# Seagate Exos X CSI driver functionality
Contact: Gregory Touretsky, gregory.touretsky@seagate.com

Seagate Exos X CSI driver supports Seagate storage systems with 4xx5/5xx5 controllers (including OEM versions).

Prerequisites: Exos X enclosure is configured with iSCSI. Pool[s] are created

## Review Kubernetes cluster

In [1]:
# Current CSI driver functionality should work with Kubernetes v.1.20 and higher
# Some features may not work with older versions of Kubernetes
kubectl get nodes

NAME                          STATUS   ROLES                  AGE   VERSION
stxeng-proliant-dl380p-gen8   Ready    control-plane,master   44d   v1.21.3


## Clone the driver from Github

In [3]:
git clone https://github.com/Seagate/seagate-exos-x-csi.git

Cloning into 'seagate-exos-x-csi'...
remote: Enumerating objects: 2320, done.[K
remote: Counting objects: 100% (831/831), done.[K
remote: Compressing objects: 100% (267/267), done.[K
remote: Total 2320 (delta 646), reused 634 (delta 540), pack-reused 1489[K
Receiving objects: 100% (2320/2320), 433.13 KiB | 2.97 MiB/s, done.
Resolving deltas: 100% (1369/1369), done.


## Install CSI driver using Helm

In [4]:
# As a prerequisite, clone Seagate Exos X CSI driver from https://github.com/Seagate/seagate-exos-x-csi
# Container images will be pulled from GitHub Container Repository
helm install seagate-csi -n seagate --create-namespace \
    ./seagate-exos-x-csi/helm/csi-charts \
    -f ./seagate-exos-x-csi/helm/csi-charts/values.yaml

NAME: seagate-csi
LAST DEPLOYED: Wed Sep 15 15:18:40 2021
NAMESPACE: seagate
STATUS: deployed
REVISION: 1
TEST SUITE: None
NOTES:
Thank you for using Seagate Exos X provisioner. It will be up and running shortly.
Run 'kubectl get pods' to verify that the new pods have a 'STATUS' of 'Running'.

In order to dynamically provide a persistant volume, create a storage class first.
Please refer to this example to do so: https://github.com/Seagate/seagate-exos-x-csi/blob/main/example/storage-class.yaml


In [5]:
# We recommend to install CSI driver in a dedicated namespace. Here it's running in a namespace "seagate"
# There is a single Controller (seagate-csi-controller) instance per cluster 
# and a single Node (seagate-csi-node) instance per worker node 
kubectl get pods -n seagate -o wide

NAME                                                    READY   STATUS    RESTARTS   AGE   IP              NODE                          NOMINATED NODE   READINESS GATES
seagate-exos-x-csi-controller-server-567bf6c885-bj4lf   5/5     Running   0          18s   10.244.0.21     stxeng-proliant-dl380p-gen8   <none>           <none>
seagate-exos-x-csi-node-server-z267f                    3/3     Running   0          18s   10.235.192.60   stxeng-proliant-dl380p-gen8   <none>           <none>


## Create a secret for every managed enclosure

In [7]:
# Secret contains base64-encoded management IP and credentials for the enclosure
# For security reasons, this secret should be created in the same namespace where the driver is installed (seagate)
kubectl create -f iscsi/secret-seagate.yaml

secret/secret-seagate created


## Create a Storage Class

In [15]:
# Some of these parameters (such as iqn and portals) will be deprecated in the future release
# Other parameters will be added
cat iscsi/storage-class.yaml

apiVersion: storage.k8s.io/v1
kind: StorageClass
provisioner: csi-exos-x.seagate.com
allowVolumeExpansion: true
metadata:
  name: storageclass-seagate
parameters:
  csi.storage.k8s.io/provisioner-secret-name: secret-seagate
  csi.storage.k8s.io/provisioner-secret-namespace: seagate
  csi.storage.k8s.io/controller-publish-secret-name: secret-seagate
  csi.storage.k8s.io/controller-publish-secret-namespace: seagate
  csi.storage.k8s.io/controller-expand-secret-name: secret-seagate
  csi.storage.k8s.io/controller-expand-secret-namespace: seagate
  fsType: ext4 # Desired filesystem
  iqn: iqn.1992-09.com.seagate:01.array.00c0ff0afca8
  pool: A # Pool for volumes provisioning
  portals: 172.9.1.22,172.9.1.23
  volPrefix: stx # Desired prefix for volume naming, an underscore is appended


In [16]:
kubectl create -f iscsi/storage-class.yaml

storageclass.storage.k8s.io/storageclass-seagate created


In [17]:
kubectl get sc storageclass-seagate

NAME                   PROVISIONER              RECLAIMPOLICY   VOLUMEBINDINGMODE   ALLOWVOLUMEEXPANSION   AGE
storageclass-seagate   csi-exos-x.seagate.com   Delete          Immediate           true                   3s


## Validate lack of PVCs and pods in the demo space

In [18]:
# In this demo PVCs and pods will be created in a namespace "demo"
# At the beginning of the demo this namespace is empty
kubectl get pvc,volumesnapshot,pod -n demo

No resources found in demo namespace.


## Create a Persistent Volume Claim

In [19]:
cat iscsi/pvc.yaml

apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  name: pvc-seagate
  namespace: demo
spec:
  accessModes:
    - ReadWriteOnce
  storageClassName: storageclass-seagate
  resources:
    requests:
      storage: 1Gi


In [20]:
kubectl create -f iscsi/pvc.yaml

persistentvolumeclaim/pvc-seagate created


In [22]:
kubectl get pvc pvc-seagate -n demo

NAME          STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS           AGE
pvc-seagate   Bound    pvc-702470fe-ae36-4da2-a8be-637123a473f0   1Gi        RWO            storageclass-seagate   25s


## Check newly created persistent volume in the enclosure UI
![Volume Screenshot](pics/new_pv.png)

## Create a snapshot class

In [28]:
cat iscsi/snapshot-class.yaml

apiVersion: snapshot.storage.k8s.io/v1
kind: VolumeSnapshotClass
metadata:
  name: snapshotclass-seagate
driver: csi-exos-x.seagate.com
deletionPolicy: Delete
parameters:
  csi.storage.k8s.io/snapshotter-secret-name: secret-seagate
  csi.storage.k8s.io/snapshotter-secret-namespace: seagate
  volPrefix: snp  # Prefix for snapshot volumes, an underscore is appended


In [29]:
kubectl create -f iscsi/snapshot-class.yaml

volumesnapshotclass.snapshot.storage.k8s.io/snapshotclass-seagate created


In [30]:
kubectl get volumesnapshotclass snapshotclass-seagate

NAME                    DRIVER                   DELETIONPOLICY   AGE
snapshotclass-seagate   csi-exos-x.seagate.com   Delete           3s


## Create a snapshot

In [31]:
cat iscsi/snapshot.yaml

apiVersion: snapshot.storage.k8s.io/v1
kind: VolumeSnapshot
metadata:
  name: snapshot-seagate
  namespace: demo
spec:
  volumeSnapshotClassName: snapshotclass-seagate
  source:
    persistentVolumeClaimName: pvc-seagate


In [1]:
kubectl create -f iscsi/snapshot.yaml

volumesnapshot.snapshot.storage.k8s.io/snapshot-seagate created


In [2]:
kubectl get volumesnapshot snapshot-seagate -n demo

NAME               READYTOUSE   SOURCEPVC     SOURCESNAPSHOTCONTENT   RESTORESIZE   SNAPSHOTCLASS           SNAPSHOTCONTENT                                    CREATIONTIME   AGE
snapshot-seagate   true         pvc-seagate                           2Mi           snapshotclass-seagate   snapcontent-569d06e5-b2d0-47dd-b6b2-78e14f7cd49a   7h9m           28s


## Check newly created snapshot in the enclosure UI
![Snapshot Screenshot](pics/new_snapshot.png)

## Create a new PVC from the snapshot (restore)

In [3]:
cat iscsi/restoresnapshot.yaml

apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  name: pvc-restore-seagate
  namespace: demo
spec:
  dataSource:
    name: snapshot-seagate
    kind: VolumeSnapshot
    apiGroup: "snapshot.storage.k8s.io"
  accessModes:
    - ReadWriteOnce
  storageClassName: storageclass-seagate
  resources:
    requests:
      storage: 1Gi


In [4]:
kubectl create -f iscsi/restoresnapshot.yaml

persistentvolumeclaim/pvc-restore-seagate created


## Check restore pvc

In [6]:
kubectl get pvc pvc-restore-seagate -n demo

NAME                  STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS           AGE
pvc-restore-seagate   Bound    pvc-a0bec410-38c8-42a8-aa70-b8828c59bdbf   1Gi        RWO            storageclass-seagate   22s


## Create a new PVC from the existing PVC (clone)

In [7]:
cat iscsi/clonepvc.yaml

apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  name: pvc-clone-seagate
  namespace: demo
spec:
  dataSource:
    name: pvc-seagate
    kind: PersistentVolumeClaim
  accessModes:
    - ReadWriteOnce
  storageClassName: storageclass-seagate
  resources:
    requests:
      storage: 1Gi


In [8]:
kubectl create -f iscsi/clonepvc.yaml

persistentvolumeclaim/pvc-clone-seagate created


In [9]:
kubectl get pvc pvc-clone-seagate -n demo

NAME                STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS           AGE
pvc-clone-seagate   Bound    pvc-f08a75fa-9f9a-4743-9ee2-a29f0b1a9ce3   1Gi        RWO            storageclass-seagate   12s


## Create a pod with the PVC attached

In [12]:
cat iscsi/app.yaml

apiVersion: v1
kind: Pod
metadata:
  name: pod-seagate
  namespace: demo
spec:
  containers:
  - image: gcr.io/google-containers/busybox:latest
    name: theapp
    volumeMounts:
    - mountPath: /vol
      name: volume-seagate
    command: [ "sleep", "1000" ]
  volumes:
  - name: volume-seagate
    persistentVolumeClaim:
      claimName: pvc-seagate


In [13]:
kubectl create -f iscsi/app.yaml

pod/pod-seagate created


In [14]:
kubectl get pod pod-seagate -n demo

NAME          READY   STATUS    RESTARTS   AGE
pod-seagate   1/1     Running   0          33s


In [15]:
kubectl exec -it pod-seagate -n demo -- df -h /vol

Filesystem                Size      Used Available Use% Mounted on
/dev/mapper/3600c0ff00028e6fc0900426101000000
                        975.9M      2.5M    906.2M   0% /vol


## Resize the PV

```
kubectl edit pvc pvc-seagate -n demo
```
Replace 1Gi with new size (2Gi) in the spec:
```
spec:
  accessModes:
  - ReadWriteOnce
  resources:
    requests:
      storage: 1Gi
  storageClassName: seagate-storageclass-demo
  volumeMode: Filesystem
```

In [4]:
# Command above results in volume resize
# The pod must be restarted to complete file system resize 
kubectl delete -f iscsi/app.yaml

pod "seagate-pod-pvc-demo" deleted


In [16]:
kubectl create -f iscsi/app.yaml

pod/pod-seagate created


In [17]:
# Notice PVC size changed to 2Gi
kubectl get pvc,pod -n demo

NAME                                        STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS           AGE
persistentvolumeclaim/pvc-clone-seagate     Bound    pvc-f08a75fa-9f9a-4743-9ee2-a29f0b1a9ce3   1Gi        RWO            storageclass-seagate   5m9s
persistentvolumeclaim/pvc-restore-seagate   Bound    pvc-a0bec410-38c8-42a8-aa70-b8828c59bdbf   1Gi        RWO            storageclass-seagate   5m40s
persistentvolumeclaim/pvc-seagate           Bound    pvc-702470fe-ae36-4da2-a8be-637123a473f0   2Gi        RWO            storageclass-seagate   88m

NAME              READY   STATUS    RESTARTS   AGE
pod/pod-seagate   1/1     Running   0          24s


In [19]:
# And the filesystem is 1.9G now
kubectl exec -it pod-seagate -n demo -- df -h /vol

Filesystem                Size      Used Available Use% Mounted on
/dev/mapper/3600c0ff00028e6fc0900426101000000
                          1.9G      3.0M      1.8G   0% /vol


## Metrics
Exos X CSI driver exports a variety of metrics which can be used to track usage and performance of the driver.
By default, Controller exposes /metrics on port tcp/9842.
Also, every Node exposes /healthz endpoint on port tcp/9808 which returns "ok"

We'll publish a reference Prometheus query and Grafana dashboard in the future.
For now, here is the query directly to the exporter 

In [20]:
# Define IP of the Controller pod
CTRL_IP=`kubectl get pod -n seagate -o wide  | grep seagate-exos-x-csi-controller | awk '{print $6}'`
# use curl to query the pod
curl -s http://$CTRL_IP:9842/metrics | head


# HELP exosx_api_appliance_api_call How many API calls have been executed
# TYPE exosx_api_appliance_api_call counter
exosx_api_appliance_api_call{endpoint="/copy/volume/destination-pool/%q/name/%q/%q",success="true"} 2
exosx_api_appliance_api_call{endpoint="/create/snapshots/volumes/%q/%q",success="true"} 3
exosx_api_appliance_api_call{endpoint="/delete/snapshot/%q",success="true"} 2
exosx_api_appliance_api_call{endpoint="/expand/volume/size/\"%s\"/\"%s\"",success="true"} 1
exosx_api_appliance_api_call{endpoint="/login/%s",success="true"} 1
exosx_api_appliance_api_call{endpoint="/map/volume/access/%s/lun/%d/initiator/\"%s\"/\"%s\"",success="true"} 3
exosx_api_appliance_api_call{endpoint="/show/controllers",success="true"} 1
exosx_api_appliance_api_call{endpoint="/show/maps/%s",success="true"} 3


### Configure Prometheus to collect CSI driver metrics
```
kubectl edit cm prometheus-server -n monitoring

    - job_name: seagate-exos-x-csi-controller
      scrape_interval: 10s
      kubernetes_sd_configs:
      - role: pod
        namespaces:
          names:
          - seagate
        selectors:
        - role: "pod"
          label: "app=seagate-exos-x-csi-controller-server"
      relabel_configs:
      - source_labels: [__address__]
        separator: ':'
        regex: '([^:]+).*'
        replacement: '${1}:9842'
        target_label: __address__
```

### Query Prometheus to see amount of CSI requests and the amount of corresponding Seagate Exos X API calls
![Prometheus_Graph](pics/exos-x-csi-prometheus-query.png)

## Clean everything

In [21]:
kubectl delete -f iscsi/app.yaml

pod "pod-seagate" deleted


In [22]:
kubectl delete -f iscsi/clonepvc.yaml

persistentvolumeclaim "pvc-clone-seagate" deleted


In [23]:
kubectl delete -f iscsi/restoresnapshot.yaml

persistentvolumeclaim "pvc-restore-seagate" deleted


In [24]:
# There is a bug in the current version, snapshot is not actually deleted on the enclosure
kubectl delete -f iscsi/snapshot.yaml

volumesnapshot.snapshot.storage.k8s.io "snapshot-seagate" deleted


In [25]:
kubectl delete -f iscsi/pvc.yaml

persistentvolumeclaim "pvc-seagate" deleted


In [26]:
kubectl delete -f iscsi/snapshot-class.yaml

volumesnapshotclass.snapshot.storage.k8s.io "snapshotclass-seagate" deleted


In [27]:
kubectl delete -f iscsi/storage-class.yaml

storageclass.storage.k8s.io "storageclass-seagate" deleted


In [28]:
helm uninstall seagate-csi -n seagate

release "seagate-csi" uninstalled


In [29]:
rm -rf seagate-exos-x-csi

## Future functionality
* Storage Class parameters update
* OpenShift operator
----
* Additional parameters in StorageClass definition
* Managing multiple enclosures / pools via single StorageClass
* Topology 
* Capacity
* Import a volume
* Raw block device
* iSCSI CHAP
* SAS and NVMe connectivity support
* Support for Windows