mirror of
https://github.com/ceph/ceph
synced 2025-01-11 13:41:02 +00:00
4ec26a9e16
fs/volume_client: exercise the configurable prefix and ns_prefix. Reviewed-by: John Spray <john.spray@redhat.com>
455 lines
17 KiB
Python
455 lines
17 KiB
Python
import json
|
|
import logging
|
|
import time
|
|
import os
|
|
from textwrap import dedent
|
|
from tasks.cephfs.cephfs_test_case import CephFSTestCase
|
|
from teuthology.exceptions import CommandFailedError
|
|
|
|
log = logging.getLogger(__name__)
|
|
|
|
|
|
class TestVolumeClient(CephFSTestCase):
|
|
# One for looking at the global filesystem, one for being
|
|
# the VolumeClient, two for mounting the created shares
|
|
CLIENTS_REQUIRED = 4
|
|
|
|
def _volume_client_python(self, client, script, vol_prefix=None, ns_prefix=None):
|
|
# Can't dedent this *and* the script we pass in, because they might have different
|
|
# levels of indentation to begin with, so leave this string zero-indented
|
|
if vol_prefix:
|
|
vol_prefix = "\"" + vol_prefix + "\""
|
|
if ns_prefix:
|
|
ns_prefix = "\"" + ns_prefix + "\""
|
|
return client.run_python("""
|
|
from ceph_volume_client import CephFSVolumeClient, VolumePath
|
|
import logging
|
|
log = logging.getLogger("ceph_volume_client")
|
|
log.addHandler(logging.StreamHandler())
|
|
log.setLevel(logging.DEBUG)
|
|
vc = CephFSVolumeClient("manila", "{conf_path}", "ceph", {vol_prefix}, {ns_prefix})
|
|
vc.connect()
|
|
{payload}
|
|
vc.disconnect()
|
|
""".format(payload=script, conf_path=client.config_path, vol_prefix=vol_prefix, ns_prefix=ns_prefix))
|
|
|
|
def _sudo_write_file(self, remote, path, data):
|
|
"""
|
|
Write data to a remote file as super user
|
|
|
|
:param remote: Remote site.
|
|
:param path: Path on the remote being written to.
|
|
:param data: Data to be written.
|
|
|
|
Both perms and owner are passed directly to chmod.
|
|
"""
|
|
remote.run(
|
|
args=[
|
|
'sudo',
|
|
'python',
|
|
'-c',
|
|
'import shutil, sys; shutil.copyfileobj(sys.stdin, file(sys.argv[1], "wb"))',
|
|
path,
|
|
],
|
|
stdin=data,
|
|
)
|
|
|
|
def _configure_vc_auth(self, mount, id_name):
|
|
"""
|
|
Set up auth credentials for the VolumeClient user
|
|
"""
|
|
out = self.fs.mon_manager.raw_cluster_cmd(
|
|
"auth", "get-or-create", "client.{name}".format(name=id_name),
|
|
"mds", "allow *",
|
|
"osd", "allow rw",
|
|
"mon", "allow *"
|
|
)
|
|
mount.client_id = id_name
|
|
self._sudo_write_file(mount.client_remote, mount.get_keyring_path(), out)
|
|
self.set_conf("client.{name}".format(name=id_name), "keyring", mount.get_keyring_path())
|
|
|
|
def test_default_prefix(self):
|
|
group_id = "grpid"
|
|
volume_id = "volid"
|
|
guest_entity = "guest"
|
|
DEFAULT_VOL_PREFIX = "volumes"
|
|
DEFAULT_NS_PREFIX = "fsvolumens_"
|
|
|
|
self.mount_b.umount_wait()
|
|
self._configure_vc_auth(self.mount_b, "manila")
|
|
|
|
#create a volume with default prefix
|
|
self._volume_client_python(self.mount_b, dedent("""
|
|
vp = VolumePath("{group_id}", "{volume_id}")
|
|
vc.create_volume(vp, 10, data_isolated=True)
|
|
""".format(
|
|
group_id=group_id,
|
|
volume_id=volume_id,
|
|
guest_entity=guest_entity
|
|
)))
|
|
|
|
# The dir should be created
|
|
self.mount_a.stat(os.path.join(DEFAULT_VOL_PREFIX, group_id, volume_id))
|
|
|
|
#namespace should be set
|
|
ns_in_attr = self.mount_a.getfattr(os.path.join(DEFAULT_VOL_PREFIX, group_id, volume_id), "ceph.dir.layout.pool_namespace")
|
|
namespace = "{0}{1}".format(DEFAULT_NS_PREFIX, volume_id)
|
|
self.assertEqual(namespace, ns_in_attr)
|
|
|
|
def test_lifecycle(self):
|
|
"""
|
|
General smoke test for create, extend, destroy
|
|
"""
|
|
|
|
# I'm going to use mount_c later as a guest for mounting the created
|
|
# shares
|
|
self.mounts[2].umount()
|
|
|
|
# I'm going to leave mount_b unmounted and just use it as a handle for
|
|
# driving volumeclient. It's a little hacky but we don't have a more
|
|
# general concept for librados/libcephfs clients as opposed to full
|
|
# blown mounting clients.
|
|
self.mount_b.umount_wait()
|
|
self._configure_vc_auth(self.mount_b, "manila")
|
|
|
|
guest_entity = "guest"
|
|
group_id = "grpid"
|
|
volume_id = "volid"
|
|
|
|
volume_prefix = "/myprefix"
|
|
namespace_prefix = "mynsprefix_"
|
|
|
|
# Create
|
|
mount_path = self._volume_client_python(self.mount_b, dedent("""
|
|
vp = VolumePath("{group_id}", "{volume_id}")
|
|
create_result = vc.create_volume(vp, 10)
|
|
print create_result['mount_path']
|
|
""".format(
|
|
group_id=group_id,
|
|
volume_id=volume_id,
|
|
guest_entity=guest_entity
|
|
)), volume_prefix, namespace_prefix)
|
|
|
|
# Authorize
|
|
key = self._volume_client_python(self.mount_b, dedent("""
|
|
vp = VolumePath("{group_id}", "{volume_id}")
|
|
auth_result = vc.authorize(vp, "{guest_entity}")
|
|
print auth_result['auth_key']
|
|
""".format(
|
|
group_id=group_id,
|
|
volume_id=volume_id,
|
|
guest_entity=guest_entity
|
|
)), volume_prefix, namespace_prefix)
|
|
|
|
# The dir should be created
|
|
self.mount_a.stat(os.path.join("myprefix", group_id, volume_id))
|
|
|
|
# The auth identity should exist
|
|
existing_ids = [a['entity'] for a in self.auth_list()]
|
|
self.assertIn("client.{0}".format(guest_entity), existing_ids)
|
|
|
|
keyring_txt = dedent("""
|
|
[client.{guest_entity}]
|
|
key = {key}
|
|
|
|
""".format(
|
|
guest_entity=guest_entity,
|
|
key=key
|
|
))
|
|
|
|
# We should be able to mount the volume
|
|
self.mounts[2].client_id = guest_entity
|
|
self._sudo_write_file(self.mounts[2].client_remote, self.mounts[2].get_keyring_path(), keyring_txt)
|
|
self.set_conf("client.{0}".format(guest_entity), "debug client", "20")
|
|
self.set_conf("client.{0}".format(guest_entity), "debug objecter", "20")
|
|
self.set_conf("client.{0}".format(guest_entity), "keyring", self.mounts[2].get_keyring_path())
|
|
self.mounts[2].mount(mount_path=mount_path)
|
|
self.mounts[2].write_n_mb("data.bin", 1)
|
|
|
|
#sync so that file data are persist to rados
|
|
self.mounts[2].run_shell(["sync"])
|
|
|
|
# Our data should stay in particular rados namespace
|
|
pool_name = self.mount_a.getfattr(os.path.join("myprefix", group_id, volume_id), "ceph.dir.layout.pool")
|
|
namespace = "{0}{1}".format(namespace_prefix, volume_id)
|
|
ns_in_attr = self.mount_a.getfattr(os.path.join("myprefix", group_id, volume_id), "ceph.dir.layout.pool_namespace")
|
|
self.assertEqual(namespace, ns_in_attr)
|
|
|
|
objects_in_ns = set(self.fs.rados(["ls"], pool=pool_name, namespace=namespace).split("\n"))
|
|
self.assertNotEqual(objects_in_ns, set())
|
|
|
|
# De-authorize the guest
|
|
self._volume_client_python(self.mount_b, dedent("""
|
|
vp = VolumePath("{group_id}", "{volume_id}")
|
|
vc.deauthorize(vp, "{guest_entity}")
|
|
vc.evict("{guest_entity}")
|
|
""".format(
|
|
group_id=group_id,
|
|
volume_id=volume_id,
|
|
guest_entity=guest_entity
|
|
)), volume_prefix, namespace_prefix)
|
|
|
|
# Once deauthorized, the client should be unable to do any more metadata ops
|
|
# The way that the client currently behaves here is to block (it acts like
|
|
# it has lost network, because there is nothing to tell it that is messages
|
|
# are being dropped because it's identity is gone)
|
|
background = self.mounts[2].write_n_mb("rogue.bin", 1, wait=False)
|
|
time.sleep(10) # Approximate check for 'stuck' as 'still running after 10s'
|
|
self.assertFalse(background.finished)
|
|
|
|
# After deauthorisation, the client ID should be gone (this was the only
|
|
# volume it was authorised for)
|
|
self.assertNotIn("client.{0}".format(guest_entity), [e['entity'] for e in self.auth_list()])
|
|
|
|
# Clean up the dead mount (ceph-fuse's behaviour here is a bit undefined)
|
|
self.mounts[2].kill()
|
|
self.mounts[2].kill_cleanup()
|
|
try:
|
|
background.wait()
|
|
except CommandFailedError:
|
|
# We killed the mount out from under you
|
|
pass
|
|
|
|
self._volume_client_python(self.mount_b, dedent("""
|
|
vp = VolumePath("{group_id}", "{volume_id}")
|
|
vc.delete_volume(vp)
|
|
vc.purge_volume(vp)
|
|
""".format(
|
|
group_id=group_id,
|
|
volume_id=volume_id,
|
|
guest_entity=guest_entity
|
|
)), volume_prefix, namespace_prefix)
|
|
|
|
def test_idempotency(self):
|
|
"""
|
|
That the volumeclient interface works when calling everything twice
|
|
"""
|
|
self.mount_b.umount_wait()
|
|
self._configure_vc_auth(self.mount_b, "manila")
|
|
|
|
guest_entity = "guest"
|
|
group_id = "grpid"
|
|
volume_id = "volid"
|
|
self._volume_client_python(self.mount_b, dedent("""
|
|
vp = VolumePath("{group_id}", "{volume_id}")
|
|
vc.create_volume(vp, 10)
|
|
vc.create_volume(vp, 10)
|
|
vc.authorize(vp, "{guest_entity}")
|
|
vc.authorize(vp, "{guest_entity}")
|
|
vc.deauthorize(vp, "{guest_entity}")
|
|
vc.deauthorize(vp, "{guest_entity}")
|
|
vc.delete_volume(vp)
|
|
vc.delete_volume(vp)
|
|
vc.purge_volume(vp)
|
|
vc.purge_volume(vp)
|
|
|
|
vc.create_volume(vp, 10, data_isolated=True)
|
|
vc.create_volume(vp, 10, data_isolated=True)
|
|
vc.authorize(vp, "{guest_entity}")
|
|
vc.authorize(vp, "{guest_entity}")
|
|
vc.deauthorize(vp, "{guest_entity}")
|
|
vc.deauthorize(vp, "{guest_entity}")
|
|
vc.evict("{guest_entity}")
|
|
vc.evict("{guest_entity}")
|
|
vc.delete_volume(vp, data_isolated=True)
|
|
vc.delete_volume(vp, data_isolated=True)
|
|
vc.purge_volume(vp, data_isolated=True)
|
|
vc.purge_volume(vp, data_isolated=True)
|
|
""".format(
|
|
group_id=group_id,
|
|
volume_id=volume_id,
|
|
guest_entity=guest_entity
|
|
)))
|
|
|
|
def test_data_isolated(self):
|
|
"""
|
|
That data isolated shares get their own pool
|
|
:return:
|
|
"""
|
|
|
|
# Because the teuthology config template sets mon_pg_warn_max_per_osd to
|
|
# 10000 (i.e. it just tries to ignore health warnings), reset it to something
|
|
# sane before using volume_client, to avoid creating pools with absurdly large
|
|
# numbers of PGs.
|
|
self.set_conf("global", "mon pg warn max per osd", "300")
|
|
for mon_daemon_state in self.ctx.daemons.iter_daemons_of_role('mon'):
|
|
mon_daemon_state.restart()
|
|
|
|
self.mount_b.umount_wait()
|
|
self._configure_vc_auth(self.mount_b, "manila")
|
|
|
|
# Calculate how many PGs we'll expect the new volume pool to have
|
|
osd_map = json.loads(self.fs.mon_manager.raw_cluster_cmd('osd', 'dump', '--format=json-pretty'))
|
|
max_per_osd = int(self.fs.get_config('mon_pg_warn_max_per_osd'))
|
|
osd_count = len(osd_map['osds'])
|
|
max_overall = osd_count * max_per_osd
|
|
|
|
existing_pg_count = 0
|
|
for p in osd_map['pools']:
|
|
existing_pg_count += p['pg_num']
|
|
|
|
expected_pg_num = (max_overall - existing_pg_count) / 10
|
|
log.info("max_per_osd {0}".format(max_per_osd))
|
|
log.info("osd_count {0}".format(osd_count))
|
|
log.info("max_overall {0}".format(max_overall))
|
|
log.info("existing_pg_count {0}".format(existing_pg_count))
|
|
log.info("expected_pg_num {0}".format(expected_pg_num))
|
|
|
|
pools_a = json.loads(self.fs.mon_manager.raw_cluster_cmd("osd", "dump", "--format=json-pretty"))['pools']
|
|
|
|
guest_entity = "guest"
|
|
group_id = "grpid"
|
|
volume_id = "volid"
|
|
self._volume_client_python(self.mount_b, dedent("""
|
|
vp = VolumePath("{group_id}", "{volume_id}")
|
|
vc.create_volume(vp, 10, data_isolated=True)
|
|
""".format(
|
|
group_id=group_id,
|
|
volume_id=volume_id,
|
|
guest_entity=guest_entity
|
|
)))
|
|
|
|
pools_b = json.loads(self.fs.mon_manager.raw_cluster_cmd("osd", "dump", "--format=json-pretty"))['pools']
|
|
|
|
# Should have created one new pool
|
|
new_pools = set(p['pool_name'] for p in pools_b) - set([p['pool_name'] for p in pools_a])
|
|
self.assertEqual(len(new_pools), 1)
|
|
|
|
# It should have followed the heuristic for PG count
|
|
# (this is an overly strict test condition, so we may want to remove
|
|
# it at some point as/when the logic gets fancier)
|
|
created_pg_num = self.fs.mon_manager.get_pool_property(list(new_pools)[0], "pg_num")
|
|
self.assertEqual(expected_pg_num, created_pg_num)
|
|
|
|
def test_15303(self):
|
|
"""
|
|
Reproducer for #15303 "Client holds incorrect complete flag on dir
|
|
after losing caps" (http://tracker.ceph.com/issues/15303)
|
|
"""
|
|
for m in self.mounts:
|
|
m.umount_wait()
|
|
|
|
# Create a dir on mount A
|
|
self.mount_a.mount()
|
|
self.mount_a.run_shell(["mkdir", "parent1"])
|
|
self.mount_a.run_shell(["mkdir", "parent2"])
|
|
self.mount_a.run_shell(["mkdir", "parent1/mydir"])
|
|
|
|
# Put some files in it from mount B
|
|
self.mount_b.mount()
|
|
self.mount_b.run_shell(["touch", "parent1/mydir/afile"])
|
|
self.mount_b.umount_wait()
|
|
|
|
# List the dir's contents on mount A
|
|
self.assertListEqual(self.mount_a.ls("parent1/mydir"),
|
|
["afile"])
|
|
|
|
def test_evict_client(self):
|
|
"""
|
|
That a volume client can be evicted based on its auth ID and the volume
|
|
path it has mounted.
|
|
"""
|
|
|
|
# mounts[1] would be used as handle for driving VolumeClient. mounts[2]
|
|
# and mounts[3] would be used as guests to mount the volumes/shares.
|
|
|
|
for i in range(1, 4):
|
|
self.mounts[i].umount_wait()
|
|
|
|
self._configure_vc_auth(self.mounts[1], "manila")
|
|
|
|
guest_entity = "guest"
|
|
group_id = "grpid"
|
|
mount_paths = []
|
|
volume_ids = []
|
|
|
|
# Create two volumes. Authorize 'guest' auth ID to mount the two
|
|
# volumes. Mount the two volumes. Write data to the volumes.
|
|
for i in range(2):
|
|
# Create volume.
|
|
volume_ids.append("volid_{0}".format(str(i)))
|
|
mount_paths.append(
|
|
self._volume_client_python(self.mounts[1], dedent("""
|
|
vp = VolumePath("{group_id}", "{volume_id}")
|
|
create_result = vc.create_volume(vp, 10)
|
|
print create_result['mount_path']
|
|
""".format(
|
|
group_id=group_id,
|
|
volume_id=volume_ids[i]
|
|
))))
|
|
|
|
# Authorize 'guest' auth ID to mount the volume.
|
|
key = self._volume_client_python(self.mounts[1], dedent("""
|
|
vp = VolumePath("{group_id}", "{volume_id}")
|
|
auth_result = vc.authorize(vp, "{guest_entity}")
|
|
print auth_result['auth_key']
|
|
""".format(
|
|
group_id=group_id,
|
|
volume_id=volume_ids[i],
|
|
guest_entity=guest_entity
|
|
)))
|
|
|
|
keyring_txt = dedent("""
|
|
[client.{guest_entity}]
|
|
key = {key}
|
|
|
|
""".format(
|
|
guest_entity=guest_entity,
|
|
key=key
|
|
))
|
|
|
|
# Mount the volume.
|
|
self.mounts[i+2].client_id = guest_entity
|
|
self.mounts[i+2].mountpoint_dir_name = 'mnt.{id}.{suffix}'.format(
|
|
id=guest_entity, suffix=str(i))
|
|
self._sudo_write_file(
|
|
self.mounts[i+2].client_remote,
|
|
self.mounts[i+2].get_keyring_path(),
|
|
keyring_txt,
|
|
)
|
|
self.set_conf(
|
|
"client.{0}".format(guest_entity),
|
|
"keyring", self.mounts[i+2].get_keyring_path()
|
|
)
|
|
self.mounts[i+2].mount(mount_path=mount_paths[i])
|
|
self.mounts[i+2].write_n_mb("data.bin", 1)
|
|
|
|
|
|
# Evict client, mounts[2], using auth ID 'guest' and has mounted
|
|
# one volume.
|
|
self._volume_client_python(self.mount_b, dedent("""
|
|
vp = VolumePath("{group_id}", "{volume_id}")
|
|
vc.evict("{guest_entity}", volume_path=vp)
|
|
""".format(
|
|
group_id=group_id,
|
|
volume_id=volume_ids[0],
|
|
guest_entity=guest_entity
|
|
)))
|
|
|
|
# Evicted guest client, mounts[2], should not be able to do anymore metadata
|
|
# ops. It behaves as if it has lost network connection.
|
|
background = self.mounts[2].write_n_mb("rogue.bin", 1, wait=False)
|
|
# Approximate check for 'stuck' as 'still running after 10s'.
|
|
time.sleep(10)
|
|
self.assertFalse(background.finished)
|
|
|
|
# Guest client, mounts[3], using the same auth ID 'guest', but has mounted
|
|
# the other volume, should be able to use its volume unaffected.
|
|
self.mounts[3].write_n_mb("data.bin.1", 1)
|
|
|
|
# Cleanup.
|
|
for i in range(2):
|
|
self._volume_client_python(self.mounts[1], dedent("""
|
|
vp = VolumePath("{group_id}", "{volume_id}")
|
|
vc.deauthorize(vp, "{guest_entity}")
|
|
vc.delete_volume(vp)
|
|
vc.purge_volume(vp)
|
|
""".format(
|
|
group_id=group_id,
|
|
volume_id=volume_ids[i],
|
|
guest_entity=guest_entity
|
|
)))
|
|
|
|
# We must hard-umount the one that we evicted
|
|
self.mounts[2].umount_wait(force=True)
|