, + { + "nr": 113375, + "hash": "8dbd55edba646b73cf613b9ad090ceaacde06683" + }, + { + "nr": 113336, + "hash": "ac4165e1e396b4a2b3428daad09fdbb79f6bc623" + }, + { + "nr": 113580, + "hash": "7d015fdfe3ca24a71efe8a017c8ab09df46251b4" + }, + { + "nr": 113481, + "hash": "b5036e72c927732a791651972eb000152c3993e2" + }, + { + "nr": 112905, + "hash": "3b2f568f54470c6e0f14e6bad357d770f4582f7e" + }, + { + "nr": 113697, + "hash": "ad129317000595aa0c1bef20e9e3e5e9ea9bb1c0" + }, + { + "nr": 112127, + "hash": "94b5247f54cce4a76eaf2357fcfa033cfba6d3dd" + } + ] +} \ No newline at end of file