EdgeFS Rook integrated CSI driver, provisioner and attacher

Container Storage Interface (CSI) driver, provisioner, and attacher for EdgeFS Scale-Out NFS

Overview

EdgeFS CSI plugins implements interface between CSI enabled Container Orchestrator (CO) and EdgeFS local cluster site. It allows dynamic and static provisioning of EdgeFS NFS exports or iSCSI LUNs, and attaching them to stateful application workloads. With EdgeFS NFS implementation, I/O load can be spread-out across multiple PODs, thus eliminating networking I/O bottlenecks of classic single-node NFS. Current implementation of EdgeFS CSI plugin was tested in Kubernetes environment (requires Kubernetes 1.11+), however the code is Kubernetes version agnostic and should be able to run with any CSI enabled CO.

Deployment

Ensure that Rook EdgeFS cluster up and running.

Configure new NFS service (lets say named as “nfs01”) via efscli and create Rook EdgeFS NFS resouce.

Configure CSI driver options and cluster discovery using kubernetes secret json file as an example.

Secret file configuration options example:

  1. {
  2.     "k8sEdgefsNamespace": "rook-edgefs",
  3.     "cluster": "cltest",
  4.     "tenant": "test",
  5.     "serviceFilter": "nfs01",
  6.     "username": "admin",
  7.     "password": "admin"
  8. }
NameDescriptionDefault valueRequired
usernameEdgeFS gRPC API server privileged user“admin”true
passwordEdgeFS gRPC API server password“admin”true
clusterEdgeFS cluster namespace also known as ‘region’ false
tenantEdgeFS tenant isolated namespace false
serviceFilterList of comma delimeted allowed service names to filter”” means all services allowedfalse
k8sEdgefsNamespaceRook EdgeFS cluster namespace true

By using k8sEdgefsNamespace parameter, driver is capable of detecting ClusterIPs and Endpoint IPs to provision and attach volumes.

Check configuration options and create kubernetes secret for NexentaEdge CSI plugin

  1. cd cluster/examples/kubernetes/edgefs/csi/secret
  2. kubectl create secret generic rook-edgefs-cluster --from-file=./cluster-config.json

After secret is created successfully, deploy EdgeFS CSI plugin, provisioner and attacher using the following command

  1. cd cluster/examples/kubernetes/edgefs/csi
  2. kubectl apply -f .

Note that for Kubernetes versions >= v1.12.1 CSI architecutre introduced kind=CSIDriver CRD. To use earlier version change pwd to ‘k8s-prior-12.1’ subdirectory.

There should be number of EdgeFS CSI plugin PODs available running as a DaemonSet

  1. ...
  2. NAMESPACE     NAME                                    READY     STATUS    RESTARTS   AGE
  3. default       csi-attacher-nedgeplugin-0              2/2       Running   0          18s
  4. default       csi-provisioner-nedgeplugin-0           2/2       Running   0          18s
  5. default       edgefs-csi-plugin-7s6wc                 2/2       Running   0          19s
  6. ...

At this point configuration is all ready and available for consumption by appliations.

Pre-provisioned volumes (NFS)

This method allows to use already created exports in EdgeFS services. This method keeps exports provisioned after application PODs terminated. Read more on how to create PersistentVolume specification for pre-provisioned volumes:

link to Pre-provisioned volumes manifest specification

To test creation and mount pre-provisioned volume to pod execute example

Note:

Make sure that volumeHandle: clus1/ten1/buk1 in nginx.yaml already exist on EdgeFS cluster

Examples:

  1. cd cluster/examples/kubernetes/edgefs/csi/examples
  2. kubectl apply -f ./pre-provisioned-nginx.yaml #one pod with pre-provisioned volume
  3. kubectl apply -f ./deployment.yaml            # 10 pods deployment shares one EdgeFS bucket

Dynamically provisioned volumes (NFS)

To setup the system for dynamic provisioning, administrator needs to setup a StorageClass pointing to the CSI driver’s external-provisioner and specifying any parameters required by the driver

link to dynamically provisioned volumes specification

Note:

For dynamically provisioned volumes kubernetes will generate volume name automatically (for example pvc-871068ed-8b5d-11e8-9dae-005056b37cb2) Additional creation options should be passed as parameters in storage class definition i.e :

  1. apiVersion: storage.k8s.io/v1
  2. kind: StorageClass
  3. metadata:
  4.   name: csi-sc-nedgeplugin
  5. provisioner: edgefs-csi-plugin
  6. parameters:
  7.   tenant: ten1
  8.   encryption: true

Options:

NameDescriptionAllowed valuesDefault value
clusterNexentaEdge cluster namespace if not defined in secret  
tenantNexentaEdge tenant namespace if not defined in secret  
chunksizeChunk size for actual volume, in bytesshould be power of two1048576 bytes
aclVolume acl restrictions all
ecEnables ccow erasure coding for volumetrue, false, 0, 1false
ecmodeSet ccow erasure mode data mode (If ‘ec’ option enabled)“4:2:rs” ,”6:2:rs”, “9:3:rs”6:2:rs
encryptionEnables encryption for volumetrue, false, 0, 1false

Note:

Options are case sensitive and should be in lower case

Example:

  1. cd cluster/examples/kubernetes/edgefs/csi/examples
  2. kubectl apply -f ./dynamic-nginx.yaml

Troubleshooting and log collection

For details about other configuration and deployment of EdgeFS CSI plugin, see Wiki pages:

Please submit an issue at: Issues

Tips

In case any problems using EdgeFS CSI driver

  1. Check CSI plugin pods state

    1. kubectl describe pod edgefs-csi-plugin-xxxxx

  2. Check provisioned pods state

    1. kubectl describe pods nginx

  3. Check CSI plugin logs

    1. kubectl logs csi-attacher-nedgeplugin-0 -c nfs
    2. kubectl logs csi-provisioner-nedgeplugin-0 -c nfs
    3. kubectl logs edgefs-csi-plugin-j8ljf -c nfs