Kublr Release 1.24.1 (2023-01-23)

Kublr Quick Start

sudo docker run --name kublr -d --restart=unless-stopped -p 9080:9080 kublr/kublr:1.24.1

The Kublr Demo/Installer docker container can be run on ARM-based PC, such as MacBook M1.

Follow the full instructions in Quick start for Kublr Demo/Installer.

The Kublr Demo/Installer is a lightweight, dockerized, limited-functionality with base trial license Kublr Platform which can be used to:

Test setup and management of a standalone Kubernetes cluster
Setup a full-featured Kublr Platform
Trial license use

The Kublr Demo/Installer stores all of the data about the created clusters inside the Docker container. If you delete the Docker container you will lose all data about the created clusters and the Kublr platforms. However, you will not lose the clusters and the platforms themselves.

Overview

The Kublr 1.24.1 patch release includes critical bug fixes for version 1.24.0.

All Kublr components have been scanned for vulnerabilities using the Aquasecurity Trivy scanner. This release also includes various other improvements and fixes in addition to these key features.

Important Changes

SLES 15.4 is now fully supported.
SELinux support has been added for clusters with ContainerD CRI.
The VMWare CPI/CSI driver has been fixed for migration from the intree CPI.
Slow requests in the Kublr API have been fixed.
Kubernetes Core Components:
- CoreDNS has been updated for 1.22 and 1.24 k8s versions.
- The Metrics server has been migrated to v0.6.2.
- The LocalPathProvisioner has been upgraded to v0.0.23.
- Some tolerations have been added for the Cloud CPI/CSI drivers.
Deprecations:
- Kubernetes v1.19 (v1.19.16/agent 1.19.16-9) is now end of support.
- Kubernetes v1.20 (v1.20.14 by default) has been deprecated and will be removed in Kublr v1.25.0.
- Ubuntu 16.04 has been removed from the UI.
ContainerD CRI:
- SELinux support has been implemented.

Kubernetes Pod Security Policy Feature:

The feature is deprecated and will be removed from Kubernetes v1.25.
The PSA was enabled by default starting with Kublr agent v1.23.
The PSP was enabled in Kublr agent v1.23, deprecated, and disabled in agent v1.24.

Kublr enforces a privileged PodSecurityConfiguration:

apiVersion: pod-security.admission.config.k8s.io/v1beta1
kind: PodSecurityConfiguration
defaults:
  enforce: "privileged"
  enforce-version: "latest"
  audit: "privileged"
  audit-version: "latest"
  warn: "privileged"
  warn-version: "latest"
exemptions:
  usernames: []
  runtimeClasses: []
  namespaces: [kube-system,kublr]

The Kublr Backup Controller has been deprecated in Kublr v1.23 and will be changed to a new implementation in Kublr v1.25.0.
Kublr Monitoring:
- Grafana dashboards have been fixed.
- Incorrect alert rules have been fixed.
Kublr Logging:
- SG components have been upgraded to v53.6.0.

vSphere:

The CSI/CPI with the enabled CSIMigrationvSphere feature gates is now fully implemented. Use the following cluster specification:

spec:
  kublrAgentConfig:
    cloud_controller_manager:
      enabled: true
  kublr:
    features:
      csi_drivers:
        vsphere: csi

AirGap Artifacts list

To use Kublr in an airgap environment, you will need to download the following BASH scripts from the repository at https://repo.kublr.com:

You will also need to download the following Helm package archives and Docker images:

Supported Kubernetes versions

v1.24

https://repo.kublr.com/repository/arc/agent/1.24.8/kublr-agent-load-gobins-1.24.8-6.sh
https://dl.kublr.com/agent/1.24.8/kublr-agent-1.24.8-6.tar.gz
https://repo.kublr.com/repository/arc/agent/1.24.8/kublr-agent-load-images-1.24.8-6.sh https://repo.kublr.com/repository/arc/agent/1.24.8/kublr-agent-images-1.24.8-6.list (optional if the control plane 1.24.1 images are imported already)

v1.23

v1.22

v1.21 (Deprecated in 1.25.0)

v1.20 (Deprecated in 1.24.0, End of support in 1.25.0)

Components versions

Kubernetes

Component	Version	Kublr Agent	Notes
Kubernetes	1.24	1.24.8-6	default v1.24.8
	1.23	1.23.14-6
	1.22	1.22.16-6
	1.21	1.21.14-12	Deprecated in 1.25.0
	1.20	1.20.14-16	End of support in 1.25.0

Kublr Control Plane

Component	Version
Kublr Operator	1.24.1
Kublr Control Plane	1.24.1

Kublr Platform Features

Component	Version
Kubernetes
Dashboard	v2.4.0
Kublr System	1.24.1
LocalPath Provisioner (helm chart version)	0.0.23-12
Ingress	1.24.1
nginx ingress controller (helm chart version)	4.2.3
cert-manager (helm chart version)	1.5.3
Centralized Logging	1.24.1
ElasticSearch	7.10.2
Kibana	7.10.2
SearchGuard	53.6.0
SearchGuard Kibana plugin	53.0.0
SearchGuard Admin	7.10.2-53.6.0
RabbitMQ	3.9.5
Curator	5.8.1
Logstash	7.10.2
Fluentd	3.3.0
Fluentbit	1.8.10
Centralized Monitoring	1.23.0
Prometheus	2.37.1 LTS
Kube State Metrics (helm chart version)	4.20.2
AlertManager	0.22.0
Grafana	8.5.13
Victoria Metrics
Cluster	0.9.32
Agent	0.8.12
Alert	0.4.35

Known Issues and Limitations

When deploying Kublr Kubernetes clusters on vSphere with Kublr v1.23.2 or earlier, you must manually unmount CD/DVD drive 1 from each virtual machine using the vCenter console.
Deleting vSphere clusters is not automatic and requires manual removal of the VMs and unregistration of the cluster.
The Kublr Control Plane can only be updated from version 1.21.0 or higher.
AWS CSI volume resizer have wrong images, please use latest Kublr agent versions