v1.16.2
v1.16.2
Release Notes
- The VPC CNI has reverted the CNI spec to 0.4.0 in order to maintain compatibility with EKS 1.23: https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.16.2/misc/10-aws.conflist
- With this release, the VPC CNI can now support up to 50 CIDRs in nftables mode.
Changes since v1.16.0
- Bug - Refactor IPTable Rules (@jchen6585 )
- Bug - log for DelNetworkReply now differentiates between IPv4 and IPv6 addr… (@zachdorame )
- Dependency - revert CNI spec to 0.4.0 (@jdn5126 )
- Dependency - update crypto to patch CVE-2023-48795 (@haouc )
- Dependency - Dependabot updates: aws-sdk-go, containernetworking/plugins, go-logr, grpc, k8s.io/cli-runtime (@jdn5126 )
- Enhancement - Iptables mock (@jchen6585 )
To manually apply this release:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.16.2/config/master/aws-k8s-cni.yaml
Note that the following regions use different manifests:
us-gov-east-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.16.2/config/master/aws-k8s-cni-us-gov-east-1.yaml
us-gov-west-1:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.16.2/config/master/aws-k8s-cni-us-gov-west-1.yaml
cn:
kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.16.2/config/master/aws-k8s-cni-cn.yaml
To apply this release using helm:
Follow the installation instructions in https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.16.2/charts/aws-vpc-cni/README.md#installing-the-chart
Verify the update:
$ kubectl describe daemonset aws-node -n kube-system | grep Image | cut -d "/" -f 2-3
amazon-k8s-cni-init:v1.16.2
amazon-k8s-cni:v1.16.2
amazon/aws-network-policy-agent:v1.0.7