Skip to main content


Upgrade Notice

Before upgrading from earlier releases, be sure to read the Kubernetes Urgent Upgrade Notes.

VersionRelease dateKubernetesEtcdContainerdRuncMetrics-serverCoreDNSIngress-NginxHelm-controllerCanal (Default)CalicoCiliumMultus
v1.29.1+rke2r1Feb 06 2024v1.29.1v3.5.9-k3s1v1.7.11-k3s2v1.1.12v0.6.3v1.10.1nginx-1.9.3-hardened1v0.15.8Flannel v0.23.0
Calico v3.26.3
v1.29.0+rke2r1Dec 22 2023v1.29.0v3.5.9-k3s1v1.7.11-k3s1v1.1.10v0.6.3v1.10.1nginx-1.9.3-hardened1v0.15.4Flannel v0.23.0
Calico v3.26.3

Release v1.29.1+rke2r1

This release updates Kubernetes to v1.29.1.

Important Notes

Addresses the runc CVE: CVE-2024-21626 by updating runc to v1.1.12.

If your server (control-plane) nodes were not started with the --token CLI flag or config file key, a randomized token was generated during initial cluster startup. This key is used both for joining new nodes to the cluster, and for encrypting cluster bootstrap data within the datastore. Ensure that you retain a copy of this token, as is required when restoring from backup.

You may retrieve the token value from any server already joined to the cluster:

cat /var/lib/rancher/rke2/server/token

Changes since v1.29.0+rke2r1:

  • Update channels (#5172)
  • Bump actions/setup-go from 4 to 5 (#5125)
  • Use for getting kubectl (#4952)
  • Bump actions/setup-python from 4 to 5 (#5124)
  • Address Repetitive Windows Bootstrapping (#5159)
  • Unload selinux module only if container-selinux is updated from a bre… (#5157)
  • Add v1.29 to channels list (#5194)
  • Version bump of coredns chart to fix bug (#5189)
    • Fix coredns local cache when in dual stack clusters
  • Update multus chart to add optional dhcp daemonset (#5146)
  • Add e2e test for dnscache (#5190)
  • Update rke2-whereabouts to v0.6.3 and bump rke2-multus parent chart (#5232)
  • Bump sriov image build verions (#5237)
  • Enable arm64 based images for calico, multus and harvester (#5154)
  • Improve kube-proxy logging and move calico logs to a better path (#5248)
  • Bump k3s for v1.29 (#5268)
  • Update to 1.29.1 (#5296)
  • Update base image (#5305)
  • Bump K3s and runc versions for v1.29 (#5349)

Release v1.29.0+rke2r1

This release is RKE2's first in the v1.29 line. This release updates Kubernetes to v1.29.0.

Before upgrading from earlier releases, be sure to read the Kubernetes Urgent Upgrade Notes.

Important Notes
  • The experimental secrets-encrypt rotate-keys command, used to perform an abbreviated rotation of secrets encryptions keys, has been removed from this release due to changes in the upstream implementation of configuration reloading. It will return in a subsequent release; see for more information.

Changes since v1.28.4+rke2r1:

  • Bump k3s version for v1.29 (#5153)
  • Bump k3s and kubernetes versions for v1.29.0 (#5144)
  • ⚠️ added support for amazon linux 2023 (#4973) (#4973)
  • Bump containerd to v1.7.11 (#5129)
  • Bumped containerd/runc to v1.7.10/v1.1.10 (#5117)
  • Update stable channel to v1.26.11+rke2r1 (#5099)

Charts Versions