Redis Enterprise for Kubernetes Release Notes 6.0.12-5 (February 2021)
Support for RS 6.0.12-57, Amazon Kubernetes Service (AKS), and role permissions on custom resources.
The Redis Enterprise K8s 6.0.12-5 release is a major release on top of 6.0.8-20 providing support for the Redis Enterprise Software release 6.0.12-57 and includes several enhancements and bug fixes.
Overview
This release of the operator provides:
- New features
- Various bug fixes
To upgrade your deployment to this latest release, see "Upgrade a Redis Enterprise cluster (REC) on Kubernetes".
Images
This release includes the following container images:
- Redis Enterprise: redislabs/redis:6.0.12-57 or redislabs/redis:6.0.12-57.rhel7-openshift
- Operator and Bootstrapper: redislabs/operator:6.0.12-5
- Services Rigger: redislabs/k8s-controller:6.0.12-5 or redislabs/services-manager:6.0.12-5 (Red Hat registry)
New features
- Azure Kubernetes Service (AKS) is now supported. (RED40323)
- Database custom resources now support roles permissions (role to Redis ACL bindings). (RED49780)
Feature Improvements
- The license information has been added to the REC status. (RED43078)
kubectl get rec
now displays more information (i.e., added "NODES", "VERSION", "STATE", "SPEC STATUS"). (RED46428)- The
extraLabels
in the cluster spec now applies to the PV and PVC at creation. (RED48694) - Added Rancher 2.5 support. (RED50211)
- Added K8s (Kops) 1.19 support. (RED50211)
- Added OpenShift 4.6 support. (RED50495)
- Database resources can now disable the default database user. (RED50215)
- REC credentials no longer use environment variables in pods. (RED47969)
Important fixes
- Fixed an issue where pods are stuck terminating during teardown. (RED44726)
- Fixed an issue where pods are stuck terminating during cluster recovery. (RED43846)
- Changed the operator logs to use human-readable dates and times. (RED39026)
- Fixed the display of resources in the OLM (OpenShift). (RED48116)
- Fixed backup configuration issue for GCS without a subdir. (RED49299)
Known limitations
CrashLoopBackOff causes cluster recovery to be incomplete (RED33713)
When a pod's status is CrashLoopBackOff
and we run the cluster recovery, the process will not complete. The workaround is to delete the crashing pods manually. The recovery process will then continue.
Long cluster names cause routes to be rejected (RED25871)
A cluster name longer than 20 characters will result in a rejected route configuration because the host part of the domain name will exceed 63 characters. The workaround is to limit cluster name to 20 characters or fewer.
Cluster CR (REC) errors are not reported after invalid updates (RED25542)
A cluster CR specification error is not reported if two or more invalid CR resources are updated in sequence.
An unreachable cluster has status running (RED32805)
When a cluster is in an unreachable state, the state is still running
instead of being reported as an error.
Readiness probe incorrect on failures (RED39300)
STS Readiness probe does not mark a node as "not ready" when running rladmin status
on the node fails.
Role missing on replica sets (RED39002)
The redis-enterprise-operator
role is missing permission on replica sets.
Private registries are not supported on OpenShift 3.11 (RED38579)
Openshift 3.11 does not support DockerHub private registries. This is a known OpenShift issue.
Internal DNS and Kubernetes DNS may have conflicts (RED37462)
DNS conflicts are possible between the cluster mdns_server and the K8s DNS. This only impacts DNS resolution from within cluster nodes for Kubernetes DNS names.
5.4.10 negatively impacts 5.4.6 (RED37233)
Kubernetes-based 5.4.10 deployments seem to negatively impact existing 5.4.6 deployments that share a Kubernetes cluster.
Node CPU usage is reported instead of pod CPU usage (RED36884)
In Kubernetes, the node CPU usage we report on is the usage of the Kubernetes worker node hosting the REC pod.
Clusters must be named "rec" in OLM-based deployments (RED39825)
In OLM-deployed operators, the deployment of the cluster will fail if the name is not "rec". When the operator is deployed via the OLM, the security context constraints (scc) is bound to a specific service account name (i.e., "rec"). The workaround is to name the cluster "rec".
Master pod label in Rancher (RED42896)
The master pod is not always labeled in Rancher.
REC clusters fail to start on Kubernetes clusters with unsynchronized clocks (RED47254)
When REC clusters are deployed on Kubernetes clusters with unsynchronized clocks, the REC cluster does not start correctly. The fix is to use NTP to synchronize the underlying K8s nodes.
Deleting an OpenShift project with an REC deployed may hang (RED47192)
When a REC cluster is deployed in a project (namespace) and has REDB resources, the REDB resources must be deleted first before the REC can be deleted. As such, until the REDB resources are deleted, the project deletion will hang. The fix is to delete the REDB resources first and the REC second. Afterwards, you may delete the project.
REC extraLabels are not applied to PVCs on K8s versions 1.15 or older (RED51921)
In K8s 1.15 or older, the PVC labels come from the match selectors and not the PVC templates. As such, these versions can not support PVC labels. If this feature is required, the only fix is to upgrade the K8s cluster to a newer version.
Compatibility Notes
- OpenShift 4.6 and Rancher/kOps 1.19 are now supported.
- Rancher 2.5 is now supported.
- AKS (K8s 1.18) is now supported.
Deprecation notice
- OpenShift 4.1, 4.2, and 4.3 are now deprecated.
- GKE K8s version 1.14 is deprecated.
- kOps 1.13 and 1.14 are deprecated.