Bump github.com/gardener/gardener from 1.113.0 to 1.114.1

[dependabot]

Bumps github.com/gardener/gardener from 1.113.0 to 1.114.1.

Release notes

Sourced from github.com/gardener/gardener's releases.

v1.114.1

[gardener/gardener]

🐛 Bug Fixes

• [DEPENDENCY] The hack/check-generate.sh script was fixed to only execute the check-generate target if it exists in the corresponding Makefile. by @​timuthy #11641
• [USER] A bug which made the wildcard TLS certificate endpoint of non-HA-multizone shoot kube-apiservers inaccessible has been fixed. by @​oliver-goetz #11697
• [USER] A bug has been fixed which prevented Shoot deletion because of an unavailable gardener-resource-manager deployment. by @​rfranzke #11710
• [USER] A bug in gardener-operator which made the virtual-kube-apiserver serve the self-signed certificate on the wildcard TLS certificate endpoint when IstioTLSTermination feature gate is active has been fixed. by @​oliver-goetz #11697
• [OPERATOR] A bug which might break control-plane access to shoots until their next reconciliation when deactivating IstioTLSTermination feature gate on their seed has been fixed. by @​oliver-goetz #11694

🏃 Others

• [OPERATOR] gardener-apiserver now returns a warning when the Shoot has the spec.kubernetes.enableStaticTokenKubeconfig field set. by @​shafeeqes #11666

Helm Charts

• controlplane: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/controlplane:v1.114.1
• gardenlet: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/gardenlet:v1.114.1
• operator: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/operator:v1.114.1
• resource-manager: europe-docker.pkg.dev/gardener-project/releases/charts/gardener/resource-manager:v1.114.1

Docker Images

• admission-controller: europe-docker.pkg.dev/gardener-project/releases/gardener/admission-controller:v1.114.1
• apiserver: europe-docker.pkg.dev/gardener-project/releases/gardener/apiserver:v1.114.1
• controller-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/controller-manager:v1.114.1
• gardenlet: europe-docker.pkg.dev/gardener-project/releases/gardener/gardenlet:v1.114.1
• node-agent: europe-docker.pkg.dev/gardener-project/releases/gardener/node-agent:v1.114.1
• operator: europe-docker.pkg.dev/gardener-project/releases/gardener/operator:v1.114.1
• resource-manager: europe-docker.pkg.dev/gardener-project/releases/gardener/resource-manager:v1.114.1
• scheduler: europe-docker.pkg.dev/gardener-project/releases/gardener/scheduler:v1.114.1

v1.114.0

[gardener/gardener]

⚠️ Breaking Changes

• [OPERATOR] The injection of a garden cluster kubeconfig into extension deployments running in the seed cluster does NO LONGER happen automatically. If you need it, make sure to set .injectGardenKubeconfig=true in your ControllerDeployment resources before you upgrade your gardenlets to this version. by @​rfranzke #11607
• [OPERATOR] ⚠️ Gardener does no longer support garden, seed, or shoot clusters with Kubernetes versions <= 1.26. Make sure to upgrade all existing clusters before upgrading to this Gardener version. by @​shafeeqes #10664
• [USER] The .spec.kubernetes.enableStaticTokenKubeconfig field in the Shoot API is deprecated and will be removed in Gardener v1.120. Please adapt your Shoot manifests accordingly. by @​shafeeqes #10664
• [USER] The .spec.kubernetes.kubeControllerManager.podEvictionTimeout field in the Shoot API is deprecated since Gardener v1.63 and will be removed in Gardener v1.120. Please adapt your Shoot manifests accordingly. by @​shafeeqes #10664
• [USER] A deny-all network policy is now deployed in the kube-system namespaces of Shoots with Kubernetes version >= v1.33. by @​AleksandarSavchev #11502

📰 Noteworthy

• [DEVELOPER] The SeedNamePredicate function in the pkg/controllerutils/predicate pkg is now dropped. by @​shafeeqes #11449
• [DEVELOPER] A new convenience tool extension-generator was added to generate Extension example manifests. Gardener extensions can execute this script in the scope of the build process to always check in and provide an up-to-date example in their repositories. by @​timuthy #11329
• [USER] All Seeds are now automatically labeled with name.seed.gardener.cloud/<name>=true (⚠ no longer seed.gardener.cloud/<name>=true) where <name> is their own name, and (if applicable) the name of their parent seed in case they are managed seeds. This label can be used as selector for requests. by @​rfranzke #11479
• [OPERATOR] Removed reversed-vpn-auth-server deployment as it was unused. See gardener/gardener#11214 by @​Wieneo #11338

✨ New Features

• [OPERATOR] Layer 7 load balancing for virtual-garden- and shoot-kube-apiservers can be activated via IstioTLSTermination feature gate in gardener-operator and gardenlet by @​oliver-goetz #11085
• [OPERATOR] Enhanced the Shoot and Garden APIs to configured minAllowed VPA values for etcds and kube-apiserver. See shoot example or garden example for more information. by @​timuthy #11252
• [OPERATOR] gardener-operator now waits for required Extensions to get ready early in the reconcile flow. It addresses use-cases where extensions run mutating webhooks in the garden runtime cluster that must be present when Garden components are deployed. by @​timuthy #11523

... (truncated)

Commits

• 21f416c Release v1.114.1
• d380769 Ignore "not found" errors when listing non-existent CRDs (#11710)
• 128a65a [release-v1.114] Fix wildcard certificate endpoints of shoots and virtual-gar...
• 646c3cd Keep envoyfilters for L7 load-balancing unless no shoot is using this feature...
• ee3240d [release-v1.114] Add a warning when `spec.kubernetes.enableStaticTokenKubecon...
• 62f0cc9 Fix check-generate script for extensions (#11641)
• 73207cd Prepare next Development Cycle v1.114.1-dev
• cc87fd1 Release v1.114.0
• 106e549 Add missing g. to Expects in ControllerInstallation integration test (#...
• 547f9a9 [release-v1.114] Fixes restoration of multi-node etcds during control plane m...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[gardener-robot]

@dependabot[bot] Thank you for your contribution.

[gardener-robot-ci-3]

Thank you @dependabot[bot] for your contribution. Before I can start building your PR, a member of the organization must set the required label(s) {'reviewed/ok-to-test'}. Once started, you can check the build status in the PR checks section below.

[dependabot]

Superseded by #193.