The Kubernetes team steered release 1.12 of the container orchestration platform into open water last night, with a number of feature graduations promising better security, availability, resiliency, and ease of use.
The team highlighted general availability of Kubelet TLS Bootstrap, covering the SIG Auth’s method for allowing a kubelet to generate a private key and CSR for submission to cluster-level certificate signing process. The team have now awarded the feature a full fat v1 designation, signifying “production hardening and readiness, and…the guarantee of a long-term backwards compatability.”
Meanwhile, the Kubelet server certificate bootstrap and rotation feature moves to beta. This smooths the processes for generating a Certificate Signing request and for requesting update certificates.
This being Microsoft Ignite week, it might not be a surprise that the team chose this release of Kubernetes to designate Azure Virtual Machine Scale Sets (VMSS) as a stable feature, allowing the creation and management of a homogenous VM pool that can automatically increase or decrease based on demand or a set schedule.
One new feature is RuntimeClass, which is a cluster-scoped resource that surfaces container runtime properties to the control plane. Meanwhile, snapshot/restore for Kubernetes and CSI has moved to alpha.
A raft of other features move to beta, including:
- Topology aware dynamic provisioning, including beta support for AWS EBS and GCE PD
- Configurable pod process namespace sharing
- Vertical scaling of Pods
- Arbitrary/custom metrics
- Encryption at rest via KMS
You can get full details of the latest version, and pop some essential Kubernetes dates in your diary here.