Skip to content

v1.125.0

Compare
Choose a tag to compare
@yuwenma yuwenma released this 14 Nov 16:25
· 500 commits to master since this release
75e05f0

New Beta Resources (Direct Reconciler):

New Alpha Resources (Direct Reconciler):

  • KMSAutokeyConfig

    • Manage the KMS auto key which simplifies the CMEKs provisioning and assignment.

New Fields:

  • AlloyDBInstance (Beta)
    • Added spec.networkConfig.enableOutboundPublicIp field.
    • Added status.outboundPublicIpAddresses field.

Reconciliation Improvements

We've enhanced the following resources with a new direct controller, boosting their reliability and performance. While they'll continue to function with their existing Terraform-based or DCL-based controllers by default, the direct controller offers significant improvements. Notably, this enhancement doesn't require any changes to the resource CRD.

  • SQLInstance

    • You can use the alpha.cnrm.cloud.google.com/reconciler: direct annotation on the SQLInstance CR object to opt-in the direct controller.
    • The direct reconciler contains 2 fix and improvement:
      • Fix the upgrade and downgrade issue between ENTERPRISE and ENTERPRISE_PLUS.
      • Supports "creating from clone" via spec.cloneSource
  • ComputeFirewallPolicyRule

    • You can use the alpha.cnrm.cloud.google.com/reconciler: direct annotation on the ComputeFirewallPolicyRule CR object to opt-in the direct controller, which fixes the targetResources error required value "priority" could not be found.

New features:

  • Add cluster mode to manage the rate-limit for the Config Connector requests

    • In v1.119, we added rate-limit control in namespace mode. Users can configure the NamespacedControllerReconciler object (Alpha) to set the rate-limit for the reconciling requests to the kube-apiserver for their Config Connector resources.
    • In this release, we add this feature for cluster mode. User can configure the ControllerReconciler object (Alpha) to set the rate-limit for all their cnrm manager controllers in the cluster. This example shows how to set up the configuration.

Bug Fixes:

  • Issue 3007 ComputeBackendService cannot refer clientTLSPolicy due to invalid format
  • Issue 2973 kubelet_config has insecure_kubelet_readonly_port_enabled: true set even if not configured in the ContainerNodePool object.
  • Issue 3140 BigQueryConnectionConnection requires UUID to acquire the resource.