This release updates Kubernetes to v1.18.12
For more details on what's new, see the Kubernetes release notes
Changes since v1.18.10+rke2r1
- Upgrade Kubernetes to v1.18.12
- Add support for node-external-ip flag
- Install script will now detect EL version on RHEL-like systems
- Add support for audit-logging in the api server pod
- Update containerd to v1.3.7 with selinux relabel fix
- rke2-selinux bumped to v0.4
RKE2, also known as RKE Government, is Rancher's next-generation Kubernetes distribution.
It is a fully conformant Kubernetes distribution that focuses on security and compliance within the U.S. Federal Government sector.
To meet these goals, RKE2 does the following:
- Provides defaults and configuration options that allow clusters to pass the CIS Kubernetes Benchmark with minimal operator intervention
- Enables FIPS 140-2 compliance
- Supports SELinux policy and Multi-Category Security (MCS) label enforcement
- Recompiles, repackages, and scans components for CVEs using trivy in our build pipeline
RKE2 also brings together the best aspects of Rancher's RKE1 and K3s distributions. For more on this, check out our docs.
Try it Now
On a modern AMD64 Linux host, run:
curl -sfL https://get.rke2.io | sh -
See our Quick Start Guide for more.
Packaged Component Versions
- Helm-controller sometimes leave behind failed install job pods with reason "NodeAffinity". This is due to an upstream issue. This is harmless as the pods will be recreated and eventually succeed, but the failed pods will remain until manually deleted. #127
These items will be addressed in an upcoming release.
As always, we welcome and appreciate feedback from our community of users. Please feel free to: