Deckhouse Kubernetes Platform v1.30 stable is released
Keep on reading to learn more about some awesome improvements and features in the new Deckhouse version — v1.30.16, including support for Kubernetes v1.22, Debian GNU/Linux 9-11, the namespace-configurator module, and the Early OOM killer component in the node-manager module.
Kubernetes v1.22 support has been added. Older versions of Kubernetes prior to v1.19 are no longer supported.
Cert-exporter as well as alerts to track certificates expiration and cert-exporter health have been added. Note that this feature is currently available in Deckhouse EE only.
The local-path-provisioner module has been updated to the v0.0.21; the
reclaimPolicy field has been added to the module configuration, the default
reclaimPolicy is now set to
Retain (you can manually change it to
DexAuthenticator is now based on oauth2-proxy v7.2.0.
etcd has been upgraded to version 3.5.1.
A new namespace-configurator module has been added. You can use it to automatically assign annotations and labels to namespaces. Note that this feature is currently available in Deckhouse EE only.
An Early OOM killer component has been added to the node-manager module. It prevents nodes from freezing on OOM (Out of Memory) events while the OS kernel frees memory pages.
Debian 9, 10, 11, CentOS 8, and RHEL 8 have been added to the list of supported operating systems.
Below are some of the new features of existing components and modules:
- chrony — NTP daemons on nodes are now disabled when this module is enabled.
- control-plane-manager — a basic audit policy for kube-apiserver requests has been added. By default, requests logs about service account events in system namespaces (
d8-*) and all resource actions in those namespaces are now collected.
- deckhouse — the following features have been added to the
- canary releases are implemented for Early Access and Stable release channels;
- Deckhouse version update is now prevented if Kubernetes version is earlier than v1.19;
- alerts are generated if Deckhouse updates are skipped: alert severity is getting higher if more releases are skipped.
- dhctl — while creating cluster resources during bootstrapping, you now can access the metadata of objects deployed in the cloud using Terraform (networks/subnetworks IDs, security groups IDs). It makes the creation of new clusters more flexible and allows you to get the desired cloud infrastructure in one click.
- ingress-nginx — dashboards with metrics essential for nginx process (CPU, memory, processed requests, configuration reloads) and dedicated dashboards for ingress-controller itself have been added.
- istio — the
alliance.ingressGateway.nodePort.portoption is now available. It sets a static port for the
ingressgatewayservice of the NodePort type.
- monitoring-kubernetes — the eBPF exporter that monitors global and per-cgroup OOMs has been added to the module.
- prometheus/grafana — support for Grafana notification channels has been added. Without notification channels, it was impossible to get alerts in Grafana for data sources outside of Prometheus (e.g., ClickHouse). This problem is now solved.
- user-authn — a webhook checking the uniqueness of domain name and ingress class among all
DexAuthenticatorshas been added.
- okmeter — the
okmeteragent image is now updated on its own, regardless of Deckhouse versions.
The documentation now includes a number of new sections, and several existing sections have been updated:
- The section about configuring the ingress-nginx module has been updated to include an example of using the LoadBalancer inlet for bare metal (MetalLB Load Balancer).
- The process of automatic Deckhouse updates is now explained in more detail.
- Getting Started is extended with instructions on installing Deckhouse to the existing Kubernetes cluster and using kind (Kubernetes IN Docker).
Please, refer to the changelog to see the full list of Deckhouse v1.30 changes and improvements. Note that the first Deckhouse v1.30.x stable release is v1.30.16.
For those who prefer a hands-on approach, the Getting Started guide will help you to start your journey with the Deckhouse Kubernetes platform.