Releases: Azure/ARO-RP
Release v20240219.00
Release 249
Changes
5ac65fd Don't add security context on <4.11 as OpenShift restricted SCCs do not tolerate it (#3401)
f4d03fb add archv1 check to multiple ip static validation (#3406)
7f99749 Don't accept TLS 1.0/1.1 Connections (#3378)
00a44ec Remove BYO NSG references and replace with Preconfigure NSG
34ed0d7 Adjust the NSG validation logic for GA
Full Changelog: v20240214.00...v20240219.00
Release v20240214.00
Update OCP Versions Release v20240214.00
Changes
6a55690 Bump github.com/containers/podman/v4 from 4.4.2 to 4.5.0 (#3390)
7744ef9 Update Hive dev install (#3407)
94b690c fix go 1.20 change around proxy and default user agents (#3408)
b628965 Mirror hive revender images
320a151 Merge pull request #3399 from Azure/dependabot/github_actions/golangci/golangci-lint-action-4
6bd01cd Revendor hive to 5fbe0d158ba9 (#3377)
b1b305f Bump golangci/golangci-lint-action from 3 to 4
9eb8db1 Update cluster lifecycle API fields to readOnly (#3380)
b359efd Wrap K8s client in E2E with retry logic (#3366)
e7721a0 Remove unused old code (#3383)
2d7fc45 Merge pull request #3170 from hawkowl/hawkowl/denyassignment-insights
47121a5 Bump github.com/opencontainers/runc from 1.1.6 to 1.1.12
6e8e4e1 HiveNamespace to use docID/clusterID for new Installs (#2992)
2ac8d65 Added FP Check for validation (#3335)
7a40bfb Update MUO to use proper pod and container security context
d371674 Add securityContext to ARO worker and master operator deployments as required by k8s v1.27.x
9c6eab8 Do not exit NSG monitor when unable to get subnet (#3372)
b6e1b07 Use another method of FIPS validation (fips-detect) (#3363)
d11a633 Add E2E test for host servicing (#3334)
087e409 Hopefully fix E2E flake related to deletion of a test Service (#3336)
2a0ef0e Return error on certificateexpirationstatus monitor when IngressController is invalid rather than panic (#3371)
efd4743 Update shared cluster usage (#3332)
bb3365f Move Dockerfile build paths outside of GOPATH (#3364)
51e2628 update docs
340fc37 Remove Dockerfile.aro and the image-aro Makefile -- the images made from it have the potential to be built with inconsistent Golang versions.
5d4995a Refactoring per comments in #3324 (#3358)
01cb9bb Remove additional private preview logic for NSG.
88e12fe Delete the flag const
5d17746 Delete AFEC flag behavior for preconfiguredNSG
714feb2 Merge pull request #3367 from cblecker/ylp
6684b05 Add permissions stanza to yamllint GH action
922c77d Update deploy-development-rp.md (#3359)
3abcd30 2023-11-22 stable API (porting 07-01-preview api) (#3300)
809041f Move default openshift version (#3094)
016ba7b Bump follow-redirects from 1.15.2 to 1.15.4 in /portal/v1 (#3348)
b4e8930 Make env know what the service component its running is (#3254)
253a59e Trim the dependency tree (#3351)
a9fca79 allow metricalerts, actiongroups, and activitylogalerts for monitoring on the RG
Full Changelog: v20240116.00...v20240214.00
Release v20240116.01
release v202401160.01
Changes
c3284c0 Return error on certificateexpirationstatus monitor when IngressController is invalid rather than panic (#3371)
Full Changelog: v20240116.00...v20240116.01
Release v20240116.00
Release 248
Changes
aee18fe Improve NSG monitoring by retrieving subnet only once (#3324)
5068e9d Add unit tests for ensureAccessTokenClaims (#3337)
aaca34e Add Go 1.20 images (and ose-tools-rhel8 for 4.14) (#3349)
81e0cf6 Bump follow-redirects from 1.15.2 to 1.15.4 in /portal/v2 (#3347)
477a045 Add maintenance state for customer action needed (#3294)
e7550b1 Fixing cert metric emitting condition param (#3284)
40e7987 Fixing magic strings on operator flags (#3327)
89f5089 Remove aro build tag as it's not needed for the ARO-RP (#3341)
5218c82 Merge pull request #3319 from yjst2012/guardrails-add-user
82f4728 Remove dnsmasq restart script for new clusters (#3313)
9a622ab Update APAC CODEOWNERS (#3338)
4afe1d7 disable gzip compression as a workaround (#3339)
6f75d7f References to new repos and steps to update wrapper instead of RP (#3311)
7bf277b iterate over all namespaces to find out if another gatekeeper is deployed
7ac04c0 Bump github/codeql-action from 2 to 3
c2e4bf4 Bump golang.org/x/crypto from 0.14.0 to 0.17.0
5aac7c6 Bump github.com/containerd/containerd from 1.6.18 to 1.6.26
3b2db9c Added space and fixed grammar in user-facing error messages
d7377e7 Capitalize Azure in customer-facing error message
adb1f0c Update attachNSGs cluster install step to retry if Azure complains that NSG is not yet ready
af1f7ae dynamic validation on CIDR
fe32083 use aro-must-gather for CI
f3f4d1b Add information to admin-portal.md about Prometheus UI
23290e4 Include and serve static prometheus web UI in admin portal
de1b399 az aro update CredentialsRequest hotfix (#3325)
21f0e23 move from debugf to infof
e2acf59 remove managedBy check
bcde358 add shared-cluster to rg clean deny list
17ad431 update test cases
aad0e2d Merge pull request #3320 from Azure/dependabot/github_actions/actions/setup-go-5
4d59736 Bump actions/setup-go from 4 to 5
1b8adb2 let the cleanup continue when failure occurs
0312703 added exempted user to guardrails
c3d127a Use image digests for fluentbit images (#3316)
ae4a304 Merge pull request #3317 from Azure/dofinn-patch-1
924cf83 Update prepare-your-dev-environment.md
91fd9d0 Enable 4.13.23 as an install target instead of 4.13.16 (#3314)
cb6ab10 Enable 4.13.16 as an install target (#3312)
14d5b29 Remove openshift/installer vendored dependency script (#3301)
Full Changelog: v20231201.01...v20240116.00
Release v20231214.00
Fix update with --refresh-credentials
Changes
fa10ea5 az aro update CredentialsRequest hotfix (#3325)
Full Changelog: v20231201.01...v20231214.00
Release v20231201.01-hotfix
Hotfix to allow update with --refresh-credentials
Changes
fa10ea5 az aro update CredentialsRequest hotfix (#3325)
Full Changelog: v20231201.01...v20231201.01-hotfix
Release 245
v20231201.01 Release 245
Release v20231201.00
Release 245
Changes
86deb39 MDM Image Bump - ARO-4792 (#3297)
72fd8ad Update Go Vendored Modules - ARO-4776 (#3302)
01ce6a1 Add libzstd.so.1 to fluentbit container build
548ad5c Merge pull request #3232 from SrinivasAtmakuri/remove-IsLessThanMinimumDuration
6b15494 fix(admin): Ensure check on certData slice
9b92b4f Admin action to delete a cluster managed resource (#3286)
a017435 ARO-4779: Mirror new hive image to close vulns
b867811 ARO-4779: Update hive dependency to close vulns
72cad15 Remove version 4.11.26 as it's affected by installation bugs
e4eea7f Use an enum for cluster maintenance states (#3230)
9a9edac Update ARO operator Azure auth scheme to use a DefaultAzureCredential (#3274)
d710619 test case validateEtcdCertsRenewed func
afa28a3 fix not returning arm template errors (#3288)
966f7a1 graph: Allow gzip compression in requests
4a1ea40 Remove journald fields that aren't needed (#3283)
06f78b7 Watch MachineSets for worker subnet changes instead of Machines (#3280)
e7f5140 Migrate documentdb client from sdk track 1 to track 2 client (#3255)
a85b8d0 FedRAMP TLS 1.3 Compliance (#3285)
f421bac Rename installLogsForDeployment to indicate latest deployment
e9e3c7a Implement generic handling for Hive ProvisionFailed=True conditions w/ Azure policy errors
ae5c57b Add hack script to generate hive install-log-regexes.yaml from ARO definition
ac7cf2f Fix CVE-2023-45857 npm vulnerability found in audit (#3279)
19703fe move default IP creation outside of newPublicLoadBalancer method
3d7c789 remove outdated comment
d37aae3 add unit tests for multiple IP aro create
7e09f87 Add extra validation and remove IsLessThanMinDuration
Full Changelog: v20231110.00...v20231201.00
Release v20231110.00
Release 244
This release includes fixes for E2E tests
Release v20231108.00
Re-Release of Sprint 244 to include ms graph workaround
Changes
d25e7f2 graph: Add HTTP tracing option for MS Graph requests (#3269)
67d06bd Propagate errors of GenevaLogging controller (#3221)
e278fd6 Add some more golangci-lint linters and fix the issues they find (#3234)
c53b31c add cluster check alert
590cc52 add muo alerts
18a57a3 Update RP Documentatation with Etcd Recovery URL
83b2a55 Delete OpenShiftVersions via change-feed (#3262)
35a5f16 Bump Hive Version + Minimal Install (#3260)
f042c81 Fix e2e test for azurefile-csi storage class that uses ARO-managed storage account on OCP 4.11 (#3226)
a0cc0ee Patch Hive ClusterDeployment rather than update it (#3244)
9100c81 clean up some of the monitor emitting metrics for aro operator statuses and prometheus (#3235)
0dd1ec9 Add defaults and update k8s dev version (#3245)
6e66ecd Merge pull request #3251 from Azure/dependabot/go_modules/github.com/docker/docker-24.0.7incompatible
7e96231 Bump github.com/docker/docker
Full Changelog: v20231031.00...v20231108.00