Storage plugin support to check if volume on datastore requires access for migration

[sureshanaparti]

Description

This PR adds storage plugin support to check if volume on datastore requires access for migration, and grant/revoke volume access if requires.

Types of changes

• Breaking change (fix or feature that would cause existing functionality to change)
• New feature (non-breaking change which adds functionality)
• Bug fix (non-breaking change which fixes an issue)
• Enhancement (improves an existing feature and functionality)
• Cleanup (Code refactoring and cleanup, that may add test cases)
• build/CI

Feature/Enhancement Scale or Bug Severity

Feature/Enhancement Scale

• Major
• Minor

Bug Severity

• BLOCKER
• Critical
• Major
• Minor
• Trivial

Screenshots (if appropriate):

How Has This Been Tested?

How did you try to break this feature and the system with this change?

Tested VM migration with volumes of NFS & PowerFlex storages.

[sureshanaparti]

@blueorangutan package

[blueorangutan]

@sureshanaparti a [SL] Jenkins job has been kicked to build packages. It will be bundled with KVM, XenServer and VMware SystemVM templates. I'll keep you posted as I make progress.

[harikrishna-patnala]

code LGTM. As I can see this is currently enabled only for powerflex storage

[codecov]

Codecov Report

Attention: 10 lines in your changes are missing coverage. Please review.

Comparison is base (e47a910) 13.16% compared to head (3b17c58) 13.16%.

Files	Patch %	Lines
...e/cloudstack/storage/volume/VolumeServiceImpl.java	0.00%	6 Missing ⚠️
...stack/engine/orchestration/VolumeOrchestrator.java	0.00%	2 Missing ⚠️
.../subsystem/api/storage/PrimaryDataStoreDriver.java	0.00%	1 Missing ⚠️
...atastore/driver/ScaleIOPrimaryDataStoreDriver.java	0.00%	1 Missing ⚠️

Additional details and impacted files

@@             Coverage Diff              @@
##               4.18    #8655      +/-   ##
============================================
- Coverage     13.16%   13.16%   -0.01%     
  Complexity     9203     9203              
============================================
  Files          2724     2724              
  Lines        258120   258128       +8     
  Branches      40231    40233       +2     
============================================
  Hits          33989    33989              
- Misses       219823   219831       +8     
  Partials       4308     4308              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[blueorangutan]

Packaging result [SF]: ✔️ el7 ✔️ el8 ✔️ el9 ✔️ debian ✔️ suse15. SL-JID 8661

[DaanHoogland]

general question @sureshanaparti : the word Access used in this PR seems to me to mean Authorisation (or Authorization depending on your continent). Does this make sense? I think we should rename it to avoid confusion. Access is always needed and it seems that we are checking if we need access to a store instead of checking if we need authentication/authorisation to get access. ???

[sureshanaparti]

general question @sureshanaparti : the word Access used in this PR seems to me to mean Authorisation (or Authorization depending on your continent). Does this make sense? I think we should rename it to avoid confusion. Access is always needed and it seems that we are checking if we need access to a store instead of checking if we need authentication/authorisation to get access. ???

@DaanHoogland It's about making the volume/disk available in the host, and can be accessed at certain path. In managed storages eg. powerflex, disk is not available directly unless it is mapped to a particular host/client through their proprietary API/cmd). Will keep it the same for now, as there are other methods with similar names (we can do a name refactor later, in a separate PR), Is that Ok?

[sureshanaparti]

@blueorangutan test

[blueorangutan]

@sureshanaparti a [SL] Trillian-Jenkins test job (centos7 mgmt + kvm-centos7) has been kicked to run smoke tests

[JoaoJandre]

CLGTM, didn't test it as I don't have an environment with Powerflex.

[sureshanaparti]

@blueorangutan package

[blueorangutan]

@sureshanaparti a [SL] Jenkins job has been kicked to build packages. It will be bundled with KVM, XenServer and VMware SystemVM templates. I'll keep you posted as I make progress.

[blueorangutan]

Packaging result [SF]: ✔️ el7 ✔️ el8 ✔️ el9 ✔️ debian ✔️ suse15. SL-JID 8682

[sureshanaparti]

@blueorangutan test

[blueorangutan]

@sureshanaparti a [SL] Trillian-Jenkins test job (centos7 mgmt + kvm-centos7) has been kicked to run smoke tests

[blueorangutan]

[SF] Trillian test result (tid-9235)
Environment: kvm-centos7 (x2), Advanced Networking with Mgmt server 7
Total time taken: 44078 seconds
Marvin logs: https://github.com/blueorangutan/acs-prs/releases/download/trillian/pr8655-t9235-kvm-centos7.zip
Smoke tests completed. 109 look OK, 1 have errors, 0 did not run
Only failed and skipped tests results shown below:

Test	Result	Time (s)	Test File
test_08_migrate_vm	Error	0.06	test_vm_life_cycle.py

[blueorangutan]

[SF] Trillian test result (tid-9251)
Environment: kvm-centos7 (x2), Advanced Networking with Mgmt server 7
Total time taken: 41762 seconds
Marvin logs: https://github.com/blueorangutan/acs-prs/releases/download/trillian/pr8655-t9251-kvm-centos7.zip
Smoke tests completed. 108 look OK, 2 have errors, 0 did not run
Only failed and skipped tests results shown below:

Test	Result	Time (s)	Test File
test_09_arping_in_cpvm	Failure	5.18	test_diagnostics.py
test_01_secure_vm_migration	Error	121.92	test_vm_life_cycle.py
test_01_secure_vm_migration	Error	121.93	test_vm_life_cycle.py
test_08_migrate_vm	Error	46.88	test_vm_life_cycle.py

[sureshanaparti]

@blueorangutan package

[blueorangutan]

@sureshanaparti a [SL] Jenkins job has been kicked to build packages. It will be bundled with KVM, XenServer and VMware SystemVM templates. I'll keep you posted as I make progress.

[blueorangutan]

Packaging result [SF]: ✔️ el7 ✔️ el8 ✔️ el9 ✔️ debian ✔️ suse15. SL-JID 8721

[yadvr]

@blueorangutan test

[blueorangutan]

@rohityadavcloud a [SL] Trillian-Jenkins test job (centos7 mgmt + kvm-centos7) has been kicked to run smoke tests

[blueorangutan]

[SF] Trillian test result (tid-9312)
Environment: kvm-centos7 (x2), Advanced Networking with Mgmt server 7
Total time taken: 40050 seconds
Marvin logs: https://github.com/blueorangutan/acs-prs/releases/download/trillian/pr8655-t9312-kvm-centos7.zip
Smoke tests completed. 109 look OK, 1 have errors, 0 did not run
Only failed and skipped tests results shown below:

Test	Result	Time (s)	Test File
test_08_migrate_vm	Error	0.05	test_vm_life_cycle.py

[borisstoyanov]

[SF] Trillian test result (tid-9312) Environment: kvm-centos7 (x2), Advanced Networking with Mgmt server 7 Total time taken: 40050 seconds Marvin logs: https://github.com/blueorangutan/acs-prs/releases/download/trillian/pr8655-t9312-kvm-centos7.zip Smoke tests completed. 109 look OK, 1 have errors, 0 did not run Only failed and skipped tests results shown below:

Test Result Time (s) Test File
test_08_migrate_vm Error 0.05 test_vm_life_cycle.py

I've rerun the tests and it passed

[root@pr8655-t9325-kvm-alma8-marvin ~]# cat /marvin//MarvinLogs/test_vm_life_cycle_G87SBT/results.txt
Test advanced zone virtual router ... === TestName: test_advZoneVirtualRouter | Status : SUCCESS ===
ok
Test Deploy Virtual Machine ... === TestName: test_deploy_vm | Status : SUCCESS ===
ok
Test Multiple Deploy Virtual Machine ... === TestName: test_deploy_vm_multiple | Status : SUCCESS ===
ok
Test VM will be migrated with it's root volume ... === TestName: test_01_migrate_VM_and_root_volume | Status : SUCCESS ===
ok
Test VM will be migrated with it's root volume ... === TestName: test_02_migrate_VM_with_two_data_disks | Status : SUCCESS ===
ok
Test VM will be migrated with it's root volume ... SKIP: VM Migration with Volumes is not supported on other than VMware
Test VM will be migrated with it's root volume ... SKIP: VM Migration with Volumes is not supported on other than VMware
Test VM will be migrated with it's root volume ... SKIP: VM Migration with Volumes is not supported on other than VMware
Test VM will be migrated with it's root volume ... SKIP: VM Migration with Volumes is not supported on other than VMware
Test secure VM migration ... === TestName: test_01_secure_vm_migration | Status : SUCCESS ===
ok
Test Non-secured VM Migration ... === TestName: test_02_unsecure_vm_migration | Status : SUCCESS ===
ok
Test destroy Virtual Machine ... === TestName: test_03_secured_to_nonsecured_vm_migration | Status : SUCCESS ===
ok
Test Non-secured VM Migration ... === TestName: test_04_nonsecured_to_secured_vm_migration | Status : SUCCESS ===
ok
Test the following for all found ovf templates: ... SKIP: Skipping test: Reason -  hypervisorNotSupported
Test Stop Virtual Machine ... === TestName: test_01_stop_vm | Status : SUCCESS ===
ok
Test Force Stop Virtual Machine ... === TestName: test_01_stop_vm_forced | Status : SUCCESS ===
ok
Test Start Virtual Machine ... === TestName: test_02_start_vm | Status : SUCCESS ===
ok
Test Reboot Virtual Machine ... === TestName: test_03_reboot_vm | Status : SUCCESS ===
ok
Test Force Reboot Virtual Machine ... === TestName: test_04_reboot_vm_forced | Status : SUCCESS ===
ok
Test destroy Virtual Machine ... === TestName: test_06_destroy_vm | Status : SUCCESS ===
ok
Test recover Virtual Machine ... === TestName: test_07_restore_vm | Status : SUCCESS ===
ok
Test migrate VM ... === TestName: test_08_migrate_vm | Status : SUCCESS ===
ok
Test destroy(expunge) Virtual Machine ... === TestName: test_09_expunge_vm | Status : SUCCESS ===
ok
Test for attach and detach ISO to virtual machine ... === TestName: test_10_attachAndDetach_iso | Status : SUCCESS ===
ok
Test destroy Virtual Machine and it's volumes ... === TestName: test_11_destroy_vm_and_volumes | Status : SUCCESS ===
ok
Test attaching multiple datadisks and start VM ... === TestName: test_12_start_vm_multiple_volumes_allocated | Status : SUCCESS ===
ok

----------------------------------------------------------------------
Ran 26 tests in 1965.493s

OK (SKIP=5)

[borisstoyanov]

LGTM

[yadvr]

cc @DaanHoogland @sureshanaparti could you help fwd-merge 4.18-4.19 and 4.19-> main branch, thanks.