Release 1.5.0
Checklist for things to validate for release 1.5.0
TODO:
- Create release branch
-
release specific code changes with a single MR/commit
- Bump self-reference version in base/gitrepository.yaml
- update chart release version char/Chart.yaml
- update /Packages.md with any new Packages
- Deploy release branch on Dogfood cluster
- Build draft release notes
-
Update README.md using
helm-docs - After validating release candidate create official release tag
- Cherry-pick release commit(s) as needed with merge request back to master branch
https://repo1.dso.mil/platform-one/big-bang/customers/bigbang
TESTING:
- Stand up RKE cluster
- Deploy all the apps with SSO
-
Apps stand up and are healthy
- Virtual Services and cert are correct
- image pull secret
- Confirm SSO works correctly
-
Logging
- Get logs from all apps.
-
Cluster Auditor
- violations index is present and contains images that aren't from registry1
-
Monitoring
- Contains Kubernetes Dashboards and metrics
- contains instio dashboards (no data coming in #65 (closed) )
- Kiali shows no errors
- Sonarqube - Deploys, can get tokens
-
GitLab + Runners
- git clone and git push repos
- docker push and docker pull image to registry
- Change icon is user settings
- Test simple CI pipeline
-
Anchore
- One-Time Scan against image from registry.bigbang.dev or registry1.
-
Argocd
- Create application
- connect to our Gitlab
- Minio deploys.
- Test Mattermost
-
Test Velero
- Backup PVCs
- Restore PVCs
Candidate Release Notes
Please see our documentation page for more information on how to consume and deploy BigBang.
Upgrade Notice
This update includes several additions to fluent-bit which are recommended for production environments to increase reliability of log ingestion to the EFK stack.
This is mainly accomplished within fluent-bit by introducing a filesystem storage buffer interacting with a new hostPath volume in fluent-bit containers.
By default, this is mounted to nodes at /var/log/flb-storage/, however it can be updated in the package's values in 3 places:
storage_buffer:
path: /var/log/flb-storage/
extraVolumes:
- hostPath:
path: /var/log/flb-storage/
type: DirectoryOrCreate
name: flb-storage
extraVolumeMounts:
- mountPath: /var/log/flb-storage/
name: flb-storageIt also has several quality of life updates such as monitoring dashboards in Grafana, an example of which can be seen below:
An itemized list of changes is below.
Packages
| Package | Type | Version |
|---|---|---|
| Istio Operator | Core | 1.7.3 |
| Istio Controlplane | Core | 1.7.3 |
| OPA Gatekeeper | Core | 3.1.2 |
| Monitoring | Core | G: 7.1.3, P: 2.22.0, A: 0.21.0
|
| ECK Operator | Core | 1.3.0 |
| Elasticsearch Kibana | Core | 7.9.2 |
 Fluentbit
|
Core | 1.7.2 |
| Cluster Auditor | Core | 0.1.8 |
| Twistlock | Core | 20.12.531 |
| Gitlab | Addon | 13.8.0 |
| Gitlab Runners | Addon | 13.9.0 |
| Mattermost Operator | Addon | 1.13.0 |
| Mattermost | Addon | 5.32.1 |
| MinIO Operator | Addon | 2.0.9 |
| MinIO | Addon | RELEASE.2020-11-19T23-48-16Z |
| Authservice | Addon | 0.3.1 |
| Anchore | Addon | ENG: 0.9.3, ENT: 3.0.2
|
| SonarQube | Addon | 8.6 |
| Argocd | Addon |
1.8.4 (w/ p1 plugins) |
| Velero | Addon | 1.5.3 |
Changes in 1.5.0
- !386 (merged): Updated Fluentbit to 1.7.2 which fixes #335 (closed).
- !356 (merged): Enabled flux monitoring via Prometheus/Grafana in Monitoring package.
-
!380 (merged): Fixed
eckoperator.enabledconditional. - Added and Documented Affinity support.
- !379 (merged) Twistlock
- !393 (merged) Cluster Auditor
Helpful Links
As always, we welcome and appreciate feedback from our community of users. Please feel free to:
- Open issues here
- Join our chat
- Check out the documentation for guidance on how to get started
Future
Don't see your feature and/or bug fix? Check out our roadmap for estimates on when you can expect things to drop, and as always, feel free to comment or create issues if you have questions, comments, or concerns.