Bump github.com/aws/amazon-vpc-cni-k8s from 1.8.0 to 1.12.0

[dependabot]

Bumps github.com/aws/amazon-vpc-cni-k8s from 1.8.0 to 1.12.0.

Release notes

Sourced from github.com/aws/amazon-vpc-cni-k8s's releases.

v1.12.0

This new version removes dependency on CRI socket(e.g. dockershim.sock).

🚨 🚨 🚨 Action Required For Upgrading

1. To upgrade to VPC CNI >=v1.12.0, you must upgrade to VPC CNI >=v1.7.x first. We recommend that you update one minor version at a time.
2. aws-vpc-cni Helm chart v1.2.0 is released with VPC CNI v1.12.0, thus no longer supports the cri.hostPath.path. If you need to install a VPC CNI <v1.12.0 with helm chart, a aws-vpc-cni Helm chart with version <v1.2.0 should be used.

Changes since v1.11.4:

• Improvement - switch to use state file for IP allocation pool management (@​M00nF1sh )
• Improvement - explicitly request NET_RAW capabilities in CNI manifests (@​JingmingGuo )
• Improvement - Reduce startup latency by removing some unneeded sleeps (@​bwagner5 )
• Bug - Remove extra decrement of totalIP count (@​jayanthvn )
• New Instance Support - Add trn1 limits (@​cartermckinnon )
• Documentation - Update readme with slack channel (@​jayanthvn )
• Documentation - Fix ENIConfig keys in values.yaml (@​chotiwat )
• Testing - fix metrics-helper test to detach role policy early (@​sushrk )
• Testing - Use GetNodes in metrics-helper; explicitly install latest addon (@​jdn5126 )
• Testing - refine all github workflows (@​M00nF1sh )
• Testing - Resolve flakiness in IPAMD warm target tests (@​jdn5126 )
• Testing - VPC CNI Integration Test Fixes (@​jdn5126 )
• Testing - Update CNI canary integration test and cleanup for ginkgo v2 (@​jdn5126 )

To apply this release:

kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.12.0/config/master/aws-k8s-cni.yaml

Verify the update:

$ kubectl describe daemonset aws-node -n kube-system | grep Image | cut -d "/" -f 2                                                   
amazon-k8s-cni-init:v1.12.0
amazon-k8s-cni:v1.12.0

v1.11.4

Changes since v1.11.3:

• Improvement - update aws-node clusterrole permissions (@​sushrk)
• Improvement - IPAMD optimizations and makefile changes (@​jayanthvn)
• Documentation - Fix minor typo on documentation (@​guikcd)
• Documentation - Fixing prefixes per ENI value in example (@​mkarakas)
• New release - multus manifest for release v3.9.0-eksbuild.2 (@​sushrk)
• Bug - Setting AWS_VPC_K8S_CNI_RANDOMIZESNAT to the default value (@​vgunapati)
• New instance support - Updated new instances (@​jayanthvn)

To apply this release:

... (truncated)

Changelog

Sourced from github.com/aws/amazon-vpc-cni-k8s's changelog.

Changelog

v1.11.4

• Improvement - update aws-node clusterrole permissions (@​sushrk)
• Improvement - IPAMD optimizations and makefile changes (@​jayanthvn)
• Documentation - Fix minor typo on documentation (@​guikcd)
• Documentation - Fixing prefixes per ENI value in example (@​mkarakas)
• New release - multus manifest for release v3.9.0-eksbuild.2 (@​sushrk)
• Bug - Setting AWS_VPC_K8S_CNI_RANDOMIZESNAT to the default value (@​vgunapati)
• New instance support - Updated new instances (@​jayanthvn)

v1.11.3

• Improvement - Increase cpu requests limit (@​vikasmb)
• Bugfix - Re-use logger instance (@​vikasmb)
• Improvement - Add event recorder utils to raise aws-node pod events (@​sushrk)
• Improvement - chart: Add extraVolumes and extraVolumeMounts (@​jkroepke)
• Bugfix - Fix cni panic due to pod.Annotations is a nil map (@​Downager)

v1.11.2

• Improvement - Updated golang to Go 1.18 (@​orsenthil)
• Improvement - Updated containernetworking/cni version to 0.8.1 to address CVE-2021-20206 (@​orsenthil)
• Improvement - Updated CNI Plugins to v1.1.1 (@​orsenthil)

v1.11.1

Was Skipped

v1.11.0

• Feature - Support new SGPP standard mode (@​M00nF1sh )
• Feature - IPv4 Randomize SNAT support for IPv6 pods (@​achevuru)
• Feature - Respect existing ENIConfig label if set on node (@​backjo)
• Improvement - Timeout and reconcile when checking API server connectivity (@​prateekgogia)
• Improvement - Improve startup performance of IPAMD (@​backjo)
• Improvement - Record pod metadata and allocationTime in IP allocation state file (@​M00nF1sh )
• Bug - Fixes node label error handling & revert to use update for node label update (@​jayanthvn, @​M00nF1sh ) (#1959)
• Bug - IPAMD throw an error on configuration validation failure (@​veshij)
• Cleanup - refactoring DataStore.GetStats to simplify adding new fields (@​veshij)

v1.10.3

• Improvement - Upgrade AWS SDK GO (@​jayanthvn)
• Improvement - C7g instances support (@​jayanthvn)
• Improvement - Enable Prefix Delegation on Bare metal instances (@​achevuru)
• Bugfix - Fix dependabot high sev issue caused by GoGo protobuf (@​jayanthvn)

... (truncated)

Commits

• 4fed60f v1.12 Helm chart changes and release manifests (#2122)
• c959487 fix metrics-helper test to detach role policy early (#2121)
• 9bee3e4 request NET_RAW capabilities in CNI manifests (#2063)
• 7eeb2a9 switch to use state file for IP allocation pool management (#2110)
• 3dacc42 multus manifest release for v3.9.2 (#2117)
• 7c217c8 extend assume role duration for tests (#2116)
• 5822ceb skipping ipamd_event_test.go until it can be triaged further (#2113)
• 3b5610d Resolve flakiness in IPAMD warm target tests; update test go.sum (#2112)
• d2591aa Update readme with slack channel (#2111)
• 650c744 update GitHub runners to install ginkgo from test module (#2108)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #413.