5ff9dc0b3b
This change is prerequisite for implementing iSCSI attacher and detacher. In order to use chap authentication at iSCSI plugin after implementing attacher and detacher, secret is needed at AttachDisk() which is called from WaitForAttach(). To obtain secret, pod information is required, but WaitForAttach() doesn't pass pod information inside. This patch adds 'pod' as an argument of WaitForAttach() and adds changes to drivers who implements WaitForAttach(). Fixes #48953
260 lines
8.6 KiB
Go
260 lines
8.6 KiB
Go
/*
|
|
Copyright 2016 The Kubernetes Authors.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package vsphere_volume
|
|
|
|
import (
|
|
"fmt"
|
|
"os"
|
|
"path"
|
|
"time"
|
|
|
|
"github.com/golang/glog"
|
|
"k8s.io/api/core/v1"
|
|
"k8s.io/apimachinery/pkg/types"
|
|
"k8s.io/kubernetes/pkg/cloudprovider/providers/vsphere"
|
|
"k8s.io/kubernetes/pkg/util/keymutex"
|
|
"k8s.io/kubernetes/pkg/util/mount"
|
|
"k8s.io/kubernetes/pkg/volume"
|
|
volumeutil "k8s.io/kubernetes/pkg/volume/util"
|
|
"k8s.io/kubernetes/pkg/volume/util/volumehelper"
|
|
)
|
|
|
|
type vsphereVMDKAttacher struct {
|
|
host volume.VolumeHost
|
|
vsphereVolumes vsphere.Volumes
|
|
}
|
|
|
|
var _ volume.Attacher = &vsphereVMDKAttacher{}
|
|
var _ volume.AttachableVolumePlugin = &vsphereVolumePlugin{}
|
|
|
|
// Singleton key mutex for keeping attach operations for the same host atomic
|
|
var attachdetachMutex = keymutex.NewKeyMutex()
|
|
|
|
func (plugin *vsphereVolumePlugin) NewAttacher() (volume.Attacher, error) {
|
|
vsphereCloud, err := getCloudProvider(plugin.host.GetCloudProvider())
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return &vsphereVMDKAttacher{
|
|
host: plugin.host,
|
|
vsphereVolumes: vsphereCloud,
|
|
}, nil
|
|
}
|
|
|
|
// Attaches the volume specified by the given spec to the given host.
|
|
// On success, returns the device path where the device was attached on the
|
|
// node.
|
|
// Callers are responsible for retryinging on failure.
|
|
// Callers are responsible for thread safety between concurrent attach and
|
|
// detach operations.
|
|
func (attacher *vsphereVMDKAttacher) Attach(spec *volume.Spec, nodeName types.NodeName) (string, error) {
|
|
volumeSource, _, err := getVolumeSource(spec)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
glog.V(4).Infof("vSphere: Attach disk called for node %s", nodeName)
|
|
|
|
// Keeps concurrent attach operations to same host atomic
|
|
attachdetachMutex.LockKey(string(nodeName))
|
|
defer attachdetachMutex.UnlockKey(string(nodeName))
|
|
|
|
// vsphereCloud.AttachDisk checks if disk is already attached to host and
|
|
// succeeds in that case, so no need to do that separately.
|
|
diskUUID, err := attacher.vsphereVolumes.AttachDisk(volumeSource.VolumePath, volumeSource.StoragePolicyID, nodeName)
|
|
if err != nil {
|
|
glog.Errorf("Error attaching volume %q to node %q: %+v", volumeSource.VolumePath, nodeName, err)
|
|
return "", err
|
|
}
|
|
|
|
return path.Join(diskByIDPath, diskSCSIPrefix+diskUUID), nil
|
|
}
|
|
|
|
func (attacher *vsphereVMDKAttacher) VolumesAreAttached(specs []*volume.Spec, nodeName types.NodeName) (map[*volume.Spec]bool, error) {
|
|
volumesAttachedCheck := make(map[*volume.Spec]bool)
|
|
volumeSpecMap := make(map[string]*volume.Spec)
|
|
volumePathList := []string{}
|
|
for _, spec := range specs {
|
|
volumeSource, _, err := getVolumeSource(spec)
|
|
if err != nil {
|
|
glog.Errorf("Error getting volume (%q) source : %v", spec.Name(), err)
|
|
continue
|
|
}
|
|
volumePathList = append(volumePathList, volumeSource.VolumePath)
|
|
volumeSpecMap[volumeSource.VolumePath] = spec
|
|
}
|
|
attachedResult, err := attacher.vsphereVolumes.DisksAreAttached(volumePathList, nodeName)
|
|
if err != nil {
|
|
glog.Errorf(
|
|
"Error checking if volumes (%v) are attached to current node (%q). err=%v",
|
|
volumePathList, nodeName, err)
|
|
return nil, err
|
|
}
|
|
|
|
for volumePath, attached := range attachedResult {
|
|
spec := volumeSpecMap[volumePath]
|
|
if !attached {
|
|
volumesAttachedCheck[spec] = false
|
|
glog.V(2).Infof("VolumesAreAttached: volume %q (specName: %q) is no longer attached", volumePath, spec.Name())
|
|
} else {
|
|
volumesAttachedCheck[spec] = true
|
|
glog.V(2).Infof("VolumesAreAttached: volume %q (specName: %q) is attached", volumePath, spec.Name())
|
|
}
|
|
}
|
|
return volumesAttachedCheck, nil
|
|
}
|
|
|
|
func (attacher *vsphereVMDKAttacher) WaitForAttach(spec *volume.Spec, devicePath string, _ *v1.Pod, timeout time.Duration) (string, error) {
|
|
volumeSource, _, err := getVolumeSource(spec)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
if devicePath == "" {
|
|
return "", fmt.Errorf("WaitForAttach failed for VMDK %q: devicePath is empty.", volumeSource.VolumePath)
|
|
}
|
|
|
|
ticker := time.NewTicker(checkSleepDuration)
|
|
defer ticker.Stop()
|
|
|
|
timer := time.NewTimer(timeout)
|
|
defer timer.Stop()
|
|
|
|
for {
|
|
select {
|
|
case <-ticker.C:
|
|
glog.V(5).Infof("Checking VMDK %q is attached", volumeSource.VolumePath)
|
|
path, err := verifyDevicePath(devicePath)
|
|
if err != nil {
|
|
// Log error, if any, and continue checking periodically. See issue #11321
|
|
glog.Warningf("Error verifying VMDK (%q) is attached: %v", volumeSource.VolumePath, err)
|
|
} else if path != "" {
|
|
// A device path has successfully been created for the VMDK
|
|
glog.Infof("Successfully found attached VMDK %q.", volumeSource.VolumePath)
|
|
return path, nil
|
|
}
|
|
case <-timer.C:
|
|
return "", fmt.Errorf("Could not find attached VMDK %q. Timeout waiting for mount paths to be created.", volumeSource.VolumePath)
|
|
}
|
|
}
|
|
}
|
|
|
|
// GetDeviceMountPath returns a path where the device should
|
|
// point which should be bind mounted for individual volumes.
|
|
func (attacher *vsphereVMDKAttacher) GetDeviceMountPath(spec *volume.Spec) (string, error) {
|
|
volumeSource, _, err := getVolumeSource(spec)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
return makeGlobalPDPath(attacher.host, volumeSource.VolumePath), nil
|
|
}
|
|
|
|
// GetMountDeviceRefs finds all other references to the device referenced
|
|
// by deviceMountPath; returns a list of paths.
|
|
func (plugin *vsphereVolumePlugin) GetDeviceMountRefs(deviceMountPath string) ([]string, error) {
|
|
mounter := plugin.host.GetMounter(plugin.GetPluginName())
|
|
return mount.GetMountRefs(mounter, deviceMountPath)
|
|
}
|
|
|
|
// MountDevice mounts device to global mount point.
|
|
func (attacher *vsphereVMDKAttacher) MountDevice(spec *volume.Spec, devicePath string, deviceMountPath string) error {
|
|
mounter := attacher.host.GetMounter(vsphereVolumePluginName)
|
|
notMnt, err := mounter.IsLikelyNotMountPoint(deviceMountPath)
|
|
if err != nil {
|
|
if os.IsNotExist(err) {
|
|
if err := os.MkdirAll(deviceMountPath, 0750); err != nil {
|
|
glog.Errorf("Failed to create directory at %#v. err: %s", deviceMountPath, err)
|
|
return err
|
|
}
|
|
notMnt = true
|
|
} else {
|
|
return err
|
|
}
|
|
}
|
|
|
|
volumeSource, _, err := getVolumeSource(spec)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
options := []string{}
|
|
|
|
if notMnt {
|
|
diskMounter := volumehelper.NewSafeFormatAndMountFromHost(vsphereVolumePluginName, attacher.host)
|
|
mountOptions := volume.MountOptionFromSpec(spec, options...)
|
|
err = diskMounter.FormatAndMount(devicePath, deviceMountPath, volumeSource.FSType, mountOptions)
|
|
if err != nil {
|
|
os.Remove(deviceMountPath)
|
|
return err
|
|
}
|
|
glog.V(4).Infof("formatting spec %v devicePath %v deviceMountPath %v fs %v with options %+v", spec.Name(), devicePath, deviceMountPath, volumeSource.FSType, options)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
type vsphereVMDKDetacher struct {
|
|
mounter mount.Interface
|
|
vsphereVolumes vsphere.Volumes
|
|
}
|
|
|
|
var _ volume.Detacher = &vsphereVMDKDetacher{}
|
|
|
|
func (plugin *vsphereVolumePlugin) NewDetacher() (volume.Detacher, error) {
|
|
vsphereCloud, err := getCloudProvider(plugin.host.GetCloudProvider())
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return &vsphereVMDKDetacher{
|
|
mounter: plugin.host.GetMounter(plugin.GetPluginName()),
|
|
vsphereVolumes: vsphereCloud,
|
|
}, nil
|
|
}
|
|
|
|
// Detach the given device from the given node.
|
|
func (detacher *vsphereVMDKDetacher) Detach(deviceMountPath string, nodeName types.NodeName) error {
|
|
|
|
volPath := getVolPathfromDeviceMountPath(deviceMountPath)
|
|
attached, err := detacher.vsphereVolumes.DiskIsAttached(volPath, nodeName)
|
|
if err != nil {
|
|
// Log error and continue with detach
|
|
glog.Errorf(
|
|
"Error checking if volume (%q) is already attached to current node (%q). Will continue and try detach anyway. err=%v",
|
|
volPath, nodeName, err)
|
|
}
|
|
|
|
if err == nil && !attached {
|
|
// Volume is already detached from node.
|
|
glog.Infof("detach operation was successful. volume %q is already detached from node %q.", volPath, nodeName)
|
|
return nil
|
|
}
|
|
|
|
attachdetachMutex.LockKey(string(nodeName))
|
|
defer attachdetachMutex.UnlockKey(string(nodeName))
|
|
if err := detacher.vsphereVolumes.DetachDisk(volPath, nodeName); err != nil {
|
|
glog.Errorf("Error detaching volume %q: %v", volPath, err)
|
|
return err
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func (detacher *vsphereVMDKDetacher) UnmountDevice(deviceMountPath string) error {
|
|
return volumeutil.UnmountPath(deviceMountPath, detacher.mounter)
|
|
}
|