2019-12-16 13:19:59 +00:00
|
|
|
package client
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"context"
|
|
|
|
|
"errors"
|
2019-12-17 11:38:07 +00:00
|
|
|
"fmt"
|
2019-12-16 13:19:59 +00:00
|
|
|
"time"
|
|
|
|
|
|
|
|
|
|
metrics "github.com/armon/go-metrics"
|
|
|
|
|
"github.com/hashicorp/nomad/client/dynamicplugins"
|
|
|
|
|
"github.com/hashicorp/nomad/client/structs"
|
2020-01-09 16:14:07 +00:00
|
|
|
nstructs "github.com/hashicorp/nomad/nomad/structs"
|
2019-12-16 13:19:59 +00:00
|
|
|
"github.com/hashicorp/nomad/plugins/csi"
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
// ClientCSI endpoint is used for interacting with CSI plugins on a client.
|
|
|
|
|
// TODO: Submit metrics with labels to allow debugging per plugin perf problems.
|
|
|
|
|
type ClientCSI struct {
|
|
|
|
|
c *Client
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
const (
|
|
|
|
|
// CSIPluginRequestTimeout is the timeout that should be used when making reqs
|
|
|
|
|
// against CSI Plugins. It is copied from Kubernetes as an initial seed value.
|
|
|
|
|
// https://github.com/kubernetes/kubernetes/blob/e680ad7156f263a6d8129cc0117fda58602e50ad/pkg/volume/csi/csi_plugin.go#L52
|
|
|
|
|
CSIPluginRequestTimeout = 2 * time.Minute
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
var (
|
|
|
|
|
ErrPluginTypeError = errors.New("CSI Plugin loaded incorrectly")
|
|
|
|
|
)
|
|
|
|
|
|
2020-02-18 16:08:38 +00:00
|
|
|
// CSIControllerValidateVolume is used during volume registration to validate
|
|
|
|
|
// that a volume exists and that the capabilities it was registered with are
|
|
|
|
|
// supported by the CSI Plugin and external volume configuration.
|
|
|
|
|
func (c *ClientCSI) CSIControllerValidateVolume(req *structs.ClientCSIControllerValidateVolumeRequest, resp *structs.ClientCSIControllerValidateVolumeResponse) error {
|
|
|
|
|
defer metrics.MeasureSince([]string{"client", "csi_controller", "validate_volume"}, time.Now())
|
|
|
|
|
|
|
|
|
|
if req.VolumeID == "" {
|
|
|
|
|
return errors.New("VolumeID is required")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if req.PluginID == "" {
|
|
|
|
|
return errors.New("PluginID is required")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
plugin, err := c.findControllerPlugin(req.PluginID)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
defer plugin.Close()
|
|
|
|
|
|
|
|
|
|
caps, err := csi.VolumeCapabilityFromStructs(req.AttachmentMode, req.AccessMode)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
ctx, cancelFn := c.requestContext()
|
|
|
|
|
defer cancelFn()
|
|
|
|
|
return plugin.ControllerValidateCapabilties(ctx, req.VolumeID, caps)
|
|
|
|
|
}
|
|
|
|
|
|
2019-12-17 11:37:33 +00:00
|
|
|
// CSIControllerAttachVolume is used to attach a volume from a CSI Cluster to
|
2019-12-16 13:19:59 +00:00
|
|
|
// the storage node provided in the request.
|
2019-12-17 11:37:33 +00:00
|
|
|
//
|
|
|
|
|
// The controller attachment flow currently works as follows:
|
|
|
|
|
// 1. Validate the volume request
|
|
|
|
|
// 2. Call ControllerPublishVolume on the CSI Plugin to trigger a remote attachment
|
|
|
|
|
//
|
|
|
|
|
// In the future this may be expanded to request dynamic secrets for attachement.
|
|
|
|
|
func (c *ClientCSI) CSIControllerAttachVolume(req *structs.ClientCSIControllerAttachVolumeRequest, resp *structs.ClientCSIControllerAttachVolumeResponse) error {
|
2019-12-16 13:19:59 +00:00
|
|
|
defer metrics.MeasureSince([]string{"client", "csi_controller", "publish_volume"}, time.Now())
|
2019-12-17 11:38:07 +00:00
|
|
|
plugin, err := c.findControllerPlugin(req.PluginName)
|
2019-12-16 13:19:59 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2019-12-17 11:38:07 +00:00
|
|
|
defer plugin.Close()
|
|
|
|
|
|
|
|
|
|
// The following block of validation checks should not be reached on a
|
|
|
|
|
// real Nomad cluster as all of this data should be validated when registering
|
|
|
|
|
// volumes with the cluster. They serve as a defensive check before forwarding
|
|
|
|
|
// requests to plugins, and to aid with development.
|
2019-12-16 13:19:59 +00:00
|
|
|
|
|
|
|
|
if req.VolumeID == "" {
|
|
|
|
|
return errors.New("VolumeID is required")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if req.NodeID == "" {
|
|
|
|
|
return errors.New("NodeID is required")
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-09 16:14:07 +00:00
|
|
|
if !nstructs.ValidCSIVolumeAccessMode(req.AccessMode) {
|
2019-12-17 11:38:07 +00:00
|
|
|
return fmt.Errorf("Unknown access mode: %v", req.AccessMode)
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-09 16:14:07 +00:00
|
|
|
if !nstructs.ValidCSIVolumeAttachmentMode(req.AttachmentMode) {
|
2019-12-17 11:38:07 +00:00
|
|
|
return fmt.Errorf("Unknown attachment mode: %v", req.AttachmentMode)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Submit the request for a volume to the CSI Plugin.
|
2019-12-16 13:19:59 +00:00
|
|
|
ctx, cancelFn := c.requestContext()
|
|
|
|
|
defer cancelFn()
|
2019-12-17 11:38:07 +00:00
|
|
|
cresp, err := plugin.ControllerPublishVolume(ctx, req.ToCSIRequest())
|
2019-12-16 13:19:59 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
resp.PublishContext = cresp.PublishContext
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *ClientCSI) findControllerPlugin(name string) (csi.CSIPlugin, error) {
|
|
|
|
|
return c.findPlugin(dynamicplugins.PluginTypeCSIController, name)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// TODO: Cache Plugin Clients?
|
|
|
|
|
func (c *ClientCSI) findPlugin(ptype, name string) (csi.CSIPlugin, error) {
|
|
|
|
|
pIface, err := c.c.dynamicRegistry.DispensePlugin(ptype, name)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
plugin, ok := pIface.(csi.CSIPlugin)
|
|
|
|
|
if !ok {
|
|
|
|
|
return nil, ErrPluginTypeError
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return plugin, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *ClientCSI) requestContext() (context.Context, context.CancelFunc) {
|
|
|
|
|
return context.WithTimeout(context.Background(), CSIPluginRequestTimeout)
|
|
|
|
|
}
|
