Release v0.6.0

Added

• Add support to configure multiple CloudEntitySelector CRs for a single CloudProviderAccount CR. Also, these CRs can now be configured in different namespaces. (#216 #269, @archanapholla)
• Add support to allow user tags on VirtualMachine objects. (#272, @reachjainrahul)
• Add enforcement of Antrea NetworkPolicy containing IPV6 addresses. (#246, @reachjainrahul)
• Add integration tests in Jenkins for upgrade workflow. (#245 #168, @Anandkumar26, @reachjainrahul)
• Add support for cloud credentials to be configured in any namespace for a CloudProviderAccount CR. (#281, @reachjainrahul)
• Add support for filtering on label and field selectors of VirtualMachine and Vpc objects in the watch handler. (#250, @reachjainrahul)
• Add pagination support for azure resource graph queries. (#277, @archanapholla)

Changed

• Compute cloud rule delta for Antrea NetworkPolicy in the plugin before realization. (#276, @shenmo3)
• For Azure cloud, remove user-created security rules that fall within the Nephe priority range. (#256, @shenmo3)
• Update retry workflow for failed Antrea NetworkPolicy in network policy controller. (#275 #274, @reachjainrahul)
• Allow Nephe controller to directly connect to Antrea controller instead of relaying connection via K8s API server. (#280, @reachjainrahul)
• Cleanup tracker code by unifying virtual machine policy and network policy tracker in one. (#219, @Anandkumar26)
• Move cloud plugin level lock to an account level lock. (#260, @reachjainrahul)
• Reorganize and refactor cloud plugins. (#253 #258,@reachjainrahul)

Fixed

• Fix network policy controller state when a CloudProviderAccount CR is deleted. (#262, @Anandkumar26)
• Fix an issue to handle AddressGroup modification during restart. (#247, @shenmo3)
• Fix an issue to handle AppliedToGroup delete and re-add. (#259, @Anandkumar26)

Release v0.5.0

Added

• Add AWS session token support in AWS credentials. (#180, @reachjainrahul)
• Add new labels and update existing labels on VirtualMachine and Vpc objects to have nephe.antrea.io suffix. (#184 #223, @archanapholla @reachjainrahul)
• Add Secret watcher to handle AWS and Azure credentials updates. (#169 #210 #231, @Anandkumar26 @Nithish555)
• Add support for per-rule level appliedTo in Antrea NetworkPolicy. (#227, @reachjainrahul)

Changed

• Upgrade Antrea supported version to v1.12. (#238, @reachjainrahul)
• Move VM objects from CRD to an in-memory cache and expose them via aggregated API server. (#167, @reachjainrahul @Anandkumar26 @archanapholla @shenmo3)
• Use Azure network interface API client for real-time data instead of resource graph query. (#190, @reachjainrahul)
• Update Vpc and VirtualMachine aggregated API server REST handler to include more filters like CloudId, CloudVpcId, etc. (#225, @Anandkumar26)
• Sort responses from aggregated API server in alphabetical order. (#211, @reachjainrahul)
• Remove the AppliedToGroup field from the rule description in the cloud due to Azure's character limit on the description field. (#230, @shenmo3)
• Allow user-defined rules on Nephe-managed cloud network security groups. (#207, @shenmo3)
• Modify the CloudProviderAccount CRD to take regions as an array and the CloudEntitySelector CRD to reference CloudProviderAccount. (#208, @archanapholla)
• Reorganize and refactor the code for better maintainability and readability. (#202, @reachjainrahul @Anandkumar26)
• Remove unnecessary state of appliedTo group in network policy controller. (#193, @reachjainrahul)
• Upgrade ginkgo to version v2.9.5. (#205, @Nithish555)

Fixed

• Skip handling of IPv6 addresses in Antrea NetworkPolicy as it's currently not supported. (#222, @reachjainrahul)
• Fix an issue with Azure rule priorities that were being updated with each Antrea NetworkPolicy update. (#220, @shenmo3)
• Fix a race condition in Antrea NetworkPolicy handling where re-adding the same policy while a previous deletion was in progress. (#189, @reachjainrahul)
• Fix a bug that caused address groups to remain stuck in a pending delete state indefinitely. (#194, @reachjainrahul)
• Capture errors while processing CloudProviderAccount CR in the status field. (#186, @Anandkumar26)
• Fix a bug where updating region in CloudProviderAccount CR was not getting reflected in Azure. (#149, @archanapholla)

Release v0.4.0

Added

• Add Config Map for Nephe controller. (#111 #151, @Nithish555)
• Add startup dependency on each CR controller. (#103, @Anandkumar26)
• Add Antrea NetworkPolicy details on the description field of cloud security group rules. (#132, @Anandkumar26)
• Add managed field in the vpc object to indicate if VPC is managed. (#123, @reachjainrahul)
• Add rest handler to watch vpc objects. (#110, @bangqipropel)
• Release a new Nephe Helm chart for each Nephe release. (#158, @reachjainrahul)

Changed

• Move VPC info from Spec to Status in vpc object. (#118, @reachjainrahul)
• Upgrade AWS and Azure SDKs. (#126, @archanapholla @Anandkumar26)
• Update CRD
  • Add endpoint URL in CloudProviderAccount for AWS. (#116, @reachjainrahul)
  • Add region field in VirtualMachine. (#150, @shenmo3)
• Optimize virtual machines polling from cloud. (#130, @archanapholla @Anandkumar26)
• Update terraform scripts to deploy AKS and EKS clusters with K8s version 1.25. (#144, @Anandkumar26)

Fixed

• Fix issues found in the controller scale test. (#131, @reachjainrahul)
• Fix issues found during syncing cloud resources with nephe controller. (#90 #121, @archanapholla)
• Fix stale VirtualMachinePolicy object issue for Azure and add integration test coverage. (#108, @shenmo3)
• Cleanup unnecessary RBAC from nephe manifest. (#148, @reachjainrahul)

Release v0.3.0

Added

• Add Antrea NetworkPolicy rollback in case of any realization failure. (#85, @shenmo3)
• Add VPC Poller feature to import cloud VPCs:
  • Automatically build VPC inventory whenever a CloudProviderAccount CR is added. (#78, @archanapholla)
  • Expose VPC inventory via aggregated API server. (#80, @bangqipropel)
  • Add integration test coverage. (#86, @Anandkumar26 @archanapholla )
• Add Antrea VM agent CI coverage for Windows platform. (#72, @Anandkumar26)
• Add unit test coverage for CloudProviderAccount and CloudEntitySelector CR webhooks. (#73, @archanapholla)

Changed

• Support Antrea v1.10.0 release. (#84, @reachjainrahul)
• Process each Antrea NetworkPolicy independently rather than processing all Antrea NetworkPolicies mapping to a cloud security group together. (#85, @shenmo3)
• Update integration test to run Antrea VM agent CI in a container for Ubuntu and RHEL platforms. (#70, @Anandkumar26)

Fixed

• Fix Antrea NetworkPolicy realization status incase a Antrea NetworkPolicy is modified. (#88, @reachjainrahul)

Release v0.2.0

Added

• Add Antrea VM agent support for Public Cloud VMs:
  • Add support to import agented VMs using External Nodes. (#23, @Anandkumar26)
  • Add CI tests for agented Ubuntu 20.04 VMs. (#42, @shenmo3)
  • Add integration tests for External Node. (#37, @archanapholla)
• Add integration test for Antrea groups. (#40, @reachjainrahul)
• Add Antrea NetworkPolicy rule realization status reporting. (#51 #29, @reachjainrahul)
• Enable CodeCov reporting. (#43, @reachjainrahul)

Changed

• Update Go to v1.19. (#16, @reachjainrahul)
• Support Antrea v1.9 release. (#49, @reachjainrahul)
• Perform delta Antrea NetworkPolicy update on AWS security rule. (#34, @shenmo3)
• Optimization to cloud security group update operations. (#35, @archanapholla)
• Improve unit-test coverage. (#36 #19 @bangqipropel)
• Update webhook validations. (#44, @archanapholla), (#18, @Anandkumar26)

Fixed

• Fix AWS dependency violation error. (#26, @shenmo3)

Release v0.1.0

Added

• CRD definitions for CloudProviderAccount, CloudEntitySelector and VirtualMachine.
• Cloud Plugin for AWS and Azure Cloud.
• Antrea NetworkPolicy support for AWS and Azure VMs using Cloud Network Security Groups.
• Terraform scripts for deploying EKS and AKS Cluster.
• Nephe Documentation.