This topic provides release notes for Alibaba Cloud Container Service for Kubernetes (ACK).
-
ACK supports Kubernetes V1.16.9, V1.14.8, and V1.12.6. V1.12.6 is only available to users in the whitelist.
- ACK supports the following operating systems: CentOS 7.7, AliyunLinux 2.1903, and Windows Server 2019.
May 2020
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Alibaba Cloud Container Service for Kubernetes (ACK) adds support for advanced security groups | ACK provides multiple types of security group when you create a cluster. You can select a basic security group, an advanced security group, or an existing security group. Compared with basic security groups, each advanced security group can contain up to 65,536 private IP addresses. This is suitable for clusters where a large number of containers or instances are deployed. | All regions | Create a managed Kubernetes cluster |
| Adds support for Prometheus and Event Center | ACK is integrated with the most commonly used Prometheus component in the container monitoring field, and the most commonly used Node-problem-detector (NPD) component in the O&M field. You can select the components when you create a cluster. You can also upgrade and maintain the components on the Components page. Prometheus is provided by Application Real-Time Monitoring Service (ARMS). NPD is a tool used for node problem detection. NPD can export events that record node exceptions, such as Docker Engine hangs, Linux kernel hangs, network access issues, and file descriptor issues. To view these events, choose in the ACK console. | All regions | Enable ARMS Prometheus |
| Releases Kubernetes V1.16.9 | Releases Kubernetes V1.16.9. You can create a cluster of Kubernetes V1.16.9. If your service version is earlier than V1.16.9, choose , and upgrade the service on the Upgrade Cluster page. Compared with the previous Kubernetes V1.16.9, CVE-2020-8555 is fixed. This fixes the SSRF vulnerability in kube-controller-manager. | All regions | Vulnerability fix: CVE-2020-8555 |
| Adds support for elastic workload | Adds support for elastic workload. On the App Catalog page, select ack-kubernetes-elastic-workload to use the application. You can use ACK and Virtual Kubelet in combination to schedule pay-as-you-go and preemptible instances proportionally. This allows you to schedule your workload with elasticity. | All regions | View the application catalog |
| Adds support for Application Management | In earlier versions, after applications are deployed, the topology of applications is not displayed in a unified view. Therefore, version management and rollback cannot be unified for continuous deployments. Application Management provides a unified portal for your applications. This allows you to view the deployment of applications in a global manner. You can also view the deployment status and changes of all ACK sub-resources allocated to each application. In addition, Gits and Helm charts are used to deploy applications in ACK clusters based on versions. This allows you to publish or roll back applications deployed in ACK clusters of different versions. | All regions | - |
April 2020
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Alibaba Cloud Genomics Compute Service (AGS) is commercialized. | AGS is an Alibaba Cloud Container Service for Kubernetes (ACK)-based big data compute service provided by Alibaba Cloud for users in the biological industry. AGS provides efficient, elastic, and reliable services. Therefore, AGS is faster in computing and more cost-efficient than traditional methods. AGS is billed in the pay-as-you-go method based on the number of successful API calls in the backend. To submit a computing task, you need to run a command on the client. This process is one API call. | All regions | Overview |
| Dynamic volumes support online scale-out | For Kubernetes V1.16 and later, ACK supports volume scale-out without restarting pods. | All regions | - |
| Adds support for deployment of multiple Ingress controllers | An Ingress is an important entry for Layer-7 services. If you create only one Ingress for a cluster, the routing performance may encounter a bottleneck. If an Ingress allows inbound access through a public network and private network at the same time, security risks exist. To solve these issues, ACK provides a Helm chart of Ingress controller for an Ingress. The name of the Helm chart is ack-ingress-nginx. You can deploy multiple Ingress controllers in App Catalog. You can use YAML files to configure access to the Server Load Balancer (SLB) instances through a public network or private network independently. | All regions | Deploy a highly reliable Ingress controller |
| Serverless Kubernetes (ASK) adds support for the India (Mumbai) region | ASK is available in the India (Mumbai) region. | India (Mumbai) | Create a serverless Kubernetes cluster |
March 2020
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Adds more features to component management | The following features are added to component management:
|
All regions | Upgrade system components |
| Cloud Controller Manager (CCM) supports adding custom Elastic Compute Service (ECS) instances to the backend of Server Load Balancer (SLB) instances. | CCM supports adding user-created ECS instance-based nodes to the backend of SLB instances. Therefore, the existing applications and containerized applications share the same SLB instances and inbound traffic. This is suitable for scenarios where existing applications are gradually replaced by containerized applications. | All regions | Cloud Controller Manager |
| Terway supports expanding clusters and changing node specifications | When you manually expand a cluster, you may need to create nodes in new zones. In earlier versions, to create pods in a new zone, you must first add new pod VSwitches in the new zone. You can add pod VSwitches in Terway ConfigMaps. When you change node specifications, the maximum number of pods that you can create in the node also changes. After this release, the K8s max-pod parameter is automatically adjusted to fit the specifications of the node. | All regions | Use Terway |
| Adds support for node pool management | A node pool is a group of nodes with the same configurations. For example, nodes in a node pool are configured with the same container runtime, operating system (OS), and security group. You can create multiple node pools for a cluster. This allows you to deploy a variety of services to different node pools in a cluster. Node pools also support auto scaling. New nodes can be automatically added when a node pool is running with insufficient resources. | All regions | - |
| Cluster check is optimized | Cluster check is the core feature of Alibaba Cloud Container Service for Kubernetes
(ACK) maintenance. Cluster check dynamically scans clusters to identify potential
risks. The following checking items are optimized:
|
All regions | Check a Kubernetes cluster to troubleshoot exceptions |
| Adds support for Kubernetes V1.16 upgrades | ACK allows you to create clusters of Kubernetes V1.16. You can also upgrade Kubernetes V1.14.8 to V1.16.6. Before you upgrade your clusters, we recommend that you refer to the upgrade notes. | All regions | Upgrade a cluster |
| Managed ACK clusters add support for the China South 1 Finance region on Alibaba Finance Cloud | Managed ACK clusters are available in the China South 1 Finance region on Alibaba Finance Cloud | China South 1 Finance | Create a managed Kubernetes cluster |
| Adds support for configuring ephemeral-storage for containers on the Create Application page | ephemeral-storage is a new resource mode similar to CPU and memory modes. Kubernetes uses this parameter to manage and schedule the transient storage of applications running in Kubernetes clusters. The root directory and log directories (/var/log) of kubelet are stored on the primary partition of a node. In addition, emptyDir volumes, container logs, image layers, and the writable layers of containers are also stored on the primary partition. Therefore, ephemeral-storage is used to manage the primary partition of a node. You can set requests and limits when you create an application. This allows you to schedule and manage the storage allocation to the application in the primary partition. | All regions | Create deployments by using images |
February 2020
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Adds support for Kubernetes V1.16 and Docker V19.03.5 | Alibaba Cloud Container Service for Kubernetes (ACK) supports Kubernetes V1.16 and provides enhanced cloud-native capabilities. Compared to the earlier version, Kubernetes V1.16 accellerates pod creation, and optimizes features such as affinity, stability, and observability. You can select Docker V19.03.5 when you create clusters. ACK accellerates image building and container startup based on Docker V19.03.5. | All regions | Kubernetes 1.16 release notes |
| Auto scaling supports AliyunLinux 2, custom security groups, and preemptible instances with GPU capabilities. | The auto scaling feature is updated to add the following options: the Aliyun Linux2 operating system, custom security groups, and preemptible instances with GPU capabilities. The first two options are only available to users in the whitelist. If you are not in the whitelist, submit a ticket. | All regions | |
| Adds support for CentOS 7.7 | ACK supports CentOS 7.7. You can specify the CentOS 7.7 operating system when you create worker nodes. CentOS 7.7 will also be automatically used for cluster expansion and node auto scaling. | All regions | |
| App Catalog upgrades Helm to V3 | ACK supports Helm V3. You can install Helm V3 in App Catalog. Compared with Helm V2, Helm V3 reinforces security on per user basis, provides full compatibility with Kubernetes Role-Based Access Control (RBAC), and supports more useful hooks. | All regions | If you have installed Helm V2, see Helm v2 upgrade notice. |
| Serverless Kubernetes (ASK) clusters add support for the Indonesia (Jakarta) and UK (London) regions | ASK clusters are available in the Indonesia (Jakarta) and UK (London) regions. You can create ASK clusters in the Indonesia (Jakarta) and UK (London) regions through the console. | Indonesia (Jakarta) and UK (London) | Create an ASK cluster |
| ASK adds support for ClusterIP services | ASK adds support for more options to deploy containerized applications. You can create ClusterIP services in ASK clusters. This enables access to your workload from within the cluster. | All regions | Create a service |
| CCM supports attaching both ECS instances and ECIs to the backend of SLB instances | Cloud Controller Manager (CCM) supports attaching both Elastic Compute Service (ECS) instances and Elastic Container Instances (ECIs) to the backend of SLB instances that are associated with application services. This enables unified scheduling of application pods across worker nodes and virtual nodes, improving application resilience. | All regions | Cloud Controller Manager |
| Edge clusters support 32-bit and 64-bit ARM nodes | Edge clusters support more heterogeneous infrastructures. Edge clusters allow you to add 32-bit and 64-bit ARM nodes. You can add Edge Node Service (ENS) nodes or nodes of on-premises data centers to edge clusters. | All regions | Add an edge node |
January 2020
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| ACK allows Elastic Container Instance (ECI) pods deployed on virtual nodes to access ClusterIP services | Alibaba Cloud Container Service for Kubernetes (ACK) allows ECI pods deployed on virtual nodes to access ClusterIP services. This enables Kubernetes to centrally manage virtual nodes and elastic container groups. You can deploy applications on virtual nodes without the trouble of resource capacity planning. This meets the requirements of scenarios such as online workload scaling, offline computing, and CI/CD, and reduces the overall computing costs. To enable this feature, log on to the console, choose App Catalog, find and install the ack-virtual-node plug-in. | All regions | Virtual nodes |
| Adds support for ServiceAccountTokenVolumeProjection on the Kubernetes API server | ACK allows you to enable the ServiceAccountTokenVolumeProjection option on the API server when you create a cluster. This enables service account authentication on pods. This option is also required if mutual Transport Layer Security (TLS) authentication is enabled on Istio through Secret Discovery Service (SDS). | All regions | Create an ACK cluster |
| CSI plug-ins support more features | ACK has optimized CSI plug-ins to support the following features:
|
All regions | Install CSI plug-ins |
| Sandboxed containers support more storage features | Sandboxed containers enhance cloud-native capabilities and support cloud disks and Network Attached Storage (NAS) file systems. This allows ACK to provide the same storage performance as when these storage services are used on virtual machines. ACK also supports RootFS BLKIO Limit and disk I/O throttling on pods, and optimizes its support for multi-tenancy. | All regions | Create a Kubernetes cluster that supports sandboxed-containers |
| Releases public preview of confidential computing clusters | Based on Intel Software Guard Extensions (SGX), confidential computing clusters are
particularly suitable for sensitive data protection and scenarios such as smart contracts
in blockchains, user secrets processing, intellectual property protection, genomics
computing in bioinformatics, and edge computing. Currently, you can create confidential
computing clusters, manually expand clusters, enable auto scaling, and add different
types of nodes to the clusters. For more information, see Create a managed Kubernetes cluster that supports confidential computing and SGX application development guide. ACK also provides open source plug-in sgx-device-plugin to help you deploy SGX applications
on Kubernetes clusters. For more information, see Kubernetes device plugin for Intel SGX.
Note Intel (R) Software Guard Extensions (Intel(R) SGX) are a set of central processing
unit (CPU) instruction code developed by Intel. Intel(R) SGX allows developers to
run application code and data in a special runtime environment called enclave, which
is built based on hardware silos and memory encryption technology. Enclaves refers
to Trusted Execution Environment (TEE). No application, OS Kernel, BIOS, or hardware
other than the CPU can access an enclave without verification. All data in enclave
memory is encrypted. Users encrypt the code and data in an enclave with their private
keys obtained from Intel. An enclave can only be started after the signature is verified
through remote certification service Intel IAS.
|
All regions | Create a managed Kubernetes cluster that supports confidential computing |
| Alibaba Genomics Service (AGS) supports gene sequencing through API operations | ACK has released a set of API operations for genomics computing. You can call these API operations to submit gene sequencing tasks. Results are automatically uploaded to your OSS buckets. This saves you from the trouble of cluster creation and task deployments. These APIs support different SLA levels and provide computing resources based on actual needs. This allows you to reduce costs and improve efficiency. Currently, this feature is in public preview. To use the feature, submit a ticket. | All regions | Perform Whole Genome Sequencing (WGS) through AGS |
December 2019
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Alibaba Cloud Container Service for Kubernetes (ACK) adds support for component management | ACK allows you to manage cluster components. You can log on to the ACK console. On the Clusters page, find the target cluster, choose on the right side of the page to manage cluster components. You can manage all system components and optional components with operations such as upgrade, uninstall, and reinstall. More custom configurations will be available soon. | All regions | Upgrade system components |
| App Catalog supports node local DNS to speed up DNS queries | App Catalog supports node local DNS, which sends internal DNS queries to CoreDNS and directly forwards external DNS queries to external DNS resolvers. Node local DNS caches all queries and provides DNS caching on each node. This significantly improves the overall DNS QPS of the cluster. | All regions | View the application catalog |
| Managed ACK clusters add support for the China East 1 Finance region on Alibaba Finance Cloud | You can create managed ACK clusters in the China East 1 Finance region on Alibaba Finance Cloud. You only need to create worker nodes in managed clusters. ACK creates and manages master nodes. This type of cluster is easier to use and provides high availability at low costs. You can focus on business development without the trouble of master node maintenance. | China East 1 Finance | Create a managed Kubernetes cluster |
| Adds support for Alibaba Cloud NPU | You can select Elastic Compute Service (ECS) instances of NPU type when you create managed or dedicated ACK clusters. The instance type is ecs.ebman1.26xlarge, which is suitable for big data analytics and AI scenarios in video and graphics industries. | All regions | Create a managed Kubernetes cluster |
| ACK updates the user interface for Terway configuration | After you select the Terway plug-in, you may want to know the number of pods that are supported by different ECS instance types. The user interface provides information about the number of pods that are supported by each ECS instance type when you create a cluster. When you expand a cluster, the user interface also provides multiple options. This allows you to select VSwitches for nodes and pods. The user interface is optimized to provide information clearly and accurately. | All regions | Use Terway |
November 2019
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Alibaba Cloud Container Service for Kubernetes (ACK) adds support for selecting multiple zones and disks when you expand a cluster | The user interface for expanding clusters is updated to provide the same configuration options as those for creating clusters. You can select multiple zones when you expand a cluster. You can also mount multiple disks to a node and choose to encrypt these disks. | All regions | Expand clusters |
| ACK adds support for custom data scripts, custom tags, and OOS | You can write user data scripts to configure nodes when you create or expand a cluster. To use this feature, submit a ticket. With this feature, you can specify operating systems for your nodes. Instead of building custom images, you can directly inject scripts into standard images. Auto Scaling allows you to add tags to Elastic Compute Service (ECS) instance-based nodes. This makes it easier to identify ECS nodes and allocate cost of nodes. ACK is integrated with Operation Orchestration Service (OOS). You can run OOS scripts to maintain nodes after you set nodes to unschedulable on the Nodes page. | All regions | Expand clusters |
| Serverless Kubernetes (ASK) adds support for multiple zones and log auditing | After ASK is upgraded to architecture 2.0, ASK clusters provide more cloud-native features. Multiple zones and log auditing are available. You can deploy pods across zones to improve the availability of your workloads. Log auditing provides multiple features to improve the security of ASK clusters. ASK clusters will provide the same functions as dedicated and managed ACK clusters. | All regions | Create a serverless Kubernetes cluster |
| Adds support for vGPU instances | To meet the needs of AI and big data applications, ACK supports vGPU resources. You can select instance types of the vgn5i instance family to create a cluster. | All regions | Use GPU container instances |
| Terway adds support for Elastic Network Interface (ENI) buffer pool | Terway is a container network plug-in developed based on Alibaba Cloud ENI. The update enables Terway to create a buffer pool of ENI IP addresses during node initialization. This makes it quicker to create pods and improves user experience. | All regions | Use Terway |
| Cloud Controller Manager (CCM) adds support for adding external ECS instance-based nodes as backend servers to SLB instances | CCM is a system component for mounting services to the backend of SLB instances. By default, cluster nodes that host services are all mounted to the backend of the SLB instances attached to the cluster. The update allows you to add ECS instance-based nodes outside the cluster as backend servers to the SLB instances. This makes it easier to perform application migration and canary releases. | All regions | Cloud Controller Manager |
October 2019
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Adds support for AliyunLinux2 | AliyunLinux2 is the latest operating system version developed by Alibaba Cloud based on an advanced CentOS kernel version. AliyunLinux2.1903 is fully adapted to Alibaba Cloud Container Service for Kubernetes (ACK). The operating system supports faster startups and optimized performance, and improves the efficiency and reliability of the cluster. | All regions | Create an ACK cluster |
| Adds support for enabling the ingress dashboard feature | In earlier versions, you need to manually configure the ingress dashboard, which is a time-consuming and error-prone task. A check box is added to the ingress configuration page. You only need to select the check box to enable the ingress dashboard feature. The ingress dashboard is automatically installed after the cluster is created. | All regions | Create an ACK cluster |
| Adds support for selecting Server Load Balancer (SLB) instance types | In earlier versions, when you create a service of the SLB type, ACK creates shared-performance SLB instances by default. To meet your needs in various scenarios, ACK allows you to select SLB instance types when you create a service. These SLB instances adopt the pay-as-you-go billing method. | All regions | Create a service |
| Adds support for binding the API server with an Elastic IP address | SLB instances provide access to the API server in a cluster. When you create a cluster, ACK allows you to specify an internal or public SLB instance to handle traffic to the cluster. However, you may want to change the network settings of the SLB instance after the cluster is created. ACK allows you to bind an Elastic IP address to the SLB instance after the cluster is created. You can easily bind or unbind the Elastic IP address on the cluster details page. This allows you to change the network access settings of the cluster API server based on your needs. | All regions | Create an ACK cluster |
| Adds support for automatic scaling of edge clusters | ACK allows you to set up automatic scaling of an edge cluster by adding or removing Edge Node Service (ENS) nodes to meet the needs of different scenarios. Currently, this feature can only be implemented through API operations. | All regions | Node auto scaling |
| Serverless Kubernetes (ASK) adds support for more regions | ASK clusters are available in the China (Zhangjiakou-Beijing Winter Olympics) region. | China (Zhangjiakou-Beijing Winter Olympics) | Create a serverless Kubernetes cluster |
September 2019
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Alibaba Cloud Container Service for Kubernetes (ACK) adds support for more regions | Alibaba Cloud supports the China (Chengdu) region. ACK clusters are available in this
region. You can create dedicated ACK clusters.
To create managed ACK clusters, submit a ticket. |
China (Chengdu) | Create an ACK cluster |
| Adds support for upgrading to Kubernetes V1.14.6 and releases new upgrade features | The canary release of Kubernetes V1.14.6 upgrade function has been implemented in
the following regions: China (Shanghai), China (Zhangjiakou-Beijing Winter Olympics),
Singapore, and Germany (Frankfurt). The upgrade function will soon be available in
all regions. ACK also provides new features to simplify the upgrade process. You can
click Upgrade Cluster on the Clusters page to perform the upgrade.
The following features are updated:
|
|
Upgrade a cluster |
| Supports node maintenance | To perform maintenance operations on a cluster node, you need to make sure that pods
are not scheduled to the node. ACK supports node maintenance.
To perform node maintenance, you can select one or more nodes and set them to unschedulable
on the Nodes page. You can also drain the nodes.
If you have a service of Server Load Balancer type and the pods running the service are deployed on a node, you can configure the service to remove the node from the backend of the SLB instance when the node is set to unschedulable. This allows you to manage your nodes and workloads more flexibly. |
All regions | Mark a node as schedulable or unschedulable |
| Supports custom node names | To manage a large-scale cluster that consists of a large number of nodes, it is important to quickly identify nodes by name. ACK allows you to custom node names when you create a cluster. On the Create Kubernetes Cluster page, you can click Show Advanced Options to custom node names in the Custom Node Name field by defining a prefix, an IP substring length, and a suffix. The IP substring length specifies the number of digits at the end of the node IP address that is returned and can be used to uniquely identify a node. | All regions | Create an ACK cluster |
| Supports advanced security groups | Compared with basic security groups, advanced security groups support more Elastic Compute Service (ECS) instances, more Elastic Network Interfaces (ENIs), and effective management of private IP addresses. Advance security groups are suitable for scenarios that require high O&M efficiency, high configuration ECS instances, and large-scale compute nodes. To meet the needs of large-scale clusters, you can click Show Advanced Options and select an advanced security group in the Security Group field when you create a large-scale cluster. | All regions | Create an ACK cluster |
| Adds support for disk encryption and CSI drivers | ACK allows you to encrypt data disks. You can enable data disk encryption when you create a cluster. This feature can automatically encrypt the data transmitted from an ECS instance to a disk and automatically decrypt the data when it is read. This improves data security. Kubernetes V1.14.6 supports the standard CSI drivers. You can choose between Flexvolume and CSI when you create a cluster. | All regions | Create an ACK cluster, Overview |
August 2019
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Adds support for Kubernetes V1.14.6 | Alibaba Cloud Container Service for Kubernetes (ACK) supports Kubernetes V1.14.6. You can select Kubernetes V1.14.6 when you create a new cluster. Upgrade to Kubernetes V1.14.6 is currently not available. | All regions | Kubernetes release notes |
| Serverless Kubernetes (ASK) adds support for more regions. | ASK allows you to create containerized applications without managing or maintaining
cluster nodes. You are billed based on the actual amount of Elastic Container Instance
(ECI) resources consumed by applications.
With ASK clusters, you can focus on the design and development of applications, instead of managing the underlying infrastructure. |
Singapore China (Hong Kong) Australia (Sydney) |
Create a serverless Kubernetes cluster |
| Releases ASK V2.0 architecture, which supports more native Kubernetes features | ASK has upgraded ASK to the 2.0 architecture and added support for CRD, RBAC, PV/PVC, and creating multiple namespaces. The upgrade also enhances cluster security and isolation capability. Starting this month, ASK reduces the average price by 46% as a result of the price reductions of ECIs. This includes a 30% reduction in CPUs and a 65% reduction in memory. This further lowers your costs. | All regions | Create a serverless Kubernetes cluster |
| Adds support for creating ACK clusters based on Super Computing Cluster (SCC) resources | Super Computing Clusters (SCCs) are based on Elastic Compute Service Bare Metal (EBM) instances. Supported by the high-speed Remote Direct Memory Access (RDMA) technology, SCCs greatly improve network performance and are widely used in scenarios such as high-performance computing, artificial intelligence, machine learning, scientific and engineering computing, data analysis, and audio and video processing. ACK supports Kubernetes clusters that are based on SCCs. This type of cluster combines high-performance infrastructure resources with lightweight and agile containers, and is suitable for high network throughput and compute-intensive scenarios. | All regions | Create an ACK cluster |
| Auto scaling adds support for creating multiple scaling groups and configuring policies to schedule resources across multiple zones. | The auto scaling feature is optimized. You can configure multiple scaling groups so that resources of different specifications are displayed when the threshold is met. This feature meets the requirements for running different types of applications, such as high-computing applications and GPU computing applications. When you configure auto scaling policies, you can specify different scheduling policies across multiple zones, including priority policies, cost optimization policies, and zone balancing policies. This meets your resource scheduling needs when the cluster is deployed across multiple zones. | All regions | Node auto scaling |
| ACK supports custom cluster-domains | ACK allows you to custom cluster domains by specifying custom cluster-domains. A cluster-domain is the local domain name used for service discovery. When you have multiple clusters, you need to customize the local domain names. This makes it easier to manage clusters and services. ACK allows you to custom cluster-domains when you create clusters. This simplifies the management process and improves the O&M efficiency. | All regions | Create an ACK cluster |
| App Catalog adds support for cloud-native App Hub | Cloud-native App Hub provides various open-source and free to use containerized applications. This update integrates ACK App Catalog with cloud-native App Hub. To deploy an application in your cluster, take the following steps: Log on to the ACK console. On the page, click the tab, and select the target application. This saves you the trouble of deploying the application by using CLI. | All regions | View the application catalog |
| Releases a new Cloud Controller Manager version | Cloud Controller Manager (CCM) is the core component in a cluster and is responsible
for managing various cloud resources, such as Server Load Balancer (SLB) instances
and Virtual Private Cloud (VPC) networks. This update adds the following features:
|
All regions | Cloud Controller Manager |
July 2019
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Releases public preview of managed edge clusters | Alibaba Cloud Container Service for Kubernetes (ACK) releases the public preview of managed edge clusters. You can add edge nodes or Edge Node Service (ENS) nodes to managed edge clusters. This type of cluster supports edge computing and fully manages edge nodes and ENS nodes to help you reduce O&M costs. This type of cluster also provides support for autonomous edges and networks to meet the needs of different edge computing scenarios. You can select this type of cluster from the cluster template page. | China site | - |
| Releases public preview of multi-cluster management | ACK supports multi-cluster management. You can select Register Kubernetes Cluster on the cluster template page to add Kubernetes clusters from on-premises data centers or other public offerings of Alibaba Cloud to the ACK console. Then, you can deploy applications to these clusters through the console. You can easily manage hybrid cloud clusters and clusters deployed across multiple clouds. After you add self-created clusters from on-premises data centers to ACK, you can manage these clusters with the operations and maintenance features provided by ACK. | China site | Register a cluster |
| Managed ACK clusters add support for more regions on public offering of Alibaba Cloud | You can create managed ACK clusters on public offering of Alibaba Cloud Japan site.
|
Japan site | Create a managed Kubernetes cluster |
| Adds support for adding multiple disks to nodes when you create a cluster | ACK allows you to add multiple disks to nodes when you create a cluster. To save you the trouble of adding disks in the future, you can request to add multiple disks on the cluster creation page. ACK will format and mount one of the requested disks to the docker directory. You can decide how to handle the other disks. | All regions | Create an ACK cluster |
| Adds support for selecting an existing security group when you create a cluster | ACK allows you to select an existing security group when you create a cluster. You can click Show Advanced Options to specify an existing security group for the Virtual Private Cloud (VPC) network of your cluster. This allows you to use custom security group rules to further enhance the security of your cluster. | All regions | Create an ACK cluster |
| Releases cluster deletion protection | ACK supports cluster deletion protection to ensure the security of your cluster. In earlier versions, you were only required to enter a Short Message Service (SMS) verification code when you delete a cluster. However, you may still delete the cluster directly by calling API operations. To ensure the security of clusters, ACK supports cluster deletion protection. You can enable this feature when you create a cluster. When this feature is enabled, you cannot delete the cluster through the console or by calling API operations. To delete the cluster, you must disable this feature first. You can enable or disable this feature on the cluster basic information page. | All regions | Create an ACK cluster |
| Adds support for simultaneously authorizing multiple users on the Authorizations page | ACK supports simultaneously authorizing multiple Resource Access Management (RAM) users and centrally managing the permissions on all clusters. This makes it easy to manage user authorizations and improves user experience. The authorization management procedure has been optimized to suit your habits. | All regions | Overview |
| Adds support for synchronizing time zones among nodes when you create an application | You can select the Synchronize the Timezone from the Node to the Container check box when you create an application from an image. This ensures that the pods running the application and the host node have the same time zone. | All regions | Create deployments by using images |
| Container Registry Enterprise Edition adds support for more regions | You can use Container Registry Enterprise Edition in the UK (London) region. Container Registry Enterprise Edition supports large-scale image distribution with enhanced security. It is suitable for enterprise users who require high security and large-scale nodes. | UK (London) | - |
| Container Registry Enterprise Edition adds support for Helm charts | Container Registry Enterprise Edition supports Helm charts V2. This makes it easy for you to manage cloud-native assets. You can enable the charts component on the Overview page of your Enterprise Edition instance. When the component is in the running state, you can start managing Helm chart repositories. | All regions | - |
June 2019
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Managed Alibaba Cloud Container Service for Kubernetes (ACK) clusters add support for more regions on public offering of Alibaba Cloud | You can create managed ACK clusters in the Japan (Tokyo) and UK (London) regions on public offering of Alibaba Cloud. |
Japan (Tokyo) UK (London) |
What is Container Service for Kubernetes? |
| Terway adds support for sharing one Elastic Network Interface (ENI) among multiple pods | The latest Terway plug-in allows you to assign one ENI to each pod or share one ENI
among multiple pods. The default mode is One ENI for Multi-Pod.
|
All regions | Use the Terway network plug-in |
| Adds support for Knative | Knative is a Kubernetes-based serverless framework. One important goal of Knative is to establish a cloud-native and cross-platform orchestration standard. Knative implements this serverless standard by integrating with the creation of container or function, workload management and auto scaling, and event models. ACK supports Knative and allows you to install and upgrade the Build, Serving, and Eventing components. Note that you must deploy Istio before you use Knative. A wizard for deploying sample applications, and best practices of tracing, monitoring, and logging applications are also provided. | All regions | Knative overview, Use Knative to deploy a Hello World application |
| Adds support for searching pods by node IP or pod IP | You can search pods by node IP address or pod IP address on the Pods page. In the ACK console, choose and specify a node IP address or pod IP address to start the search. | All regions | - |
May 2019
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Managed Alibaba Cloud Container Service for Kubernetes (ACK) clusters add support for more regions on public offering of Alibaba Cloud and Alibaba Finance Cloud | Managed ACK clusters support the Australia (Sydney) region on public offering of Alibaba
Cloud and the China (Shanghai) region on Alibaba Finance Cloud.
You can create managed ACK clusters in the Australia (Sydney) region on public offering of Alibaba Cloud and in the China East 2 Finance region on Alibaba Finance Cloud. |
Australia (Sydney) China East 2 Finance |
What is Container Service for Kubernetes? |
| Releases genomics computing clusters | ACK supports dedicated genomics computing clusters. This type of cluster uses high performance computing (HPC) instances as worker nodes and provides a large-scale workflow engine for accelerated genomics computing. Dedicated genomics computing clusters are suitable for data splitting and mutation detection and support the following data formats: BCL, FASTQ, BAM, SAM, and VCF. In the ACK console, choose , click Create Kubernetes Cluster. On the Select Cluster Template page, select Genomics Computing Cluster to create a cluster. | All regions | - |
| Releases FPGA clusters for accelerating image and video processing | ACK supports FPGA clusters. This type of cluster uses FPGA F3 instances as worker nodes and is suitable for workloads such as H265 video encoding and image conversion from JPEG to HEIF. FPGA-based video encoding reduces the processing time from more than one week to 15 minutes. This significantly reduces the bitrate and saves the bandwidth when transcoding videos of the same quality. In the ACK console, choose , click Create Kubernetes Cluster. On the Select Cluster Template page, select Dedicated FPGA Cluster to create a cluster. | All regions | - |
| Releases a new Cloud Controller Manager (CCM) version | CCM is upgraded to V1.9.3.110-g4938309-aliyun. This version supports more Server Load
Balancer (SLB) configuration options. This update adds the following features:
|
All regions | Cloud Controller Manager |
| Upgrades Istio to V1.1.4 and adds support for Time Series Database (TSDB) |
Istio V1.1.4 improves self-recovery capabilities and supports automatic recovery of the control plane and automatic upgrade of earlier versions. Istio is integrated with TSDB. TSDB is a database service that supports high-speed read/write, compressed storage, and real-time computing. To address the problems of local storage in Prometheus, TSDB offers remote storage services with high performance and high reliability at low costs. Compared with other open-source remote storage solutions, TSDB is easier to use and only needs you to change Prometheus configurations. The solution supports parallel reads and writes and is highly compatible with PromQL. It is a distributed storage system with auto scaling capabilities. |
All regions | - |
| Container Registry Enterprise Edition adds support for synchronizing images across all regions | Container Registry Enterprise Edition supports synchronizing images across all regions. This solves the issues in the global delivery of applications and helps enterprises improve the iteration efficiency of businesses. Container Registry Enterprise Edition supports large-scale image distribution with enhanced security. It is suitable for enterprise users who require high security and large-scale nodes. | All regions | - |
| Adds support for clusters deployed across multiple zones and adding five master nodes to ensure high availability | You can select multiple zones when you create a cluster. Meanwhile, you can configure five master nodes for a dedicated cluster. This significantly improves the availability of clusters. | All regions | - |
April 2019
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Adds support for upgrading to Kubernetes V1.12.6 | The Kubernetes V1.12.6 upgrade is available in all regions. You can directly upgrade managed and dedicated ACK clusters from Kubernetes V1.11.5 to V1.12.6 through the console. | All regions | - |
| Managed ACK clusters support audit logs | You can collect audit logs in managed ACK clusters. Audit logs record operations on the API server and help cluster administrators trace the activities by different users. | All regions | kube-apiserver audit logs |
| Istio V1.1 adds support for application management in the console |
ACK supports Istio V1.1 and allows you to manage Istio applications in the console. You can create and manage Istio applications and services through a graphical interface. You can create different application versions and implement canary releases with different policies. You can also configure fault injection policies to test the resilience of your services. In the console, choose , and configure the settings. |
All regions | Manage traffic |
| Serverless Kubernetes (ASK) clusters support pods with GPU capabilities. | You can create applications that run on pods with GPU capabilities in ASK clusters. When you create an application from a template, specify the pod type as GPU in the YAML file. | All regions | Use GPU container instances |
| Container Registry Enterprise Edition adds support for more regions | You can use Container Registry Enterprise Edition in the China (Beijing) region. | China (Beijing) | |
| Releases FPGA clusters for accelerating image and video processing | ACK supports FPGA clusters. This type of cluster uses FPGA F3 instances as worker nodes and is suitable for workloads such as H265 video encoding and image conversion from JPEG to HEIF. FPGA-based video encoding reduces the processing time from more than one week to a short time period. This ready-to-use service significantly reduces the bitrate and saves the bandwidth when transcoding videos of the same quality. In the ACK console, choose , click Create Kubernetes Cluster. On the Select Cluster Template page, select Dedicated FPGA Cluster to create a cluster. | All regions | - |
March 2019
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Managed Alibaba Cloud Container Service for Kubernetes (ACK) clusters add support for more regions | You can create managed ACK clusters in the following regions: China (Zhangjiakou-Beijing Winter Olympics), China (Hohhot), US (Silicon Valley), and Germany (Frankfurt). |
China (Zhangjiakou-Beijing Winter Olympics) China (Hohhot) Germany (Frankfurt) US (Silicon Valley) |
What is Container Service for Kubernetes? |
| Releases Container Registry Enterprise Edition | Container Registry Enterprise Edition was officially released at the Alibaba Cloud Summit on March 21, 2019. This edition offers higher security and supports large-scale image distribution. The public preview of Container Registry Enterprise Edition is available in the China (Shanghai) region. To use the service, submit a ticket. | China (Shanghai) | What is Container Registry |
| Container Registry Shared Edition supports more regions on Alibaba Cloud International site | Container Registry Shared Edition is available in all regions on Alibaba Cloud International site. | All regions | What is Container Registry |
| Adds support for Kubernetes V1.12.6 | ACK supports Kubernetes V1.12.6. You can select Kubernetes V1.12.6 when you create a new cluster. | All regions | Create an ACK cluster |
| Managed ACK clusters add support for the Log Service plug-in | Managed ACK clusters support the Log Service plug-in. You can choose to enable Log Service when you create a managed ACK cluster. After the plug-in is installed, you can use Log Service to manage Kubernetes logs with ease. | All regions | Create a managed Kubernetes cluster |
| Managed ACK clusters support Windows containers | Managed ACK clusters support Windows containers. You can create managed ACK clusters to deploy Windows containers through the console or by calling API operations. This allows you to deploy traditional Windows applications on cloud-native platforms to achieve agility and elasticity. | All regions | Create a Windows Kubernetes cluster |
| ACK adds support for IPVS | ACK supports the IPVS kube-proxy mode. Compared with the traditional iptables mode, the IPVS mode significantly improves the load balancing performance in large-scale clusters. You can use this mode in all clusters and all regions. | All regions | Create an ACK cluster |
| Adds support for cluster templates | ACK provides multiple cluster templates in the console. You can select cluster templates based on your business needs. Supported templates include managed ACK clusters, Elastic Compute Service (ECS) Bare Metal clusters, clusters with GPU capabilities, and Windows clusters. Cluster templates make it easier to create and customize ACK clusters. | All regions | - |
| Serverless Kubernetes (ASK) clusters add support for high performance Elastic Container Instance (ECI) types | ASK clusters support high performance ECI instance types. The maximum CPU configuration is increased from 8 vCPUs to 64 vCPUs, which supports genomics computing scenarios. The maximum ECI specification is 64 vCPUs and 256 GiB and the minimum is 0.25 vCPU and 0.5 GiB. You can select from a wide range of instance types to achieve the highest price-performance ratio. | All regions | Limits |
February 2019
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Managed Alibaba Cloud Container Service for Kubernetes (ACK) clusters add support for more regions | Managed ACK clusters provide the following benefits:
|
China (Shenzhen) | Create a managed Kubernetes cluster |
| App Catalog adds support for Knative add-ons |
Knative is a scale-to-zero and request-driven compute runtime based on Kubernetes and Istio. It supports deploying and serving serverless applications and functions. ACK supports Knative add-ons to help you quickly build the Knative serving environment in your cluster. |
All regions | Knative overview |
| Adds support for cluster check | Cluster check helps you quickly identify the cause of errors in the cluster through in-depth checks on cluster resources, components, and configurations. | Mainland China (Great China) | Check a Kubernetes cluster to troubleshoot exceptions |
January 2019
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Releases preview of Windows containers |
Alibaba Cloud Container Service for Kubernetes (ACK) supports Windows containers. This enables Windows applications to run on Kubernetes based on elastic scheduling. The release allows you to add Windows nodes to standard ACK clusters and managed ACK clusters. The feature is currently in the preview period. To use the feature, submit a ticket. |
All regions | Create a Windows Kubernetes cluster |
| Releases preview of Container Registry Enterprise Edition | Container Registry Enterprise Edition offers container image repositories based on
dedicated resources. The edition provides enterprise-class image building and secure
hosting services and supports large-scale image distribution. It is suitable for enterprise
users who require high security and large-scale nodes.
Container Registry Enterprise Edition is currently in the preview period. To use the service, submit a ticket. |
All regions | - |
| Cluster check supports more regions | Cluster check is designed to provide best practices for cluster management in different scenarios. It helps you quickly identify the cause of errors in the cluster by performing in-depth checks on cluster resources, components, and configurations. | China (Hangzhou) | Check a Kubernetes cluster to troubleshoot exceptions |
| ACK adds support for Application Real-Time Monitoring Service (ARMS) | ACK is integrated with ARMS. After you install the ARMS agent, you can easily monitor
the performance of applications in the cluster.
ARMS is a monitoring service for application performance management (APM). To monitor a Java application, you only need to attach an ARMS agent to the startup script of the application. No code change is required. ARMS enables you to quickly locate failed API operations or slow calls, reproduce API parameters, detect memory leaks, and discover system bottlenecks. This significantly improves the efficiency of diagnosis. |
All regions | Monitor application performance |
| Releases the general availability of Elastic Container Instance (ECI) | On January 22, 2019, ECI released the general availability version. Fees will be charged when you create pods in Serverless Kubernetes (ASK) clusters. ASK clusters remain free to use. | All regions | Billing methods |
| ASK clusters add support for more regions | You can create ASK clusters in the China (Beijing) and China (Shenzhen) regions. |
China (Beijing) China (Shenzhen) |
Create a serverless Kubernetes cluster |
December 2018
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Kubernetes clusters support more regions | You can create Alibaba Cloud Container Service for Kubernetes (ACK) clusters in all regions on Alibaba Cloud China site and in the UK (London) region on Alibaba Cloud International site. | UK (London) | Create an ACK cluster |
| Managed ACK clusters add support for more regions | You can create managed ACK clusters in the China (Shanghai), Malaysia (Kuala Lumpur), and India (Mumbai) regions. |
China (Shanghai) Malaysia (Kuala Lumpur) India (Mumbai) |
Create a managed Kubernetes cluster |
| Adds support for removing nodes from a cluster | You can remove nodes from a cluster and choose whether to release the corresponding Elastic Compute Service (ECS) instances. | All regions | Remove nodes |
| Adds support for deploying DaemonSet applications | You can create DaemonSet applications. DaemonSet is a daemon process that ensures all nodes run one copy of a pod. | All regions | - |
| Adds support for custom Istio gateways | You can customize Istio ingress and egress gateways with different parameters. | All regions | - |
| Adds support for Istio CoreDNS | ACK supports using a CoreDNS plug-in to read Istio service entries and associate the IP addresses of the services to their host addresses. | All regions | - |
| Managed ACK clusters add support for adding existing ECS instances as nodes | You can select existing ECS instances as nodes when you create a managed ACK cluster. | All regions | Create a managed Kubernetes cluster |
November 2018
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Managed Alibaba Cloud Container Service for Kubernetes (ACK) clusters add support for more regions | You can create managed ACK clusters in the Indonesia (Jakarta) region on Alibaba Cloud International site. | Indonesia (Jakarta) | Create a managed Kubernetes cluster |
| Releases Terway | ACK releases the Terway plug-in. Terway enables direct communication between containers through Elastic Network Interfaces (ENIs) and offers higher network performance than Flannel. | All regions | Use the Terway network plug-in |
| Adds support for using thumbnail images to display the performance metrics of worker nodes | ACK uses thumbnail images to display the performance metrics of worker nodes, which makes it easy to view the node status. | All regions | - |
| Adds support for simultaneously adding multiple nodes to a cluster | You can simultaneously add multiple existing nodes to a cluster. | All regions | - |
| ACK adds support for rolling renewal of cluster certificates | ACK supports rolling renewal of cluster certificates. | All regions | - |
October 2018
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Alibaba Cloud Container Service for Kubernetes (ACK) adds support for more regions on Alibaba Finance Cloud | You can create ACK clusters in the China (Shenzhen) region on Alibaba Finance Cloud. | China (Shenzhen) | Create an ACK cluster |
| Managed ACK clusters add support for more regions | - | Outside China | Create a managed Kubernetes cluster |
| Adds support for deployment version management and rollback | ACK provides version management and rollback capabilities to help you better manage deployments. | All regions | - |
| Adds support for Istio add-ons | ACK is deeply integrated with Istio. | All regions | Overview |
September 2018
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Alibaba Cloud Container Service for Kubernetes (ACK) adds support for Kubernetes V1.11 |
|
All regions | Create a StatefulSet application by using an image |
| Adds support for pulling images from Container Registry private repositories without passwords | ACK allows you to pull images from Container Registry private repositories without passwords. | All regions | |
| Adds support for auto scaling of nodes | ACK provides the auto scaling component for nodes to automatically scale in and out. Regular instances, instances with GPU capabilities, and preemptible instances can be automatically added to or removed from an ACK cluster based on your requirements. This feature is applicable to instances deployed across multiple zones and diverse instance types, and also supports different scaling modes. | All regions | Auto scaling of nodes |
| Adds support for preemptible instances | - | All regions |
August 2018
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Releases public preview of managed Alibaba Cloud Container Service for Kubernetes (ACK) clusters | ACK releases the public preview of managed ACK clusters. | All regions | Create a managed Kubernetes cluster |
| Releases Istio add-ons | ACK releases Istio add-ons. | All regions | Overview |
July 2018
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Alibaba Cloud Container Service for Kubernetes (ACK) clusters add support for more regions | - | Australia (Sydney) | Create an ACK cluster |
| Adds support for canary release and phased release | - | All regions | Canary releases and blue/green deployment, Create a batch release |
June 2018
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Alibaba Cloud Container Service for Kubernetes (ACK) adds support for more regions | - |
Japan (Tokyo) China (Hohhot) |
Create an ACK cluster |
| ACK V1.10 adds support for FPGA and HugePages | - | All regions | - |
| ACK adds support for application monitoring and alerting | ACK supports application monitoring and alerting. | All regions | Integration and usage with CloudMonitor |
| ACK adds support for the subscription billing method | - | All regions | Create an ACK cluster |
| Serverless Kubernetes (ASK) adds support for exec/attach commands and ingresses | - | All regions | Features |
May 2018
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Alibaba Cloud Container Service for Kubernetes (ACK) adds support for more regions on Alibaba Finance Cloud | You can create ACK clusters in the China (Shanghai) region on Alibaba Finance Cloud. | China (Shanghai) | Create an ACK cluster |
| Releases Serverless Kubernetes (ASK) | - | All regions | Create a serverless Kubernetes cluster |
| ACK adds support for blue-green release, canary release, and A/B testing | - | All regions | Canary releases and blue/green deployment |
April 2018
| Description | Released in | Related topics |
|---|---|---|
| Alibaba Cloud Container Service for Kubernetes (ACK) supports five regions in Southeast Asia, Middle East, and India. The latest stable ACK version is V1.9. |
Malaysia (Kuala Lumpur) Indonesia (Jakarta) Singapore India (Mumbai) UAE (Dubai) |
Create an ACK cluster |
| ACK has updated Service Catalog to support MySQL, RDS, RabbitMQ, and Spark. | All regions | Overview |
| ACK has updated App Catalog to support managing applications that are released by using Helm. | All regions | Manage a Helm-based release |
March 2018
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Adds support for Alibaba Cloud Container Service for Kubernetes (ACK) V1.9 and custom Elastic Compute Service (ECS) instance images | ACK supports native Kubernetes V1.9.3 and releases Workloads API. Custom Resource Definition (CRD) is enabled by default and GPU scheduling is supported. You can select custom ECS instance images when you create a cluster. You can also reset images when you add nodes to a cluster. | All regions | - |
| ACK adds support for deploying applications by using Helm | ACK releases App Catalog, which allows you to quickly deploy applications by using Helm. | All regions | Manage a Helm-based release |
| ACK adds support for ServiceBroker | ACK releases Service Catalog, which supports ServiceBroker. | All regions | Overview |
| ACK adds support for node monitoring by using CloudMonitor | ACK allows you to monitor cluster nodes by using CloudMonitor. | All regions | Monitor resources |
January 2018
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Releases Alibaba Cloud Container Service for Kubernetes (ACK) and Container Registry on Alibaba Cloud International site | - | Outside China | What is Container Service for Kubernetes? |
| Adds support for Kubernetes V1.8.4 and features such as security enhancement and auto scaling | - | All regions | Auto scaling of nodes |
| ACK releases FlexVolume to support cloud disks, NAS volumes, and OSS volumes | ACK releases the FlexVolume plug-in to mount cloud disks, Network Attached Storage (NAS) volumes, and Object Storage Service (OSS) volumes | All regions | Use Alibaba Cloud disks as volumes, Use Alibaba Cloud NAS as volumes, and Use OSS volumes |
| ACK adds support for network policies and bandwidth throttling | ACK supports Kubernetes network policies and bandwidth throttling. | All regions | Use SLB to access services |
| ACK adds support for Elastic Compute Service (ECS) Bare Metal instances | - | All regions | - |
October 2017
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Adds support for native Kubernetes | Alibaba Cloud Container Service for Kubernetes (ACK) supports Kubernetes V1.8.1. | All regions | What is Container Service for Kubernetes? |
| Releases public preview of the blockchain solution | - | All regions | N/A |
August 2017
| Feature | Description | Released in | Related topics |
|---|---|---|---|
| Adds support for Kubernetes V1.7.2 | - | All regions | Create an ACK cluster |