v1.28.5

Cloud Provider Azure v1.28.5

Full Changelog: v1.28.4..v1.28.5

Changes by Kind

Feature

  • Feat: Add a cloud-node-manager sidecar container called health-probe-proxy to transfer the traffic from port 10356 to the kube-proxy health check server port 10256. This sidecar will parse the proxy protocol packet data unit when the user uses private link service integrated with the service annotation and set the proxy protocol annotation. In this case the kube-proxy health probe server will not read the health probe request from the SLB and fails the health check. (#5264, @nilo19)
  • Feat: support shared load balancer health probe mode. By setting clusterServiceLoadBalancerHealthProbeMode to shared, all cluster services will share one health probe targeting the kube-proxy port 10256 and /healthz by default. The health check port and path can be configured by clusterServiceSharedLoadBalancerHealthProbePort and clusterServiceSharedLoadBalancerHealthProbePort. (#5157, @nilo19)
  • Introduce the annotation service.beta.kubernetes.io/azure-allowed-ip-ranges to manage the LoadBalancer service access. (#4975, @lodrem)

Bug or Regression

  • Fix: The case of load balancer name should be ignored when determining if it is an internal load balancer. (#5244, @nilo19)
  • Fix: [multi-slb] Put the service in the load balancer that has no label/namespace selector only if there is no other choice for the service. (#5289, @nilo19)
  • Fix: azure_loadbalancer.go: don’t use service.Name, when service is nil (#5269, @k8s-infra-cherrypick-robot)
  • Truncate lengthy PIP name. If PIP prefix is lengthy, the PIP name may be longer than 80. If so, the PIP name needs truncation. (#5258, @k8s-infra-cherrypick-robot)

Dependencies

Added

  • github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/storage/armstorage: v1.2.0
  • github.com/golang-jwt/jwt/v5: v5.0.0
  • github.com/mattn/go-ieproxy: v0.0.11

Changed

Removed

Last modified January 30, 2024: chore: fix typoe for docs (ca43eca96)