Posts in 2023
Kubernetes 1.27: KMS V2 Moves to Beta
By Anish Ramasekar, Mo Khan, Rita Zhang (Microsoft) | Tuesday, May 16, 2023 in Blog
With Kubernetes 1.27, we (SIG Auth) are moving Key Management Service (KMS) v2 API to beta. What is KMS? One of the first things to consider when securing a Kubernetes cluster is encrypting etcd data at rest. KMS provides an interface for a provider …
Kubernetes 1.27: updates on speeding up Pod startup
By Paco Xu (DaoCloud), Sergey Kanzhelev (Google), Ruiwen Zhao (Google) | Monday, May 15, 2023 in Blog
How can Pod start-up be accelerated on nodes in large clusters? This is a common issue that cluster administrators may face. This blog post focuses on methods to speed up pod start-up from the kubelet side. It does not involve the creation time of …
Kubernetes 1.27: In-place Resource Resize for Kubernetes Pods (alpha)
By Vinay Kulkarni (Kubescaler Labs) | Friday, May 12, 2023 in Blog
If you have deployed Kubernetes pods with CPU and/or memory resources specified, you may have noticed that changing the resource values involves restarting the pod. This has been a disruptive operation for running workloads... until now. In …
Kubernetes 1.27: Avoid Collisions Assigning Ports to NodePort Services
By Xu Zhenglun (Alibaba) | Thursday, May 11, 2023 in Blog
In Kubernetes, a Service can be used to provide a unified traffic endpoint for applications running on a set of Pods. Clients can use the virtual IP address (or VIP) provided by the Service for access, and Kubernetes provides load balancing for …
Kubernetes 1.27: Safer, More Performant Pruning in kubectl apply
By Katrina Verey (independent), Justin Santa Barbara (Google) | Tuesday, May 09, 2023 in Blog
Declarative configuration management with the kubectl apply command is the gold standard approach to creating or modifying Kubernetes resources. However, one challenge it presents is the deletion of resources that are no longer needed. In Kubernetes …
Kubernetes 1.27: Introducing An API For Volume Group Snapshots
By Xing Yang (VMware) | Monday, May 08, 2023 in Blog
Volume group snapshot is introduced as an Alpha feature in Kubernetes v1.27. This feature introduces a Kubernetes API that allows users to take crash consistent snapshots for multiple volumes together. It uses a label selector to group multiple …
Kubernetes 1.27: Quality-of-Service for Memory Resources (alpha)
By Dixita Narang (Google) | Friday, May 05, 2023 in Blog
Kubernetes v1.27, released in April 2023, introduced changes to Memory QoS (alpha) to improve memory management capabilites in Linux nodes. Support for Memory QoS was initially added in Kubernetes v1.22, and later some limitations around the formula …
Kubernetes 1.27: StatefulSet PVC Auto-Deletion (beta)
By Matthew Cary (Google) | Thursday, May 04, 2023 in Blog
Kubernetes v1.27 graduated to beta a new policy mechanism for StatefulSets that controls the lifetime of their PersistentVolumeClaims (PVCs). The new PVC retention policy lets users specify if the PVCs generated from the StatefulSet spec template …
Kubernetes 1.27: HorizontalPodAutoscaler ContainerResource type metric moves to beta
By Kensei Nakada (Mercari) | Tuesday, May 02, 2023 in Blog
Kubernetes 1.20 introduced the ContainerResource type metric in HorizontalPodAutoscaler (HPA). In Kubernetes 1.27, this feature moves to beta and the corresponding feature gate (HPAContainerMetrics) gets enabled by default. What is the …
Kubernetes 1.27: StatefulSet Start Ordinal Simplifies Migration
By Peter Schuurman (Google) | Friday, April 28, 2023 in Blog
Kubernetes v1.26 introduced a new, alpha-level feature for StatefulSets that controls the ordinal numbering of Pod replicas. As of Kubernetes v1.27, this feature is now beta. Ordinals can start from arbitrary non-negative numbers. This blog post will …