Prepare 0.31.0 rc.2 #966

lllamnyp · 2025-05-20T16:20:31Z

Revert "[ci] automatically trigger tests in releasing PR" (#900) @kvaps, @lllamnyp
kvaps authored and lllamnyp committed 13 minutes ago

[ci] Use dots in release candidtate versions, as per SemVer (#901) @kvaps @lllamnyp
kvaps authored and lllamnyp committed 12 minutes ago

Make kubevirt's CPU allocation ratio configurable (#905) @lllamnyp
lllamnyp committed 12 minutes ago

Fix virtual machine resource tracking (#904) @lllamnyp
lllamnyp committed 11 minutes ago

[docs] Update release policy: Release Candidate versions (#897) @NickVolynkin @lllamnyp
NickVolynkin authored and lllamnyp committed 11 minutes ago

Enable user-added params in tenant cluster Cilium (#917) @lllamnyp
lllamnyp committed 10 minutes ago

[platform] add hr reconciler (#870) @klinch0 @lllamnyp
klinch0 authored and lllamnyp committed 10 minutes ago

[platform] delete extra dependencies for piraeus operator (#856) @klinch0 @lllamnyp
klinch0 authored and lllamnyp committed 9 minutes ago

[kubernetes] Enable Cilium Gateway API #923 (#924) @kvaps @lllamnyp
kvaps authored and lllamnyp committed 8 minutes ago

Update kube-ovn to latest version (#922) @lllamnyp
lllamnyp committed 8 minutes ago

[519] Cross-arch builds: builders variables (#907) @lllamnyp
lllamnyp committed 8 minutes ago

Don't overcommit memory (#913) @kvaps @lllamnyp
kvaps authored and lllamnyp committed 8 minutes ago

Downgrade CAPI operator (#942) @lllamnyp
lllamnyp committed 7 minutes ago

Update Flux Operator to 0.20.0 (#934) @kvaps @lllamnyp
kvaps authored and lllamnyp committed 5 minutes ago

[talos] Update Talos Linux v1.10.1 (#931) @kvaps @lllamnyp
kvaps authored and lllamnyp committed 4 minutes ago

[platform] Introduce expose-services, expose-ingress and expose-external-ips options (#929) @kvaps @lllamnyp
kvaps authored and lllamnyp committed 4 minutes ago

[platform] refactor dashboard values (#928) @kvaps @lllamnyp
kvaps authored and lllamnyp committed 4 minutes ago

Build patched MetalLB (#945) @lllamnyp
lllamnyp committed 3 minutes ago

[kubernetes] fix regression: return port specification (#956) @kvaps @lllamnyp
kvaps authored and lllamnyp committed 3 minutes ago

Update Kamaji to edge-25.4.1 (#953) @kvaps @lllamnyp
kvaps authored and lllamnyp committed 3 minutes ago

[kubernetes] Update Kubernetes v1.32.4 (#949) @kvaps @lllamnyp
kvaps authored and lllamnyp committed 3 minutes ago

Revert "Downgrade CAPI operator" (#946) @kvaps @lllamnyp
kvaps authored and lllamnyp committed 2 minutes ago

[cluster-api] Update capi-providers (#947) @kvaps @lllamnyp
kvaps authored and lllamnyp committed 2 minutes ago

[build] Cross-arch builds: components (#932) @kvaps @lllamnyp
kvaps authored and lllamnyp committed 2 minutes ago

Hotfix: error in template (#952) @lllamnyp
lllamnyp committed 2 minutes ago

[ingress] avoid invalid externalIPs when config value is empty (#957) @kvaps @lllamnyp
kvaps authored and lllamnyp committed 1 minute ago

Revert "[ingress] avoid invalid externalIPs when config value is empt @kvaps @lllamnyp
kvaps authored and lllamnyp committed 1 minute ago

[e2e] Return genisoimage to the e2e-test Dockerfile (#962) @lllamnyp
lllamnyp committed 1 minute ago

(air gapped): disable fluxcd artifact by default (#964) @lllamnyp
lllamnyp committed 1 minute ago

Revert #894 due to fact this logic does not trigger checks in pull requests  ## Summary by CodeRabbit - **Chores** - Removed support for manually triggering the pull request release workflow. - Simplified release workflow to run automatically only on labeled pull requests. - Eliminated the step in the tags workflow that triggered release verification via manual dispatch.  (cherry picked from commit e1c1461) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

This change also fixes `finalizing release` workflow #890 (comment)  ## Summary by CodeRabbit - **Chores** - Updated release tag validation to require a dot between "rc" and the number (e.g., `v0.31.5-rc.1` instead of `v0.31.5-rc1`). - Adjusted error messages to reflect the new release tag format.  (cherry picked from commit 108fc64) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Kubevirt's default cpu-to-vcpu ration is 1:10, which might be a bit extreme for some users. This patch introduces a new key in the Cozystack configmap, "cpu-allocation-ratio" where admins of Cozystack can specify an alternative value, if needed.  ## Summary by CodeRabbit - **New Features** - Added support for optionally configuring a CPU allocation ratio for KubeVirt deployments when the relevant setting is provided. - **Chores** - Improved configuration flexibility for KubeVirt by allowing dynamic injection of CPU allocation settings.  (cherry picked from commit c482289) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

* Count Workload resources for pods by requests, not limits * Do not count init container requests * Prefix Workloads for pods with `pod-`, just like the other types to prevent possible name collisions (closes #787) The previous version of the WorkloadMonitor controller incorrectly summed resource limits on pods, rather than requests. This prevented it from tracking the resource allocation for pods, which only had requests specified, which is particularly the case for kubevirt's virtual machine pods. Additionally, it counted the limits for all containers, including init containers, which are short-lived and do not contribute much to the total resource usage.  ## Summary by CodeRabbit - **Bug Fixes** - Improved handling of workloads with unrecognized prefixes by ensuring they are properly deleted and not processed further. - Corrected resource aggregation for Pods to sum container resource requests instead of limits, and now only includes normal containers. - **New Features** - Added support for monitoring workloads with names prefixed by "pod-". - **Tests** - Introduced unit tests to verify correct handling of workload name prefixes and monitored object creation.  (cherry picked from commit 1e59e5f) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

*Documentation** - Expanded the release documentation with a new section explaining Cozystack's staged release process, including details on Release Candidates, Regular Releases, and Patch Releases. - Clarified the workflow and purpose of Release Candidates and updated the explanation of how regular releases are created. Signed-off-by: Nick Volynkin <nick.volynkin@gmail.com> (cherry picked from commit 062d728) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Users requested the possibility of passing custom values to the Cilium HelmRelease in tenant k8s clusters to enable its latest features, such as support for the Gateway API. This customization is now available via the `valuesOverride` field under `addons.cilium` in the kubernetes' app values.  ## Summary by CodeRabbit - **New Features** - Added support for custom override values for the Cilium addon, allowing users to configure Cilium settings via the values file. - **Chores** - Updated the Kubernetes chart version to 0.20.0. - Updated version mappings to reflect the new chart version. - **Documentation** - Updated Kubernetes managed service docs to include configuration details for Cilium addon overrides.  (cherry picked from commit 0346dc0) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

## Summary by CodeRabbit - **New Features** - Introduced a new controller to synchronize tenant HelmReleases and propagate configuration changes. - Added dynamic host value overrides in multiple Helm templates by conditionally retrieving values from the "tenant-root" HelmRelease. - Updated RBAC permissions to allow management of HelmRelease resources. - **Improvements** - Added support for Helm v2 API integration. - Enhanced HelmRelease reconciliation logic and configuration propagation for tenant environments. - **Bug Fixes** - Fixed periodic reconciliation for the "tenant-root" HelmRelease by setting its interval to zero. - **Version Updates** - Incremented version numbers for the "info" and "ingress" packages. - **Chores** - Updated version mappings and commit references. - Improved .gitignore to exclude the .vscode directory.  (cherry picked from commit dca732c) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

## Summary by CodeRabbit - **Chores** - Updated dependency configuration so that piraeus-operator no longer depends on victoria-metrics-operator. - **Refactor** - Improved compatibility by ensuring certain resources (VMPodScrape and alert definitions) are only rendered if the required API versions are available in the Kubernetes cluster.  (cherry picked from commit 29b4949) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Implementation of Cilium Gateway API  ## Summary by CodeRabbit - **New Features** - Added optional Gateway API addon for Kubernetes clusters, controlled by a new configuration flag. - Introduced automated deployment of Gateway API CRDs when the addon is enabled. - **Documentation** - Updated documentation to describe the new Gateway API addon and its configuration. - **Chores** - Added chart metadata and automation files for managing Gateway API CRDs. - Updated chart version to reflect new features.  (cherry picked from commit ae05d2f) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

This commit bumps kube-ovn to 1.13.11 and does away with patching the code now that the fixes necessary for kube-ovn to work properly in Talos have been released in the upstream. (cherry picked from commit 557ffa5) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Added PLATFORM variable to `common-envs.mk`: if not defined, it is calculated based on docker daemon arch. May be overridden by e.g. `make -e PLATFORM='linux/arm64' ...` Added the variable to a single Dockerfile for now. (cherry picked from commit 653e2bc) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

This patch recreates the resource presets with a non-burstable memory allocation (request==limit) and without CPU limits. With the new presets the difference between the larger presets became meaningless, so their values were adjusted. Resolves #912  ## Summary by CodeRabbit - **Chores** - Updated resource presets across all application charts to remove CPU limits, align memory limits with requests, and standardize memory units for consistency. - Adjusted CPU and memory request values for larger presets in several applications. - Updated chart versions for all affected applications. - Refreshed version mappings to reflect latest commit hashes. - Added explicit resource configuration for Redis in the dashboard configuration.  (cherry picked from commit 2c6338a) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Resolves #940. (cherry picked from commit 9377f55) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Now includes a Flux MCP server (docs: https://fluxcd.control-plane.io/mcp/ - NB: it is not running in the cluster by default, and I haven't tried it yet)  ## Summary by CodeRabbit - **Chores** - Updated Helm chart and app version numbers for Flux Operator and Flux Instance to 0.20.0. - **Documentation** - Updated version badges in the README files to reflect the new 0.20.0 release.  (cherry picked from commit de1b38c) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Signed-off-by: Andrei Kvapil <kvapss@gmail.com>  ## Summary by CodeRabbit - **Chores** - Updated installer and system component versions to v1.10.1 across all profiles. - Refreshed system extension images to newer releases, including updated versions for drbd and zfs. - Applied recent date-based updates to firmware and extension images for improved support and compatibility.  (cherry picked from commit a240c0b) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

…nal-ips options (#929) docs update: cozystack/website#197 Signed-off-by: Andrei Kvapil <kvapss@gmail.com>  ## Summary by CodeRabbit ## Summary by CodeRabbit - **New Features** - Added automated migration script to transition configuration from HelmRelease to ConfigMap for service exposure and external IPs. - Introduced new ingress templates for API, CDI upload proxy, and VM export proxy services, enabling dynamic exposure based on centralized configuration. - **Bug Fixes** - Updated NGINX Ingress Controller Helm chart version to 1.6.0. - **Refactor** - Centralized ingress configuration using a ConfigMap, simplifying and unifying service exposure and ingress class management. - Removed legacy parameters and templates for dashboard, CDI upload proxy, and VM export proxy from values and schema files. - Simplified ingress templates for dashboard and Keycloak to rely on centralized ConfigMap data and exposure lists. - Adjusted ingress controller service to conditionally use external IPs based on centralized configuration. - **Documentation** - Updated documentation to reflect the removal of deprecated parameters and clarify current configuration options.  (cherry picked from commit f8210cf) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Signed-off-by: Andrei Kvapil <kvapss@gmail.com> (cherry picked from commit 404579c) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Since it's taking a while for metallb/metallb#2726 to get released, the binaries with the fix are recompiled in-tree. Workaround for #909. (cherry picked from commit 73fdc5d) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

This PR fixes regression from #867 We have updated Kamaji, removed 8000 workaround, but didn't return the port specification Signed-off-by: Andrei Kvapil <kvapss@gmail.com>  ## Summary by CodeRabbit - **Refactor** - Updated network configuration to explicitly include port 443 in hostnames for ingress.  (cherry picked from commit fb26e3e) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Signed-off-by: Andrei Kvapil <kvapss@gmail.com>  ## Summary by CodeRabbit - **New Features** - Added new validation rules to enforce stricter configuration requirements for datastore drivers and authentication fields. - Introduced a new field to specify stop signals for containers and a new status field to track terminating pods. - Added a new "Sleeping" status for version reporting. - **Improvements** - Updated and clarified field descriptions for environment variable sources, volume types, and deployment status. - Removed outdated beta feature gate notes from documentation. - **Bug Fixes** - Improved handling and validation of sensitive configuration fields based on driver type. - **Chores** - Updated Go base image and Kamaji version in the Dockerfile. - Changed Kamaji image tag to use the latest version. - **Refactor** - Moved imagePullSecrets configuration from the deployment to the ServiceAccount manifest for better management.  (cherry picked from commit 5273722) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Signed-off-by: Andrei Kvapil <kvapss@gmail.com>  ## Summary by CodeRabbit - **Chores** - Updated the application version in the Kubernetes chart to 1.32.4. - Made version fields in Kubernetes cluster templates dynamically reference the chart's application version, ensuring consistency during deployments.  (cherry picked from commit dd592ca) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Reverts #942  ## Summary by CodeRabbit - **New Features** - Added support for specifying manifest patches and additional manifests for all provider types, enabling more flexible customization. - Introduced an optional property to pass additional arguments to provider controller managers. - Added a JSON schema for validating chart values. - **Enhancements** - Provider configuration now uses structured maps instead of strings, simplifying customization and reducing errors. - Improved validation and descriptions for condition fields in resource schemas. - **Updates** - Upgraded Cluster API Operator chart and app versions to 0.19.0. - Updated default image tag for the manager container to v0.19.0. - **Documentation** - Added example configurations in the values file for easier setup.  (cherry picked from commit c54567a) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

v0.10.1 versio 8000 n fixes Bootstrap: Make joinConfiguration.discovery.bootstrapToken.token optional (kubernetes-sigs/cluster-api#12136) ref #939 and clastix/cluster-api-control-plane-provider-kamaji#212 fixes #939  ## Summary by CodeRabbit - **Chores** - Updated the versions of cluster-api CoreProvider and kubeadm BootstrapProvider from v1.10.0 to v1.10.1. - Updated the version of kamaji ControlPlaneProvider from v0.14.2 to v0.15.1.  (cherry picked from commit 8e6941d) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Components with existing dockerfiles will be updated in this PR. Part of #519  ## Summary by CodeRabbit - **New Features** - Added support for multi-architecture and cross-platform Docker image builds across various components, enabling builds for different operating systems and CPU architectures. - **Chores** - Updated Docker build commands in multiple Makefiles to use configurable builder and platform variables, improving build flexibility. - Standardized Dockerfile build arguments and environment variables for cross-compilation. - Improved package installation commands for quieter and more minimal installs in Dockerfiles. - Changed the default bucket name configuration to "cozystack" in system bucket settings. - Updated some maintenance targets and manual update reminders in Makefiles.  (cherry picked from commit 4f78b13) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Resolves regressions introduced in #928 and #929 (cherry picked from commit c42a502) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Fix regression introduced by #929 (comment) becasue of `splitList "," "" == [""]` Signed-off-by: Andrei Kvapil <kvapss@gmail.com> (cherry picked from commit 0369852) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

…y" (#959) Reverts #957. This was already fixed by #952 (cherry picked from commit 31b110c) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

commit 7a7512d removed genisoimage package installation from Dockerfile which leds to test fail due to the fact that genisoimage is missing and runner enable to create image. [issue reference](https://github.com/cozystack/cozystack/actions/runs/15084476654/job/42406141954). restored genisoimage package installation in Dockerfile. (cherry picked from commit 8d74a35) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Default `artifact` field for FluxCD operator to empty string, so it uses embedded manifests and is compatible with air-gapped environments. (cherry picked from commit 775ecb7) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

coderabbitai · 2025-05-20T16:20:42Z

Important

Review skipped

More than 25% of the files skipped due to max files limit. The review is being skipped to prevent a low-quality review.

39 files out of 148 files are above the max files limit of 100. Please upgrade to Pro plan to get higher limits.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

✨ Finishing Touches

📝 Generate Docstrings

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

Review comments: Directly reply to a review comment made by CodeRabbit. Example:
- I pushed a fix in commit <commit_id>, please review it.
- Explain this complex logic.
- Open a follow-up GitHub issue for this discussion.
Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
- @coderabbitai explain this code block.
- @coderabbitai modularize this function.
PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
- @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
- @coderabbitai read src/utils.ts and explain its main purpose.
- @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
- @coderabbitai help me debug CodeRabbit configuration file.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

@coderabbitai pause to pause the reviews on a PR.
@coderabbitai resume to resume the paused reviews.
@coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
@coderabbitai full review to do a full review from scratch and review all the files again.
@coderabbitai summary to regenerate the summary of the PR.
@coderabbitai generate docstrings to generate docstrings for this PR.
@coderabbitai generate sequence diagram to generate a sequence diagram of the changes in this PR.
@coderabbitai resolve resolve all the CodeRabbit review comments.
@coderabbitai configuration to show the current CodeRabbit configuration for the repository.
@coderabbitai help to get help.

Other keywords and placeholders

Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (`.coderabbit.yaml`)

You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
Please see the configuration documentation for more information.
If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

Visit our Documentation for detailed information on how to use CodeRabbit.
Join our Discord Community to get help, request features, and share feedback.
Follow us on X/Twitter for updates and announcements.

lllamnyp · 2025-05-21T11:58:11Z

Scrapping this PR and releasing rc.2 from main.

kvaps and others added 29 commits May 20, 2025 19:01

Downgrade CAPI operator (#942)

8c1d52a

Resolves #940. (cherry picked from commit 9377f55) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

[platform] refactor dashboard values (#928)

246b5c4

Signed-off-by: Andrei Kvapil <kvapss@gmail.com> (cherry picked from commit 404579c) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Build patched MetalLB (#945)

693ea8a

Since it's taking a while for metallb/metallb#2726 to get released, the binaries with the fix are recompiled in-tree. Workaround for #909. (cherry picked from commit 73fdc5d) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Hotfix: error in template (#952)

da2edb3

Resolves regressions introduced in #928 and #929 (cherry picked from commit c42a502) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

Revert "[ingress] avoid invalid externalIPs when config value is empt…

209bddb

…y" (#959) Reverts #957. This was already fixed by #952 (cherry picked from commit 31b110c) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

(air gapped): disable fluxcd artifact by default (#964)

ba29086

Default `artifact` field for FluxCD operator to empty string, so it uses embedded manifests and is compatible with air-gapped environments. (cherry picked from commit 775ecb7) Signed-off-by: Timofei Larkin <lllamnyp@gmail.com>

lllamnyp requested a review from kvaps as a code owner May 20, 2025 16:20

lllamnyp requested a review from klinch0 as a code owner May 20, 2025 16:20

lllamnyp added the do-not-merge label May 20, 2025

lllamnyp closed this May 21, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Prepare 0.31.0 rc.2 #966

Prepare 0.31.0 rc.2 #966

Uh oh!

Uh oh!

Review skipped

Chat

Support

CodeRabbit Commands (Invoked using PR comments)

Other keywords and placeholders

CodeRabbit Configuration File (`.coderabbit.yaml`)

Documentation and Community

Uh oh!

Uh oh!

Uh oh!

Prepare 0.31.0 rc.2 #966

Prepare 0.31.0 rc.2 #966

Uh oh!

Conversation

Uh oh!

Review skipped

Chat

Support

CodeRabbit Commands (Invoked using PR comments)

Other keywords and placeholders

CodeRabbit Configuration File (.coderabbit.yaml)

Documentation and Community

Uh oh!

Uh oh!

Uh oh!

CodeRabbit Configuration File (`.coderabbit.yaml`)