Skip to content

chore(deps): update helm release ceph-csi-rbd to v3.12.2

Renovate Bot requested to merge renovate/ceph-csi-rbd-3.x into main

This MR contains the following updates:

Package Update Change
ceph-csi-rbd (source) minor 3.5.1 -> 3.12.2

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

ceph/ceph-csi (ceph-csi-rbd)

v3.12.2

Compare Source

What's Changed

Full Changelog: https://github.com/ceph/ceph-csi/compare/v3.12.1...v3.12.2

v3.12.1: Ceph-CSI v3.12.1 Release

Compare Source

What's Changed

Important Note: Users using topology-aware provisioning are now required to set the set TopologyConstrainedPools: <...> and volumeBindingMode: WaitForFirstConsumer in the StorageClass and to configure the --domainlabels flag in the RBD nodeplugin. Refer to #​4790 for more information.

Full Changelog: https://github.com/ceph/ceph-csi/compare/v3.12.0...v3.12.1

v3.12.0

Compare Source

3.12.0 release notes

Important Note: Users are requested to use Ceph CSI v3.12.1 instead.

We are excited to announce another release of Ceph CSI, v3.12.0. This is another significant step towards using enhanced Container Storage Interface (CSI) features with Ceph Cluster in the backend. With this release, we are introducing many brand-new features and enhancements to the Ceph CSI driver. Here are the changelog/release highlights.

Changelog and Highlights:
Features
Deployment
  • deploy: podSecurityContexts can be configured for ceph-csi-cephfs chart in MR.
  • deploy: podSecurityContexts can be configured for ceph-csi-rbd chart in MR
  • deploy: instanceID can be optionally configured for ceph-csi charts in MR
  • deploy: radosNamespaceCephFS can be configured for ceph-csi-cephfs chart in MR
RBD
  • rbd: add support for flattenMode option for replication in MR
CephFS
  • cephfs: support omap data store in radosnamespace via cli argument in MR
Ceph distribution update
  • build: update ceph release to squid in MR
  • build: CentOS Stream 9 is used as OS in the container-images MR
What's Changed
CephFS
RBD
Continuous Integration and Testing
Deployment
Documentation
Journaling
Build and Cleanups
Updates of dependencies
New Contributors

Full Changelog: https://github.com/ceph/ceph-csi/compare/v3.11.0...v3.12.0

v3.11.0

Compare Source

3.11.0 release notes

We are excited to announce another release of Ceph CSI, v3.11.0. This is another significant step towards using enhanced Container Storage Interface (CSI) features with Ceph Cluster in the backend. With this release, we are introducing many brand-new features and enhancements to the Ceph CSI driver. Here are the changelog/release highlights.

Changelog and Highlights:
Features
RBD
CephFS
Enhancements
Bug Fixes
E2E
CI
Documentation
New Contributors

Full Changelog: https://github.com/ceph/ceph-csi/compare/v3.10.2...v3.11.0

Thanks to the fantastic Ceph CSI community for this great release 👍 🎉

v3.10.2: Ceph-CSI v3.10.2 Release

Compare Source

What's Changed

Full Changelog: https://github.com/ceph/ceph-csi/compare/v3.10.1...v3.10.2

v3.10.1: Ceph-CSI v3.10.1 Release

Compare Source

What's Changed

Full Changelog: https://github.com/ceph/ceph-csi/compare/v3.10.0...v3.10.1

v3.10.0: Ceph-CSI v3.10.0 Release

Compare Source

3.10.0 release notes

We are excited to announce another feature-packed release of Ceph CSI, v3.10.0. This is another significant step towards using enhanced Container Storage Interface (CSI) features with Ceph Cluster in the backend. With this release, we are introducing many brand-new features and enhancements to the Ceph CSI driver. Here are the changelog/release highlights.

Changelog and Highlights:
Features
RBD
CephFS
NFS
Breaking Changes
  • Removed the deprecated grpc metrics flag's in #​4225
  • Support for pre-creation of cephFS subvolumegroup before creating subvolume is removed in #​4195. Users will need to create the specified(or default csi) subvolumegroup before provisioning CephFS PVC on a new ceph. Refer to deploy-cephfs.md for more details.
Note:
  • Support is limited to only the active Ceph releases. Support for EOLed Ceph releases are removed in #​4262
Enhancements
Bug Fixes
E2E
CI
Documentation
New Contributors ( Thanks !! 👍 )

Full Changelog: https://github.com/ceph/ceph-csi/compare/v3.9.0...v3.10.0

Thanks to the fantastic Ceph CSI community for this great release 👍 🎉

v3.9.0: Ceph-CSI v3.9.0 Release

Compare Source

We are excited to announce another feature-packed release of Ceph CSI, v3.9.0. This is another significant step towards using enhanced Container Storage Interface (CSI) features with Ceph Cluster in the backend. With this release, we are introducing many brand-new features and enhancements to the Ceph CSI driver. Here are the changelog/release highlights.

Changelog and Highlights:
Features
RBD
CephFS
NFS
Breaking Changes
  • #​3902 introduced a breaking change in CephFS driver. Please follow the steps mentioned in the upgrade guide to ensure a smooth upgrade.
  • Volumereplication service running on the controller server is now completely removed and replaced by CSI-Addons. See #​3314 for more details
Enhancements
Bug Fixes
E2E
CI
  • Install Helm with a script located on GitHub by @​nixpanic in #​3843
  • Many Mergify enhancements for better CI resource utilization #​3672 #​3797
  • Added gha-mergify-merge-queue-labels-copier action to better handle merge queue prs #​3809
  • Use the "ceph-csi-bot" account for commenting on MRs by @​nixpanic in #​3877
  • Prevent Retest Workflow from running on forked repos by @​nixpanic in #​3883
  • Do not add ok-to-test if CentOS jobs were successful by @​nixpanic in #​3688
  • Run ci tests on latest k8s versions v1.25, v1.26 and v1.27
New Contributors ( Thanks !! 👍 )

Full Changelog: https://github.com/ceph/ceph-csi/compare/v3.8.0...v3.9.0

Thanks to the fantastic Ceph CSI community for this great release 👍 🎉

v3.8.1: Ceph-CSI v3.8.1 Release

Compare Source

Changelog and Highlights:
Bug Fixes
  • Do not execute rbd sparsify when volume is in use #​3985
  • Fix invalid "invalid encryption kms configuration" error #​3854
  • Limit cryptsetup PBKDF memory usage #​3781
CI
  • Install Helm with script located on GitHub #​3843
  • Disable ceph-iscsi repository #​3959
  • Disable ceph-iscsi repository for test-container builds too #​3965
  • Fix codespell and shell check failures #​3762
  • Update github actions for k8s 1.27 #​3745
Vendor Updates
  • Update golang to 1.19.8 #​3768
  • Update minikube to 1.30 #​3734
  • Bump github.com/hashicorp/vault from 1.4.2 to 1.9.9 #​3712
Documentation
  • Use the Ceph Slack instance and not our silo'ed own one #​3782

Full Changelog: https://github.com/ceph/ceph-csi/compare/v3.8.0...v3.8.1

v3.8.0: Ceph-CSI v3.8.0 Release

Compare Source

We are excited to announce another feature-packed release of Ceph CSI, v3.8.0. This is another significant step towards using enhanced Container Storage Interface ( CSI) features with Ceph Cluster in the backend. With this release, we are introducing many brand-new features and enhancements to the Ceph CSI driver. Also, this release enabled smooth integration into various projects. Here are the changelog/release highlights.

Changelog and Highlights:

Features

RBD
  • fscrypt support #​3310
    • Add fscrypt integration with the Ceph CSI KMS. Supports ext4 on RBD. Snapshots are supported as well.
    • Brief docs for fscrypt support #​3571
  • Provide new command line configuration to enable read affinity #​3639
CephFS
  • Shallow volumes for the ROX accessModes by default #​3651
    • Shallow volumes as default for cephfs ROX clones/restore for better performance.
  • Add fscrypt support for volumes, snapshots, and clones #​3460
    • There are dependencies with kernel and ceph

Enhancements

  • Update kubernetes dependencies to 1.26.1 #​3638
  • Update go-ceph to 0.20.0 #​3678
  • Update packages in release image #​3635
  • Add basic upgrade documentation for Helm Charts #​3655
  • Update rook installation to default latest version #​3610
  • Add extraArgs for sidecars #​3560
  • csidriver added to helper scripts #​3573
  • Lift the minimum supported version of ceph to v15.0.0 #​3513
  • Update csi spec to v1.7.0 #​3503
  • Add commonLabels value to helm charts #​3438

Bug Fixes

  • Make inode metrics optional in FilesystemNodeGetVolumeStats for CephFS #​3407
  • Discover if StagingTargetPath in NodeExpandVolume exists #​3624
  • Set disableInUseChecks on rbd volume #​3605
  • Skip expanding for BackingSnapshot volume #​3586
  • Fix CVEs in image #​3526
  • Ignore stderr for ceph osd blocklist when there is no error #​3524
  • Check volume details from original volumeID #​2931
  • Setup encryption if rbdVol exits during CreateVol #​3422
  • Return error if last sync time is not present #​3489
  • Return abnormal if the mount is corrupted #​3462
  • Fix namespace name update in metadata and rados object #​3477
  • Remove dummy image workaround #​3413
  • Get description from remote status #​3392
  • Fix mdl configuration #​3447
  • ParseAcceptLanguage takes a long time to parse complex tags #​3439

E2E

  • Run E2E tests with kubernetes v1.26 release
  • Many tests are added to make sure we stay with backward compatibility for existing features of v3.7
  • New tests are added for features introduced in this release
  • Lots of cleanup and deprecated API removals were done on the test framework

CI

Breaking Changes

  • Removal of option to run cephcsi as both controller and node server.

New Contributors ( Thanks !! 👍 )

Full Changelog: https://github.com/ceph/ceph-csi/compare/v3.7.2...v3.8.0

Thanks to the awesome Ceph CSI community for this great release 👍 🎉

v3.7.2: Ceph-CSI v3.7.2 Release

Compare Source

Changelog or Highlights:

Bug Fixes:

CephFS

  • Delete subvolume if SetAllMetadata fails #​3435
  • Allow subvolume creation if ceph cluster doesnt support metadata API #​3423

RBD

  • Fix volume leak if metadata operation fails #​3436

Vendor Update

  • Rebase: golang.org/x/text/language to v0.3.8 to fix a vulnerability #​3439

CI improvements

  • Create kubernetes cluster with podman driver #​3420

Breaking Changes

None.

v3.7.1: Ceph-CSI v3.7.1 Release

Compare Source

Bug Fixes:

NOTE

Helm upgrade may fail with message:

UPGRADE FAILED: cannot patch "rbd.csi.ceph.com" with kind CSIDriver: CSIDriver.storage.k8s.io "rbd.csi.ceph.com" is invalid: spec.fsGroupPolicy: Invalid value: "File": field is immutable"
 FAILED! => {"changed": false, "command": "/usr/sbin/helm --version=v3.7.1 upgrade -i --reset-values --create-namespace -f=/tmp/tmp2sr2me9a.yml ceph-csi ceph-csi/ceph-csi-rbd", "msg": "Failure when executing Helm command. Exited 1.\nstdout: \nstderr: Error: UPGRADE FAILED: cannot patch \"rbd.csi.ceph.com\" with kind CSIDriver: CSIDriver.storage.k8s.io \"rbd.csi.ceph.com\" is invalid: spec.fsGroupPolicy: Invalid value: \"File\": field is immutable\n", "stderr": "Error: UPGRADE FAILED: cannot patch \"rbd.csi.ceph.com\" with kind CSIDriver: CSIDriver.storage.k8s.io \"rbd.csi.ceph.com\" is invalid: spec.fsGroupPolicy: Invalid value: \"File\": field is immutable\n", "stderr_lines": ["Error: UPGRADE FAILED: cannot patch \"rbd.csi.ceph.com\" with kind CSIDriver: CSIDriver.storage.k8s.io \"rbd.csi.ceph.com\" is invalid: spec.fsGroupPolicy: Invalid value: \"File\": field is immutable"], "stdout": "", "stdout_lines": []}

If so, delete the csidriver object

kubectl delete csidriver rbd.csi.ceph.com

Then do helm upgrade

v3.7.0: Ceph-CSI v3.7.0 Release

Compare Source

We are excited to announce another feature packed release of Ceph CSI , v3.7.0. This is another great step towards making it possible to use enhanced features of Container Storage Interface ( CSI) with Ceph Cluster in the backend. With this release, we are introducing many brand new features and enhancements to Ceph CSI driver. Also this release enabled a smooth integration to various projects. Here are the changelog / release highlights..

Changelog and Highlights:

Features

  • KMIP integration for RBD PVC encryption
    • The Key Management Interoperability Protocol (KMIP) is an extensible communication protocol that defines message formats for the manipulation of cryptographic keys on a key management server. Ceph-CSI can now be configured to connect to various KMS using KMIP for encrypting RBD volumes.
  • NFS
    • Added support for volume expansion, snapshot, restore and clone.
    • Added NFS nodeserver within CephCSI with support for pod networking with nsenter.
  • Support enabling PV and snapshot metadata on the RBD images and CephFS subvolumes
    • For persistent volumes, clones and volume restores we support adding PVName/PVCName/PVCNamespace and ClusterName details
    • For snapshot volumes we support adding snapshot-name/snapshot-namespace/snapshotcontent-name and ClusterName details
  • Shallow Read Only support for Ceph CSI driver:

Enhancements

  • All kubernetes sidecars ( external provisioner,snapshotter, resizer..etc) are rebased to latest available versions. Along with other dependency module updates this release consume go-ceph v0.17.0 and kubernetes 1.24.4 version.
  • snapshot API support has been lifted to GA version in this release.
  • From this release onwards, the CSI driver make use of File fsgroup policy for its fsgroup based operations.
  • New feature gates are enabled ( HonorPVReclaimPolicy..etc) in the sidecar deployments.

Bug Fixes

  • While mounting the volume, CSI drivers no longer open world wide permission on mount path ( See ).
  • Support linux kernels <=4.11.0, /sys/bus/rbd/supported_features is part of Linux kernel v4.11.0, prepare the supported feature attributes and use them in case if supported_features file is missing (See #​2678)
  • Fix volume healer for StagingTargetPath issue for Kubernetes 1.24 (See #​3176)
  • RBACs are restricted to a great extend in this release version compared to previous. The CSI driver operate on least required RBAC in a cluster from now on.

E2E

  • many tests are added for making sure we stay with backward compatibility for existing features of v3.6.
  • new tests are added for features introduced in this release
  • lots of cleanup and deprecated API removals done on the test framework
  • Dropped support for kubernetes v<=1.22 tests in the framework

Deprecation

Breaking Changes

  • NFS daemonset is renamed from csi-nfs-node to csi-nfsplugin, refer to upgrade steps for more details.

NOTE

Helm upgrade may fail with message:

UPGRADE FAILED: cannot patch "rbd.csi.ceph.com" with kind CSIDriver: CSIDriver.storage.k8s.io "rbd.csi.ceph.com" is invalid: spec.fsGroupPolicy: Invalid value: "File": field is immutable"
 FAILED! => {"changed": false, "command": "/usr/sbin/helm --version=v3.7.0 upgrade -i --reset-values --create-namespace -f=/tmp/tmp2sr2me9a.yml ceph-csi ceph-csi/ceph-csi-rbd", "msg": "Failure when executing Helm command. Exited 1.\nstdout: \nstderr: Error: UPGRADE FAILED: cannot patch \"rbd.csi.ceph.com\" with kind CSIDriver: CSIDriver.storage.k8s.io \"rbd.csi.ceph.com\" is invalid: spec.fsGroupPolicy: Invalid value: \"File\": field is immutable\n", "stderr": "Error: UPGRADE FAILED: cannot patch \"rbd.csi.ceph.com\" with kind CSIDriver: CSIDriver.storage.k8s.io \"rbd.csi.ceph.com\" is invalid: spec.fsGroupPolicy: Invalid value: \"File\": field is immutable\n", "stderr_lines": ["Error: UPGRADE FAILED: cannot patch \"rbd.csi.ceph.com\" with kind CSIDriver: CSIDriver.storage.k8s.io \"rbd.csi.ceph.com\" is invalid: spec.fsGroupPolicy: Invalid value: \"File\": field is immutable"], "stdout": "", "stdout_lines": []}

If so, delete the csidriver object

kubectl delete csidriver rbd.csi.ceph.com

Then do helm upgrade

Release Image : docker pull quay.io/cephcsi/cephcsi:v3.7.0

New Contributors ( Thanks !! 👍 )

Full Changelog: https://github.com/ceph/ceph-csi/compare/v3.6.2...v3.7.0

Thanks to awesome Ceph CSI community for this great release 👍 🎉

v3.6.2: Ceph-CSI v3.6.2 Release

Compare Source

Changelog or Highlights:

Bug Fixes:

  • Add allowPrivilegeEscalation: true to containerSecurityContext to nodeplugin daemonset

NFS

  • Delete the CephFS volume when the export is already removed

RBD

  • Use vaultAuthPath variable name in error msg
  • Support pvc-pvc clone with different sc & encryption
  • Consider rbd as default mounter if not set
  • Fix bug with missing supported_features

CephFS

  • Skip NetNamespaceFilePath if the volume is pre-provisioned

CI improvements

  • Improve logging for kubectl_retry helper
  • Fix commitlint problem
  • Prevent ERR trap inheritance for kubectl_retry

Breaking Changes

None.

v3.6.1: Ceph-CSI v3.6.1 Release

Compare Source

Changelog or Highlights:

Feature:

  • Add network namespace to support pod networking for CephFS and RBD plugins.

Bug Fixes/Enhancements:

NFS

  • Add NFS provisioner & plugin sa to scc.yaml
  • Use go-ceph API for creating/deleting exports
  • Return gRPC status from CephFS CreateVolume failure

RBD

  • Fix logging in ExecuteCommandWithNSEnter
  • Check nbd tool features only for RBD driver
  • Use leases for leader election in RBD omap controller
  • Consider remote image health state for PromoteVolume

Breaking Changes

None.

v3.6.0: Ceph-CSI v3.6.0 Release

Compare Source

We are excited to announce another feature packed release of Ceph CSI , v3.6.0. This is another great step towards making it possible to use enhanced features of Container Storage Interface ( CSI) with Ceph Cluster in the backend. With this release, we are introducing many brand new features and enhancements to Ceph CSI driver. Also this release enabled a smooth integration to various projects. Here are the changelog / release highlights..

Changelog and Highlights:

New Features

NFS based dynamic provisioner:

Ceph-CSI already creates CephFS volumes, that can be mounted over the native CephFS protocol. A new provisioner in Ceph-CSI can create CephFS volumes, and include the required NFS CSI parameters so that the NFS CSI driver can mount the CephFS volume over NFS. The CephFS volumes would be internally managed by the NFS provisioner, and only be exposed as NFS CSI volumes towards the consumers.

Fuse Mount recovery

Mounts managed by ceph-fuse may get corrupted by e.g. the ceph-fuse process exiting abruptly, or its parent container being terminated, taking down its child processes with it. This was an issue for FUSE based CephFS mounts performed by the Ceph CSI driver, however from this release onwards CSI driver is capable of detecting the corrupted ceph fuse mounts and it will try to remount automatically.

AWS KMS Encryption

Ceph-CSI can be configured to use Amazon STS, when kubernetes cluster is configured with OIDC identity provider to fetch credentials to access Amazon KMS. With Amazon STS and kubernetes cluster is configured with OIDC identity provider, credentials to access Amazon KMS can be fetched using oidc-token(serviceaccount token).

Quincy Support

Ceph CSI driver has been built on top of Quincy release of Ceph.

Enhancements

  • Improved RBD image flattening support: from this release onwards, only temporary intermediate clones and snapshot will be flattened. See #​2190 for more details.

  • Topology aware provisioning has been revisited with this release and enhancements have been made to make it more production ready.

  • image features as optional parameter in Storage Class make the rbd images features in the storageclass parameter list as optional so that default image features of librbd can be used.

  • Added support for deep-flatten image feature: as deep-flatten is long supported in ceph and its enabled by default in the librbd, via this enhancement we are providing an option to enable it in cephcsi for the rbd images we are creating.

  • Added selinuxMount flag to enable/disable /etc/selinux host mount: selinuxMount flag has been added to enable/disable /etc/selinux host mount inside pods to support selinux-enabled filesystems

  • A new reference tracker has been introduced with this release which is a key-based implementation of a reference counter. This allows accounting in situations where idempotency must be preserved.

Bug Fixes:

  • BlockMode recalimspace request has been adjusted to avoid data loss on the reclaim space operation

  • RBD and CephFS driver has fixed an issue at node mount operation, to take care explicit permission set done by the CSI driver previous to this release which was causing unwanted pod delay.

  • RBD force promote timeout has been increased to 2 minutes to give enough time for rollback to complete.

  • Storage class map options has been corrected to ensure it works in various combinations of the input setting from the storage class and also made it flexible to work with different mounters like kernel,nbd..etc.

  • Previously, restoring a snapshot with a new PVC results with a wrong dataPoolName in case of initial volume linked to a storageClass with topology constraints and erasure coding. This has been fixed in this release.

  • omap deletion in DeleteSnapshot operation has been fixed with this release which helps to cleanup the omap properly once the subvolume snapshot is deleted.

Rebase

The dependencies of Ceph CSI driver are updated to latest version to consume various fixes and enhancements in the same.

E2E

Documentation

Breaking Changes

  • RBD Thick provisioning support is removed see #​2795 for more details.

Release Image : docker pull quay.io/cephcsi/cephcsi:v3.6.0

Thanks to awesome Ceph CSI community for this great release 👍 🎉

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever MR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this MR and you won't be reminded about this update again.

  • If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Edited by Renovate Bot

Merge request reports