What's Changed

• Kubernetes v1.31.1
• Update flannel from v0.25.5 to v0.25.6

Google

• Add controller_disk_type and worker_disk_type variables (#1513)
• Add explicit region field to regional worker instance templates (#1524)

Contributions

• GCP: Add controller_disk_type and worker_disk_type variables by @JordanP in #1513
• Update Kubernetes from v1.31.0 to v1.31.1 by @dghubble in #1515
• Add region to gcp instance template resource by @dghubble in #1524
• doc: set file_permission 0600 for kubeconfig file by @JordanP in #1519

Dependencies

• Bump docker.io/flannel/flannel image from v0.25.5 to v0.25.6 by @dghubble-renovate in #1505
• Bump mkdocs-material from 9.5.33 to v9.5.34 by @dghubble-renovate in #1509
• Bump mkdocs-material from 9.5.34 to v9.5.35 by @dghubble-renovate in #1514
• Bump mkdocs from 1.6.0 to v1.6.1 by @dghubble-renovate in #1507
• Bump mkdocs-material from 9.5.35 to v9.5.36 by @dghubble-renovate in #1516
• Bump docker.io/flannel/flannel image from v0.25.6 to v0.25.7 by @dghubble-renovate in #1523
• Bump quay.io/cilium/operator-generic image from v1.16.1 to v1.16.2 by @dghubble-renovate in #1522
• Bump quay.io/cilium/cilium image from v1.16.1 to v1.16.2 by @dghubble-renovate in #1521
• Bump mkdocs-material from 9.5.36 to v9.5.39 by @dghubble-renovate in #1520
• Bump pymdown-extensions from 10.9 to v10.11.2 by @dghubble-renovate in #1517

Full Changelog: v1.31.0...v1.31.1

What's Changed

• Kubernetes v1.31.0
• Use Cilium kube-proxy replacement mode when cilium networking is chosen (#1501)
• Fix invalid flannel-cni container image for those using flannel networking (#1497)

AWS

• Use EC2 resource-based hostnames instead of IP-based hostnames (#1499)
  • The Amazon DNS server can resolve A and AAAA queries to IPv4 and IPv6 node addresses
• Tag controller node EBS volumes with a name based on the controller node name

Google

• Use google_compute_region_instance_template instead of google_compute_instance_template
  • Google's regional instance template metadata is kept in the associated region for greater resiliency. The "global" instance templates were kept in a single region

Contributions

• Remove the cluster_domain_suffix variable and improve docs by @dghubble in #1488
• Update ARM64 cluster and hybrid cluster docs by @dghubble in #1489
• Remove some seldom used variables and set reasonable values by @dghubble in #1490
• Update default Cilium and CoreDNS components by @dghubble in #1491
• Update Kubernetes from v1.30.4 to v1.31.0 by @dghubble in #1494
• Fix flannel-cni container image by @dghubble in #1497
• aws: Switch EC2 instances to use resource-based hostnames by @dghubble in #1499
• Use Cilium kube-proxy replacement when Cilium CNI is used by @dghubble in #1501
• Remove upper bound on azurerm provider version by @dghubble in #1502
• google: Use regional instance templates for workers by @dghubble in #1504

Dependencies

• Bump mkdocs-material from 9.5.30 to v9.5.31 by @dghubble-renovate in #1487
• Bump quay.io/cilium/operator-generic image from v1.16.0 to v1.16.1 by @dghubble-renovate in #1493
• Bump quay.io/cilium/cilium image from v1.16.0 to v1.16.1 by @dghubble-renovate in #1492
• Bump mkdocs-material from 9.5.31 to v9.5.32 by @dghubble-renovate in #1495
• Bump mkdocs-material from 9.5.32 to v9.5.33 by @dghubble-renovate in #1503

Full Changelog: v1.30.3...v1.31.0

What's Changed

• Kubernetes v1.30.3
• Update Cilium from v1.15.6 to v1.15.7
• Update flannel from v0.25.4 to v0.25.5

AWS

• Configure controller and worker disks (#1482)
  • Add controller_disk_type, controller_disk_size, and controller_disk_iops variables
  • Add worker_disk_type, worker_disk_size, and worker_disk_iops variables
  • Remove disk_type, disk_size, and disk_iops variables
  • Fix propagating settings to worker disks, previously ignored
• Configure CPU pricing model for burstable instance types (#1482)
  • Add controller_cpu_credits and worker_cpu_credits variables (standard or unlimited)
• Configure controller or worker instance architecture (#1485)
  • Add controller_arch and worker_arch variables (amd64 or arm64)
  • Remove arch variable

module "cluster" {
  ...
- arch      = "amd64"
- disk_type = "gp3"
- disk_size = 30
- disk_iops = 3000

+ controller_arch        = "amd64"
+ controller_disk_size   = 15
+ controller_cpu_credits = "standard"
+ worker_arch            = "amd64"
+ worker_disk_size       = 22
+ worker_cpu_credits     = "unlimited"
}

Azure

• Configure the virtual network and subnets with IPv6 private address space
  • Change host_cidr variable (string) to a network_cidr object with ipv4 and ipv6 fields that list CIDR strings. Leave the variable unset to use the defaults. (breaking)
• Add support for dual-stack Kubernetes Ingress Load Balancing
  • Add a public IPv6 frontend, 80/443 rules, and a worker-ipv6 backend pool
  • Change the controller_address_prefixes output from a list of strings to an object with ipv4 and ipv6 fields. Most Azure resources can't accept a mix, so these are split out (breaking)
  • Change the worker_address_prefixes output from a list of strings to an object with ipv4 and ipv6 fields. Most Azure resources can't accept a mix, so these are split out (breaking)
  • Change the backend_address_pool_id output (and worker module input) from a string to an object with ipv4 and ipv6 fields that list ids (breaking)
• Configure nodes to have outbound IPv6 internet connectivity (analogous to IPv4 SNAT)
  • Configure controller nodes to have a public IPv6 address
  • Configure worker nodes to use outbound rules and the load balancer for SNAT
• Extend network security rules to allow IPv6 traffic, analogous to IPv4
• Rename region variable to location to align with Azure platform conventions (#1469)
• Change worker pools from uniform to flexible orchestration mode (#1473)
• Add options to allow workers nodes to use ephemeral local disks (#1473)
  • Add controller_disk_type and controller_disk_size variables
  • Add worker_disk_type, worker_disk_size, and worker_ephemeral_disk variables
• Reduce the number of public IPv4 addresses needed for the Azure load balancer (#1470)
• Configure controller or worker instance architecture for Flatcar Linux (#1485)
  • Add controller_arch and worker_arch variables (amd64 or arm64)
  • Remove arch variable

module "cluster" {
  ...
- region = "centralus"
+ location = "centralus"
  # optional
- host_cidr = "10.0.0.0/16"
+ network_cidr = {
+   ipv4 = ["10.0.0.0/16"]
+ }

  # instances
+ controller_disk_type = "StandardSSD_LRS"
+ worker_ephemeral_disk = true
}

Google Cloud

• Configure controller and worker disk sizes (#1486)
  • Add controller_disk_size and worker_disk_size variables
  • Remove disk_size variable

Contributions

• Add IPv6 support for Typhoon Azure clusters by @dghubble in #1468
• Rename Azure cluster region variable to location by @dghubble in #1469
• Remove an IPv4 address from Azure clusters by @dghubble in #1470
• Change worker node pools from uniform to flexible orchestration mode by @dghubble in #1473
• Generate Azure Virtual Network IPv6 ULA space at random by @dghubble in #1474
• Fix incorrect terraform-render-bootstrap SHA by @dghubble in #1481
• Add CPU credits variable to control burst mode by @dghubble in #1482
• google: Configure controller and worker disk sizes by @dghubble in #1486
• Configure controller and worker node architecture separately by @dghubble in #1485

Dependencies

• Bump mkdocs-material from 9.5.27 to v9.5.28 by @dghubble-renovate in #1467
• Bump quay.io/cilium/operator-generic image from v1.15.6 to v1.15.7 by @dghubble-renovate in #1472
• Bump quay.io/cilium/cilium image from v1.15.6 to v1.15.7 by @dghubble-renovate in #1471
• Bump docker.io/flannel/flannel image from v0.25.4 to v0.25.5 by @dghubble-renovate in #1477
• Bump mkdocs-material from 9.5.28 to v9.5.29 by @dghubble-renovate in #1475
• Bump mkdocs-material from 9.5.29 to v9.5.30 by @dghubble-renovate in #1478
• Bump pymdown-extensions from 10.8.1 to v10.9 by @dghubble-renovate in #1483
• Bump quay.io/cilium/operator-generic image from v1.15.7 to v1.16.0 by @dghubble-renovate in #1480
• Bump quay.io/cilium/cilium image from v1.15.7 to v1.16.0 by @dghubble-renovate in #1479
• Bump registry.k8s.io/coredns/coredns image from v1.11.1 to v1.11.3 by @dghubble-renovate in #1484

Full Changelog: v1.30.2...v1.30.3

What's Changed

• Kubernetes v1.30.2
• Update CoreDNS from v1.9.4 to v1.11.1
• Update Cilium from v1.15.5 to v1.15.6
• Update flannel from v0.25.1 to v0.25.4

Contributions

• Update Kubernetes from v1.30.1 to v1.30.2 by @dghubble in #1466

Dependencies

• Bump mkdocs-material from 9.5.23 to v9.5.24 by @dghubble-renovate in #1456
• Bump docker.io/flannel/flannel image from v0.25.1 to v0.25.2 by @dghubble-renovate in #1458
• Bump mkdocs-material from 9.5.24 to v9.5.25 by @dghubble-renovate in #1459
• Bump docker.io/flannel/flannel image from v0.25.2 to v0.25.3 by @dghubble-renovate in #1460
• Bump mkdocs-material from 9.5.25 to v9.5.26 by @dghubble-renovate in #1461
• Bump docker.io/flannel/flannel image from v0.25.3 to v0.25.4 by @dghubble-renovate in #1464
• Bump quay.io/cilium/cilium image from v1.15.5 to v1.15.6 by @dghubble-renovate in #1463
• Bump quay.io/cilium/operator-generic image from v1.15.5 to v1.15.6 by @dghubble-renovate in #1462
• Bump mkdocs-material from 9.5.26 to v9.5.27 by @dghubble-renovate in #1465

Full Changelog: v1.30.1...v1.30.2

What's Changed

• Kubernetes v1.30.1
• Add firewall rules and security group rules for Cilium and Hubble metrics (#1449)
• Update Cilium from v1.15.3 to v1.15.5
• Update flannel from v0.24.4 to v0.25.1
• Introduce components variabe to enable/disable/configure pre-installed components (#1453, docs)
  • Add Terraform modules for coredns, cilium, and flannel components (#1455)

Azure

• Add controller_security_group_name output for adding custom security rules (#1450)
• Add controller_address_prefixes output for adding custom security rules (#1450)

Contributions

• Update Cilium and flannel container images by @dghubble in #1447
• Allow CoreDNS and kube-proxy to be optional components by @dghubble in #1448
• Add firewall and security rules for Cilium/Hubble metrics by @dghubble in #1449
• azure: Add controller security group and subnet outputs by @dghubble in #1450
• Update Kubernetes from v1.30.0 to v1.30.1 by @dghubble in #1452
• Introduce the component system for managing pre-installed addons by @dghubble in #1453
• Update Cilium from v1.15.4 to v1.15.5 by @dghubble in #1454
• Add Terraform modules for CoreDNS, Cilium, and flannel by @dghubble in #1455

Dependencies

• Bump pymdown-extensions from 10.8 to 10.8.1 by @dependabot in #1441
• Bump mkdocs-material from 9.5.19 to v9.5.21 by @dghubble-renovate in #1442
• Bump pygments from 2.17.2 to v2.18.0 by @dghubble-renovate in #1444
• Bump provider ct to v0.13.0 by @dghubble-renovate in #1443
• Bump mkdocs-material from 9.5.21 to v9.5.22 by @dghubble-renovate in #1446
• Bump mkdocs-material from 9.5.22 to v9.5.23 by @dghubble-renovate in #1451

New Contributors

• @dghubble-renovate made their first contribution in #1442

Full Changelog: v1.30.0...v1.30.1

What's Changed

• Kubernetes v1.30.0
• Update etcd from v3.5.12 to v3.5.13
• Update Cilium from v1.15.2 to v1.15.3
• Update Calico from v3.27.2 to v3.27.3

Contributions

• Update etcd from v3.5.12 to v3.5.13 and bump Calico/Cilium by @dghubble in #1432
• Add release.yaml to help auto-populate release notes by @dghubble in #1433
• Update Kubernetes from v1.29.3 to v1.30.0 by @dghubble in #1438
• Update mkdocs and mkdocs-material together by @dghubble in #1439

Dependencies

• Bump mkdocs-material from 9.5.14 to 9.5.15 by @dependabot in #1430
• Bump mkdocs-material from 9.5.15 to 9.5.16 by @dependabot in #1431
• Bump mkdocs-material from 9.5.16 to 9.5.18 by @dependabot in #1436
• Bump pymdown-extensions from 10.7.1 to 10.8 by @dependabot in #1437

Full Changelog: v1.29.3...v1.30.0

• Kubernetes v1.29.3
• Update Cilium from v1.15.1 to v1.15.2
• Update flannel from v0.24.2 to v0.24.4

• Kubernetes v1.29.2
• Update etcd from v3.5.10 to v3.5.12
• Update Cilium from v1.14.3 to v1.15.1
• Update Calico from v3.26.3 to v3.27.2
  • Fix upstream incompatibility with Fedora CoreOS (calico#8372)
• Update flannel from v0.22.2 to v0.24.2
• Add an install_container_networking variable (default true) (#1421)
  • When true, the chosen container networking provider is installed during cluster bootstrap
  • Set false to self-manage the container networking provider. This allows flannel, Calico, or Cilium to be self-managed (e.g. via Terraform like any other Kubernetes resources). Nodes will be NotReady until you apply the self-managed container networking provider. This may become the default in future.
  • Continue to set networking to one of the three supported container networking providers. Most require custom firewall / security policies be present across nodes so they have some infra tie-ins.

• Kubernetes v1.29.1

AWS

• Continue to support AWS IMDSv1 (#1412)

• Kubernetes v1.29.0

Known Issues

• Calico and Fedora CoreOS cannot be used together currently (calico#8372)