- amazon-eks-node-1.18-v20220123
- amazon-eks-arm64-node-1.18-v20220123
- amazon-eks-gpu-node-1.18-v20220123
- amazon-eks-node-1.19-v20220123
- amazon-eks-arm64-node-1.19-v20220123
- amazon-eks-gpu-node-1.19-v20220123
- amazon-eks-node-1.20-v20220123
- amazon-eks-arm64-node-1.20-v20220123
- amazon-eks-gpu-node-1.20-v20220123
- amazon-eks-node-1.21-v20220123
- amazon-eks-arm64-node-1.21-v20220123
- amazon-eks-gpu-node-1.21-v20220123
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.21.5/2022-01-21/
- s3://amazon-eks/1.20.11/2021-11-10/
- s3://amazon-eks/1.19.15/2021-11-10/
- s3://amazon-eks/1.18.20/2020-09-02/
AMI details:
- kernel: 5.4.172-90.336.amzn2 (1.19 and above), 4.14.256-197.484.amzn2 (1.18 and below)
- dockerd: 20.10.7-5.amzn2
- containerd: 1.4.6-7.amzn2
- runc: 1.0.0-2.amzn2
- cuda: 470.57.02
- nvidia-container-runtime-hook: 1.4.0-1.amzn2
- SSM agent: 3.0.1124.0
Notable changes:
- Upgrade kernel version for Kubernetes 1.19 and above to 5.4.172-90.336.amzn2.x86_64 for CVE-2022-0185
- Bug fix in kubelet for 1.21 AMIs to handle compacted IPv6 addresses returned by EC2 API. New Kubelet version:
v1.21.5-eks-9017834
- amazon-eks-gpu-node-1.21-v20220112
- amazon-eks-gpu-node-1.20-v20220112
- amazon-eks-gpu-node-1.19-v20220112
- amazon-eks-gpu-node-1.18-v20220112
- amazon-eks-arm64-node-1.21-v20220112
- amazon-eks-arm64-node-1.20-v20220112
- amazon-eks-arm64-node-1.19-v20220112
- amazon-eks-arm64-node-1.18-v20220112
- amazon-eks-node-1.21-v20220112
- amazon-eks-node-1.20-v20220112
- amazon-eks-node-1.19-v20220112
- amazon-eks-node-1.18-v20220112
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.21.5/2021-11-10/
- s3://amazon-eks/1.20.11/2021-11-10/
- s3://amazon-eks/1.19.15/2021-11-10/
- s3://amazon-eks/1.18.20/2020-09-02/
AMI details:
- kernel: 5.4.162-86.275.amzn2 (1.19 and above), 4.14.256-197.484.amzn2 (1.18 and below)
- dockerd: 20.10.7-5.amzn2
- containerd: 1.4.6-7.amzn2
- runc: 1.0.0-2.amzn2
- cuda: 470.57.02
- nvidia-container-runtime-hook: 1.4.0-1.amzn2
- SSM agent: 3.0.1124.0-1.amzn2
Notable changes:
- Updating aws-cli ( aws-cli/1.22.32 ). Latest CLI is installed using the recommended steps here. This change is specific to this AMI release.
- Added fix to handle failures when serviceIpv6Cidr isn't provided. Related issue: awslabs#839.
- Added fix to make ipFamily check case-insensitive
- amazon-eks-gpu-node-1.21-v20211206
- amazon-eks-gpu-node-1.20-v20211206
- amazon-eks-gpu-node-1.19-v20211206
- amazon-eks-gpu-node-1.18-v20211206
- amazon-eks-arm64-node-1.21-v20211206
- amazon-eks-arm64-node-1.20-v20211206
- amazon-eks-arm64-node-1.19-v20211206
- amazon-eks-arm64-node-1.18-v20211206
- amazon-eks-node-1.21-v20211206
- amazon-eks-node-1.20-v20211206
- amazon-eks-node-1.19-v20211206
- amazon-eks-node-1.18-v20211206
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.21.5/2021-11-10/
- s3://amazon-eks/1.20.11/2021-11-10/
- s3://amazon-eks/1.19.15/2021-11-10/
- s3://amazon-eks/1.18.20/2020-09-02/
AMI details:
- kernel: 5.4.156-83.273.amzn2 (1.19 and above), 4.14.252-195.483.amzn2 (1.18 and below)
- dockerd: 20.10.7-5.amzn2
- containerd: 1.4.6-7.amzn2
- runc: 1.0.0-2.amzn2
- cuda: 470.57.02
- nvidia-container-runtime-hook: 1.4.0-1.amzn2
- SSM agent: 3.0.1124.0-1.amzn2
Notable changes:
- Adds new instanceTypes to the eni-max-pods.txt file.
- Patch for AL2/ALAS-2021-1722.
- amazon-eks-gpu-node-1.21-v20211117
- amazon-eks-gpu-node-1.20-v20211117
- amazon-eks-gpu-node-1.19-v20211117
- amazon-eks-gpu-node-1.18-v20211117
- amazon-eks-gpu-node-1.17-v20211117
- amazon-eks-arm64-node-1.21-v20211117
- amazon-eks-arm64-node-1.20-v20211117
- amazon-eks-arm64-node-1.19-v20211117
- amazon-eks-arm64-node-1.18-v20211117
- amazon-eks-arm64-node-1.17-v20211117
- amazon-eks-node-1.21-v20211117
- amazon-eks-node-1.20-v20211117
- amazon-eks-node-1.19-v20211117
- amazon-eks-node-1.18-v20211117
- amazon-eks-node-1.17-v20211117
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.21.5/2021-11-10/
- s3://amazon-eks/1.20.11/2021-11-10/
- s3://amazon-eks/1.19.15/2021-11-10/
- s3://amazon-eks/1.18.20/2020-09-02/
- s3://amazon-eks/1.17.17/2020-09-02/
AMI details:
- kernel: 5.4.156-83.273.amzn2 (1.19 and above), 4.14.252-195.483.amzn2 (1.18 and below)
- dockerd: 20.10.7-5.amzn2
- containerd: 1.4.6-7.amzn2
- runc: 1.0.0-2.amzn2
- cuda: 470.57.02
- nvidia-container-runtime-hook: 1.4.0-1.amzn2
- SSM agent: 3.0.1124.0-1.amzn2
Notable changes:
Update containerd
to 1.4.6-7.amzn2
and docker
to 20.10.7-5.amzn2
to patch vulnerabilities in CVE-2021-41190
- amazon-eks-gpu-node-1.21-v20211109
- amazon-eks-gpu-node-1.20-v20211109
- amazon-eks-gpu-node-1.19-v20211109
- amazon-eks-gpu-node-1.18-v20211109
- amazon-eks-gpu-node-1.17-v20211109
- amazon-eks-arm64-node-1.21-v20211109
- amazon-eks-arm64-node-1.20-v20211109
- amazon-eks-arm64-node-1.19-v20211109
- amazon-eks-arm64-node-1.18-v20211109
- amazon-eks-arm64-node-1.17-v20211109
- amazon-eks-node-1.21-v20211109
- amazon-eks-node-1.20-v20211109
- amazon-eks-node-1.19-v20211109
- amazon-eks-node-1.18-v20211109
- amazon-eks-node-1.17-v20211109
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.21.5/2021-11-10/
- s3://amazon-eks/1.20.11/2021-11-10/
- s3://amazon-eks/1.19.15/2021-11-10/
- s3://amazon-eks/1.18.20/2020-09-02/
- s3://amazon-eks/1.17.17/2020-09-02/
AMI details:
- kernel: 5.4.149-73.259.amzn2 (1.19 and above), 4.14.252-195.483.amzn2 (1.18 and below)
- dockerd: 20.10.7-3.amzn2
- containerd: 1.4.6-3.amzn2
- runc: 1.0.0-2.amzn2
- cuda: 470.57.02
- nvidia-container-runtime-hook: 1.4.0-1.amzn2
- SSM agent: 3.0.1124.0
Notable changes:
- Upgrade kernel version for 1.17 and 1.18 to 4.14.252-195.483.amzn2
- Upgrade cuda version from 460.73.01 to 470.57.02
- Upgrade kubelet version
- 1.19.14 -> 1.19.15
- 1.20.10 -> 1.20.11
- 1.21.4 -> 1.21.5
- Remove cbc ciphers and use following recommended ciphers
- [email protected]
- aes128-ctr
- aes256-ctr
- [email protected]
- [email protected]
- amazon-eks-gpu-node-1.21-v20211013
- amazon-eks-gpu-node-1.20-v20211013
- amazon-eks-gpu-node-1.19-v20211013
- amazon-eks-gpu-node-1.18-v20211013
- amazon-eks-gpu-node-1.17-v20211013
- amazon-eks-gpu-node-1.16-v20211013
- amazon-eks-arm64-node-1.21-v20211013
- amazon-eks-arm64-node-1.20-v20211013
- amazon-eks-arm64-node-1.19-v20211013
- amazon-eks-arm64-node-1.18-v20211013
- amazon-eks-arm64-node-1.17-v20211013
- amazon-eks-arm64-node-1.16-v20211013
- amazon-eks-node-1.21-v20211013
- amazon-eks-node-1.20-v20211013
- amazon-eks-node-1.19-v20211013
- amazon-eks-node-1.18-v20211013
- amazon-eks-node-1.17-v20211013
- amazon-eks-node-1.16-v20211013
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.21.4/2021-10-12/
- s3://amazon-eks/1.20.10/2021-10-12/
- s3://amazon-eks/1.19.14/2021-10-12/
- s3://amazon-eks/1.18.20/2021-09-02/
- s3://amazon-eks/1.17.17/2021-09-02/
- s3://amazon-eks/1.16.15/2021-09-02/
AMI details:
- kernel: 5.4.149-73.259.amzn2 (1.19 and above), 4.14.248-189.473.amzn2 (1.18 and below)
- dockerd: 20.10.7-3.amzn2
- containerd: 1.4.6-3.amzn2
- runc: 1.0.0-2.amzn2
- cuda: 460.73.01
- nvidia-container-runtime-hook: 1.4.0-1.amzn2
- SSM agent: 3.0.1124.0
Notable changes:
- A fix has been made to the GPU AMIs to ensure they work correctly with containerd as the container runtime.
- amazon-eks-gpu-node-1.21-v20211008
- amazon-eks-gpu-node-1.20-v20211008
- amazon-eks-gpu-node-1.19-v20211008
- amazon-eks-gpu-node-1.18-v20211008
- amazon-eks-gpu-node-1.17-v20211008
- amazon-eks-gpu-node-1.16-v20211008
- amazon-eks-gpu-node-1.15-v20211008
- amazon-eks-arm64-node-1.21-v20211008
- amazon-eks-arm64-node-1.20-v20211008
- amazon-eks-arm64-node-1.19-v20211008
- amazon-eks-arm64-node-1.18-v20211008
- amazon-eks-arm64-node-1.17-v20211008
- amazon-eks-arm64-node-1.16-v20211008
- amazon-eks-arm64-node-1.15-v20211008
- amazon-eks-node-1.21-v20211008
- amazon-eks-node-1.20-v20211008
- amazon-eks-node-1.19-v20211008
- amazon-eks-node-1.18-v20211008
- amazon-eks-node-1.17-v20211008
- amazon-eks-node-1.16-v20211008
- amazon-eks-node-1.15-v20211008
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.21.4/2021-10-12/
- s3://amazon-eks/1.20.10/2021-10-12/
- s3://amazon-eks/1.19.14/2021-10-12/
- s3://amazon-eks/1.18.20/2021-09-02/
- s3://amazon-eks/1.17.17/2021-09-02/
- s3://amazon-eks/1.16.15/2021-09-02/
AMI details:
- kernel: 5.4.149-73.259.amzn2 (1.19 and above), 4.14.248-189.473.amzn2 (1.18 and below)
- dockerd: 20.10.7-3.amzn2
- containerd: 1.4.6-3.amzn2
- runc: 1.0.0-2.amzn2
- cuda: 460.73.01
- nvidia-container-runtime-hook: 1.4.0-1.amzn2
- SSM agent: 3.0.1124.0
Notable changes:
- kubelet binaries have been updated for Kubernetes versions 1.19, 1.20 and 1.21, which include a patch to fix an issue where kubelet can fail to unmount volumes
- amazon-eks-gpu-node-1.20-v20211004
- amazon-eks-gpu-node-1.19-v20211004
- amazon-eks-gpu-node-1.18-v20211004
- amazon-eks-gpu-node-1.17-v20211004
- amazon-eks-gpu-node-1.16-v20211004
- amazon-eks-gpu-node-1.15-v20211004
- amazon-eks-arm64-node-1.20-v20211004
- amazon-eks-arm64-node-1.19-v20211004
- amazon-eks-arm64-node-1.18-v20211004
- amazon-eks-arm64-node-1.17-v20211004
- amazon-eks-arm64-node-1.16-v20211004
- amazon-eks-arm64-node-1.15-v20211004
- amazon-eks-node-1.20-v20211004
- amazon-eks-node-1.19-v20211004
- amazon-eks-node-1.18-v20211004
- amazon-eks-node-1.17-v20211004
- amazon-eks-node-1.16-v20211004
- amazon-eks-node-1.15-v20211004
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.21.2/2021-04-12/
- s3://amazon-eks/1.20.7/2021-04-12/
- s3://amazon-eks/1.19.13/2021-01-05/
- s3://amazon-eks/1.18.20/2020-11-02/
- s3://amazon-eks/1.17.17/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
AMI details:
- kernel: 5.4.149-73.259.amzn2 (1.19 and above), 4.14.246-187.474.amzn2 (1.18 and below)
- dockerd: 20.10.7-3.amzn2
- containerd: 1.4.6-3.amzn2
- runc: 1.0.0-2.amzn2
- cuda: 460.73.01
- nvidia-container-runtime-hook: 460.73.01
- SSM agent: 3.0.1124.0
Notable changes:
- Created AMI released on the latest commit
- amazon-eks-gpu-node-1.20-v20211003
- amazon-eks-gpu-node-1.19-v20211003
- amazon-eks-gpu-node-1.18-v20211003
- amazon-eks-gpu-node-1.17-v20211003
- amazon-eks-gpu-node-1.16-v20211003
- amazon-eks-gpu-node-1.15-v20211003
- amazon-eks-arm64-node-1.20-v20211003
- amazon-eks-arm64-node-1.19-v20211003
- amazon-eks-arm64-node-1.18-v20211003
- amazon-eks-arm64-node-1.17-v20211003
- amazon-eks-arm64-node-1.16-v20211003
- amazon-eks-arm64-node-1.15-v20211003
- amazon-eks-node-1.20-v20211003
- amazon-eks-node-1.19-v20211003
- amazon-eks-node-1.18-v20211003
- amazon-eks-node-1.17-v20211003
- amazon-eks-node-1.16-v20211003
- amazon-eks-node-1.15-v20211003
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.21.2/2021-04-12/
- s3://amazon-eks/1.20.7/2021-04-12/
- s3://amazon-eks/1.19.13/2021-01-05/
- s3://amazon-eks/1.18.20/2020-11-02/
- s3://amazon-eks/1.17.17/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
AMI details:
- kernel: 5.4.144-69.257.amzn2 (1.19 and above), (1.18 and below)
- dockerd: 20.10.7-3.amzn2
- containerd: 1.4.6-3.amzn2
- runc: 1.0.0-2.amzn2
- cuda: 460.73.01
- nvidia-container-runtime-hook: 460.73.01
- SSM agent: 3.0.1124.0
Notable changes:
- Updated version of RunC to 1.0.0-2.amzn2
- Updated version of Docker to 20.10.7-3.amzn2
- Updated version of Containerd to 1.4.6-3.amzn2
- Following CVEs are addressed Docker (CVE-2021-41089, CVE-2021-41091, CVE-2021-41092) and containerd (CVE-2021-41103)
- amazon-eks-gpu-node-1.21-v20211001
- amazon-eks-gpu-node-1.20-v20211001
- amazon-eks-gpu-node-1.19-v20211001
- amazon-eks-gpu-node-1.18-v20211001
- amazon-eks-gpu-node-1.17-v20211001
- amazon-eks-gpu-node-1.16-v20211001
- amazon-eks-arm64-node-1.21-v20211001
- amazon-eks-arm64-node-1.20-v20211001
- amazon-eks-arm64-node-1.19-v20211001
- amazon-eks-arm64-node-1.18-v20211001
- amazon-eks-arm64-node-1.17-v20211001
- amazon-eks-arm64-node-1.16-v20211001
- amazon-eks-node-1.21-v20211001
- amazon-eks-node-1.20-v20211001
- amazon-eks-node-1.19-v20211001
- amazon-eks-node-1.18-v20211001
- amazon-eks-node-1.17-v20211001
- amazon-eks-node-1.16-v20211001
Binaries used to build these AMIs are published:
s3://amazon-eks/1.20.4/2021-04-12/ s3://amazon-eks/1.19.6/2021-01-05/ s3://amazon-eks/1.18.9/2020-11-02/ s3://amazon-eks/1.17.12/2020-11-02/ s3://amazon-eks/1.16.15/2020-11-02/ s3://amazon-eks/1.15.12/2020-11-02/
AMI details:
- kernel: 5.4.144-69.257.amzn2 (1.19 and above), (1.18 and below)
- dockerd: 19.03.13-ce
- containerd: 1.4.6
- runc: 1.0.0.amzn2
- cuda: 460.73.01
- nvidia-container-runtime-hook: 460.73.01
- SSM agent: 3.0.1124.0
Notable changes:
- This release includes the patch for the CA to handle Let's Encrypt Certificate Expiry
- Updating default containerd socket path
- amazon-eks-gpu-node-1.21-v20210914
- amazon-eks-gpu-node-1.20-v20210914
- amazon-eks-gpu-node-1.19-v20210914
- amazon-eks-gpu-node-1.18-v20210914
- amazon-eks-gpu-node-1.17-v20210914
- amazon-eks-gpu-node-1.16-v20210914
- amazon-eks-arm64-node-1.21-v20210914
- amazon-eks-arm64-node-1.20-v20210914
- amazon-eks-arm64-node-1.19-v20210914
- amazon-eks-arm64-node-1.18-v20210914
- amazon-eks-arm64-node-1.17-v20210914
- amazon-eks-arm64-node-1.16-v20210914
- amazon-eks-node-1.21-v20210914
- amazon-eks-node-1.20-v20210914
- amazon-eks-node-1.19-v20210914
- amazon-eks-node-1.18-v20210914
- amazon-eks-node-1.17-v20210914
- amazon-eks-node-1.16-v20210914
Notable changes: Adding support for new ec2 instance types i.e. m6i
- amazon-eks-gpu-node-1.21-v20210830
- amazon-eks-gpu-node-1.20-v20210830
- amazon-eks-gpu-node-1.19-v20210830
- amazon-eks-gpu-node-1.18-v20210830
- amazon-eks-gpu-node-1.17-v20210830
- amazon-eks-gpu-node-1.16-v20210830
- amazon-eks-arm64-node-1.21-v20210830
- amazon-eks-arm64-node-1.20-v20210830
- amazon-eks-arm64-node-1.19-v20210830
- amazon-eks-arm64-node-1.18-v20210830
- amazon-eks-arm64-node-1.17-v20210830
- amazon-eks-arm64-node-1.16-v20210830
- amazon-eks-node-1.21-v20210830
- amazon-eks-node-1.20-v20210830
- amazon-eks-node-1.19-v20210830
- amazon-eks-node-1.18-v20210830
- amazon-eks-node-1.17-v20210830
- amazon-eks-node-1.16-v20210830
Notable changes:
- Upgrade kubelet version for 1.17 and 1.20
- 1.17.12 -> 1.17.17
- 1.20.4 -> 1.20.7
- amazon-eks-gpu-node-1.21-v20210826
- amazon-eks-gpu-node-1.20-v20210826
- amazon-eks-gpu-node-1.19-v20210826
- amazon-eks-gpu-node-1.18-v20210826
- amazon-eks-gpu-node-1.17-v20210826
- amazon-eks-gpu-node-1.16-v20210826
- amazon-eks-gpu-node-1.15-v20210826
- amazon-eks-arm64-node-1.21-v20210826
- amazon-eks-arm64-node-1.20-v20210826
- amazon-eks-arm64-node-1.19-v20210826
- amazon-eks-arm64-node-1.18-v20210826
- amazon-eks-arm64-node-1.17-v20210826
- amazon-eks-arm64-node-1.16-v20210826
- amazon-eks-arm64-node-1.15-v20210826
- amazon-eks-node-1.21-v20210826
- amazon-eks-node-1.20-v20210826
- amazon-eks-node-1.19-v20210826
- amazon-eks-node-1.18-v20210826
- amazon-eks-node-1.17-v20210826
- amazon-eks-node-1.16-v20210826
- amazon-eks-node-1.15-v20210826
Notable changes:
- Fix to reduce permissions of
pull-sandbox-image.sh
c78bb6b
- amazon-eks-gpu-node-1.21-v20210813
- amazon-eks-gpu-node-1.20-v20210813
- amazon-eks-gpu-node-1.19-v20210813
- amazon-eks-gpu-node-1.18-v20210813
- amazon-eks-gpu-node-1.17-v20210813
- amazon-eks-gpu-node-1.16-v20210813
- amazon-eks-gpu-node-1.15-v20210813
- amazon-eks-arm64-node-1.21-v20210813
- amazon-eks-arm64-node-1.20-v20210813
- amazon-eks-arm64-node-1.19-v20210813
- amazon-eks-arm64-node-1.18-v20210813
- amazon-eks-arm64-node-1.17-v20210813
- amazon-eks-arm64-node-1.16-v20210813
- amazon-eks-arm64-node-1.15-v20210813
- amazon-eks-node-1.21-v20210813
- amazon-eks-node-1.20-v20210813
- amazon-eks-node-1.19-v20210813
- amazon-eks-node-1.18-v20210813
- amazon-eks-node-1.17-v20210813
- amazon-eks-node-1.16-v20210813
- amazon-eks-node-1.15-v20210813
Notable changes:
- Contains fix for sanbox-image issue with containerd in Gov-cloud and CN regions.
- Updating to 1.18.20 and 1.19.13 kubernetes version.
- amazon-eks-gpu-node-1.21-v20210722
- amazon-eks-gpu-node-1.20-v20210722
- amazon-eks-gpu-node-1.19-v20210722
- amazon-eks-gpu-node-1.18-v20210722
- amazon-eks-gpu-node-1.17-v20210722
- amazon-eks-gpu-node-1.16-v20210722
- amazon-eks-gpu-node-1.15-v20210722
- amazon-eks-arm64-node-1.21-v20210722
- amazon-eks-arm64-node-1.20-v20210722
- amazon-eks-arm64-node-1.19-v20210722
- amazon-eks-arm64-node-1.18-v20210722
- amazon-eks-arm64-node-1.17-v20210722
- amazon-eks-arm64-node-1.16-v20210722
- amazon-eks-arm64-node-1.15-v20210722
- amazon-eks-node-1.21-v20210722
- amazon-eks-node-1.20-v20210722
- amazon-eks-node-1.19-v20210722
- amazon-eks-node-1.18-v20210722
- amazon-eks-node-1.17-v20210722
- amazon-eks-node-1.16-v20210722
- amazon-eks-node-1.15-v20210722
Notable changes:
- This release includes the security patch for the kernel, for CVE-2021-33909.
- amazon-eks-gpu-node-1.21-v20210720
- amazon-eks-gpu-node-1.20-v20210720
- amazon-eks-gpu-node-1.19-v20210720
- amazon-eks-gpu-node-1.18-v20210720
- amazon-eks-gpu-node-1.17-v20210720
- amazon-eks-gpu-node-1.16-v20210720
- amazon-eks-gpu-node-1.15-v20210720
- amazon-eks-arm64-node-1.21-v20210720
- amazon-eks-arm64-node-1.20-v20210720
- amazon-eks-arm64-node-1.19-v20210720
- amazon-eks-arm64-node-1.18-v20210720
- amazon-eks-arm64-node-1.17-v20210720
- amazon-eks-arm64-node-1.16-v20210720
- amazon-eks-arm64-node-1.15-v20210720
- amazon-eks-node-1.21-v20210720
- amazon-eks-node-1.20-v20210720
- amazon-eks-node-1.19-v20210720
- amazon-eks-node-1.18-v20210720
- amazon-eks-node-1.17-v20210720
- amazon-eks-node-1.16-v20210720
- amazon-eks-node-1.15-v20210720
EKS AMI release for Kubernetes version 1.21 (1.21 AMIs for GPU and ARM in us-gov-west-1 and us-gov-east-1 are included in this release)
- Note: The containerd has patch for CVE-2-21-32760
Containerd runtime support The EKS Optimized Amazon Linux 2 AMI now contains a bootstrap (https://github.com/awslabs/amazon-eks-ami/blob/master/files/bootstrap.sh) flag --container-runtime to optionally enable the containerd runtime. This flag is available in all supported Kubernetes versions of the AMI. This change is to get ahead of the removal of Docker as a supported runtime in Kubernetes (more details here (https://kubernetes.io/blog/2020/12/02/dockershim-faq/)). Feedback is appreciated.
FIPS Kernel Panic issue on 5.4.X is fixed - awslabs#632
- amazon-eks-gpu-node-1.21-v20210716
- amazon-eks-gpu-node-1.20-v20210716
- amazon-eks-gpu-node-1.19-v20210716
- amazon-eks-gpu-node-1.18-v20210716
- amazon-eks-gpu-node-1.17-v20210716
- amazon-eks-gpu-node-1.16-v20210716
- amazon-eks-gpu-node-1.15-v20210716
- amazon-eks-arm64-node-1.21-v20210716
- amazon-eks-arm64-node-1.20-v20210716
- amazon-eks-arm64-node-1.19-v20210716
- amazon-eks-arm64-node-1.18-v20210716
- amazon-eks-arm64-node-1.17-v20210716
- amazon-eks-arm64-node-1.16-v20210716
- amazon-eks-arm64-node-1.15-v20210716
- amazon-eks-node-1.21-v20210716
- amazon-eks-node-1.20-v20210716
- amazon-eks-node-1.19-v20210716
- amazon-eks-node-1.18-v20210716
- amazon-eks-node-1.17-v20210716
- amazon-eks-node-1.16-v20210716
- amazon-eks-node-1.15-v20210716
EKS AMI release for Kubernetes version 1.21 (1.21 AMIs for GPU and ARM in us-gov-west-1 and us-gov-east-1 aren't a part of this release)
- Note: The containerd has patch for CVE-2-21-32760
Containerd runtime support The EKS Optimized Amazon Linux 2 AMI now contains a bootstrap (https://github.com/awslabs/amazon-eks-ami/blob/master/files/bootstrap.sh) flag --container-runtime to optionally enable the containerd runtime. This flag is available in all supported Kubernetes versions of the AMI. This change is to get ahead of the removal of Docker as a supported runtime in Kubernetes (more details here (https://kubernetes.io/blog/2020/12/02/dockershim-faq/)). Feedback is appreciated.
FIPS Kernel Panic issue on 5.4.X is fixed - awslabs#632
- amazon-eks-gpu-node-1.20-v20210628
- amazon-eks-gpu-node-1.19-v20210628
- amazon-eks-gpu-node-1.18-v20210628
- amazon-eks-gpu-node-1.17-v20210628
- amazon-eks-gpu-node-1.16-v20210628
- amazon-eks-gpu-node-1.15-v20210628
- amazon-eks-arm64-node-1.20-v20210628
- amazon-eks-arm64-node-1.19-v20210628
- amazon-eks-arm64-node-1.18-v20210628
- amazon-eks-arm64-node-1.17-v20210628
- amazon-eks-arm64-node-1.16-v20210628
- amazon-eks-arm64-node-1.15-v20210628
- amazon-eks-node-1.20-v20210628
- amazon-eks-node-1.19-v20210628
- amazon-eks-node-1.18-v20210628
- amazon-eks-node-1.17-v20210628
- amazon-eks-node-1.16-v20210628
- amazon-eks-node-1.15-v20210628
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.20.4/2021-04-12/
- s3://amazon-eks/1.19.6/2021-01-05/
- s3://amazon-eks/1.18.9/2020-11-02/
- s3://amazon-eks/1.17.12/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
- s3://amazon-eks/1.15.12/2020-11-02/
AMI details:
- kernel: 5.4.117-58.216.amzn2 (1.19 and above), 4.14.232-177.418.amzn2 (1.18 and below)
- dockerd: 19.03.13ce
- containerd: 1.4.1
- runc: 1.0.0-rc93
- cuda: 460.73.01
- nvidia-container-runtime-hook: 460.73.01
- SSM agent: 3.0.1295.0
Notable changes:
Includes the latest security patches for systemd, python3 and others.
- amazon-eks-gpu-node-1.20-v20210621
- amazon-eks-gpu-node-1.19-v20210621
- amazon-eks-gpu-node-1.18-v20210621
- amazon-eks-gpu-node-1.17-v20210621
- amazon-eks-gpu-node-1.16-v20210621
- amazon-eks-gpu-node-1.15-v20210621
- amazon-eks-arm64-node-1.20-v20210621
- amazon-eks-arm64-node-1.19-v20210621
- amazon-eks-arm64-node-1.18-v20210621
- amazon-eks-arm64-node-1.17-v20210621
- amazon-eks-arm64-node-1.16-v20210621
- amazon-eks-arm64-node-1.15-v20210621
- amazon-eks-node-1.20-v20210621
- amazon-eks-node-1.19-v20210621
- amazon-eks-node-1.18-v20210621
- amazon-eks-node-1.17-v20210621
- amazon-eks-node-1.16-v20210621
- amazon-eks-node-1.15-v20210621
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.20.4/2021-04-12/
- s3://amazon-eks/1.19.6/2021-01-05/
- s3://amazon-eks/1.18.9/2020-11-02/
- s3://amazon-eks/1.17.12/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
- s3://amazon-eks/1.15.12/2020-11-02/
AMI details:
- kernel: 5.4.117-58.216.amzn2.x86_64 (1.19 and above), 4.14.232-176.381.amzn2.x86_64 (1.18 and below)
- dockerd: 19.03.13-ce
- containerd: 1.4.1
- runc: 1.0.0-rc93
- cuda: 460.73.01
- nvidia-container-runtime-hook: 1.4.0
- SSM agent: 3.0.1295.0
Notable changes:
- The SSM Agent will now be automatically installed
- amazon-eks-gpu-node-1.20-v20210526
- amazon-eks-gpu-node-1.19-v20210526
- amazon-eks-gpu-node-1.18-v20210526
- amazon-eks-gpu-node-1.17-v20210526
- amazon-eks-gpu-node-1.16-v20210526
- amazon-eks-gpu-node-1.15-v20210526
- amazon-eks-arm64-node-1.20-v20210526
- amazon-eks-arm64-node-1.19-v20210526
- amazon-eks-arm64-node-1.18-v20210526
- amazon-eks-arm64-node-1.17-v20210526
- amazon-eks-arm64-node-1.16-v20210526
- amazon-eks-arm64-node-1.15-v20210526
- amazon-eks-node-1.20-v20210526
- amazon-eks-node-1.19-v20210526
- amazon-eks-node-1.18-v20210526
- amazon-eks-node-1.17-v20210526
- amazon-eks-node-1.16-v20210526
- amazon-eks-node-1.15-v20210526
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.20.4/2021-04-12/
- s3://amazon-eks/1.19.6/2021-01-05/
- s3://amazon-eks/1.18.9/2020-11-02/
- s3://amazon-eks/1.17.12/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
- s3://amazon-eks/1.15.12/2020-11-02/
AMI details:
- kernel: 5.4.117-58.216.amzn2.x86_64 (1.19 and above), 4.14.232-176.381.amzn2.x86_64 (1.18 and below)
- dockerd: 19.03.13-ce
- containerd: 1.4.1
- runc: 1.0.0-rc93
- cuda: 460.73.01
- nvidia-container-runtime-hook: 1.4.0
Notable changes:
- CVE-2021-25215 patch
- kenel patch for following CVEs: CVE-2021-31829, CVE-2021-23133, CVE-2020-29374
- amazon-eks-gpu-node-1.20-v20210519
- amazon-eks-gpu-node-1.19-v20210519
- amazon-eks-gpu-node-1.18-v20210519
- amazon-eks-gpu-node-1.17-v20210519
- amazon-eks-gpu-node-1.16-v20210519
- amazon-eks-gpu-node-1.15-v20210519
- amazon-eks-arm64-node-1.20-v20210519
- amazon-eks-arm64-node-1.19-v20210519
- amazon-eks-arm64-node-1.18-v20210519
- amazon-eks-arm64-node-1.17-v20210519
- amazon-eks-arm64-node-1.16-v20210519
- amazon-eks-arm64-node-1.15-v20210519
- amazon-eks-node-1.20-v20210519
- amazon-eks-node-1.19-v20210519
- amazon-eks-node-1.18-v20210519
- amazon-eks-node-1.17-v20210519
- amazon-eks-node-1.16-v20210519
- amazon-eks-node-1.15-v20210519
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.20.4/2021-04-12/
- s3://amazon-eks/1.19.6/2021-01-05/
- s3://amazon-eks/1.18.9/2020-11-02/
- s3://amazon-eks/1.17.12/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
- s3://amazon-eks/1.15.12/2020-11-02/
AMI details:
- kernel: 5.4.110-54.189.amzn2.x86_64 (1.19 and above), 4.14.231-173.361.amzn2.x86_64 (1.18 and below)
- dockerd: 19.03.13-ce
- containerd: 1.4.1
- runc: 1.0.0-rc93
- cuda: 460.73.01
- nvidia-container-runtime-hook: 1.4.0
Notable changes:
runc
version upgrade torc93
for GPU AMIs- fix for #2530 backported to
rc93
for GPU AMIs runc
CVE 2021-30465 patch backported torc93
for GPU AMIs
- amazon-eks-gpu-node-1.19-v20210518
- amazon-eks-gpu-node-1.18-v20210518
- amazon-eks-gpu-node-1.17-v20210518
- amazon-eks-gpu-node-1.16-v20210518
- amazon-eks-gpu-node-1.15-v20210518
- amazon-eks-arm64-node-1.19-v20210518
- amazon-eks-arm64-node-1.18-v20210518
- amazon-eks-arm64-node-1.17-v20210518
- amazon-eks-arm64-node-1.16-v20210518
- amazon-eks-arm64-node-1.15-v20210518
- amazon-eks-node-1.19-v20210518
- amazon-eks-node-1.18-v20210518
- amazon-eks-node-1.17-v20210518
- amazon-eks-node-1.16-v20210518
- amazon-eks-node-1.15-v20210518
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.20.4/2021-04-12/
- s3://amazon-eks/1.19.6/2021-01-05/
- s3://amazon-eks/1.18.9/2020-11-02/
- s3://amazon-eks/1.17.12/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
- s3://amazon-eks/1.15.12/2020-11-02/
Notable changes:
runc
version upgrade torc93
- fix for #2530 backported to
rc93
runc
CVE 2021-30465 patch backported torc93
- amazon-eks-gpu-node-1.19-v20210512
- amazon-eks-gpu-node-1.18-v20210512
- amazon-eks-gpu-node-1.17-v20210512
- amazon-eks-gpu-node-1.16-v20210512
- amazon-eks-gpu-node-1.15-v20210512
- amazon-eks-arm64-node-1.19-v20210512
- amazon-eks-arm64-node-1.18-v20210512
- amazon-eks-arm64-node-1.17-v20210512
- amazon-eks-arm64-node-1.16-v20210512
- amazon-eks-arm64-node-1.15-v20210512
- amazon-eks-node-1.19-v20210512
- amazon-eks-node-1.18-v20210512
- amazon-eks-node-1.17-v20210512
- amazon-eks-node-1.16-v20210512
- amazon-eks-node-1.15-v20210512
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.20.4/2021-04-12/
- s3://amazon-eks/1.19.6/2021-01-05/
- s3://amazon-eks/1.18.9/2020-11-02/
- s3://amazon-eks/1.17.12/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
- s3://amazon-eks/1.15.12/2020-11-02/
Notable changes:
- Release 1.20 AMIs
- amazon-eks-gpu-node-1.19-v20210501
- amazon-eks-gpu-node-1.18-v20210501
- amazon-eks-gpu-node-1.17-v20210501
- amazon-eks-gpu-node-1.16-v20210501
- amazon-eks-gpu-node-1.15-v20210501
- amazon-eks-arm64-node-1.19-v20210501
- amazon-eks-arm64-node-1.18-v20210501
- amazon-eks-arm64-node-1.17-v20210501
- amazon-eks-arm64-node-1.16-v20210501
- amazon-eks-arm64-node-1.15-v20210501
- amazon-eks-node-1.19-v20210501
- amazon-eks-node-1.18-v20210501
- amazon-eks-node-1.17-v20210501
- amazon-eks-node-1.16-v20210501
- amazon-eks-node-1.15-v20210501
Binaries used to build these AMIs are published:
s3://amazon-eks/1.19.6/2021-01-05/ s3://amazon-eks/1.18.9/2020-11-02/ s3://amazon-eks/1.17.12/2020-11-02/ s3://amazon-eks/1.16.15/2020-11-02/ s3://amazon-eks/1.15.12/2020-11-02/
Notable changes:
- Patches for Linux kernel 4.14, used by AMIs with Kubernetes v1.18 and below (CVE ALAS2-2021-1627)
- Patches for Linux kernel 5.4, used by AMIs with Kubernetes v1.19 to fix a race condition with Conntrack.
- amazon-eks-gpu-node-1.19-v20210414
- amazon-eks-gpu-node-1.18-v20210414
- amazon-eks-gpu-node-1.17-v20210414
- amazon-eks-gpu-node-1.16-v20210414
- amazon-eks-gpu-node-1.15-v20210414
- amazon-eks-arm64-node-1.19-v20210414
- amazon-eks-arm64-node-1.18-v20210414
- amazon-eks-arm64-node-1.17-v20210414
- amazon-eks-arm64-node-1.16-v20210414
- amazon-eks-arm64-node-1.15-v20210414
- amazon-eks-node-1.19-v20210414
- amazon-eks-node-1.18-v20210414
- amazon-eks-node-1.17-v20210414
- amazon-eks-node-1.16-v20210414
- amazon-eks-node-1.15-v20210414
Binaries used to build these AMIs are published: s3://amazon-eks/1.19.6/2021-01-05/ s3://amazon-eks/1.18.9/2020-11-02/ s3://amazon-eks/1.17.12/2020-11-02/ s3://amazon-eks/1.16.15/2020-11-02/ s3://amazon-eks/1.15.12/2020-11-02/
Notable changes:
A regression was introduced for 1.19 AMI in the last release as a result of runc version update to 1.0.0-rc93
causing nodes to flap between Ready
and NotReady
, more details #648. We are reverting the runc version back to 1.0.0-rc92.
- amazon-eks-gpu-node-1.19-v20210329
- amazon-eks-gpu-node-1.18-v20210329
- amazon-eks-gpu-node-1.17-v20210329
- amazon-eks-gpu-node-1.16-v20210329
- amazon-eks-gpu-node-1.15-v20210329
- amazon-eks-arm64-node-1.19-v20210329
- amazon-eks-arm64-node-1.18-v20210329
- amazon-eks-arm64-node-1.17-v20210329
- amazon-eks-arm64-node-1.16-v20210329
- amazon-eks-arm64-node-1.15-v20210329
- amazon-eks-node-1.19-v20210329
- amazon-eks-node-1.18-v20210329
- amazon-eks-node-1.17-v20210329
- amazon-eks-node-1.16-v20210329
- amazon-eks-node-1.15-v20210329
Binaries used to build these AMIs are published: s3://amazon-eks/1.19.6/2021-01-05/ s3://amazon-eks/1.18.9/2020-11-02/ s3://amazon-eks/1.17.12/2020-11-02/ s3://amazon-eks/1.16.15/2020-11-02/ s3://amazon-eks/1.15.12/2020-11-02/
Notable changes: A regression was introduced to the 4.14 Amazon Linux Kernel where I/O could slow significantly after running some workloads for a long period of time (observations point to between 4 hours and several days). This release contains the Kernel patch which fixes the above issue.
- amazon-eks-gpu-node-1.19-v20210322
- amazon-eks-gpu-node-1.18-v20210322
- amazon-eks-gpu-node-1.17-v20210322
- amazon-eks-gpu-node-1.16-v20210322
- amazon-eks-gpu-node-1.15-v20210322
- amazon-eks-arm64-node-1.19-v20210322
- amazon-eks-arm64-node-1.18-v20210322
- amazon-eks-arm64-node-1.17-v20210322
- amazon-eks-arm64-node-1.16-v20210322
- amazon-eks-arm64-node-1.15-v20210322
- amazon-eks-node-1.19-v20210322
- amazon-eks-node-1.18-v20210322
- amazon-eks-node-1.17-v20210322
- amazon-eks-node-1.16-v20210322
- amazon-eks-node-1.15-v20210322
Binaries used to build these AMIs are published : s3://amazon-eks/1.19.6/2021-01-05/ s3://amazon-eks/1.18.9/2020-11-02/ s3://amazon-eks/1.17.12/2020-11-02/ s3://amazon-eks/1.16.15/2020-11-02/ s3://amazon-eks/1.15.12/2020-11-02/
Notable changes :
- Updates Nvidia drivers to version
460.32.03
- patch for CVE-2021-27363, CVE-2021-27364, CVE-2021-27365
- set kubelet log verbosity to 2
- amazon-eks-gpu-node-1.19-v20210310
- amazon-eks-gpu-node-1.18-v20210310
- amazon-eks-gpu-node-1.17-v20210310
- amazon-eks-gpu-node-1.16-v20210310
- amazon-eks-gpu-node-1.15-v20210310
- amazon-eks-arm64-node-1.19-v20210310
- amazon-eks-arm64-node-1.18-v20210310
- amazon-eks-arm64-node-1.17-v20210310
- amazon-eks-arm64-node-1.16-v20210310
- amazon-eks-arm64-node-1.15-v20210310
- amazon-eks-node-1.19-v20210310
- amazon-eks-node-1.18-v20210309
- amazon-eks-node-1.17-v20210309
- amazon-eks-node-1.16-v20210309
- amazon-eks-node-1.15-v20210309
Binaries used to build these AMIs are published : s3://amazon-eks/1.19.6/2021-01-05/ s3://amazon-eks/1.18.9/2020-11-02/ s3://amazon-eks/1.17.12/2020-11-02/ s3://amazon-eks/1.16.15/2020-11-02/ s3://amazon-eks/1.15.12/2020-11-02/
Notable changes :
- Updates Nvidia drivers to version
460.27.04
- GPU AMIs no longer uses
daemon.json
defined in https://github.com/awslabs/amazon-eks-ami/blob/master/files/docker-daemon.json
GPU AMIs in this release are not compatible with any eksctl version after eksctl 0.34.0
- amazon-eks-gpu-node-1.19-v20210302
- amazon-eks-gpu-node-1.18-v20210302
- amazon-eks-gpu-node-1.17-v20210302
- amazon-eks-gpu-node-1.16-v20210302
- amazon-eks-gpu-node-1.15-v20210302
- amazon-eks-arm64-node-1.19-v20210302
- amazon-eks-arm64-node-1.18-v20210302
- amazon-eks-arm64-node-1.17-v20210302
- amazon-eks-arm64-node-1.16-v20210302
- amazon-eks-arm64-node-1.15-v20210302
- amazon-eks-node-1.19-v20210302
- amazon-eks-node-1.18-v20210302
- amazon-eks-node-1.17-v20210302
- amazon-eks-node-1.16-v20210302
- amazon-eks-node-1.15-v20210302
Binaries used to build these AMIs are published:
- s3://amazon-eks/1.19.6/2021-01-05/
- s3://amazon-eks/1.18.9/2020-11-02/
- s3://amazon-eks/1.17.12/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
- s3://amazon-eks/1.15.12/2020-11-02/
Notable changes:
- files/bootstrap.sh: ensure /etc/docker exists before writing to it (#611)
- GPU AMIs now use docker
daemon.json
defined in https://github.com/awslabs/amazon-eks-ami/blob/master/files/docker-daemon.json - Patch for CVE-2021-3177
- check that nvidia-smi is configured correctly before updating GPU clocks (#613)
- Fix Makefile indentation for 1.19 (#616)
- Increase fs.inotify.max_user_instances to 8192 from the default of 128 (#614)
- use dynamic lookup of docker gid (#622)
- bump docker version to 19.03.13ce-1 (#624)
- amazon-eks-gpu-node-1.19-v20210208
- amazon-eks-gpu-node-1.18-v20210208
- amazon-eks-gpu-node-1.17-v20210208
- amazon-eks-gpu-node-1.16-v20210208
- amazon-eks-gpu-node-1.15-v20210208
- amazon-eks-arm64-node-1.19-v20210208
- amazon-eks-arm64-node-1.18-v20210208
- amazon-eks-arm64-node-1.17-v20210208
- amazon-eks-arm64-node-1.16-v20210208
- amazon-eks-arm64-node-1.15-v20210208
- amazon-eks-node-1.19-v20210208
- amazon-eks-node-1.18-v20210208
- amazon-eks-node-1.17-v20210208
- amazon-eks-node-1.16-v20210208
- amazon-eks-node-1.15-v20210208
Binaries used to build these AMIs are published :
- s3://amazon-eks/1.19.6/2021-01-05/
- s3://amazon-eks/1.18.9/2020-11-02/
- s3://amazon-eks/1.17.12/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
- s3://amazon-eks/1.15.12/2020-11-02/
Notable changes :
- Kubernetes versions 1.19+ will now use the 5.4 Linux kernel
- Patch for ALAS-2021-1588
- amazon-eks-gpu-node-1.18-v20210125
- amazon-eks-gpu-node-1.17-v20210125
- amazon-eks-gpu-node-1.16-v20210125
- amazon-eks-gpu-node-1.15-v20210125
- amazon-eks-arm64-node-1.18-v20210125
- amazon-eks-arm64-node-1.17-v20210125
- amazon-eks-arm64-node-1.16-v20210125
- amazon-eks-arm64-node-1.15-v20210125
- amazon-eks-node-1.18-v20210125
- amazon-eks-node-1.17-v20210125
- amazon-eks-node-1.16-v20210125
- amazon-eks-node-1.15-v20210125
Binaries used to build these AMIs are published :
- s3://amazon-eks/1.18.9/2020-11-02/
- s3://amazon-eks/1.17.12/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
- s3://amazon-eks/1.15.12/2020-11-02/
Notable changes :
- ARM AMIs built with m6g.large instance type (#601)
- Add Support for c6gn instance type (#597)
- Patch for CVE-2021-3156 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3156)
- amazon-eks-gpu-node-1.18-v20210112
- amazon-eks-gpu-node-1.17-v20210112
- amazon-eks-gpu-node-1.16-v20210112
- amazon-eks-gpu-node-1.15-v20210112
- amazon-eks-arm64-node-1.18-v20210112
- amazon-eks-arm64-node-1.17-v20210112
- amazon-eks-arm64-node-1.16-v20210112
- amazon-eks-arm64-node-1.15-v20210112
- amazon-eks-node-1.18-v20210112
- amazon-eks-node-1.17-v20210112
- amazon-eks-node-1.16-v20210112
- amazon-eks-node-1.15-v20210112
Binaries used to build these AMIs are published :
- s3://amazon-eks/1.18.9/2020-11-02/
- s3://amazon-eks/1.17.12/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
- s3://amazon-eks/1.15.12/2020-11-02/
Notable changes :
- Update ulimit for memlock to unlimited
- Update ulimit for max_user_watches and max_file_count
- Fix position of sonobuoy e2e registry config check (#590)
- Update Makefile to support sonobuoy e2e registry config override (#588)
- fix syntax error in install script (#582) introduced by #522
- Feature flag the cleanup of the image (#522)
- Add iptables rule count to log collector
- GPU Boost clock setup for performance improvement (#573)
- add support for sonobuoy e2e registry overrides (#585) for MVP
- ensure kubelet.service.d directory exists (#519)
- (bootstrap): document pause container parameters (#556)
- add SIGKILL to RestartForceExitStatus (#554)
- fix containerd_version typo in Makefile (#584)
- Update systemd to always restart kubelet to support dynamic kubelet configuration (#578)
- Add missing instance types (#580)
- amazon-eks-gpu-node-1.18-v20201211
- amazon-eks-gpu-node-1.17-v20201211
- amazon-eks-gpu-node-1.16-v20201211
- amazon-eks-gpu-node-1.15-v20201211
- amazon-eks-arm64-node-1.18-v20201211
- amazon-eks-arm64-node-1.17-v20201211
- amazon-eks-arm64-node-1.16-v20201211
- amazon-eks-arm64-node-1.15-v20201211
- amazon-eks-node-1.18-v20201211
- amazon-eks-node-1.17-v20201211
- amazon-eks-node-1.16-v20201211
- amazon-eks-node-1.15-v20201211
Binaries used to build these AMIs are published :
- s3://amazon-eks/1.18.9/2020-11-02/
- s3://amazon-eks/1.17.12/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
- s3://amazon-eks/1.15.12/2020-11-02/
Notable changes :
- Bug fix for the issue with rngd on EKS worker ami that's built with AL2 source ami.
- Bug fix for grub issue introduced by new nvidia driver
- Patch for CVE-2020-1971 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1971)
- amazon-eks-gpu-node-1.18-v20201126
- amazon-eks-gpu-node-1.17-v20201126
- amazon-eks-gpu-node-1.16-v20201126
- amazon-eks-gpu-node-1.15-v20201126
- amazon-eks-arm64-node-1.18-v20201126
- amazon-eks-arm64-node-1.17-v20201126
- amazon-eks-arm64-node-1.16-v20201126
- amazon-eks-arm64-node-1.15-v20201126
- amazon-eks-node-1.18-v20201126
- amazon-eks-node-1.17-v20201126
- amazon-eks-node-1.16-v20201126
- amazon-eks-node-1.15-v20201126
Binaries used to build these AMIs are published :
- s3://amazon-eks/1.18.9/2020-11-02/
- s3://amazon-eks/1.17.12/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
- s3://amazon-eks/1.15.12/2020-11-02/
Notable changes :
- Containerd patch for CVE-2020-15257 (containerd-1.4.1-2)
- amazon-eks-gpu-node-1.18-v20201117
- amazon-eks-gpu-node-1.17-v20201117
- amazon-eks-gpu-node-1.16-v20201117
- amazon-eks-gpu-node-1.15-v20201117
- amazon-eks-arm64-node-1.18-v20201117
- amazon-eks-arm64-node-1.17-v20201117
- amazon-eks-arm64-node-1.16-v20201117
- amazon-eks-arm64-node-1.15-v20201117
- amazon-eks-node-1.18-v20201117
- amazon-eks-node-1.17-v20201117
- amazon-eks-node-1.16-v20201117
- amazon-eks-node-1.15-v20201117
Binaries used to build these AMIs are published :
- s3://amazon-eks/1.18.9/2020-11-02/
- s3://amazon-eks/1.17.12/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
- s3://amazon-eks/1.15.12/2020-11-02/
Notable changes :
- Bug fix #526
- GPU AMIs - Nvidia driver version update to 450.51.06, cuda version update to 11.0
- Updated kernel version to 4.14.203 and fix for soft lockup issue
- Downgraded containerd version to 1.3.2 to fix pods getting stuck in the Terminating state
- amazon-eks-gpu-node-1.18-v20201112
- amazon-eks-gpu-node-1.17-v20201112
- amazon-eks-gpu-node-1.16-v20201112
- amazon-eks-gpu-node-1.15-v20201112
- amazon-eks-arm64-node-1.18-v20201112
- amazon-eks-arm64-node-1.17-v20201112
- amazon-eks-arm64-node-1.16-v20201112
- amazon-eks-arm64-node-1.15-v20201112
- amazon-eks-node-1.18-v20201112
- amazon-eks-node-1.17-v20201112
- amazon-eks-node-1.16-v20201112
- amazon-eks-node-1.15-v20201112
Binaries used to build these AMIs are published :
- s3://amazon-eks/1.18.9/2020-11-02/
- s3://amazon-eks/1.17.12/2020-11-02/
- s3://amazon-eks/1.16.15/2020-11-02/
- s3://amazon-eks/1.15.12/2020-11-02/
Notable changes :
- Bug fix #526
- GPU AMIs - Nvidia driver version update to 450.51.06, cuda version update to 11.0
- Updated kernel version to 4.14.203 and fix for soft lockup issue
Note: Previous release information can be found from release note
- amazon-eks-node-1.14-v20190927
- amazon-eks-gpu-node-1.14-v20190927
- amazon-eks-node-1.13-v20190927
- amazon-eks-gpu-node-1.13-v20190927
- amazon-eks-node-1.12-v20190927
- amazon-eks-gpu-node-1.12-v20190927
- amazon-eks-node-1.11-v20190927
- amazon-eks-gpu-node-1.11-v20190927
Changes:
- 0f11f6c Add G4DN instance family to node group template
- ade31b0 Add support for g4 instance family
- d9147f1 sync nodegroup template to latest available
- amazon-eks-node-1.14-v20190906
- amazon-eks-gpu-node-1.14-v20190906
- amazon-eks-node-1.13-v20190906
- amazon-eks-gpu-node-1.13-v20190906
- amazon-eks-node-1.12-v20190906
- amazon-eks-gpu-node-1.12-v20190906
- amazon-eks-node-1.11-v20190906
- amazon-eks-gpu-node-1.11-v20190906
Changes:
- c1ae2f3 Adding new directory and file for 1.14 and above by removing --allow-privileged=true flag (#327)
- 5335ea8 add support for me-south-1 region (#322)
- c4e03c1 Update list of instance types (#320)
- 389f4ba update S3_URL_BASE environment variable in install-worker.sh
Kubernetes Changes:
- Kubelet patches with HTTP2-cve
- Kubelet patched with fix for kubernetes/kubernetes#78164
- amazon-eks-node-1.13-v20190814
- amazon-eks-gpu-node-1.13-v20190814
- amazon-eks-node-1.13-v20190814
- amazon-eks-gpu-node-1.13-v20190814
- amazon-eks-node-1.13-v20190814
- amazon-eks-gpu-node-1.13-v20190814
- 0468404 change the amiName pattern to use minor version (#307)
- 19ff806 2107 allow private ssh when building (#303)
- 2b9b501 add support for ap-east-1 region (#305)
- ccae017 Fix t3a.small limit
- f409acd Add new m5 and r5 instances
- 8bbf269 Add c5.12xlarge and c5.24xlarge instances
- 1f83c10 refactor packer variables
- 41f4dd9 Install ec2-instance-connect
- a40bd46 Added CHANGELOG for v20190701
amazon-eks-node-1.13-v20190701 | amazon-eks-node-1.12-v20190701 | amazon-eks-node-1.11-v20190701 | amazon-eks-node-1.10-v20190701 | amazon-eks-gpu-node-1.13-v20190701 | amazon-eks-gpu-node-1.12-v20190701 | amazon-eks-gpu-node-1.11-v20190701 | amazon-eks-gpu-node-1.10-v20190701
Note: The AMI no longer contains kubectl. If you rely on kubectl being present, you can download it from the S3 bucket s3://amazon-eks/
- ca61cc2 remove kubectl dependency (#295)
- 400dd58 Update eks-log-collector.sh URL on readme
- e4fe057 Moving log collector script to Amazon eks ami repo (#243)
- e8b50ba add changelog for 20190614
amazon-eks-node-1.13-v20190614 | amazon-eks-node-1.12-v20190614 | amazon-eks-node-1.11-v20190614 | amazon-eks-node-1.10-v20190614 | amazon-eks-gpu-node-1.13-v20190614 | amazon-eks-gpu-node-1.12-v20190614 | amazon-eks-gpu-node-1.11-v20190614 | amazon-eks-gpu-node-1.10-v20190614
Security Note: These AMIs contain OS(AmazonLinux2) patched for CVE-2019-11477, CVE-2019-11478, CVE-2019-11479
Note: This release also publishes first set of worker AMIs for EKS 1.13 launch
- b1726c1 Fix issue with 1.10 build
- f2525cb Change clocksource only if using xen
- 16bd031 files/kubelet: specify "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256"
- 88ca2ac Retry if AWS API returns None (#274)
- 6f3354a Add a docker daemon restart after custom daemon.json
- 92e33a8 Making tsc the clock source (#272)
- eccfa3a Use kubernetes minor version to choose kubelet config
- 32d2ac4 Update nodegroup values
- 5b99e15 Add new instance types
- b061339 Restrict kubelet to only use TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 for tls cipher suites
- fe39deb add build spec for amazon's internal build process
- b5a78b9 add options to configure packer/aws binary
- ac67f2a Allow custom config for docker daemon
- ca5559a Add ARM support
- 2caf69b Updated bug-report.md and question.md instructions to currently existing release info location - /etc/eks/release (#242)
Security Note: These AMIs contain builds of kubectl & CNI patched for CVE-2019-1002101 and CVE-2019-9946
Note: This release publishes first set of worker AMIs for EKS 1.12 launch
- 77ae68a Correct version numbers in Changelog
- 3e09987 Bump CNI plugin default value
- fb0c393 Update eni-max-pods.txt (#231)
- a809997 Update README with new worker AMIs published on 2019-03-27
- a038aae Added 1.12 build in Makefile (#208)
- 38eb8a8 Fixed search for 10.x CIDR range
- 91ed091 Updated describe-cluster retry/backoff exponential with jitter
- 907df9f Updated the sleep time to seconds from milliseconds
- bc4216c Retry logic for describe cluster API call
- 325f1cc Fixed regex to match 10.x in all cases
- 7df0912 provide region during build
- 086c6a3 Ability to provide custom ami during build
- 6090f20 Updated binaries to latest releases
- 04c520d Create custom kubelet config with TTL-based secret-caching
- e5e5678 Fix downloading binaries from public s3 bucket.
- ae9b7d7 Fix: mac address is returned with trailing slash which breaks CIDR call resulting in false ten range
- 954d8b0 Allow pulling node binaries from private bucket (#175)
- 9f20002 Removed ulimit reduction
- a052b53 changed kube-proxy log rotation from create to copytruncate
- d2c26e8 Switched to RPM install for AWS CLI
- c1934bb Made docker install optional
- 0db49b4 Added enable-docker-bridge bootstrap argument
- 5a57ab8 Increase ulimits for docker containers.
- 4cf8ff5 Fix bug causing bootstrap.sh to fail for certain instance types
- 42dfbd7 update docker version to 18.06
- 9ac7eba Clean resolv.conf before snapshotting
- 665c29d Updated changelog to clarify CVE-2019-5736
- 71e5db6 Added security wording to issue templates
Security Note: This AMI contains a build of Docker 17.06 that is patched for CVE-2019-5736
- 71cd4b0 Updated max-pods for larger instance types
- 28845f9 Allow parallel image pulls
- 5cc7f41 Make it possible to set the DOCKER_VERSION and CNI_* that are used.
- dedf096 Enable live-restore capability in docker daemon
- bed1c54 Replace Path: "/"
- 10c5285 add spacing between remaining components
- 2c60058 remove superflous linebreaks
- e2f7dfa remove superflous lists
- 342e387 consolidate list indentation style
- 9856a22 ensure "Description" fields appear ealier in template
- 06630cf remove default Path
- 2823ba8 remove superflous quotes
- 310215e Property --cgroup-root was not specified
- 7d5a94b Set hairpin mode to "hairpin-veth"
- 5479e95 disable docker0 bridge as it is not used
- 491a913 add bip address from RFC5735 / RFC5737 This will reduce the number of possible conflicts to deploy on existing networks. https://tools.ietf.org/html/rfc5735 https://tools.ietf.org/html/rfc5737
- f8c117f Allow (optional) smaller EBS root volumes with container optimized AMI
- 7f6c8cb Remove trailing and leading lines.
- 01cfe98 Enable syncing of rtc clock in chronyd daemon.
- 208c114 Make bootstrap script more readable
- 44d18b7 Addresses #136 - set +e doesn't seem to work. Will return 0 or TEN_RANGE
- 8a1d7c0 Use chrony for time and make sure it is enabled on startup. (#130)
- b46b99a Only restart on failures
- e13d401 Update kubelet.service to be resilient to crashing
- 2f2401a Reversing order to make easier to read
- d1c3e0c Added 1.11 build in Makefile
- 9b8dc41 Fix rendering of the readme file
- 1797887 Update changelog and readme for 1.10 and 1.11 v20181210 worker nodes
- 87a2aec Added GitHub issue templates
- 95138f1 Simplified ASG Update parameters
- 31f7d62 Swap order of
sed
andkubectl config
- 9ad6e2a Add back the allow-privileged kubelet flag
- 0bf1109 Added serverTLSBootstrap to kubelet config file
- a5492b2 Added node ASG update policy parameters
- b7015a6 Remove deprecated flags that use default values
- d5a6437 Docker config should be owned by root
- c281f32 Adding mkdir command
- 90c5eae Adding simple dockerd config file to rotate logs from containers
- 01090f8 Gracefully handle unknown instance types
- 68e7a62 Added AMI metadata file
- c0110a7 Reverted max-pod updates and instance types
- 90d5209 Correctly select kube-DNS address for secondary CIDR VPC instances
- f7b7f6c Updated kubelet config file location
- 8ff10f2 Updated instance types and eni counts
- 67053cf Modifying kubelet to use config files instead of kubelet flags which are about to deprecate. (#90)
- 6a20fb1 Add max pods information for g3s.xlarge instances
- a16af46 kubelet config files should be owned by root
- f27bc2e Update eni-max-pods.txt
- 45a12de Fix kube-proxy logrotate (#68)
- 742df5e Change make targets to be .PHONY (#59)
- eb0239f Add NodeSecurityGroup to outputs. (#58)
- 7219545 Only add max-pods for a known instance type (#57)
Note: CNI >= 1.2.1 is required for t3 and r5 instance support.
- 9cda183 Scrub temporary build-time keypair (#48)
- 9578a45 remove packer key before shutdown (#43)
- cb86cc4 Move source_ami_filter owner to owners (#44)
- 4edeb0c Added /var/log/journal to build (#40)
- 624bac1 Add support for KMS encryption - disabled by default (#33)
- 586cac2 Add validation for CNI and CNI Plugins downloads - fixes #37 (#38)
- 30617f4 Added back previous CloudFormation version in table (#35)
- b2f9656 Allow communication on TCP:443 from EKS Cluster to Worker nodes (#34)
- 72184ce Adding support New instance types (#31)
- 614d48c Added changelog for 8-21-18 release (#24)
- ddaaa79 Add ability to modify node root volume size (#20)
- 0c7bd35 Added bootstrap args as a CloudFormation parameter (#23)
- 9736e73 Make sure ntp is installed and enabled (#18)
- 5ef02c9 Updated EKS AMI with bootstrap script (#16)
- Foreshadow update https://alas.aws.amazon.com/AL2/ALAS-2018-1058.html
- SegmentSmack update https://alas.aws.amazon.com/AL2/ALAS-2018-1050.html
- EKS Launch AMI