mirror of https://github.com/k3s-io/k3s
395 lines
13 KiB
Go
395 lines
13 KiB
Go
// +build !providerless
|
|
|
|
/*
|
|
Copyright 2017 The Kubernetes Authors.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package azure
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
"net/http"
|
|
"path"
|
|
"strconv"
|
|
"strings"
|
|
|
|
"github.com/Azure/azure-sdk-for-go/services/compute/mgmt/2019-12-01/compute"
|
|
"github.com/Azure/go-autorest/autorest/to"
|
|
|
|
v1 "k8s.io/api/core/v1"
|
|
"k8s.io/apimachinery/pkg/api/resource"
|
|
kwait "k8s.io/apimachinery/pkg/util/wait"
|
|
cloudvolume "k8s.io/cloud-provider/volume"
|
|
volumehelpers "k8s.io/cloud-provider/volume/helpers"
|
|
"k8s.io/klog/v2"
|
|
)
|
|
|
|
const (
|
|
// default IOPS Caps & Throughput Cap (MBps) per https://docs.microsoft.com/en-us/azure/virtual-machines/linux/disks-ultra-ssd
|
|
defaultDiskIOPSReadWrite = 500
|
|
defaultDiskMBpsReadWrite = 100
|
|
|
|
diskEncryptionSetIDFormat = "/subscriptions/{subs-id}/resourceGroups/{rg-name}/providers/Microsoft.Compute/diskEncryptionSets/{diskEncryptionSet-name}"
|
|
)
|
|
|
|
//ManagedDiskController : managed disk controller struct
|
|
type ManagedDiskController struct {
|
|
common *controllerCommon
|
|
}
|
|
|
|
// ManagedDiskOptions specifies the options of managed disks.
|
|
type ManagedDiskOptions struct {
|
|
// The name of the disk.
|
|
DiskName string
|
|
// The size in GB.
|
|
SizeGB int
|
|
// The name of PVC.
|
|
PVCName string
|
|
// The name of resource group.
|
|
ResourceGroup string
|
|
// The AvailabilityZone to create the disk.
|
|
AvailabilityZone string
|
|
// The tags of the disk.
|
|
Tags map[string]string
|
|
// The SKU of storage account.
|
|
StorageAccountType compute.DiskStorageAccountTypes
|
|
// IOPS Caps for UltraSSD disk
|
|
DiskIOPSReadWrite string
|
|
// Throughput Cap (MBps) for UltraSSD disk
|
|
DiskMBpsReadWrite string
|
|
// if SourceResourceID is not empty, then it's a disk copy operation(for snapshot)
|
|
SourceResourceID string
|
|
// The type of source
|
|
SourceType string
|
|
// ResourceId of the disk encryption set to use for enabling encryption at rest.
|
|
DiskEncryptionSetID string
|
|
// The maximum number of VMs that can attach to the disk at the same time. Value greater than one indicates a disk that can be mounted on multiple VMs at the same time.
|
|
MaxShares int32
|
|
}
|
|
|
|
//CreateManagedDisk : create managed disk
|
|
func (c *ManagedDiskController) CreateManagedDisk(options *ManagedDiskOptions) (string, error) {
|
|
var err error
|
|
klog.V(4).Infof("azureDisk - creating new managed Name:%s StorageAccountType:%s Size:%v", options.DiskName, options.StorageAccountType, options.SizeGB)
|
|
|
|
var createZones []string
|
|
if len(options.AvailabilityZone) > 0 {
|
|
requestedZone := c.common.cloud.GetZoneID(options.AvailabilityZone)
|
|
if requestedZone != "" {
|
|
createZones = append(createZones, requestedZone)
|
|
}
|
|
}
|
|
|
|
// insert original tags to newTags
|
|
newTags := make(map[string]*string)
|
|
azureDDTag := "kubernetes-azure-dd"
|
|
newTags["created-by"] = &azureDDTag
|
|
if options.Tags != nil {
|
|
for k, v := range options.Tags {
|
|
// Azure won't allow / (forward slash) in tags
|
|
newKey := strings.Replace(k, "/", "-", -1)
|
|
newValue := strings.Replace(v, "/", "-", -1)
|
|
newTags[newKey] = &newValue
|
|
}
|
|
}
|
|
|
|
diskSizeGB := int32(options.SizeGB)
|
|
diskSku := compute.DiskStorageAccountTypes(options.StorageAccountType)
|
|
|
|
creationData, err := getValidCreationData(c.common.subscriptionID, options.ResourceGroup, options.SourceResourceID, options.SourceType)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
diskProperties := compute.DiskProperties{
|
|
DiskSizeGB: &diskSizeGB,
|
|
CreationData: &creationData,
|
|
}
|
|
|
|
if diskSku == compute.UltraSSDLRS {
|
|
diskIOPSReadWrite := int64(defaultDiskIOPSReadWrite)
|
|
if options.DiskIOPSReadWrite != "" {
|
|
v, err := strconv.Atoi(options.DiskIOPSReadWrite)
|
|
if err != nil {
|
|
return "", fmt.Errorf("AzureDisk - failed to parse DiskIOPSReadWrite: %v", err)
|
|
}
|
|
diskIOPSReadWrite = int64(v)
|
|
}
|
|
diskProperties.DiskIOPSReadWrite = to.Int64Ptr(diskIOPSReadWrite)
|
|
|
|
diskMBpsReadWrite := int64(defaultDiskMBpsReadWrite)
|
|
if options.DiskMBpsReadWrite != "" {
|
|
v, err := strconv.Atoi(options.DiskMBpsReadWrite)
|
|
if err != nil {
|
|
return "", fmt.Errorf("AzureDisk - failed to parse DiskMBpsReadWrite: %v", err)
|
|
}
|
|
diskMBpsReadWrite = int64(v)
|
|
}
|
|
diskProperties.DiskMBpsReadWrite = to.Int64Ptr(diskMBpsReadWrite)
|
|
} else {
|
|
if options.DiskIOPSReadWrite != "" {
|
|
return "", fmt.Errorf("AzureDisk - DiskIOPSReadWrite parameter is only applicable in UltraSSD_LRS disk type")
|
|
}
|
|
if options.DiskMBpsReadWrite != "" {
|
|
return "", fmt.Errorf("AzureDisk - DiskMBpsReadWrite parameter is only applicable in UltraSSD_LRS disk type")
|
|
}
|
|
}
|
|
|
|
if options.DiskEncryptionSetID != "" {
|
|
if strings.Index(strings.ToLower(options.DiskEncryptionSetID), "/subscriptions/") != 0 {
|
|
return "", fmt.Errorf("AzureDisk - format of DiskEncryptionSetID(%s) is incorrect, correct format: %s", options.DiskEncryptionSetID, diskEncryptionSetIDFormat)
|
|
}
|
|
diskProperties.Encryption = &compute.Encryption{
|
|
DiskEncryptionSetID: &options.DiskEncryptionSetID,
|
|
Type: compute.EncryptionAtRestWithCustomerKey,
|
|
}
|
|
}
|
|
|
|
if options.MaxShares > 1 {
|
|
diskProperties.MaxShares = &options.MaxShares
|
|
}
|
|
|
|
model := compute.Disk{
|
|
Location: &c.common.location,
|
|
Tags: newTags,
|
|
Sku: &compute.DiskSku{
|
|
Name: diskSku,
|
|
},
|
|
DiskProperties: &diskProperties,
|
|
}
|
|
|
|
if len(createZones) > 0 {
|
|
model.Zones = &createZones
|
|
}
|
|
|
|
if options.ResourceGroup == "" {
|
|
options.ResourceGroup = c.common.resourceGroup
|
|
}
|
|
|
|
ctx, cancel := getContextWithCancel()
|
|
defer cancel()
|
|
rerr := c.common.cloud.DisksClient.CreateOrUpdate(ctx, options.ResourceGroup, options.DiskName, model)
|
|
if rerr != nil {
|
|
return "", rerr.Error()
|
|
}
|
|
|
|
diskID := ""
|
|
|
|
err = kwait.ExponentialBackoff(defaultBackOff, func() (bool, error) {
|
|
provisionState, id, err := c.GetDisk(options.ResourceGroup, options.DiskName)
|
|
diskID = id
|
|
// We are waiting for provisioningState==Succeeded
|
|
// We don't want to hand-off managed disks to k8s while they are
|
|
//still being provisioned, this is to avoid some race conditions
|
|
if err != nil {
|
|
return false, err
|
|
}
|
|
if strings.ToLower(provisionState) == "succeeded" {
|
|
return true, nil
|
|
}
|
|
return false, nil
|
|
})
|
|
|
|
if err != nil {
|
|
klog.V(2).Infof("azureDisk - created new MD Name:%s StorageAccountType:%s Size:%v but was unable to confirm provisioningState in poll process", options.DiskName, options.StorageAccountType, options.SizeGB)
|
|
} else {
|
|
klog.V(2).Infof("azureDisk - created new MD Name:%s StorageAccountType:%s Size:%v", options.DiskName, options.StorageAccountType, options.SizeGB)
|
|
}
|
|
|
|
return diskID, nil
|
|
}
|
|
|
|
//DeleteManagedDisk : delete managed disk
|
|
func (c *ManagedDiskController) DeleteManagedDisk(diskURI string) error {
|
|
diskName := path.Base(diskURI)
|
|
resourceGroup, err := getResourceGroupFromDiskURI(diskURI)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
ctx, cancel := getContextWithCancel()
|
|
defer cancel()
|
|
|
|
if _, ok := c.common.diskAttachDetachMap.Load(strings.ToLower(diskURI)); ok {
|
|
return fmt.Errorf("failed to delete disk(%s) since it's in attaching or detaching state", diskURI)
|
|
}
|
|
|
|
disk, rerr := c.common.cloud.DisksClient.Get(ctx, resourceGroup, diskName)
|
|
if rerr != nil {
|
|
return rerr.Error()
|
|
}
|
|
|
|
if disk.ManagedBy != nil {
|
|
return fmt.Errorf("disk(%s) already attached to node(%s), could not be deleted", diskURI, *disk.ManagedBy)
|
|
}
|
|
|
|
rerr = c.common.cloud.DisksClient.Delete(ctx, resourceGroup, diskName)
|
|
if rerr != nil {
|
|
if rerr.HTTPStatusCode == http.StatusNotFound {
|
|
klog.V(2).Infof("azureDisk - disk(%s) is already deleted", diskURI)
|
|
return nil
|
|
}
|
|
return rerr.Error()
|
|
}
|
|
// We don't need poll here, k8s will immediately stop referencing the disk
|
|
// the disk will be eventually deleted - cleanly - by ARM
|
|
|
|
klog.V(2).Infof("azureDisk - deleted a managed disk: %s", diskURI)
|
|
|
|
return nil
|
|
}
|
|
|
|
// GetDisk return: disk provisionState, diskID, error
|
|
func (c *ManagedDiskController) GetDisk(resourceGroup, diskName string) (string, string, error) {
|
|
ctx, cancel := getContextWithCancel()
|
|
defer cancel()
|
|
|
|
result, rerr := c.common.cloud.DisksClient.Get(ctx, resourceGroup, diskName)
|
|
if rerr != nil {
|
|
return "", "", rerr.Error()
|
|
}
|
|
|
|
if result.DiskProperties != nil && (*result.DiskProperties).ProvisioningState != nil {
|
|
return *(*result.DiskProperties).ProvisioningState, *result.ID, nil
|
|
}
|
|
|
|
return "", "", nil
|
|
}
|
|
|
|
// ResizeDisk Expand the disk to new size
|
|
func (c *ManagedDiskController) ResizeDisk(diskURI string, oldSize resource.Quantity, newSize resource.Quantity) (resource.Quantity, error) {
|
|
ctx, cancel := getContextWithCancel()
|
|
defer cancel()
|
|
|
|
diskName := path.Base(diskURI)
|
|
resourceGroup, err := getResourceGroupFromDiskURI(diskURI)
|
|
if err != nil {
|
|
return oldSize, err
|
|
}
|
|
|
|
result, rerr := c.common.cloud.DisksClient.Get(ctx, resourceGroup, diskName)
|
|
if rerr != nil {
|
|
return oldSize, rerr.Error()
|
|
}
|
|
|
|
if result.DiskProperties == nil || result.DiskProperties.DiskSizeGB == nil {
|
|
return oldSize, fmt.Errorf("DiskProperties of disk(%s) is nil", diskName)
|
|
}
|
|
|
|
// Azure resizes in chunks of GiB (not GB)
|
|
requestGiB, err := volumehelpers.RoundUpToGiBInt32(newSize)
|
|
if err != nil {
|
|
return oldSize, err
|
|
}
|
|
|
|
newSizeQuant := resource.MustParse(fmt.Sprintf("%dGi", requestGiB))
|
|
|
|
klog.V(2).Infof("azureDisk - begin to resize disk(%s) with new size(%d), old size(%v)", diskName, requestGiB, oldSize)
|
|
// If disk already of greater or equal size than requested we return
|
|
if *result.DiskProperties.DiskSizeGB >= requestGiB {
|
|
return newSizeQuant, nil
|
|
}
|
|
|
|
if result.DiskProperties.DiskState != compute.Unattached {
|
|
return oldSize, fmt.Errorf("azureDisk - disk resize is only supported on Unattached disk, current disk state: %s, already attached to %s", result.DiskProperties.DiskState, to.String(result.ManagedBy))
|
|
}
|
|
|
|
diskParameter := compute.DiskUpdate{
|
|
DiskUpdateProperties: &compute.DiskUpdateProperties{
|
|
DiskSizeGB: &requestGiB,
|
|
},
|
|
}
|
|
|
|
ctx, cancel = getContextWithCancel()
|
|
defer cancel()
|
|
if rerr := c.common.cloud.DisksClient.Update(ctx, resourceGroup, diskName, diskParameter); rerr != nil {
|
|
return oldSize, rerr.Error()
|
|
}
|
|
|
|
klog.V(2).Infof("azureDisk - resize disk(%s) with new size(%d) completed", diskName, requestGiB)
|
|
|
|
return newSizeQuant, nil
|
|
}
|
|
|
|
// get resource group name from a managed disk URI, e.g. return {group-name} according to
|
|
// /subscriptions/{sub-id}/resourcegroups/{group-name}/providers/microsoft.compute/disks/{disk-id}
|
|
// according to https://docs.microsoft.com/en-us/rest/api/compute/disks/get
|
|
func getResourceGroupFromDiskURI(diskURI string) (string, error) {
|
|
fields := strings.Split(diskURI, "/")
|
|
if len(fields) != 9 || strings.ToLower(fields[3]) != "resourcegroups" {
|
|
return "", fmt.Errorf("invalid disk URI: %s", diskURI)
|
|
}
|
|
return fields[4], nil
|
|
}
|
|
|
|
// GetLabelsForVolume implements PVLabeler.GetLabelsForVolume
|
|
func (c *Cloud) GetLabelsForVolume(ctx context.Context, pv *v1.PersistentVolume) (map[string]string, error) {
|
|
// Ignore if not AzureDisk.
|
|
if pv.Spec.AzureDisk == nil {
|
|
return nil, nil
|
|
}
|
|
|
|
// Ignore any volumes that are being provisioned
|
|
if pv.Spec.AzureDisk.DiskName == cloudvolume.ProvisionedVolumeName {
|
|
return nil, nil
|
|
}
|
|
|
|
return c.GetAzureDiskLabels(pv.Spec.AzureDisk.DataDiskURI)
|
|
}
|
|
|
|
// GetAzureDiskLabels gets availability zone labels for Azuredisk.
|
|
func (c *Cloud) GetAzureDiskLabels(diskURI string) (map[string]string, error) {
|
|
// Get disk's resource group.
|
|
diskName := path.Base(diskURI)
|
|
resourceGroup, err := getResourceGroupFromDiskURI(diskURI)
|
|
if err != nil {
|
|
klog.Errorf("Failed to get resource group for AzureDisk %q: %v", diskName, err)
|
|
return nil, err
|
|
}
|
|
|
|
labels := map[string]string{
|
|
LabelFailureDomainBetaRegion: c.Location,
|
|
}
|
|
// no azure credential is set, return nil
|
|
if c.DisksClient == nil {
|
|
return labels, nil
|
|
}
|
|
// Get information of the disk.
|
|
ctx, cancel := getContextWithCancel()
|
|
defer cancel()
|
|
disk, rerr := c.DisksClient.Get(ctx, resourceGroup, diskName)
|
|
if rerr != nil {
|
|
klog.Errorf("Failed to get information for AzureDisk %q: %v", diskName, rerr)
|
|
return nil, rerr.Error()
|
|
}
|
|
|
|
// Check whether availability zone is specified.
|
|
if disk.Zones == nil || len(*disk.Zones) == 0 {
|
|
klog.V(4).Infof("Azure disk %q is not zoned", diskName)
|
|
return labels, nil
|
|
}
|
|
|
|
zones := *disk.Zones
|
|
zoneID, err := strconv.Atoi(zones[0])
|
|
if err != nil {
|
|
return nil, fmt.Errorf("failed to parse zone %v for AzureDisk %v: %v", zones, diskName, err)
|
|
}
|
|
|
|
zone := c.makeZone(c.Location, zoneID)
|
|
klog.V(4).Infof("Got zone %q for Azure disk %q", zone, diskName)
|
|
labels[LabelFailureDomainBetaZone] = zone
|
|
return labels, nil
|
|
}
|