v2.6.1

Added

• Add ingress rule in nodes Security Group to allow access to the Kubelet API when using ENI mode. This is needed by the metrics server to gather metrics from the Kubelet

Changed

• Cilium: Replace no longer supported tunnel option by routingMode.

v1.3.8

Changed

• Cilium: Replace no longer supported tunnel option by routingMode.

v1.3.7

Added

• Add ingress rule in nodes Security Group to allow access to the Kubelet API when using ENI mode. This is needed by the metrics server to gather metrics from the Kubelet

v1.3.6

Changed

• Chart: Reduce default etcd volume size to 50 GB.
• Explicitly set Ignition user data storage type to S3 bucket objects for machine pools
• Use reduced IAM permissions on worker nodes instance profile. This can be toggled back with global.providerSpecific.reducedInstanceProfileIamPermissionsForWorkers.

Fixed

• Explicitly set aws-node-termination-handler queue region so crash-loops are avoided, allowing faster startup

v2.6.0

Changed

• Chart: Reduce default etcd volume size to 50 GB.
• Explicitly set Ignition user data storage type to S3 bucket objects for machine pools
• Use reduced IAM permissions on worker nodes instance profile. This can be toggled back with global.providerSpecific.reducedInstanceProfileIamPermissionsForWorkers.

Fixed

• Explicitly set aws-node-termination-handler queue region so crash-loops are avoided, allowing faster startup

v2.5.0

Added

• Add aws-node-termination-handler bundle
• Values: Add global.providerSpecific.controlPlaneAmi & global.providerSpecific.nodePoolAmi.
• Make ASG lifecycle hook heartbeat timeout configurable

Changed

• Chart: Update cluster to v1.7.0.
  • Add teleport-init systemd unit to handle initial token setup before teleport service starts
  • Improve teleport service reliability by adding proper file and service dependencies and pre-start checks

Fixed

• Fix aws-nth-bundle to use the MC's kubeconfig context if it's in a different organization namespace.

  Workload clusters outside the MC's org-giantswarm namespace failed to deploy the bundle because HelmRelease does not allow specifying the MC's kubeconfig secret namespace. The bundle was therefore switched to an App.

v1.3.5

Added

• Values: Add global.providerSpecific.controlPlaneAmi & global.providerSpecific.nodePoolAmi.
• Add aws-node-termination-handler bundle
• Make ASG lifecycle hook heartbeat timeout configurable

Fixed

• Fix aws-nth-bundle to use the MC's kubeconfig context if it's in a different organization namespace.

  Workload clusters outside the MC's org-giantswarm namespace failed to deploy the bundle because HelmRelease does not allow specifying the MC's kubeconfig secret namespace. The bundle was therefore switched to an App.

v1.1.5

Added

• Make ASG lifecycle hook heartbeat timeout configurable

Fixed

• Fix aws-nth-bundle to use the MC's kubeconfig context if it's in a different organization namespace.

  Workload clusters outside the MC's org-giantswarm namespace failed to deploy the bundle because HelmRelease does not allow specifying the MC's kubeconfig secret namespace. The bundle was therefore switched to an App.

v1.1.4

Added

• Add aws-node-termination-handler bundle

v2.4.0

Added

• Add global.providerSpecific.additionalNodeTags. Field used to specify tags applied to nodes only.

Fixed

• Only try to render subnet tags if they are defined by the user.