LWKD: Week Ending March 9, 2025
Week Ending March 9, 2025
Apologies for this very late newsletter; our newsletter distributor, Buttondown, was having technical issues.
Developer News
The next New Contributor Orientation will be March 18. Scripts for the NCO are complete, so if you’d be willing to run one someday, please contact SIG-ContribEx.
SIG/WG Leads, please finish your 2024 annual reports if you have not already.
KubeCon London Reminders: Meet & Greet and register for the Maintainer Summit
Release Schedule
Next Deadline: Code Freeze, March 20
Exceptions are closed, and we are on the countdown to Code Freeze, plus many other deadlines.
Patch releases 1.29.15, 1.30.11, 1.31.7, and 1.32.3 are available.
KEP of the Week
KEP 4960: Container Stop Signals
This KEP aims to add the container runtime level STOPSIGNAL instruction to the Kubernetes API. The KEP proposes adding a StopSignal container lifecycle which takes a valid signal which would be sent to the container runtime when the container is stopped. Currently the only way to configure custom stop signals is to bake them in the container image definition. This is difficult if you are using third party images. Container runtimes today reads the stop signal defined in container images and if there is none defined, falls back to SIGTERM. The new StopSignal lifecycle would have a higher priority than both of these. If a container has a stop signal defined in the container spec, that signal would be used over the signal defined in the image. The stop signal would get the default value of SIGTERM if no signal is defined in either the container spec or in the image definition.
This KEP is tracked for alpha in the ongoing 1.33 release cycle.
Other Merges
- kubectl: expose context parameter in DefaultRemoteExecutor
- Versioned validation test utilitizes and fuzz tester for declarative validation
- Minimum value validation tag +k8s:minimum added
- Declarative Validation enabled for ReplicationController
- Fixes for validation test for ReplicationController
- Enabled Semver CEL library
- Unify ListOptions validation between cache and etcd
- extra_pkgs needed by main API types added to validation-gen
- DRA: Prioritized Alternatives in Device Requests
- Optimizations to avoid writing the checkpoint file when it’s not necessary
- InPlacePodVerticalScaling: Track actuated resources to trigger resizes
- Reduced log verbosity for high-frequency, low-value log entries in Job, IPAM, and ReplicaSet controllers
- E2E tests for CLE
- API server to no longer set the resize status to Proposed when it receives a resize request
- Fix a bug on InPlacePodVerticalScalingExclusiveCPUs feature gate exclusive assignment availability check
- randfill used in k/k
- Dynamic configuration of service account name allowed and as part of the node audience restriction
- Added consistency checking of etcd and watch cache and exposed it as apiserver_storage_digest metric
- Kubelet to populate status.observedGeneration to reflect the pod’s latest metadata.generation
- Fix for kubelet restart unmounting volumes of running pods if the PVC is being deleted
- BalancedAllocation plugin will skip all best-effort (zero-requested) pod
- User namespaces support (feature gate UserNamespacesSupport) is now enabled by default
- Metrics added to expose the main known reasons for resource alingment errors
- Clarifications to EndpointSlice semantics
- kubelet no longer logs multiple errors when running on a system with no iptables binaries installed
- New streaming proto list encoder implemented
- Scheduling behavior revised to correctly handle nominated node changes
- /flagz endpoint for kubelet endpoint
- /flagz endpoint for kube-controller-manager endpoint
- apiserver to return warnings when objects with “invalid” IP created
- DRA: Prioritized Alternatives in Device Requests
- Unit tests for client-go/tools/cache/listers.go
- Kubernetes is now stricter about what will be accepted as IP addresses and CIDR blocks
Promotions
- SELinuxChangePolicy and SELinuxMount to beta
- ImageVolumeSources to beta
- ClusterTrustBundles to beta
Deprecated
- Several GA feature gates removed
Subprojects and Dependency Updates
- Kernel Module Manager v2.3.0: golang bump, tolerance support
Shoutouts
No shoutouts this week. Want to thank someone for special efforts to improve Kubernetes? Tag them #shoutouts channel.