[vsphere_csi] update to 2.5.1 and make external_vsphere_version 7.0u1 by default (#8676)

2 years ago · cefd1339fc
6 changed files with 43 additions and 15 deletions
--- a/roles/kubernetes-apps/csi_driver/vsphere/defaults/main.yml
+++ b/roles/kubernetes-apps/csi_driver/vsphere/defaults/main.yml
@ -2,16 +2,17 @@
 external_vsphere_vcenter_port: "443"
 external_vsphere_insecure: "true"
 external_vsphere_kubernetes_cluster_id: "kubernetes-cluster-id"
 external_vsphere_version: "6.7u3"
 external_vsphere_version: "7.0u1"
 vsphere_syncer_image_tag: "v2.4.0"
 vsphere_csi_attacher_image_tag: "v3.3.0"
 vsphere_csi_controller: "v2.4.0"
 vsphere_csi_liveness_probe_image_tag: "v2.4.0"
 vsphere_csi_provisioner_image_tag: "v3.0.0"
 vsphere_csi_node_driver_registrar_image_tag: "v2.3.0"
 vsphere_csi_driver_image_tag: "v2.4.0"
 vsphere_csi_resizer_tag: "v1.3.0"
 vsphere_syncer_image_tag: "v2.5.1"
 vsphere_csi_attacher_image_tag: "v3.4.0"
 vsphere_csi_controller: "v2.5.1"
 vsphere_csi_liveness_probe_image_tag: "v2.6.0"
 vsphere_csi_provisioner_image_tag: "v3.1.0"
 vsphere_csi_snapshotter_image_tag: "v5.0.1"
 vsphere_csi_node_driver_registrar_image_tag: "v2.5.0"
 vsphere_csi_driver_image_tag: "v2.5.1"
 vsphere_csi_resizer_tag: "v1.4.0"
 vsphere_csi_controller_replicas: 1
--- a/roles/kubernetes-apps/csi_driver/vsphere/templates/vsphere-csi-controller-config.yml.j2
+++ b/roles/kubernetes-apps/csi_driver/vsphere/templates/vsphere-csi-controller-config.yml.j2
@ -9,6 +9,11 @@ data:
  "improved-volume-topology": "true"
  "block-volume-snapshot": "false"
  "csi-windows-support": "false"
 {% if vsphere_csi_controller is version('v2.5.0', '>=') %}
  "use-csinode-id": "true"
  "pv-to-backingdiskobjectid-mapping": "false"
  "cnsmgr-suspend-create-volume": "false"
 {% endif %}
 kind: ConfigMap
 metadata:
  name: internal-feature-states.csi.vsphere.vmware.com
--- a/roles/kubernetes-apps/csi_driver/vsphere/templates/vsphere-csi-controller-deployment.yml.j2
+++ b/roles/kubernetes-apps/csi_driver/vsphere/templates/vsphere-csi-controller-deployment.yml.j2
@ -75,10 +75,10 @@ spec:
            - "--v=4"
            - "--timeout=300s"
            - "--csi-address=$(ADDRESS)"
            - "--leader-election"
            - "--handle-volume-inuse-error=false"
            - "--kube-api-qps=100"
            - "--kube-api-burst=100"
            - "--leader-election"
          env:
            - name: ADDRESS
              value: /csi/csi.sock
@ -190,12 +190,12 @@ spec:
            - "--v=4"
            - "--timeout=300s"
            - "--csi-address=$(ADDRESS)"
            - "--leader-election"
            - "--default-fstype=ext4"
 {% if vsphere_csi_controller is version('v2.2.0', '>=') %}
            - "--kube-api-qps=100"
            - "--kube-api-burst=100"
 {% endif %}
            - "--leader-election"
            - "--default-fstype=ext4"
            # needed only for topology aware setup
            #- "--feature-gates=Topology=true"
            #- "--strict-topology"
@ -205,6 +205,23 @@ spec:
          volumeMounts:
            - mountPath: /csi
              name: socket-dir
 {% if vsphere_csi_controller is version('v2.5.0', '>=') %}
        - name: csi-snapshotter
          image: {{ kube_image_repo }}/sig-storage/csi-snapshotter:{{ vsphere_csi_snapshotter_image_tag }}
          args:
            - "--v=4"
            - "--kube-api-qps=100"
            - "--kube-api-burst=100"
            - "--timeout=300s"
            - "--csi-address=$(ADDRESS)"
            - "--leader-election"
          env:
            - name: ADDRESS
              value: /csi/csi.sock
          volumeMounts:
            - mountPath: /csi
              name: socket-dir
 {% endif %}
      volumes:
      - name: vsphere-config-volume
        secret:
--- a/roles/kubernetes-apps/csi_driver/vsphere/templates/vsphere-csi-controller-rbac.yml.j2
+++ b/roles/kubernetes-apps/csi_driver/vsphere/templates/vsphere-csi-controller-rbac.yml.j2
@ -10,8 +10,11 @@ metadata:
  name: vsphere-csi-controller-role
 rules:
  - apiGroups: [""]
    resources: ["nodes", "persistentvolumeclaims", "pods", "configmaps"]
    resources: ["nodes", "pods", "configmaps"]
    verbs: ["get", "list", "watch"]
  - apiGroups: [""]
    resources: ["persistentvolumeclaims"]
    verbs: ["get", "list", "watch", "update"]
 {% if external_vsphere_version >= "7.0" %}
  - apiGroups: [""]
    resources: ["persistentvolumeclaims/status"]
@ -66,7 +69,7 @@ rules:
    verbs: [ "watch", "get", "list" ]
  - apiGroups: [ "snapshot.storage.k8s.io" ]
    resources: [ "volumesnapshotcontents" ]
    verbs: [ "create", "get", "list", "watch", "update", "delete" ]
    verbs: [ "create", "get", "list", "watch", "update", "delete", "patch" ]
  - apiGroups: [ "snapshot.storage.k8s.io" ]
    resources: [ "volumesnapshotcontents/status" ]
    verbs: [ "update", "patch" ]
--- a/roles/kubernetes-apps/csi_driver/vsphere/templates/vsphere-csi-node-rbac.yml.j2
+++ b/roles/kubernetes-apps/csi_driver/vsphere/templates/vsphere-csi-node-rbac.yml.j2
@ -12,7 +12,7 @@ metadata:
 rules:
  - apiGroups: ["cns.vmware.com"]
    resources: ["csinodetopologies"]
    verbs: ["create", "watch"]
    verbs: ["create", "watch", "get", "patch" ]
  - apiGroups: [""]
    resources: ["nodes"]
    verbs: ["get"]
--- a/roles/kubernetes-apps/csi_driver/vsphere/templates/vsphere-csi-node.yml.j2
+++ b/roles/kubernetes-apps/csi_driver/vsphere/templates/vsphere-csi-node.yml.j2
@ -77,6 +77,8 @@ spec:
          value: "false"
        - name: X_CSI_DEBUG
          value: "true"
        - name: X_CSI_SPEC_DISABLE_LEN_CHECK
          value: "true"
        - name: LOGGER_LEVEL
          value: "PRODUCTION" # Options: DEVELOPMENT, PRODUCTION
 {% if external_vsphere_version >= "7.0u1" %}