Use vendor dependency for mount utils

NLB fix cherry pick from open source

Author: mrunalpagnis

go.mod

@@ -69,6 +69,7 @@ require (
 	k8s.io/klog/v2 v2.60.1
 	k8s.io/kubelet v0.24.1
 	k8s.io/kubernetes v1.24.1
+	k8s.io/mount-utils v0.24.1
 	k8s.io/utils v0.0.0-20220210201930-3a6ce19ff2f9
 	sigs.k8s.io/controller-runtime v0.11.2
 	sigs.k8s.io/sig-storage-lib-external-provisioner/v6 v6.3.0
@@ -172,7 +173,6 @@ require (
 	k8s.io/kube-openapi v0.0.0-20220401212409-b28bf2818661 // indirect
 	k8s.io/kube-scheduler v0.0.0 // indirect
 	k8s.io/kubectl v0.0.0 // indirect
-	k8s.io/mount-utils v0.24.1 // indirect
 	oracle.com/oci/httpsigner v0.0.0-20190320175442-e8cb27ebf440 // indirect
 	oracle.com/oci/ociauthz v0.0.0-20200515161105-5b1e37d2dc95 // indirect
 	oracle.com/oci/tagging v0.0.0-20190321202046-20a2e48911da // indirect

pkg/csi-util/utils.go

@@ -4,6 +4,7 @@ import (
 	"context"
 	"fmt"
 	"os"
+	"os/exec"
 	"strconv"
 	"strings"
 	"sync"
@@ -47,6 +48,12 @@ const (
 	LowCostPerformanceOption  = 0
 	BalancedPerformanceOption = 10
 	HigherPerformanceOption   = 20
+
+	InTransitEncryptionPackageName = "oci-fss-utils"
+	FIPS_ENABLED_FILE_PATH         = "/host/proc/sys/crypto/fips_enabled"
+	FINDMNT_COMMAND                = "findmnt"
+	CAT_COMMAND                    = "cat"
+	RPM_COMMAND                    = "rpm"
 )
 
 //Util interface
@@ -348,3 +355,96 @@ func RoundUpSize(volumeSizeBytes int64, allocationUnitBytes int64) int64 {
 func RoundUpMinSize() int64 {
 	return RoundUpSize(MinimumVolumeSizeInBytes, 1*client.GiB)
 }
+
+func IsFipsEnabled() (string, error) {
+	command := exec.Command(CAT_COMMAND, FIPS_ENABLED_FILE_PATH)
+	output, err := command.CombinedOutput()
+	if err != nil {
+		return "", fmt.Errorf("command failed: %v\narguments: %s\nOutput: %v\n", err, CAT_COMMAND, string(output))
+	}
+
+	return string(output), nil
+}
+
+func IsInTransitEncryptionPackageInstalled() (bool, error) {
+	args := []string{"-q", "-a", "--root=/host"}
+	command := exec.Command(RPM_COMMAND, args...)
+	output, err := command.CombinedOutput()
+	if err != nil {
+		return false, fmt.Errorf("command failed: %v\narguments: %s\nOutput: %v\n", err, RPM_COMMAND, string(output))
+	}
+
+	if len(output) > 0 {
+		list := string(output)
+		if strings.Contains(list, InTransitEncryptionPackageName) {
+			return true, nil
+		}
+		return false, nil
+	}
+	return false, nil
+}
+
+func FindMount(target string) ([]string, error) {
+	mountArgs := []string{"-n", "-o", "SOURCE", "-T", target}
+	command := exec.Command(FINDMNT_COMMAND, mountArgs...)
+	output, err := command.CombinedOutput()
+	if err != nil {
+		return nil, fmt.Errorf("findmnt failed: %v\narguments: %s\nOutput: %v\n", err, mountArgs, string(output))
+	}
+
+	sources := strings.Fields(string(output))
+	return sources, nil
+}
+
+func Rescan(logger *zap.SugaredLogger, devicePath string) error {
+
+	lsblkargs := []string{"-n", "-o", "NAME", devicePath}
+	lsblkcmd := exec.Command("lsblk", lsblkargs...)
+	lsblkoutput, err := lsblkcmd.CombinedOutput()
+	if err != nil {
+		return fmt.Errorf("Failed to find device name associated with devicePath %s", devicePath)
+	}
+	deviceName := strings.TrimSpace(string(lsblkoutput))
+	if strings.HasPrefix(deviceName, "/dev/") {
+		deviceName = strings.TrimPrefix(deviceName, "/dev/")
+	}
+	logger.With("deviceName", deviceName).Info("Rescanning")
+
+	// run command dd iflag=direct if=/dev/<device_name> of=/dev/null count=1
+	// https://docs.oracle.com/en-us/iaas/Content/Block/Tasks/rescanningdisk.htm#Rescanni
+	devicePathFileArg := fmt.Sprintf("if=%s", devicePath)
+	args := []string{"iflag=direct", devicePathFileArg, "of=/dev/null", "count=1"}
+	cmd := exec.Command("dd", args...)
+	output, err := cmd.CombinedOutput()
+	if err != nil {
+		return fmt.Errorf("command failed: %v\narguments: %s\nOutput: %v\n", err, "dd", string(output))
+	}
+	logger.With("command", "dd", "output", string(output)).Debug("dd output")
+	// run command echo 1 | tee /sys/class/block/%s/device/rescan
+	// https://docs.oracle.com/en-us/iaas/Content/Block/Tasks/rescanningdisk.htm#Rescanni
+	cmdStr := fmt.Sprintf("echo 1 | tee /sys/class/block/%s/device/rescan", deviceName)
+	cmd = exec.Command("bash", "-c", cmdStr)
+	output, err = cmd.CombinedOutput()
+	if err != nil {
+		return fmt.Errorf("command failed: %v\narguments: %s\nOutput: %v\n", err, cmdStr, string(output))
+	}
+	logger.With("command", cmdStr, "output", string(output)).Debug("rescan output")
+
+	return nil
+}
+
+func GetBlockSizeBytes(logger *zap.SugaredLogger, devicePath string) (int64, error) {
+	args := []string{"--getsize64", devicePath}
+	cmd := exec.Command("blockdev", args...)
+	output, err := cmd.CombinedOutput()
+	if err != nil {
+		return -1, fmt.Errorf("command failed: %v\narguments: %s\nOutput: %v\n", err, "blockdev", string(output))
+	}
+	strOut := strings.TrimSpace(string(output))
+	logger.With("devicePath", devicePath, "command", "blockdev", "output", strOut).Debugf("Get block device size in bytes successful")
+	gotSizeBytes, err := strconv.ParseInt(strOut, 10, 64)
+	if err != nil {
+		return -1, fmt.Errorf("failed to parse size %s into an int64 size", strOut)
+	}
+	return gotSizeBytes, nil
+}

pkg/csi/driver/bv_node.go

@@ -593,7 +593,7 @@ func (d BlockVolumeNodeDriver) NodeExpandVolume(ctx context.Context, req *csi.No
 		return nil, status.Error(codes.InvalidArgument, "unknown attachment type. supported attachment types are iscsi and paravirtualized")
 	}
 
-	if err := mountHandler.Rescan(devicePath); err != nil {
+	if err := csi_util.Rescan(logger, devicePath); err != nil {
 		return nil, status.Errorf(codes.Internal, "Failed to rescan volume %q (%q):  %v", volumeID, devicePath, err)
 	}
 	logger.With("devicePath", devicePath).Debug("Rescan completed")
@@ -602,7 +602,7 @@ func (d BlockVolumeNodeDriver) NodeExpandVolume(ctx context.Context, req *csi.No
 		return nil, status.Errorf(codes.Internal, "Failed to resize volume %q (%q):  %v", volumeID, devicePath, err)
 	}
 
-	allocatedSizeBytes, err := mountHandler.GetBlockSizeBytes(devicePath)
+	allocatedSizeBytes, err := csi_util.GetBlockSizeBytes(logger, devicePath)
 	if err != nil {
 		return nil, status.Error(codes.Internal, fmt.Sprintf("Failed to get size of block volume at path %s: %v", devicePath, err))
 	}

pkg/csi/driver/controller.go

@@ -268,6 +268,7 @@ func (d *ControllerDriver) CreateVolume(ctx context.Context, req *csi.CreateVolu
 	}
 	ctx, cancel := context.WithTimeout(ctx, timeout)
 	defer cancel()
+	log.Info("Waiting for volume to become available.")
 	_, err = d.client.BlockStorage().AwaitVolumeAvailableORTimeout(ctx, *provisionedVolume.Id)
 	if err != nil {
 		log.With("volumeName", volumeName).Error("Create volume failed with time out")

pkg/csi/driver/fss_node.go

@@ -12,9 +12,11 @@ import (
 	"google.golang.org/grpc/codes"
 	"google.golang.org/grpc/status"
 	kubeAPI "k8s.io/api/core/v1"
+	"k8s.io/mount-utils"
 
 	"github.com/container-storage-interface/spec/lib/go/csi"
-	"github.com/oracle/oci-cloud-controller-manager/pkg/util/mount"
+	csi_util "github.com/oracle/oci-cloud-controller-manager/pkg/csi-util"
+	"github.com/oracle/oci-cloud-controller-manager/pkg/util/disk"
 )
 
 const (
@@ -53,22 +55,22 @@ func (d FSSNodeDriver) NodeStageVolume(ctx context.Context, req *csi.NodeStageVo
 		return nil, status.Errorf(codes.InvalidArgument, "EncryptInTransit must be a boolean value")
 	}
 
-	mounter := mount.New(logger, mountPath)
+	mounter := mount.New(mountPath)
 
 	var options []string
 	if encryptInTransit {
-		isPackageInstalled, err := mount.IsInTransitEncryptionPackageInstalled(mounter)
+		isPackageInstalled, err := csi_util.IsInTransitEncryptionPackageInstalled()
 		if err != nil {
 			logger.With(zap.Error(err)).Error("FSS in-transit encryption Package installation check failed")
 			return nil, status.Error(codes.Internal, "FSS in-transit encryption Package installation check failed")
 		}
 		if !isPackageInstalled {
-			logger.Error("Package %s not installed for in-transit encryption", mount.InTransitEncryptionPackageName)
-			return nil, status.Error(codes.FailedPrecondition, fmt.Sprintf("Package %s not installed for in-transit encryption", mount.InTransitEncryptionPackageName))
+			logger.Error("Package %s not installed for in-transit encryption", csi_util.InTransitEncryptionPackageName)
+			return nil, status.Error(codes.FailedPrecondition, fmt.Sprintf("Package %s not installed for in-transit encryption", csi_util.InTransitEncryptionPackageName))
 		}
 		logger.Debug("In-transit encryption enabled")
 		fsType = "oci-fss"
-		content, err := mount.IsFipsEnabled(mounter)
+		content, err := csi_util.IsFipsEnabled()
 		if err != nil {
 			logger.With(zap.Error(err)).Error("Could not verify if FIPS enabled")
 			return nil, status.Error(codes.Internal, "Could not verify if FIPS enabled")
@@ -174,7 +176,7 @@ func (d FSSNodeDriver) NodePublishVolume(ctx context.Context, req *csi.NodePubli
 
 	var fsType = ""
 
-	mounter := mount.New(logger, mountPath)
+	mounter := mount.New(mountPath)
 
 	targetPath := req.GetTargetPath()
 	readOnly := req.GetReadonly()
@@ -231,7 +233,7 @@ func (d FSSNodeDriver) NodeUnpublishVolume(ctx context.Context, req *csi.NodeUnp
 
 	logger := d.logger.With("volumeID", req.VolumeId, "targetPath", req.TargetPath)
 
-	mounter := mount.New(logger, mountPath)
+	mounter := mount.New(mountPath)
 	targetPath := req.GetTargetPath()
 
 	// Use mount.IsNotMountPoint because mounter.IsLikelyNotMountPoint can't detect bind mounts
@@ -302,7 +304,7 @@ func (d FSSNodeDriver) NodeUnstageVolume(ctx context.Context, req *csi.NodeUnsta
 }
 
 func (d FSSNodeDriver) unmountAndCleanup(logger *zap.SugaredLogger, targetPath string, exportPath string, mountTargetIP string) error {
-	mounter := mount.New(logger, mountPath)
+	mounter := mount.New(mountPath)
 	// Use mount.IsNotMountPoint because mounter.IsLikelyNotMountPoint can't detect bind mounts
 	isNotMountPoint, err := mount.IsNotMountPoint(mounter, targetPath)
 	if err != nil {
@@ -323,7 +325,7 @@ func (d FSSNodeDriver) unmountAndCleanup(logger *zap.SugaredLogger, targetPath s
 		return nil
 	}
 
-	sources, err := mount.FindMount(mounter, targetPath)
+	sources, err := csi_util.FindMount(targetPath)
 	if err != nil {
 		logger.With(zap.Error(err)).Error("Find Mount failed for target path")
 		return status.Error(codes.Internal, "Find Mount failed for target path")
@@ -341,7 +343,7 @@ func (d FSSNodeDriver) unmountAndCleanup(logger *zap.SugaredLogger, targetPath s
 	logger.Debugf("Sources mounted at staging target path %v", sources)
 
 	if inTransitEncryption {
-		err = mounter.UnmountWithEncrypt(targetPath)
+		err = disk.UnmountWithEncrypt(logger, targetPath)
 	} else {
 		err = mounter.Unmount(targetPath)
 	}