TKE Kubernetes 1.16.3 revisions

Date	Version	Updates
2020-03-11	v1.16.3-tke.3	Fixes an issue where CBS intree continues to unmount a non-existing disk, which causes a large number of invalid requests. Adds a local cache for metadata.
2020-02-14	v1.16.3-tke.2	Merges pr2359, which fixes the issue with missing monitoring records when the system is unable to obtain docker root. Merges pr86583, which increases the logging level to reduce the amount of logs caused by the lack of support for random-fully in earlier versions of iptables. kube-scheduler now supports dynamic logging level configuration. Produces a workaround for the missing CBS device path (/dev/disk/by-id/virtio-xxx/...) issue, which prevented some users from accessing cbs. Merges pr86230, which skips assumed pod updates when scheduling pods.
2020-01-06	v1.16.3-tke.1	Merges pr79036, which fixes an issue where cpumanager disables `cpu quota` when it opens if the `QoS` setting of a pod is `Guaranteed`. Merges pr84167, which fixes an issue where an incorrect ETCD prefix causes apiserver health check to fail. Reverts pr63066, which caused an issue with IPVS and CLB health checks. Merges pr72914, which fixes an issue where, if you delete a Pod, create a new one and schedule it to the same node, mounting may fail. Fixes an issue where creating containers in CentOS results in cgroup leakage. Fixes an issue where upgrading lxcfs in Ubuntu 16 causes pods to exit. Adds metadata cache and timeout. cloud-provider now supports using node names as hostnames. Produces a workaround for the missing cbs device path (/dev/disk/by-id/virtio-xxx/...) issue, which prevented some users from accessing cbs.

TKE Kubernetes 1.14.3 revisions

Date	Version	Updates
2020-01-13	v1.14.3-tke.9	Merges pr2359, which fixes the issue with missing monitoring records when the system is unable to obtain docker root. Merges pr86583, which increases the logging level to reduce the amount of logs caused by the lack of support for random-fully in earlier versions of iptables. kube-scheduler now supports dynamic logging level configuration. Produces a workaround for the missing cbs device path (/dev/disk/by-id/virtio-xxx/...) issue which prevented some users from accessing cbs. Merges pr86230, which skips assumed pod updates when scheduling pods.
2019-12-23	v1.14.3-tke.8	Reverts pr79036, which fixes an issue where cpumanager disables cpu quota when it opens if the QoS setting of a pod is Guaranteed.
2019-12-17	v1.14.3-tke.7	Adds metadata cache and timeout. Fixes an issue where upgrading lxcfs in Ubuntu 16 causes pods to exit. Adds the ability to reboot kubelet to avoid pod not ready.
2019-11-28	v1.14.3-tke.6	cloud-provider now supports using node names as hostnames.
2019-11-18	v1.14.3-tke.5	Merges pr83435, which fixes an issue that allowed DoS attacks that use malicious YAML or JSON to exhaust CPU or memory. Merges pr84167, which fixes an issue where an incorrect ETCD prefix causes apiserver health checks to fail. Merges pr75622, which fixes an issue where, when there is a high sts (>2000) workload, it taks too long to sync sts changes to pod (about 20s).
2019-10-23	v1.14.3-tke.4	Merges pr79036, which fixes an issue where cpumanager disables cpu quota when it opens if the QoS setting of a pod is Guaranteed.
2019-09-10	v1.14.3-tke.3	Merges pr63066, which fixes an issue where CLB health checks fail in IPVS mode.
2019-09-06	v1.14.3-tke.2	Fixes the cve-2019-9512&cve-2019-9514HTTP/S DDoS security issue. Merges pr72914, which fixes an issue where, if you delete a Pod, create a new one and schedule it to the same node, mounting a volume may fail. Resolves the issue where creating containers in CentOS resulted in cgroup leakage.

TKE Kubernetes 1.12.4 revisions

Date	Version	Updates
2020-01-13	v1.12.4-tke.16	Merges pr2359, which fixes the issue with missing monitoring records when the system is unable to obtain docker root. Merges pr86583, which increases the logging level to reduce the amount of logs caused by the lack of support for random-fully in earlier versions of iptables. kube-scheduler now supports dynamic logging level configuration. Produces a workaround for the missing CBS device path (/dev/disk/by-id/virtio-xxx/...) issue which prevented some users from accessing cbs. Merges pr86230, which skips assumed pod updates when scheduling pods.
2019-12-23	v1.12.4-tke.15	Reverts pr79036, which fixes an issue where cpumanager disables cpu quota when it opens if the QoS setting of a pod is Guaranteed.
2019-12-17	v1.12.4-tke.14	Adds metadata cache and timeout. Fixes an issue where upgrading lxcfs in Ubuntu 16 causes pods to exit. Adds the ability to reboot kubelet to avoid pod not ready.
2019-11-28	v1.12.4-tke.13	cloud-provider now supports using node names as hostnames.
2019-11-18	v1.12.4-tke.12	Merges pr75622, which fixes an issue where, when there is a high sts (>2000) workload, it takes too long to to sync sts changes to pod (about 20s).
2019-10-23	v1.12.4-tke.11	Merges pr79036, which fixes an issue where cpumanager disables cpu quota when it opens if the QoS setting of a pod is Guaranteed. Merges pr72866, which adds a new parameter, --metrics-port, to kube-proxy and addresses the issue where --metrics-bind-address did not recognize port numbers.
2019-09-06	v1.12.4-tke.10	Fixes the cve-2019-9512&cve-2019-9514 HTTP/S DDoS security issue. Merges pr72914, which fixes an issue where, if you delete a Pod, create a new one and schedule it to the same node, mounting may fail. Merges pr71834, which fixes an issue with IPVS load balancing where, if sessionAffinity is set to ClientIP, traffic is routed to an invalid real server.
2019-08-09	v1.12.4-tke.9	Fixes an issue where creating containers in CentOS results in cgroup leakage.
2019-08-08	v1.12.4-tke.8	Merges pr72118, which fixes an issue where, if a CBS StatefulSet is rescheduled to the same node, it fails to mount.
2019-07-17	v1.12.4-tke.7	Merges pr75037, which solves a security issue affecting the cp command in kubectl.
2019-07-16	v1.12.4-tke.6	Fixes a compatibility issue between the Linux kernel and IPVS load balancing, which caused CLB health checks to fail.
2019-07-09	v1.12.4-tke.5	Merges pr72361, which fixes a kube-proxy deadlock issue.
2019-06-25	v1.12.4-tke.4	Fixes a Linux kernel and IPVS load balancing issue.
2019-06-17	v1.12.4-tke.3	Merges pr71114, which fixes an IPVS throughput issue.
2019-06-04	v1.12.4-tke.2	Merges pr74755, which fixes a hang/timeout issue when running large numbers of pods with unique configmap/secret references. Merges pr69047, which fixes a backward compatibility issue with node.Spec.Unschedulable.

TKE Kubernetes 1.10.5 revisions

Date	Version	Updates
2020-01-13	v1.10.5-tke.14	Merges pr2359, which fixes the issue with missing monitoring records when the system is unable to obtain docker root. Merges pr86583, which increases the logging level reduce the amount of logs caused by the lack of support for random-fully in earlier versions of iptables. kube-scheduler now supports dynamic logging level configuration. Produces a workaround for the missing cbs device path (/dev/disk/by-id/virtio-xxx/...) issue which prevented some users from accessing cbs. Merges pr86230, which skips assumed pod updates when scheduling pods.
2019-12-23	v1.10.5-tke.13	Reverted pr79036, which fixes an issue where cpumanager disables cpu quota when it opens if the QoS setting of a pod is Guaranteed.
2019-12-13	v1.10.5-tke.12	kubelet does not delete nodes when checking externalID. Adds metadata cache and timeout. Fixes an issue where upgrading lxcfs in Ubuntu 16 causes pods to exit. Adds the ability to reboot kubelet to avoid pod not ready.
2019-11-18	v1.10.5-tke.11	Removes the kube-controller-manager probe that sends heartbeats to kubelet.
2019-10-23	v1.10.5-tke.10	Merges pr79036, which fixes an issue where cpumanager disables cpu quota when it opens if the QoS setting of a pod is Guaranteed. Merges pr72866, which adds a new parameter, --metrics-port, to kube-proxy to address the issue where --metrics-bind-address did not recognize port numbers.
2019-09-06	v1.10.5-tke.9	Fixes the cve-2019-9512&cve-2019-9514 HTTP/S DDoS security issue. Merges pr72914, which fixes an issue where, if you delete a Pod, create a new one and schedule it to the same node, mounting may fail. Merges 67430, to rollback the state if updateContainerCPUSet fails.
2019-08-08	v1.10.5-tke.8	Merges pr72118, which fixes an issue where, if kubelet mounts a device immediately after unmounting it, an error occurs with the message `resource name may not be empty` is displayed.
2019-07-17	v1.10.5-tke.7	Merges pr75037, which fixes a security issue affecting the cp command in kubectl.
2019-06-25	v1.10.5-tke.6	Fixes a Linux kernel and IPVS load balancing issue.
2019-06-17	v1.10.5-tke.5	Merges pr71114, which fixes an issue with IPVS throughput.
2019-03-19	v1.10.5-tke.4	Merges pr65092, which fixes an issue where apiserver panics when handling specific requests.
2019-02-19	v1.10.5-tke.3	Merges pr67288, which fixes an issue where apiserver does not close the other side of the connection immediately when proxying.
2018-09-28	v1.10.5-tke.2	Moves load balancing logic from controller-manager to an independent service controllers.
2018-09-27	v1.10.5-tke.1	Backported pr63321, which fixes an issue where it took too long to terminate service containers when there were more than one in a pod.
2018-09-21	v1.10.5-qcloud-rev1	If a kubelet state update times out, controller-manager probes kubelet port.

TKE Kubernetes 1.8.13 revisions

Date	Version	Updates
2020-01-13	v1.8.13-tke.7	Merges pr2359, which fixes the issue with missing monitoring records when the system is unable to obtain docker root. Produces a workaround for the missing cbs device path (/dev/disk/by-id/virtio-xxx/...) issue which prevented some users from accessing cbs.
2019-12-13	v1.8.13-tke.6	kubelet does not delete nodes when checking externalID. Adds metadata cache and timeout. Fixes an issue where upgrading lxcfs in Ubuntu 16 causes pods to exit. Adds the ability to reboot kubelet to avoid pod not ready.
2019-11-18	v1.8.13-tke.5	Removes the kube-controller-manager probe that sends heartbeats to kubelet. Adds metric to CBS PVC.
2018-09-28	v1.8.13-tke.2	Moves load balancing logic from controller-manager to an independent service controllers.
2018-09-27	v1.8.13-tke.1	Disabled kmem statistics to prevent cgroup numbers from leaking. Reduced resourcequota conflicts caused by creating pods.
2018-09-21	v1.8.13-qcloud-rev1	If a kubelet state update times out, controller-manager probes kubelet port.

TKE Kubernetes 1.7.8 revisions

Date	Version	Updates
2019-12-17	v1.7.8-tke.4	kubelet does not delete nodes when checking externalID. Adds new metadata for cache and timeout. Fixes an issue where upgrading lxcfs in Ubuntu 16 causes pods to exit. Adds the ability to reboot kubelet to avoid pod not ready.
2018-09-28	v1.7.8-tke.2	Fixes a conflict between controller-manager and external service controller.
2018-09-27	v1.7.8-tke.1	Moves load balancing logic from controller-manager to an independent service controllers.
2018-09-21	v1.7.8-qcloud-rev1	If a kubelet state update times out, controller-manager probes kubelet port.