2020-09-03 09:34:29 +00:00
|
|
|
package e2e
|
|
|
|
|
|
|
|
import (
|
|
|
|
"context"
|
|
|
|
"encoding/json"
|
|
|
|
"fmt"
|
|
|
|
"regexp"
|
|
|
|
"strings"
|
2021-03-22 07:01:38 +00:00
|
|
|
"sync"
|
2020-09-03 09:34:29 +00:00
|
|
|
|
2021-03-22 07:01:38 +00:00
|
|
|
"github.com/kubernetes-csi/external-snapshotter/v2/pkg/apis/volumesnapshot/v1beta1"
|
2020-09-03 09:34:29 +00:00
|
|
|
v1 "k8s.io/api/core/v1"
|
|
|
|
scv1 "k8s.io/api/storage/v1"
|
2021-03-11 08:42:02 +00:00
|
|
|
"k8s.io/apimachinery/pkg/api/resource"
|
2020-09-03 09:34:29 +00:00
|
|
|
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
|
|
|
|
"k8s.io/client-go/kubernetes"
|
|
|
|
"k8s.io/kubernetes/test/e2e/framework"
|
|
|
|
e2elog "k8s.io/kubernetes/test/e2e/framework/log"
|
|
|
|
)
|
|
|
|
|
|
|
|
func imageSpec(pool, image string) string {
|
|
|
|
if radosNamespace != "" {
|
|
|
|
return pool + "/" + radosNamespace + "/" + image
|
|
|
|
}
|
|
|
|
return pool + "/" + image
|
|
|
|
}
|
|
|
|
|
|
|
|
func rbdOptions(pool string) string {
|
|
|
|
if radosNamespace != "" {
|
|
|
|
return "--pool=" + pool + " --namespace " + radosNamespace
|
|
|
|
}
|
|
|
|
return "--pool=" + pool
|
|
|
|
}
|
|
|
|
|
2021-03-22 05:48:22 +00:00
|
|
|
func createRBDStorageClass(c kubernetes.Interface, f *framework.Framework, name string, scOptions, parameters map[string]string, policy v1.PersistentVolumeReclaimPolicy) error {
|
2020-09-03 09:34:29 +00:00
|
|
|
scPath := fmt.Sprintf("%s/%s", rbdExamplePath, "storageclass.yaml")
|
|
|
|
sc, err := getStorageClass(scPath)
|
|
|
|
if err != nil {
|
|
|
|
return nil
|
|
|
|
}
|
2021-03-22 05:48:22 +00:00
|
|
|
if name != "" {
|
|
|
|
sc.Name = name
|
|
|
|
}
|
2020-09-03 09:34:29 +00:00
|
|
|
sc.Parameters["pool"] = defaultRBDPool
|
2021-02-09 16:09:44 +00:00
|
|
|
sc.Parameters["csi.storage.k8s.io/provisioner-secret-namespace"] = cephCSINamespace
|
2020-09-03 09:34:29 +00:00
|
|
|
sc.Parameters["csi.storage.k8s.io/provisioner-secret-name"] = rbdProvisionerSecretName
|
|
|
|
|
2021-02-09 16:09:44 +00:00
|
|
|
sc.Parameters["csi.storage.k8s.io/controller-expand-secret-namespace"] = cephCSINamespace
|
2020-09-03 09:34:29 +00:00
|
|
|
sc.Parameters["csi.storage.k8s.io/controller-expand-secret-name"] = rbdProvisionerSecretName
|
|
|
|
|
2021-02-09 16:09:44 +00:00
|
|
|
sc.Parameters["csi.storage.k8s.io/node-stage-secret-namespace"] = cephCSINamespace
|
2020-09-03 09:34:29 +00:00
|
|
|
sc.Parameters["csi.storage.k8s.io/node-stage-secret-name"] = rbdNodePluginSecretName
|
|
|
|
|
|
|
|
fsID, stdErr, err := execCommandInToolBoxPod(f, "ceph fsid", rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
if stdErr != "" {
|
|
|
|
return fmt.Errorf("error getting fsid %v", stdErr)
|
|
|
|
}
|
|
|
|
// remove new line present in fsID
|
|
|
|
fsID = strings.Trim(fsID, "\n")
|
|
|
|
|
|
|
|
sc.Parameters["clusterID"] = fsID
|
|
|
|
for k, v := range parameters {
|
|
|
|
sc.Parameters[k] = v
|
|
|
|
}
|
|
|
|
sc.Namespace = cephCSINamespace
|
|
|
|
|
|
|
|
if scOptions["volumeBindingMode"] == "WaitForFirstConsumer" {
|
|
|
|
value := scv1.VolumeBindingWaitForFirstConsumer
|
|
|
|
sc.VolumeBindingMode = &value
|
|
|
|
}
|
|
|
|
|
|
|
|
// comma separated mount options
|
2021-06-10 11:16:42 +00:00
|
|
|
if opt, ok := scOptions[rbdMountOptions]; ok {
|
2020-09-03 09:34:29 +00:00
|
|
|
mOpt := strings.Split(opt, ",")
|
|
|
|
sc.MountOptions = append(sc.MountOptions, mOpt...)
|
|
|
|
}
|
2020-10-28 06:08:11 +00:00
|
|
|
sc.ReclaimPolicy = &policy
|
2020-09-03 09:34:29 +00:00
|
|
|
_, err = c.StorageV1().StorageClasses().Create(context.TODO(), &sc, metav1.CreateOptions{})
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
func createRadosNamespace(f *framework.Framework) error {
|
|
|
|
stdOut, stdErr, err := execCommandInToolBoxPod(f,
|
|
|
|
fmt.Sprintf("rbd namespace ls --pool=%s", defaultRBDPool), rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
if stdErr != "" {
|
|
|
|
return fmt.Errorf("error listing rbd namespace %v", stdErr)
|
|
|
|
}
|
|
|
|
if !strings.Contains(stdOut, radosNamespace) {
|
|
|
|
_, stdErr, err = execCommandInToolBoxPod(f,
|
|
|
|
fmt.Sprintf("rbd namespace create %s", rbdOptions(defaultRBDPool)), rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
if stdErr != "" {
|
|
|
|
return fmt.Errorf("error creating rbd namespace %v", stdErr)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
stdOut, stdErr, err = execCommandInToolBoxPod(f,
|
|
|
|
fmt.Sprintf("rbd namespace ls --pool=%s", rbdTopologyPool), rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
if stdErr != "" {
|
|
|
|
return fmt.Errorf("error listing rbd namespace %v", stdErr)
|
|
|
|
}
|
|
|
|
|
|
|
|
if !strings.Contains(stdOut, radosNamespace) {
|
|
|
|
_, stdErr, err = execCommandInToolBoxPod(f,
|
|
|
|
fmt.Sprintf("rbd namespace create %s", rbdOptions(rbdTopologyPool)), rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
if stdErr != "" {
|
|
|
|
return fmt.Errorf("error creating rbd namespace %v", stdErr)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2021-02-22 11:13:40 +00:00
|
|
|
func createRBDSecret(f *framework.Framework, secretName, userName, userKey string) error {
|
2020-09-03 09:34:29 +00:00
|
|
|
scPath := fmt.Sprintf("%s/%s", rbdExamplePath, "secret.yaml")
|
|
|
|
sc, err := getSecret(scPath)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
2021-02-22 11:13:40 +00:00
|
|
|
if secretName != "" {
|
|
|
|
sc.Name = secretName
|
2020-09-03 09:34:29 +00:00
|
|
|
}
|
2021-02-22 11:13:40 +00:00
|
|
|
sc.StringData["userID"] = userName
|
|
|
|
sc.StringData["userKey"] = userKey
|
2020-09-03 09:34:29 +00:00
|
|
|
sc.Namespace = cephCSINamespace
|
2021-02-22 11:13:40 +00:00
|
|
|
_, err = f.ClientSet.CoreV1().Secrets(cephCSINamespace).Create(context.TODO(), &sc, metav1.CreateOptions{})
|
2020-09-03 09:34:29 +00:00
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
type imageInfoFromPVC struct {
|
|
|
|
imageID string
|
|
|
|
imageName string
|
|
|
|
csiVolumeHandle string
|
|
|
|
pvName string
|
|
|
|
}
|
|
|
|
|
|
|
|
// getImageInfoFromPVC reads volume handle of the bound PV to the passed in PVC,
|
|
|
|
// and returns imageInfoFromPVC or error.
|
|
|
|
func getImageInfoFromPVC(pvcNamespace, pvcName string, f *framework.Framework) (imageInfoFromPVC, error) {
|
|
|
|
var imageData imageInfoFromPVC
|
|
|
|
|
|
|
|
c := f.ClientSet.CoreV1()
|
|
|
|
pvc, err := c.PersistentVolumeClaims(pvcNamespace).Get(context.TODO(), pvcName, metav1.GetOptions{})
|
|
|
|
if err != nil {
|
|
|
|
return imageData, err
|
|
|
|
}
|
|
|
|
|
|
|
|
pv, err := c.PersistentVolumes().Get(context.TODO(), pvc.Spec.VolumeName, metav1.GetOptions{})
|
|
|
|
if err != nil {
|
|
|
|
return imageData, err
|
|
|
|
}
|
|
|
|
|
|
|
|
imageIDRegex := regexp.MustCompile(`(\w+\-?){5}$`)
|
|
|
|
imageID := imageIDRegex.FindString(pv.Spec.CSI.VolumeHandle)
|
|
|
|
|
|
|
|
imageData = imageInfoFromPVC{
|
|
|
|
imageID: imageID,
|
|
|
|
imageName: fmt.Sprintf("csi-vol-%s", imageID),
|
|
|
|
csiVolumeHandle: pv.Spec.CSI.VolumeHandle,
|
|
|
|
pvName: pv.Name,
|
|
|
|
}
|
|
|
|
return imageData, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func getImageMeta(rbdImageSpec, metaKey string, f *framework.Framework) (string, error) {
|
|
|
|
cmd := fmt.Sprintf("rbd image-meta get %s %s", rbdImageSpec, metaKey)
|
|
|
|
stdOut, stdErr, err := execCommandInToolBoxPod(f, cmd, rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return "", err
|
|
|
|
}
|
|
|
|
if stdErr != "" {
|
|
|
|
return strings.TrimSpace(stdOut), fmt.Errorf(stdErr)
|
|
|
|
}
|
|
|
|
return strings.TrimSpace(stdOut), nil
|
|
|
|
}
|
|
|
|
|
2020-11-26 10:44:22 +00:00
|
|
|
// validateImageOwner checks the "csi.volume.owner" key on the image journal
|
|
|
|
// and verifies that the owner is set to the namespace where the PVC is
|
|
|
|
// created.
|
|
|
|
func validateImageOwner(pvcPath string, f *framework.Framework) error {
|
|
|
|
const ownerKey = "csi.volume.owner"
|
|
|
|
|
|
|
|
pvc, err := loadPVC(pvcPath)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
pvc.Namespace = f.UniqueName
|
|
|
|
pvc.Name = f.UniqueName
|
|
|
|
err = createPVCAndvalidatePV(f.ClientSet, pvc, deployTimeout)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
imageData, err := getImageInfoFromPVC(pvc.Namespace, pvc.Name, f)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
stdOut, stdErr, err := execCommandInToolBoxPod(f,
|
|
|
|
fmt.Sprintf("rados %s getomapval csi.volume.%s %s", rbdOptions(defaultRBDPool), imageData.imageID, ownerKey), rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
if stdErr != "" {
|
|
|
|
return fmt.Errorf("failed to getomapval %v", stdErr)
|
|
|
|
}
|
|
|
|
|
|
|
|
if radosNamespace != "" {
|
|
|
|
e2elog.Logf("found image journal %s in pool %s namespace %s", "csi.volume."+imageData.imageID, defaultRBDPool, radosNamespace)
|
|
|
|
} else {
|
|
|
|
e2elog.Logf("found image journal %s in pool %s", "csi.volume."+imageData.imageID, defaultRBDPool)
|
|
|
|
}
|
|
|
|
|
|
|
|
if !strings.Contains(stdOut, pvc.Namespace) {
|
|
|
|
return fmt.Errorf("%q does not contain %q: %s", ownerKey, pvc.Namespace, stdOut)
|
|
|
|
}
|
|
|
|
|
|
|
|
return deletePVCAndValidatePV(f.ClientSet, pvc, deployTimeout)
|
|
|
|
}
|
|
|
|
|
2021-03-23 07:56:35 +00:00
|
|
|
func kmsIsVault(kms string) bool {
|
|
|
|
return kms == "vault"
|
|
|
|
}
|
|
|
|
|
2021-06-08 05:33:29 +00:00
|
|
|
func logErrors(f *framework.Framework, msg string, wgErrs []error) int {
|
|
|
|
failures := 0
|
|
|
|
for i, err := range wgErrs {
|
|
|
|
if err != nil {
|
|
|
|
// not using Failf() as it aborts the test and does not log other errors
|
|
|
|
e2elog.Logf("%s (%s%d): %v", msg, f.UniqueName, i, err)
|
|
|
|
failures++
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return failures
|
|
|
|
}
|
|
|
|
|
2021-03-22 07:01:38 +00:00
|
|
|
func validateCloneInDifferentPool(f *framework.Framework, snapshotPool, cloneSc, destImagePool string) error {
|
|
|
|
var wg sync.WaitGroup
|
|
|
|
totalCount := 10
|
|
|
|
wgErrs := make([]error, totalCount)
|
|
|
|
wg.Add(totalCount)
|
|
|
|
pvc, err := loadPVC(pvcPath)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("failed to load PVC with error %v", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
pvc.Namespace = f.UniqueName
|
|
|
|
err = createPVCAndvalidatePV(f.ClientSet, pvc, deployTimeout)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("failed to create PVC with error %v", err)
|
|
|
|
}
|
|
|
|
validateRBDImageCount(f, 1, defaultRBDPool)
|
|
|
|
snap := getSnapshot(snapshotPath)
|
|
|
|
snap.Namespace = f.UniqueName
|
|
|
|
snap.Spec.Source.PersistentVolumeClaimName = &pvc.Name
|
|
|
|
// create snapshot
|
|
|
|
for i := 0; i < totalCount; i++ {
|
|
|
|
go func(w *sync.WaitGroup, n int, s v1beta1.VolumeSnapshot) {
|
|
|
|
s.Name = fmt.Sprintf("%s%d", f.UniqueName, n)
|
|
|
|
wgErrs[n] = createSnapshot(&s, deployTimeout)
|
|
|
|
w.Done()
|
|
|
|
}(&wg, i, snap)
|
|
|
|
}
|
|
|
|
wg.Wait()
|
|
|
|
|
2021-06-08 05:33:29 +00:00
|
|
|
if failed := logErrors(f, "failed to create snapshot", wgErrs); failed != 0 {
|
2021-03-22 07:01:38 +00:00
|
|
|
return fmt.Errorf("creating snapshots failed, %d errors were logged", failed)
|
|
|
|
}
|
|
|
|
|
|
|
|
// delete parent pvc
|
|
|
|
err = deletePVCAndValidatePV(f.ClientSet, pvc, deployTimeout)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("failed to delete PVC with error %v", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
// validate the rbd images created for snapshots
|
|
|
|
validateRBDImageCount(f, totalCount, snapshotPool)
|
|
|
|
|
|
|
|
pvcClone, err := loadPVC(pvcClonePath)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("failed to load PVC with error %v", err)
|
|
|
|
}
|
|
|
|
appClone, err := loadApp(appClonePath)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("failed to load application with error %v", err)
|
|
|
|
}
|
|
|
|
pvcClone.Namespace = f.UniqueName
|
|
|
|
// if request is to create clone with different storage class
|
|
|
|
if cloneSc != "" {
|
|
|
|
pvcClone.Spec.StorageClassName = &cloneSc
|
|
|
|
}
|
|
|
|
appClone.Namespace = f.UniqueName
|
|
|
|
pvcClone.Spec.DataSource.Name = fmt.Sprintf("%s%d", f.UniqueName, 0)
|
|
|
|
// create multiple PVCs from same snapshot
|
|
|
|
wg.Add(totalCount)
|
|
|
|
for i := 0; i < totalCount; i++ {
|
|
|
|
go func(w *sync.WaitGroup, n int, p v1.PersistentVolumeClaim, a v1.Pod) {
|
|
|
|
name := fmt.Sprintf("%s%d", f.UniqueName, n)
|
|
|
|
wgErrs[n] = createPVCAndApp(name, f, &p, &a, deployTimeout)
|
|
|
|
w.Done()
|
|
|
|
}(&wg, i, *pvcClone, *appClone)
|
|
|
|
}
|
|
|
|
wg.Wait()
|
|
|
|
|
2021-06-08 05:33:29 +00:00
|
|
|
if failed := logErrors(f, "failed to create PVC and application", wgErrs); failed != 0 {
|
2021-03-22 07:01:38 +00:00
|
|
|
return fmt.Errorf("creating PVCs and applications failed, %d errors were logged", failed)
|
|
|
|
}
|
|
|
|
|
|
|
|
// total images in pool is total snaps + total clones
|
|
|
|
if destImagePool == snapshotPool {
|
|
|
|
totalCloneCount := totalCount + totalCount
|
|
|
|
validateRBDImageCount(f, totalCloneCount, snapshotPool)
|
|
|
|
} else {
|
|
|
|
// if clones are created in different pool we will have only rbd images of
|
|
|
|
// count equal to totalCount
|
|
|
|
validateRBDImageCount(f, totalCount, destImagePool)
|
|
|
|
}
|
|
|
|
wg.Add(totalCount)
|
|
|
|
// delete clone and app
|
|
|
|
for i := 0; i < totalCount; i++ {
|
|
|
|
go func(w *sync.WaitGroup, n int, p v1.PersistentVolumeClaim, a v1.Pod) {
|
|
|
|
name := fmt.Sprintf("%s%d", f.UniqueName, n)
|
|
|
|
p.Spec.DataSource.Name = name
|
|
|
|
wgErrs[n] = deletePVCAndApp(name, f, &p, &a)
|
|
|
|
w.Done()
|
|
|
|
}(&wg, i, *pvcClone, *appClone)
|
|
|
|
}
|
|
|
|
wg.Wait()
|
|
|
|
|
2021-06-08 05:33:29 +00:00
|
|
|
if failed := logErrors(f, "failed to delete PVC and application", wgErrs); failed != 0 {
|
2021-03-22 07:01:38 +00:00
|
|
|
return fmt.Errorf("deleting PVCs and applications failed, %d errors were logged", failed)
|
|
|
|
}
|
|
|
|
|
|
|
|
if destImagePool == snapshotPool {
|
|
|
|
// as we have deleted all clones total images in pool is total snaps
|
|
|
|
validateRBDImageCount(f, totalCount, snapshotPool)
|
|
|
|
} else {
|
|
|
|
// we have deleted all clones
|
|
|
|
validateRBDImageCount(f, 0, destImagePool)
|
|
|
|
}
|
|
|
|
|
|
|
|
wg.Add(totalCount)
|
|
|
|
// delete snapshot
|
|
|
|
for i := 0; i < totalCount; i++ {
|
|
|
|
go func(w *sync.WaitGroup, n int, s v1beta1.VolumeSnapshot) {
|
|
|
|
s.Name = fmt.Sprintf("%s%d", f.UniqueName, n)
|
|
|
|
wgErrs[n] = deleteSnapshot(&s, deployTimeout)
|
|
|
|
w.Done()
|
|
|
|
}(&wg, i, snap)
|
|
|
|
}
|
|
|
|
wg.Wait()
|
|
|
|
|
2021-06-08 05:33:29 +00:00
|
|
|
if failed := logErrors(f, "failed to delete snapshot", wgErrs); failed != 0 {
|
2021-03-22 07:01:38 +00:00
|
|
|
return fmt.Errorf("deleting snapshots failed, %d errors were logged", failed)
|
|
|
|
}
|
|
|
|
// validate all pools are empty
|
|
|
|
validateRBDImageCount(f, 0, snapshotPool)
|
|
|
|
validateRBDImageCount(f, 0, defaultRBDPool)
|
|
|
|
validateRBDImageCount(f, 0, destImagePool)
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2020-09-03 09:34:29 +00:00
|
|
|
func validateEncryptedPVCAndAppBinding(pvcPath, appPath, kms string, f *framework.Framework) error {
|
|
|
|
pvc, app, err := createPVCAndAppBinding(pvcPath, appPath, f, deployTimeout)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
imageData, err := getImageInfoFromPVC(pvc.Namespace, pvc.Name, f)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
2021-03-12 15:42:31 +00:00
|
|
|
|
2020-09-03 09:34:29 +00:00
|
|
|
rbdImageSpec := imageSpec(defaultRBDPool, imageData.imageName)
|
2021-03-12 15:42:31 +00:00
|
|
|
err = validateEncryptedImage(f, rbdImageSpec, app)
|
2020-09-03 09:34:29 +00:00
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
2021-04-26 13:15:18 +00:00
|
|
|
if kmsIsVault(kms) || kms == vaultTokens {
|
2020-09-03 09:34:29 +00:00
|
|
|
// check new passphrase created
|
2021-03-23 07:56:35 +00:00
|
|
|
_, stdErr := readVaultSecret(imageData.csiVolumeHandle, kmsIsVault(kms), f)
|
2020-09-03 09:34:29 +00:00
|
|
|
if stdErr != "" {
|
|
|
|
return fmt.Errorf("failed to read passphrase from vault: %s", stdErr)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
err = deletePVCAndApp("", f, pvc, app)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
2021-04-26 13:15:18 +00:00
|
|
|
if kmsIsVault(kms) || kms == vaultTokens {
|
2020-09-03 09:34:29 +00:00
|
|
|
// check new passphrase created
|
2021-03-23 07:56:35 +00:00
|
|
|
stdOut, _ := readVaultSecret(imageData.csiVolumeHandle, kmsIsVault(kms), f)
|
2020-09-03 09:34:29 +00:00
|
|
|
if stdOut != "" {
|
|
|
|
return fmt.Errorf("passphrase found in vault while should be deleted: %s", stdOut)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2021-03-12 15:42:31 +00:00
|
|
|
func validateEncryptedPVC(f *framework.Framework, pvc *v1.PersistentVolumeClaim, app *v1.Pod) error {
|
|
|
|
imageData, err := getImageInfoFromPVC(pvc.Namespace, pvc.Name, f)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
rbdImageSpec := imageSpec(defaultRBDPool, imageData.imageName)
|
|
|
|
|
|
|
|
return validateEncryptedImage(f, rbdImageSpec, app)
|
|
|
|
}
|
|
|
|
|
|
|
|
// validateEncryptedImage verifies that the RBD image is encrypted. The
|
|
|
|
// following checks are performed:
|
|
|
|
// - Metadata of the image should be set with the encryption state;
|
|
|
|
// - The pvc should be mounted by a pod, so the filesystem type can be fetched.
|
|
|
|
func validateEncryptedImage(f *framework.Framework, rbdImageSpec string, app *v1.Pod) error {
|
|
|
|
encryptedState, err := getImageMeta(rbdImageSpec, ".rbd.csi.ceph.com/encrypted", f)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
if encryptedState != "encrypted" {
|
|
|
|
return fmt.Errorf("%v not equal to encrypted", encryptedState)
|
|
|
|
}
|
|
|
|
|
|
|
|
volumeMountPath := app.Spec.Containers[0].VolumeMounts[0].MountPath
|
|
|
|
mountType, err := getMountType(app.Name, app.Namespace, volumeMountPath, f)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
if mountType != "crypt" {
|
|
|
|
return fmt.Errorf("%v not equal to crypt", mountType)
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2021-03-19 09:09:28 +00:00
|
|
|
func listRBDImages(f *framework.Framework, pool string) ([]string, error) {
|
2020-09-03 09:34:29 +00:00
|
|
|
var imgInfos []string
|
|
|
|
|
|
|
|
stdout, stdErr, err := execCommandInToolBoxPod(f,
|
2021-03-19 09:09:28 +00:00
|
|
|
fmt.Sprintf("rbd ls --format=json %s", rbdOptions(pool)), rookNamespace)
|
2020-09-03 09:34:29 +00:00
|
|
|
if err != nil {
|
|
|
|
return imgInfos, err
|
|
|
|
}
|
|
|
|
if stdErr != "" {
|
|
|
|
return imgInfos, fmt.Errorf("failed to list images %v", stdErr)
|
|
|
|
}
|
|
|
|
|
|
|
|
err = json.Unmarshal([]byte(stdout), &imgInfos)
|
|
|
|
if err != nil {
|
|
|
|
return imgInfos, err
|
|
|
|
}
|
|
|
|
return imgInfos, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func deleteBackingRBDImage(f *framework.Framework, pvc *v1.PersistentVolumeClaim) error {
|
|
|
|
imageData, err := getImageInfoFromPVC(pvc.Namespace, pvc.Name, f)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
cmd := fmt.Sprintf("rbd rm %s %s", rbdOptions(defaultRBDPool), imageData.imageName)
|
|
|
|
_, _, err = execCommandInToolBoxPod(f, cmd, rookNamespace)
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
2021-01-06 09:58:54 +00:00
|
|
|
// rbdDuImage contains the disk-usage statistics of an RBD image.
|
|
|
|
type rbdDuImage struct {
|
|
|
|
Name string `json:"name"`
|
|
|
|
ProvisionedSize uint64 `json:"provisioned_size"`
|
|
|
|
UsedSize uint64 `json:"used_size"`
|
|
|
|
}
|
|
|
|
|
|
|
|
// rbdDuImageList contains the list of images returned by 'rbd du'.
|
|
|
|
type rbdDuImageList struct {
|
|
|
|
Images []*rbdDuImage `json:"images"`
|
|
|
|
}
|
|
|
|
|
|
|
|
// getRbdDu runs 'rbd du' on the RBD image and returns a rbdDuImage struct with
|
|
|
|
// the result.
|
|
|
|
func getRbdDu(f *framework.Framework, pvc *v1.PersistentVolumeClaim) (*rbdDuImage, error) {
|
|
|
|
rdil := rbdDuImageList{}
|
|
|
|
|
|
|
|
imageData, err := getImageInfoFromPVC(pvc.Namespace, pvc.Name, f)
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
cmd := fmt.Sprintf("rbd du --format=json %s %s", rbdOptions(defaultRBDPool), imageData.imageName)
|
|
|
|
stdout, _, err := execCommandInToolBoxPod(f, cmd, rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
err = json.Unmarshal([]byte(stdout), &rdil)
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
for _, image := range rdil.Images {
|
|
|
|
if image.Name == imageData.imageName {
|
|
|
|
return image, nil
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil, fmt.Errorf("image %s not found", imageData.imageName)
|
|
|
|
}
|
|
|
|
|
|
|
|
// sparsifyBackingRBDImage runs `rbd sparsify` on the RBD image. Once done, all
|
|
|
|
// data blocks that contain zeros are discarded/trimmed/unmapped and do not
|
|
|
|
// take up any space anymore. This can be used to verify that an empty, but
|
|
|
|
// allocated (with zerofill) extents have been released.
|
|
|
|
func sparsifyBackingRBDImage(f *framework.Framework, pvc *v1.PersistentVolumeClaim) error {
|
|
|
|
imageData, err := getImageInfoFromPVC(pvc.Namespace, pvc.Name, f)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
cmd := fmt.Sprintf("rbd sparsify %s %s", rbdOptions(defaultRBDPool), imageData.imageName)
|
|
|
|
_, _, err = execCommandInToolBoxPod(f, cmd, rookNamespace)
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
2020-09-03 09:34:29 +00:00
|
|
|
func deletePool(name string, cephfs bool, f *framework.Framework) error {
|
|
|
|
var cmds = []string{}
|
|
|
|
if cephfs {
|
|
|
|
// ceph fs fail
|
|
|
|
// ceph fs rm myfs --yes-i-really-mean-it
|
|
|
|
// ceph osd pool delete myfs-metadata myfs-metadata
|
|
|
|
// --yes-i-really-mean-it
|
|
|
|
// ceph osd pool delete myfs-data0 myfs-data0
|
|
|
|
// --yes-i-really-mean-it
|
|
|
|
cmds = append(cmds, fmt.Sprintf("ceph fs fail %s", name),
|
|
|
|
fmt.Sprintf("ceph fs rm %s --yes-i-really-mean-it", name),
|
|
|
|
fmt.Sprintf("ceph osd pool delete %s-metadata %s-metadata --yes-i-really-really-mean-it", name, name),
|
|
|
|
fmt.Sprintf("ceph osd pool delete %s-data0 %s-data0 --yes-i-really-really-mean-it", name, name))
|
|
|
|
} else {
|
|
|
|
// ceph osd pool delete replicapool replicapool
|
|
|
|
// --yes-i-really-mean-it
|
|
|
|
cmds = append(cmds, fmt.Sprintf("ceph osd pool delete %s %s --yes-i-really-really-mean-it", name, name))
|
|
|
|
}
|
|
|
|
|
|
|
|
for _, cmd := range cmds {
|
|
|
|
// discard stdErr as some commands prints warning in strErr
|
|
|
|
_, _, err := execCommandInToolBoxPod(f, cmd, rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2021-03-19 09:21:33 +00:00
|
|
|
func createPool(f *framework.Framework, name string) error {
|
|
|
|
var (
|
|
|
|
pgCount = 128
|
|
|
|
size = 1
|
|
|
|
)
|
|
|
|
// ceph osd pool create replicapool
|
|
|
|
cmd := fmt.Sprintf("ceph osd pool create %s %d", name, pgCount)
|
|
|
|
_, _, err := execCommandInToolBoxPod(f, cmd, rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
// ceph osd pool set replicapool size 1
|
|
|
|
cmd = fmt.Sprintf("ceph osd pool set %s size %d --yes-i-really-mean-it", name, size)
|
|
|
|
_, _, err = execCommandInToolBoxPod(f, cmd, rookNamespace)
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
2020-09-03 09:34:29 +00:00
|
|
|
func getPVCImageInfoInPool(f *framework.Framework, pvc *v1.PersistentVolumeClaim, pool string) (string, error) {
|
|
|
|
imageData, err := getImageInfoFromPVC(pvc.Namespace, pvc.Name, f)
|
|
|
|
if err != nil {
|
|
|
|
return "", err
|
|
|
|
}
|
|
|
|
|
|
|
|
stdOut, stdErr, err := execCommandInToolBoxPod(f,
|
|
|
|
fmt.Sprintf("rbd info %s", imageSpec(pool, imageData.imageName)), rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return "", err
|
|
|
|
}
|
|
|
|
if stdErr != "" {
|
|
|
|
return "", fmt.Errorf("failed to get rbd info %v", stdErr)
|
|
|
|
}
|
|
|
|
|
|
|
|
if radosNamespace != "" {
|
|
|
|
e2elog.Logf("found image %s in pool %s namespace %s", imageData.imageName, pool, radosNamespace)
|
|
|
|
} else {
|
|
|
|
e2elog.Logf("found image %s in pool %s", imageData.imageName, pool)
|
|
|
|
}
|
|
|
|
|
|
|
|
return stdOut, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func checkPVCImageInPool(f *framework.Framework, pvc *v1.PersistentVolumeClaim, pool string) error {
|
|
|
|
_, err := getPVCImageInfoInPool(f, pvc, pool)
|
|
|
|
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
func checkPVCDataPoolForImageInPool(f *framework.Framework, pvc *v1.PersistentVolumeClaim, pool, dataPool string) error {
|
|
|
|
stdOut, err := getPVCImageInfoInPool(f, pvc, pool)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
if !strings.Contains(stdOut, "data_pool: "+dataPool) {
|
|
|
|
return fmt.Errorf("missing data pool value in image info, got info (%s)", stdOut)
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func checkPVCImageJournalInPool(f *framework.Framework, pvc *v1.PersistentVolumeClaim, pool string) error {
|
|
|
|
imageData, err := getImageInfoFromPVC(pvc.Namespace, pvc.Name, f)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
_, stdErr, err := execCommandInToolBoxPod(f,
|
|
|
|
fmt.Sprintf("rados listomapkeys %s csi.volume.%s", rbdOptions(pool), imageData.imageID), rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
if stdErr != "" {
|
|
|
|
return fmt.Errorf("failed to listomapkeys %v", stdErr)
|
|
|
|
}
|
|
|
|
|
|
|
|
if radosNamespace != "" {
|
|
|
|
e2elog.Logf("found image journal %s in pool %s namespace %s", "csi.volume."+imageData.imageID, pool, radosNamespace)
|
|
|
|
} else {
|
|
|
|
e2elog.Logf("found image journal %s in pool %s", "csi.volume."+imageData.imageID, pool)
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func checkPVCCSIJournalInPool(f *framework.Framework, pvc *v1.PersistentVolumeClaim, pool string) error {
|
|
|
|
imageData, err := getImageInfoFromPVC(pvc.Namespace, pvc.Name, f)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
_, stdErr, err := execCommandInToolBoxPod(f,
|
|
|
|
fmt.Sprintf("rados getomapval %s csi.volumes.default csi.volume.%s", rbdOptions(pool), imageData.pvName), rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
if stdErr != "" {
|
|
|
|
return fmt.Errorf("error getting fsid %v", stdErr)
|
|
|
|
}
|
|
|
|
|
|
|
|
if radosNamespace != "" {
|
|
|
|
e2elog.Logf("found CSI journal entry %s in pool %s namespace %s", "csi.volume."+imageData.pvName, pool, radosNamespace)
|
|
|
|
} else {
|
|
|
|
e2elog.Logf("found CSI journal entry %s in pool %s", "csi.volume."+imageData.pvName, pool)
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|
2020-10-28 07:43:52 +00:00
|
|
|
|
|
|
|
func deletePVCImageJournalInPool(f *framework.Framework, pvc *v1.PersistentVolumeClaim, pool string) error {
|
|
|
|
imageData, err := getImageInfoFromPVC(pvc.Namespace, pvc.Name, f)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
_, stdErr, err := execCommandInToolBoxPod(f,
|
|
|
|
fmt.Sprintf("rados rm %s csi.volume.%s", rbdOptions(pool), imageData.imageID), rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
if stdErr != "" {
|
|
|
|
return fmt.Errorf("failed to remove omap %s csi.volume.%s with error %v", rbdOptions(pool), imageData.imageID, stdErr)
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func deletePVCCSIJournalInPool(f *framework.Framework, pvc *v1.PersistentVolumeClaim, pool string) error {
|
|
|
|
imageData, err := getImageInfoFromPVC(pvc.Namespace, pvc.Name, f)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
_, stdErr, err := execCommandInToolBoxPod(f,
|
|
|
|
fmt.Sprintf("rados rmomapkey %s csi.volumes.default csi.volume.%s", rbdOptions(pool), imageData.pvName), rookNamespace)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
if stdErr != "" {
|
|
|
|
return fmt.Errorf("failed to remove %s csi.volumes.default csi.volume.%s with error %v", rbdOptions(pool), imageData.imageID, stdErr)
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|
2021-03-11 08:42:02 +00:00
|
|
|
|
|
|
|
func validateThickPVC(f *framework.Framework, pvc *v1.PersistentVolumeClaim, size string) error {
|
|
|
|
pvc.Namespace = f.UniqueName
|
|
|
|
pvc.Spec.Resources.Requests[v1.ResourceStorage] = resource.MustParse(size)
|
|
|
|
|
|
|
|
err := createPVCAndvalidatePV(f.ClientSet, pvc, deployTimeout)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("failed to create PVC with error %w", err)
|
|
|
|
}
|
2021-03-19 09:09:28 +00:00
|
|
|
validateRBDImageCount(f, 1, defaultRBDPool)
|
2021-03-11 08:42:02 +00:00
|
|
|
|
|
|
|
// nothing has been written, but the image should be allocated
|
|
|
|
du, err := getRbdDu(f, pvc)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("failed to get allocations of RBD image: %w", err)
|
|
|
|
} else if du.UsedSize == 0 || du.UsedSize != du.ProvisionedSize {
|
|
|
|
return fmt.Errorf("backing RBD image is not thick-provisioned (%d/%d)", du.UsedSize, du.ProvisionedSize)
|
|
|
|
}
|
|
|
|
|
|
|
|
// expanding the PVC should thick-allocate the expansion
|
2021-04-08 11:28:02 +00:00
|
|
|
// nolint:gomnd // we want 2x the size so that extending is done
|
2021-03-11 08:42:02 +00:00
|
|
|
newSize := du.ProvisionedSize * 2
|
|
|
|
err = expandPVCSize(f.ClientSet, pvc, fmt.Sprintf("%d", newSize), deployTimeout)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("failed to expand PVC: %w", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
// after expansion, the updated 'du' should be larger
|
|
|
|
du, err = getRbdDu(f, pvc)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("failed to get allocations of RBD image: %w", err)
|
|
|
|
} else if du.UsedSize != newSize {
|
|
|
|
return fmt.Errorf("backing RBD image is not extended thick-provisioned (%d/%d)", du.UsedSize, newSize)
|
|
|
|
}
|
|
|
|
|
|
|
|
// thick provisioning allows for sparsifying
|
|
|
|
err = sparsifyBackingRBDImage(f, pvc)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("failed to sparsify RBD image: %w", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
// after sparsifying the image should not have any allocations
|
|
|
|
du, err = getRbdDu(f, pvc)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("backing RBD image is not thick-provisioned: %w", err)
|
|
|
|
} else if du.UsedSize != 0 {
|
|
|
|
return fmt.Errorf("backing RBD image was not sparsified (%d bytes allocated)", du.UsedSize)
|
|
|
|
}
|
|
|
|
|
|
|
|
err = deletePVCAndValidatePV(f.ClientSet, pvc, deployTimeout)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("failed to delete PVC with error: %w", err)
|
|
|
|
}
|
2021-03-19 09:09:28 +00:00
|
|
|
validateRBDImageCount(f, 0, defaultRBDPool)
|
2021-03-11 08:42:02 +00:00
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|