Elastic Cloud on Kubernetes version 1.3.0

edit

Elastic Cloud on Kubernetes version 1.3.0

edit

Breaking changes

edit
  • Make ECK IPv6 compatible #3654 (issues: #2830, #3649) - in an accompanying change network.publish_host setting value was switched to DNS name. This might result in non-ready Pods being included in the headless service for Elasticsearch StatefulSets.
  • Enforce a strict upgrade order between stack components #3537 (issues: #2600, #3535) - ECK will prevent updates that would violate Elastic Stack upgrade process version constraints. ECK 1.3.0 won’t apply any updates to resources that are in violation of those constraints until versions are updated to (at least) the same minors.
  • Add set-default-security-context flag to handle runAs user in ES 8.0+ #3342 (issue: #2791) - a default security context is added to Elasticsearch 8.0+ Pods in order to deal with volume filesystem permissions. Can be disabled through operator configuration on environments with restricted security settings (Openshift, for example).
  • Allow init containers modifications #3336 (issue: #2306) - modifications to built-in init containers will be merged with the defaults instead of completely replacing them.

New features

edit
  • Make timeouts configurable #3782 (issue: #684)
  • Support Elasticsearch volumes expansion #3752 (issues: #325, #3757, #3767)
  • Refactor Helm chart for public usage #3711
  • Add DeploymentStrategy to Beats CRDs #3633 (issue: #3485)
  • Add operator election support #3632 (issue: #709)

Enhancements

edit
  • Add license info to telemetry #3859
  • Validate whether the storage class allows volume expansion before resizing volumes #3795 (issue: #3767)
  • Add external IP addresses to certificate #3791 (issue: #910)
  • Support a UBI-only mode in the operator #3789
  • Add CRD usage reporting #3784
  • Refactor node configuration and add role validation #3694 (issue: #3409)
  • Add support for configuration changes under OLM #3639 (issue: #3591)
  • Remove unnecessary memory leak mitigation patch #3585
  • Add a container suffix flag to the operator #3582 (issue: #3552)
  • Allow the operator to be configured from a file #3570 (issue: #3401)
  • Reflect currently running version from status.version in additionalPrinterColumns #3549
  • Report the lowest running version in the status of each resource #3489 (issue: #2600)
  • Add WebhookConfigurationName Flag (#3424) #3425
  • Add metadata for transform node role #3411
  • Add support for the node.roles setting #3387 (issue: #3324)
  • Add node shard allocation awareness by default #3380 (issue: #2827)
  • Add metadata for transform node role #3361

Bug fixes

edit
  • Don’t allow downscales if some shards are unassigned #3883 (issue: #3867)
  • Support new authentication configuration format starting EnterpriseSearch 8.x #3728 (issue: #3725)
  • Do not reset trial state once a license has been issued. #3662 (issue: #3659)
  • Support user provided encrypted keys #3651 (issue: #3650)
  • Garbage collect orphaned Beat users #3589
  • Update owner references in reconcile resource util function #3574 (issue: #3470)
  • Fix volume slice initialization in beat pod builder #3555 (issue: #3554)
  • Ensure status.version is reconciled by watching Pods #3534 (issue: #3533)
  • Init containers image defaulting #3525 (issue: #3453)