lablytics
diff --git a/‎Makefile‎
Lines changed: 12 additions & 8 deletions b/‎Makefile‎
Lines changed: 12 additions & 8 deletions
diff --git a/‎cmd/automount-runner/main.go‎
Lines changed: 72 additions & 0 deletions b/‎cmd/automount-runner/main.go‎
Lines changed: 72 additions & 0 deletions
diff --git a/‎cmd/csi-cvmfsplugin/main.go‎
Lines changed: 9 additions & 19 deletions b/‎cmd/csi-cvmfsplugin/main.go‎
Lines changed: 9 additions & 19 deletions
diff --git a/‎deployments/docker/Dockerfile‎
Lines changed: 3 additions & 2 deletions b/‎deployments/docker/Dockerfile‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎deployments/helm/README.md‎
Lines changed: 8 additions & 0 deletions b/‎deployments/helm/README.md‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎deployments/helm/cvmfs-csi/templates/controllerplugin-deployment.yaml‎
Lines changed: 1 addition & 0 deletions b/‎deployments/helm/cvmfs-csi/templates/controllerplugin-deployment.yaml‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎deployments/helm/cvmfs-csi/templates/nodeplugin-daemonset.yaml‎
Lines changed: 45 additions & 16 deletions b/‎deployments/helm/cvmfs-csi/templates/nodeplugin-daemonset.yaml‎
Lines changed: 45 additions & 16 deletions
diff --git a/‎deployments/helm/cvmfs-csi/values.yaml‎
Lines changed: 13 additions & 11 deletions b/‎deployments/helm/cvmfs-csi/values.yaml‎
Lines changed: 13 additions & 11 deletions
diff --git a/‎deployments/kubernetes/controllerplugin-deployment.yaml‎
Lines changed: 2 additions & 1 deletion b/‎deployments/kubernetes/controllerplugin-deployment.yaml‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎deployments/kubernetes/controllerplugin-rbac.yaml‎
Lines changed: 2 additions & 2 deletions b/‎deployments/kubernetes/controllerplugin-rbac.yaml‎
Lines changed: 2 additions & 2 deletions
@@ -16,10 +16,9 @@
 # Based on the helm Makefile:
 # https://github.com/helm/helm/blob/master/Makefile
 
-BINDIR     := $(CURDIR)/bin
-DIST_DIRS  := find * -type d -exec
-TARGETS    ?= darwin/amd64 linux/amd64 linux/386 linux/arm linux/arm64 linux/ppc64le windows/amd64
-BINNAME    ?= csi-cvmfsplugin
+BINDIR           := $(CURDIR)/bin
+DIST_DIRS        := find * -type d -exec
+TARGETS          ?= darwin/amd64 linux/amd64 linux/386 linux/arm linux/arm64 linux/ppc64le windows/amd64
 IMAGE_BUILD_TOOL ?= docker
 
 GOPATH        = $(shell go env GOPATH)
@@ -69,10 +68,13 @@ all: build
 #  build
 
 .PHONY: build
-build: $(BINDIR)/$(BINNAME)
+build: $(BINDIR)/csi-cvmfsplugin $(BINDIR)/automount-runner
 
-$(BINDIR)/$(BINNAME): $(SRC)
-	go build $(GOFLAGS) -tags '$(TAGS)' -ldflags '$(LDFLAGS)' -o $(BINDIR)/$(BINNAME) ./cmd/csi-cvmfsplugin
+$(BINDIR)/csi-cvmfsplugin: $(SRC)
+	go build $(GOFLAGS) -tags '$(TAGS)' -ldflags '$(LDFLAGS)' -o $@ ./cmd/csi-cvmfsplugin
+
+$(BINDIR)/automount-runner: $(SRC)
+	go build $(GOFLAGS) -tags '$(TAGS)' -ldflags '$(LDFLAGS)' -o $@ ./cmd/automount-runner
 
 # ------------------------------------------------------------------------------
 #  test
@@ -123,7 +125,8 @@ $(GOIMPORTS):
 .PHONY: build-cross
 build-cross: LDFLAGS += -extldflags "-static"
 build-cross: $(GOX)
-	CGO_ENABLED=0 $(GOX) -parallel=3 -output="_dist/{{.OS}}-{{.Arch}}/$(BINNAME)_{{.OS}}_{{.Arch}}" -osarch='$(TARGETS)' $(GOFLAGS) -tags '$(TAGS)' -ldflags '$(LDFLAGS)' ./cmd/csi-cvmfsplugin
+	CGO_ENABLED=0 $(GOX) -parallel=3 -output="_dist/{{.OS}}-{{.Arch}}/csi-cvmfsplugin_{{.OS}}_{{.Arch}}" -osarch='$(TARGETS)' $(GOFLAGS) -tags '$(TAGS)' -ldflags '$(LDFLAGS)' ./cmd/csi-cvmfsplugin
+	CGO_ENABLED=0 $(GOX) -parallel=3 -output="_dist/{{.OS}}-{{.Arch}}/automount-runner_{{.OS}}_{{.Arch}}" -osarch='$(TARGETS)' $(GOFLAGS) -tags '$(TAGS)' -ldflags '$(LDFLAGS)' ./cmd/automount-runner
 
 .PHONY: dist
 dist:
@@ -156,6 +159,7 @@ endif
 image: build-cross
 	mkdir -p bin
 	cp _dist/linux-amd64/csi-cvmfsplugin_linux_amd64 bin/csi-cvmfsplugin
+	cp _dist/linux-amd64/automount-runner_linux_amd64 bin/automount-runner
 	sudo $(IMAGE_BUILD_TOOL) build -t cvmfs-csi:${DOCKER_TAG} -f deployments/docker/Dockerfile .
 
 # ------------------------------------------------------------------------------
 
@@ -0,0 +1,72 @@
+// Copyright CERN.
+//
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+//
+
+package main
+
+import (
+	"flag"
+	"fmt"
+	"os"
+
+	"github.com/cernops/cvmfs-csi/internal/cvmfs/automount"
+	"github.com/cernops/cvmfs-csi/internal/log"
+	cvmfsversion "github.com/cernops/cvmfs-csi/internal/version"
+
+	"k8s.io/klog/v2"
+)
+
+var (
+	version = flag.Bool("version", false, "Print driver version and exit.")
+
+	hasAlienCache = flag.Bool("has-alien-cache", false, "CVMFS client is using alien cache volume")
+
+	automountDaemonUnmountAfterIdleSeconds = flag.Int("automount-unmount-timeout", 300, "number of seconds of idle time after which an autofs-managed CVMFS mount will be unmounted. '0' means never unmount, '-1' leaves automount default option.")
+)
+
+func main() {
+	// Handle flags and initialize logging.
+
+	klog.InitFlags(nil)
+	if err := flag.Set("logtostderr", "true"); err != nil {
+		klog.Exitf("failed to set logtostderr flag: %v", err)
+	}
+	flag.Parse()
+
+	if *version {
+		fmt.Println("automount-runner for CVMFS CSI plugin version", cvmfsversion.FullVersion())
+		os.Exit(0)
+	}
+
+	// Initialize and run automount-runner.
+
+	log.Infof("automount-runner for CVMFS CSI plugin version %s", cvmfsversion.FullVersion())
+	log.Infof("Command line arguments %v", os.Args)
+
+	err := automount.Init(&automount.Opts{
+		UnmountTimeoutSeconds: *automountDaemonUnmountAfterIdleSeconds,
+		HasAlienCache:         *hasAlienCache,
+	})
+
+	if err != nil {
+		log.Fatalf("Failed to initialize automount-runner: %v", err)
+	}
+
+	if err = automount.RunBlocking(); err != nil {
+		log.Fatalf("Failed to run automount-runner: %v", err)
+	}
+
+	os.Exit(0)
+}
@@ -62,20 +62,13 @@ var (
 	version    = flag.Bool("version", false, "Print driver version and exit.")
 	roles      rolesFlag
 
-	hasAlienCache        = flag.Bool("has-alien-cache", false, "CVMFS client is using alien cache volume")
-	startAutomountDaemon = flag.Bool("start-automount-daemon", true, "start automount daemon when initializing CVMFS CSI driver")
+	hasAlienCache        = flag.Bool("has-alien-cache", false, "(DEPRECATED: use automount-runner --has-alien-cache) CVMFS client is using alien cache volume")
+	startAutomountDaemon = flag.Bool("start-automount-daemon", true, "(DEPRECATED: use automount-runner) start automount daemon when initializing CVMFS CSI driver")
 
-	automountDaemonStartupTimeoutSeconds   = flag.Int("automount-startup-timeout", 5, "number of seconds to wait for automount daemon to start up before exiting")
-	automountDaemonUnmountAfterIdleSeconds = flag.Int("automount-unmount-timeout", -1, "number of seconds of idle time after which an autofs-managed CVMFS mount will be unmounted. '0' means never unmount, '-1' leaves automount default option.")
+	automountDaemonStartupTimeoutSeconds   = flag.Int("automount-startup-timeout", 10, "number of seconds to wait for automount daemon to start up before giving up and exiting. '0' means wait forever")
+	automountDaemonUnmountAfterIdleSeconds = flag.Int("automount-unmount-timeout", 300, "(DEPRECATED: use automount-runner --unmount-timeout) number of seconds of idle time after which an autofs-managed CVMFS mount will be unmounted. '0' means never unmount, '-1' leaves automount default option.")
 )
 
-func printVersion() {
-	fmt.Printf(
-		"CVMFS CSI plugin version %s (commit: %s; build time: %s; metadata: %s)\n",
-		cvmfsversion.Version(), cvmfsversion.Commit(), cvmfsversion.BuildTime(), cvmfsversion.Metadata(),
-	)
-}
-
 func main() {
 	// Handle flags and initialize logging.
 
@@ -88,14 +81,15 @@ func main() {
 	flag.Parse()
 
 	if *version {
-		printVersion()
+		fmt.Println("CVMFS CSI plugin version", cvmfsversion.FullVersion())
 		os.Exit(0)
 	}
 
-	log.Infof("Running CVMFS CSI plugin with %v", os.Args)
-
 	// Initialize and run the driver.
 
+	log.Infof("CVMFS CSI plugin version %s", cvmfsversion.FullVersion())
+	log.Infof("Command line arguments %v", os.Args)
+
 	driverRoles := make(map[driver.ServiceRole]bool, len(roles))
 	for _, role := range roles {
 		driverRoles[role] = true
@@ -107,11 +101,7 @@ func main() {
 		NodeID:      *nodeId,
 		Roles:       driverRoles,
 
-		StartAutomountDaemon: *startAutomountDaemon,
-		HasAlienCache:        *hasAlienCache,
-
-		AutomountDaemonStartupTimeoutSeconds:   *automountDaemonStartupTimeoutSeconds,
-		AutomountDaemonUnmountAfterIdleSeconds: *automountDaemonUnmountAfterIdleSeconds,
+		AutomountDaemonStartupTimeoutSeconds: *automountDaemonStartupTimeoutSeconds,
 	})
 
 	if err != nil {
 
@@ -6,5 +6,6 @@ RUN yum install -y http://ecsft.cern.ch/dist/cvmfs/cvmfs-release/cvmfs-release-l
     yum install -y cvmfs && yum clean all && rm -rf /var/cache/yum
 
 COPY bin/csi-cvmfsplugin /csi-cvmfsplugin
-RUN chmod +x /csi-cvmfsplugin
-ENTRYPOINT ["/csi-cvmfsplugin"]
+COPY bin/automount-runner /automount-runner
+
+RUN chmod +x /csi-cvmfsplugin /automount-runner
@@ -62,6 +62,14 @@ Alternatively, a YAML file that specifies the values of the parameters can be pr
 | `nodeplugin.plugin.image.tag` | Container image tag for CVMFS CSI node plugin.                                                                                                                                     |
 | `nodeplugin.plugin.image.pullPolicy` | Pull policy for CVMFS CSI node plugin image.                                                                                                                                |
 | `nodeplugin.plugin.image.resources` | Resource constraints for the `nodeplugin` container.                                                                                                                         |
+| `nodeplugin.automount.image.repository` | Container image repository for CVMFS CSI node plugin (automount-runner).                                                                                                    |
+| `nodeplugin.automount.image.tag` | Container image tag for CVMFS CSI node plugin (automount-runner).                                                                                                                  |
+| `nodeplugin.automount.image.pullPolicy` | Pull policy for CVMFS CSI node plugin image (automount-runner).                                                                                                             |
+| `nodeplugin.automount.image.resources` | Resource constraints for the `automount` container.                                                                                                                          |
+| `nodeplugin.registrar.image.repository` | Container image repository for csi-node-driver-registrar.                                                                                                                |
+| `nodeplugin.registrar.image.tag` | Container image tag for csi-node-driver-registrar.                                                                                                                              |
+| `nodeplugin.registrar.image.pullPolicy` | Pull policy for csi-node-driver-registrar image.                                                                                                                         |
+| `nodeplugin.registrar.image.resources` | Resource constraints for the `registrar` container.                                                                                                                       |
 | `nodeplugin.registrar.image.repository` | Container image repository for csi-node-driver-registrar.                                                                                                                |
 | `nodeplugin.registrar.image.tag` | Container image tag for csi-node-driver-registrar.                                                                                                                              |
 | `nodeplugin.registrar.image.pullPolicy` | Pull policy for csi-node-driver-registrar image.                                                                                                                         |
 
@@ -36,6 +36,7 @@ spec:
         - name: controllerplugin
           image: {{ .Values.controllerplugin.plugin.image.repository }}:{{ .Values.controllerplugin.plugin.image.tag }}
           imagePullPolicy: {{ .Values.controllerplugin.plugin.image.pullPolicy }}
+          command: [/csi-cvmfsplugin]
           args:
             - -v={{ .Values.logVerbosityLevel }}
             - --nodeid=$(NODE_ID)
 
@@ -42,21 +42,14 @@ spec:
           {{- end }}
         - name: nodeplugin
           image: {{ .Values.nodeplugin.plugin.image.repository }}:{{ .Values.nodeplugin.plugin.image.tag }}
-          command:
-            - /bin/bash
-            - -c
-            - |
-              ulimit -n {{ .Values._rlimit_nofile }}
-              /csi-cvmfsplugin                                                          \
-                -v={{ .Values.logVerbosityLevel }}                                      \
-                --nodeid=$(NODE_ID)                                                     \
-                --endpoint=$(CSI_ENDPOINT)                                              \
-                --drivername=$(CSI_DRIVERNAME)                                          \
-                --start-automount-daemon={{ .Values.startAutomountDaemon }}             \
-                --automount-startup-timeout={{ .Values.automountDaemonStartupTimeout }} \
-                --automount-unmount-timeout={{ .Values.automountDaemonUnmountTimeout }} \
-                --role=identity,node                                                    \
-                --has-alien-cache={{ .Values.cache.alien.enabled }}
+          command: [/csi-cvmfsplugin]
+          args:
+            - -v={{ .Values.logVerbosityLevel }}
+            - --nodeid=$(NODE_ID)
+            - --endpoint=$(CSI_ENDPOINT)
+            - --drivername=$(CSI_DRIVERNAME)
+            - --role=identity,node
+            - --automount-startup-timeout={{ .Values.automountDaemonStartupTimeout }}
           imagePullPolicy: {{ .Values.nodeplugin.plugin.image.pullPolicy }}
           securityContext:
             privileged: true
@@ -85,13 +78,47 @@ spec:
               readOnly: true
             - name: host-dev
               mountPath: /dev
+            - name: autofs-cvmfs
+              mountPath: /cvmfs
+              mountPropagation: Bidirectional
+          {{- with .Values.nodeplugin.plugin.resources }}
+          resources: {{ toYaml . | nindent 12 }}
+          {{- end }}
+        - name: automount
+          image: {{ .Values.nodeplugin.automount.image.repository }}:{{ .Values.nodeplugin.automount.image.tag }}
+          command:
+            - /bin/bash
+            - -c
+            - |
+              ulimit -n {{ .Values._rlimit_nofile }}
+              /automount-runner                                               \
+                -v={{ .Values.logVerbosityLevel }}                            \
+                --unmount-timeout={{ .Values.automountDaemonUnmountTimeout }} \
+                --has-alien-cache={{ .Values.cache.alien.enabled }}
+          imagePullPolicy: {{ .Values.nodeplugin.plugin.image.pullPolicy }}
+          securityContext:
+            privileged: true
+            capabilities:
+              add: ["SYS_ADMIN"]
+            allowPrivilegeEscalation: true
+          volumeMounts:
+            - mountPath: /sys
+              name: host-sys
+            - name: lib-modules
+              mountPath: /lib/modules
+              readOnly: true
+            - name: host-dev
+              mountPath: /dev
+            - name: autofs-cvmfs
+              mountPath: /cvmfs
+              mountPropagation: Bidirectional
             - name: cvmfs-localcache
               mountPath: /cvmfs-localcache
             {{- if .Values.cache.alien.enabled }}
             - name: cvmfs-aliencache
               mountPath: /cvmfs-aliencache
             {{- end }}
-            {{- with .Values.nodeplugin.plugin.extraVolumeMounts }}
+            {{- with .Values.nodeplugin.automount.extraVolumeMounts }}
             {{- toYaml . | nindent 12 }}
             {{- end }}
           {{- with .Values.nodeplugin.plugin.resources }}
@@ -119,6 +146,8 @@ spec:
         - name: host-dev
           hostPath:
             path: /dev
+        - name: autofs-cvmfs
+          emptyDir: {}
         - name: cvmfs-localcache
           {{- toYaml .Values.cache.local.volumeSpec | nindent 10 }}
         {{- if .Values.cache.alien.enabled }}
 
@@ -63,7 +63,15 @@ nodeplugin:
   plugin:
     image:
       repository: registry.cern.ch/magnum/cvmfs-csi
-      tag: v2.1.1
+      tag: latest
+      pullPolicy: IfNotPresent
+    resources: {}
+
+  # CVMFS CSI image and container resources specs.
+  automount:
+    image:
+      repository: registry.cern.ch/magnum/cvmfs-csi
+      tag: latest
       pullPolicy: IfNotPresent
     resources: {}
     # Extra volume mounts to append to nodeplugin's
@@ -142,7 +150,7 @@ controllerplugin:
   plugin:
     image:
       repository: registry.cern.ch/magnum/cvmfs-csi
-      tag: v2.1.1
+      tag: latest
       pullPolicy: IfNotPresent
     resources: {}
     extraVolumeMounts: []
@@ -208,17 +216,11 @@ kubeletDirectory: /var/lib/kubelet
 # <kubeletPluginDirectory>/plugins/<csiDriverName>/<cvmfsCSIPluginSocketFile>.
 cvmfsCSIPluginSocketFile: csi.sock
 
-# Whether CVMFS CSI nodeplugin Pod should run automount daemon. This is required
-# for automounts to work. If however worker nodes are already running automount
-# daemon (e.g. as a systemd service), you may disable running yet another instance
-# of the daemon using this switch.
-startAutomountDaemon: true
-
 # Number of seconds to wait for automount daemon to start up before exiting.
-automountDaemonStartupTimeout: 5
+automountDaemonStartupTimeout: 10
 # Number of seconds of idle time after which an autofs-managed CVMFS mount will
 # be unmounted. '0' means never unmount, '-1' leaves automount default option.
-automountDaemonUnmountTimeout: -1
+automountDaemonUnmountTimeout: 300
 
 # Chart name overrides.
 nameOverride: ""
@@ -232,4 +234,4 @@ extraMetaLabels: {}
 # See https://github.com/cvmfs-contrib/cvmfs-csi/issues/57 for details.
 # NOTE: this value will be deprecated once the issue is fixed.
 # Empty value "" disables the workaround.
-_rlimit_nofile: ""
+_rlimit_nofile: "1000000"
@@ -35,8 +35,9 @@ spec:
             - name: socket-dir
               mountPath: /csi
         - name: controllerplugin
-          image: registry.cern.ch/magnum/cvmfs-csi:v2.1.1
+          image: registry.cern.ch/magnum/cvmfs-csi:latest
           imagePullPolicy: IfNotPresent
+          command: [/csi-cvmfsplugin]
           args:
             - -v=5
             - --nodeid=$(NODE_ID)
 
@@ -1,7 +1,7 @@
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  name: cvmfs-controllerplugin
+  name: cvmfs-csi-controllerplugin
   labels:
     app: cvmfs-csi
     component: controllerplugin
@@ -45,7 +45,7 @@ metadata:
     component: controllerplugin
 subjects:
   - kind: ServiceAccount
-    name: cvmfs-controllerplugin
+    name: cvmfs-csi-controllerplugin
     namespace: default
 roleRef:
   kind: ClusterRole