Initial commit with support for static provisioning

Author: PatrickGhadban

Dockerfile

@@ -0,0 +1,13 @@
+FROM --platform=$BUILDPLATFORM golang:1.19.0-bullseye as builder
+WORKDIR /go/src/github.com/kubernetes-sigs/aws-file-cache-csi-driver
+ADD . .
+RUN make
+
+FROM amazonlinux:2 AS linux-amazon
+RUN yum update -y
+RUN yum install util-linux libyaml -y \
+    && amazon-linux-extras install -y lustre
+
+COPY --from=builder /go/src/github.com/kubernetes-sigs/aws-file-cache-csi-driver/bin/aws-file-cache-csi-driver /bin/aws-file-cache-csi-driver
+
+ENTRYPOINT ["/bin/aws-file-cache-csi-driver"]

Makefile

@@ -0,0 +1,70 @@
+VERSION=0.1.0
+
+PKG=github.com/kubernetes-sigs/aws-file-cache-csi-driver
+GIT_COMMIT?=$(shell git rev-parse HEAD)
+BUILD_DATE?=$(shell date -u +"%Y-%m-%dT%H:%M:%SZ")
+
+LDFLAGS?="-X ${PKG}/pkg/driver.driverVersion=${VERSION} -X ${PKG}/pkg/driver.gitCommit=${GIT_COMMIT} -X ${PKG}/pkg/driver.buildDate=${BUILD_DATE}"
+
+GO111MODULE=on
+GOPROXY=direct
+GOPATH=$(shell go env GOPATH)
+GOOS=$(shell go env GOOS)
+GOBIN=$(shell pwd)/bin
+
+IMAGE?=648284600874.dkr.ecr.us-east-1.amazonaws.com/aws-file-cache-csi-driver
+TAG?=$(GIT_COMMIT)
+
+OUTPUT_TYPE?=docker
+
+ARCH=amd64
+OS=linux
+OSVERSION=amazon
+
+ALL_OS?=linux
+ALL_ARCH_linux?=amd64 arm64
+ALL_OSVERSION_linux?=amazon
+ALL_OS_ARCH_OSVERSION_linux=$(foreach arch, $(ALL_ARCH_linux), $(foreach osversion, ${ALL_OSVERSION_linux}, linux-$(arch)-${osversion}))
+
+ALL_OS_ARCH_OSVERSION=$(foreach os, $(ALL_OS), ${ALL_OS_ARCH_OSVERSION_${os}})
+
+PLATFORM?=linux/amd64,linux/arm64
+
+# split words on hyphen, access by 1-index
+word-hyphen = $(word $2,$(subst -, ,$1))
+
+.EXPORT_ALL_VARIABLES:
+
+.PHONY: aws-file-cache-csi-driver
+aws-file-cache-csi-driver:
+	mkdir -p bin
+	CGO_ENABLED=0 GOOS=linux go build -ldflags ${LDFLAGS} -o bin/aws-file-cache-csi-driver ./cmd/
+
+.PHONY: all
+all: all-image-docker
+
+.PHONY: all-push
+all-push:
+	docker buildx build \
+		--no-cache-filter=linux-amazon \
+		--platform=$(PLATFORM) \
+		--progress=plain \
+		--target=$(OS)-$(OSVERSION) \
+		--output=type=registry \
+		-t=$(IMAGE):$(TAG) \
+		.
+	touch $@
+
+.PHONY: all-image-docker
+all-image-docker: $(addprefix sub-image-docker-,$(ALL_OS_ARCH_OSVERSION_linux))
+
+sub-image-%:
+	$(MAKE) OUTPUT_TYPE=$(call word-hyphen,$*,1) OS=$(call word-hyphen,$*,2) ARCH=$(call word-hyphen,$*,3) OSVERSION=$(call word-hyphen,$*,4) image
+
+.PHONY: test
+test:
+	go test -v -race ./pkg/...
+
+.PHONY: clean
+clean:
+	rm -rf .*image-* bin/

README.md

@@ -1,16 +1,106 @@
-# aws-file-cache-csi-driver
+[![Build Status](https://travis-ci.org/aws/aws-fsx-csi-driver.svg?branch=master)](https://travis-ci.org/aws/aws-fsx-csi-driver)
 
-Amazon File Cache Cloud Container Storage Interface(CSI) Driver
+**WARNING**: This driver is in pre ALPHA currently. This means that there may potentially be backwards compatible breaking changes moving forward. Do NOT use this driver in a production environment in its current state.
 
-## Community, discussion, contribution, and support
+**DISCLAIMER**: This is not an officially supported Amazon product
 
-Learn how to engage with the Kubernetes community on the [community page](http://kubernetes.io/community/).
+## Amazon File Cache CSI Driver
+### Overview
 
-You can reach the maintainers of this project at:
+The [Amazon File Cache]() Container Storage Interface (CSI) Driver provides a [CSI]() interface used by container orchestrators to manage the lifecycle of Amazon file cache volumes.
 
-- [Slack](https://kubernetes.slack.com/messages/sig-cloud-provider)
-- [Mailing List](https://groups.google.com/forum/#!forum/kubernetes-sig-cloud-provider)
+This driver is in alpha stage. Basic volume operations that are functional include NodePublishVolume/NodeUnpublishVolume.
 
-### Code of conduct
+### CSI Specification Compability Matrix
+| AWS File Cache CSI Driver \ CSI Version           | v1.0.0|
+|---------------------------------------------------|-------|
+| master branch                                     | yes   |
+
+### Kubernetes Version Compability Matrix
+| AWS File Cache CSI Driver \ Kubernetes Version    | v1.17+ |
+|---------------------------------------------------|--------|
+| master branch                                     | yes    |
+
+## Features
+Currently only static provisioning is supported. With static provisioning, a file cache should be created manually, then it could be mounted inside container as a persistence volume (PV) using File Cache CSI Driver.
+
+The following CSI interfaces are implemented:
+* Controller Service: 
+* Node Service: NodePublishVolume, NodeUnpublishVolume, NodeGetCapabilities, NodeGetInfo, NodeGetId
+* Identity Service: GetPluginInfo, GetPluginCapabilities, Probe
+
+## Examples
+This example shows how to make an Amazon File Cache availble inside container for the application to consume. Before this, get yourself familiar with how to setup kubernetes on AWS and [create an Amazon file cache](https://docs.aws.amazon.com/fsx/latest/FileCacheGuide/getting-started.html). And when creating an Amazon File Cache, make sure it is created inside the same VPC as kuberentes cluster or it is accessible through VPC peering.
+
+Once kubernetes cluster and an Amazon File Cache is created, create secret manifest file using [secret.yaml](../deploy/kubernetes/secret.yaml).
+
+Then create the secret object:
+```sh
+kubectl apply -f deploy/kubernetes/secret.yaml 
+```
+
+Deploy the Amazon file cache CSI driver:
+
+```sh
+kubectl apply -k deploy/kubernetes/base/
+```
+
+Edit the [persistence volume manifest file](../examples/kubernetes/static_provisioning/specs/pv.yaml):
+```sh
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: fc-pv
+spec:
+  capacity:
+    storage: 1200Gi
+  volumeMode: FileCache
+  accessModes:
+    - ReadWriteOnce
+  persistentVolumeReclaimPolicy: Recycle
+  storageClassName: fc-sc
+  csi:
+    driver: file.cache.csi.aws.com
+    volumeHandle: [FileCacheId]
+    volumeAttributes:
+      dnsname: [DNSName] 
+```
+Replace `volumeHandle` with `FileCacheId` and `dnsname` with `DNSName`. You can get both `FileCacheId` and `DNSName` using AWS CLI:
+
+```sh
+aws fsx describe-file-caches
+```
+
+Then create PV, persistence volume claim (PVC) and storage class:
+```sh
+kubectl apply -f examples/kubernetes/dynamic_provisioning/specs/storageclass.yaml
+kubectl apply -f examples/kubernetes/dynamic_provisioning/specs/pv.yaml
+kubectl apply -f examples/kubernetes/dynamic_provisioning/specs/claim.yaml
+kubectl apply -f examples/kubernetes/dynamic_provisioning/specs/pod.yaml
+```
+
+After objects are created, verify that pod is running:
+
+```sh
+kubectl get pods
+```
+
+Make sure data is written onto Amazon File Cache:
+
+```sh
+kubectl exec -ti fc-app -- df -h
+kubectl exec -it fc-app -- ls /data
+```
+
+## Development
+Please go through [CSI Spec](https://github.com/container-storage-interface/spec/blob/master/spec.md) and [General CSI driver development guideline](https://kubernetes-csi.github.io/docs/Development.html) to get some basic understanding of CSI driver before you start.
+
+### Requirements
+* Golang 1.9+
+
+### Testing
+To execute all unit tests, run: `make test`
+
+## License
+This library is licensed under the Apache 2.0 License. 
 
-Participation in the Kubernetes community is governed by the [Kubernetes Code of Conduct](code-of-conduct.md).

cmd/main.go

@@ -0,0 +1,33 @@
+package main
+
+import (
+	"flag"
+	"fmt"
+	"os"
+
+	"k8s.io/klog/v2"
+	"sigs.k8s.io/aws-file-cache-csi-driver/pkg/driver"
+)
+
+func main() {
+	var (
+		endpoint = flag.String("endpoint", "unix://tmp/csi.sock", "CSI Endpoint")
+		version  = flag.Bool("version", false, "Print the version and exit")
+	)
+	klog.InitFlags(nil)
+	flag.Parse()
+
+	if *version {
+		info, err := driver.GetVersionJSON()
+		if err != nil {
+			klog.Fatalln(err)
+		}
+		fmt.Println(info)
+		os.Exit(0)
+	}
+
+	drv := driver.NewDriver(*endpoint)
+	if err := drv.Run(); err != nil {
+		klog.Fatalln(err)
+	}
+}

deploy/kubernetes/base/controller-deployment.yaml

@@ -0,0 +1,90 @@
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: file-cache-csi-controller
+  labels:
+    app.kubernetes.io/name: aws-file-cache-csi-driver
+spec:
+  replicas: 2
+  selector:
+    matchLabels:
+      app: file-cache-csi-controller
+      app.kubernetes.io/name: aws-file-cache-csi-driver
+  template:
+    metadata:
+      labels:
+        app: file-cache-csi-controller
+        app.kubernetes.io/name: aws-file-cache-csi-driver
+    spec:
+      nodeSelector:
+        kubernetes.io/os: linux
+      hostNetwork: true
+      serviceAccountName: file-cache-csi-controller-sa
+      priorityClassName: system-cluster-critical
+      tolerations:
+        - key: CriticalAddonsOnly
+          operator: Exists
+        - operator: Exists
+          effect: NoExecute
+          tolerationSeconds: 300
+      containers:
+        - name: file-cache-plugin
+          image: 648284600874.dkr.ecr.us-east-1.amazonaws.com/aws-file-cache-csi-driver:v0.0.1
+          args :
+            - --endpoint=$(CSI_ENDPOINT)
+            - --v=5
+          env:
+            - name: CSI_ENDPOINT
+              value: unix:///var/lib/csi/sockets/pluginproxy/csi.sock
+            - name: AWS_ACCESS_KEY_ID
+              valueFrom:
+                secretKeyRef:
+                  name: aws-secret
+                  key: key_id
+                  optional: true
+            - name: AWS_SECRET_ACCESS_KEY
+              valueFrom:
+                secretKeyRef:
+                  name: aws-secret
+                  key: access_key
+                  optional: true
+          volumeMounts:
+            - name: socket-dir
+              mountPath: /var/lib/csi/sockets/pluginproxy/
+          ports:
+            - name: healthz
+              containerPort: 9910
+              protocol: TCP
+          livenessProbe:
+            httpGet:
+              path: /healthz
+              port: healthz
+            initialDelaySeconds: 10
+            timeoutSeconds: 3
+            periodSeconds: 2
+            failureThreshold: 5
+        - name: csi-provisioner
+          image: public.ecr.aws/eks-distro/kubernetes-csi/external-provisioner:v3.4.0-eks-1-23-13
+          args:
+            - --csi-address=$(ADDRESS)
+            - --timeout=5m
+            - --extra-create-metadata
+            - --leader-election=true
+          env:
+            - name: ADDRESS
+              value: /var/lib/csi/sockets/pluginproxy/csi.sock
+          volumeMounts:
+            - name: socket-dir
+              mountPath: /var/lib/csi/sockets/pluginproxy/
+        - name: liveness-probe
+          image: public.ecr.aws/eks-distro/kubernetes-csi/livenessprobe:v2.9.0-eks-1-23-13
+          args:
+            - --csi-address=/csi/csi.sock
+            - --health-port=9910
+          volumeMounts:
+            - name: socket-dir
+              mountPath: /csi
+      volumes:
+        - name: socket-dir
+          emptyDir: {}

deploy/kubernetes/base/controller-serviceaccount.yaml

@@ -0,0 +1,56 @@
+---
+
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: file-cache-csi-controller-sa
+  labels:
+    app.kubernetes.io/name: aws-file-cache-csi-driver
+---
+
+kind: ClusterRole
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: file-cache-csi-external-provisioner-role
+  labels:
+    app.kubernetes.io/name: aws-file-cache-csi-driver
+rules:
+  - apiGroups: [""]
+    resources: ["persistentvolumes"]
+    verbs: ["get", "list", "watch", "create", "delete"]
+  - apiGroups: [""]
+    resources: ["persistentvolumeclaims"]
+    verbs: ["get", "list", "watch", "update"]
+  - apiGroups: ["storage.k8s.io"]
+    resources: ["storageclasses"]
+    verbs: ["get", "list", "watch"]
+  - apiGroups: [""]
+    resources: ["events"]
+    verbs: ["list", "watch", "create", "update", "patch"]
+  - apiGroups: ["storage.k8s.io"]
+    resources: ["csinodes"]
+    verbs: ["get", "list", "watch"]
+  - apiGroups: [""]
+    resources: ["nodes"]
+    verbs: ["get", "list", "watch"]
+  - apiGroups: ["coordination.k8s.io"]
+    resources: ["leases"]
+    verbs: ["get", "watch", "list", "delete", "update", "create"]
+
+---
+
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: file-cache-csi-external-provisioner-binding
+  labels:
+    app.kubernetes.io/name: aws-file-cache-csi-driver
+subjects:
+  - kind: ServiceAccount
+    name: file-cache-csi-controller-sa
+    namespace: default
+roleRef:
+  kind: ClusterRole
+  name: file-cache-csi-external-provisioner-role
+  apiGroup: rbac.authorization.k8s.io
+---

deploy/kubernetes/base/csidriver.yaml

@@ -0,0 +1,8 @@
+---
+
+apiVersion: storage.k8s.io/v1
+kind: CSIDriver
+metadata:
+  name: file.cache.csi.aws.com
+spec:
+  attachRequired: false