Release v0.7.0

Release v0.7.0

K3s v0.7.0 is another big update packed with enhancements and new features. This release brings limited experimental HA support, with more enhancements coming soon. Thanks to the many contributors and everyone in the community for the continued support!

Features and Enhancements

• Update to kubernetes v1.14.4 - Upgraded from Kubernetes v1.14.3 [changelog].

• Adds ctr containerd CLI [#590] - Includes ctr command to k3s binary.

• Agent now sends systemd notify [#478] - Agent systemd services can now properly use the notify type.

• ARM64 compatibility update [#597] - Cherry-picks an ARM64 compatibility update from upstream code, and updates containerd to v1.2.7.

• Defaults --node-ip from --flannel-iface [#450] - If the desired flannel interface contains a global unicast address default to that value for the node ip.

• Certs refactor [#452] - Refactor of certs and flag usage to be more inline with upstream kubernetes shell scripts. Includes changing the kubernetes endpoint address to the node-ip rather than localhost proxy.

• Initial HA support [#618] -

  For the initial version of HA k3s must:

  • Use etcd3 for a storage backend.
  • Have a load balancer setup for the master nodes k8s api (port 6443).

  A new bootstrap flag has been added to retrieve and store k3s cert data in a etcd3 server:

  • --bootstrap none: No bootstrapping, the default.
  • --bootstrap full: Read certs data from etcd3 server if present, create new certs if needed, and write to etcd3 server if certs do not exist.
  • --bootstrap read: Only reads cert data from a etcd3 server, and error if not present.
  • --bootstrap write: Always create certs if not exists and write cert data to etcd3 server, never read.

  HA aware agents should be configured to connect to the master nodes through the load balancer, agents will then watch the kubernetes endpoints and setup a reverse tunnel to each master node, or disconnect if a node has been removed.

  Future releases will remove the requirement of setting up an external load balancer, and provide HA to non-etcd3 databases (currently MySQL, Postgres, and SQLite).

Bug fixes

• Fixed an issue where the tls-san flag may not show domain entries under certain conditions [#469]
• Fixed an issue where an agent may attempt to join a server with a bad password and receive a 403 error, but informative logs were not created and docs did not contain enough information to debug [#467]
• Fixed an issue where some e2e tests would intermittently fail with watch errors [#579]
• Fixed an issue where Knative may have some installation errors [#286]
• Fixed an issue where make would not work with docker buildkit [#504]
• Fixed an issue where k3s crictl --version reported crictl version as unknown [#236]
• Fixed an issue where k3s crictl version reported containerd version as v1.2.Z+unknown [#159]

v0.7.0-rc9

Merge pull request #652 from erikwilson/update-tunnel-wait

Fix tunnel endpoint upgrade

v0.7.0-rc8

Merge pull request #637 from erikwilson/update-v1.14.4-k3s.1

Update kubernetes to v1.14.4-k3s.1

v0.7.0-rc7

Merge pull request #633 from ibuildthecloud/wrangler

 Update wrangler

v0.7.0-rc6

Merge pull request #631 from erikwilson/update-cri

Update cri & dependencies

v0.7.0-rc5

Merge pull request #626 from erikwilson/build-scripts-containerd-cri-…

v0.7.0-rc4

Merge pull request #615 from erikwilson/master

Use watch-cache for kvsql

v0.7.0-rc3

Merge pull request #609 from ibuildthecloud/master

Update to dapper v0.4.2

v0.7.0-rc2

Merge pull request #591 from erikwilson/add-ctr

Build & enable ctr with k3s server

v0.7.0-rc1

Merge pull request #359 from erikwilson/refactor-certs

Certs refactor