Skip to content

rossigee/libvirt-volume-provisioner

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

74 Commits
.github/workflows
.github/workflows
 
 
cmd/provisioner
cmd/provisioner
 
 
docs
docs
 
 
integration
integration
 
 
internal
internal
 
 
pkg/types
pkg/types
 
 
scripts
scripts
 
 
systemd
systemd
 
 
.env.example
.env.example
 
 
.gitignore
.gitignore
 
 
.golangci.yml
.golangci.yml
 
 
CHANGELOG.md
CHANGELOG.md
 
 
DEPLOYMENT.md
DEPLOYMENT.md
 
 
Dockerfile
Dockerfile
 
 
Dockerfile.production
Dockerfile.production
 
 
Dockerfile.test
Dockerfile.test
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
RELEASE.md
RELEASE.md
 
 
REPOSITORY-README.md
REPOSITORY-README.md
 
 
api.yaml
api.yaml
 
 
docker-compose.yml
docker-compose.yml
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
libvirt-volume-provisioner.service
libvirt-volume-provisioner.service
 
 

Repository files navigation

libvirt-volume-provisioner

A daemon service for provisioning LVM volumes with VM images on libvirt hypervisor hosts.

Overview

The libvirt-volume-provisioner runs as a systemd service on hypervisor hosts and provides an HTTP API for:

  • Downloading VM images from MinIO object storage with intelligent checksum-based caching
  • Caching images with compression preservation to reduce disk space usage
  • Converting cached QCOW2 images to raw format for LVM volume population
  • Populating LVM volumes with VM disk data
  • Progress tracking and error reporting

Key Features:

✅ Compression-preserving image caching (50-70% space savings) ✅ Checksum-based cache invalidation ✅ Mutual TLS authentication for production deployments ✅ RESTful HTTP API with progress tracking ✅ Prometheus metrics and health checks ✅ Automatic rollback on provisioning failure ✅ Multi-deployment support (Systemd, Docker, .deb)

Quick Start

Debian Package (Recommended)

wget https://github.com/rossigee/libvirt-volume-provisioner/releases/download/v0.5.0/libvirt-volume-provisioner_0.5.0_amd64.deb
sudo apt install ./libvirt-volume-provisioner_0.5.0_amd64.deb
sudo systemctl enable --now libvirt-volume-provisioner.socket

Docker

docker run -d \
  --privileged \
  -v /var/run/libvirt:/var/run/libvirt:rw \
  -v /dev/mapper:/dev/mapper:rw \
  -p 8080:8080 \
  -e MINIO_ENDPOINT=https://minio.example.com \
  -e MINIO_ACCESS_KEY=your-access-key \
  -e MINIO_SECRET_KEY=your-secret-key \
  ghcr.io/rossigee/libvirt-volume-provisioner:latest

Build from Source

git clone https://github.com/rossigee/libvirt-volume-provisioner.git
cd libvirt-volume-provisioner
make build-linux
sudo make install-systemd

See Installation for detailed instructions.

Documentation

Topic Description
Architecture System design, workflow, and caching strategy
API Reference Complete HTTP API documentation
OpenAPI Spec Machine-readable OpenAPI 3.0.3 specification
Usage Examples Practical curl examples and integration patterns
Installation Installation methods and deployment options
Configuration Environment variables and service setup
Authentication TLS certificates and API token setup
Monitoring Prometheus metrics, alerting, and logging
Integration Integration with infrastructure-builder, Ansible, Terraform
Development Building, testing, and contributing
Deployment CI/CD pipelines, release process, and strategies
Troubleshooting Common issues and solutions
Security Security considerations and best practices

Key Concepts

Image Immutability

Base images in MinIO never change; reprovisioning gets fresh copy.

Idempotent Provisioning

Cloud-init ensures VM reaches desired state regardless of history.

Compression Preservation

QCOW2 images are cached in compressed format, not expanded to raw. This results in 50-70% storage savings.

Checksum-Based Caching

Uses SHA256 checksums from MinIO .sha256 files as cache keys for reliable cache invalidation.

API Overview

Provision Volume

curl -X POST https://hypervisor.example.com:8080/api/v1/jobs \
  --cert client.crt --key client.key --cacert ca.crt \
  -H "Content-Type: application/json" \
  -d '{
    "image_url": "https://minio.example.com/images/ubuntu-20.04.qcow2",
    "volume_name": "vm-root-disk",
    "volume_size_gb": 50,
    "image_type": "qcow2"
  }'

Check Status

curl https://hypervisor.example.com:8080/api/v1/jobs/{job_id} \
  --cert client.crt --key client.key --cacert ca.crt

See API Reference for complete documentation.

Configuration

Configure via environment variables:

Variable Example
MINIO_ENDPOINT https://minio.example.com
MINIO_ACCESS_KEY Your MinIO access key
MINIO_SECRET_KEY Your MinIO secret key
LVM_VOLUME_GROUP data
PORT 8080

See Configuration for all options.

Monitoring

  • Health Endpoints: /health, /healthz, /livez
  • Metrics: Prometheus-compatible at /metrics
  • Logging: Structured JSON logs via systemd journal

See Monitoring for detailed setup.

Security

  • Mutual TLS: Recommended for production
  • API Tokens: For development/testing
  • Input Validation: All requests validated
  • Audit Logging: All operations logged

See Security for best practices.

Performance

  • Concurrent Operations: Max 2 concurrent provisions per host
  • Cache Hit Performance: 50-70% faster than first download
  • Storage Efficiency: 50-70% space savings with compressed images

Support

For issues or questions:

  1. Check Troubleshooting
  2. Review API Reference
  3. See Configuration
  4. Open an issue on GitHub

License

This project is licensed under the MIT License.

About

A daemon service for provisioning LVM volumes with VM images on libvirt hypervisor hosts.

Resources

Readme

Security policy

Security policy
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 8

v0.5.2 Latest
Feb 27, 2026
+ 7 releases

Packages

 
 
 

Contributors

Languages