v1.29.X
Before upgrading from earlier releases, be sure to read the Kubernetes Urgent Upgrade Notes.
Release v1.29.10+rke2r1
This release updates Kubernetes to v1.29.10.
Important Note
If your server (control-plane) nodes were not started with the --token
CLI flag or config file key, a randomized token was generated during initial cluster startup. This key is used both for joining new nodes to the cluster, and for encrypting cluster bootstrap data within the datastore. Ensure that you retain a copy of this token, as is required when restoring from backup.
You may retrieve the token value from any server already joined to the cluster:
cat /var/lib/rancher/rke2/server/token
Changes since v1.29.9+rke2r1:
- Fixed windows CNI setup in case cni none is configured (#6833)
- Fix e2e test bug in mixedosbgp (#6845)
- Bump Calico v3.28.2 (#6880)
- Add trivy scanning to PR reports (#6836)
- Fix typo in dispatch workflow (#6896)
- Bump coredns chart (#6902)
- Fix uninstall for amazon linux 2 (#6920)
- Update to Cilium v1.16.2 (#6939)
- Update Canal to v3.28.2-build2024100300 and Flannel to v0.25.7 (#6973)
- Bump containerd to v1.7.22 (#7003)
- Ingress-nginx and rke2-cloud-provider bumps (#6993)
- Bump csi snapshot charts (#7025)
- Update multus to v4.1.2 (#7020)
- Bump k3s (#7034)
- Bump Harvester CSI driver v0.1.20 (#7047)
- Bump Harvester-csi-driver v0.1.20
- Bump K3s/CCM version (#7058)
- Add org.opencontainers.image url and source labels to dockerfiles (#7064)
- Bump CSI snapshot controller chart for CRD updates (#7070)
- Rke2-runtime signing and manifests (#7089) (#7100)
- Update hardened chart images (#7096)
- October K8s patch (#7106)
- Update crictl source image for CVE bump (#7116)
- Bump coredns chart and image (#7086)
- Fix hardened-flannel airgap image for rke2-flannel (#7119)
- Fix release workflow (#7126)
- Use buildkit (#7131)
- Fix publish windows runtime (#7145)
Charts Versions
Component | Version |
---|---|
rke2-cilium | 1.16.201 |
rke2-canal | v3.28.2-build2024101601 |
rke2-calico | v3.28.200 |
rke2-calico-crd | v3.28.200 |
rke2-coredns | 1.33.002 |
rke2-ingress-nginx | 4.10.501 |
rke2-metrics-server | 3.12.004 |
rancher-vsphere-csi | 3.3.0-rancher100 |
rancher-vsphere-cpi | 1.8.000 |
harvester-cloud-provider | 0.2.600 |
harvester-csi-driver | 0.1.2000 |
rke2-snapshot-controller | 3.0.601 |
rke2-snapshot-controller-crd | 3.0.601 |
rke2-snapshot-validation-webhook | 1.9.001 |
Release v1.29.9+rke2r1
This release updates Kubernetes to v1.29.9.
Important Note
If your server (control-plane) nodes were not started with the --token
CLI flag or config file key, a randomized token was generated during initial cluster startup. This key is used both for joining new nodes to the cluster, and for encrypting cluster bootstrap data within the datastore. Ensure that you retain a copy of this token, as is required when restoring from backup.
You may retrieve the token value from any server already joined to the cluster:
cat /var/lib/rancher/rke2/server/token
Changes since v1.29.8+rke2r1:
- Update cilium v1.16.1 (#6652)
- Bump canal to v3.28.1-build20240827 (#6672)
- Bump canal to v3.28.1-build20240830 (#6689)
- Feat: bump harvester-cloud-provider to v0.2.6 (#6630)
- Update chart with CNI plugins on Flannel and Cilium (#6702)
- Update cilium chart to
1.16.103
(#6716) - Bump multus chart to v4.1.000 (#6741)
- Remove sriov images from airgap tarball (#6755)
- Add ctr to shell completion (#6732)
- Bump k3s/containerd/runc/ccm versions (#6764)
- Bump charts and images to fix go CVE (#6784)
- Bump hardened images (#6777)
- Update Calico image for Canal with updated CNI plugins (#6795)
- Bump ingress-nginx to v1.10.4-hardened3 (#6800)
- Bump etcd and CCM builds (#6804)
- September K8s patch (#6810)
- Update cilium e2e test (#6816)
Charts Versions
Component | Version |
---|---|
rke2-cilium | 1.16.104 |
rke2-canal | v3.28.1-build2024091100 |
rke2-calico | v3.28.100 |
rke2-calico-crd | v3.28.100 |
rke2-coredns | 1.29.006 |
rke2-ingress-nginx | 4.10.402 |
rke2-metrics-server | 3.12.003 |
rancher-vsphere-csi | 3.3.0-rancher100 |
rancher-vsphere-cpi | 1.8.000 |
harvester-cloud-provider | 0.2.600 |
harvester-csi-driver | 0.1.1800 |
rke2-snapshot-controller | 1.7.202 |
rke2-snapshot-controller-crd | 1.7.202 |
rke2-snapshot-validation-webhook | 1.7.302 |
Release v1.29.8+rke2r1
This release updates Kubernetes to v1.29.8.
Important Note
If your server (control-plane) nodes were not started with the --token
CLI flag or config file key, a randomized token was generated during initial cluster startup. This key is used both for joining new nodes to the cluster, and for encrypting cluster bootstrap data within the datastore. Ensure that you retain a copy of this token, as is required when restoring from backup.
You may retrieve the token value from any server already joined to the cluster:
cat /var/lib/rancher/rke2/server/token
Changes since v1.29.7+rke2r1:
- Bump rke2-coredns to add option to use nodelocal dns cache with cilium (#6434)
- Bump rke2-calico chart to v3.28.100 (#6487)
- Bump nginx to hardened2 (#6481)
- Update for CNI flannel, Cilium and Canal (#6516)
- Fix external etcd connection (#6464)
- Rke2 shell completion (#6461)
- Bump k3s and containerd (#6525)
- Bump Harvester CSI driver v0.1.18 (#6394)
- Bump Harvester-csi-driver v0.1.18
- Fixed hns clean only in case of reboot (#6539)
- Bump containerd/crictl/runc versions (#6553)
- Fix for kill all to not delete the data dir (#6562)
- Update Kubernetes to v1.29.8 (#6573)
- Fix windows airgap image packaging (#6586)
- Fixed Flannel chart to rightly disable nft (#6608)
- Bump ingress-nginx to v1.10.4-hardened2 (#6612)
Charts Versions
Component | Version |
---|---|
rke2-cilium | 1.16.000 |
rke2-canal | v3.28.1-build2024080600 |
rke2-calico | v3.28.100 |
rke2-calico-crd | v3.28.100 |
rke2-coredns | 1.29.004 |
rke2-ingress-nginx | 4.10.401 |
rke2-metrics-server | 3.12.002 |
rancher-vsphere-csi | 3.3.0-rancher100 |
rancher-vsphere-cpi | 1.8.000 |
harvester-cloud-provider | 0.2.400 |
harvester-csi-driver | 0.1.1800 |
rke2-snapshot-controller | 1.7.202 |
rke2-snapshot-controller-crd | 1.7.202 |
rke2-snapshot-validation-webhook | 1.7.302 |
Release v1.29.7+rke2r1
This release updates Kubernetes to v1.29.7.
Important Note
If your server (control-plane) nodes were not started with the --token
CLI flag or config file key, a randomized token was generated during initial cluster startup. This key is used both for joining new nodes to the cluster, and for encrypting cluster bootstrap data within the datastore. Ensure that you retain a copy of this token, as is required when restoring from backup.
You may retrieve the token value from any server already joined to the cluster:
cat /var/lib/rancher/rke2/server/token
Changes since v1.29.6+rke2r1:
- GHA Migration (#6293)
- Bump multus to v4.0.206 (#6351)
- Version bumps and backports for 2024-07 release cycle (#6318)
- Bump vsphere csi chart to 3.3.0-rancher100 and cpi to 1.8.000 (#6342)
- Fix secrets for commit id uploads (#6367)
- Update Kubernetes to v1.29.7 (#6363)
- Publish binaries in dapper (#6380)
- Add missing package windows step in release (#6389)
- Add manifest pipeline for rke2-runtime docker image (#6399)
- Fix dispatch script (#6407)
Charts Versions
Component | Version |
---|---|
rke2-cilium | 1.15.500 |
rke2-canal | v3.28.0-build2024062503 |
rke2-calico | v3.27.300 |
rke2-calico-crd | v3.27.002 |
rke2-coredns | 1.29.002 |
rke2-ingress-nginx | 4.10.102 |
rke2-metrics-server | 3.12.002 |
rancher-vsphere-csi | 3.3.0-rancher100 |
rancher-vsphere-cpi | 1.8.000 |
harvester-cloud-provider | 0.2.400 |
harvester-csi-driver | 0.1.1700 |
rke2-snapshot-controller | 1.7.202 |
rke2-snapshot-controller-crd | 1.7.202 |
rke2-snapshot-validation-webhook | 1.7.302 |
Release v1.29.6+rke2r1
This release updates Kubernetes to v1.29.6.
Important Note
If your server (control-plane) nodes were not started with the --token
CLI flag or config file key, a randomized token was generated during initial cluster startup. This key is used both for joining new nodes to the cluster, and for encrypting cluster bootstrap data within the datastore. Ensure that you retain a copy of this token, as is required when restoring from backup.
You may retrieve the token value from any server already joined to the cluster:
cat /var/lib/rancher/rke2/server/token
Changes since v1.29.5+rke2r1:
- Improve rke2-uninstall.ps1 script (#5961)
- Update flannel chart to fix vni error (#5953) (#5996)
- Update cloud-provider image which now uses scratch as base (#5933) (#5987)
- Add cilium no proxy e2e test (#5885) (#5967)
- Add extra log in e2e tests (#6019)
- Bump flannel to v0.25.201 and canal to v3.28.0-build2024052800 (#6045)
- Add a Kine fix when rke2 restart apiserver (#6004)
- Bump multus and whereabouts version (#6015) (#6035)
- Bump harvester-cloud-provider v0.2.4 (#5981)
- Version bumps and backports for 2024-06 release cycle (#6081)
- Add easy support for single node sqlite with kine (#6072)
- Bump nginx to 1.10.1 (#6055)
- Bump K3s version for v1.29 (#6111)
- Bump containerd to correctly built tag (#6127)
- Bump flannel version (#6123)
- Update to the latest SR-IOV image versions (#6151)
- Bump flannel image in rke2-canal (#6152)
- Use
rancher/permissions
dependency (#6139) - Bump K3s version for v1.29 (#6165)
- Improve rke2-uninstall.ps1 (#6132)
- June Testing Backports (#6155)
- Fix loadManifests function
- Slim down E2E artifacts
- Support MixedOS E2E local testing
- Add custom golang setup action for better caching
- Update flannel version to v0.25.4 (#6177)
- Update go to 1.21.11 and kubernetes to v1.29.6 (#6190)
- Fix drone pipeline (#6198)
- Update drone build base image (#6205)
- Bump K3s version for v1.29 to fix regression in agent's supervisor port (#6201)
- Bump rke2-ingress-nginx chart to revert watchIngressWithoutClass default (#6217)
- Update hardened kubernetes (#6224)
- Bump K3s version for snapshot fix (#6231)
- Fix issue that allowed multiple simultaneous snapshots to be allowed
- Revert rke2-ingress-nginx bump back to v1.9.6 (#6244)
- Reinstate newest rke2-ingress-nginx (#6254)
- Update calico image to v3.28.0-build20240625 (#6258)
Charts Versions
Component | Version |
---|---|
rke2-cilium | 1.15.500 |
rke2-canal | v3.28.0-build2024062503 |
rke2-calico | v3.27.300 |
rke2-calico-crd | v3.27.002 |
rke2-coredns | 1.29.002 |
rke2-ingress-nginx | 4.10.101 |
rke2-metrics-server | 3.12.002 |
rancher-vsphere-csi | 3.1.2-rancher400 |
rancher-vsphere-cpi | 1.7.001 |
harvester-cloud-provider | 0.2.400 |
harvester-csi-driver | 0.1.1700 |
rke2-snapshot-controller | 1.7.202 |
rke2-snapshot-controller-crd | 1.7.202 |
rke2-snapshot-validation-webhook | 1.7.302 |
Release v1.29.5+rke2r1
This release updates Kubernetes to v1.29.5.
Important Note
If your server (control-plane) nodes were not started with the --token
CLI flag or config file key, a randomized token was generated during initial cluster startup. This key is used both for joining new nodes to the cluster, and for encrypting cluster bootstrap data within the datastore. Ensure that you retain a copy of this token, as is required when restoring from backup.
You may retrieve the token value from any server already joined to the cluster:
cat /var/lib/rancher/rke2/server/token
Changes since v1.29.4+rke2r1:
- Update stable channel to v1.28.9+rke2r1 (#5870)
- Add mixedos BGP e2e test (#5859)
- Remove flannel-v6.4096 when rke2-killall.sh (#5795)
- Update e2e test (#5880)
- Remove cni parameter from agent config (#5892)
- Add script to validate flannel versions (#5898)
- Fix mixedosbgp e2e test (#5902)
- E2E GH Action Test (#5908)
- Update k8s v1.29.5 and Go (#5915)
- Windows changes (#5919)
- Cilium version bump to 1.15.5 (#5940)
Charts Versions
Component | Version |
---|---|
rke2-cilium | 1.15.500 |
rke2-canal | v3.27.3-build2024042301 |
rke2-calico | v3.27.300 |
rke2-calico-crd | v3.27.002 |
rke2-coredns | 1.29.002 |
rke2-ingress-nginx | 4.9.100 |
rke2-metrics-server | 3.12.002 |
rancher-vsphere-csi | 3.1.2-rancher400 |
rancher-vsphere-cpi | 1.7.001 |
harvester-cloud-provider | 0.2.300 |
harvester-csi-driver | 0.1.1700 |
rke2-snapshot-controller | 1.7.202 |
rke2-snapshot-controller-crd | 1.7.202 |
rke2-snapshot-validation-webhook | 1.7.302 |
Release v1.29.4+rke2r1
This release updates Kubernetes to v1.29.4.
Important Note
If your server (control-plane) nodes were not started with the --token
CLI flag or config file key, a randomized token was generated during initial cluster startup. This key is used both for joining new nodes to the cluster, and for encrypting cluster bootstrap data within the datastore. Ensure that you retain a copy of this token, as is required when restoring from backup.
You may retrieve the token value from any server already joined to the cluster:
cat /var/lib/rancher/rke2/server/token
Changes since v1.29.3+rke2r1:
- Update channel server (#5631)
- Enable apiserver to access updated encryption-config.json (#5604)
- Delete epic github action (#5626)
- Remove kube-proxy static pod manifest during agent bootstrap (#5619)
- Properly handle files and sockets in extra mounts (#5621)
- Bump flannel version (#5638)
- Fix flannel bug to work in cluster with taints
- Improve how flannel-windows reserves an IP for kube-proxy vip (#5661)
- Add doc on building multi-arch images (#5670)
- Add kine support (#5540)
- Reenable Unit Testing in GitHub Actions (#5676)
- Overhaul integration testing (#5679)
- Bump ingress-nginx to 1.9.6 (#5671)
- Rework and fix nightly install tests (#5692)
- Update flannel to v0.25.0 (#5708)
- Fix Windows path setting (#5698)
- Update to Cilium v1.15.3 (#5713)
- Bump K3s version for 2024-04 release cycle (#5714)
- Calico and canal update (#5712)
- Check if the kube-proxy VIP was already reserved (#5705)
- Flannel in windows checks if a VIP was already reserved
- Update flannel to v0.25.1 (#5747)
- Fix subcommand mapping for
rke2 certificate
(#5750) - Bump harvester-cloud-provider v0.2.3 (#5694)
- Bump RKE2 CCM image tag (#5751)
- Bump metrics-server version (#5660)
- Bump metrics server version to v0.7.1 and start using scratch as its base image
- Update to Cilium v1.15.4 (#5764)
- Bump vsphere csi chart to 3.1.2-rancher300 and add snapshotter image (#5755)
- Vsphere csi bump (#5801)
- Update Kubernetes to v1.29.4 (#5799)
- Bump K3s version for v1.29 to pull through etcd-snapshot save fixes (#5816)
- Bump K3s version for dbinfo fix (#5822)
- Updated Calico and Flannel to fix ARM64 build (#5825)
- Update rke2-canal to v3.27.3-build2024042301 (#5834)
- Use the newer Flannel chart (#5842)
- Bump metrics-server chart to restore legacy label (#5849)
Charts Versions
Component | Version |
---|---|
rke2-cilium | 1.15.400 |
rke2-canal | v3.27.3-build2024042301 |
rke2-calico | v3.27.300 |
rke2-calico-crd | v3.27.002 |
rke2-coredns | 1.29.002 |
rke2-ingress-nginx | 4.9.100 |
rke2-metrics-server | 3.12.002 |
rancher-vsphere-csi | 3.1.2-rancher400 |
rancher-vsphere-cpi | 1.7.001 |
harvester-cloud-provider | 0.2.300 |
harvester-csi-driver | 0.1.1700 |
rke2-snapshot-controller | 1.7.202 |
rke2-snapshot-controller-crd | 1.7.202 |
rke2-snapshot-validation-webhook | 1.7.302 |
Release v1.29.3+rke2r1
This release updates Kubernetes to v1.29.3.
Canal uses flannel 0.24.3 which includes a bug: every 5 seconds it tries to add ipv6 iptables rules and fails if the node does not have an ipv6 address. The consequence is the log "Failed to ensure iptables rules: error setting up rules: failed to apply partial iptables-restore unable to run iptables-restore (, ): exit status 4" appears every 5 seconds in the flannel container of the canal pod.
Flannel daemonset is not tolerating node taints: "node-role.kubernetes.io/etcd:NoExecute", "node-role.kubernetes.io/control-plane:NoSchedule" and "node.cloudprovider.kubernetes.io/uninitialized:NoSchedule" which can create problems when deploying with Rancher in certain cloud-providers (e.g. vShpere or DigitalOcean).
If your server (control-plane) nodes were not started with the --token
CLI flag or config file key, a randomized token was generated during initial cluster startup. This key is used both for joining new nodes to the cluster, and for encrypting cluster bootstrap data within the datastore. Ensure that you retain a copy of this token, as is required when restoring from backup.
You may retrieve the token value from any server already joined to the cluster:
cat /var/lib/rancher/rke2/server/token
Changes since v1.29.2+rke2r1:
- Update latest to 1.27.11 (#5542)
- Remove old docs website action (#5465)
- Add a multus e2e test (#5483)
- Bump vsphere csi chart to 3.1.2-rancher101 and cpi to 1.7.001 (#5553)
- Fix DNS over TLS bug (#5552)
- Bump multus chart version (#5575)
- Update Calico and Canal to v3.27.2 (#5582)
- Bump K3s version for v1.29 (#5587)
- Fix: use correct wasm shims names
- Bump spegel to v0.0.18-k3s3
- Adds wildcard registry support
- Fixes issue with excessive CPU utilization while waiting for containerd to start
- Add env var to allow spegel mirroring of latest tag
- Bump helm-controller/klipper-helm versions
- Fix snapshot prune
- Fix issue with etcd node name missing hostname
- Fix additional corner cases in registries handling
- RKE2 will now warn and suppress duplicate entries in the mirror endpoint list for a registry. Containerd does not support listing the same endpoint multiple times as a mirror for a single upstream registry.
- Bump K3s version for v1.29 (#5605)
- Update k8s to 1.29.3 and Go (#5624)
- Actually bump k8s (#5627)
Charts Versions
Component | Version |
---|---|
rke2-cilium | 1.15.100 |
rke2-canal | v3.27.2-build2024030800 |
rke2-calico | v3.27.200 |
rke2-calico-crd | v3.27.002 |
rke2-coredns | 1.29.002 |
rke2-ingress-nginx | 4.8.200 |
rke2-metrics-server | 2.11.100-build2023051513 |
rancher-vsphere-csi | 3.1.2-rancher101 |
rancher-vsphere-cpi | 1.7.001 |
harvester-cloud-provider | 0.2.200 |
harvester-csi-driver | 0.1.1700 |
rke2-snapshot-controller | 1.7.202 |
rke2-snapshot-controller-crd | 1.7.202 |
rke2-snapshot-validation-webhook | 1.7.302 |
Release v1.29.2+rke2r1
This release updates Kubernetes to v1.29.2.
Experimental command rke2 secrets-encrypt rotate-keys is currently broken and should not be used. Use the classic secrets encryption commands detailed here.
If your server (control-plane) nodes were not started with the --token
CLI flag or config file key, a randomized token was generated during initial cluster startup. This key is used both for joining new nodes to the cluster, and for encrypting cluster bootstrap data within the datastore. Ensure that you retain a copy of this token, as is required when restoring from backup.
You may retrieve the token value from any server already joined to the cluster:
cat /var/lib/rancher/rke2/server/token
Changes since v1.29.1+rke2r1:
- Fix validate-chart scripts (#5160)
- Adding yml for new stale action (#5311)
- Secrets Encryption test (#5234)
- Bump actions/cache from 3 to 4 (#5312)
- Update channels for January 2024 patch (#5357)
- Only run flannel host-network CIS netpol controller when using canal CNI (#5318)
- Create a common CNI interface and config struct (#5276)
- Avoid race condition when deleting HNS networks (#5336)
- Add flannel CNI plugin (#5322)
- Flannel added as CNI plugin option
- Bump coredns and multus/whereabouts versions (#5379)
- Coredns, multus and whereabouts using minimal base images
- Fix: missing 'ip link delete cilium_wg0' in rke2-killall.sh (#5274)
- Add adr about rke2-flannel (#5145)
- Update canal version (#5414)
- Update Cilium to 1.15.0 (#5420)
- Improve cni windows code (#5421)
- Bump alpine from 3.18 to 3.19 (#5123)
- Bump harvester-csi-driver to 0.1.17 (#5332)
- Implement custom
containerd
behavior for Windows Agents, ensure supporting processes exit (#5419) - Update Calico to v3.27.0 (#5423)
- Bump K3s version for v1.29 (#5458)
- Update k8s and Go (#5470)
- Update Cilium to v1.15.1 (#5473)
- Bump rke2-coredns chart (#5493)
- Bump K3s for etcd-only fix (#5501)
- Add new network policy for ingress controller webhook (#5500)
- Refactor netpol creation and add two new netpols for metrics-server and snapshot-validation-webhook (#5521)
- Bump wharfie to v0.6.6 (#5517)
- Bump wharfie to v0.6.6 to add support for bare hostname as endpoint, fix unnecessary namespace param inclusion
Charts Versions
Component | Version |
---|---|
rke2-cilium | 1.15.100 |
rke2-canal | v3.27.0-build2024020601 |
rke2-calico | v3.27.002 |
rke2-calico-crd | v3.27.002 |
rke2-coredns | 1.29.001 |
rke2-ingress-nginx | 4.8.200 |
rke2-metrics-server | 2.11.100-build2023051513 |
rancher-vsphere-csi | 3.0.1-rancher101 |
rancher-vsphere-cpi | 1.5.100 |
harvester-cloud-provider | 0.2.200 |
harvester-csi-driver | 0.1.1700 |
rke2-snapshot-controller | 1.7.202 |
rke2-snapshot-controller-crd | 1.7.202 |
rke2-snapshot-validation-webhook | 1.7.302 |
Release v1.29.1+rke2r1
This release updates Kubernetes to v1.29.1.
Addresses the runc CVE: CVE-2024-21626 by updating runc to v1.1.12.
If your server (control-plane) nodes were not started with the --token
CLI flag or config file key, a randomized token was generated during initial cluster startup. This key is used both for joining new nodes to the cluster, and for encrypting cluster bootstrap data within the datastore. Ensure that you retain a copy of this token, as is required when restoring from backup.
You may retrieve the token value from any server already joined to the cluster:
cat /var/lib/rancher/rke2/server/token
Changes since v1.29.0+rke2r1:
- Update channels (#5172)
- Bump actions/setup-go from 4 to 5 (#5125)
- Use dl.k8s.io for getting kubectl (#4952)
- Bump actions/setup-python from 4 to 5 (#5124)
- Address Repetitive Windows Bootstrapping (#5159)
- Unload selinux module only if container-selinux is updated from a bre… (#5157)
- Add v1.29 to channels list (#5194)
- Version bump of coredns chart to fix bug (#5189)
- Fix coredns local cache when in dual stack clusters
- Update multus chart to add optional dhcp daemonset (#5146)
- Add e2e test for dnscache (#5190)
- Update rke2-whereabouts to v0.6.3 and bump rke2-multus parent chart (#5232)
- Bump sriov image build versions (#5237)
- Enable arm64 based images for calico, multus and harvester (#5154)
- Improve kube-proxy logging and move calico logs to a better path (#5248)
- Bump k3s for v1.29 (#5268)
- Update to 1.29.1 (#5296)
- Update base image (#5305)
- Bump K3s and runc versions for v1.29 (#5349)
Charts Versions
Component | Version |
---|---|
rke2-cilium | 1.14.400 |
rke2-canal | v3.26.3-build2023110900 |
rke2-calico | v3.26.300 |
rke2-calico-crd | v3.26.300 |
rke2-coredns | 1.24.008 |
rke2-ingress-nginx | 4.8.200 |
rke2-metrics-server | 2.11.100-build2023051511 |
rancher-vsphere-csi | 3.0.1-rancher101 |
rancher-vsphere-cpi | 1.5.100 |
harvester-cloud-provider | 0.2.200 |
harvester-csi-driver | 0.1.1600 |
rke2-snapshot-controller | 1.7.202 |
rke2-snapshot-controller-crd | 1.7.202 |
rke2-snapshot-validation-webhook | 1.7.302 |
Release v1.29.0+rke2r1
This release is RKE2's first in the v1.29 line. This release updates Kubernetes to v1.29.0.
Before upgrading from earlier releases, be sure to read the Kubernetes Urgent Upgrade Notes.
- The experimental
secrets-encrypt rotate-keys
command, used to perform an abbreviated rotation of secrets encryptions keys, has been removed from this release due to changes in the upstream implementation of configuration reloading. It will return in a subsequent release; see https://github.com/rancher/rke2/issues/5152 for more information.
Changes since v1.28.4+rke2r1:
- Bump k3s version for v1.29 (#5153)
- Bump k3s and kubernetes versions for v1.29.0 (#5144)
- ⚠️ added support for amazon linux 2023 (#4973) (#4973)
- Bump containerd to v1.7.11 (#5129)
- Bumped containerd/runc to v1.7.10/v1.1.10 (#5117)
- Update stable channel to v1.26.11+rke2r1 (#5099)
Charts Versions
Component | Version |
---|---|
rke2-cilium | 1.14.400 |
rke2-canal | v3.26.3-build2023110900 |
rke2-calico | v3.26.300 |
rke2-calico-crd | v3.26.300 |
rke2-coredns | 1.24.007 |
rke2-ingress-nginx | 4.8.200 |
rke2-metrics-server | 2.11.100-build2023051511 |
rancher-vsphere-csi | 3.0.1-rancher101 |
rancher-vsphere-cpi | 1.5.100 |
harvester-cloud-provider | 0.2.200 |
harvester-csi-driver | 0.1.1600 |
rke2-snapshot-controller | 1.7.202 |
rke2-snapshot-controller-crd | 1.7.202 |
rke2-snapshot-validation-webhook | 1.7.302 |