build(deps): bump github.com/aws/amazon-vpc-cni-k8s from 1.12.5 to 1.13.3

[dependabot]

Bumps github.com/aws/amazon-vpc-cni-k8s from 1.12.5 to 1.13.3.

Release notes

Sourced from github.com/aws/amazon-vpc-cni-k8s's releases.

v1.13.3

The major improvement in v1.13.3 is a decrease in memory utilization and API server requests for the aws-node pod. One note to point out is that for IPv6 clusters, we used to file an event on startup when aws-node did not have IAM permissions to assign IPv6 addresses to pods. Now, we just log and allow aws-node pod to crash and restart.

Changes since v1.13.2

• Bug - Decrease memory usage by K8S Clients (@​jdn5126 )
• Documentation - update docs and CNI logging (@​jdn5126 )
• Improvement - Updates instance limits including c7gn (@​mmerkes )

To manually apply this release:

kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.13.3/config/master/aws-k8s-cni.yaml

Note that the following regions use different manifests:

us-gov-east-1:

kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.13.3/config/master/aws-k8s-cni-us-gov-east-1.yaml

us-gov-west-1:

kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.13.3/config/master/aws-k8s-cni-us-gov-west-1.yaml

cn:

kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.13.3/config/master/aws-k8s-cni-cn.yaml

To apply this release using helm:

Follow the installation instructions in https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.13.3/charts/aws-vpc-cni/README.md#installing-the-chart

Verify the update:

$ kubectl describe daemonset aws-node -n kube-system | grep Image | cut -d "/" -f 2                                                   
amazon-k8s-cni-init:v1.13.3
amazon-k8s-cni:v1.13.3

To manually apply this release for CNI Metrics Helper:

kubectl apply -f https://raw.githubusercontent.com/aws/amazon-vpc-cni-k8s/v1.13.3/config/master/cni-metrics-helper.yaml

... (truncated)

Changelog

Sourced from github.com/aws/amazon-vpc-cni-k8s's changelog.

v1.13.3

• Bug - Decrease memory usage by K8S Clients (@​jdn5126 )
• Documentation - update docs and CNI logging (@​jdn5126 )
• Improvement - Updates instance limits including c7gn (@​mmerkes )

v1.13.2

• Bug - Sync node security groups to cache before node initialization (@​jdn5126 )
• Improvement - Fix hard-coded nitro instance types: p4de.24xlarge and c7g.metal (@​jdn5126 )
• Improvement - Upgrade to Go 1.20 and apply dependabot updates
• Improvement - Set iptables mode automatically and deprecate ENABLE_NFTABLES (@​jdn5126 )
• Improvement - Upgrade client-go and controller-runtime modules (@​jdn5126 )

v1.13.0

• Bug - Increase datastore pool at startup (@​jdn5126 )
• Bug - Deallocate IP address according to warm IP target when multiple enis are present (@​bikashmishra100 )
• Bug - Return success from CNI DEL when IPAMD is unreachable (@​jdn5126 )
• Bug - Fix for aws-vpc-cni chart with tolerations to produce syntax valid yaml (@​Bourne-ID )
• Bug - adding ip check for annotatePod in ipamd (@​jerryhe1999 )
• Feature - Introduce DISABLE_LEAKED_ENI_CLEANUP to disable leaked ENI cleanup task (@​jdn5126 )
• Feature - Add IPv6 egress support to eks IPv4 cluster (@​wanyufe )
• Feature - feat(chart): Refactored image template logic for endpoint flexibility (@​stevehipwell )
• Feature - add AWS_EC2_ENDPOINT variable for custom endpoint (@​jihunseol )
• Improvement - Refactor egress-v4-cni plugin to support unit testing (@​wanyufe )
• Improvement - Update instance limits and core plugins version in preparation for upcoming VPC CNI release (@​jdn5126 )
• Improvement - refactoring eniconfig func to only take node as parameter (@​haouc )
• Improvement - Remove go mod download from Dockerfiles (@​jdn5126 )
• Improvement - Add apiVersion to MY_NODE_NAME (@​jdn5126 )
• Improvement - install all core CNI plugins via init container (@​jdn5126 )
• Improvement - Make all the aws vpc cni environmental variables case insensitive (@​jerryhe1999 )
• Improvement - resource limit on init container in eks addon (@​pdeva )
• Testing - Add integration test for POD v4/v6 egress traffic (@​wanyufe )

v1.12.6

• Bug - Fix MTU parameter in egress-v4-cni plugin (@​jdn5126 )
• Documentation - Fixing the log message to be meaningful (@​rajeeshckr )
• Improvement - Add bmn-sf1.metal instance support (@​vpineda1996 )
• Improvement - Support routing to external IPs behind service (@​jdn5126 )
• Improvement - Use Go 1.19; fix egress-v4-cni MTU parsing, update containerd (@​jdn5126 )
• Improvement - Added enviroment variable to allow ipamd to manage the ENIs on a non schedulable node (@​rajeeshckr )
• Improvement - Use GET for IAM Permissions event; update controller-runtime from 0.13.1 to 0.14.4 and client-go from v0.25.5 to v0.26.1 (@​jdn5126 )
• Improvement - Remove old checkpoint migration logic; update containerd version (@​jdn5126 )

Commits

• 898da2e v1.13.3 release: CHANGELOG, chart, and manifest updates (#2465)
• a6e991f Merge master into release-1.13 for VPC CNI v1.13.3 release (#2464)
• c5f5c6e CHANGELOG, chart, and manifest updates for v1.13.2 release (#2431)
• cc06bb4 Merge updates to release-1.13 branch for VPC CNI release (#2430)
• 0b09af2 Merge master into release-1.13 branch for v1.13.1 release (#2424)
• 9c33564 missed version updates for v1.13.0 manifest (#2399)
• 8114f0c documentation and image tag changes for VPC CNI v1.13.0 release (#2394)
• fdf7a56 update instance limits and core plugins (#2390)
• 2eef830 refactoring eniconfig func to only take node as parameter (#2387)
• 3865743 add warning about V6 Egress (#2382)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)