The release of the free PaaS platform Cozystack 0.30.0, built on Kubernetes, is available. The project aims to provide a ready-made platform for hosting providers and a framework for building private and public clouds. The platform is installed directly on servers and covers all aspects of preparing the infrastructure for providing managed services. Cozystack allows you to launch and provide Kubernetes clusters, databases, and virtual machines. The platform code is available on GitHub and is distributed under the Apache-2.0 license.
Talos Linux and Flux CD are used as the base technology stack. Images with the system, kernel and necessary modules are generated in advance and updated atomically, which allows you to do without components such as dkms and a package manager and guarantee stable operation. Provides a simple installation method in an empty data center using PXE and the Debian-like talos-bootstrap installer.
The platform includes a free implementation network infrastructure (fabric) based on Kube-OVN, it uses Cilium for service mesh organization and MetalLB for service advertising. Storage is implemented on LINSTOR, which uses ZFS as the underlying storage layer and DRBD for replication. A pre-configured monitoring stack based on VictoriaMetrics and Grafana is included. KubeVirt technology is used to launch virtual machines, allowing classic virtual machines to run directly in Kubernetes containers and already has all the necessary integrations with the Cluster API for launching managed Kubernetes clusters within a bare-metal Kubernetes cluster.
Over the past month and a half, the project team has released seven new versions: 0.24-0.30. Among the changes in these releases:
- Stabilization of the platform for use in multi-data center configurations. A lot of work has been done to configure etcd, Cilium, Kuve-OVN, Linstor and other components.
- Strengthening and improving the observability stack. Added dashboards for a number of components and optimized Grafana settings, which accelerated its operation.
- Release of additional utility cozy-proxy, which allows issuing IP addresses virtual machines in K8s.
- Introducing Vertical Pod Autoscaler. VPA automatically sets limits on the resources an application can consume based on historical metrics.
- Refactoring and adding new sections to the documentation.
- Moving the platform repository and supporting utilities from the aenix-io organization to the cozystack organization after the project was transferred to the CNCF Sandbox.
- Cozystack 0.30: Introduced GPU-operator and added support for GPUs in virtual machines. GPU support allows the platform to be used for running machine learning tasks.
- Cozystack 0.29: Work has been done to improve the stability and reliability of the platform. The vulnerability CVE-2025-1974 in ingress-nginx has been fixed. A set of presets limiting resource consumption has been added. Automatic certificate reissue has been implemented. Cilium host firewall has been added. A process for running e2e tests in GitHub CI has been added.
- Cozystack 0.28: Introducing Vertical Pod Autoscaler, which automatically sets limits on resources available to different applications. Tenant isolation is enabled by default. Responsibility for source-ip validation has been moved from Cilium to Kube-OVN.
- Cozystack 0.27: A set of linstor plunger scripts for automatic error correction in LINSTOR (e.g. DRBD lost connection, hung loop device, etc.) is offered. The ability to distribute PostgreSQL replicas across different nodes is added. Dashboards for monitoring ClickHouse and Piraeus appeared.
- Cozystack 0.26: Improved stability when working in multi-DC configurations. Added network connectivity monitoring. Added the ability to limit resources for individual tenants within a cluster. Added the Goldpinger tool for monitoring latency between data centers. Live migration of virtual machines is enabled by default. It is now possible to create snapshots of LINSTOR volumes.
- Cozystack 0.25: Added an auxiliary tool cozy-proxy, which allows you to allocate IP addresses to virtual machines — and not individual ports, but the entire address. In Cosyastack, virtual machines are based on KubeVirt and are managed in much the same way as pods. But Kubernetes does not provide for the allocation of entire IP addresses to pods. cozy-proxy solves this problem, which is important, for example, for service provider clients whose applications run in virtual machines and who need a separate IP address. Monitoring of etcd, Flux, Kafka has been improved and corresponding dashboards have been added. Users who have access only to individual tenants now have the ability to download kubeconfig.
- Cozystack 0.24: Added PXE deployment to automatically boot Talos Linux nodes. Added smee (dhcp+pxe server) package from Tinkerbell. Replaced Darkhttp with our own cozystack-assets-server. Plugins were added to the Grafana image to make Grafana start faster.
Source: opennet.ru
