1.8 KiB
KubeZero 1.27
What's new - Major themes
- all KubeZero and support AMIs based on latest Alpine 3.18.4
- updated and improved hardening of Istio Ingress Gateways
- IPv6 support for Ingress
- moved ECK operator into new kubezero-operators module
- new, optional, OpenSearch operator
- all instances now enforce IMDSv2
Fixes
kubectl top nodesworks now using node-exporter metrics rather than cadvisor
Version upgrades
- cilium 1.14.4
- istio 1.19.4
- fluent-bit 2.2.0
- ArgoCD 2.9
- Prometheus / Grafana
FeatureGates
- CustomCPUCFSQuotaPeriod
Upgrade
(No, really, you MUST read this before you upgrade)
Ensure your Kube context points to the correct cluster !
-
Review CFN config for controller and workers, no mandatory changes during this release though
-
Upgrade CFN stacks for the control plane ONLY ! Updating the workers CFN stacks would trigger rolling updates right away !
-
Trigger cluster upgrade:
./admin/upgrade_cluster.sh <path to the argocd app kubezero yaml for THIS cluster> -
Review the kubezero-config and if all looks good commit the ArgoApp resouce for Kubezero via regular git
git add / commit / push<cluster/env/kubezero/application.yaml> -
Reboot controller(s) one by one
Wait each time for controller to join and all pods running. Might take a while ... -
Upgrade CFN stacks for the workers.
This in turn will trigger automated worker updates by evicting pods and launching new workers in a rolling fashion. Grab a coffee and keep an eye on the cluster to be safe ... Depending on your cluster size it might take a while to roll over all workers! -
Re-enable ArgoCD by hitting on the still waiting upgrade script
-
Head to the ArgoCD UI and sync all KubeZero apps to verify all are synced successfully.
Known issues
So far so good.