feat: Nutanix VM image preflight check #1130
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
dlipovetsky
force-pushed
the
dlipovetsky/preflight-nutanix-vmimage
branch
from
4780b5f to
265a77a
Compare
dlipovetsky
force-pushed
the
dlipovetsky/preflight-nutanix-vmimage
branch
4 times, most recently
from
fb9d8a1 to
f0cb9f8
Compare
|
Preflight failures work nicely! Not sure it's what we want here but at least it works! |
|
The Nutanix e2e test is failing because it uses imageLookup, and the check does not yet support that. I'm working on it. Update: I will add support for imageLookup in a separate PR. For now, we will allow it with a warning. > kubectl create --dry-run=server -f test-cluster.yaml
Warning: cluster.spec.topology.workers.machineDeployments[.name=md-0].variables[.name=workerConfig].value.nutanix.machineDetails uses imageLookup, which is not yet supported by checks
cluster.cluster.x-k8s.io/dlag created (server dry run) |
dlipovetsky
force-pushed
the
dlipovetsky/preflight-nutanix-vmimage
branch
from
ca0bc94 to
f440ff1
Compare
|
From @yanhua121: If the credential check fails, failures from other checks are just noise. Can we exclude them? Update: Addressed in 7cc0676 |
dlipovetsky
force-pushed
the
dlipovetsky/preflight-nutanix-vmimage
branch
from
98103a7 to
a1a08d3
Compare
dkoshkin
reviewed
Jun 11, 2025
dlipovetsky
force-pushed
the
dlipovetsky/preflight-nutanix-vmimage
branch
from
6ab50f2 to
93299d2
Compare
|
|
dlipovetsky
force-pushed
the
dlipovetsky/preflight-nutanix-vmimage
branch
from
93299d2 to
365033c
Compare
dkoshkin
approved these changes
Jun 17, 2025
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
Automated PR Comment From Black Duck SCA❌ Found dependencies violating policy!
|
|
Neither of the two failing checks failed before... |
|
Blackduck is giving a false negative here. github.com/samber/lo has had an MIT license since its initial commit. And it has the same license in the v1.51.0 tag: https://github.com/samber/lo/blob/v1.51.0/LICENSE (For reference, the dependency was changed by #1160, and the Blackduck scan also failed for the same reason there) |
Allow imageLookup with warning
Mock nutanix clients to allow unit tests
* Refactor nutanixChecker to allow unit tests of all checks. * Add unit tests. * Fix field reported when spec init for worker spec fails. * Fix handling of credentials "Insecure" option. * Use lowercase 'v' in errors that refers to the Nutanix client
Use the correct check name
Run VM Image check only if Nutanix clients are initialized. This avoids returning errors that are not actionable. The user will see an error from the credentials check only.
Remove unused v4 client mock
Merge separate v3 and v4 clients into one
Remove unused code
Implement Check interface.
Refactor to simplify, and remove need to checker factory.
Address linter complaint
dlipovetsky
force-pushed
the
dlipovetsky/preflight-nutanix-vmimage
branch
from
97075a2 to
ed9b787
Compare
|
Rebased because #1164 merged. |
thunderboltsid
approved these changes
Jun 17, 2025
Merged
supershal
added a commit
that referenced
this pull request
Jun 24, 2025
🤖 I have created a release *beep* *boop* --- ## 0.30.0 (2025-06-24) <!-- Release notes generated using configuration in .github/release.yaml at main --> ## What's Changed ### Exciting New Features 🎉 * feat: Build with Go 1.24.4 to fix CVEs by @jimmidyson in #1157 * feat: add requests and limits to registry containers by @dkoshkin in #1158 * feat: Add preflight checks framework by @dlipovetsky in #1129 * feat: Preflight check opt-out by @dlipovetsky in #1156 * feat: Nutanix VM image preflight check by @dlipovetsky in #1130 * feat: update addons by @dkoshkin in #1168 * feat: Enforce MD replicas within cluster autoscaler bounds by @jimmidyson in #1169 * feat(preflight): Storage container checks for Nutanix by @thunderboltsid in #1136 * feat: update Nutanix CSI to 3.3.4 by @dkoshkin in #1179 ### Fixes 🔧 * fix: update CNCF registry version to 2.3.4, app version 2.8.3 by @dkoshkin in #1150 * fix: registry addon headless service port by @dkoshkin in #1159 * fix: preserve registry addon root CA on move by @dkoshkin in #1155 * fix: Add noderegistration patch to previous handler by @jimmidyson in #1177 ### Other Changes * build: include regclient/regsync image for registry addon by @dkoshkin in #1148 * test: Add update test helpers by @jimmidyson in #1162 * test(e2e): Nutanix 1.33.1 testing by @jimmidyson in #1164 * build: Update all tools by @jimmidyson in #1165 * refactor: add global feature.Gates variable by @dkoshkin in #1167 * ci: new env variable to set --feature-gates by @dkoshkin in #1166 * build: github.com/hashicorp/go-retryablehttp@v0.7.8 to fix CVE by @jimmidyson in #1170 * docs: Update link to default Cilium values in cni.md by @yannickstruyf3 in #1173 * docs: Fix up Cilium config link (again) & icons by @jimmidyson in #1176 ## New Contributors * @yannickstruyf3 made their first contribution in #1173 **Full Changelog**: v0.29.0...v0.30.0 --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). --------- Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: Shalin Patel <shalin.patel@nutanix.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What problem does this PR solve?:
Implements a preflight check that verifies the Nutanix VM images referenced by the Cluster spec.
The VM IMages check reads various various topology variables, and I have defined a pseudo-check that intializes the variables from the Cluster spec.
The VM Images check also uses a Prism Central API client. I have defined a pseudo-check that initializes this client.
Which issue(s) this PR fixes:
Fixes #
How Has This Been Tested?:
Special notes for your reviewer:
Stacked on #1129
I am working on unit tests. The Nutanix client is difficult to mock, so creating the tests is taking more time than I expected.