v1.31.0

Changelog:

• Changes for CCM/CSI v0.31.1
• Support for Workload Identity in GetReservedIP calls
• Support for gRPC Protocol on OKE managed LB and add e2e test case
• Check lifecycle state for NLB instead of listing workrequest in the compartment
• Skip Cipher Suite Update on Listeners and Backendsets when Unspecified
• Provide an option to skip private IP in LB Status for public NLBs
• NLB display name to OCID map - Map the display name of NLB to an OCID to avoid looking it up again in each
• reconciliation.
• Bumped dependency versions and fix e2e

v1.30.1

Changelog:

• Support for Workload Identity in GetReservedIP calls
• Support for gRPC Protocol on OKE managed LB and add e2e test cas
• Check lifecycle state for NLB instead of listing workrequest in the compartment
• Skip Cipher Suite Update on Listeners and Backendsets when Unspecified
• Provide an option to skip private IP in LB Status for public NLBs
• NLB display name to OCID map - Map the display name of NLB to an OCID to avoid looking it up again in each
• reconciliation.
• Bumped dependency versions and fix e2e

v1.29.2

Changelog:

• Support for Workload Identity in GetReservedIP calls
• Remove identity client dependency for ipv6 single stack clusters
• Check lifecycle state for NLB instead of listing workrequest in the compartment
• Skip Cipher Suite Update on Listeners and Backendsets when Unspecified
• Provide an option to skip private IP in LB Status for public NLBs
• NLB display name to OCID map - Map the display name of NLB to an OCID to avoid looking it up again in each
• reconciliation.
• Bumped dependency versions and fix e2e

v1.30.0

What's Changed

• Security patching, updated Makefile, Readme and Third Party Licences

New features

• Added Dns Names Support For Fss Mount Targets
• Support for ingress ipMode via new annotation in k8s 1.30+
• Support ReadWriteOnceWithFSType fsGroupPolicy in CSI Driver for non-root user
• Support for Proxy Protocol Version 2 (PPv2) on NLB via CCM
• Add Raw Block Volume support
• Add OpenShift Tag to identify Openshift usage and support secondary vnic function

Code Enhancements and Bug Fixes

• Adding rate limiting for fss node mount to avoid OOM
• Updated UHP post detach logout wait logic
• Upgraded CSI sidecar versions
• Fix CCM Bug in Sec List Rule Management when ipPReserveSource is set to true for NLBs
• Fix readyToUse false issue for large data volumes
• Fix the santisedDevices logic for ubuntu nodes
• Fix bug in wrapper returning response for NSG rules
• Made error handling changes in FSS GetPrivateIP flow

New E2Es, Unit Tests and Enhancements

• Added FSS mount options e2e enhancement
• Updating all CCM E2Es to create private LB where possible
• Allow skipping E2Es via new SKIP_FOCUS environment variable
• Fix UT to add instance id to instanceCache
• CCM E2E - K8s version check fix
• Add annotation to configure the cipher suites on LBaaS and add e2e test cases

Full Changelog: v1.29.0...v1.30.0

v1.29.1

What's Changed

• Security patching, updated Makefile, Readme and Third Party Licences

New features

• Added Dns Names Support For Fss Mount Targets
• Support ReadWriteOnceWithFSType fsGroupPolicy in CSI Driver for non-root user
• Support for Proxy Protocol Version 2 (PPv2) on NLB via CCM
• Add Raw Block Volume support
• Add OpenShift Tag to identify Openshift usage and support secondary vnic function

Code Enhancements and Bug Fixes

• Adding rate limiting for fss node mount to avoid OOM
• Updated UHP post detach logout wait logic
• Upgraded CSI sidecar versions
• Fix CCM Bug in Sec List Rule Management when ipPReserveSource is set to true for NLBs
• Fix readyToUse false issue for large data volumes
• Fix the santisedDevices logic for ubuntu nodes
• Fix bug in wrapper returning response for NSG rules
• Made error handling changes in FSS GetPrivateIP flow

New E2Es, Unit Tests and Enhancements

• Added FSS mount options e2e enhancement
• Updating all CCM E2Es to create private LB where possible
• Allow skipping E2Es via new SKIP_FOCUS environment variable
• Fix UT to add instance id to instanceCache
• CCM E2E - K8s version check fix
• Add annotation to configure the cipher suites on LBaaS and add e2e test cases

Full Changelog: v1.29.0...v1.29.1

v1.28.2

What's Changed

• Security patching, updated Makefile, Readme and Third Party Licences

New features

• Added Dns Names Support For Fss Mount Targets
• Support ReadWriteOnceWithFSType fsGroupPolicy in CSI Driver for non-root user
• Support for Proxy Protocol Version 2 (PPv2) on NLB via CCM
• Add Raw Block Volume support
• Add OpenShift Tag to identify Openshift usage and support secondary vnic function

Code Enhancements and Bug Fixes

• Adding rate limiting for fss node mount to avoid OOM
• Updated UHP post detach logout wait logic
• Upgraded CSI sidecar versions
• Fix CCM Bug in Sec List Rule Management when ipPReserveSource is set to true for NLBs
• Fix readyToUse false issue for large data volumes
• Fix the santisedDevices logic for ubuntu nodes
• Fix bug in wrapper returning response for NSG rules
• Made error handling changes in FSS GetPrivateIP flow

New E2Es, Unit Tests and Enhancements

• Added FSS mount options e2e enhancement
• Updating all CCM E2Es to create private LB where possible
• Allow skipping E2Es via new SKIP_FOCUS environment variable
• Fix UT to add instance id to instanceCache
• CCM E2E - K8s version check fix
• Add annotation to configure the cipher suites on LBaaS and add e2e test cases

Full Changelog: v1.28.1...v1.28.2

v1.29.0

What's Changed

• Added wait in volume expansion for volume to become available
• fix security list rule clean up flow for OCI loadbalancer delete calls
• for externalTrafficPolicy local the healthcheck port security rule should be retained
• skip healthcheck port in use for services that are deleted or not of type loadbalancer
• Added fix to check length of consistent device paths available before attempting read
• process updateLoadbalancer if NLB is in failed state
• Fix CVEs
• Separating UpdateLoadBalancer flow for Backends from Ensure Load Balancer flow in CCM
• Moved listener and backendset updates before shape change & other customer error prone operations
• Changes to parallelise e2e test runs
• add opc-retry-token
• Do not record events for failure to acquire lock for lb sync
• Add unit test to for merging common tags tags at the time of creation of LB & storage resources
• Use topology.kubernetes.io labels
• set serviceUid as opc-retry-token
• Bugfix: Ensure backend ssl certificates during Update LoadBalancer Backendsets flow
• Fix response when no size change in ControllerExpandVolume
• Avoid change service type in update shape test cases
• List instances to check for authorization issues

Full Changelog: v1.28.0...v1.29.0

v1.28.1

What's Changed

• Added wait in volume expansion for volume to become available
• fix security list rule clean up flow for OCI loadbalancer delete calls
• for externalTrafficPolicy local the healthcheck port security rule should be retained
• skip healthcheck port in use for services that are deleted or not of type loadbalancer
• Added fix to check length of consistent device paths available before attempting read
• process updateLoadbalancer if NLB is in failed state
• Fix CVEs
• Separating UpdateLoadBalancer flow for Backends from Ensure Load Balancer flow in CCM
• Moved listener and backendset updates before shape change & other customer error prone operations
• Changes to parallelise e2e test runs
• add opc-retry-token
• Do not record events for failure to acquire lock for lb sync
• Add unit test to for merging common tags tags at the time of creation of LB & storage resources
• Use topology.kubernetes.io labels
• set serviceUid as opc-retry-token
• Bugfix: Ensure backend ssl certificates during Update LoadBalancer Backendsets flow
• Fix response when no size change in ControllerExpandVolume
• Avoid change service type in update shape test cases
• List instances to check for authorization issues

Full Changelog: v1.28.0...v1.28.1

v1.27.3

What's Changed

• Added wait in volume expansion for volume to become available
• fix security list rule clean up flow for OCI loadbalancer delete calls
• for externalTrafficPolicy local the healthcheck port security rule should be retained
• skip healthcheck port in use for services that are deleted or not of type loadbalancer
• Added fix to check length of consistent device paths available before attempting read
• process updateLoadbalancer if NLB is in failed state
• Fix CVEs
• Separating UpdateLoadBalancer flow for Backends from Ensure Load Balancer flow in CCM
• Moved listener and backendset updates before shape change & other customer error prone operations
• Changes to parallelise e2e test runs
• add opc-retry-token
• Do not record events for failure to acquire lock for lb sync
• Add unit test to for merging common tags tags at the time of creation of LB & storage resources
• Use topology.kubernetes.io labels
• set serviceUid as opc-retry-token
• Bugfix: Ensure backend ssl certificates during Update LoadBalancer Backendsets flow
• Fix response when no size change in ControllerExpandVolume
• Avoid change service type in update shape test cases
• List instances to check for authorization issues

Full Changelog: v1.27.2...v1.27.3

v1.26.4

What's Changed

• Added wait in volume expansion for volume to become available
• fix security list rule clean up flow for OCI loadbalancer delete calls
• for externalTrafficPolicy local the healthcheck port security rule should be retained
• skip healthcheck port in use for services that are deleted or not of type loadbalancer
• Added fix to check length of consistent device paths available before attempting read
• process updateLoadbalancer if NLB is in failed state
• Fix CVEs
• Separating UpdateLoadBalancer flow for Backends from Ensure Load Balancer flow in CCM
• Moved listener and backendset updates before shape change & other customer error prone operations
• Changes to parallelise e2e test runs
• add opc-retry-token
• Do not record events for failure to acquire lock for lb sync
• Add unit test to for merging common tags tags at the time of creation of LB & storage resources
• Use topology.kubernetes.io labels
• set serviceUid as opc-retry-token
• Bugfix: Ensure backend ssl certificates during Update LoadBalancer Backendsets flow
• Fix response when no size change in ControllerExpandVolume
• Avoid change service type in update shape test cases
• List instances to check for authorization issues

Full Changelog: v1.26.3...v1.26.4