-
Notifications
You must be signed in to change notification settings - Fork 554
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
rbd: add additional space for encrypted volumes #4582
base: devel
Are you sure you want to change the base?
rbd: add additional space for encrypted volumes #4582
Conversation
minikube testing, Created a 1GiB block-mode pvc, and then expanded to 2GiB
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Add E2E checks new size.
b7586df
to
850dd3a
Compare
/test ci/centos/mini-e2e-helm/k8s-1.28 |
850dd3a
to
357a727
Compare
/test ci/centos/mini-e2e-helm/k8s-1.28 |
29e4f91
to
4f0f3fc
Compare
/test ci/centos/mini-e2e-helm/k8s-1.28 |
@Mergifyio rebase This causes a run of the GitHub CI jobs. Logs for ci/centos/mini-e2e-helm/k8s-1.28 show that e2e passed earlier. |
4f0f3fc
to
69aeda7
Compare
✅ Branch has been successfully rebased |
227bcf0
to
a4eabb3
Compare
/test ci/centos/mini-e2e/k8s-1.28 |
7b79d41
to
ca95618
Compare
/test ci/centos/mini-e2e/k8s-1.29/test_type-rbd |
/test ci/centos/mini-e2e/k8s-1.29 |
@karthik-us, is this the correct command to run |
/test ci/centos/mini-e2e/k8s-1.29 |
ca95618
to
72252c7
Compare
/test ci/centos/mini-e2e/k8s-1.29 |
72252c7
to
9d52790
Compare
/test ci/centos/upgrade-tests-cephfs |
/test ci/centos/upgrade-tests-rbd |
/test ci/centos/k8s-e2e-external-storage/1.27 |
/test ci/centos/mini-e2e-helm/k8s-1.27 |
/test ci/centos/mini-e2e/k8s-1.27 |
/test ci/centos/k8s-e2e-external-storage/1.28 |
/test ci/centos/mini-e2e-helm/k8s-1.28 |
/test ci/centos/mini-e2e/k8s-1.28 |
/test ci/centos/k8s-e2e-external-storage/1.30 |
/test ci/centos/mini-e2e-helm/k8s-1.30 |
/test ci/centos/mini-e2e/k8s-1.30 |
/test ci/centos/k8s-e2e-external-storage/1.29 |
/test ci/centos/mini-e2e-helm/k8s-1.29 |
/test ci/centos/mini-e2e/k8s-1.29 |
/test ci/centos/mini-e2e-helm/k8s-1.29 |
failed test cases are not same in all CI runs, but all fails at creating snapshot. failed test - E0819 11:44:29.654152 1 snapshot_controller_base.go:357] could not sync content "snapcontent-3c487efa-b938-4aa5-9a30-cee647e7539a": failed to take snapshot of the volume 0001-0024-61c6f69b-3550-4c89-8b36-3e1f45ca7749-0000000000000004-5c6aefd5-9700-4bd9-a0b6-8599443432ac: "rpc error: code = Aborted desc = an operation with the given Volume ID snapshot-3c487efa-b938-4aa5-9a30-cee647e7539a already exists"
I0819 11:48:45.654891 1 snapshot_controller.go:308] createSnapshotWrapper: Creating snapshot for content snapcontent-3c487efa-b938-4aa5-9a30-cee647e7539a through the plugin ...
I0819 11:48:45.710540 1 snapshot_controller.go:342] createSnapshotWrapper: CreateSnapshot for content snapcontent-3c487efa-b938-4aa5-9a30-cee647e7539a returned error: rpc error: code = Aborted desc = an operation with the given Volume ID snapshot-3c487efa-b938-4aa5-9a30-cee647e7539a already exists
E0819 11:48:45.710571 1 snapshot_controller.go:142] checkandUpdateContentStatus [snapcontent-3c487efa-b938-4aa5-9a30-cee647e7539a]: error occurred failed to take snapshot of the volume 0001-0024-61c6f69b-3550-4c89-8b36-3e1f45ca7749-0000000000000004-5c6aefd5-9700-4bd9-a0b6-8599443432ac: "rpc error: code = Aborted desc = an operation with the given Volume ID snapshot-3c487efa-b938-4aa5-9a30-cee647e7539a already exists"
E0819 11:48:45.710584 1 snapshot_controller_base.go:357] could not sync content "snapcontent-3c487efa-b938-4aa5-9a30-cee647e7539a": failed to take snapshot of the volume 0001-0024-61c6f69b-3550-4c89-8b36-3e1f45ca7749-0000000000000004-5c6aefd5-9700-4bd9-a0b6-8599443432ac: "rpc error: code = Aborted desc = an operation with the given Volume ID snapshot-3c487efa-b938-4aa5-9a30-cee647e7539a already exists" will debug and update. |
This pull request has been automatically marked as stale because it has not had recent activity. It will be closed in two weeks if no further activity occurs. Thank you for your contributions. |
@iPraveenParihar can you please check this one? this is already approved PR and getting stalled. |
This pull request now has conflicts with the target branch. Could you please resolve conflicts and force push the corrected changes? 🙏 |
There seems to be inconsistent CI test failures. Not sure, if its because of this PR change or another. |
This pull request has been automatically marked as stale because it has not had recent activity. It will be closed in two weeks if no further activity occurs. Thank you for your contributions. |
This pull request has been automatically marked as stale because it has not had recent activity. It will be closed in two weeks if no further activity occurs. Thank you for your contributions. |
Describe what this PR does
rbd: add additional space for encrypted volumes
issue: when a block-mode pvc is created with encryption enabled
there is some space reserved for the encryption metadata.
Which doesn't allows users to write extact amount of data that
they have requested for.
solution: create pvc with extra space needed for the encryption
metadata.
The extra space is added during the CreateVolume and ExpandVolume
operations. And while returning the response remove the extra space
so the client/user gets the requested size reported.
New metadata is added to images which were created with extra space
for encryption header -
rbd.csi.ceph.com/luks2HeaderSize
Test result:
$ k exec rbd-pod-e -- blockdev --getsize64 /dev/xvda 2147483648
!
Checklist:
Show available bot commands
These commands are normally not required, but in case of issues, leave any of
the following bot commands in an otherwise empty comment in this PR:
/retest ci/centos/<job-name>
: retest the<job-name>
after unrelatedfailure (please report the failure too!)