Release v1.32.0

SIGHUP Distribution Release v1.32.0

Welcome to SD release v1.32.0.

The distribution is maintained with ❤️ by the team SIGHUP by ReeVo.

New Features since v1.31.1

Installer Updates

• on-premises 📦 installer: v1.32.4
  • Add support and install Kubernetes 1.32.4

Module updates

• networking 📦 core module: v2.2.0
  • Updated Tigera operator to v1.38.0 (that includes calico v3.30.0)
• monitoring 📦 core module: v3.5.0
  • No package update
• logging 📦 core module: v5.1.0
  • No package update
• auth 📦 core module: v0.5.1
  • Updated gangplank to v1.1.1

Breaking changes 💔

New features 🌟

• [#396]: This PR adds the retention configurations to Loki in logging module. This is an optional field to define retention period for logs stored in Loki. If not set, the default value is 30 days. Users can set it to 0s to disable retention.
  How to use it:

          logging:
              loki:
                  retentionTime: 30d

• [#391]: With this PR users can enable the installation of network policies that will restrict the traffic across all the infrastructural namespaces of SD (SIGHUP Distribution) to just the access needed for its proper functioning and denying the rest of it. This experimental feature is now available also in the KFDDistribution provider.
• [#407]: Adds the option to disable the default custom and external metrics provided by prometheus adapter. This change is needed when in the cluster there are no needs for advanced HPA capabilities. This also drastically reduce the memory used by prometheus adapter.
  How to use it:

          monitoring:
              prometheusAdapter:
                  installEnhancedHPAMetrics: false # default is true

• Updated kapp version to 0.64.2

Fixes 🐞

• [#387]: This PR fixed an issue that prevented the control planes nodes array to be treated as immutable under the OnPremises provider. The number of control plane nodes was originally set as immutable in the 1.31.1 release cycle because there isn't any support to scale the etcd cluster with the number of control plane nodes in the SIGHUP Distribution yet. The issue allowed users to change the number of the control plane, even if it was explicitly marked as immutable.
• [#393]: This PR fixes an issue present when users start the cluster with ingress type none, TLS provider secret, and network policies disabled and try to enable them afterwards.
• [#399]: This PR fixes an issue where some apply scripts didn't work in certain OS (namely the ones that do not have sh symlinked with bash).
• [#401]: Fixed an error in uninstalling the logging module that prevented switching from any logging type to none when the monitoring module was not installed.
• [#403]: Fixed an error that prevented the generation of manifests when ingress.nginx.type: none and ingress.certManager configuration was not set.
• [#406]: Gangplank, the SD tool to generate kubeconfigs with SSO, now shows up the Ingress directory (Forecastle).
• [#409]: Fixed an error that prevented Loki to be installed after a first installation of the cluster.

Security fixes

Upgrade procedure

Check the upgrade docs for the detailed procedure.