diff --git a/CHANGELOG/CHANGELOG-v0.17.0.yml b/CHANGELOG/CHANGELOG-v0.17.0.yml new file mode 100644 index 0000000000..6caa32386b --- /dev/null +++ b/CHANGELOG/CHANGELOG-v0.17.0.yml @@ -0,0 +1,277 @@ +api: + fixes: + - summary: fix issues with storage class condition display + pull_request: https://github.com/deckhouse/virtualization/pull/947 + - summary: ignore not found error while deleting finalizers + pull_request: https://github.com/deckhouse/virtualization/pull/936 + - summary: Fix the issue of block devices getting stuck in the Terminating phase. + pull_request: https://github.com/deckhouse/virtualization/pull/920 + - summary: fix e2e panic caused wrong assertation + pull_request: https://github.com/deckhouse/virtualization/pull/893 + - summary: fix panic caused by incorrect error formatting + pull_request: https://github.com/deckhouse/virtualization/pull/794 + - summary: >- + Fix network unavailability to dvcr inside a Project with network policy `Restricted` for + block devices with data source type Upload. + pull_request: https://github.com/deckhouse/virtualization/pull/791 +ci: + features: + - summary: add automatic e2e tests + pull_request: https://github.com/deckhouse/virtualization/pull/903 + fixes: + - summary: do not run set_e2e_requirement_status on unlabeled + pull_request: https://github.com/deckhouse/virtualization/pull/946 + - summary: run remove_label job only on PRs + pull_request: https://github.com/deckhouse/virtualization/pull/945 + - summary: prevent pr info job from running on non-PR events + pull_request: https://github.com/deckhouse/virtualization/pull/924 +core: + features: + - summary: >- + Remove the host and host-passthrough virtual machine classes from the installation of + virtualization. If they already exist in the cluster, they will be retained. + pull_request: https://github.com/deckhouse/virtualization/pull/926 + - summary: improve code readability virt-launcher image build + pull_request: https://github.com/deckhouse/virtualization/pull/828 + - summary: >- + Enhance security by restricting access to the virtqemud socket, allowing only the + virt-launcher to connect. + pull_request: https://github.com/deckhouse/virtualization/pull/817 + - summary: >- + Introduce the vlctl tool as a replacement for virsh, compatible with the restricted libvirt + socket. + pull_request: https://github.com/deckhouse/virtualization/pull/817 + - summary: >- + Enhance security by disabling unnecessary admin and read-only servers in libvirt's QEMU and + logging services, reducing potential attack surfaces and preventing the creation of specific + sockets. + pull_request: https://github.com/deckhouse/virtualization/pull/809 + - summary: >- + Enhance security by tracking and verifying synchronized checksums of virtual machine + instances, ensuring that spec changes are consistent and reducing the risk of unauthorized + alterations by an attacker. + pull_request: https://github.com/deckhouse/virtualization/pull/743 + fixes: + - summary: improve antiaffinity rules + pull_request: https://github.com/deckhouse/virtualization/pull/954 + - summary: fix import swtpm binaries and missing libs for swtpm + pull_request: https://github.com/deckhouse/virtualization/pull/953 + - summary: fix importer progress display error + pull_request: https://github.com/deckhouse/virtualization/pull/905 + - summary: Remove missed cdi-uploadproxy image. + pull_request: https://github.com/deckhouse/virtualization/pull/867 + - summary: Fix ValidatingAdmissionPolicy migration hook, it should support Kubernetes 1.28+ + pull_request: https://github.com/deckhouse/virtualization/pull/860 + - summary: Add to cdi config HonorWaitForFirstConsumer + pull_request: https://github.com/deckhouse/virtualization/pull/850 + - summary: >- + Virtual machines can run on Linux nodes with broken implementations of the getsockopt + syscall. + pull_request: https://github.com/deckhouse/virtualization/pull/843 + - summary: >- + Resolve potential compatibility issues related to the truncation of scsi disk serial numbers + in QEMU. + pull_request: https://github.com/deckhouse/virtualization/pull/842 + - summary: Rename internal resources to not conflict with the original Kubevirt installation. + pull_request: https://github.com/deckhouse/virtualization/pull/839 + - summary: add mknod binary to virt-launcher image + pull_request: https://github.com/deckhouse/virtualization/pull/834 + - summary: add blockdev binary to cdi-importer and cdi-controller + pull_request: https://github.com/deckhouse/virtualization/pull/820 + - summary: add swtpm configs and gnutls-utils to virt-launcher image + pull_request: https://github.com/deckhouse/virtualization/pull/819 + - summary: fix symlinks and add missing binaries virt-launcher + pull_request: https://github.com/deckhouse/virtualization/pull/815 + - summary: fix dvcr images imports, cdi components to distroless images + pull_request: https://github.com/deckhouse/virtualization/pull/806 + - summary: Add new emptydirs mounted to `/tmp` and `/var/lib/swtpm-localca` for virt-launcher + pull_request: https://github.com/deckhouse/virtualization/pull/802 + - summary: directories in root such as bin,sbin,etc linked to their respective counterparts in /usr + pull_request: https://github.com/deckhouse/virtualization/pull/789 +cvi: + fixes: + - summary: fix some panics in upload service + pull_request: https://github.com/deckhouse/virtualization/pull/906 + - summary: add the omitted watcher for vd snapshots + pull_request: https://github.com/deckhouse/virtualization/pull/880 +docs: + fixes: + - summary: fix typo in shell command of creating branch in CONTRIBUTING.md + pull_request: https://github.com/deckhouse/virtualization/pull/858 + - summary: delete russian language and keyboard layout in english autounattend.xml + pull_request: https://github.com/deckhouse/virtualization/pull/784 +dvcr: + features: + - summary: add yes flag to dvcr-cleaner + pull_request: https://github.com/deckhouse/virtualization/pull/805 +images: + fixes: + - summary: fix unprotect uploader with nil pod arg + pull_request: https://github.com/deckhouse/virtualization/pull/899 +kubevirt: + features: + - summary: >- + Modify the behavior of domain reboot actions in virt-launcher by overriding the default + reboot policy. + pull_request: https://github.com/deckhouse/virtualization/pull/838 + - summary: Remove init container etc-libvirt-init and handle setup in virt-launcher + pull_request: https://github.com/deckhouse/virtualization/pull/811 + - summary: Set readOnly for file system in virtual machine pods. + pull_request: https://github.com/deckhouse/virtualization/pull/774 + fixes: + - summary: change yaml patch to json + pull_request: https://github.com/deckhouse/virtualization/pull/917 + - summary: Add Patch Permissions for DS virt-handler on VMI + pull_request: https://github.com/deckhouse/virtualization/pull/872 + - summary: add limits for init container `etc-libvirt-init` + pull_request: https://github.com/deckhouse/virtualization/pull/793 + - summary: >- + fix hotplug container disk mounter blocking the queue when virt-handler attempts to + reconcile ghost records + pull_request: https://github.com/deckhouse/virtualization/pull/717 +module: + fixes: + - summary: >- + Fix the Kubernetes version switch issue during updates from 1.29 to 1.30 in newer Deckhouse + versions (1.69+). + pull_request: https://github.com/deckhouse/virtualization/pull/986 + - summary: add CRD check for DVCR ServiceMonitor and ScrapeConfig + pull_request: https://github.com/deckhouse/virtualization/pull/884 + - summary: fix OS Windows mountpoint promql + pull_request: https://github.com/deckhouse/virtualization/pull/864 +observability: + features: + - summary: Add a Grafana dashboard for monitoring virtual machine metrics. + pull_request: https://github.com/deckhouse/virtualization/pull/861 + - summary: Add a Prometheus metric indicating the readiness of the virtual machine agent. + pull_request: https://github.com/deckhouse/virtualization/pull/848 +vd: + features: + - summary: Optimize the creation time for empty (blank) disks. + pull_request: https://github.com/deckhouse/virtualization/pull/786 + - summary: Improve the user experience for virtual disks by hiding irrelevant conditions. + pull_request: https://github.com/deckhouse/virtualization/pull/780 + fixes: + - summary: The `VirtualImageDefaultStorageClass` from the `ModuleConfig` is handled correctly now. + pull_request: https://github.com/deckhouse/virtualization/pull/929 + - summary: return a named error when VirtualImage is not found to avoid throw handler error + pull_request: https://github.com/deckhouse/virtualization/pull/889 + - summary: watch pvc creation events + pull_request: https://github.com/deckhouse/virtualization/pull/808 + - summary: >- + Remove the phase 'Stopped' during startup when launching a virtual machine with the run + policies AlwaysOn and AlwaysOnUnlessStopManually. Improve the message in the + BlockDeviceReady condition for the virtual machine. + pull_request: https://github.com/deckhouse/virtualization/pull/782 + - summary: fix resizing handler and cover it with unit tests + pull_request: https://github.com/deckhouse/virtualization/pull/685 +vi: + fixes: + - summary: The `VirtualImageDefaultStorageClass` from the `ModuleConfig` is handled correctly now. + pull_request: https://github.com/deckhouse/virtualization/pull/929 + - summary: bug fixes related to VirtualImage and VDSnapshot ObjectRef + pull_request: https://github.com/deckhouse/virtualization/pull/781 +vm: + features: + - summary: >- + Add new reasons for the `Completed` condition of `VirtualMachineOperation` to communicate + the current progress and status of the requested virtual machine migration to the user. + pull_request: https://github.com/deckhouse/virtualization/pull/957 + - summary: add alert to control outdated VirtualMachines firmware + pull_request: https://github.com/deckhouse/virtualization/pull/934 + - summary: >- + Implement a controller to evacuate virtual machines whose pods have been requested for + evacuation. It creates a `VirtualMachineOperation` to migrate the virtual machine. + Information about the required evacuation will be displayed in the status of the virtual + machine. + pull_request: https://github.com/deckhouse/virtualization/pull/919 + - summary: >- + Introduce hypervisor versions in the status of virtual machines to provide detailed + information about the versions of QEMU and libvirt used by the hypervisor. + pull_request: https://github.com/deckhouse/virtualization/pull/907 + - summary: Add regexp log parser + pull_request: https://github.com/deckhouse/virtualization/pull/904 + - summary: >- + Implement a controller to update the firmware version of virtual machines when the + virtualization version is updated. This controller initiates a `VirtualMachineOperation` to + migrate the virtual machine to the new firmware version. Information about the update + process or any user-required actions will be reflected in the virtual machine's condition. + pull_request: https://github.com/deckhouse/virtualization/pull/881 + - summary: >- + Implement the ability to cancel the migration of a virtual machine by deleting the + corresponding `VirtualMachineOperation` resource. + pull_request: https://github.com/deckhouse/virtualization/pull/857 + - summary: refactor power state handler and add unit tests + pull_request: https://github.com/deckhouse/virtualization/pull/770 + - summary: >- + Implement an automatic CPU topology configuration mechanism for the virtual machines. The + number of cores/sockets depends on the number of cores in `.spec.cpu.cores`. For more + details, refer to the documentation. + pull_request: https://github.com/deckhouse/virtualization/pull/747 + - summary: Add hot-plugged images to the status of the virtual machine. + pull_request: https://github.com/deckhouse/virtualization/pull/681 + fixes: + - summary: increase timeout for migration abort + pull_request: https://github.com/deckhouse/virtualization/pull/973 + - summary: Choose a correct active pod to show in the VM status + pull_request: https://github.com/deckhouse/virtualization/pull/967 + - summary: Improve BlockDevicesReady's condition message + pull_request: https://github.com/deckhouse/virtualization/pull/949 + - summary: Wait virt-controller will be ready with correct virt-launcher image + pull_request: https://github.com/deckhouse/virtualization/pull/923 + - summary: Resolve EFI bootloader issues with more than 8 cores. + pull_request: https://github.com/deckhouse/virtualization/pull/910 + - summary: Suppressed the output of internal virtual machine error when a pod is unschedulable. + pull_request: https://github.com/deckhouse/virtualization/pull/898 + - summary: fix errors with power state operations + pull_request: https://github.com/deckhouse/virtualization/pull/873 + - summary: >- + Fix a bug with the early deletion of resource VirtualMachineBlockDeviceAttachment. Now it is + deleted only after detachment is completed. + pull_request: https://github.com/deckhouse/virtualization/pull/841 + - summary: correct maximum CPU sockets assignment in domain specification + pull_request: https://github.com/deckhouse/virtualization/pull/832 + - summary: fix start VM after change run policy from AlwaysOff + pull_request: https://github.com/deckhouse/virtualization/pull/825 + - summary: correct CPU core validation logic for range checks + pull_request: https://github.com/deckhouse/virtualization/pull/824 + - summary: fix description in generated code + pull_request: https://github.com/deckhouse/virtualization/pull/818 + - summary: Redesign and improve BlockDeviceReady condition messages of virtual machine. + pull_request: https://github.com/deckhouse/virtualization/pull/800 + - summary: fix filesystem frozen condition blinks + pull_request: https://github.com/deckhouse/virtualization/pull/795 + - summary: Rename FilesystemReady condition of virtual machine to FilesystemFrozen. + pull_request: https://github.com/deckhouse/virtualization/pull/714 + - summary: >- + Add a new error message that appears when a virtual machine is unable to freeze its + filesystem because the agent is not ready to perform this operation. + pull_request: https://github.com/deckhouse/virtualization/pull/713 +vmbda: + fixes: + - summary: check unplug ability for prefixed block device name + pull_request: https://github.com/deckhouse/virtualization/pull/814 + - summary: >- + Fix a bug that prevented the deletion of the VirtualMachineBlockDeviceAttachment when its + block device was already specified in the virtual machine's specification. + pull_request: https://github.com/deckhouse/virtualization/pull/760 +vmip: + fixes: + - summary: Fixed double creation of VirtualMachineIPAddressLease + pull_request: https://github.com/deckhouse/virtualization/pull/976 + - summary: Improve Status Reporting + pull_request: https://github.com/deckhouse/virtualization/pull/948 +vmop: + features: + - summary: add test vmop migration cancel + pull_request: https://github.com/deckhouse/virtualization/pull/933 + fixes: + - summary: fix panic when migration failed + pull_request: https://github.com/deckhouse/virtualization/pull/974 + - summary: wait correct abort status when migration canceled + pull_request: https://github.com/deckhouse/virtualization/pull/951 +vmrestore: + fixes: + - summary: Handle the `vm.spec.provisioning` correctly when its value is empty. + pull_request: https://github.com/deckhouse/virtualization/pull/971 + diff --git a/CHANGELOG/CHANGELOG-v0.17.md b/CHANGELOG/CHANGELOG-v0.17.md new file mode 100644 index 0000000000..2fc8d91d12 --- /dev/null +++ b/CHANGELOG/CHANGELOG-v0.17.md @@ -0,0 +1,50 @@ +# Changelog v0.17 + +## Features + + + - **[core]** Remove the host and host-passthrough virtual machine classes from the installation of virtualization. If they already exist in the cluster, they will be retained. [#926](https://github.com/deckhouse/virtualization/pull/926) + - **[core]** Enhance security by restricting access to the virtqemud socket, allowing only the virt-launcher to connect. [#817](https://github.com/deckhouse/virtualization/pull/817) + - **[core]** Introduce the vlctl tool as a replacement for virsh, compatible with the restricted libvirt socket. [#817](https://github.com/deckhouse/virtualization/pull/817) + - **[core]** Enhance security by disabling unnecessary admin and read-only servers in libvirt's QEMU and logging services, reducing potential attack surfaces and preventing the creation of specific sockets. [#809](https://github.com/deckhouse/virtualization/pull/809) + - **[core]** Enhance security by tracking and verifying synchronized checksums of virtual machine instances, ensuring that spec changes are consistent and reducing the risk of unauthorized alterations by an attacker. [#743](https://github.com/deckhouse/virtualization/pull/743) + - **[observability]** Add a Grafana dashboard for monitoring virtual machine metrics. [#861](https://github.com/deckhouse/virtualization/pull/861) + - **[observability]** Add a Prometheus metric indicating the readiness of the virtual machine agent. [#848](https://github.com/deckhouse/virtualization/pull/848) + - **[vd]** Optimize the creation time for empty (blank) disks. [#786](https://github.com/deckhouse/virtualization/pull/786) + - **[vd]** Improve the user experience for virtual disks by hiding irrelevant conditions. [#780](https://github.com/deckhouse/virtualization/pull/780) + - **[vm]** Add new reasons for the `Completed` condition of `VirtualMachineOperation` to communicate the current progress and status of the requested virtual machine migration to the user. [#957](https://github.com/deckhouse/virtualization/pull/957) + - **[vm]** Implement a controller to evacuate virtual machines whose pods have been requested for evacuation. It creates a `VirtualMachineOperation` to migrate the virtual machine. Information about the required evacuation will be displayed in the status of the virtual machine. [#919](https://github.com/deckhouse/virtualization/pull/919) + - **[vm]** Introduce hypervisor versions in the status of virtual machines to provide detailed information about the versions of QEMU and libvirt used by the hypervisor. [#907](https://github.com/deckhouse/virtualization/pull/907) + - **[vm]** Implement a controller to update the firmware version of virtual machines when the virtualization version is updated. This controller initiates a `VirtualMachineOperation` to migrate the virtual machine to the new firmware version. Information about the update process or any user-required actions will be reflected in the virtual machine's condition. [#881](https://github.com/deckhouse/virtualization/pull/881) + - **[vm]** Implement the ability to cancel the migration of a virtual machine by deleting the corresponding `VirtualMachineOperation` resource. [#857](https://github.com/deckhouse/virtualization/pull/857) + - **[vm]** Implement an automatic CPU topology configuration mechanism for the virtual machines. The number of cores/sockets depends on the number of cores in `.spec.cpu.cores`. For more details, refer to the documentation. [#747](https://github.com/deckhouse/virtualization/pull/747) + - **[vm]** Add hot-plugged images to the status of the virtual machine. [#681](https://github.com/deckhouse/virtualization/pull/681) + +## Fixes + + + - **[api]** Fix the issue of block devices getting stuck in the Terminating phase. [#920](https://github.com/deckhouse/virtualization/pull/920) + - **[api]** Fix network unavailability to dvcr inside a Project with network policy `Restricted` for block devices with data source type Upload. [#791](https://github.com/deckhouse/virtualization/pull/791) + - **[core]** Resolve potential compatibility issues related to the truncation of scsi disk serial numbers in QEMU. [#842](https://github.com/deckhouse/virtualization/pull/842) + - **[module]** Fix the Kubernetes version switch issue during updates from 1.29 to 1.30 in newer Deckhouse versions (1.69+). [#986](https://github.com/deckhouse/virtualization/pull/986) + - **[vd]** Remove the phase 'Stopped' during startup when launching a virtual machine with the run policies AlwaysOn and AlwaysOnUnlessStopManually. Improve the message in the BlockDeviceReady condition for the virtual machine. [#782](https://github.com/deckhouse/virtualization/pull/782) + - **[vm]** Resolve EFI bootloader issues with more than 8 cores. [#910](https://github.com/deckhouse/virtualization/pull/910) + - **[vm]** Fix a bug with the early deletion of resource VirtualMachineBlockDeviceAttachment. Now it is deleted only after detachment is completed. [#841](https://github.com/deckhouse/virtualization/pull/841) + - **[vm]** Redesign and improve BlockDeviceReady condition messages of virtual machine. [#800](https://github.com/deckhouse/virtualization/pull/800) + - **[vm]** Rename FilesystemReady condition of virtual machine to FilesystemFrozen. [#714](https://github.com/deckhouse/virtualization/pull/714) + - **[vm]** Add a new error message that appears when a virtual machine is unable to freeze its filesystem because the agent is not ready to perform this operation. [#713](https://github.com/deckhouse/virtualization/pull/713) + +## Chore + + + - **[core]** Change vm-router-forge image to distroless. [#790](https://github.com/deckhouse/virtualization/pull/790) + - **[core]** Change virt-launcher image to distroless. [#773](https://github.com/deckhouse/virtualization/pull/773) + - **[core]** Change distroless user to deckhouse. [#757](https://github.com/deckhouse/virtualization/pull/757) + - **[core]** Change virt-handler image to distroless. [#748](https://github.com/deckhouse/virtualization/pull/748) + - **[core]** Change virtualization-api and virtualization-controller images to distroless. [#745](https://github.com/deckhouse/virtualization/pull/745) + - **[core]** Change virt-operator image to distroless. [#744](https://github.com/deckhouse/virtualization/pull/744) + - **[core]** Change dvcr images to distroless. [#715](https://github.com/deckhouse/virtualization/pull/715) + - **[docs]** Updated the documentation in accordance with version 0.17.0 updates of virtualization. [#897](https://github.com/deckhouse/virtualization/pull/897) + - **[docs]** Add more cloud image sources to the admin guide in the documentation. [#813](https://github.com/deckhouse/virtualization/pull/813) + - **[docs]** Add ansible provisioning guide to FAQ in the documentation. [#803](https://github.com/deckhouse/virtualization/pull/803) +