Skip to content

STOR-2758: Rebase to upstream v2.1.0 for OCP 4.22#183

Merged
openshift-merge-bot[bot] merged 30 commits intoopenshift:masterfrom
dfajmon:rebase-v2.1.0
Mar 11, 2026
Merged

STOR-2758: Rebase to upstream v2.1.0 for OCP 4.22#183
openshift-merge-bot[bot] merged 30 commits intoopenshift:masterfrom
dfajmon:rebase-v2.1.0

Conversation

@dfajmon
Copy link
Copy Markdown

@dfajmon dfajmon commented Mar 9, 2026

Issue link
https://issues.redhat.com/browse/STOR-2758

Diff to upstream v2.1.0
kubernetes-csi/external-resizer@v2.1.0...dfajmon:rebase-v2.1.0

Notes for reviewers

Summary of changes

Breaking Changes

  • Users who want to use newest version of this package must modify their go.mod file and use https://github.com/kubernetes-csi/external-resizer/v2 instead of https://github.com/kubernetes-csi/external-resizer and update import paths in the code accordingly (#553)

Major Features

  • A StorageClass can use csi.storage.k8s.io/controller-modify-secret-name and csi.storage.k8s.io/controller-modify-secret-namespace to reference the credentials that should be used to modify a volume according to the parameters of a VolumeAttributeClass. In absence of these credentials, the credentials of controller-expand-secret are used as a fallback. (#544)
  • CSI drivers can now implement the MODIFY_VOLUME capability without needing to implement the EXPAND_VOLUME capability. (#545)

Notable Bug Fixes

  • Fixed a race condition that caused csi-resizer to crash with "concurrent map writes" when multiple resize operations failed simultaneously. (#557)

CVE Fixes

CVE-2025-68121 (updated Go version, #563)

Upstream changelogs

Full changelog

kubernetes-csi/external-resizer@v2.0.0...v2.1.0

Last rebase

#179

@openshift/storage

sunnylovestiramisu and others added 30 commits October 24, 2025 18:55
@sunnylovestiramisu
Update Compatibility session in README
43abdb8
@k8s-ci-robot
Merge pull request kubernetes-csi#539 from sunnylovestiramisu/v1.34
cba05cb 
Update Compatibility session in README
@kishen-v
Update README.md
59a0f2c
@nixpanic
Allow modify without resize support
af378d6 
A CSI driver may implement ControllerModifyVolume without supporting
extending volumes. The csi-resizer should allow this combination too.
@nixpanic
Do not support VolumeExpand within ModifyControllerTest
f51902a
@k8s-ci-robot
Merge pull request kubernetes-csi#545 from nixpanic/split-resize-modify
fe9e0f4 
Allow modify without resize support
@nixpanic
Use credentials when calling ControllerModifyVolume
c5bec27 
Storage providers expect to obtain secrets from the
ControllerMoodifyVolume CSI procedure. Without these credentials, it may
not be possible to apply the parameters of a VolumeAttributeClass.

A CSIPersistentVolumeSource does not have ControllerModifySecretRef
(like ControllerExpandSecretRef), so in order to resolve credentials a
secret reference from annotations on the PersistentVolume are used:
 - volume.kubernetes.io/controller-modify-secret-name
 - volume.kubernetes.io/controller-modify-secret-namespace

In absence of these annotations, the ControllerExpandSecretRef of the
CSIPersistentVolumeSource used as a fallback.
@nixpanic
Pass context from the ModifyController to Modifier.Modify()
9c8a388 
Use Context.TODO() in the top-level modify() call, and pass it along.
@nixpanic
Merge commit 'ef1e9ff9e4b222749b9d869d05d19de3ffd5ea90' into release-…
3c1ac92 
…tools/k8s-1.34

Testing kubernetes-csi/csi-release-tools#289
@nixpanic
Squashed 'release-tools/' changes from 74502e54..bbe5e547
ef1e9ff 
bbe5e547 Use Kubernetes v1.34 and Kind v0.30 by default
4e9eb2c9 Merge pull request kubernetes-csi#288 from gnufied/add-gnufied-for-csi-approver
064e260d Add myself as csi approver
c852fa79 Merge pull request kubernetes-csi#287 from andyzhangx/patch-7
bce16c10 fix: upgrade to go1.24.11 to fix CVE-2025-61727
8d1258cc Merge pull request kubernetes-csi#286 from kubernetes-csi/dependabot/github_actions/actions/checkout-6
91e35981 Bump actions/checkout from 5 to 6
29413815 Merge pull request kubernetes-csi#285 from andyzhangx/patch-6
fa8b339e fix: upgrade to go1.24.9 to fix CVEs

git-subtree-dir: release-tools
git-subtree-split: bbe5e547e2d675e8ac5d0362f2314f73129c5b56
@k8s-ci-robot
Merge pull request kubernetes-csi#549 from nixpanic/release-tools/k8s…
34546a9 
…-1.34

Rebase release-tools to use Kubernetes v1.34 by default
@k8s-ci-robot
Merge pull request kubernetes-csi#544 from nixpanic/ControllerModifyV…
77ead51 
…olume/secrets

Use credentials when calling ControllerModifyVolume
@gnufied
Fix modifyvolume flake
2b098ee
@k8s-ci-robot
Merge pull request kubernetes-csi#550 from gnufied/fix-modify-volume-…
bcdc4d6 
…flake

Fix modifyvolume flake
@k8s-ci-robot
Merge pull request kubernetes-csi#543 from kishen-v/patch-1
9982d04 
Fix broken link to CSI spec
@dfajmon
Merge commit '3e486ef0222415d5ba3722c11db8fa518f10b2df' into k8s-bump
bd8f057
@dfajmon
Squashed 'release-tools/' changes from bbe5e547..d6846630
3e486ef 
d6846630 Merge pull request kubernetes-csi#290 from dfajmon/go-1.25.5
55e527c4 Bump golang to 1.25.5
b12e407c Merge pull request kubernetes-csi#289 from nixpanic/k8s-v1.34

git-subtree-dir: release-tools
git-subtree-split: d6846630bd10e563861ab5fa870f9b815daf1f61
@dfajmon
bump dependencies to kubernetes v1.35
3384680
@k8s-ci-robot
Merge pull request kubernetes-csi#552 from dfajmon/k8s-bump
d1e7825 
Bump dependencies to kubernetes v1.35
@qJkee
update go.mod module to v2
c04ff35 
add v2 path to module name to allign with go dependency
engine rules and allow users to use latest code correctly
@k8s-ci-robot
Merge pull request kubernetes-csi#553 from qJkee/master
c561771 
update go.mod module to v2
@torredil
Fix race condition in finalErrorPVCs map access
664e98e 
Signed-off-by: Eddie Torres <torredil@amazon.com>
@k8s-ci-robot
Merge pull request kubernetes-csi#557 from torredil/fix-finalerrorpvc…
a4628d3 
…s-race-condition

Protect finalErrorPVCs with mutex to prevent concurrent map writes
@jsafrane
Squashed 'release-tools/' changes from d6846630..1e81e752
4de8665 
1e81e752 Merge pull request kubernetes-csi#293 from andyzhangx/patch-9
4dc18505 fix: upgrade to go1.25.7 to fix CVE-2025-61727
b60b9a50 Merge pull request kubernetes-csi#292 from andyzhangx/patch-8
0e4e2ed0 Update Go version from 1.25.5 to 1.25.6 to fix CVE
707a99ec Merge pull request kubernetes-csi#291 from dfajmon/logcheck
a9d2b0fb Bump logcheck to v0.10.0

git-subtree-dir: release-tools
git-subtree-split: 1e81e752e87e027311be882279eac9e292705aa5
@jsafrane
Merge commit '4de8665f964b81cff84fdd32399b516cfd659393' into go-1.25.7
f8f51d1
@k8s-ci-robot
Merge pull request kubernetes-csi#563 from jsafrane/go-1.25.7
e943f18 
Bump csi-release-tools to bring go 1.25.7
@gnufied
Add changelog for 2.1.0
9318280
@k8s-ci-robot
Merge pull request kubernetes-csi#564 from gnufied/add-changelog-201
aa89854 
Add changelog for 2.1.0
@dfajmon
Merge remote-tracking branch 'openshift/master' into rebase-v2.1.0
4caad83
@mpatlasov @dfajmon
UPSTREAM: <carry>: Add OpenShift files
a91a688 
And remove .github
@openshift-ci-robot openshift-ci-robot added the jira/valid-reference Indicates that this PR references a valid Jira ticket of any type. label Mar 9, 2026
@openshift-ci-robot
Copy link
Copy Markdown

openshift-ci-robot commented Mar 9, 2026
edited by openshift-ci Bot
Loading

@dfajmon: This pull request references STOR-2758 which is a valid jira issue.

Details

In response to this:

Issue link
https://issues.redhat.com/browse/STOR-2758

Diff to upstream v2.1.0
kubernetes-csi/external-resizer@v2.1.0...dfajmon:rebase-v2.1.0

Notes for reviewers

Summary of changes

Breaking Changes

  • Users who want to use newest version of this package must modify their go.mod file and use https://github.com/kubernetes-csi/external-resizer/v2 instead of https://github.com/kubernetes-csi/external-resizer and update import paths in the code accordingly (#553)

Major Features

  • A StorageClass can use csi.storage.k8s.io/controller-modify-secret-name and csi.storage.k8s.io/controller-modify-secret-namespace to reference the credentials that should be used to modify a volume according to the parameters of a VolumeAttributeClass. In absence of these credentials, the credentials of controller-expand-secret are used as a fallback. (#544)
  • CSI drivers can now implement the MODIFY_VOLUME capability without needing to implement the EXPAND_VOLUME capability. (#545)

Notable Bug Fixes

  • Fixed a race condition that caused csi-resizer to crash with "concurrent map writes" when multiple resize operations failed simultaneously. (#557)

CVE Fixes

CVE-2025-68121 (updated Go version, #563)

Upstream changelogs

Full changelog

kubernetes-csi/external-resizer@v2.0.0...v2.1.0

Last rebase

#179

@openshift/storage

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

@openshift-ci openshift-ci Bot requested review from rhrmo and tsmetana March 9, 2026 10:57
@openshift-ci
Copy link
Copy Markdown

openshift-ci Bot commented Mar 9, 2026

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: dfajmon

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci openshift-ci Bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Mar 9, 2026
@dfajmon
Copy link
Copy Markdown
Author

dfajmon commented Mar 9, 2026

/retest

@openshift-ci
Copy link
Copy Markdown

openshift-ci Bot commented Mar 9, 2026

@dfajmon: all tests passed!

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

@jsafrane
Copy link
Copy Markdown

jsafrane commented Mar 10, 2026

/lgtm

1 similar comment
@jsafrane
Copy link
Copy Markdown

jsafrane commented Mar 10, 2026

/lgtm

@openshift-ci openshift-ci Bot added the lgtm Indicates that a PR is ready to be merged. label Mar 10, 2026
@duanwei33
Copy link
Copy Markdown

duanwei33 commented Mar 11, 2026

CI results look good, which should be sufficient for merging from QE side.
/verified by @duanwei33

@openshift-ci-robot openshift-ci-robot added the verified Signifies that the PR passed pre-merge verification criteria label Mar 11, 2026
@openshift-ci-robot
Copy link
Copy Markdown

openshift-ci-robot commented Mar 11, 2026

@duanwei33: This PR has been marked as verified by @duanwei33.

Details

In response to this:

CI results look good, which should be sufficient for merging from QE side.
/verified by @duanwei33

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

@openshift-merge-bot openshift-merge-bot Bot merged commit 4e74a4a into openshift:master Mar 11, 2026
11 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rhrmo rhrmo Awaiting requested review from rhrmo

@tsmetana tsmetana Awaiting requested review from tsmetana

Assignees

@jsafrane jsafrane

@chao007 chao007

@duanwei33 duanwei33

@Phaow Phaow

@radeore radeore

Labels

approved Indicates a PR has been approved by an approver from all required OWNERS files. jira/valid-reference Indicates that this PR references a valid Jira ticket of any type. lgtm Indicates that a PR is ready to be merged. verified Signifies that the PR passed pre-merge verification criteria

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.