Release Notes - 2.39.0📜
Please see our documentation page for more information on how to consume and deploy BigBang. This release was primarily tested on Kubernetes 1.30.3 (RKE2).
Upgrade Notices📜
- BigBang - MR:
- This release requires Kubernetes 1.29 because 1.28 has passed its EOL date.
- Twistlock - MR:
- To get twistlock to deploy with a change to the labels and labelSelectors you must prepare to change immutable properties by deleting some resources prior to upgrading (or an equivalent).
- *** Make sure to do a backup before deleting any resources. Verify the backup is stored outside the cluster and that your backup and restore procedures are working.
- You can then delete the necessary resources by doing the following:
kubectl delete ds twistlock-defender-ds -n twistlock && \ kubectl delete deploy twistlock-console -n twistlock && \ kubectl delete pvc twistlock-console -n twistlock
- You must also turn off the volume upgrade job with these values:
twistlock: enabled: true values: console: volumeUpgrade: false
- After the upgrade, you should now restore your backup and turn the volume upgrade job back on in your values.
Upgrades from previous releases📜
If coming from a version pre-2.38.0
, note the additional upgrade notices in any release in between. The BB team doesn’t test/guarantee upgrades from anything pre-2.38.0
.
Packages📜
Package | Type | Package Version | BB Version |
---|---|---|---|
Alloy | Addon | 1.3.1 |
1.5.4-bb.1 🔗 |
Anchore Enterprise | Addon | 5.9.0 |
2.10.0-bb.1 |
Argocd | Addon | 2.12.4 |
7.6.6-bb.0 |
Authservice | Addon | 1.0.2 |
1.0.2-bb.0 |
Cluster Auditor | Core | 0.0.7 |
1.5.0-bb.22 |
Eck Operator | Core | 2.14.0 |
2.14.0-bb.0 |
Elasticsearch Kibana | Core | Kibana 8.15.1 Elasticsearch 8.15.1 |
1.19.0-bb.4 🔗 |
External Secrets | Addon | 0.10.2 |
0.10.2-bb.1 |
Fluentbit | Core | 3.1.9 |
0.47.10-bb.1 🔗 |
Fortify | Addon | 24.2.0.0186 |
1.1.2320154-bb.19 |
Gatekeeper | Core | 3.17.1 |
3.17.1-bb.1 |
Gitlab | Addon | 17.2.9 |
8.2.9-bb.4 🔗 |
Gitlab Runner | Addon | 17.2.1 |
0.67.1-bb.1 |
Grafana | Core | 11.2.2 |
8.5.5-bb.0 🔗 |
Haproxy | Addon | 2.2.33 |
1.19.3-bb.8 |
Harbor | Addon | 2.11.0 |
1.15.1-bb.1 |
Holocron | Addon | 3.3.2 |
1.0.11 |
Istio Controlplane | Core | Istio 1.23.2 Tetrate Istio Distro 1.23.2 |
1.23.2-bb.0 🔗 |
Istio Operator | Core | Istio Operator 1.23.2 Tetrate Istio Distro Operator 1.23.2 |
1.23.2-bb.0 🔗 |
Jaeger | Core | 1.61.0 |
2.57.0-bb.0 |
Keycloak | Addon | 25.0.6 |
2.5.1-bb.0 |
Kiali | Core | 1.89.7 |
1.89.7-bb.1 |
Kyverno | Core | 1.12.6 |
3.2.7-bb.0 |
Kyverno Policies | Core | 3.2.6 |
3.2.6-bb.0 🔗 |
Kyverno Reporter | Core | 2.20.2 |
2.24.2-bb.1 |
Loki | Core | 3.1.1 |
6.12.0-bb.7 🔗 |
Mattermost | Addon | 10.1.2 |
10.1.2-bb.0 🔗 |
Mattermost Operator | Addon | 1.22.1 |
1.22.1-bb.0 |
Metrics Server | Addon | 0.7.2 |
3.12.2-bb.1 🔗 |
Minio | Addon | RELEASE.2024-06-04T19-20-08Z |
6.0.4-bb.0 🔗 |
Minio Operator | Addon | 6.0.4 |
6.0.4-bb.0 🔗 |
Monitoring | Core | Prometheus 2.54.1 Grafana 11.1.0 Alertmanager 0.27.0 |
62.4.0-bb.0 |
Neuvector | Core | 5.3.4 |
2.7.8-bb.4 |
Nexus | Addon | 3.73.0-12 |
73.0.0-bb.0 🔗 |
Promtail | Core | 3.0.0 |
6.16.2-bb.4 |
Sonarqube | Addon | 10.6.0-community |
10.6.1-bb.2 |
Tempo | Core | Tempo 2.5.0 Tempo Query 2.5.0 |
1.10.3-bb.5 |
Thanos | Addon | 0.36.1 |
15.7.20-bb.1 |
Twistlock | Core | 32.03.125 |
0.16.0-bb.2 |
Vault | Addon | 1.17.6 |
0.28.1-bb.8 |
Velero | Addon | 1.14.1 |
7.2.1-bb.3 🔗 |
Wrapper | Core | N / A | 0.4.10 |
Changes in 2.39.0📜
Big Bang MRs📜
- !5317: require 1.29
- !5256: Removed all references to Kiali label helpers and helper itself
- !5261: Fixes OCI Clean Install for Big Bang
Istio Controlplane📜
- !5268: istio update to 1.23.2-bb.0
# Changelog Updates
## [1.23.2-bb.0] - 2024-10-08
### Changed
- ironbank/opensource/istio/install-cni updated from 1.22.5 to 1.23.2
- ironbank/opensource/istio/pilot updated from 1.22.5 to 1.23.2
- ironbank/opensource/istio/proxyv2 updated from 1.22.5 to 1.23.2
- ironbank/tetrate/istio/install-cni updated from 1.22.5 to 1.23.2
- ironbank/tetrate/istio/pilot updated from 1.22.5 to 1.23.2
- ironbank/tetrate/istio/proxyv2 updated from 1.22.5 to 1.23.2
Istio Operator📜
- !5267: istioOperator update to 1.23.2-bb.0
# Changelog Updates
## [1.23.2-bb.0] - 2024-10-08
### Changed
- Updated registry1.dso.mil/ironbank/opensource/istio/operator from 1.22.5 to 1.23.2
- Updated registry1.dso.mil/ironbank/tetrate/istio/operator from 1.22.5-tetratefips-v0 to 1.23.2-tetratefips-v0
Kyverno Policies📜
- !5282: kyvernoPolicies update to 3.2.6-bb.0
# Changelog Updates
## [3.2.6-bb.0] - 2024-10-09
### Changed
- `ironbank/opensource/kubernetes/kubectl` updated from `v1.29.7` to `v1.30.5`
- updated chart from `kyverno-chart-3.2.5` to `kyverno-chart-3.2.6` and app version from `v1.12.5` to `v1.12.6`
- updated `ironbank/opensource/kubernetes/kubectl` updated from `v1.29.7` to `v1.30.5`
Elasticsearch Kibana📜
# Changelog Updates
## [1.19.0-bb.4] - 2024-10-22
### Changed
- Update podeTemplate to include podLabels
- Update the elasticsearch resource with the chart label
## [1.19.0-bb.3] - 2024-10-11
### Changed
- Configured istio `DestinationRule` to allow envoy to accept certs presented by ElasticSearch
- Updated Kibana config to use `http` scheme when communicating with istio-enabled ElasticSearch
Fluentbit📜
- !5288: fluentbit update to 0.47.10-bb.1
# Changelog Updates
## [0.47.10-bb.1] - 2024-10-18
### Changed
- Updated gluon: 0.5.4 -> 0.5.8
- Updated configmap-reload v0.13.1 -> v0.14.0
Loki📜
- !5277: loki update to 6.12.0-bb.7
# Changelog Updates
## [6.12.0-bb.7] - 2024-10-07
### Changed
- Updated hardcoded minio matchLabels
Grafana📜
- !5290: grafana update to 8.5.5-bb.0
# Changelog Updates
## [8.5.5-bb.0] - 2024-10-15
### Changed
- gluon updated from 0.5.4 to 0.5.8
- ironbank/big-bang/grafana/grafana-plugins updated from 11.2.1 to 11.2.2
Minio Operator📜
- !5272: minioOperator update to 6.0.4-bb.0
# Changelog Updates
## [6.0.4-bb.0] - 2024-10-15
### Changed
- Upgraded registry1.dso.mil/ironbank/opensource/minio/operator v6.0.3 -> v6.0.4
Minio📜
# Changelog Updates
## [6.0.4-bb.0] - 2024-10-25
### Changed
- Upgraded minio to v6.0.4
## [6.0.3-bb.8] - 2024-10-22
### Changed
- Upgraded gluon from 0.5.7 to 0.5.8
- Upgraded mc RELEASE.2024-10-02T08-27-28Z -> RELEASE.2024-10-08T09-37-26Z
## [6.0.3-bb.7] - 2024-10-18
### Changed
- Upgraded gluon from 0.5.4 to 0.5.7
## [6.0.3-bb.6] - 2024-10-11
### Changed
- Removed all hardcoded match labels
Gitlab📜
- !5302: gitlab update to 8.2.9-bb.4
- !5295: gitlab update to 8.2.9-bb.3
- !5289: gitlab update to 8.2.9-bb.2
- !5280: gitlab update to 8.2.9-bb.1
# Changelog Updates
## [8.2.9-bb.4] - 2024-10-22
### Added
- added trust chain for "ca-certs-entrust-federal-ssp-trust-chain-3"
## [8.2.9-bb.3] - 2024-10-22
### Changed
- registry1.dso.mil/ironbank/opensource/minio/mc major RELEASE.2022-12-24T15-21-38Z -> RELEASE.2024-10-02T08-27-28Z
- registry1.dso.mil/ironbank/opensource/minio/minio major RELEASE.2022-12-12T19-27-27Z -> RELEASE.2024-06-04T19-20-08Z
## [8.2.9-bb.2] - 2024-10-18
### Changed
- Updated hardcoded minio matchLabels
## [8.2.9-bb.1] - 2024-10-15
### Added
- Added customScripts functionality to toolbox container
Nexus📜
- !5301: nexusRepositoryManager update to 73.0.0-bb.0
- !5294: nexusRepositoryManager update to 72.0.0-bb.1
# Changelog Updates
## [73.0.0-bb.0] - 2024-10-17
### Changed
- Updated chart to version: 73.0.0-bb.0 | appVersion: 3.73.0-12
- Updated Gluon 0.5.4 -> 0.5.8
- Updated ironbank/sonatype/nexus/nexus (source) 3.72.0-04 -> 3.73.0-12
- Updated registry1.dso.mil/ironbank/sonatype/nexus/nexus (source) 3.72.0-04 -> 3.73.0-12
## [72.0.0-bb.1] - 2024-09-17
### Changed
- Decoupled realm configuration from sso and license requirements
Mattermost📜
- !5339: mattermost update to 10.1.2-bb.0
- !5308: mattermost update to 10.1.1-bb.1
- !5298: mattermost update to 10.1.1-bb.0
- !5274: mattermost update to 10.0.1-bb.1
- !5258: mattermost update to 10.0.1-bb.0
# Changelog Updates
## [10.1.2-bb.0] - 2024-10-30
### Changed
- ironbank/opensource/mattermost/mattermost updated from 10.1.1 to 10.1.2
## [10.1.1-bb.1] - 2024-10-24
### Changed
- ironbank/opensource/kubernetes/kubectl updated from v1.30.5 to v1.30.6
## [10.1.1-bb.0] - 2024-10-19
### Changed
- ironbank/opensource/mattermost/mattermost updated from 10.0.1 to 10.1.1
## [10.0.1-bb.1] - 2024-10-17
### Changed
- Updated Wait job script to include the api group
## [10.0.1-bb.0] - 2024-10-12
### Changed
- gluon updated from 0.5.4 to 0.5.8
- ironbank/opensource/mattermost/mattermost updated from 10.0.0 to 10.0.1
Velero📜
# Changelog Updates
## [7.2.1-bb.3] - 2024-10-24
### Changed
- Updated registry1.dso.mil/ironbank/opensource/kubernetes/kubectl v1.30.5 -> v1.30.6
## [7.2.1-bb.2] - 2024-10-10
### Changed
- Updated registry1.dso.mil/ironbank/opensource/nginx/nginx to 1.27.2
Metrics Server📜
- !5262: metricsServer update to 3.12.2-bb.1
# Changelog Updates
## [3.12.2-bb.1] - 2024-10-15
### Added
- added upstreamReleaseNotesMarkdown to chart annotations
Alloy📜
- !5291: alloy update to 1.5.4-bb.1
# Changelog Updates
## [1.5.4-bb.1] - 2024-10-21
### Changed
- Fixed quotation in chart.yaml
Known Issues📜
- Kiali - ISSUE
- On Kubernetes 1.29+, the kiali operator may fail with a 404 while running the kiali-deploy playbook if the cluster returns the
flowcontrol.apiserver.k8s.io/v1beta2
api version (no longer served as of v1.29).
In this case, removing the invalid api version should resolve the issue and allow the kiali operator to run successfully.
$ kubectl delete apiservices.apiregistration.k8s.io v1beta2.flowcontrol.apiserver.k8s.io
Helpful Links📜
As always, we welcome and appreciate feedback from our community of users. Please feel free to:
- Open issues here
- Join our chat
- Check out the documentation for guidance on how to get started
Future📜
Don’t see your feature and/or bug fix? Check out our epics for estimates on when you can expect things to drop, and as always, feel free to comment or create issues if you have questions, comments, or concerns.