Profile applicability: Level 1
Subscribe to the Regular or Stable Release Channel to automate version upgrades to
the GKE cluster and to reduce version management complexity to the number of features
and level of stability required.
Release Channels signal a graduating level of stability and production-readiness.
These are based on observed performance of GKE clusters running that version and represent
experience and confidence in the cluster version.
The Regular release channel upgrades every few weeks and is for production users who
need features not yet offered in the Stable channel. These versions have passed internal
validation, but don't have enough historical data to guarantee their stability. Known
issues generally have known workarounds.
The Stable release channel upgrades every few months and is for production users who
need stability above all else, and for whom frequent upgrades are too risky. These
versions have passed internal validation and have been shown to be stable and reliable
in production, based on the observed performance of those clusters.
Critical security patches are delivered to all release channels.
 |
NoteCurrently, release channels are not enabled by default.
|
Impact
Once release channels are enabled on a cluster, they cannot be disabled. To stop using
release channels, the cluster must be recreated without the
--release-channel flag. Node auto-upgrade is enabled (and cannot be disabled), so the cluster is updated
automatically from releases available in the chosen release channel.Audit
Using Google Cloud Console:
- Go to Kubernetes Engine by visiting: Google Cloud Console Kubernetes Engine page.
- From the list of clusters, select the desired cluster.
- Within the Details pane, if using a release channel, the release channel should be set to the Regular or Stable channel.
Using Command Line:
To check for Release Channel within a cluster, first define 3 variables for Cluster
Name, Location and Project and then run the following command:
gcloud container clusters describe $CLUSTER_NAME --location $LOCATION --project $PROJECT_ID --format json | jq .releaseChannel.channel
Ensure the output of the above command has JSON key attribute channel set to REGULAR
or STABLE:
"releaseChannel": { "channel": "REGULAR" },
The output of the above command will return
regular or stable if these release channels are being used to manage automatic upgrades for the cluster.Remediation
Currently, cluster Release Channels are only configurable at cluster provisioning
time.
Using Google Cloud Console:
- Go to Kubernetes Engine by visiting: Google Cloud Console Kubernetes Engine page.
- Click CREATE, and choose CONFIGURE for the required cluster mode.
- Under the Control plane version heading, click the Release Channels button.
- Select the Regular or Stable channels from the Release Channel drop-down menu.
- Configure the rest of the cluster settings as required.
- Click CREATE.
Using Command Line:
Create a new cluster by running the following command, where
<release_channel> is stable or regular, according to requirements:gcloud container clusters create <cluster_name> --location <location> --release-channel <release_channel>