🌱 Update boxcutter integration for sibling owners API

[perdasilva]

Description

Adapt the ClusterObjectSet controller to boxcutter v0.14.0's replacement of WithPreviousOwners with WithSiblingOwners.

The previous API only passed lower-numbered revisions, meaning boxcutter could not distinguish between an unknown controller (a true collision) and a known higher-numbered sibling revision during handover. The new WithSiblingOwners API expects all active sibling revision owners — both lower and higher — so that boxcutter can properly classify them and avoid false collision reports.

Changes

• listOtherActiveRevisions — extracted shared helper that encapsulates the common logic (label lookup, cache list, skip-self, skip-archived, skip-deleting) with an include predicate for caller-specific filtering.
• listSiblingRevisions — delegates to listOtherActiveRevisions passing all non-self revisions. Used by buildBoxcutterPhases with WithSiblingOwners.
• listPreviousRevisions — refactored to delegate to listOtherActiveRevisions, passing only lower revision numbers. Retained for the archiving use case.
• buildBoxcutterPhases — calls listSiblingRevisions + WithSiblingOwners instead of listPreviousRevisions + WithPreviousOwners.
• NewObjectEngine — passes the new required managedBy parameter, set to FieldOwnerPrefix ("olm.operatorframework.io").
• Dependency bumps — boxcutter v0.13.1 → v0.14.0, plus transitive updates (prometheus/common, kube-openapi, cel.dev/expr).
• Unit tests — consolidated into a single parameterized table-driven test (Test_ClusterObjectSetReconciler_listOtherActiveRevisions) that exercises both listSiblingRevisions and listPreviousRevisions against shared scenarios, eliminating ~120 lines of duplicate setup.

Reviewer Checklist

• API Go Documentation
• Tests: Unit Tests (and E2E Tests, if appropriate)
• Comprehensive Commit Messages
• Links to related GitHub Issue(s)

🤖 Generated with Claude Code

[netlify]

✅ Deploy Preview for olmv1 ready!

Name	Link
🔨 Latest commit	a3d8bce
🔍 Latest deploy log	https://app.netlify.com/projects/olmv1/deploys/6a3a84f1f2ea8f00083cec17
😎 Deploy Preview	https://deploy-preview-2764--olmv1.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.
🤖 Make changes	Run an agent on this branch

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[Copilot]

Pull request overview

This PR updates the operator-controller’s Boxcutter integration to treat all active sibling ClusterObjectSet revisions (both lower and higher revision numbers) as relevant “owners”, aiming to avoid false-positive collision reporting during revision handover. It also adds coverage to validate collision behavior when a conflicting ClusterExtension is upgraded.

Changes:

• Switch Boxcutter ownership inputs from “previous revisions only” to “all active sibling revisions” and add unit tests for the sibling listing logic.
• Add an e2e scenario asserting collisions persist even when a conflicting ClusterExtension upgrades to a different version.
• Update Go module dependencies for Boxcutter (and related transitive deps).

Reviewed changes

Copilot reviewed 4 out of 5 changed files in this pull request and generated no comments.

Show a summary per file

File	Description
test/e2e/features/update.feature	Adds an e2e scenario for collision persistence across upgrades (but needs step/param fixes).
internal/operator-controller/controllers/revision_engine_factory.go	Adjusts Boxcutter object engine factory invocation to match updated dependency API.
internal/operator-controller/controllers/clusterobjectset_controller.go	Introduces sibling revision listing and feeds sibling owners into Boxcutter.
internal/operator-controller/controllers/clusterobjectset_controller_internal_test.go	Adds unit tests for listSiblingRevisions.
go.mod	Bumps Boxcutter + deps, but currently includes merge-conflict markers and an invalid local replace.
go.sum	Updates dependency sums, but currently includes multiple unresolved merge-conflict blocks.

Comments suppressed due to low confidence (2)

go.mod:7

• go.mod still contains unresolved merge-conflict markers (<<<<<<< / ======= / >>>>>>>). This makes the module file invalid and will break go tooling in CI. Resolve the conflict by choosing a single go directive line and removing all conflict markers, then re-run go mod tidy to ensure go.sum is consistent.

go 1.26.3

require (
	github.com/BurntSushi/toml v1.6.0
	github.com/Masterminds/semver/v3 v3.5.0

go.mod:329

• This replace points to a developer-local filesystem path, which will not exist in CI and will break module resolution for anyone else. Repository go.mod files should not contain machine-specific local replaces; rely on the tagged boxcutter version instead.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 4 out of 5 changed files in this pull request and generated 2 comments.

[codecov]

Codecov Report

❌ Patch coverage is 94.73684% with 1 line in your changes missing coverage. Please review.
✅ Project coverage is 70.56%. Comparing base (7d6a00d) to head (a3d8bce).

Files with missing lines	Patch %	Lines
...troller/controllers/clusterobjectset_controller.go	93.75%	1 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #2764      +/-   ##
==========================================
+ Coverage   70.42%   70.56%   +0.13%     
==========================================
  Files         143      143              
  Lines       10617    10625       +8     
==========================================
+ Hits         7477     7497      +20     
+ Misses       2579     2571       -8     
+ Partials      561      557       -4     

Flag	Coverage Δ
e2e	35.09% <0.00%> (-0.03%)	⬇️
experimental-e2e	52.67% <94.73%> (+0.29%)	⬆️
unit	59.51% <78.94%> (+0.01%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[pedjak]

question (non-blocking): The Copilot review on an earlier push mentioned an e2e .feature file change for collision persistence across upgrades, but it's absent from the current diff. Is that planned as a follow-up PR? The unit tests cover listSiblingRevisions well, but an e2e test exercising the higher-sibling handover path would add confidence that the behavioral change works end-to-end.

[Copilot]

Pull request overview

Copilot reviewed 4 out of 5 changed files in this pull request and generated no new comments.

[pedjak]

Review focused on boxcutter library update and coding style.

[Copilot]

Pull request overview

Copilot reviewed 4 out of 5 changed files in this pull request and generated no new comments.

[pedjak]

/lgtm

some e2e test are failing though

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please ask for approval from pedjak. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[Copilot]

Pull request overview

Copilot reviewed 4 out of 5 changed files in this pull request and generated 1 comment.

[pedjak]

/lgtm

[openshift-ci]

New changes are detected. LGTM label has been removed.

[pedjak]

Review focused on test structure (unit + e2e) and a minor code comment placement nit.

[pedjak]

suggestion: This scenario has three When-Then cycles (install first CE → assert available, apply dup CE → assert collision, update first CE → assert still colliding). Multiple When-Then blocks in a single Gherkin scenario is generally considered an anti-pattern — each scenario should specify one behavior, not a multi-step integration script.

Having multiple transitions makes it harder to diagnose which step failed and why, and the scenario title ("does not take over resources") only describes the final assertion.

Consider splitting into two scenarios:

1. Conflicting CE gets collision on install
2. Conflicting CE with higher revision still gets collision after update

They could share setup via a Background or a reusable Given step.

Also, this scenario involves updating the CE spec (adding DeploymentConfig) and asserting behavior after the update. That makes it a better fit for update.feature than install.feature. The earlier Copilot review also referenced this being in update.feature — was there a reason to move it here?

[pedjak]

suggestion: The double loop (test cases × methods) with a map[string][]string for expected results works, but it obscures the arrange-act-assert structure. A reader has to mentally cross-reference the map key with the method definition at the top to understand what any single test case asserts.

An alternative structure that would be clearer:

• Test listOtherActiveRevisions directly with explicit predicates (the real unit under test). This covers the shared filtering logic once.
• Add a couple of trivial tests for listSiblingRevisions and listPreviousRevisions that just verify they delegate with the correct predicate (e.g., one passes all, the other filters by revision number).

This separates "does the shared logic work" from "do the wrappers delegate correctly" and makes each test read as a clean given-when-then.

[pedjak]

suggestion: The name format fmt.Sprintf("%s/%s", m.name, tc.name) puts the method name first, but the outer loop iterates over test cases. This means Go test output interleaves methods:

listSiblingRevisions/should exclude self...
listPreviousRevisions/should exclude self...
listSiblingRevisions/should exclude archived...
listPreviousRevisions/should exclude archived...

Swapping to tc.name/m.name (or swapping the loop order) would group output by method, making it easier to scan all cases for one method when debugging a failure.

[pedjak]

suggestion: The old test marked rev-2 (middle revision) as deleting with currentRev: "rev-3", which tested the case where a middle revision is deleting while both lower and higher revisions exist. The new test moves the deletion to rev-1 (lowest revision). Both validate the "skip deleting" filter, but the old arrangement was a more interesting interleaving — it verified that a deleting revision between two active ones is correctly excluded regardless of its position.

Consider keeping deletion on rev-2 and adjusting the expected results accordingly, or adding a second sub-case for middle-revision deletion.

[pedjak]

suggestion: The godoc here explains why boxcutter needs siblings (avoiding false collisions during handover). That is caller context — it belongs at the call site in buildBoxcutterPhases where WithSiblingOwners is passed. The method itself just returns "all active non-self revisions for the same owner," which is already clear from its name and signature.

Keeping method-level docs focused on what the method does (not why a specific caller needs it) prevents the comment from becoming stale if another caller is added.

[pedjak]

suggestion: The scenario asserts that the dup CE shows collision and that the higher revision still shows collision after update. But it doesn't verify that the original ${NAME} CE remains Available/Installed throughout the conflict. Adding something like And ClusterExtension "${NAME}" reports Installed as True after the dup's collision assertion would strengthen the test — confirming the original owner is unaffected is arguably the most important property to verify here.