Kubernetes version notes

Each GKE on Azure release comes with Kubernetes version notes. These are similar to release notes but are specific to a Kubernetes version and might offer more technical detail.

GKE on Azure supports the Kubernetes versions listed in the following sections. If a version isn't included in this file, it's unsupported.

Kubernetes 1.30

1.30.5-gke.200

Kubernetes OSS release notes

1.30.4-gke.400

Kubernetes OSS release notes

1.30.3-gke.100

Kubernetes OSS release notes

  • Feature: The gcloud beta container fleet memberships get-credentials command uses a preview feature of the Connect gateway that lets you run the kubectl attach, cp, and exec commands. For more information, see Limitations in the Connect gateway documentation.

  • Security Fixes:

Kubernetes 1.29

1.29.8-gke.1800

Kubernetes OSS release notes

1.29.8-gke.600

Kubernetes OSS release notes

1.29.7-gke.100

Kubernetes OSS release notes

1.29.6-gke.600

Kubernetes OSS release notes

1.29.5-gke.1100

Kubernetes OSS release notes

1.29.5-gke.700

Kubernetes OSS release notes

1.29.4-gke.200

Kubernetes OSS release notes

1.29.3-gke.600

Kubernetes OSS release notes

Kubernetes 1.28

1.28.14-gke.200

Kubernetes OSS release notes

1.28.13-gke.600

Kubernetes OSS release notes

1.28.12-gke.100

Kubernetes OSS release notes

1.28.11-gke.600

Kubernetes OSS release notes

1.28.10-gke.1300

Kubernetes OSS release notes

1.28.10-gke.800

Kubernetes OSS release notes

1.28.9-gke.400

Kubernetes OSS release notes

1.28.8-gke.800

Kubernetes OSS release notes

1.28.7-gke.1700

Kubernetes OSS release notes

1.28.5-gke.1200

Kubernetes OSS release notes

1.28.5-gke.100

Kubernetes OSS release notes

1.28.3-gke.700

Kubernetes OSS release notes

  • Breaking Change: Starting from 1.28, clusters require outbound HTTPS connectivity to {GCP_LOCATION}-gkemulticloud.googleapis.com. Ensure your proxy server and/or firewall allows for this traffic.

  • Feature: Removed the need to explicitly add Google IAM bindings for most features.

    1. No longer need to add any bindings for gke-system/gke-telemetry-agent when creating a cluster.
    2. No longer need to add any bindings for gmp-system/collector or gmp-system/rule-evaluator when enabling managed data collection for Google Managed Service for Prometheus.
  • Feature: Ubuntu 22.04 now uses linux-azure 6.2 kernel version.

  • Bug Fix: Monitoring metrics for the gke-azure-encryption-provider control plane Pod are now reported on the kube-system namespace. Previously, they were mistakenly being reported on the default namespace.

  • Bug Fix: Upgrading a cluster to version 1.28 will clean up obsolete resources that may have been created in older versions (up to 1.25) but are no longer relevant. The following resources in the namespace gke-system are deleted if exist:

    • daemonsets fluentbit-gke-windows and gke-metrics-agent-windows
    • configmaps fluentbit-gke-windows-config and gke-metrics-agent-windows-conf
  • Bug Fix: Enhanced Cloud Logging's ingestion of logs from Anthos clusters on Azure:

    • Fixed an issue in timestamp parsing.
    • Assigned the correct severity level to the anthos-metadata-agent's error logs.
  • Security Fixes