May 22, 2024

LWKD: Week Ending May 19, 2024

Last Week in Kubernetes Development

Week of 2024-05-19

Developer News

CNCF TAG Environmental Sustainability is looking for best practice recommendations. MiniKube has fast 5-question survey.

The CNCF has shared a statement about Kubecon NA 2024 and Utah law.

Celebrate Kubernetes' 10th anniversary on June 6! Contributors are planning events all over the world for our first decade.

Release Schedule

Next Deadline: Production Readiness Freeze, June 6th, 2024

Release Team Shadow notifications will be sent out by Wednesday, May 22, 2024, at the latest.

SIG Leads and contributors: time to decide which Enhancements are making 1.31.

Patch releases 1.30.1, 1.29.5, 1.28.10, and 1.27.14 are available. This is largely a bigfix release, including patch some 1.30 regressions, and an golang update.

KEP of the Week

KEP 4568: Resilient watchcache initialization

This KEP mitigates the issues that can lead to an overload of the of kube-apiserver and etcd during initialization or reinitialization of the watchcache layer.

The changes reduce the number of requests during initialization, by introducing a new PostStartHook that waits for watchcache of all builtin resources to be initialized first. It also implements rejecting hanging watches with a Too Many Requests 429 result. Other changes include adjusting which lists are delegated to etcd.

This KEP is tracked to be promoted to beta in the upcoming 1.31 release.

Other Merges

• Reversion: DisableServiceLinks admission controller in favor of Mutating Admission Policies
• Reverted Reversion: revert removing legacy cloud providers from staging, and then revert the reversion, so they are actually gone from staging, at least until next week
• Ignore the grace period when terminating for resource outage or force-terminate
• All scheduler profiles have access to all waiting pods
• Add a whole set of "keeper flags" for kubectl debug
• Prevent running with a errorful encryption config
• Don't require finalizer role for cronjobs, for backwards compatibility
• Kubeadm: allow patching coredns deployment, use etcd's livez & readyz, get image pull policy from UpgradeConfiguration
• Move the remote CRI code to cri-client
• Warn when the reflector bookmark wasn't received
• Test Improvements: swap stress tests

Deprecated

• Remove ENABLE_CLIENT_GO_WATCH_LIST_ALPHA variable from reflector

Version Updates

• go to 1.21.10 in release versions, and 1.22.3 in v1.31

Subprojects and Dependency Updates

• cri-o to v1.30.1: fixed kubelet image garbage collection
• kops to v1.29: (experimental) support for OpenTelemetry
• minikube to v1.33.1: fix cilium pods failing to start-up
• kind to v0.23.0: initial limited support for nerdctl and kube-proxy nftables mode
• kubebuilder to v3.15.0: discontinue Kube RBAC Proxy in Default Kubebuilder Scaffolding
• containerd to v1.7.17: handle unsupported config versions