Commits · v0.0.29 · Mirror / Local Path Provisioner

Sep 03, 2024
- Bump to v0.0.29 · 7a64e376
  Derek Su authored Sep 03, 2024
```
Signed-off-by: Derek Su <derek.su@suse.com>
```
  v0.0.29
  
  7a64e376
Aug 31, 2024

e2e: confirm the cleanup of PVs with legacy affinity attributes · 59a15da2

Jan Grant authored Jun 10, 2024

This applies a small refactor to the e2e tests to ensure that the newer
provisioner is capable of siting helper pods correctly to clean up PVs
with "legacy" affinity constraints.

The kind cluster itself is reconfigured to ensure that all nodes have
`metadata.name` != `metadata.labels["kubernetes.io/hostname"]`, which is
an assumption that does not hold for many cloud providers.

59a15da2

Remove the assumption that a node's name == its hostname · ea957ee7

Jan Grant authored Jun 07, 2024

As per https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/#built-in-node-labels
[[[
Note:
The value of these labels is cloud provider specific and is not guaranteed to be reliable. For example, the value of kubernetes.io/hostname may be the same as the node name in some environments and a different value in other environments.
]]]

ea957ee7

chore(workflow): add "Scan With Trivy and Upload Results to GitHub Security Tab" · 0565283e
Derek Su authored Aug 31, 2024
```
Signed-off-by: Derek Su <derek.su@suse.com>
```
0565283e
Support risc-v · 2cff8602
Derek Su authored Aug 30, 2024
```
Signed-off-by: Derek Su <derek.su@suse.com>
```
2cff8602

Aug 30, 2024

feat: support risc-v platform · 387d080e
Derek Su authored Aug 30, 2024
```
Signed-off-by: Derek Su <derek.su@suse.com>
```
387d080e
vendor: update dependencies · f3062c0d
Derek Su authored Aug 30, 2024
```
Signed-off-by: Derek Su <derek.su@suse.com>
```
f3062c0d

Update to sig-storage-lib-external-provisioner v10.0.1 · 76ddf519

Robert Rose authored Aug 23, 2024

This also requires to update the minimun go version from 1.21 to 1.22.0,
as sig-storage-lib-external-provisioner requires at least go 1.22.0.
Additionally, sig-storage-lib-external-provisioner now uses patch
to modify finalizers on PersistentVolumes, meaning that external
provisioners now need permission rules to patch PersistentVolumes.

https://github.com/kubernetes-sigs/sig-storage-lib-external-provisioner/releases/tag/v10.0.0
https://github.com/kubernetes-sigs/sig-storage-lib-external-provisioner/releases/tag/v10.0.1

Signed-off-by: Robert Rose <robert.rose@mailbox.org>

76ddf519

vendor: update dependencies · 908626e6
Derek Su authored Aug 30, 2024
```
Signed-off-by: Derek Su <derek.su@suse.com>
```
908626e6

Jul 31, 2024

Update Go to 1.22.5 · ed8fd34a

Reinhard Nägele authored Jul 23, 2024

Here's a result from a Trivy scan. This change fixes these CVEs.

Total: 13 (UNKNOWN: 0, LOW: 0, MEDIUM: 11, HIGH: 1, CRITICAL: 1)

┌────────────────────────────┬────────────────┬──────────┬────────┬───────────────────┬─────────────────┬──────────────────────────────────────────────────────────────┐
│          Library           │ Vulnerability  │ Severity │ Status │ Installed Version │  Fixed Version  │                            Title                             │
├────────────────────────────┼────────────────┼──────────┼────────┼───────────────────┼─────────────────┼──────────────────────────────────────────────────────────────┤
│ golang.org/x/crypto        │ CVE-2023-48795 │ MEDIUM   │ fixed  │ v0.14.0           │ 0.17.0          │ ssh: Prefix truncation attack on Binary Packet Protocol      │
│                            │                │          │        │                   │                 │ (BPP)                                                        │
│                            │                │          │        │                   │                 │ https://avd.aquasec.com/nvd/cve-2023-48795                   │
├────────────────────────────┼────────────────┤          │        ├───────────────────┼─────────────────┼──────────────────────────────────────────────────────────────┤
│ golang.org/x/net           │ CVE-2023-45288 │          │        │ v0.17.0           │ 0.23.0          │ golang: net/http, x/net/http2: unlimited number of           │
│                            │                │          │        │                   │                 │ CONTINUATION frames causes DoS                               │
│                            │                │          │        │                   │                 │ https://avd.aquasec.com/nvd/cve-2023-45288                   │
├────────────────────────────┼────────────────┤          │        ├───────────────────┼─────────────────┼──────────────────────────────────────────────────────────────┤
│ google.golang.org/protobuf │ CVE-2024-24786 │          │        │ v1.31.0           │ 1.33.0          │ golang-protobuf: encoding/protojson, internal/encoding/json: │
│                            │                │          │        │                   │                 │ infinite loop in protojson.Unmarshal when unmarshaling       │
│                            │                │          │        │                   │                 │ certain forms of...                                          │
│                            │                │          │        │                   │                 │ https://avd.aquasec.com/nvd/cve-2024-24786                   │
├────────────────────────────┼────────────────┼──────────┤        ├───────────────────┼─────────────────┼──────────────────────────────────────────────────────────────┤
│ stdlib                     │ CVE-2024-24790 │ CRITICAL │        │ 1.21.4            │ 1.21.11, 1.22.4 │ golang: net/netip: Unexpected behavior from Is methods for   │
│                            │                │          │        │                   │                 │ IPv4-mapped IPv6 addresses                                   │
│                            │                │          │        │                   │                 │ https://avd.aquasec.com/nvd/cve-2024-24790                   │
│                            ├────────────────┼──────────┤        │                   ├─────────────────┼──────────────────────────────────────────────────────────────┤
│                            │ CVE-2023-45288 │ HIGH     │        │                   │ 1.21.9, 1.22.2  │ golang: net/http, x/net/http2: unlimited number of           │
│                            │                │          │        │                   │                 │ CONTINUATION frames causes DoS                               │
│                            │                │          │        │                   │                 │ https://avd.aquasec.com/nvd/cve-2023-45288                   │
│                            ├────────────────┼──────────┤        │                   ├─────────────────┼──────────────────────────────────────────────────────────────┤
│                            │ CVE-2023-39326 │ MEDIUM   │        │                   │ 1.20.12, 1.21.5 │ golang: net/http/internal: Denial of Service (DoS) via       │
│                            │                │          │        │                   │                 │ Resource Consumption via HTTP requests...                    │
│                            │                │          │        │                   │                 │ https://avd.aquasec.com/nvd/cve-2023-39326                   │
│                            ├────────────────┤          │        │                   ├─────────────────┼──────────────────────────────────────────────────────────────┤
│                            │ CVE-2023-45289 │          │        │                   │ 1.21.8, 1.22.1  │ golang: net/http/cookiejar: incorrect forwarding of          │
│                            │                │          │        │                   │                 │ sensitive headers and cookies on HTTP redirect...            │
│                            │                │          │        │                   │                 │ https://avd.aquasec.com/nvd/cve-2023-45289                   │
│                            ├────────────────┤          │        │                   │                 ├──────────────────────────────────────────────────────────────┤
│                            │ CVE-2023-45290 │          │        │                   │                 │ golang: net/http: memory exhaustion in                       │
│                            │                │          │        │                   │                 │ Request.ParseMultipartForm                                   │
│                            │                │          │        │                   │                 │ https://avd.aquasec.com/nvd/cve-2023-45290                   │
│                            ├────────────────┤          │        │                   │                 ├──────────────────────────────────────────────────────────────┤
│                            │ CVE-2024-24783 │          │        │                   │                 │ golang: crypto/x509: Verify panics on certificates with an   │
│                            │                │          │        │                   │                 │ unknown public key algorithm...                              │
│                            │                │          │        │                   │                 │ https://avd.aquasec.com/nvd/cve-2024-24783                   │
│                            ├────────────────┤          │        │                   │                 ├──────────────────────────────────────────────────────────────┤
│                            │ CVE-2024-24784 │          │        │                   │                 │ golang: net/mail: comments in display names are incorrectly  │
│                            │                │          │        │                   │                 │ handled                                                      │
│                            │                │          │        │                   │                 │ https://avd.aquasec.com/nvd/cve-2024-24784                   │
│                            ├────────────────┤          │        │                   │                 ├──────────────────────────────────────────────────────────────┤
│                            │ CVE-2024-24785 │          │        │                   │                 │ golang: html/template: errors returned from MarshalJSON      │
│                            │                │          │        │                   │                 │ methods may break template escaping                          │
│                            │                │          │        │                   │                 │ https://avd.aquasec.com/nvd/cve-2024-24785                   │
│                            ├────────────────┤          │        │                   ├─────────────────┼──────────────────────────────────────────────────────────────┤
│                            │ CVE-2024-24789 │          │        │                   │ 1.21.11, 1.22.4 │ golang: archive/zip: Incorrect handling of certain ZIP files │
│                            │                │          │        │                   │                 │ https://avd.aquasec.com/nvd/cve-2024-24789                   │
│                            ├────────────────┤          │        │                   ├─────────────────┼──────────────────────────────────────────────────────────────┤
│                            │ CVE-2024-24791 │          │        │                   │ 1.21.12, 1.22.5 │ net/http: Denial of service due to improper 100-continue     │
│                            │                │          │        │                   │                 │ handling in net/http                                         │
│                            │                │          │        │                   │                 │ https://avd.aquasec.com/nvd/cve-2024-24791                   │
└────────────────────────────┴────────────────┴──────────┴────────┴───────────────────┴─────────────────┴──────────────────────────────────────────────────────────────┘

ed8fd34a

Jun 19, 2024
- chart: update tag to master-head for development branch · 4712284f
  Derek Su authored Jun 19, 2024
```
Signed-off-by: Derek Su <derek.su@suse.com>
```
  4712284f
- Update README.md · 0ff7acf0
  Derek Su authored Jun 19, 2024
```
Signed-off-by: Derek Su <derek.su@suse.com>
```
  0ff7acf0
Jun 18, 2024
- Move helperPod namespace into metadata · dc539e38
  JustusBunsi authored Jun 17, 2024
```
Signed-off-by: justusbunsi <61625851+justusbunsi@users.noreply.github.com>
```
  dc539e38
Jun 14, 2024
- Temporarily disable TestPodWithMultipleStorageClasses · fbf8f989
  Derek Su authored Jun 14, 2024
```
Temporarily disable the flaky test case and fix it later

Signed-off-by: Derek Su <derek.su@suse.com>
```
  fbf8f989
- Revert "Give the helper pod more range of MCS categories" · 4e3741ac
  Derek Su authored Jun 13, 2024
```
This reverts commit c4dc309a.

Signed-off-by: Derek Su <derek.su@suse.com>
```
  4e3741ac
May 30, 2024
- fix(ci): allow to read docker hub secret · 4a77e7c7
  James Lu authored May 30, 2024
```
Signed-off-by: James Lu <james.lu@suse.com>
```
  4a77e7c7
- fix: golangci-lint errors fixed · 8d208075
  James Lu authored May 30, 2024
```
Signed-off-by: James Lu <james.lu@suse.com>
```
  8d208075
- ci: migrating from Drone to github Actions · 16f15ccd
  James Lu authored May 29, 2024
```
Signed-off-by: James Lu <james.lu@suse.com>
```
  16f15ccd
May 29, 2024
- Update README.md · 48a07970
  Derek Su authored May 29, 2024
```
Signed-off-by: Derek Su <derek.su@suse.com>
```
  48a07970
- chart: fix pathPattern · ba0f88fb
  Derek Su authored May 29, 2024
```
Signed-off-by: Derek Su <derek.su@suse.com>
```
  ba0f88fb
May 27, 2024

test: use reclaimPolicy Delete instead · 7b1f9b70

Derek Su authored May 27, 2024



Retain will make the condition check in pod_test.go failed.

Signed-off-by: Derek Su <derek.su@suse.com>

7b1f9b70

Move helperPod values into configmap · 86469fa3
JustusBunsi authored Nov 21, 2023
```
Signed-off-by: justusbunsi <61625851+justusbunsi@users.noreply.github.com>
```
86469fa3

Allow customizing helper pod · cd24746a

JustusBunsi authored Nov 21, 2023



Signed-off-by: justusbunsi <61625851+justusbunsi@users.noreply.github.com>

cd24746a

drone: disable e2e test · 549c7314

Derek Su authored May 27, 2024



drone env is somehow broken. Before moving CI to GitHub Actions, disable the e2e temporarily.

Signed-off-by: Derek Su <derek.su@suse.com>

549c7314

Fix helm README · 116423a0
Mohammad authored Mar 11, 2024
```
add local-path-provisioner to ./deploy/chart in helm command
```
116423a0
Give the helper pod more range of MCS categories · c4dc309a
galal-hussein authored May 22, 2024
```
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
```
c4dc309a
Add e2e test for custom path patterns · ab80ed5b
Derek Su authored May 27, 2024
```
Signed-off-by: Derek Su <derek.su@suse.com>
```
ab80ed5b
adding pvc with node name example · 6d22e44d
Sebastian Ohl authored Jan 23, 2024

6d22e44d

deployment: Add support for the storage class path pattern to the chart · 056e3580

Alban Bedel authored Jan 24, 2024



Add the `pathPattern` parameter to the storage class values so it can
also be configured from the helm chart.

Signed-off-by: Alban Bedel <alban.bedel@aerq.com>

056e3580

Add support for custom path patterns · af85381f

Alban Bedel authored Jan 23, 2024



Add support for the `pathPattern` parameter, if set it is expanded as
a go template with the PV name and PVC metadata as input. This allow
configuring the provisioner to use predictable paths so volumes can be
prefilled externally or re-used.

Signed-off-by: Alban Bedel <alban.bedel@aerq.com>

af85381f

May 26, 2024
- Update readme with provisioner reloading helper pod manifest · 2d1a7094
  Jeremy Scott authored May 09, 2024
  
  2d1a7094
- Add config mount path env to deployments in deploy directory · df5ef312
  Jeremy Scott authored May 09, 2024
  
  df5ef312
- Watch for helper pod manifest updates · d7d9de52
  Jeremy Scott authored Apr 25, 2024
  
  d7d9de52
May 16, 2024
- fix: SWI-11761 fix indentation yet again · 64050fbf
  Vivian Ta authored Mar 29, 2024
  
  64050fbf
- fix: SWI-11761 keep matchLabels since those are immutable · d8de8cf0
  Vivian Ta authored Mar 29, 2024
  
  d8de8cf0
- fix: SWI-11761 fix indentation for helperpod resources · f43d6c22
  Vivian Ta authored Mar 29, 2024
  
  f43d6c22
- fix: SWI-11761 fix indentation for helperpod resources · b6fea097
  Vivian Ta authored Mar 29, 2024
  
  b6fea097
- fix: SWI-11761 add ability to set resources requests/limits for helper pod · d0c33c2e
  Vivian Ta authored Mar 29, 2024
  
  d0c33c2e
May 02, 2024
- Add E2E test for multiple storage classes · 9c53a343
  Andrew Melnick authored Dec 15, 2023
  
  9c53a343
- Make multipleStorageClasses a map, not a list, rename to match config.json name · 90f92695
  Andrew Melnick authored Nov 04, 2023
  
  90f92695