topolvm-controller provides a CSI controller service. It also works as
a custom Kubernetes controller to cleanup stale resources.
Specifically, topolvm-controller watches Node resource deletion to
cleanup PersistentVolumeClaim on the deleting Nodes.
topolvm-controller implements following optional features:
topolvm-controller implements two webhooks:
Mutate new Pods to add topolvm.cybozu.com/capacity resource request to
its first container. This resource request will be used by
topolvm-scheduler to filter and score Nodes.
This hook handles only pods having at least one unbound PersistentVolumeClaim (PVC) for TopoLVM and no bound PVC for TopoLVM.
The requested storage size of a PVC is calculated as follows:
- if PVC has no storage request, the size will be treated as 1 GiB.
- if PVC has storage request, the size will be rounded up to GiB unit.
The value of the resource request is the sum of rounded storage size of unbound PVCs for TopoLVM.
Suppose the following manifest is to be applied:
kind: StorageClass
apiVersion: storage.k8s.io/v1
metadata:
name: topolvm
provisioner: topolvm.cybozu.com # topolvm-scheduler works only for StorageClass with this provisioner.
parameters:
"csi.storage.k8s.io/fstype": "xfs"
volumeBindingMode: WaitForFirstConsumer
---
kind: PersistentVolumeClaim
apiVersion: v1
metadata:
name: local-pvc1
namespace: hook-test
spec:
accessModes:
- ReadWriteOnce
resources:
requests:
storage: 1Gi
storageClassName: topolvm # reference the above StorageClass
---
apiVersion: v1
kind: Pod
metadata:
name: testhttpd
namespace: hook-test
labels:
app.kubernetes.io/name: testhttpd
spec:
containers:
- name: testhttpd
image: quay.io/cybozu/testhttpd:0
volumeMounts:
- mountPath: /test1
name: my-volume1
volumes:
- name: my-volume1
persistentVolumeClaim:
claimName: local-pvc1 # have the above PVCThe hook inserts topolvm.cybozu.com/capacity to the first container as follows:
spec:
containers:
- name: testhttpd
resources:
limits:
topolvm.cybozu.com/capacity: "1073741824"
requests:
topolvm.cybozu.com/capacity: "1073741824"Mutate new PVCs to add topolvm.cybozu.com/pvc finalizer.
topolvm-metrics adds topolvm.cybozu.com/node finalizer.
When a Node is being deleted, the controller deletes all PVCs for TopoLVM on the deleting node.
When a PVC for TopoLVM is being deleted, the controller waits for other finalizers to be completed. Once it becomes the last finalizer, it removes the finalizer to immediately delete PVC then deletes pending pods referencing the deleted PVC, if any.
LogicalVolume may be left without completing
its finalization when the node dies.
To delete such LogicalVolumes, the controller deletes them periodically by
running finalization by on behalf of topolvm-node.
By default, it deletes LogicalVolumes whose deletionTimestamp is behind 24h
from the current time every cleanup-interval which is 10m.
| Name | Type | Default | Description |
|---|---|---|---|
cert-dir |
string | /tmp/k8s-webhook-server/serving-certs |
Directory for tls.crt and tls.key files. |
cleanup-interval |
Duration | 10m |
Cleaning up interval for LogicalVolume. |
csi-socket |
string | /run/topolvm/csi-topolvm.sock |
UNIX domain socket of topolvm-controller. |
metrics-addr |
string | :8080 |
Listen address for Prometheus metrics. |
stale-period |
Duration | 24h |
Deleting LogicalVolume is considered stale after this period. |
webhook-addr |
string | :8443 |
Listen address for the webhook endpoint. |