From 572a04cded3c574ea1b559146070077293d58e8c Mon Sep 17 00:00:00 2001 From: Steve Hipwell Date: Tue, 20 Feb 2024 19:09:48 +0000 Subject: [PATCH] feat(tigera-operator): Updated image to v1.32.5 (#895) Signed-off-by: Steve Hipwell --- charts/tigera-operator/CHANGELOG.md | 7 +++++++ charts/tigera-operator/Chart.yaml | 6 +++--- charts/tigera-operator/README.md | 8 ++++---- .../calico/felixconfigurations.crd.projectcalico.org.yaml | 8 ++++++++ 4 files changed, 22 insertions(+), 7 deletions(-) diff --git a/charts/tigera-operator/CHANGELOG.md b/charts/tigera-operator/CHANGELOG.md index cf0c02c6..0577a9ac 100644 --- a/charts/tigera-operator/CHANGELOG.md +++ b/charts/tigera-operator/CHANGELOG.md @@ -14,6 +14,12 @@ ## [UNRELEASED] +## [v2.9.2] - 2024-02-20 + +### Changed + +- Updated the _Tigera Operator_ OCI image to [v1.32.5](https://github.com/tigera/operator/releases/tag/v1.32.5) (_Calico_ [v3.27.2](https://github.com/projectcalico/calico/releases/tag/v3.27.2)). + ## [v2.9.1] - 2024-01-19 ### Changed @@ -479,6 +485,7 @@ RELEASE LINKS --> [UNRELEASED]: https://github.com/stevehipwell/helm-charts/tree/main/charts/tigera-operator +[v2.9.2]: https://github.com/stevehipwell/helm-charts/releases/tag/tigera-operator-2.9.2 [v2.9.1]: https://github.com/stevehipwell/helm-charts/releases/tag/tigera-operator-2.9.1 [v2.9.0]: https://github.com/stevehipwell/helm-charts/releases/tag/tigera-operator-2.9.0 [v2.8.1]: https://github.com/stevehipwell/helm-charts/releases/tag/tigera-operator-2.8.1 diff --git a/charts/tigera-operator/Chart.yaml b/charts/tigera-operator/Chart.yaml index c0f28df8..e28a5dc4 100644 --- a/charts/tigera-operator/Chart.yaml +++ b/charts/tigera-operator/Chart.yaml @@ -2,8 +2,8 @@ apiVersion: v2 name: tigera-operator description: Helm chart to install the Tigera Operator for managing Calico. type: application -version: 2.9.1 -appVersion: 1.32.4 +version: 2.9.2 +appVersion: 1.32.5 keywords: - kubernetes - cni @@ -26,4 +26,4 @@ annotations: artifacthub.io/alternativeName: tigera artifacthub.io/changes: | - kind: changed - description: "Updated the _Tigera Operator_ OCI image to [v1.32.4](https://github.com/tigera/operator/releases/tag/v1.32.4) (_Calico_ [v3.27.0](https://github.com/projectcalico/calico/releases/tag/v3.27.0))." + description: "Updated the _Tigera Operator_ OCI image to [v1.32.5](https://github.com/tigera/operator/releases/tag/v1.32.5) (_Calico_ [v3.27.2](https://github.com/projectcalico/calico/releases/tag/v3.27.2))." diff --git a/charts/tigera-operator/README.md b/charts/tigera-operator/README.md index 31b2420d..bb09d773 100644 --- a/charts/tigera-operator/README.md +++ b/charts/tigera-operator/README.md @@ -1,6 +1,6 @@ # tigera-operator -![Version: 2.9.1](https://img.shields.io/badge/Version-2.9.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.32.4](https://img.shields.io/badge/AppVersion-1.32.4-informational?style=flat-square) +![Version: 2.9.2](https://img.shields.io/badge/Version-2.9.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.32.5](https://img.shields.io/badge/AppVersion-1.32.5-informational?style=flat-square) The [Tigera Operator](https://www.tigera.io/) is a Kubernetes operator which manages the lifecycle of a [Calico](https://www.tigera.io/project-calico/) or [Calico Enterprise](https://www.tigera.io/tigera-products/calico-enterprise/) installation on Kubernetes. Its goal is to make installation, upgrades, and ongoing lifecycle management of _Calico_ and _Calico Enterprise_ as simple and reliable as possible. @@ -27,7 +27,7 @@ It is possible to use the _Tigera Operator_ for other use-cases by installing ad To install the chart using the recommended OCI method you can use the following command. ```shell -helm upgrade --install tigera-operator oci://ghcr.io/stevehipwell/helm-charts/tigera-operator --version 2.9.1 +helm upgrade --install tigera-operator oci://ghcr.io/stevehipwell/helm-charts/tigera-operator --version 2.9.2 ``` #### Verification @@ -35,7 +35,7 @@ helm upgrade --install tigera-operator oci://ghcr.io/stevehipwell/helm-charts/ti As the OCI chart release is signed by [Cosign](https://github.com/sigstore/cosign) you can verify the chart before installing it by running the following command. ```shell -cosign verify --certificate-oidc-issuer https://token.actions.githubusercontent.com --certificate-identity-regexp 'https://github\.com/action-stars/helm-workflows/\.github/workflows/release\.yaml@.+' --certificate-github-workflow-repository stevehipwell/helm-charts --certificate-github-workflow-name Release ghcr.io/stevehipwell/helm-charts/tigera-operator:2.9.1 +cosign verify --certificate-oidc-issuer https://token.actions.githubusercontent.com --certificate-identity-regexp 'https://github\.com/action-stars/helm-workflows/\.github/workflows/release\.yaml@.+' --certificate-github-workflow-repository stevehipwell/helm-charts --certificate-github-workflow-name Release ghcr.io/stevehipwell/helm-charts/tigera-operator:2.9.2 ``` ### Non-OCI Repository @@ -44,7 +44,7 @@ Alternatively you can use the legacy non-OCI method via the following commands. ```shell helm repo add stevehipwell https://stevehipwell.github.io/helm-charts/ -helm upgrade --install tigera-operator stevehipwell/tigera-operator --version 2.9.1 +helm upgrade --install tigera-operator stevehipwell/tigera-operator --version 2.9.2 ``` ## Values diff --git a/charts/tigera-operator/crds/calico/felixconfigurations.crd.projectcalico.org.yaml b/charts/tigera-operator/crds/calico/felixconfigurations.crd.projectcalico.org.yaml index 4ecf436d..c4476574 100644 --- a/charts/tigera-operator/crds/calico/felixconfigurations.crd.projectcalico.org.yaml +++ b/charts/tigera-operator/crds/calico/felixconfigurations.crd.projectcalico.org.yaml @@ -132,6 +132,14 @@ spec: Loose]" pattern: ^(?i)(Disabled|Strict|Loose)?$ type: string + bpfExcludeCIDRsFromNAT: + description: + BPFExcludeCIDRsFromNAT is a list of CIDRs that are to + be excluded from NAT resolution so that host can handle them. A + typical usecase is node local DNS cache. + items: + type: string + type: array bpfExtToServiceConnmark: description: "BPFExtToServiceConnmark in BPF mode, control a 32bit