mirror of
https://github.com/k3s-io/kubernetes.git
synced 2025-07-27 05:27:21 +00:00
Pass FsGroup to NodePublishVolume
This commit is contained in:
Cheng Xing
parent
65db13a3a5
commit
ae5668edef
@ -265,7 +265,8 @@ func (m *csiBlockMapper) publishVolumeForBlock(
|
|||||||
volAttribs,
|
volAttribs,
|
||||||
nodePublishSecrets,
|
nodePublishSecrets,
|
||||||
fsTypeBlockName,
|
fsTypeBlockName,
|
||||||
[]string{},
|
[]string{}, /* mountOptions */
|
||||||
|
nil, /* fsGroup */
|
||||||
)
|
)
|
||||||
|
|
||||||
if err != nil {
|
if err != nil {
|
||||||
|
|||||||
@ -22,6 +22,7 @@ import (
|
|||||||
"fmt"
|
"fmt"
|
||||||
"io"
|
"io"
|
||||||
"net"
|
"net"
|
||||||
|
"strconv"
|
||||||
"sync"
|
"sync"
|
||||||
|
|
||||||
csipbv1 "github.com/container-storage-interface/spec/lib/go/csi"
|
csipbv1 "github.com/container-storage-interface/spec/lib/go/csi"
|
||||||
@ -43,6 +44,10 @@ type csiClient interface {
|
|||||||
maxVolumePerNode int64,
|
maxVolumePerNode int64,
|
||||||
accessibleTopology map[string]string,
|
accessibleTopology map[string]string,
|
||||||
err error)
|
err error)
|
||||||
|
|
||||||
|
// The caller is responsible for checking whether the driver supports
|
||||||
|
// applying FSGroup by calling NodeSupportsVolumeMountGroup().
|
||||||
|
// If the driver does not, fsGroup must be set to nil.
|
||||||
NodePublishVolume(
|
NodePublishVolume(
|
||||||
ctx context.Context,
|
ctx context.Context,
|
||||||
volumeid string,
|
volumeid string,
|
||||||
@ -55,7 +60,9 @@ type csiClient interface {
|
|||||||
secrets map[string]string,
|
secrets map[string]string,
|
||||||
fsType string,
|
fsType string,
|
||||||
mountOptions []string,
|
mountOptions []string,
|
||||||
|
fsGroup *int64,
|
||||||
) error
|
) error
|
||||||
|
|
||||||
NodeExpandVolume(ctx context.Context, rsOpts csiResizeOptions) (resource.Quantity, error)
|
NodeExpandVolume(ctx context.Context, rsOpts csiResizeOptions) (resource.Quantity, error)
|
||||||
NodeUnpublishVolume(
|
NodeUnpublishVolume(
|
||||||
ctx context.Context,
|
ctx context.Context,
|
||||||
@ -83,6 +90,7 @@ type csiClient interface {
|
|||||||
NodeSupportsNodeExpand(ctx context.Context) (bool, error)
|
NodeSupportsNodeExpand(ctx context.Context) (bool, error)
|
||||||
NodeSupportsVolumeStats(ctx context.Context) (bool, error)
|
NodeSupportsVolumeStats(ctx context.Context) (bool, error)
|
||||||
NodeSupportsSingleNodeMultiWriterAccessMode(ctx context.Context) (bool, error)
|
NodeSupportsSingleNodeMultiWriterAccessMode(ctx context.Context) (bool, error)
|
||||||
|
NodeSupportsVolumeMountGroup(ctx context.Context) (bool, error)
|
||||||
}
|
}
|
||||||
|
|
||||||
// Strongly typed address
|
// Strongly typed address
|
||||||
@ -209,6 +217,7 @@ func (c *csiDriverClient) NodePublishVolume(
|
|||||||
secrets map[string]string,
|
secrets map[string]string,
|
||||||
fsType string,
|
fsType string,
|
||||||
mountOptions []string,
|
mountOptions []string,
|
||||||
|
fsGroup *int64,
|
||||||
) error {
|
) error {
|
||||||
klog.V(4).Info(log("calling NodePublishVolume rpc [volid=%s,target_path=%s]", volID, targetPath))
|
klog.V(4).Info(log("calling NodePublishVolume rpc [volid=%s,target_path=%s]", volID, targetPath))
|
||||||
if volID == "" {
|
if volID == "" {
|
||||||
@ -255,11 +264,15 @@ func (c *csiDriverClient) NodePublishVolume(
|
|||||||
Block: &csipbv1.VolumeCapability_BlockVolume{},
|
Block: &csipbv1.VolumeCapability_BlockVolume{},
|
||||||
}
|
}
|
||||||
} else {
|
} else {
|
||||||
req.VolumeCapability.AccessType = &csipbv1.VolumeCapability_Mount{
|
mountVolume := &csipbv1.VolumeCapability_MountVolume{
|
||||||
Mount: &csipbv1.VolumeCapability_MountVolume{
|
|
||||||
FsType: fsType,
|
FsType: fsType,
|
||||||
MountFlags: mountOptions,
|
MountFlags: mountOptions,
|
||||||
},
|
}
|
||||||
|
if fsGroup != nil {
|
||||||
|
mountVolume.VolumeMountGroup = strconv.FormatInt(*fsGroup, 10 /* base */)
|
||||||
|
}
|
||||||
|
req.VolumeCapability.AccessType = &csipbv1.VolumeCapability_Mount{
|
||||||
|
Mount: mountVolume,
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -636,6 +649,10 @@ func (c *csiDriverClient) nodeSupportsVolumeCondition(ctx context.Context) (bool
|
|||||||
return c.nodeSupportsCapability(ctx, csipbv1.NodeServiceCapability_RPC_VOLUME_CONDITION)
|
return c.nodeSupportsCapability(ctx, csipbv1.NodeServiceCapability_RPC_VOLUME_CONDITION)
|
||||||
}
|
}
|
||||||
|
|
||||||
|
func (c *csiDriverClient) NodeSupportsVolumeMountGroup(ctx context.Context) (bool, error) {
|
||||||
|
return c.nodeSupportsCapability(ctx, csipbv1.NodeServiceCapability_RPC_VOLUME_MOUNT_GROUP)
|
||||||
|
}
|
||||||
|
|
||||||
func (c *csiDriverClient) nodeSupportsCapability(ctx context.Context, capabilityType csipbv1.NodeServiceCapability_RPC_Type) (bool, error) {
|
func (c *csiDriverClient) nodeSupportsCapability(ctx context.Context, capabilityType csipbv1.NodeServiceCapability_RPC_Type) (bool, error) {
|
||||||
klog.V(4).Info(log("calling NodeGetCapabilities rpc to determine if the node service has %s capability", capabilityType))
|
klog.V(4).Info(log("calling NodeGetCapabilities rpc to determine if the node service has %s capability", capabilityType))
|
||||||
capabilities, err := c.nodeGetCapabilities(ctx)
|
capabilities, err := c.nodeGetCapabilities(ctx)
|
||||||
|
|||||||
@ -23,6 +23,7 @@ import (
|
|||||||
"os"
|
"os"
|
||||||
"path/filepath"
|
"path/filepath"
|
||||||
"reflect"
|
"reflect"
|
||||||
|
"strconv"
|
||||||
"testing"
|
"testing"
|
||||||
|
|
||||||
csipbv1 "github.com/container-storage-interface/spec/lib/go/csi"
|
csipbv1 "github.com/container-storage-interface/spec/lib/go/csi"
|
||||||
@ -72,6 +73,13 @@ func newFakeCsiDriverClientWithVolumeStatsAndCondition(t *testing.T, volumeStats
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
func newFakeCsiDriverClientWithVolumeMountGroup(t *testing.T, stagingCapable, volumeMountGroupSet bool) *fakeCsiDriverClient {
|
||||||
|
return &fakeCsiDriverClient{
|
||||||
|
t: t,
|
||||||
|
nodeClient: fake.NewNodeClientWithVolumeMountGroup(stagingCapable, volumeMountGroupSet),
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
func (c *fakeCsiDriverClient) NodeGetInfo(ctx context.Context) (
|
func (c *fakeCsiDriverClient) NodeGetInfo(ctx context.Context) (
|
||||||
nodeID string,
|
nodeID string,
|
||||||
maxVolumePerNode int64,
|
maxVolumePerNode int64,
|
||||||
@ -152,6 +160,7 @@ func (c *fakeCsiDriverClient) NodePublishVolume(
|
|||||||
secrets map[string]string,
|
secrets map[string]string,
|
||||||
fsType string,
|
fsType string,
|
||||||
mountOptions []string,
|
mountOptions []string,
|
||||||
|
fsGroup *int64,
|
||||||
) error {
|
) error {
|
||||||
c.t.Log("calling fake.NodePublishVolume...")
|
c.t.Log("calling fake.NodePublishVolume...")
|
||||||
req := &csipbv1.NodePublishVolumeRequest{
|
req := &csipbv1.NodePublishVolumeRequest{
|
||||||
@ -174,11 +183,15 @@ func (c *fakeCsiDriverClient) NodePublishVolume(
|
|||||||
Block: &csipbv1.VolumeCapability_BlockVolume{},
|
Block: &csipbv1.VolumeCapability_BlockVolume{},
|
||||||
}
|
}
|
||||||
} else {
|
} else {
|
||||||
req.VolumeCapability.AccessType = &csipbv1.VolumeCapability_Mount{
|
mountVolume := &csipbv1.VolumeCapability_MountVolume{
|
||||||
Mount: &csipbv1.VolumeCapability_MountVolume{
|
|
||||||
FsType: fsType,
|
FsType: fsType,
|
||||||
MountFlags: mountOptions,
|
MountFlags: mountOptions,
|
||||||
},
|
}
|
||||||
|
if fsGroup != nil {
|
||||||
|
mountVolume.VolumeMountGroup = strconv.FormatInt(*fsGroup, 10 /* base */)
|
||||||
|
}
|
||||||
|
req.VolumeCapability.AccessType = &csipbv1.VolumeCapability_Mount{
|
||||||
|
Mount: mountVolume,
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -263,6 +276,28 @@ func (c *fakeCsiDriverClient) NodeSupportsStageUnstage(ctx context.Context) (boo
|
|||||||
return c.nodeSupportsCapability(ctx, csipbv1.NodeServiceCapability_RPC_STAGE_UNSTAGE_VOLUME)
|
return c.nodeSupportsCapability(ctx, csipbv1.NodeServiceCapability_RPC_STAGE_UNSTAGE_VOLUME)
|
||||||
}
|
}
|
||||||
|
|
||||||
|
func (c *fakeCsiDriverClient) NodeSupportsVolumeMountGroup(ctx context.Context) (bool, error) {
|
||||||
|
c.t.Log("calling fake.NodeGetCapabilities for NodeSupportsVolumeMountGroup...")
|
||||||
|
req := &csipbv1.NodeGetCapabilitiesRequest{}
|
||||||
|
resp, err := c.nodeClient.NodeGetCapabilities(ctx, req)
|
||||||
|
if err != nil {
|
||||||
|
return false, err
|
||||||
|
}
|
||||||
|
|
||||||
|
capabilities := resp.GetCapabilities()
|
||||||
|
|
||||||
|
volumeMountGroupSet := false
|
||||||
|
if capabilities == nil {
|
||||||
|
return false, nil
|
||||||
|
}
|
||||||
|
for _, capability := range capabilities {
|
||||||
|
if capability.GetRpc().GetType() == csipbv1.NodeServiceCapability_RPC_VOLUME_MOUNT_GROUP {
|
||||||
|
volumeMountGroupSet = true
|
||||||
|
}
|
||||||
|
}
|
||||||
|
return volumeMountGroupSet, nil
|
||||||
|
}
|
||||||
|
|
||||||
func (c *fakeCsiDriverClient) NodeExpandVolume(ctx context.Context, opts csiResizeOptions) (resource.Quantity, error) {
|
func (c *fakeCsiDriverClient) NodeExpandVolume(ctx context.Context, opts csiResizeOptions) (resource.Quantity, error) {
|
||||||
c.t.Log("calling fake.NodeExpandVolume")
|
c.t.Log("calling fake.NodeExpandVolume")
|
||||||
req := &csipbv1.NodeExpandVolumeRequest{
|
req := &csipbv1.NodeExpandVolumeRequest{
|
||||||
@ -345,6 +380,10 @@ func setupClientWithVolumeStats(t *testing.T, volumeStatsSet bool) csiClient {
|
|||||||
return newFakeCsiDriverClientWithVolumeStats(t, volumeStatsSet)
|
return newFakeCsiDriverClientWithVolumeStats(t, volumeStatsSet)
|
||||||
}
|
}
|
||||||
|
|
||||||
|
func setupClientWithVolumeMountGroup(t *testing.T, stageUnstageSet bool, volumeMountGroupSet bool) csiClient {
|
||||||
|
return newFakeCsiDriverClientWithVolumeMountGroup(t, stageUnstageSet, volumeMountGroupSet)
|
||||||
|
}
|
||||||
|
|
||||||
func checkErr(t *testing.T, expectedAnError bool, actualError error) {
|
func checkErr(t *testing.T, expectedAnError bool, actualError error) {
|
||||||
t.Helper()
|
t.Helper()
|
||||||
|
|
||||||
@ -423,6 +462,8 @@ func TestClientNodeGetInfo(t *testing.T) {
|
|||||||
}
|
}
|
||||||
|
|
||||||
func TestClientNodePublishVolume(t *testing.T) {
|
func TestClientNodePublishVolume(t *testing.T) {
|
||||||
|
var testFSGroup int64 = 3000
|
||||||
|
|
||||||
tmpDir, err := utiltesting.MkTmpdir("csi-test")
|
tmpDir, err := utiltesting.MkTmpdir("csi-test")
|
||||||
if err != nil {
|
if err != nil {
|
||||||
t.Fatalf("can't create temp dir: %v", err)
|
t.Fatalf("can't create temp dir: %v", err)
|
||||||
@ -435,6 +476,8 @@ func TestClientNodePublishVolume(t *testing.T) {
|
|||||||
volID string
|
volID string
|
||||||
targetPath string
|
targetPath string
|
||||||
fsType string
|
fsType string
|
||||||
|
fsGroup *int64
|
||||||
|
expectedVolumeMountGroup string
|
||||||
mustFail bool
|
mustFail bool
|
||||||
err error
|
err error
|
||||||
}{
|
}{
|
||||||
@ -443,16 +486,18 @@ func TestClientNodePublishVolume(t *testing.T) {
|
|||||||
{name: "missing target path", volID: "vol-test", mustFail: true},
|
{name: "missing target path", volID: "vol-test", mustFail: true},
|
||||||
{name: "bad fs", volID: "vol-test", targetPath: testPath, fsType: "badfs", mustFail: true},
|
{name: "bad fs", volID: "vol-test", targetPath: testPath, fsType: "badfs", mustFail: true},
|
||||||
{name: "grpc error", volID: "vol-test", targetPath: testPath, mustFail: true, err: errors.New("grpc error")},
|
{name: "grpc error", volID: "vol-test", targetPath: testPath, mustFail: true, err: errors.New("grpc error")},
|
||||||
|
{name: "fsgroup", volID: "vol-test", targetPath: testPath, fsGroup: &testFSGroup, expectedVolumeMountGroup: "3000"},
|
||||||
}
|
}
|
||||||
|
|
||||||
for _, tc := range testCases {
|
for _, tc := range testCases {
|
||||||
t.Logf("test case: %s", tc.name)
|
t.Logf("test case: %s", tc.name)
|
||||||
|
|
||||||
|
nodeClient := fake.NewNodeClient(false /* stagingCapable */)
|
||||||
|
nodeClient.SetNextError(tc.err)
|
||||||
fakeCloser := fake.NewCloser(t)
|
fakeCloser := fake.NewCloser(t)
|
||||||
client := &csiDriverClient{
|
client := &csiDriverClient{
|
||||||
driverName: "Fake Driver Name",
|
driverName: "Fake Driver Name",
|
||||||
nodeV1ClientCreator: func(addr csiAddr, m *MetricsManager) (csipbv1.NodeClient, io.Closer, error) {
|
nodeV1ClientCreator: func(addr csiAddr, m *MetricsManager) (csipbv1.NodeClient, io.Closer, error) {
|
||||||
nodeClient := fake.NewNodeClient(false /* stagingCapable */)
|
|
||||||
nodeClient.SetNextError(tc.err)
|
|
||||||
return nodeClient, fakeCloser, nil
|
return nodeClient, fakeCloser, nil
|
||||||
},
|
},
|
||||||
}
|
}
|
||||||
@ -469,9 +514,15 @@ func TestClientNodePublishVolume(t *testing.T) {
|
|||||||
map[string]string{},
|
map[string]string{},
|
||||||
tc.fsType,
|
tc.fsType,
|
||||||
[]string{},
|
[]string{},
|
||||||
|
tc.fsGroup,
|
||||||
)
|
)
|
||||||
checkErr(t, tc.mustFail, err)
|
checkErr(t, tc.mustFail, err)
|
||||||
|
|
||||||
|
volumeMountGroup := nodeClient.GetNodePublishedVolumes()[tc.volID].VolumeMountGroup
|
||||||
|
if volumeMountGroup != tc.expectedVolumeMountGroup {
|
||||||
|
t.Errorf("Expected VolumeMountGroup in NodePublishVolumeRequest to be %q, got: %q", tc.expectedVolumeMountGroup, volumeMountGroup)
|
||||||
|
}
|
||||||
|
|
||||||
if !tc.mustFail {
|
if !tc.mustFail {
|
||||||
fakeCloser.Check()
|
fakeCloser.Check()
|
||||||
}
|
}
|
||||||
@ -652,6 +703,16 @@ func TestClientNodeSupportsVolumeStats(t *testing.T) {
|
|||||||
})
|
})
|
||||||
}
|
}
|
||||||
|
|
||||||
|
func TestClientNodeSupportsVolumeMountGroup(t *testing.T) {
|
||||||
|
testClientNodeSupportsCapabilities(t,
|
||||||
|
func(client *csiDriverClient) (bool, error) {
|
||||||
|
return client.NodeSupportsVolumeMountGroup(context.Background())
|
||||||
|
},
|
||||||
|
func(volumeMountGroupCapable bool) *fake.NodeClient {
|
||||||
|
return fake.NewNodeClientWithVolumeMountGroup(false /* stagingCapable */, volumeMountGroupCapable)
|
||||||
|
})
|
||||||
|
}
|
||||||
|
|
||||||
func testClientNodeSupportsCapabilities(
|
func testClientNodeSupportsCapabilities(
|
||||||
t *testing.T,
|
t *testing.T,
|
||||||
capabilityMethodToTest func(*csiDriverClient) (bool, error),
|
capabilityMethodToTest func(*csiDriverClient) (bool, error),
|
||||||
|
|||||||
@ -235,6 +235,19 @@ func (c *csiMountMgr) SetUpAt(dir string, mounterArgs volume.MounterArgs) error
|
|||||||
}
|
}
|
||||||
volAttribs = mergeMap(volAttribs, serviceAccountTokenAttrs)
|
volAttribs = mergeMap(volAttribs, serviceAccountTokenAttrs)
|
||||||
|
|
||||||
|
driverSupportsCSIVolumeMountGroup := false
|
||||||
|
var nodePublishFSGroupArg *int64
|
||||||
|
if utilfeature.DefaultFeatureGate.Enabled(features.DelegateFSGroupToCSIDriver) {
|
||||||
|
driverSupportsCSIVolumeMountGroup, err = csi.NodeSupportsVolumeMountGroup(ctx)
|
||||||
|
if err != nil {
|
||||||
|
return volumetypes.NewTransientOperationFailure(log("mounter.SetUpAt failed to determine if the node service has VOLUME_MOUNT_GROUP capability: %v", err))
|
||||||
|
}
|
||||||
|
|
||||||
|
if driverSupportsCSIVolumeMountGroup {
|
||||||
|
nodePublishFSGroupArg = mounterArgs.FsGroup
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
err = csi.NodePublishVolume(
|
err = csi.NodePublishVolume(
|
||||||
ctx,
|
ctx,
|
||||||
volumeHandle,
|
volumeHandle,
|
||||||
@ -247,6 +260,7 @@ func (c *csiMountMgr) SetUpAt(dir string, mounterArgs volume.MounterArgs) error
|
|||||||
nodePublishSecrets,
|
nodePublishSecrets,
|
||||||
fsType,
|
fsType,
|
||||||
mountOptions,
|
mountOptions,
|
||||||
|
nodePublishFSGroupArg,
|
||||||
)
|
)
|
||||||
|
|
||||||
if err != nil {
|
if err != nil {
|
||||||
@ -264,7 +278,9 @@ func (c *csiMountMgr) SetUpAt(dir string, mounterArgs volume.MounterArgs) error
|
|||||||
klog.V(2).Info(log("error checking for SELinux support: %s", err))
|
klog.V(2).Info(log("error checking for SELinux support: %s", err))
|
||||||
}
|
}
|
||||||
|
|
||||||
if c.supportsFSGroup(fsType, mounterArgs.FsGroup, c.fsGroupPolicy) {
|
if !driverSupportsCSIVolumeMountGroup && c.supportsFSGroup(fsType, mounterArgs.FsGroup, c.fsGroupPolicy) {
|
||||||
|
// Driver doesn't support applying FSGroup. Kubelet must apply it instead.
|
||||||
|
|
||||||
// fullPluginName helps to distinguish different driver from csi plugin
|
// fullPluginName helps to distinguish different driver from csi plugin
|
||||||
err := volume.SetVolumeOwnership(c, mounterArgs.FsGroup, mounterArgs.FSGroupChangePolicy, util.FSGroupCompleteHook(c.plugin, c.spec))
|
err := volume.SetVolumeOwnership(c, mounterArgs.FsGroup, mounterArgs.FSGroupChangePolicy, util.FSGroupCompleteHook(c.plugin, c.spec))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
|
|||||||
@ -657,6 +657,9 @@ func TestMounterSetUpWithFSGroup(t *testing.T) {
|
|||||||
fsGroup int64
|
fsGroup int64
|
||||||
driverFSGroupPolicy bool
|
driverFSGroupPolicy bool
|
||||||
supportMode storage.FSGroupPolicy
|
supportMode storage.FSGroupPolicy
|
||||||
|
delegateFSGroupFeatureGate bool
|
||||||
|
driverSupportsVolumeMountGroup bool
|
||||||
|
expectedFSGroupInNodePublish string
|
||||||
}{
|
}{
|
||||||
{
|
{
|
||||||
name: "default fstype, with no fsgroup (should not apply fsgroup)",
|
name: "default fstype, with no fsgroup (should not apply fsgroup)",
|
||||||
@ -785,12 +788,48 @@ func TestMounterSetUpWithFSGroup(t *testing.T) {
|
|||||||
driverFSGroupPolicy: true,
|
driverFSGroupPolicy: true,
|
||||||
supportMode: storage.FileFSGroupPolicy,
|
supportMode: storage.FileFSGroupPolicy,
|
||||||
},
|
},
|
||||||
|
{
|
||||||
|
name: "fsgroup provided, DelegateFSGroupToCSIDriver feature enabled, driver supports volume mount group; expect fsgroup to be passed to NodePublishVolume",
|
||||||
|
fsType: "ext4",
|
||||||
|
setFsGroup: true,
|
||||||
|
fsGroup: 3000,
|
||||||
|
delegateFSGroupFeatureGate: true,
|
||||||
|
driverSupportsVolumeMountGroup: true,
|
||||||
|
expectedFSGroupInNodePublish: "3000",
|
||||||
|
},
|
||||||
|
{
|
||||||
|
name: "fsgroup not provided, DelegateFSGroupToCSIDriver feature enabled, driver supports volume mount group; expect fsgroup not to be passed to NodePublishVolume",
|
||||||
|
fsType: "ext4",
|
||||||
|
setFsGroup: false,
|
||||||
|
delegateFSGroupFeatureGate: true,
|
||||||
|
driverSupportsVolumeMountGroup: true,
|
||||||
|
expectedFSGroupInNodePublish: "",
|
||||||
|
},
|
||||||
|
{
|
||||||
|
name: "fsgroup provided, DelegateFSGroupToCSIDriver feature enabled, driver does not support volume mount group; expect fsgroup not to be passed to NodePublishVolume",
|
||||||
|
fsType: "ext4",
|
||||||
|
setFsGroup: true,
|
||||||
|
fsGroup: 3000,
|
||||||
|
delegateFSGroupFeatureGate: true,
|
||||||
|
driverSupportsVolumeMountGroup: false,
|
||||||
|
expectedFSGroupInNodePublish: "",
|
||||||
|
},
|
||||||
|
{
|
||||||
|
name: "fsgroup provided, DelegateFSGroupToCSIDriver feature disabled, driver supports volume mount group; expect fsgroup not to be passed to NodePublishVolume",
|
||||||
|
fsType: "ext4",
|
||||||
|
setFsGroup: true,
|
||||||
|
fsGroup: 3000,
|
||||||
|
delegateFSGroupFeatureGate: false,
|
||||||
|
driverSupportsVolumeMountGroup: true,
|
||||||
|
expectedFSGroupInNodePublish: "",
|
||||||
|
},
|
||||||
}
|
}
|
||||||
|
|
||||||
for i, tc := range testCases {
|
for i, tc := range testCases {
|
||||||
t.Logf("Running test %s", tc.name)
|
t.Logf("Running test %s", tc.name)
|
||||||
|
|
||||||
defer featuregatetesting.SetFeatureGateDuringTest(t, utilfeature.DefaultFeatureGate, features.CSIVolumeFSGroupPolicy, tc.driverFSGroupPolicy)()
|
defer featuregatetesting.SetFeatureGateDuringTest(t, utilfeature.DefaultFeatureGate, features.CSIVolumeFSGroupPolicy, tc.driverFSGroupPolicy)()
|
||||||
|
defer featuregatetesting.SetFeatureGateDuringTest(t, utilfeature.DefaultFeatureGate, features.DelegateFSGroupToCSIDriver, tc.delegateFSGroupFeatureGate)()
|
||||||
|
|
||||||
volName := fmt.Sprintf("test-vol-%d", i)
|
volName := fmt.Sprintf("test-vol-%d", i)
|
||||||
registerFakePlugin(testDriver, "endpoint", []string{"1.0.0"}, t)
|
registerFakePlugin(testDriver, "endpoint", []string{"1.0.0"}, t)
|
||||||
@ -821,7 +860,7 @@ func TestMounterSetUpWithFSGroup(t *testing.T) {
|
|||||||
if tc.driverFSGroupPolicy {
|
if tc.driverFSGroupPolicy {
|
||||||
csiMounter.fsGroupPolicy = tc.supportMode
|
csiMounter.fsGroupPolicy = tc.supportMode
|
||||||
}
|
}
|
||||||
csiMounter.csiClient = setupClient(t, true)
|
csiMounter.csiClient = setupClientWithVolumeMountGroup(t, true /* stageUnstageSet */, tc.driverSupportsVolumeMountGroup)
|
||||||
|
|
||||||
attachID := getAttachmentName(csiMounter.volumeID, string(csiMounter.driverName), string(plug.host.GetNodeName()))
|
attachID := getAttachmentName(csiMounter.volumeID, string(csiMounter.driverName), string(plug.host.GetNodeName()))
|
||||||
attachment := makeTestAttachment(attachID, "test-node", pvName)
|
attachment := makeTestAttachment(attachID, "test-node", pvName)
|
||||||
@ -854,6 +893,9 @@ func TestMounterSetUpWithFSGroup(t *testing.T) {
|
|||||||
if pubs[csiMounter.volumeID].Path != csiMounter.GetPath() {
|
if pubs[csiMounter.volumeID].Path != csiMounter.GetPath() {
|
||||||
t.Error("csi server may not have received NodePublishVolume call")
|
t.Error("csi server may not have received NodePublishVolume call")
|
||||||
}
|
}
|
||||||
|
if pubs[csiMounter.volumeID].VolumeMountGroup != tc.expectedFSGroupInNodePublish {
|
||||||
|
t.Errorf("expected VolumeMountGroup parameter in NodePublishVolumeRequest to be %q, got: %q", tc.expectedFSGroupInNodePublish, pubs[csiMounter.volumeID].VolumeMountGroup)
|
||||||
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
@ -75,6 +75,7 @@ type CSIVolume struct {
|
|||||||
DeviceMountPath string
|
DeviceMountPath string
|
||||||
FSType string
|
FSType string
|
||||||
MountFlags []string
|
MountFlags []string
|
||||||
|
VolumeMountGroup string
|
||||||
}
|
}
|
||||||
|
|
||||||
// NodeClient returns CSI node client
|
// NodeClient returns CSI node client
|
||||||
@ -86,6 +87,7 @@ type NodeClient struct {
|
|||||||
volumeStatsSet bool
|
volumeStatsSet bool
|
||||||
volumeConditionSet bool
|
volumeConditionSet bool
|
||||||
singleNodeMultiWriterSet bool
|
singleNodeMultiWriterSet bool
|
||||||
|
volumeMountGroupSet bool
|
||||||
nodeGetInfoResp *csipb.NodeGetInfoResponse
|
nodeGetInfoResp *csipb.NodeGetInfoResponse
|
||||||
nodeVolumeStatsResp *csipb.NodeGetVolumeStatsResponse
|
nodeVolumeStatsResp *csipb.NodeGetVolumeStatsResponse
|
||||||
FakeNodeExpansionRequest *csipb.NodeExpandVolumeRequest
|
FakeNodeExpansionRequest *csipb.NodeExpandVolumeRequest
|
||||||
@ -134,6 +136,15 @@ func NewNodeClientWithSingleNodeMultiWriter(singleNodeMultiWriterSet bool) *Node
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
func NewNodeClientWithVolumeMountGroup(stageUnstageSet, volumeMountGroupSet bool) *NodeClient {
|
||||||
|
return &NodeClient{
|
||||||
|
nodePublishedVolumes: make(map[string]CSIVolume),
|
||||||
|
nodeStagedVolumes: make(map[string]CSIVolume),
|
||||||
|
stageUnstageSet: stageUnstageSet,
|
||||||
|
volumeMountGroupSet: volumeMountGroupSet,
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
// SetNextError injects next expected error
|
// SetNextError injects next expected error
|
||||||
func (f *NodeClient) SetNextError(err error) {
|
func (f *NodeClient) SetNextError(err error) {
|
||||||
f.nextErr = err
|
f.nextErr = err
|
||||||
@ -217,6 +228,7 @@ func (f *NodeClient) NodePublishVolume(ctx context.Context, req *csipb.NodePubli
|
|||||||
if req.GetVolumeCapability().GetMount() != nil {
|
if req.GetVolumeCapability().GetMount() != nil {
|
||||||
publishedVolume.FSType = req.GetVolumeCapability().GetMount().FsType
|
publishedVolume.FSType = req.GetVolumeCapability().GetMount().FsType
|
||||||
publishedVolume.MountFlags = req.GetVolumeCapability().GetMount().MountFlags
|
publishedVolume.MountFlags = req.GetVolumeCapability().GetMount().MountFlags
|
||||||
|
publishedVolume.VolumeMountGroup = req.GetVolumeCapability().GetMount().VolumeMountGroup
|
||||||
}
|
}
|
||||||
f.nodePublishedVolumes[req.GetVolumeId()] = publishedVolume
|
f.nodePublishedVolumes[req.GetVolumeId()] = publishedVolume
|
||||||
return &csipb.NodePublishVolumeResponse{}, nil
|
return &csipb.NodePublishVolumeResponse{}, nil
|
||||||
@ -385,6 +397,16 @@ func (f *NodeClient) NodeGetCapabilities(ctx context.Context, in *csipb.NodeGetC
|
|||||||
},
|
},
|
||||||
})
|
})
|
||||||
}
|
}
|
||||||
|
|
||||||
|
if f.volumeMountGroupSet {
|
||||||
|
resp.Capabilities = append(resp.Capabilities, &csipb.NodeServiceCapability{
|
||||||
|
Type: &csipb.NodeServiceCapability_Rpc{
|
||||||
|
Rpc: &csipb.NodeServiceCapability_RPC{
|
||||||
|
Type: csipb.NodeServiceCapability_RPC_VOLUME_MOUNT_GROUP,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
})
|
||||||
|
}
|
||||||
return resp, nil
|
return resp, nil
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user