存储>> csi-hetzner>> 返回
项目作者: zenjoy

项目描述 :
A Container Storage Interface (CSI) Driver for Hetzner Cloud Volumes
高级语言: Go
项目地址: git://github.com/zenjoy/csi-hetzner.git
创建时间: 2018-10-23T15:58:19Z
项目社区:https://github.com/zenjoy/csi-hetzner
开源协议:Apache License 2.0
下载


A Container Storage Interface (CSI) Driver for Hetzner Cloud Volumes. The CSI plugin allows you to use Hetzner Cloud Volumes with your preferred Container Orchestrator.

The Hetzner CSI plugin is only tested on Kubernetes and is highly experimental. Theoretically it
should also work on other Container Orchestrator’s, such as Mesos or
Cloud Foundry.

Current limitations are:

  • Volumes need to be minimum 10Gi
  • Maximum 5 volumes can be attached to a single server

Acknowledgement

The code for this driver was adapted from the Container Storage Interface (CSI) Driver for DigitalOcean Block Storage and modified to work with the Hetzner Cloud API. Many thanks for their work on the CSI Driver!

Installing to Kubernetes

Requirements:

  • Kubernetes v1.12+
  • enabling feature gates --feature-gates=VolumeSnapshotDataSource=true,KubeletPluginsWatcher=true,CSINodeInfo=true,CSIDriverRegistry=true
  • --allow-privileged flag must be set to true for both the API server and the kubelet
  • (if you use Docker) the Docker daemon of the cluster nodes must allow shared mounts

1. Create a secret with your Hetzner Cloud API Token:

Replace the placeholder string starting with __REPLACE_ME__ with your own secret and
save it as secret.yml: 

  1. apiVersion: v1
  2. kind: Secret
  3. metadata:
  4.   name: hetzner
  5.   namespace: kube-system
  6. stringData:
  7.   access-token: "__REPLACE_ME__"

and create the secret using kubectl:

  1. $ kubectl create -f ./secret.yml
  2. secret "hetzner" created

You should now see the hetzner secret in the kube-system namespace along with other secrets

  1. $ kubectl -n kube-system get secrets
  2. NAME                  TYPE                                  DATA      AGE
  3. default-token-jskxx   kubernetes.io/service-account-token   3         18h
  4. hetzner          Opaque                                1         18h

2. Deploy the CSI plugin:

(instructions are from the Kubernetes v1.12 CSI Driver guides)

Enable the CSIDriver:

  1. $ kubectl create -f https://raw.githubusercontent.com/kubernetes/csi-api/ab0df28581235f5350f27ce9c27485850a3b2802/pkg/crd/testdata/csidriver.yaml --validate=false
  1. $ kubectl create -f https://raw.githubusercontent.com/kubernetes/csi-api/ab0df28581235f5350f27ce9c27485850a3b2802/pkg/crd/testdata/csinodeinfo.yaml --validate=false

If your cluster uses RBAC, create the applicable cluster roles:

  1. $ kubectl create -f https://raw.githubusercontent.com/kubernetes-csi/external-provisioner/1cd1c20a6d4b2fcd25c98a008385b436d61d46a4/deploy/kubernetes/rbac.yaml
  2. $ kubectl create -f https://raw.githubusercontent.com/kubernetes-csi/external-attacher/9da8c6d20d58750ee33d61d0faf0946641f50770/deploy/kubernetes/rbac.yaml
  3. $ kubectl create -f https://raw.githubusercontent.com/kubernetes-csi/driver-registrar/87d0059110a8b4a90a6d2b5a8702dd7f3f270b80/deploy/kubernetes/rbac.yaml
  4. $ kubectl create -f https://raw.githubusercontent.com/kubernetes-csi/external-snapshotter/51482343dc7f81fef64e3ec32ea3f48fec17b9cf/deploy/kubernetes/rbac.yaml

Last, deploy the Hetzner Cloud Volume CSI Driver:

  1. $ kubectl apply -f https://raw.githubusercontent.com/zenjoy/csi-hetzner/master/deploy/kubernetes/releases/csi-hetzner-dev.yaml

A new storage class will be created with the name hc-block-storage which is
responsible for dynamic provisioning. This is set to “default” for dynamic
provisioning. If you’re using multiple storage classes you might want to remove
the annotation from the csi-storageclass.yaml and re-deploy it. This is
based on the recommended mechanism of deploying CSI drivers on Kubernetes

Note that the deployment proposal to Kubernetes is still a work in progress and not all of the written
features are implemented. When in doubt, open an issue or ask #sig-storage in Kubernetes Slack

3. Test and verify:

Create a PersistentVolumeClaim. This makes sure a volume is created and provisioned on your behalf:

  1. apiVersion: v1
  2. kind: PersistentVolumeClaim
  3. metadata:
  4.   name: csi-pvc
  5. spec:
  6.   accessModes:
  7.   - ReadWriteOnce
  8.   resources:
  9.     requests:
  10.       storage: 10Gi
  11.   storageClassName: hc-block-storage

Check that a new PersistentVolume is created based on your claim:

  1. $ kubectl get pv
  2. NAME                                       CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS    CLAIM             STORAGECLASS       REASON    AGE
  3. pvc-0879b207-9558-11e8-b6b4-5218f75c62b9   10Gi        RWO            Delete           Bound     default/csi-pvc   hc-block-storage             3m

The volume is not attached to any node yet. It’ll only attached to a node if a
workload (i.e: pod) is scheduled to a specific node. Now let us create a Pod
that refers to the above volume. When the Pod is created, the volume will be
attached, formatted and mounted to the specified Container:

  1. kind: Pod
  2. apiVersion: v1
  3. metadata:
  4.   name: my-csi-app
  5. spec:
  6.   containers:
  7.     - name: my-frontend
  8.       image: busybox
  9.       volumeMounts:
  10.       - mountPath: "/data"
  11.         name: my-hc-volume
  12.       command: [ "sleep", "1000000" ]
  13.   volumes:
  14.     - name: my-hc-volume
  15.       persistentVolumeClaim:
  16.         claimName: csi-pvc

Check if the pod is running successfully:

  1. $ kubectl describe pods/my-csi-app

Write inside the app container:

  1. $ kubectl exec -ti my-csi-app /bin/sh
  2. / # touch /data/hello-world
  3. / # exit
  4. $ kubectl exec -ti my-csi-app /bin/sh
  5. / # ls /data
  6. hello-world