August 21, 2024

LWKD: Week Ending August 18, 2024

Week: 2024-08-18

Developer News

The Steering Committee nominations are open until August 24. Currently there are four candidates running for three seats. If you are a candidate, or thinking of running, join current Steering members for a Q&A.

All Kubernetes GitHub orgs have been moved under our enterprise account. However, the Prow migration starts August 21, so subprojects should hold off on releases until it's complete.

Release Schedule

Next Deadline: 1.32 cycle begins, September 9

Kubernetes v1.31.0 is live and the latest! The 1.32 release cycle will begin soon, with Release Team Lead Federico Muñoz.

The latest patch releases v1.28.13, v1.29.8 and v1.30.4 are available.

The Release Team Shadow applications are now live. This form will close on Friday, September 06, 2024. Selected applicants will be notified by the end of the day, Friday, September 13, 2024.

KEP of the Week

KEP 3866: Add an nftables-based kube-proxy backend

The KEP creates a new nftables backend for kube-proxy on Linux to replace the current iptables and ipvs backends. iptables, the default backend, suffers from unfixable performance issues, such as slow rule updates and degraded packet processing as the ruleset grows. While it is hoped that this backend will eventually replace both the iptables and ipvs backends and become the default kube-proxy mode on Linux, that replacement/deprecation would be handled in a separate future KEP.

This KEP is tracked for beta release in the upcoming v1.31.

Other Merges

• NodeToStatus map is now a struct (should it be "NodeToStatusStruct"?), which requires changes to all PostFilter plugins
• All Feature Gates will be added as featuregate.VersionedSpecs to support control plane versioning
• PVC Protection Controller is faster thanks to batch processing
• DisableNodeKubeProxyVersion was enabled too soon, so back to defaut disabled
• Show image volumes for pods that have them
• Regression fix: honor --version Build ID overrides
• Prevent preemption pod deletion fail
• Use AllocatedResources so that users can recover from node expansion failure
• Allow orphan pod processors to speed up concurrent job tracking completion
• Disallow extra namespaced keys in structured auth config
• Kubeadm gets a validation warning for misconfigured cert periods
• kube-proxy waits for all caches to be synced
• PriorityClass displays preemptionPolicy
• hostNetwork no longer depends on PodIPs being assigned
• Node Monitor Grace Period is 50 seconds
• Stop retrying the watcher if it doesn't have permission to watch
• Adding PVCs has a queueing hint
• New Tests: NodeGetVolumeStats
• Stuctured Logging Migration: CSI translation lib

Promotions

• kubeadm etcd Learner Mode to GA

Deprecated

• Remove Graduated Feature Gates: KMSv2

Version Updates

• CoreDNS to 1.11.3