Better messaging for missing volume binaries on host

[rkouj]

What this PR does / why we need it:
When mount binaries are not present on a host, the error returned is a generic one.
This change is to check the mount binaries before the mount and return a user-friendly error message.

This change is specific to GCI and the flag is experimental now.

#36098

Release note:
Introduces a flag check-node-capabilities-before-mount which if set, enables a check (CanMount()) prior to mount operations to verify that the required components (binaries, etc.) to mount the volume are available on the underlying node. If the check is enabled and CanMount() returns an error, the mount operation fails. Implements the CanMount() check for NFS.

---

This change is

Sample output post change :

rkouj@rkouj0:~/go/src/k8s.io/kubernetes$ kubectl describe pods
Name: sleepyrc-fzhyl
Namespace: default
Node: e2e-test-rkouj-minion-group-oxxa/10.240.0.3
Start Time: Mon, 07 Nov 2016 21:28:36 -0800
Labels: name=sleepy
Status: Pending
IP:
Controllers: ReplicationController/sleepyrc
Containers:
sleepycontainer1:
Container ID:
Image: gcr.io/google_containers/busybox
Image ID:
Port:
Command:
sleep
6000
QoS Tier:
cpu: Burstable
memory: BestEffort
Requests:
cpu: 100m
State: Waiting
Reason: ContainerCreating
Ready: False
Restart Count: 0
Environment Variables:
Conditions:
Type Status
Initialized True
Ready False
PodScheduled True
Volumes:
data:
Type: NFS (an NFS mount that lasts the lifetime of a pod)
Server: 127.0.0.1
Path: /export
ReadOnly: false
default-token-d13tj:
Type: Secret (a volume populated by a Secret)
SecretName: default-token-d13tj
Events:
FirstSeen LastSeen Count From SubobjectPath Type Reason Message

---

7s 7s 1 {default-scheduler } Normal Scheduled Successfully assigned sleepyrc-fzhyl to e2e-test-rkouj-minion-group-oxxa
6s 3s 4 {kubelet e2e-test-rkouj-minion-group-oxxa} Warning FailedMount Unable to mount volume kubernetes.io/nfs/32c7ef16-a574-11e6-813d-42010af00002-data (spec.Name: data) on pod sleepyrc-fzhyl (UID: 32c7ef16-a574-11e6-813d-42010af00002). Verify that your node machine has the required components before attempting to mount this volume type. Required binary /sbin/mount.nfs is missing

[saad-ali]

Space at the start of comments.

Also, I recommend being more descriptive on interface comments so that those trying to implement the interface quickly understand everything they need to know to implement the method:
CanMount is called immediately prior to SetUp to check if the required components (binaries, etc.) are available on the underlying node to complete the subsequent SetUp (mount) operation. If CanMount returns false, the mount operation is aborted and an event is generated indicating that the node does not have the required binaries to complete mount. If CanMount returns true, the mount operation continues normally. The CanMount check can be enabled or disabled using the experimental-check-mount-binaries binary flag.

nit: Personal preference, I like to maintain a column width of 80.

[rkouj]

Done.

[saad-ali]

Looks good

[saad-ali]

Add comments to public methods. Even if the existing code isn't great, make the new code you add better.

[rkouj]

Done

[saad-ali]

Renaming sucks but I'm going to recommend checkNodeCapabilitiesBeforeMount instead of checkBinariesBeforeMount in all the files. It is more verbose, but it is less likely to become inaccurate: the checks you have at the moment only look for binaries, but other plugins may want to check for kernel modules or something else in the future.

[rkouj]

Done

[saad-ali]

Instead of duplicating the string 3 times, create it once, and use the variable, so that it is easy to modify and keep consistent:

 errMsg := fmt.Stringf("...", ...)
...

[rkouj]

This is an easy one. My bad.

[saad-ali]

Instead of returning a bool, how about returning an error. So that if the check fails plugins can return an error with a message for what exactly is missing. e.g. Required binary /sbin/mount.nfs4 is missing. The caller, operation executor, can then use this message in the user visible error to provide more actionable information.

(Update the comment accordingly).

[rkouj]

Done

[saad-ali]

Can you also implement the check for Gluster. Check with @jingxu97 what the required client binaries are.

[rkouj]

Will get this change out in a separate PR.

[saad-ali]

How about:

This flag, if set, enables a check prior to mount operations to verify that the required components (binaries, etc.) to mount the volume are available on the underlying node. If the check is enabled and fails the mount operation fails.

[saad-ali]

Ditto on options.go and other types.go file

[rkouj]

Done

[saad-ali]

I believe you have to add the new flag to hack/verify-flags/known-flags.txt or the verify-flags-underscore.py will fail.

[rkouj]

Done

[saad-ali]

Here is how you can implement the "put the pod in a failed state" functionality:

• In the volumeManager, introduce a new custom error, NonRecoverableVolumeError.
  • See AlreadyExistsError in goroutinemap, for example.
• Have operation executor return the new NonRecoverableVolumeError instead of a standard error when the CanMount() check fails.
• In this file, modify volumeManager.WaitForAttachAndMount to handle the new volumemanager.NonRecoverableVolumeError and when it is detected, in addition to the usual error handling behavior, set the pod status to failed.
  • See rejectPod() method in this file for example.

[rkouj]

Will get this change out in a separate PR

[k8s-ci-robot]

Jenkins GCE Node e2e failed for commit 0b844b251315fde32837d683449a3f619da29dfa. Full PR test history.

The magic incantation to run this job again is @k8s-bot node e2e test this. Please help us cut down flakes by linking to an open flake issue when you hit one in your PR.

[rkouj]

@saad-ali PTAL

[saad-ali]

Add a comment about what this test does and what it expects.

[saad-ali]

Also how is this test different from the standard NFS test above and how did you verify that it is working?

[rkouj]

This test is the same as the previous one and I will remove it.
Unnecessary for the current one.

[saad-ali]

Space at the start of comment.

[saad-ali]

checkNodeCapabilitiesBeforeMount, if set, enables the CanMount check, which verifies that the components (binaries, etc.) required to mount the volume are available on the underlying node before attempting mount.

[rkouj]

Done

[saad-ali]

nit: Let's not even call CanMount() if checkNodeCapabilitiesBeforeMount == false. It doesn't make much of a difference, but in the case that there is a bug in a CanMount() implementation that causes a panic, for example, checkNodeCapabilitiesBeforeMount can then be used to completely avoid the check (vs the way it is CanMount() would always be called).

[rkouj]

I had that in mind previously but didn't change it because it affects the readability of code. (It's not immediately visible if the CanMount() is called in the second statement of the if block and for now since it's unlikely to cause a panic with only the nfs implementation.)

But in the future some other implementation of CanMount() can cause a panic, so I'll move it.

[saad-ali]

I would put the bulk of the common message here, and have plugins only return only the description of what exactly is missing:

Unable to mount volume %v (spec.Name: %v) on pod %v (UID: %v). Components required for mounting do not exist on the node machine: %v. Verify that your node machine has the required components before attempting to mount this volume type.

[rkouj]

Done

[saad-ali]

This needs to be updated for new interface.

[rkouj]

Done

[saad-ali]

I would remove the missingBinaryMsg here, and have the plugins only return exactly what is missing. e.g. /sbin/mount_nfs is missing (since it will otherwise be duplicated in each plugin).

[rkouj]

The intent behind this message is that it would change with each plugin and I wanted to make this nfs specific (since it has the word binaries in it).

Like you mentioned in the previous comment that for different plugins, the mount capabilities might not necessarily depend on binaries, each plugin would describe what is missing and based on the error, there would a specific message as to which binary was missing.

I have changed it now.

[saad-ali]

nit: when it is not obvious what a variable is that you are passing, stick the parameter name as a comment next to it. e.g.:

NewOperationExecutor(kubeClient, volumePluginMgr, fakeRecorder, false /* checkNodeCapabilitiesBeforeMount */)

[rkouj]

Done

[saad-ali]

nit: Add a comment explaining what this is doing and why.

[rkouj]

Done.

[k8s-ci-robot]

Jenkins GCI GKE smoke e2e failed for commit e94146089fc98d21b1125ac7f59475f031e378bd. Full PR test history.

The magic incantation to run this job again is @k8s-bot gci gke e2e test this. Please help us cut down flakes by linking to an open flake issue when you hit one in your PR.

[k8s-ci-robot]

Jenkins GCE e2e failed for commit ae2598b7370794455a3b8a4b4ab41dd811b2e940. Full PR test history.

The magic incantation to run this job again is @k8s-bot cvm gce e2e test this. Please help us cut down flakes by linking to an open flake issue when you hit one in your PR.

[k8s-ci-robot]

Jenkins Kubemark GCE e2e failed for commit ae2598b7370794455a3b8a4b4ab41dd811b2e940. Full PR test history.

The magic incantation to run this job again is @k8s-bot kubemark e2e test this. Please help us cut down flakes by linking to an open flake issue when you hit one in your PR.

[k8s-ci-robot]

Jenkins GCI GCE e2e failed for commit ae2598b7370794455a3b8a4b4ab41dd811b2e940. Full PR test history.

The magic incantation to run this job again is @k8s-bot gci gce e2e test this. Please help us cut down flakes by linking to an open flake issue when you hit one in your PR.

[k8s-ci-robot]

Jenkins unit/integration failed for commit 70f250d42dfcd4a16e9cda597491e388fffe8c8e. Full PR test history.

The magic incantation to run this job again is @k8s-bot unit test this. Please help us cut down flakes by linking to an open flake issue when you hit one in your PR.

[k8s-ci-robot]

Jenkins GKE smoke e2e failed for commit ad6bfa4d01b8c2fc3b91e50b0b3dbcc39020315e. Full PR test history.

The magic incantation to run this job again is @k8s-bot cvm gke e2e test this. Please help us cut down flakes by linking to an open flake issue when you hit one in your PR.

[k8s-ci-robot]

Jenkins GCE etcd3 e2e failed for commit ad6bfa4d01b8c2fc3b91e50b0b3dbcc39020315e. Full PR test history.

The magic incantation to run this job again is @k8s-bot gce etcd3 e2e test this. Please help us cut down flakes by linking to an open flake issue when you hit one in your PR.

[k8s-ci-robot]

Jenkins verification failed for commit d81e216. Full PR test history.

The magic incantation to run this job again is @k8s-bot verify test this. Please help us cut down flakes by linking to an open flake issue when you hit one in your PR.

[saad-ali]

@k8s-bot verify test this

[k8s-github-robot]

@k8s-bot test this [submit-queue is verifying that this PR is safe to merge]

[k8s-github-robot]

Automatic merge from submit-queue

[jessfraz]

@rkouj there are a lot of conflicts with this cherry-pick would you mind opening it since you are more familiar with the code?

[saad-ali]

@rkouj there are a lot of conflicts with this cherry-pick would you mind opening it since you are more familiar with the code?

@jessfraz, @rkouj plans to prepare a cherry pick as soon as @jingxu97's mounter changes are in 1.4 (this PR depends on that). If @jingxu97's changes look like they may miss 1.4.7 (for any reason), then @rkouj will cherry pick this PR anyway (working around the dependency on @jingxu97's mounter PR).

This PR must be cherry-picked along with #36686

[jessfraz]

cool looks like the mounter stuff is in so ping @rkouj for cherry-pick :)

[k8s-cherrypick-bot]

Commit found in the "release-1.4" branch appears to be this PR. Removing the "cherrypick-candidate" label. If this is an error find help to get your PR picked.