Skip to content

Latest commit

 

History

History
274 lines (239 loc) · 28.2 KB

CHANGELOG-1.x.md

File metadata and controls

274 lines (239 loc) · 28.2 KB

V1.7.7

V1.7.6

V1.7.5

  • Allow controller SA to describe Secrets - fixes cross account dynamic provisioning. (#1256, @RyanStan)
  • Added Fargate support for EFS CSI Controller. (#1195, @Rio Maulana)

V1.7.4

  • Bump the side-cars to the latest to mitigate the CVEs. (#1246, @mskanth972)
  • Update efs-csi-driver to use efs-utils latest release v1.35.1 which include adding 'fsap' to the ignored mount option list, compatibility with OpenSSL 3.0 in the RPM spec file, a new watchdog log message for outdated efs-utils versions, and regeneration of empty private key files.

V1.7.3

V1.7.2

  • Fixed the GID allocator work with the cross account feature. (#1199, @RomanBednar)
  • Added Startup Taint Removal Feature to alleviate potential race conditions. (#1197, @mskanth972)
  • Updated the apiversion in StaticProvisioning storageclass.yaml example file. (#1193, @Rajit11)
  • README Update: Update Static Provisioning README.md on mounttargetip option. (#1192, @seanzatzdev-amazon)
  • Updated the GID allocator to allocate GIDs in increasing order. (#1182, @RomanBednar)
  • Updated the sidecar tags to the latest. (#1161, @mskanth972)

V1.7.1

V1.7.0

V1.6.0

  • Bump golang.org/x/net/html to fix CVE-2023-3978. (#1089, @jsafrane)
  • Set efs-plugin container security context to true which can solve the deleteAccessPointRootDir issues. (#1096, @seanzatzdev-amazon)
  • Updated all the necessary components to enable running kOps / EKS e2e CI jobs in the latest version of K8s without hostNetwork: true. (#1088, @torredil)

V1.5.9

  • Addressed CVEs (CVE-2023-2602, CVE-2019-15167, CVE-2-23-2431, CVE-2023-2727).
  • updated go and k8s packages and removed SSH from CI as it is unnecessary and introduces a potential flake point. (#1007, @mskanth972)
  • Remove usage of 'echo' from log collector script. (#1071, @RyanStan)

V1.5.8

  • Addressed CVEs (CVE-2023-29491, CVE-2023-32731).
  • Updated the security context parameter of the efs-plugin container. (#1055, @mskanth972)

V1.5.7

  • Addressed CVEs (CVE-2023-0464, CVE-2023-0466, CVE-2023-2650, CVE-2023-0465, CVE-2015-8390, CVE-2015-8394)
  • Added a e2e test to make sure that side-car images are located in Private ECR repository. (#1018, @mskanth972)
  • Upgraded golang to v1.20. (#992, @kalpanathanneeru21)
  • Validate fstype on CreateVolume rather than NodePublishVolume. (#1027, @jingxu97)

V1.5.6

  • Added the SecurityContext for Driver (#1001, @mskanth972)
  • Updated Side-cars to address pull back error in private manifest (#1009, @mskanth972)
  • Add reminder to always update weaveworks when updating policy (#1002, @Ashley-wenyizha)
  • Updating README on how to delete access point when deleting PVC (#1004, @mskanth972)
  • Updated the README with information on mountOptions that can be provided while mounting (#1006, @mskanth972)

V1.5.5

V1.5.4

  • Mitigated golang CVE-2022-41723 (#961, @RyanStan)
  • Updated the example IAM policy by adding elasticfilesystem:TagResource permission for tagging EFS resources. (#964, @mskanth972)

V1.5.3

  • Updated the Dockerfile to move python packages to location on sys.path (#951, @RyanStan)

V1.5.2

  • Golang.org/x/net version update (#897, @RomanBednar)
  • New image based on minimal EKS Distro images (#903, @RyanStan)
  • feat(node/controller): allow to set updateStrategy (#740, @lefterisALEX)
  • Revised and passed volume related arguments in the daemonset instead of controller (#942, @mskanth972)
  • README update on delete-access-point-root-dir argument
  • README update on DNS name resolving issue

V1.5.1

  • Upgrade AL2 version and address CVEs ( CVE-2022-4304, CVE-2023-0215, CVE-2023-0286 )

V1.5.0

  • Upgrade to latest sidecars versions
  • Upgrade AL2 version and address CVEs (CVE-2021-4217, CVE-2022-0529, CVE-2022-0530, CVE-2022-4141, CVE-2023-0049, CVE-2022-45061, CVE-2022-27781, CVE-2022-23521, CVE-2021-46848, CVE-2022-4292, CVE-2022-43551, CVE-2022-35737, CVE-2022-42898, CVE-2022-41903)

V1.4.9

  • Bumped up the sidecars version
  • Fixed-AWS EFS CSI Driver crashes if Access Point creation fails and static GID set
  • Update efs-csi-driver to use efs-utils latest release v1.34.5 which Handle invalid mount point name, Avoid redundant get_target_region call, Update man page and Watchdog detect empty private key and regenerate

V1.4.8

  • Update efs-csi-driver to use efs-utils latest release v1.34.4 and include stunnel fix (#125)

V1.4.7

  • Update the efs-utils to v1.34.3 to reduce possibility of multiple mounts starting from same port range

V1.4.6

  • Update efs-utils to stunnel5.

V1.4.5

  • upgrade to k8s.io/kubernetes v1.22.3 to mitigate the CVE-2021-25740.

V1.4.4

  • Reverting back the efs-utils version from v1.34.1 (latest version) to v1.33.4 (previous version) as in the the new version v1.34.1 stunnel bin is removed in csi-driver.

V1.4.3

  • Release-1.4 : post-release files updated (#782, @mskanth972)
  • Mitigated AL2 related CVEs including : CVE-2022-27664, CVE-2018-25032, CVE-2021-4189, CVE-2022-0391, CVE-2021-3999, CVE-2022-30630, CVE-2022-3099, CVE-2022-30631, CVE-2022-2982, CVE-2022-29526, CVE-2022-2287, CVE-2021-3737, CVE-2021-3733, CVE-2019-12900
  • Update deprecated NodeSelector (#743, @dschunack)

V1.4.2

V1.4.1

  • Latest AL2 base image update

V1.4.0

V1.3.8

V1.3.7

v1.3.6

v1.3.5

  • Release helm-chart v2.1.6 (#546, @chrishenzie)
  • [release-1.3] Update ecr kustomize overlay to pull sidecars from private ecr, not public (#550, @wongma7)
  • Release helm chart v2.1.6 (#557, @wongma7)
  • [release-1.3] Feature/allow health ports to be configured (#558, @wongma7)

v1.3.4

Bug Fixes

v1.3.3

Misc.

  • Fast-forward to latest ebs hack/e2e scripts with eksctl support, k8s 1.20, etc. (#510, @wongma7)
  • Add node/daemonset service account to helm chart (#512, @wongma7)
  • Fix (and format) log collector script (#525, @wongma7)
  • Fix node-serviceaccount.yaml missing from kustomize (#527, @wongma7)

v1.3.2

Misc.

  • Bump release version for multi-arch support.

v1.3.1

Notable changes

  • efs-csi-driver now supports arm and image is multi-arch

Bug Fixes

Misc.

  • Clean up unnecessary resources after installation in docker file (#483, @kbasv)
  • Remove platform hardcode for golang in Dockerfile (#485, @kbasv)
  • Update cross account mount example with specs and add missing setup step (#488, @kbasv)

v1.3

Notable changes

  • efs-csi-driver now supports cross account and cross az mount
  • Helm chart clean up

New Features

  • Add support for cross account mount (#470, @kbasv)
  • Helm chart: make more fields configurable for the deployment, daemonset and storage class (#406, @Misteur-Z)
  • Add x-AZ mount support for efs-csi-driver (#425, @kbasv)

Bug Fixes

Improvements

Misc.

  • Add documentation and examples for cross-account mount (#477, @kbasv)
  • Add hostNetwork: true on efs-csi-controller deployement. (#380, @jihed)
  • Bump sidecar images to latest available in ecr (#382, @wongma7)
  • Add iam mount option while deleting Access Point root directory (#422, @kbasv)
  • Add empty StorageClasses from static example (#423, @Yu-HaoYu)
  • Reduce default log level to 2 (#426, @wongma7)
  • Create a new AWS session with the region (#435, @bodgit)
  • Change controller port 9808->9909 to avoid node/ebs conflict (#437, @wongma7)
  • Add kbasv as approver (#447, @kbasv)

v1.2.1

Bug fixes

v1.2

Notable changes

  • efs-csi-driver now supports dynamic provisioning

New features

Improvements

v1.1.1

Bug fixes

v1.1.0

Notable changes

  • The hostPath directory where the driver DaemonSet Pods write state files to their respective Node hosts has changed to fix the driver not working on Bottlerocket OS Nodes. No matter what OS your Nodes are running, you must use a supported method like helm or kustomize to update the driver. If not, i.e. if you only change the image tag of your DaemonSet, the migration from old to new directory won't succeed. See "change config dir location" below for details.

New Features

Bug fixes

v1.0.0

Documentation

filename sha512 hash
v1.0.0.zip ecce6558e9a5ea3a94578eefc6cbe4fedc452fefeb60ff1b7f07257143c7a03b2410ad1ffc2b2bbc2065b255cc4b35ec56a09bb3f1561ebe90f8a763da12b19d
v1.0.0.tar.gz e31defba0d0975a8a3ba4661881638b4cfb45e0b76d1c0d714b7a556eecdab77562b7dda461b6b86350a11946548a42057f1453bd5934d0299f54923e335294b v1.0.0

Notable changes

New Features

Bug fixes

  • Adding amd64 as nodeSelector to avoid arm64 archtectures (#143) (#144, @hugoprudente)
  • Update efs-utils to 1.26-3.amzn2 and amazonlinux to 2.0.20200602.0 (#216, @wongma7)

Improvements

  • Add example for Access Points (#153, @2uasimojo)
  • Pin dependency library versions (#154, @2uasimojo)
  • Bump livenessprobe and node-driver-registrar versions (#155, @wongma7)
  • Updated node.yaml to update deprecated node selectors (#158, @nithu0115)
  • Only publish if access type is 'mount', not 'block' (#164, @wongma7)
  • Upgraded CSI spec to v1.2.0 (#169, @jqmichael)
  • Bump k8s dependencies to 1.17.6 (#174, @wongma7)
  • added helm repo yaml in docs folder (#194, @kferrone)
  • Push image to 7 digit git sha tag instead of latest tag for master branch changes (#202, @wongma7)
  • Started treating the efs-utils config dir stateful and also handles the static files installed at image build time (#212, @jqmichael)
  • Build and push every master commit to master tag (#215, @wongma7)