“K8S Ecology Weekly” mainly contains some recommended weekly information related to K8S ecology that I have come into contact with. Welcome to subscribe zhihu column “K8S Ecology”.

Helm v2.16.5 release

Since there are many people who have not yet upgraded to Helm V3, Helm V2 is still being released frequently, although it is currently in maintenance.

The Helm V2 released v2.16.5 and V2.16.4 in a row this week, so if you are going to upgrade, you are advised to upgrade directly to V2.16.5.

Because a Latest() was mistakenly added to Validate() in v2.16.4, resources could not be found when a Release was installed or upgraded.

Such as:

Release "moelove-release" does not exist. Installing it now.
Error: namespaces "moelove-namespace" not found
Copy the code

See its ReleaseNote for more details.

Kubernetes V1.18 is officially released

This is Kubernetes’ first official release of the year. V1.18 contains 38 enhancements, including 15 stables, 11 in beta, and the remaining 12 in alpha.

This version has done a lot to improve the user experience, as well as stability. For details of the changes, please refer to my post Kubernetes V1.18 is Out!

If you are interested in this version, you can use Kind to install it. The following is an example:

(MoeLove) ➜ ~ wget - q - O kind https://github.com/kubernetes-sigs/kind/releases/download/v0.7.0/kind-linux-amd64 (MoeLove) ➜ ~ chmod +x kind (MoeLove) ➜ / TMP./kind create cluster - image = kindest/node: v1.18.0 @ sha256:0 e20578828edd939d25eb98496a685c76c98d54084932f76069f886ec315d694 - name = v1.18 Creating cluster"v1.18". ✓ Ensuring node image (Kindest /node:v1.18.0) đŸ–ŧ Preparing nodes đŸ“Ļ ✓ Writing configuration 📜 ✓ Starting control-plane 🕹ī¸ ✓ Installing CNI 🔌 ✓ Installing StorageClass 💾 Set kubectl context to"Kind - v1.18"
You can now use your cluster with:

kubectl cluster-info --context kind-v1.18

Not sure what to donext? 😅 Check out https://kind.sigs.k8s.io/docs/user/quick-start/ (MoeLove) ➜ ~ kubectl get nodes NAME STATUS ROLES of the AGE VERSION V1.18-Control-plane Ready Master 109s V1.18.0Copy the code

Refer to its ReleaseNote for more details

CoreDNS v1.6.9 release

CoreDNS has released v1.6.9, which was released due to a problem with the automated publishing tool when releasing V1.6.8. If you take a closer look at ReleaseNote you’ll notice that the two releases of ReleaseNote are basically the same. This release is really about fixing the automated publishing tool.

So let’s take a look at some of the notable things in CoreDNS V1.6.9 (or v1.6.8) :

  • # 3640Plugins /forward: added onemax_concurrentCan be used for concurrency control. It also increases in metricsmax_concurrent_reject_count_total{}Count requests that are rejected because the maximum concurrency limit has been reached.
  • #3687 plugin/kubernetes: in PTR type request, return all found IP instead of just the first one;
  • #3643 plugin/forward: Avoid creating new TLS connections by adding health checks. When a forward check detects an error, the health check will run in a loop with an initial interval of 0.5 seconds and a continuous increase to 60 seconds, reporting an upstream health problem. When upstream health is restored, the health check will stop.

Progress in the upstream

  • – Basic-auth-file has been completely removed. This feature was deprecated in V1.16. If you use this feature, please replace it with another one. In addition, the support for Basic authentication has been added for nearly 5 years since 2015, which is also very brilliant.

  • #89377 CVE-2020-8551: Kubelet DoS VIA API and #89378 CVE-2020-8552: Apiserver DoS (OOM) are two of the most notable recent vulnerabilities. Almost all versions are affected by the vulnerability, please update minor versions to V1.17.3, V1.16.7 and V1.15.10 as soon as possible.

Please feel free to subscribe to my official account [MoeLove]