v1.29.X
Upgrade Notice
Before upgrading from earlier releases, be sure to read the Kubernetes Urgent Upgrade Notes.
| Version | Release date | Kubernetes | Kine | SQLite | Etcd | Containerd | Runc | Flannel | Metrics-server | Traefik | CoreDNS | Helm-controller | Local-path-provisioner |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| v1.29.2+k3s1 | Feb 29 2024 | v1.29.2 | v0.11.4 | 3.44.0 | v3.5.9-k3s1 | v1.7.11-k3s2 | v1.1.12-k3s1 | v0.24.2 | v0.6.3 | v2.10.5 | v1.10.1 | v0.15.8 | v0.0.26 |
| v1.29.1+k3s2 | Feb 06 2024 | v1.29.1 | v0.11.0 | 3.42.0 | v3.5.9-k3s1 | v1.7.11-k3s2 | v1.1.12-k3s1 | v0.24.0 | v0.6.3 | v2.10.5 | v1.10.1 | v0.15.8 | v0.0.24 |
| v1.29.0+k3s1 | Dec 22 2023 | v1.29.0 | v0.11.0 | 3.42.0 | v3.5.9-k3s1 | v1.7.11-k3s2 | v1.1.10 | v0.24.0 | v0.6.3 | v2.10.5 | v1.10.1 | v0.15.4 | v0.0.24 |
Release v1.29.2+k3s1
This release updates Kubernetes to v1.29.2, and fixes a number of issues.
For more details on what's new, see the Kubernetes release notes.
Changes since v1.29.1+k3s2:
- Bump Local Path Provisioner version (#8953)
- Add ability to install K3s PR Artifact from GitHub (#9185)
- Adds
INSTALL_K3S_PRoption to install a build of K3s from any open PR with CI approval
- Adds
- Bump Trivy version (#9237)
- Bump codecov/codecov-action from 3 to 4 (#9353)
- Update stable channel (#9388)
- Fix snapshot reconcile retry (#9318)
- Add check for etcd-snapshot-dir and fix panic in Walk (#9317)
- Bump CNI plugins to v1.4.0 (#9249)
- Fix issue with coredns node hosts controller (#9354)
- Fixed issue that could cause coredns pods to fail to start when the embedded helm controller is disabled, due to the configmap not being updated with node hosts entries.
- Fix on-demand snapshots on ipv6-only nodes (#9247)
- Bump flannel version (#9395)
- Bumped flannel to v0.24.2
- Build: Align drone base images (#8959)
- Changed how lastHeartBeatTime works in the etcd condition (#9263)
- Runtimes refactor using exec.LookPath (#9311)
- Directories containing runtimes need to be included in the $PATH environment variable for effective runtime detection.
- Bump cri-dockerd to fix compat with Docker Engine 25 (#9290)
- Add codcov secret for integration tests on Push (#9422)
- Allow executors to define
containerdandcridockerdbehavior (#9184) - Update Kube-router to v2.0.1 (#9396)
- : Test_UnitApplyContainerdQoSClassConfigFileIfPresent (Created) (#8945)
- Readd
k3s secrets-encrypt rotate-keyswith correct support for KMSv2 GA (#9340) - Fix iptables check when sbin isn't in user PATH (#9344)
- Don't create NodePasswordValidationFailed event if agent is disabled (#9312)
- The
NodePasswordValidationFailedEvents will no longer be emitted, if the agent is disabled.
- The
- Expose rootless state dir under ~/.rancher/k3s/rootless (#9308)
- When running k3s in rootless mode, expose rootlesskit's state directory as
~/.rancher/k3s/rootless
- When running k3s in rootless mode, expose rootlesskit's state directory as
- Expose rootless containerd socket directories for external access (#9309)
- Mount k3s rootless containerd & cri-dockerd socket directories to
$XDG_RUNTIME_DIR/k3s/containerdand$XDG_RUNTIME_DIR/k3s/cri-dockerdrespectively.
- Mount k3s rootless containerd & cri-dockerd socket directories to
- Bump kine and set NotifyInterval to what the apiserver expects (#9349)
- Update Kubernetes to v1.29.2 (#9493)
- Fix drone publish for arm (#9503)
- Remove failing Drone step (#9517)
- Restore original order of agent startup functions (#9539)
- Fix netpol startup when flannel is disabled (#9571)
Release v1.29.1+k3s2
This release updates Kubernetes to v1.29.1, and fixes a number of issues.
For more details on what's new, see the Kubernetes release notes.
Important Notes
Addresses the runc CVE: CVE-2024-21626 by updating runc to v1.1.12.
Changes since v1.29.0+k3s1:
- Bump Sonobuoy version (#8910)
- Bump actions/setup-go from 4 to 5 (#9036)
- Chore: Update Code of Conduct to Redirect to CNCF CoC (#9104)
- NONE
- Update stable channel to v1.28.5+k3s1 and add v1.29 channel (#9110)
- Added support for env *_PROXY variables for agent loadbalancer (#9070)
- HTTP_PROXY, HTTPS_PROXY and NO_PROXY environment variables are now taken into account by the agent loadbalancer if K3S_AGENT_HTTP_PROXY_ALLOWED env variable is set to true.
- This however doesn't affect local requests as the function used prevents that: https://pkg.go.dev/net/http#ProxyFromEnvironment.
- Add a retry around updating a secrets-encrypt node annotations (#9039)
- Silence SELinux warning on INSTALL_K3S_SKIP_SELINUX_RPM (#8703)
- Add ServiceLB support for PodHostIPs FeatureGate (#8917)
- Added support for env *_PROXY variables for agent loadbalancer (#9118)
- Redirect error stream to null when checking nm-cloud systemd unit (#8815)
- Remove confusing "nm-cloud-setup.service: No such file or directory" journalctl log
- Dockerfile.dapper: set $HOME properly (#9090)
- Add system-agent-installer-k3s step to GA release instructions (#9153)
- Fix install script checksum (#9159)
- Fix the OTHER etcd snapshot s3 log message that prints the wrong variable (#8944)
- Handle logging flags when parsing kube-proxy args (#8916)
- Fix nil map in full snapshot configmap reconcile (#9049)
- Add support for containerd cri registry config_path (#8973)
- Add more paths to crun runtime detection (#9086)
- Add runtime checking of golang version (#9054)
- Fix OS PRETTY_NAME on tagged releases (#9062)
- Print error when downloading file error inside install script (#6874)
- Wait for cloud-provider taint to be gone before starting the netpol controller (#9076)
- Bump Trivy version (#8812)
- Use
ipFamilyPolicy: RequireDualStackfor dual-stack kube-dns (#8984) - Handle etcd status condition when node is not ready and disable etcd (#9084)
- Update s3 e2e test (#9025)
- Add e2e startup test for rootless k3s (#8383)
- Add spegel distributed registry mirror (#8977)
- Bump quic-go for CVE-2023-49295 (#9208)
- Enable network policy controller metrics (#9195)
- Kube-router network policy controller metrics are now exposed via the default node metrics endpoint
- Fix nonexistent dependency repositories (#9213)
- Move proxy dialer out of init() and fix crash when using
K3S_AGENT_HTTP_PROXY_ALLOWED=true(#9219) - Error getting node in setEtcdStatusCondition (#9210)
- Update to v1.29.1 and Go 1.21.6 (#9259)
- New stale action (#9278)
- Fix handling of bare hostname or IP as endpoint address in registries.yaml (#9323)
- Bump runc to v1.1.12 and helm-controller to v0.15.7 (#9332)
- Bump helm-controller to fix issue with ChartContent (#9345)
Release v1.29.0+k3s1
This release is K3S's first in the v1.29 line. This release updates Kubernetes to v1.29.0.
Before upgrading from earlier releases, be sure to read the Kubernetes Urgent Upgrade Notes.
Important
This release removes the expiremental rotate-keys subcommand due to changes in Kubernetes upstream for KMSv2, the subcommand should be added back in future releases.
Important
This release also removes the multi-cluster-cidr flag, since the support for this alpha feature has been removed completely from Kubernetes upstream, this flag should be removed from the configuration before upgrade.
Changes since v1.28.4+k3s2:
- Fix overlapping address range (#8913)
- Modify CONTRIBUTING.md guide (#8954)
- Nov 2023 stable channel update (#9022)
- Default runtime and runtime classes for wasm/nvidia/crun (#8936)
- Added runtime classes for wasm/nvidia/crun
- Added default runtime flag for containerd
- Bump containerd/runc to v1.7.10-k3s1/v1.1.10 (#8962)
- Allow setting default-runtime on servers (#9027)
- Bump containerd to v1.7.11 (#9040)
- Remove GA feature-gates (#8970)
- Only publish to code_cov on merged E2E builds (#9051)
- Update Kubernetes to v1.29.0+k3s1 (#9052)
- Update flannel to v0.24.0 and remove multiclustercidr flag (#9075)
- Remove rotate-keys subcommand (#9079)