diff --git a/pkg/azurefile/azure.go b/pkg/azurefile/azure.go index b9f2b5d98f..f39ce4763e 100644 --- a/pkg/azurefile/azure.go +++ b/pkg/azurefile/azure.go @@ -28,6 +28,7 @@ import ( "github.com/Azure/azure-sdk-for-go/services/network/mgmt/2022-07-01/network" metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" + "k8s.io/client-go/kubernetes" clientset "k8s.io/client-go/kubernetes" "k8s.io/client-go/rest" "k8s.io/client-go/tools/clientcmd" @@ -65,37 +66,15 @@ func getRuntimeClassForPod(ctx context.Context, kubeClient clientset.Interface, } // getCloudProvider get Azure Cloud Provider -func getCloudProvider(ctx context.Context, kubeconfig, nodeID, secretName, secretNamespace, userAgent string, allowEmptyCloudConfig, enableWindowsHostProcess bool, kubeAPIQPS float64, kubeAPIBurst int) (*azure.Cloud, error) { +func getCloudProvider(ctx context.Context, kubeClient kubernetes.Interface, nodeID, secretName, secretNamespace, userAgent string, allowEmptyCloudConfig bool) (*azure.Cloud, error) { var ( config *azureconfig.Config - kubeClient *clientset.Clientset fromSecret bool ) az := &azure.Cloud{} var err error - // for sanity test: if kubeconfig is set as "no-need-kubeconfig", kubeClient will be nil - if kubeconfig == "no-need-kubeconfig" { - klog.V(2).Infof("kubeconfig is set as no-need-kubeconfig, kubeClient will be nil") - } else { - kubeCfg, err := getKubeConfig(kubeconfig, enableWindowsHostProcess) - if err == nil && kubeCfg != nil { - klog.V(2).Infof("set QPS(%f) and QPS Burst(%d) for driver kubeClient", float32(kubeAPIQPS), kubeAPIBurst) - kubeCfg.QPS = float32(kubeAPIQPS) - kubeCfg.Burst = kubeAPIBurst - kubeClient, err = clientset.NewForConfig(kubeCfg) - if err != nil { - klog.Warningf("NewForConfig failed with error: %v", err) - } - } else { - klog.Warningf("get kubeconfig(%s) failed with error: %v", kubeconfig, err) - if !os.IsNotExist(err) && !errors.Is(err, rest.ErrNotInCluster) { - return az, fmt.Errorf("failed to get KubeClient: %v", err) - } - } - } - if kubeClient != nil { klog.V(2).Infof("reading cloud config from secret %s/%s", secretNamespace, secretName) config, err = configloader.Load[azureconfig.Config](ctx, &configloader.K8sSecretLoaderConfig{ diff --git a/pkg/azurefile/azure_test.go b/pkg/azurefile/azure_test.go index f52bf72fe3..c1c8a33825 100644 --- a/pkg/azurefile/azure_test.go +++ b/pkg/azurefile/azure_test.go @@ -35,6 +35,7 @@ import ( corev1 "k8s.io/api/core/v1" metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" + "k8s.io/client-go/kubernetes" fake "k8s.io/client-go/kubernetes/fake" azureprovider "sigs.k8s.io/cloud-provider-azure/pkg/provider" azureconfig "sigs.k8s.io/cloud-provider-azure/pkg/provider/config" @@ -116,169 +117,114 @@ func TestGetRuntimeClassForPod(t *testing.T) { // To run this unit test successfully, need to ensure /etc/kubernetes/azure.json nonexistent. func TestGetCloudProvider(t *testing.T) { var ( - fakeCredFile = testutil.GetWorkDirPath("fake-cred-file.json", t) - fakeKubeConfig = testutil.GetWorkDirPath("fake-kube-config", t) - emptyKubeConfig = testutil.GetWorkDirPath("empty-kube-config", t) - notExistKubeConfig = testutil.GetWorkDirPath("non-exist.json", t) + fakeCredFile = testutil.GetWorkDirPath("fake-cred-file.json", t) ) - - fakeContent := `apiVersion: v1 -clusters: -- cluster: - server: https://localhost:8080 - name: foo-cluster -contexts: -- context: - cluster: foo-cluster - user: foo-user - namespace: bar - name: foo-context -current-context: foo-context -kind: Config -users: -- name: foo-user - user: - exec: - apiVersion: client.authentication.k8s.io/v1beta1 - args: - - arg-1 - - arg-2 - command: foo-command -` - - if err := createTestFile(emptyKubeConfig); err != nil { - t.Error(err) - } - defer func() { - if err := os.Remove(emptyKubeConfig); err != nil { - t.Error(err) - } - }() - tests := []struct { desc string createFakeCredFile bool - createFakeKubeConfig bool setFederatedWorkloadIdentityEnv bool - kubeconfig string + kubeclient kubernetes.Interface userAgent string allowEmptyCloudConfig bool aadFederatedTokenFile string useFederatedWorkloadIdentityExtension bool aadClientID string tenantID string - expectedErr testutil.TestError + expectedErr *testutil.TestError }{ { desc: "out of cluster, no kubeconfig, no credential file", - kubeconfig: "", + kubeclient: nil, allowEmptyCloudConfig: true, - expectedErr: testutil.TestError{}, + expectedErr: nil, }, { desc: "[failure][disallowEmptyCloudConfig] out of cluster, no kubeconfig, no credential file", - kubeconfig: "", + kubeclient: nil, allowEmptyCloudConfig: false, - expectedErr: testutil.TestError{ + expectedErr: &testutil.TestError{ DefaultError: fmt.Errorf("no cloud config provided, error"), }, }, { desc: "[failure] out of cluster & in cluster, specify a non-exist kubeconfig, no credential file", - kubeconfig: notExistKubeConfig, + kubeclient: nil, allowEmptyCloudConfig: true, - expectedErr: testutil.TestError{}, - }, - { - desc: "[failure] out of cluster & in cluster, specify a empty kubeconfig, no credential file", - kubeconfig: emptyKubeConfig, - allowEmptyCloudConfig: true, - expectedErr: testutil.TestError{ - DefaultError: fmt.Errorf("failed to get KubeClient: invalid configuration: no configuration has been provided, try setting KUBERNETES_MASTER environment variable"), - }, + expectedErr: nil, }, { desc: "[failure] out of cluster & in cluster, specify a fake kubeconfig, no credential file", - createFakeKubeConfig: true, - kubeconfig: fakeKubeConfig, + kubeclient: fake.NewSimpleClientset(), allowEmptyCloudConfig: true, - expectedErr: testutil.TestError{}, + expectedErr: nil, }, { desc: "[success] out of cluster & in cluster, no kubeconfig, a fake credential file", createFakeCredFile: true, - kubeconfig: "", + kubeclient: nil, userAgent: "useragent", allowEmptyCloudConfig: true, - expectedErr: testutil.TestError{}, + expectedErr: nil, }, { desc: "[success] get azure client with workload identity", - createFakeKubeConfig: true, createFakeCredFile: true, setFederatedWorkloadIdentityEnv: true, - kubeconfig: fakeKubeConfig, + kubeclient: fake.NewSimpleClientset(), userAgent: "useragent", useFederatedWorkloadIdentityExtension: true, aadFederatedTokenFile: "fake-token-file", aadClientID: "fake-client-id", tenantID: "fake-tenant-id", - expectedErr: testutil.TestError{}, + expectedErr: nil, }, } for _, test := range tests { - if test.createFakeKubeConfig { - if err := createTestFile(fakeKubeConfig); err != nil { - t.Error(err) - } - defer func() { - if err := os.Remove(fakeKubeConfig); err != nil && !os.IsNotExist(err) { + t.Run(test.desc, func(t *testing.T) { + if test.createFakeCredFile { + if err := createTestFile(fakeCredFile); err != nil { t.Error(err) } - }() - - if err := os.WriteFile(fakeKubeConfig, []byte(fakeContent), 0666); err != nil { - t.Error(err) + defer func() { + if err := os.Remove(fakeCredFile); err != nil && !os.IsNotExist(err) { + t.Error(err) + } + }() + + originalCredFile, ok := os.LookupEnv(DefaultAzureCredentialFileEnv) + if ok { + defer os.Setenv(DefaultAzureCredentialFileEnv, originalCredFile) + } else { + defer os.Unsetenv(DefaultAzureCredentialFileEnv) + } + os.Setenv(DefaultAzureCredentialFileEnv, fakeCredFile) } - } - if test.createFakeCredFile { - if err := createTestFile(fakeCredFile); err != nil { - t.Error(err) + if test.setFederatedWorkloadIdentityEnv { + t.Setenv("AZURE_TENANT_ID", test.tenantID) + t.Setenv("AZURE_CLIENT_ID", test.aadClientID) + t.Setenv("AZURE_FEDERATED_TOKEN_FILE", test.aadFederatedTokenFile) } - defer func() { - if err := os.Remove(fakeCredFile); err != nil && !os.IsNotExist(err) { - t.Error(err) - } - }() - originalCredFile, ok := os.LookupEnv(DefaultAzureCredentialFileEnv) - if ok { - defer os.Setenv(DefaultAzureCredentialFileEnv, originalCredFile) + cloud, err := getCloudProvider(context.Background(), test.kubeclient, "", "", "", test.userAgent, test.allowEmptyCloudConfig) + if test.expectedErr != nil { + if err == nil { + t.Errorf("desc: %s,\n input: %q, getCloudProvider err: %v, expectedErr: %v", test.desc, test.kubeclient, err, test.expectedErr) + } + if !testutil.AssertError(err, test.expectedErr) && !strings.Contains(err.Error(), test.expectedErr.DefaultError.Error()) { + t.Errorf("desc: %s,\n input: %q, getCloudProvider err: %v, expectedErr: %v", test.desc, test.kubeclient, err, test.expectedErr) + } + } + if cloud == nil { + t.Errorf("return value of getCloudProvider should not be nil even there is error") } else { - defer os.Unsetenv(DefaultAzureCredentialFileEnv) + assert.Equal(t, test.userAgent, cloud.UserAgent) + assert.Equal(t, cloud.AADFederatedTokenFile, test.aadFederatedTokenFile) + assert.Equal(t, cloud.UseFederatedWorkloadIdentityExtension, test.useFederatedWorkloadIdentityExtension) + assert.Equal(t, cloud.AADClientID, test.aadClientID) + assert.Equal(t, cloud.TenantID, test.tenantID) } - os.Setenv(DefaultAzureCredentialFileEnv, fakeCredFile) - } - if test.setFederatedWorkloadIdentityEnv { - t.Setenv("AZURE_TENANT_ID", test.tenantID) - t.Setenv("AZURE_CLIENT_ID", test.aadClientID) - t.Setenv("AZURE_FEDERATED_TOKEN_FILE", test.aadFederatedTokenFile) - } - - cloud, err := getCloudProvider(context.Background(), test.kubeconfig, "", "", "", test.userAgent, test.allowEmptyCloudConfig, false, 5, 10) - if !testutil.AssertError(err, &test.expectedErr) && !strings.Contains(err.Error(), test.expectedErr.DefaultError.Error()) { - t.Errorf("desc: %s,\n input: %q, getCloudProvider err: %v, expectedErr: %v", test.desc, test.kubeconfig, err, test.expectedErr) - } - if cloud == nil { - t.Errorf("return value of getCloudProvider should not be nil even there is error") - } else { - assert.Equal(t, test.userAgent, cloud.UserAgent) - assert.Equal(t, cloud.AADFederatedTokenFile, test.aadFederatedTokenFile) - assert.Equal(t, cloud.UseFederatedWorkloadIdentityExtension, test.useFederatedWorkloadIdentityExtension) - assert.Equal(t, cloud.AADClientID, test.aadClientID) - assert.Equal(t, cloud.TenantID, test.tenantID) - } + }) } } diff --git a/pkg/azurefile/azurefile.go b/pkg/azurefile/azurefile.go index aaea884a06..68908258e8 100644 --- a/pkg/azurefile/azurefile.go +++ b/pkg/azurefile/azurefile.go @@ -24,6 +24,7 @@ import ( "fmt" "net/http" "net/url" + "os" "strconv" "strings" "sync" @@ -45,6 +46,9 @@ import ( apierrors "k8s.io/apimachinery/pkg/api/errors" metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" "k8s.io/apimachinery/pkg/util/wait" + "k8s.io/client-go/kubernetes" + clientset "k8s.io/client-go/kubernetes" + "k8s.io/client-go/rest" "k8s.io/klog/v2" "k8s.io/kubernetes/pkg/volume/util" mount "k8s.io/mount-utils" @@ -231,8 +235,6 @@ type Driver struct { enableVolumeMountGroup bool appendMountErrorHelpLink bool mountPermissions uint64 - kubeAPIQPS float64 - kubeAPIBurst int enableWindowsHostProcess bool removeSMBMountOnWindows bool appendClosetimeoOption bool @@ -281,7 +283,7 @@ type Driver struct { // azcopy for provide exec mock for ut azcopy *fileutil.Azcopy - kubeconfig string + kubeClient kubernetes.Interface endpoint string resolver Resolver directVolume DirectVolume @@ -307,8 +309,6 @@ func NewDriver(options *DriverOptions) *Driver { driver.appendMountErrorHelpLink = options.AppendMountErrorHelpLink driver.mountPermissions = options.MountPermissions driver.fsGroupChangePolicy = options.FSGroupChangePolicy - driver.kubeAPIQPS = options.KubeAPIQPS - driver.kubeAPIBurst = options.KubeAPIBurst driver.enableWindowsHostProcess = options.EnableWindowsHostProcess driver.removeSMBMountOnWindows = options.RemoveSMBMountOnWindows driver.appendClosetimeoOption = options.AppendClosetimeoOption @@ -322,7 +322,6 @@ func NewDriver(options *DriverOptions) *Driver { driver.subnetLockMap = newLockMap() driver.volumeLocks = newVolumeLocks() driver.azcopy = &fileutil.Azcopy{} - driver.kubeconfig = options.KubeConfig driver.endpoint = options.Endpoint driver.resolver = new(NetResolver) driver.directVolume = new(directVolume) @@ -376,6 +375,26 @@ func NewDriver(options *DriverOptions) *Driver { klog.Fatalf("%v", err) } + // for sanity test: if kubeconfig is set as "no-need-kubeconfig", kubeClient will be nil + if options.KubeConfig == "no-need-kubeconfig" { + klog.V(2).Infof("kubeconfig is set as no-need-kubeconfig, kubeClient will be nil") + } else { + kubeCfg, err := getKubeConfig(options.KubeConfig, options.EnableWindowsHostProcess) + if err == nil && kubeCfg != nil { + klog.V(2).Infof("set QPS(%f) and QPS Burst(%d) for driver kubeClient", float32(options.KubeAPIQPS), options.KubeAPIBurst) + kubeCfg.QPS = float32(options.KubeAPIQPS) + kubeCfg.Burst = options.KubeAPIBurst + driver.kubeClient, err = clientset.NewForConfig(kubeCfg) + if err != nil { + klog.Warningf("NewForConfig failed with error: %v", err) + } + } else { + klog.Warningf("get kubeconfig(%s) failed with error: %v", options.KubeConfig, err) + if !os.IsNotExist(err) && !errors.Is(err, rest.ErrNotInCluster) { + klog.Fatalf("failed to get KubeClient: %v", err) + } + } + } return &driver } @@ -394,7 +413,7 @@ func (d *Driver) Run(ctx context.Context) error { userAgent := GetUserAgent(d.Name, d.customUserAgent, d.userAgentSuffix) klog.V(2).Infof("driver userAgent: %s", userAgent) - d.cloud, err = getCloudProvider(context.Background(), d.kubeconfig, d.NodeID, d.cloudConfigSecretName, d.cloudConfigSecretNamespace, userAgent, d.allowEmptyCloudConfig, d.enableWindowsHostProcess, d.kubeAPIQPS, d.kubeAPIBurst) + d.cloud, err = getCloudProvider(context.Background(), d.kubeClient, d.NodeID, d.cloudConfigSecretName, d.cloudConfigSecretNamespace, userAgent, d.allowEmptyCloudConfig) if err != nil { klog.Fatalf("failed to get Azure Cloud Provider, error: %v", err) } @@ -1150,11 +1169,11 @@ func (d *Driver) GetStorageAccesskey(ctx context.Context, accountOptions *azure. // GetStorageAccountFromSecret get storage account key from k8s secret // return func (d *Driver) GetStorageAccountFromSecret(ctx context.Context, secretName, secretNamespace string) (string, string, error) { - if d.cloud.KubeClient == nil { + if d.kubeClient == nil { return "", "", fmt.Errorf("could not get account key from secret(%s): KubeClient is nil", secretName) } - secret, err := d.cloud.KubeClient.CoreV1().Secrets(secretNamespace).Get(ctx, secretName, metav1.GetOptions{}) + secret, err := d.kubeClient.CoreV1().Secrets(secretNamespace).Get(ctx, secretName, metav1.GetOptions{}) if err != nil { return "", "", fmt.Errorf("could not get secret(%v): %v", secretName, err) } @@ -1205,7 +1224,7 @@ func (d *Driver) useDataPlaneAPI(ctx context.Context, volumeID, accountName stri } func (d *Driver) SetAzureCredentials(ctx context.Context, accountName, accountKey, secretName, secretNamespace string) (string, error) { - if d.cloud.KubeClient == nil { + if d.kubeClient == nil { klog.Warningf("could not create secret: kubeClient is nil") return "", nil } @@ -1226,7 +1245,7 @@ func (d *Driver) SetAzureCredentials(ctx context.Context, accountName, accountKe }, Type: "Opaque", } - _, err := d.cloud.KubeClient.CoreV1().Secrets(secretNamespace).Create(ctx, secret, metav1.CreateOptions{}) + _, err := d.kubeClient.CoreV1().Secrets(secretNamespace).Create(ctx, secret, metav1.CreateOptions{}) if apierrors.IsAlreadyExists(err) { err = nil } diff --git a/pkg/azurefile/azurefile_test.go b/pkg/azurefile/azurefile_test.go index 0108e8f718..c6f8ca8156 100644 --- a/pkg/azurefile/azurefile_test.go +++ b/pkg/azurefile/azurefile_test.go @@ -888,7 +888,7 @@ func TestGetAccountInfo(t *testing.T) { for _, test := range tests { mockStorageAccountsClient := mockstorageaccountclient.NewMockInterface(ctrl) d.cloud.StorageAccountClient = mockStorageAccountsClient - d.cloud.KubeClient = clientSet + d.kubeClient = clientSet d.cloud.Environment = azure2.Environment{StorageEndpointSuffix: "abc"} mockStorageAccountsClient.EXPECT().ListKeys(gomock.Any(), gomock.Any(), test.rgName, gomock.Any()).Return(key, nil).AnyTimes() rgName, accountName, _, fileShareName, diskName, _, err := d.GetAccountInfo(context.Background(), test.volumeID, test.secrets, test.reqContext) diff --git a/pkg/azurefile/controllerserver_test.go b/pkg/azurefile/controllerserver_test.go index ca84717682..8373cf1ee5 100644 --- a/pkg/azurefile/controllerserver_test.go +++ b/pkg/azurefile/controllerserver_test.go @@ -924,7 +924,7 @@ var _ = ginkgo.Describe("TestCreateVolume", func() { } d := NewFakeDriverCustomOptions(driverOptions) d.cloud.ComputeClientFactory = computeClientFactory - d.cloud.KubeClient = fake.NewSimpleClientset() + d.kubeClient = fake.NewSimpleClientset() tests := []struct { desc string @@ -997,7 +997,7 @@ var _ = ginkgo.Describe("TestCreateVolume", func() { Parameters: allParam, } - d.cloud.KubeClient = fake.NewSimpleClientset() + d.kubeClient = fake.NewSimpleClientset() mockStorageAccountsClient := mockstorageaccountclient.NewMockInterface(ctrl) d.cloud.StorageAccountClient = mockStorageAccountsClient @@ -1038,7 +1038,7 @@ var _ = ginkgo.Describe("TestCreateVolume", func() { Parameters: allParam, } - d.cloud.KubeClient = fake.NewSimpleClientset() + d.kubeClient = fake.NewSimpleClientset() mockStorageAccountsClient := mockstorageaccountclient.NewMockInterface(ctrl) d.cloud.StorageAccountClient = mockStorageAccountsClient @@ -1081,7 +1081,7 @@ var _ = ginkgo.Describe("TestCreateVolume", func() { Parameters: allParam, } - d.cloud.KubeClient = fake.NewSimpleClientset() + d.kubeClient = fake.NewSimpleClientset() mockStorageAccountsClient := mockstorageaccountclient.NewMockInterface(ctrl) d.cloud.StorageAccountClient = mockStorageAccountsClient @@ -1132,7 +1132,7 @@ var _ = ginkgo.Describe("TestCreateVolume", func() { Parameters: allParam, } d.cloud = azure.GetTestCloud(ctrl) - d.cloud.KubeClient = fake.NewSimpleClientset() + d.kubeClient = fake.NewSimpleClientset() d.cloud.ComputeClientFactory = computeClientFactory mockTrack1FileClient := mockfileclient.NewMockInterface(ctrl) d.cloud.FileClient = mockTrack1FileClient @@ -1736,7 +1736,7 @@ var _ = ginkgo.DescribeTable("ValidateVolumeCapabilities", func( fakeShareQuota := int32(100) mockStorageAccountsClient := mockstorageaccountclient.NewMockInterface(ctrl) d.cloud.StorageAccountClient = mockStorageAccountsClient - d.cloud.KubeClient = clientSet + d.kubeClient = clientSet d.cloud.Environment = azure2.Environment{StorageEndpointSuffix: "abc"} mockStorageAccountsClient.EXPECT().ListKeys(gomock.Any(), gomock.Any(), gomock.Any(), gomock.Any()).Return(key, nil).AnyTimes() mockFileClient.EXPECT().Get(context.Background(), gomock.Any(), gomock.Any(), gomock.Any()).Return(&armstorage.FileShare{FileShareProperties: &armstorage.FileShareProperties{ShareQuota: &fakeShareQuota}}, mockedFileShareErr).AnyTimes() @@ -1961,7 +1961,7 @@ var _ = ginkgo.Describe("DeleteSnapshot", func() { for _, test := range tests { mockStorageAccountsClient := mockstorageaccountclient.NewMockInterface(ctrl) d.cloud.StorageAccountClient = mockStorageAccountsClient - d.cloud.KubeClient = clientSet + d.kubeClient = clientSet d.cloud.Environment = azure2.Environment{StorageEndpointSuffix: "abc"} mockStorageAccountsClient.EXPECT().ListKeys(gomock.Any(), gomock.Any(), "vol_1", gomock.Any()).Return(key, nil).AnyTimes() @@ -2041,7 +2041,7 @@ var _ = ginkgo.Describe("TestControllerExpandVolume", func() { mockStorageAccountsClient := mockstorageaccountclient.NewMockInterface(ctrl) d.cloud.StorageAccountClient = mockStorageAccountsClient - d.cloud.KubeClient = clientSet + d.kubeClient = clientSet d.cloud.Environment = azure2.Environment{StorageEndpointSuffix: "abc"} mockStorageAccountsClient.EXPECT().ListKeys(gomock.Any(), gomock.Any(), "vol_1", gomock.Any()).Return(key, nil).AnyTimes() @@ -2067,7 +2067,7 @@ var _ = ginkgo.Describe("TestControllerExpandVolume", func() { mockStorageAccountsClient := mockstorageaccountclient.NewMockInterface(ctrl) d.cloud.StorageAccountClient = mockStorageAccountsClient - d.cloud.KubeClient = clientSet + d.kubeClient = clientSet d.cloud.Environment = azure2.Environment{StorageEndpointSuffix: "abc"} mockStorageAccountsClient.EXPECT().ListKeys(gomock.Any(), gomock.Any(), "vol_1", gomock.Any()).Return(key, nil).AnyTimes() mockFileClient := mockfileclient.NewMockInterface(ctrl) @@ -2105,7 +2105,7 @@ var _ = ginkgo.Describe("TestControllerExpandVolume", func() { mockStorageAccountsClient := mockstorageaccountclient.NewMockInterface(ctrl) d.cloud.StorageAccountClient = mockStorageAccountsClient - d.cloud.KubeClient = clientSet + d.kubeClient = clientSet d.cloud.Environment = azure2.Environment{StorageEndpointSuffix: "abc"} mockStorageAccountsClient.EXPECT().ListKeys(gomock.Any(), gomock.Any(), "vol_2", gomock.Any()).Return(key, &retry.Error{HTTPStatusCode: http.StatusBadGateway, RawError: cloudprovider.InstanceNotFound}).AnyTimes() @@ -2132,7 +2132,7 @@ var _ = ginkgo.Describe("TestControllerExpandVolume", func() { mockStorageAccountsClient := mockstorageaccountclient.NewMockInterface(ctrl) d.cloud.StorageAccountClient = mockStorageAccountsClient - d.cloud.KubeClient = clientSet + d.kubeClient = clientSet d.cloud.Environment = azure2.Environment{StorageEndpointSuffix: "abc"} mockStorageAccountsClient.EXPECT().ListKeys(gomock.Any(), gomock.Any(), "capz-d18sqm", gomock.Any()).Return(key, nil).AnyTimes() mockFileClient := mockfileclient.NewMockInterface(ctrl) @@ -2195,7 +2195,7 @@ var _ = ginkgo.Describe("GetShareURL", func() { for _, test := range tests { mockStorageAccountsClient := mockstorageaccountclient.NewMockInterface(ctrl) d.cloud.StorageAccountClient = mockStorageAccountsClient - d.cloud.KubeClient = clientSet + d.kubeClient = clientSet d.cloud.Environment = azure2.Environment{StorageEndpointSuffix: "abc"} mockStorageAccountsClient.EXPECT().ListKeys(gomock.Any(), gomock.Any(), "rg", gomock.Any()).Return(key, nil).AnyTimes() _, err := d.getShareURL(context.Background(), test.sourceVolumeID, validSecret) @@ -2219,7 +2219,7 @@ var _ = ginkgo.DescribeTable("GetServiceURL", func(sourceVolumeID string, key st clientSet := fake.NewSimpleClientset() mockStorageAccountsClient := mockstorageaccountclient.NewMockInterface(ctrl) d.cloud.StorageAccountClient = mockStorageAccountsClient - d.cloud.KubeClient = clientSet + d.kubeClient = clientSet d.cloud.Environment = azure2.Environment{StorageEndpointSuffix: "abc"} mockStorageAccountsClient.EXPECT().ListKeys(gomock.Any(), gomock.Any(), "vol_1", gomock.Any()).Return(key, nil).AnyTimes() @@ -2305,7 +2305,7 @@ var _ = ginkgo.Describe("SnapshotExists", func() { for _, test := range tests { mockStorageAccountsClient := mockstorageaccountclient.NewMockInterface(ctrl) d.cloud.StorageAccountClient = mockStorageAccountsClient - d.cloud.KubeClient = clientSet + d.kubeClient = clientSet d.cloud.Environment = azure2.Environment{StorageEndpointSuffix: "abc"} mockStorageAccountsClient.EXPECT().ListKeys(gomock.Any(), gomock.Any(), "", gomock.Any()).Return(test.key, nil).AnyTimes() @@ -2423,7 +2423,7 @@ var _ = ginkgo.Describe("SetAzureCredentials", func() { } for _, test := range tests { - d.cloud.KubeClient = test.kubeClient + d.kubeClient = test.kubeClient result, err := d.SetAzureCredentials(context.Background(), test.accountName, test.accountKey, test.secretName, test.secretNamespace) gomega.Expect(result).To(gomega.Equal(test.expectedName)) if test.expectedErr == nil { diff --git a/pkg/azurefile/nodeserver.go b/pkg/azurefile/nodeserver.go index 1e4d9e554d..c961da8188 100644 --- a/pkg/azurefile/nodeserver.go +++ b/pkg/azurefile/nodeserver.go @@ -103,12 +103,12 @@ func (d *Driver) NodePublishVolume(ctx context.Context, req *csi.NodePublishVolu if d.enableKataCCMount { enableKataCCMount := getValueInMap(context, enableKataCCMountField) if strings.EqualFold(enableKataCCMount, trueValue) && context[podNameField] != "" && context[podNamespaceField] != "" { - runtimeClass, err := getRuntimeClassForPodFunc(ctx, d.cloud.KubeClient, context[podNameField], context[podNamespaceField]) + runtimeClass, err := getRuntimeClassForPodFunc(ctx, d.kubeClient, context[podNameField], context[podNamespaceField]) if err != nil { return nil, status.Errorf(codes.Internal, "failed to get runtime class for pod %s/%s: %v", context[podNamespaceField], context[podNameField], err) } klog.V(2).Infof("NodePublishVolume: volume(%s) mount on %s with runtimeClass %s", volumeID, target, runtimeClass) - isConfidentialRuntimeClass, err := isConfidentialRuntimeClassFunc(ctx, d.cloud.KubeClient, runtimeClass) + isConfidentialRuntimeClass, err := isConfidentialRuntimeClassFunc(ctx, d.kubeClient, runtimeClass) if err != nil { return nil, status.Errorf(codes.Internal, "failed to check if runtime class %s is confidential: %v", runtimeClass, err) }