Upgrades!!! β Everything New with Istio 1.24
Content
Istio 1.24: What's New?
π Introduction
The Istio 1.24 has just released, and it's packed with exciting new features and improvements.
Istio 1.24.0 is officially supported on Kubernetes versions
1.28to1.31.
In this blog post, we'll discover an explore the new key features and enhancements in Istio 1.24, making it easier for you to understand and leverage these cool fewatures in your Kubernetes environment.
New Features and Enhancements in Istio 1.24
π Ambient Mode Promotion to Stable
Istio team has announced that Istio ambient mode has been promoted to Stable (or "General Available" or "GA")! This marks the final stage in Istio's feature phase progression, indicating that the feature is fully ready for broad production usage.
Since its announcement in 2022, the community has been diligently innovating, scaling, stabilizing, and tuning ambient mode to be production-ready.
On top of numerous changes since the Beta release, Istio 1.24 includes several enhancements to ambient mode:
- New
statusmessages are now written to various resources, includingServicesandAuthorizationPolicies, to help understand the current state of the object. (Issue #52699) - Policies can now be attached directly to
ServiceEntrys. Try it out with a simplified egress gateway! (Issue #52532) - A comprehensive troubleshooting guide has been created. Fortunately, many bug fixes in Istio 1.24 make many of these troubleshooting steps unnecessary!
- Numerous bug fixes, particularly for edge cases around pods with multiple interfaces, GKE Intranode visibility, IPv4-only clusters, and more. (Issue #52713)
π Improved Retries
Automatic retries have been a core part of Istio's traffic management functionality. In Istio 1.24, this feature has been further enhanced.
Previously, retries were exclusively implemented on the client sidecar. However, a common source of connection failures actually comes from communication between the server sidecar and the server application, typically from attempting to re-use a connection that the backend is closing. With the improved functionality, we can detect this case and retry on the server sidecar automatically. (Issue #51704)
Additionally, the default policy of retrying 503 errors has been removed. This was initially added primarily to handle the above failure types but had some negative side effects on some applications. (Issue #50506)
π Support for Telemetry Customization
Telemetry in the waypoint proxy can now be customized, providing more flexibility and control over monitoring and observability. This allows for better insights and more tailored metrics collection. Learn more about Istio telemetry. (Issue #52873)
π Dual-Stack Support
Dual-stack support has been promoted to Alpha, allowing better handling of services with multiple IPs. This improvement enhances network management and service reliability, making it easier to manage IPv4 and IPv6 addresses simultaneously. More information can be found in the dual-stack support documentation. (Issue #47998)
π¦ Enhanced Traffic Management
New parameters for DestinationRule, such as warmup behavior controls, and improved XDS generation behavior, offer more precise traffic management capabilities. These enhancements help in fine-tuning traffic flow and improving overall service performance. For a deeper dive, see the traffic management guide. (Issue #3215)
β Improved Istiod Validation
Istiodβs validation webhook now accepts unknown versions, ensuring compatibility with newer CRDs and reducing upgrade friction. This change simplifies the upgrade process and ensures smoother transitions between versions. Check out the Istiod documentation for more details. (Issue #40394)
π¦ Updated CRD Handling
CRDs are now templated by default and can be installed/upgraded via Helm, simplifying the upgrade process and ensuring consistency. This change makes it easier to manage CRDs and reduces the risk of errors during upgrades. Learn more about CRD management. (Issue #43204)
π‘οΈ Sidecar Scoping Changes
Unified behavior for conflict resolution strategies between services with and without Sidecar resources, providing a more predictable and streamlined experience. This change ensures that services behave consistently, regardless of the presence of Sidecar resources. For more information, see the sidecar configuration. (Issue #52519)
π§ Standardization of Peer Metadata Attributes
CEL expressions in the telemetry API now use standard Envoy attributes, improving compatibility and reducing complexity. This standardization helps in creating more reliable and maintainable telemetry configurations. Read more about CEL expressions. (Issue #52177)
βοΈ Improved Waypoint Configuration
Waypoint resources, pod affinity, topologySpreadConstraints, tolerations, and nodeSelector are now configurable, offering greater flexibility in deployment configurations. These improvements make it easier to optimize resource allocation and ensure high availability. For detailed configuration options, visit the waypoint configuration guide. (Issue #52901)
π οΈ Upgrading to Istio 1.24
Upgrading to Istio 1.24 is straightforward, but it's important to review the changes and update your configurations accordingly. The Istio community is eager to hear your feedback, so don't hesitate to share your experiences in the #release-1.24 channel on Slack.
Would you like to contribute directly to Istio? Find and join one of our Working Groups and help us improve.
Attending KubeCon North America 2024? Be sure to stop by the co-located Istio Day to catch some great talks, or swing by the Istio project booth to chat.
π Conclusion
Istio 1.24 brings a host of new features and improvements that enhance stability, traffic management, and customization options. Whether you're attending KubeCon North America 2024 or just exploring the latest release, these changes are sure to make a positive impact on your Kubernetes environment.
Stay tuned for more updates and happy upgrading!
Resources:
- https://istio.io/latest/news/releases/1.24.x/announcing-1.24/
- https://istio.io/latest/news/releases/1.24.x/announcing-1.24/change-notes/
- https://istio.io/latest/news/releases/1.24.x/announcing-1.24/upgrade-notes/
π‘ Thank you for Reading !! ππ»ππ, see you in the next blog.π€ Until next time π
π Thank you for sticking up till the end. If you have any questions/feedback regarding this blog feel free to connect with me:
β»οΈ LinkedIn: https://www.linkedin.com/in/rajhi-saif/
β»οΈ X/Twitter: https://x.com/rajhisaifeddine
The end βπ»
π° Keep Learning !! Keep Sharing !! π°
π Stay updated
Subscribe to our newsletter for more insights on AWS cloud computing and containers.