K8SPG-864: add sidecarPVCs and sidecarVolumes

[pooknull]

https://perconadev.atlassian.net/browse/K8SPG-864

DESCRIPTION

This PR adds the following fields to the cr.yaml:

• .spec.instances[].sidecarPVCs
• .spec.instances[].sidecarVolumes
• .spec.proxy.pgBouncer.sidecarPVCs
• .spec.proxy.pgBouncer.sidecarVolumes
• .spec.backups.pgbackrest.repoHost.sidecarPVCs
• .spec.backups.pgbackrest.repoHost.sidecarVolumes

The sidecarPVCs field defines PersistentVolumeClaims that should be created and associated with a specific resource. Example:

sidecarPVCs:
- name: sidecar-volume-claim
  spec:
    resources:
      requests:
        storage: 1Gi
    volumeMode: Filesystem
    accessModes:
      - ReadWriteOnce

The sidecarVolumes field defines volumes that should be attached to a specific resource. Example:

sidecarVolumes:
- name: sidecar-secret
  secret:
    secretName: mysecret
- name: sidecar-config
  configMap:
    name: myconfigmap
- name: backup-nfs
  nfs:
    server: "nfs-service.storage.svc.cluster.local"
    path: "/pg-some-name"

Helm PR: percona/percona-helm-charts#783

CHECKLIST

Jira

• Is the Jira ticket created and referenced properly?
• Does the Jira ticket have the proper statuses for documentation (Needs Doc) and QA (Needs QA)?
• Does the Jira ticket link to the proper milestone (Fix Version field)?

Tests

• Is an E2E test/test case added for the new feature/change?
• Are unit tests added where appropriate?

Config/Logging/Testability

• Are all needed new/changed options added to default YAML files?
• Are all needed new/changed options added to the Helm Chart?
• Did we add proper logging messages for operator actions?
• Did we ensure compatibility with the previous version or cluster upgrade process?
• Does the change support oldest and newest supported PG version?
• Does the change support oldest and newest supported Kubernetes version?

[egegunes]

does this mean that users can only add sidecar PVCs while creating clusters? i guess we had the same limitation in other operators.

[egegunes]

but if we are creating PVCs ourselves why don't we just add them into statefulset volumes so they can also be added after cluster creation?

[egegunes]

ok, i now realized we're doing this only for pgbouncer because it's a deployment. but if we do this for all, we'd overcome the limitation of adding sidecar pvcs after creation

[pooknull]

fb1cad2

[egegunes]

i don't think we should downgrade

[pooknull]

de3bcda

[egegunes]

why this was deleted?

[pooknull]

772b800

[gkech]

should we have some sort of labels added here so that we know that these pvcs are created by the operator?

[pooknull]

b10f5da

[gkech]

What should happen if the pvcs are updated in terms of specs? should we update them of skip?

[pooknull]

cbc67f5

[gkech]

let's check also why unit tests are failing on this pr

Run make check
REGISTRY_NAME is not set
Updated IMAGE to: docker.io/perconalab/percona-postgresql-operator:head
docker.io/perconalab/percona-postgresql-operator:head
git -C 'hack/tools/' clone https://github.com/CrunchyData/pgmonitor.git || git -C 'hack/tools/pgmonitor' fetch origin
fatal: cannot change to 'hack/tools/': No such file or directory
fatal: cannot change to 'hack/tools/pgmonitor': No such file or directory
make: *** [Makefile:49: get-pgmonitor] Error 128
Error: Process completed with exit code 2.

[Copilot]

Pull request overview

Adds support for configuring extra volumes and operator-managed PVCs for sidecar containers across instance pods, pgBouncer, and pgBackRest repoHost, along with the necessary API/plumbing, RBAC, and tests.

Changes:

• Extend CRDs/types with sidecarVolumes and sidecarPVCs for instances, pgBouncer, and pgBackRest repoHost.
• Reconcile pod specs to mount the configured sidecar volumes/PVCs, and add a controller reconciler to create/update the defined PVCs.
• Update RBAC and sidecar-related unit/E2E tests to cover the new fields.

Reviewed changes

Copilot reviewed 20 out of 28 changed files in this pull request and generated 10 comments.

Show a summary per file

File	Description
pkg/apis/postgres-operator.crunchydata.com/v1beta1/zz_generated.deepcopy.go	Deepcopy updates for new fields and new SidecarPVC type.
pkg/apis/postgres-operator.crunchydata.com/v1beta1/postgrescluster_types.go	Adds sidecarVolumes/sidecarPVCs to instance set spec + defines SidecarPVC.
pkg/apis/postgres-operator.crunchydata.com/v1beta1/pgbouncer_types.go	Adds sidecarVolumes/sidecarPVCs to pgBouncer pod spec.
pkg/apis/postgres-operator.crunchydata.com/v1beta1/pgbackrest_types.go	Adds sidecarVolumes/sidecarPVCs to pgBackRest repoHost spec.
pkg/apis/pgv2.percona.com/v2/zz_generated.deepcopy.go	Deepcopy updates for new Percona API fields.
pkg/apis/pgv2.percona.com/v2/perconapgcluster_types.go	Adds Percona-level fields and maps them through ToCrunchy().
percona/controller/pgcluster/pvc.go	New reconciler to create/update PVCs declared via sidecarPVCs.
percona/controller/pgcluster/controller_test.go	Extends sidecar tests to assert volumes + PVC-backed volumes are present.
percona/controller/pgcluster/controller.go	Calls PVC reconciler and adds PVC RBAC marker.
internal/postgres/reconcile.go	Adds sidecarVolumes to instance pods (version-gated).
internal/pgbouncer/reconcile.go	Adds sidecarVolumes and PVC-backed volumes to pgBouncer pod spec (version-gated).
internal/controller/postgrescluster/pgbackrest.go	Adds sidecarVolumes and PVC-backed volumes to repoHost pod template (version-gated).
internal/controller/postgrescluster/instance.go	Adds PVC-backed volumes to instance StatefulSet pod template (version-gated).
e2e-tests/tests/sidecars/01-create-cluster.yaml	Sets sidecarVolumes/sidecarPVCs fields in the sidecars E2E test.
e2e-tests/tests/sidecars/01-assert.yaml	Adds assertions for PVC creation/binding in the sidecars E2E test.
deploy/rbac.yaml	Grants PVC verbs in deployment RBAC.
deploy/cw-rbac.yaml	Same RBAC updates for cw deployment.
config/rbac/namespace/role.yaml	Grants PVC verbs in generated namespace Role.
config/rbac/cluster/role.yaml	Grants PVC verbs in generated cluster Role.
Makefile	Minor formatting/line fix in after-release target.

[hors]

@pooknull please check sidecars test

[Copilot]

Pull request overview

Copilot reviewed 20 out of 28 changed files in this pull request and generated 5 comments.

[JNKPercona]

Test Name	Result	Time
backup-enable-disable	passed	00:05:40
builtin-extensions	passed	00:04:53
custom-envs	passed	00:19:38
custom-extensions	passed	00:13:43
custom-tls	passed	00:05:13
database-init-sql	passed	00:02:35
demand-backup	passed	00:24:22
demand-backup-offline-snapshot	passed	00:13:10
dynamic-configuration	passed	00:03:11
finalizers	passed	00:03:43
init-deploy	passed	00:02:46
huge-pages	passed	00:03:04
monitoring	passed	00:06:55
monitoring-pmm3	passed	00:11:40
one-pod	passed	00:05:55
operator-self-healing	passed	00:08:59
pitr	passed	00:11:59
scaling	passed	00:04:45
scheduled-backup	passed	00:27:21
self-healing	passed	00:08:43
sidecars	passed	00:02:50
standby-pgbackrest	passed	00:12:01
standby-streaming	passed	00:09:15
start-from-backup	passed	00:10:56
tablespaces	passed	00:06:47
telemetry-transfer	passed	00:03:40
upgrade-consistency	passed	00:04:39
upgrade-minor	passed	00:05:01
users	passed	00:04:36

Summary	Value
Tests Run	29/29
Job Duration	01:29:20
Total Test Time	04:08:14

commit: 4866e97
image: perconalab/percona-postgresql-operator:PR-1394-4866e9719

[egegunes]

@pooknull should we delete these PVCs if percona.com/delete-pvc finalizer exists?

[pooknull]

@pooknull should we delete these PVCs if percona.com/delete-pvc finalizer exists?

The current implementation of percona.com/delete-pvc will delete sidecarPVCs. Do you want to introduce a new finalizer for deletion of these PVCs?

[Copilot]

Copilot was unable to review this pull request because the user who requested the review is ineligible. To be eligible to request a review, you need a paid Copilot license, or your organization must enable Copilot code review.