September 23, 2020

Kubernetes v1.18.9 releases, container cluster management system

3 min read

Kubernetes is an open-source system for managing containerized applications across multiple hosts; providing basic mechanisms for deployment, maintenance, and scaling of applications.

Kubernetes builds upon a decade and a half of experience at Google running production workloads at scale using a system called Borg, combined with best-of-breed ideas and practices from the community.

Kubernetes is hosted by the Cloud Native Computing Foundation (CNCF). If you are a company that wants to help shape the evolution of technologies that are container-packaged, dynamically-scheduled and micro services-oriented, consider joining the CNCF. For details about who’s involved and how Kubernetes plays a role, read the CNCF announcement.


Changelog v1.18.9

Bug or Regression

  • “unbound immediate PersistentVolumeClaims” causes UnschedulableAndUnresolvable status rather than an Error in the scheduler. (#93892@ahg-g) [SIG Apps and Storage]
  • $ kubectl get event LAST SEEN TYPE REASON OBJECT MESSAGE Normal Scheduled pod/nginx-6c975b59f8-gvmjr Successfully assigned default/nginx-6c975b59f8-gvmjr to minikube

    $ kubectl describe pod xxx …… Events: Type Reason Age From Message

    Normal Scheduled default-scheduler Successfully assigned default/nginx-6c975b59f8-gvmjr to minikube …… (#94226@ingvagabund) [SIG CLI]

  • Azure: fix a bug that kube-controller-manager would panic if wrong Azure VMSS name is configured (#94306@knight42) [SIG Cloud Provider]
  • Fix a concurrent map writes error in kubelet (#93773@knight42) [SIG Node]
  • Fix calling AttachDisk on a previously attached EBS volume (#93567@gnufied) [SIG Cloud Provider, Storage and Testing]
  • Fix: incorrect max azure disk max count (#92331@andyzhangx) [SIG Cloud Provider and Storage]
  • Fixed bug in reflector that couldn’t recover from “Too large resource version” errors with API servers 1.17.0-1.18.5 (#94316@janeczku) [SIG API Machinery]
  • Fixed the EndpointSliceController to correctly create endpoints for IPv6-only pods.

    Fixed the EndpointController to allow IPv6 headless services, if the IPv6DualStack feature gate is enabled, by specifying ipFamily: IPv6 on the service. (This already worked with the EndpointSliceController.) (#91399@danwinship) [SIG Apps and Network]

  • Fixes a bug evicting pods after a taint with a limited tolerationSeconds toleration is removed from a node (#93722@liggitt) [SIG Apps and Node]
  • Fixes an issue that can result in namespaced custom resources being orphaned when their namespace is deleted, if the CRD defining the custom resource is removed concurrently with namespaces being deleted, then recreated. (#93790@liggitt) [SIG API Machinery and Apps]
  • Fixing race condition with EndpointSlice controller garbage collection. (#91311@robscott) [SIG Apps, Network and Testing]
  • If firstTimestamp is not set use eventTime when printing event (#94252@ingvagabund) [SIG CLI]
  • Kube-apiserver: fixed a bug returning inconsistent results from list requests which set a field or label selector and set a paging limit (#94002@wojtek-t) [SIG API Machinery]
  • Pod Affinity/AntiAffinity label selectors are now validated in the pod affinity score plugin (#93758@damemi) [SIG Scheduling]
  • Scheduler bugfix: Scheduler doesn’t lose pod information when nodes are quickly recreated. This could happen when nodes are restarted or quickly recreated reusing a nodename. (#93964@alculquicondor) [SIG Scheduling and Testing]
  • The EndpointSlice controller now waits for EndpointSlice and Node caches to be synced before starting. (#94086@robscott) [SIG Apps and Network]
  • Upon successful authorization check, an impersonated user is added to the system:authenticated group. system:anonymous when impersonated is added to the system:unauthenticated group. (#94409@tkashem) [SIG API Machinery and Testing]
  • Use NLB Subnet CIDRs instead of VPC CIDRs in Health Check SG Rules (#93515@t0rr3sp3dr0) [SIG Cloud Provider]

Other (Cleanup or Flake)

  • Fixes the flooding warning messages about setting volume ownership for configmap/secret volumes (#92878@jvanz) [SIG Instrumentation, Node and Storage]
  • Update CNI plugins to v0.8.7 (#94367@justaugustus) [SIG Cloud Provider, Network, Node, Release and Testing]



Nothing has changed.



  • v1.4.0