diff --git a/CHANGES.md b/CHANGES.md index d5a8a084..4611ecdb 100644 --- a/CHANGES.md +++ b/CHANGES.md @@ -7,8 +7,9 @@ Notable changes between versions. * Use Kubelet [TLS bootstrap](https://kubernetes.io/docs/reference/command-line-tools-reference/kubelet-tls-bootstrapping/) with bootstrap token authentication ([#713](https://github.com/poseidon/typhoon/pull/713)) * Enable Node [Authorization](https://kubernetes.io/docs/reference/access-authn-authz/node/) and [NodeRestriction](https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#noderestriction) to reduce authorization scope * Renew Kubelet certificates every 72 hours -* Add CoreDNS node affinity preference for controller nodes ([#188](https://github.com/poseidon/terraform-render-bootstrap/pull/188)) +* Update etcd from v3.4.7 to [v3.4.9](https://github.com/etcd-io/etcd/releases/tag/v3.4.9) * Update Calico from v3.13.1 to [v3.14.0](https://docs.projectcalico.org/v3.14/release-notes/) +* Add CoreDNS node affinity preference for controller nodes ([#188](https://github.com/poseidon/terraform-render-bootstrap/pull/188)) * Deprecate CoreOS Container Linux support (no OS [updates](https://coreos.com/os/eol/) after May 2020) * Use a `fedora-coreos` module for Fedora CoreOS * Use a `container-linux` module for Flatcar Linux diff --git a/aws/container-linux/kubernetes/cl/controller.yaml b/aws/container-linux/kubernetes/cl/controller.yaml index 36283501..a62691be 100644 --- a/aws/container-linux/kubernetes/cl/controller.yaml +++ b/aws/container-linux/kubernetes/cl/controller.yaml @@ -7,7 +7,7 @@ systemd: - name: 40-etcd-cluster.conf contents: | [Service] - Environment="ETCD_IMAGE_TAG=v3.4.8" + Environment="ETCD_IMAGE_TAG=v3.4.9" Environment="ETCD_IMAGE_URL=docker://quay.io/coreos/etcd" Environment="RKT_RUN_ARGS=--insecure-options=image" Environment="ETCD_NAME=${etcd_name}" diff --git a/aws/fedora-coreos/kubernetes/fcc/controller.yaml b/aws/fedora-coreos/kubernetes/fcc/controller.yaml index a9842422..129a8d92 100644 --- a/aws/fedora-coreos/kubernetes/fcc/controller.yaml +++ b/aws/fedora-coreos/kubernetes/fcc/controller.yaml @@ -28,7 +28,7 @@ systemd: --network host \ --volume /var/lib/etcd:/var/lib/etcd:rw,Z \ --volume /etc/ssl/etcd:/etc/ssl/certs:ro,Z \ - quay.io/coreos/etcd:v3.4.8 + quay.io/coreos/etcd:v3.4.9 ExecStop=/usr/bin/podman stop etcd [Install] WantedBy=multi-user.target diff --git a/azure/container-linux/kubernetes/cl/controller.yaml b/azure/container-linux/kubernetes/cl/controller.yaml index c819592f..77090bd9 100644 --- a/azure/container-linux/kubernetes/cl/controller.yaml +++ b/azure/container-linux/kubernetes/cl/controller.yaml @@ -7,7 +7,7 @@ systemd: - name: 40-etcd-cluster.conf contents: | [Service] - Environment="ETCD_IMAGE_TAG=v3.4.8" + Environment="ETCD_IMAGE_TAG=v3.4.9" Environment="ETCD_IMAGE_URL=docker://quay.io/coreos/etcd" Environment="RKT_RUN_ARGS=--insecure-options=image" Environment="ETCD_NAME=${etcd_name}" diff --git a/azure/fedora-coreos/kubernetes/fcc/controller.yaml b/azure/fedora-coreos/kubernetes/fcc/controller.yaml index 9255564e..c38b2df3 100644 --- a/azure/fedora-coreos/kubernetes/fcc/controller.yaml +++ b/azure/fedora-coreos/kubernetes/fcc/controller.yaml @@ -28,7 +28,7 @@ systemd: --network host \ --volume /var/lib/etcd:/var/lib/etcd:rw,Z \ --volume /etc/ssl/etcd:/etc/ssl/certs:ro,Z \ - quay.io/coreos/etcd:v3.4.8 + quay.io/coreos/etcd:v3.4.9 ExecStop=/usr/bin/podman stop etcd [Install] WantedBy=multi-user.target diff --git a/bare-metal/container-linux/kubernetes/cl/controller.yaml b/bare-metal/container-linux/kubernetes/cl/controller.yaml index 10b5a9c3..387ced5e 100644 --- a/bare-metal/container-linux/kubernetes/cl/controller.yaml +++ b/bare-metal/container-linux/kubernetes/cl/controller.yaml @@ -7,7 +7,7 @@ systemd: - name: 40-etcd-cluster.conf contents: | [Service] - Environment="ETCD_IMAGE_TAG=v3.4.8" + Environment="ETCD_IMAGE_TAG=v3.4.9" Environment="ETCD_IMAGE_URL=docker://quay.io/coreos/etcd" Environment="RKT_RUN_ARGS=--insecure-options=image" Environment="ETCD_NAME=${etcd_name}" diff --git a/bare-metal/fedora-coreos/kubernetes/fcc/controller.yaml b/bare-metal/fedora-coreos/kubernetes/fcc/controller.yaml index f1baa6fd..2ac16271 100644 --- a/bare-metal/fedora-coreos/kubernetes/fcc/controller.yaml +++ b/bare-metal/fedora-coreos/kubernetes/fcc/controller.yaml @@ -28,7 +28,7 @@ systemd: --network host \ --volume /var/lib/etcd:/var/lib/etcd:rw,Z \ --volume /etc/ssl/etcd:/etc/ssl/certs:ro,Z \ - quay.io/coreos/etcd:v3.4.8 + quay.io/coreos/etcd:v3.4.9 ExecStop=/usr/bin/podman stop etcd [Install] WantedBy=multi-user.target diff --git a/digital-ocean/container-linux/kubernetes/cl/controller.yaml b/digital-ocean/container-linux/kubernetes/cl/controller.yaml index c3c7eee9..9656b827 100644 --- a/digital-ocean/container-linux/kubernetes/cl/controller.yaml +++ b/digital-ocean/container-linux/kubernetes/cl/controller.yaml @@ -7,7 +7,7 @@ systemd: - name: 40-etcd-cluster.conf contents: | [Service] - Environment="ETCD_IMAGE_TAG=v3.4.8" + Environment="ETCD_IMAGE_TAG=v3.4.9" Environment="ETCD_IMAGE_URL=docker://quay.io/coreos/etcd" Environment="RKT_RUN_ARGS=--insecure-options=image" Environment="ETCD_NAME=${etcd_name}" diff --git a/digital-ocean/fedora-coreos/kubernetes/fcc/controller.yaml b/digital-ocean/fedora-coreos/kubernetes/fcc/controller.yaml index 3ae2c582..cd1575c4 100644 --- a/digital-ocean/fedora-coreos/kubernetes/fcc/controller.yaml +++ b/digital-ocean/fedora-coreos/kubernetes/fcc/controller.yaml @@ -28,7 +28,7 @@ systemd: --network host \ --volume /var/lib/etcd:/var/lib/etcd:rw,Z \ --volume /etc/ssl/etcd:/etc/ssl/certs:ro,Z \ - quay.io/coreos/etcd:v3.4.8 + quay.io/coreos/etcd:v3.4.9 ExecStop=/usr/bin/podman stop etcd [Install] WantedBy=multi-user.target diff --git a/google-cloud/container-linux/kubernetes/cl/controller.yaml b/google-cloud/container-linux/kubernetes/cl/controller.yaml index 994dfb7b..eef508f5 100644 --- a/google-cloud/container-linux/kubernetes/cl/controller.yaml +++ b/google-cloud/container-linux/kubernetes/cl/controller.yaml @@ -7,7 +7,7 @@ systemd: - name: 40-etcd-cluster.conf contents: | [Service] - Environment="ETCD_IMAGE_TAG=v3.4.8" + Environment="ETCD_IMAGE_TAG=v3.4.9" Environment="ETCD_IMAGE_URL=docker://quay.io/coreos/etcd" Environment="RKT_RUN_ARGS=--insecure-options=image" Environment="ETCD_NAME=${etcd_name}" diff --git a/google-cloud/fedora-coreos/kubernetes/fcc/controller.yaml b/google-cloud/fedora-coreos/kubernetes/fcc/controller.yaml index a9842422..129a8d92 100644 --- a/google-cloud/fedora-coreos/kubernetes/fcc/controller.yaml +++ b/google-cloud/fedora-coreos/kubernetes/fcc/controller.yaml @@ -28,7 +28,7 @@ systemd: --network host \ --volume /var/lib/etcd:/var/lib/etcd:rw,Z \ --volume /etc/ssl/etcd:/etc/ssl/certs:ro,Z \ - quay.io/coreos/etcd:v3.4.8 + quay.io/coreos/etcd:v3.4.9 ExecStop=/usr/bin/podman stop etcd [Install] WantedBy=multi-user.target