Authors: Carol Valencia, Kristin Martin, Abigail McCarthy, James Quigley, Hosam Kamel

Kubernetes Removals, Deprecations, and Major Changes in Kubernetes 1.29

As with every release, Kubernetes v1.29 will introduce some feature deprecations and removals. Our continued ability to produce high-quality releases is a testament to our robust development cycle and healthy community. The following list are of some of the deprecations and removals coming in the Kubernetes 1.29 release.

The Kubernetes API Removal and Deprecation process

The Kubernetes project has a well-documented deprecation policy for features. This policy states that stable APIs may only be deprecated when a newer, stable version of that same API is available and that APIs have a minimum lifetime for each stability level. A deprecated API is one that has been marked for removal in a future Kubernetes release; it will continue to function until removal (at least one year from the deprecation), but usage will result in a warning being displayed. Removed APIs are no longer available in the current version, at which point you must migrate to using the replacement.

Generally available (GA) or stable API versions may be marked as deprecated, but must not be removed within a major version of Kubernetes.
Beta or pre-release API versions must be supported for 3 releases after deprecation.
Alpha or experimental API versions may be removed in any release without prior deprecation notice.

Whether an API is removed as a result of a feature graduating from beta to stable or because that API simply did not succeed, all removals comply with this deprecation policy. Whenever an API is removed, migration options are communicated in the documentation.

A note about the k8s.gcr.io redirect to registry.k8s.io

To host its container images, the Kubernetes project uses a community-owned image registry called registry.k8s.io. Starting last March traffic to the old k8s.gcr.io registry began being redirected to registry.k8s.io. The deprecated k8s.gcr.io registry will eventually be phased out. For more details on this change or to see if you are impacted, please read k8s.gcr.io Redirect to registry.k8s.io - What You Need to Know.

Deprecations and Removals for Kubernetes v1.29

Removing In-Tree Cloud Providers KEP-2395

The feature gates DisableCloudProviders and DisableKubeletCloudCredentialProviders are now set to true by default. This change will require that users who are currently using in-tree cloud providers (Azure, GCE, or vSphere) to enable external cloud controller managers, or to set the feature gates to false. Enabling external cloud controller managers requires setting the command line flag --cloud-provider=external on the kubelet, kube-apiserver, and kube-controller-manager in addition to running the cloud controller manager.

For more information about how to enable and run external cloud controller managers, please see the Kubernetes documentation Cloud Controller Manager Administration and Migrate Replicated Control Plane To Use Cloud Controller Manager.

For general information about cloud controller managers, please see the Kubernetes document
Cloud Controller Manager.

Removal of `v1beta2` flow control API group

The flowcontrol.apiserver.k8s.io/v1beta2 API version of FlowSchema and PriorityLevelConfiguration will no longer be served in v1.29.

To prepare for this, you can edit your existing manifests and rewrite client software to use the flowcontrol.apiserver.k8s.io/v1beta3 API version, available since v1.26. All existing persisted objects are accessible via the new API. Notable changes in flowcontrol.apiserver.k8s.io/v1beta3 include
the PriorityLevelConfiguration spec.limited.assuredConcurrencyShares field is renamed to spec.limited.nominalConcurrencyShares.

Deprecation of `status.nodeInfo.kubeProxyVersion` field of v1.Node

The .status.kubeProxyVersion field for Node objects will be marked as deprecated in v1.29 in preparation for its removal in a future release. This field is not accurate and is set by kubelet, which does not actually know the kube-proxy version, or even if kube-proxy is running.

Deprecation of the `SkipReadOnlyValidationGCE` feature gate

The SkipReadOnlyValidationGCE feature gate will be deprecated. Previous versions of Kubernetes on Google Cloud required that workloads (for example Deployments, DaemonSets, etc.) which used PersistentDisk volumes were using them in read-only mode. This validation provided very little value at a relatively high host implementation cost, and will no longer be validated. If this is a problem for a specific use-case, you'll be able to the set SkipReadOnlyValidationGCE gate to false so as to re-enable the validation, and then we hope you would file a Kubernetes bug with details.

Major Changes for Kubernetes v1.29

Native sidecar containers promoted to beta

Introduced in alpha in Kubernetes v1.28, native sidecare containers will be beta in Kubernetes v1.29. In addition to fixing known issues, improvements include implementing proper termination ordering and allowing sidecar containers to restart during the shutdown of the Pod.

Looking Ahead

The official list of API removals planned for Kubernetes v1.29 includes:

The flowcontrol.apiserver.k8s.io/v1beta2 API version of FlowSchema and PriorityLevelConfiguration will no longer be served in v1.29.

Want to know more?

Deprecations are announced in the Kubernetes release notes. You can see the announcements of pending deprecations in the release notes for:

We will formally announce the deprecations that come with Kubernetes v1.29 as part of the CHANGELOG for that release.

For information on the deprecation and removal process, check out the official Kubernetes deprecation policy document.

Priyanka Saggu

2023/10/17 10:12:14

From the previous mid-cycle blogs, let's add the "Kubernetes API Removal and Deprecation Process" section here as well: https://kubernetes.io/blog/2022/11/18/upcoming-changes-in-kubernetes-1-26/#k8s-api-deprecation-process

Abigail McCarthy

2023/10/17 13:40:30

Added this section!

2023/10/17 10:16:18

Upcoming changes - Kubernetes 1.29

Per the discussion in slack thread https://kubernetes.slack.com/archives/C2C40FMNF/p1697433196376889 we will need to include a para as a note for the `SkipReadOnlyValidationGCE` gate bump from Alpha to Deprecated and being enabled by default. The PR has a release note and a few line documentation on top of the code changes, we can use that snippet and get it cross checked with Tim Hockin for correctness.

2023/10/17 10:21:06

Sidecar Containers KEP-753 https://github.com/kubernetes/enhancements/issues/753

same as the previous release cycle's mid-cycle blogs, let's also include "Looking ahead" and "Want to know more?" sections. Looks like these have been mostly copy/paste content with few updates https://kubernetes.io/blog/2023/03/17/upcoming-changes-in-kubernetes-v1-27/#looking-ahead

2023/10/17 14:06:05

Is there a list of API removals for release beyond 1.29? This page, https://kubernetes.io/docs/reference/using-api/deprecation-guide/#v1-29, only goes up to 1.29

2023/10/17 10:23:03

Maybe also a one line reminder for the "k8s.gcr.io redirect to registry.k8s.io" and just simply adding a link to the blog https://kubernetes.io/blog/2023/03/10/image-registry-redirect/

2023/10/17 10:29:07

Authors: Kubernetes 1.29 Release Team https://github.com/kubernetes/sig-release/blob/master/releases/release-1.29/release_team.md

nit: maybe we can mention the name of the comms team members only. Saw the same pattern in the previous mid-cycle blog. :)

Kristin Martin

2023/10/31 15:56:12

Removed the company affiliations per your comment

2023/10/17 14:13:14

Removal of flowcontrol.apiserver.k8s.io/v1beta2 http://flowcontrol.apiserver.k8s.io/v1beta2 API version of FlowSchema and PriorityLevelConfiguration The flowcontrol.apiserver.k8s.io/v1beta2 http://flowcontrol.apiserver.k8s.io/v1beta2 API version of FlowSchema and PriorityLevelConfiguration will no longer be served. Migrate manifests and API clients to use the flowcontrol.apiserver.k8s.io/v1beta3 API version, available since v1.26. All existing persisted objects are accessible via the new API. Notable changes in flowcontrol.apiserver.k8s.io/v1beta3 include the PriorityLevelConfiguration spec.limited.assuredConcurrencyShares field is renamed to spec.limited.nominalConcurrencyShares.

Added this info in based on the this page, https://kubernetes.io/docs/reference/using-api/deprecation-guide/#v1-29. Should it be included? I couldn't find an issue in the 1.29 milestone. (Edited)

sftim

2023/10/29 14:24:33

There's nothing to document for v1.29, but we need to explain this here. However, it's helpful to be more verbose (eg: change “Migrate manifests and API clients” to “To prepare for this, you can edit your existing manifests and rewrite client software,”

Marko Mudrinić

2023/10/17 14:35:51

The Kubernetes project has a well-documented deprecation policy for features.

This is a very nice summary, but it might also be useful to link to this document directly https://kubernetes.io/docs/reference/using-api/deprecation-policy/

2023/10/17 14:36:40

A note about the k8s.gcr.io http://k8s.gcr.io redirect to registry.k8s.io http://registry.k8s.io

We perhaps don't need to mention this change, it has been around for a while. Should we consider mentioning legacy repos deprecation instead?

2023/10/17 17:51:32

>Should we consider mentioning legacy repos deprecation instead? I'm not familiar with this, is there a place to get more information on this change? I think in general, keeping a note about the registry redirect is ok, but we can maybe move it to the end of the blog? Also, has there been a date that the old registry will be phased out?

2023/10/18 11:33:51

We stopped publishing images to the old registry since April 3 (https://kubernetes.io/blog/2023/02/06/k8s-gcr-io-freeze-announcement/). At this time, there's no date defined when are we going to shut it down completely. Speaking of deprecating/freezing legacy repos, we have a blog post here: https://kubernetes.io/blog/2023/08/31/legacy-package-repository-deprecation/ If we want to mention legacy repos being deprecated and frozen, I can come up with something.

2023/10/17 14:37:33

have a minimum lifetime for each stability level

This sounds slightly confusing, but I don't have idea how to reword it at this time

2023/10/17 14:41:09

I see we linked API removals page above, but it might be worth mentioning it explicitly here as well (https://kubernetes.io/docs/reference/using-api/deprecation-guide/)

2023/10/17 17:49:40

pod resize KEP

I've reached out to the KEP owner for context (10/16/23). If anyone else has info, please reply to this comment

2023/10/23 15:23:52

Removing this, we heard back from the kep owners and this is not going to be included in this release.

2023/10/24 21:26:15

beta

Shouldn't this be changed to "Introduced in alpha", since it's being promoted to beta?

2023/10/27 19:03:14

yes!

2023/10/29 14:21:39

We are excited to share with you the following list of changes coming in the Kubernetes 1.29 release.

This phrasing might lead people to believe it's an exhaustive list or covers improvements as well as removals. That could mislead; the intent of this article is to communcate removals and breaking changes in advance (we usually wouldn't mention new features that don't relate to any breaking change).

2023/10/29 14:28:53

Also, let's not say we're excited about API removals. They aren't really that exciting.

2023/10/31 01:27:10

I updated this intro paragraph a bit. Thanks for the additional context about the purpose of the blog

2023/10/29 14:22:38

We have two slightly related changes: one is this redirect and the other is https://kubernetes.io/blog/2023/08/15/pkgs-k8s-io-introduction/ Neither is linked to v1.29 but both are worth calling out.

2023/10/29 14:22:52

Removing In-Tree Cloud Providers KEP-2395 https://github.com/kubernetes/enhancements/issues/2395

What will we say here?

2023/10/31 01:12:23

We have an ask out to the KEP owners get more information about this change and what to include here.

2023/10/29 14:25:26

The kubeProxyVersion field of NodeStatus

Try “The .status.kubeProxyVersion field for Node objects”

2023/10/29 14:25:43

e.g.

nit: avoid Latin abbreviations.

2023/10/29 14:26:40

If this is a problem for a specific use-case, set the SkipReadOnlyValidationGCE gate to false to re-enable the validation, and file a Kubernetes bug with details.

Try “If this is a problem for a specific use-case, you'll be able to the set SkipReadOnlyValidationGCE gate to false so as to re-enable the validation, and then we hope you would file a Kubernetes bug with details.”

2023/10/29 14:27:18

Do we need to mention this change in this blog article?

2023/10/29 14:27:32

The official list of API removals https://kubernetes.io/docs/reference/using-api/deprecation-guide/#v1-29 planned for Kubernetes v1.29 includes: The flowcontrol.apiserver.k8s.io/v1beta2 http://flowcontrol.apiserver.k8s.io/v1beta2 API version of FlowSchema and PriorityLevelConfiguration will no longer be served in v1.29.

This should describe removals for versions later than v1.29

2023/10/31 01:11:01

@sftim do you know where that can be found? or where to ask about it? I copied this section from the previous mid-cycle blog formats, but there wasn't a list for future release planned deprecations yet.

2023/10/29 14:27:56

Kubernetes v1.25 https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.25.md#deprecation Kubernetes v1.26 https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.26.md#deprecation Kubernetes v1.27 https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.27.md#deprecation Kubernetes v1.28 https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.28.md#deprecation

Is this list correct / how do we know it's correct?

2023/10/29 14:32:01

Are there any changes relating to CSI migration that readers need to know about?

2023/10/31 01:04:12

will need to follow up on this. A quick scan of the release board shows only one KEP that mentions CSI changes, https://github.com/kubernetes/enhancements/issues/3314, but it was bumped to a later release

Kubernetes Removals, Deprecations, and Major Changes in Kubernetes 1.29

The Kubernetes API Removal and Deprecation process

A note about the k8s.gcr.io redirect to registry.k8s.io

Deprecations and Removals for Kubernetes v1.29

Removing In-Tree Cloud Providers KEP-2395

Removal of v1beta2 flow control API group

Deprecation of status.nodeInfo.kubeProxyVersion field of v1.Node

Deprecation of the SkipReadOnlyValidationGCE feature gate

Major Changes for Kubernetes v1.29

Native sidecar containers promoted to beta

Looking Ahead

Want to know more?

Read more

Consumption Settings

O11 - Week01

Notes 1.29 Release

main for the Kubernetes Release Blog 1.29

Removal of `v1beta2` flow control API group

Deprecation of `status.nodeInfo.kubeProxyVersion` field of v1.Node

Deprecation of the `SkipReadOnlyValidationGCE` feature gate