Kubernetes Fury Distribution Release v1.24.1

Welcome to KFD release v1.24.1.

The distribution is maintained with ❤️ by the team SIGHUP, and is battle tested in production environments.

This release adds a bunch of new features and improvements to the core modules and some package replacement/removals.

New Features since v1.24.0

Core Module Updates

• networking 📦 core module: v1.10.0 -> v1.12.2
  • Updated calico from 3.24.1 to 3.25.0.
  • Updated tigera operator from 1.28.1 to 1.29.0.
• monitoring 📦 core module: v2.0.1 -> v2.1.0
  • Updated alertmanager from 0.24.0 to 0.25.0.
  • Updated blackbox-exporter from 0.21.0 to 0.23.0.
  • Updated grafana from 8.5.5 to 9.3.2.
  • Updated kube-rbac-proxy from 0.12.0 to 0.14.0.
  • Updated kube-state-metrics from 2.5.0 to 2.8.0.
  • Updated prometheus-adapter from 0.9.1 to 0.10.0.
  • Updated prometheus-operator from 0.57.0 to 0.62.0.
  • Updated prometheus-operated from 2.36.1 to 2.41.1.
  • Updated thanos from 0.24.0 to 0.30.2.
  • Updated x509-exporter from 3.2.0 to 3.6.0.
  • Updated node-exporter from 1.3.1 to 1.5.0.
• logging 📦 core module: v3.0.1 -> v3.1.3
  • Replaced technical preview loki-single package with production grade loki-dstributed package. loki version 2.7.3.
  • Updated opensearch from 2.0.0 to 2.5.0.
  • Updated opensearch-dashboards from 2.0.0 to 2.5.0.
  • Updated logging-operator from 3.17.7 to 3.17.10.
  • Introduced new minio-ha package, version vRELEASE.2023-01-12T02-06-16Z.
• ingress 📦 core module: v1.13.1 -> v1.14.1
  • Updated cert-manager from 1.10.0 to 1.11.0.
  • Updated external-dns from 0.10.2 to 0.13.2.
  • Updated forecastle from 1.0.103 to 1.0.119.
  • Updated nginx from 1.3.1 to 1.5.1.
• dr 📦 core module: v1.10.1 -> v1.11.0
  • Updated velero from 1.9.2 to 1.10.1.
  • Updated all plugins from 1.5.1 to 1.6.1.
• OPA 📦 core module: v1.7.3 -> v1.8.0
  • Updated gatekeeper from 3.9.2 to 3.11.0.
  • Updated gatekeeper-policy-manager from 1.0.2 to 1.0.3.
• auth 📦 core module: v0.0.2 -> v0.0.3
  • Updated pomerium from 0.15.8 to 0.21.0.

Please refer the individual release notes for detailed information.

Upgrade procedure

Check the v1.24.0-to-v1.24.1 upgrade guide for the detailed procedure.

Breaking changes

Follow a summary of all the breaking changes introduced in this release, check each module for detailed information.

• Logging:
  • Removed minio StatefulSet from logging-operated package, replaced with minio-ha package.
  • Added a new infra ClusterFlow that select logs from infrastructural namespaces. kubernetes ClusterFlow will now exclude infrastructural namespaces from the log selection.
• Auth:
  • Pomerium has deprecated the policy field in the configuration in favour of routes. You'll need to adapt your policy file to the new format.
  • Value of grpc_address in Pomerium's configuration must be different form address. See the example policy.
  • Forward mode has been deprecated in Pomerium 0.21.
• Monitoring:
  • Thanos package has been refactored, also a local minio cluster (in HA) has been added.

New features 🌟

This release adds new features across some core modules. Following is a list of the most interesting ones for each module.

• We've improved the out-of-the-box monitoring capabilities of all core modules, adding new metrics, dashboards and alerts for key components of the distribution.

• Logging

  • Introduced a new loki-distributed package, now considered stable.
  • Added a new package minio-ha used to store error logs from fluentd, and as a backend storage for loki-disributed package.
  • Added a new index for infrastructural (KFD's) components and left the kubernetes index for applications specific logs.

• Monitoring

  • Added Karma package, providing a central dashboard to monitor several instances of alert manager in a centralized manner.