Sample driver: Implement ProvisionerCreateBucket

 - Fix deployment files
 - Make repository org and version configurable for easier dev-test lifecycle
 - Fix EnvVar <-> CLI flag parsing in both sidecar and sample driver
 - Respond to context cancels correctly from grpc server

Author: wlan0

Diff for: container-object-storage-interface-provisioner-sidecar/cmd/minio-cosi-driver/Dockerfile

@@ -0,0 +1,6 @@
+FROM gcr.io/distroless/static:latest
+LABEL maintainers="Kubernetes COSI Authors"
+LABEL description="MinIO COSI driver"
+
+COPY ./bin/minio-cosi-driver minio-cosi-driver
+ENTRYPOINT ["/minio-cosi-driver"]

Diff for: container-object-storage-interface-provisioner-sidecar/cmd/minio-cosi-driver/cmd.go

@@ -16,12 +16,14 @@ package main
 import (
 	"context"
 	"flag"
+	"strings"
 
 	"github.com/spf13/cobra"
+	"github.com/spf13/pflag"
 	"github.com/spf13/viper"
 
+	"sigs.k8s.io/container-object-storage-interface-provisioner-sidecar/cmd/minio-cosi-driver/internal"
 	"sigs.k8s.io/container-object-storage-interface-provisioner-sidecar/pkg/provisioner"
-	"sigs.k8s.io/container-object-storage-interface-provisioner-sidecar/pkg/sampledriver"
 
 	"k8s.io/klog/v2"
 )
@@ -30,6 +32,10 @@ const provisionerName = "minio.objectstorage.k8s.io"
 
 var (
 	driverAddress = "unix:///var/lib/cosi/cosi.sock"
+
+	minioAccessKey = ""
+	minioSecretKey = ""
+	minioHost      = ""
 )
 
 var cmd = &cobra.Command{
@@ -45,6 +51,7 @@ var cmd = &cobra.Command{
 
 func init() {
 	viper.AutomaticEnv()
+	viper.SetEnvKeyReplacer(strings.NewReplacer("-", "_"))
 
 	flag.Set("alsologtostderr", "true")
 	kflags := flag.NewFlagSet("klog", flag.ExitOnError)
@@ -54,18 +61,52 @@ func init() {
 	persistentFlags.AddGoFlagSet(kflags)
 
 	stringFlag := persistentFlags.StringVarP
+
 	stringFlag(&driverAddress,
 		"driver-addr",
 		"d",
 		driverAddress,
 		"path to unix domain socket where driver should listen")
 
+	stringFlag(&minioHost,
+		"minio-host",
+		"m",
+		minioHost,
+		"endpoint where minio server is listening")
+
+	stringFlag(&minioAccessKey,
+		"minio-access-key",
+		"a",
+		minioAccessKey,
+		"access key for minio")
+
+	stringFlag(&minioSecretKey,
+		"minio-secret-key",
+		"s",
+		minioSecretKey,
+		"secret key for minio")
+
 	viper.BindPFlags(cmd.PersistentFlags())
+	cmd.PersistentFlags().VisitAll(func(f *pflag.Flag) {
+		if viper.IsSet(f.Name) && viper.GetString(f.Name) != "" {
+			cmd.PersistentFlags().Set(f.Name, viper.GetString(f.Name))
+		}
+	})
 }
 
 func run(ctx context.Context, args []string) error {
-	identityServer, bucketProvisioner := sampledriver.NewDriver(provisionerName)
-	server, err := provisioner.NewDefaultCOSIProvisionerServer(driverAddress, identityServer, bucketProvisioner)
+	identityServer, bucketProvisioner, err := internal.NewDriver(ctx,
+		provisionerName,
+		minioHost,
+		minioAccessKey,
+		minioSecretKey)
+	if err != nil {
+		return err
+	}
+
+	server, err := provisioner.NewDefaultCOSIProvisionerServer(driverAddress,
+		identityServer,
+		bucketProvisioner)
 	if err != nil {
 		return err
 	}

Diff for: container-object-storage-interface-provisioner-sidecar/cmd/minio-cosi-driver/internal/driver.go

@@ -0,0 +1,34 @@
+// Copyright 2021 The Kubernetes Authors.
+// Licensed under the Apache License, Version 2.0 (the "License");
+// You may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package internal
+
+import (
+	"context"
+
+	"sigs.k8s.io/container-object-storage-interface-provisioner-sidecar/cmd/minio-cosi-driver/internal/minio"
+)
+
+func NewDriver(ctx context.Context, provisioner, minioHost, accessKey, secretKey string) (*IdentityServer, *ProvisionerServer, error) {
+	mc, err := minio.NewClient(ctx, minioHost, accessKey, secretKey)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	return &IdentityServer{
+			provisioner: provisioner,
+		}, &ProvisionerServer{
+			provisioner: provisioner,
+			mc:          mc,
+		}, nil
+}

Diff for: container-object-storage-interface-provisioner-sidecar/pkg/sampledriver/identity.go renamed to container-object-storage-interface-provisioner-sidecar/cmd/minio-cosi-driver/internal/identity.go

@@ -11,7 +11,7 @@
 // See the License for the specific language governing permissions and
 // limitations under the License.
 
-package sampledriver
+package internal
 
 import (
 	"context"
@@ -33,7 +33,7 @@ func (id *IdentityServer) ProvisionerGetInfo(ctx context.Context,
 
 	if id.provisioner == "" {
 		klog.ErrorS(errors.New("provisioner name cannot be empty"), "Invalid argument")
-		return nil, status.Error(codes.Unavailable, "Provisioner name not configured")
+		return nil, status.Error(codes.InvalidArgument, "ProvisionerName is empty")
 	}
 
 	return &cosi.ProvisionerGetInfoResponse{

Diff for: container-object-storage-interface-provisioner-sidecar/cmd/minio-cosi-driver/internal/minio/bucket.go

@@ -0,0 +1,36 @@
+// Copyright 2021 The Kubernetes Authors.
+// Licensed under the Apache License, Version 2.0 (the "License");
+// You may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package minio
+
+import (
+	"context"
+
+	"github.com/minio/minio-go/v7"
+	"github.com/pkg/errors"
+)
+
+var ErrBucketAlreadyExists = errors.New("Bucket Already Exists")
+
+type MakeBucketOptions minio.MakeBucketOptions
+
+func (x *C) CreateBucket(ctx context.Context, bucketName string, options MakeBucketOptions) (string, error) {
+	if err := x.client.MakeBucket(ctx, bucketName, minio.MakeBucketOptions(options)); err != nil {
+		errCode := minio.ToErrorResponse(err).Code
+		if errCode == "BucketAlreadyExists" || errCode == "BucketAlreadyOwnedByYou" {
+			return bucketName, ErrBucketAlreadyExists
+		}
+		return "", err
+	}
+	return bucketName, nil
+}

Diff for: container-object-storage-interface-provisioner-sidecar/cmd/minio-cosi-driver/internal/minio/client.go

@@ -0,0 +1,101 @@
+// Copyright 2021 The Kubernetes Authors.
+// Licensed under the Apache License, Version 2.0 (the "License");
+// You may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package minio
+
+import (
+	"context"
+	"net/url"
+
+	"github.com/google/uuid"
+	"github.com/pkg/errors"
+
+	min "github.com/minio/minio-go/v7"
+	"github.com/minio/minio-go/v7/pkg/credentials"
+
+	"k8s.io/klog/v2"
+)
+
+type C struct {
+	accessKey string
+	secretKey string
+	host      *url.URL
+
+	client *min.Client
+}
+
+func NewClient(ctx context.Context, minioHost, accessKey, secretKey string) (*C, error) {
+	if minioHost == "" {
+		return nil, errors.New("minio host cannot be empty")
+	}
+	host, err := url.Parse(minioHost)
+	if err != nil {
+		return nil, err
+	}
+
+	secure := false
+	switch host.Scheme {
+	case "http":
+	case "https":
+		secure = true
+	default:
+		return nil, errors.New("invalid url scheme for minio endpoint")
+	}
+
+	clChan := make(chan *min.Client)
+	errChan := make(chan error)
+	go func() {
+		klog.V(3).InfoS("Connecting to MinIO", "endpoint", host.Host)
+
+		cl, err := min.New(host.Host, &min.Options{
+			Creds:  credentials.NewStaticV4(accessKey, secretKey, ""),
+			Secure: secure,
+		})
+		if err != nil {
+			errChan <- err
+		}
+		_, err = cl.BucketExists(ctx, uuid.New().String())
+		if err != nil {
+			if errResp, ok := err.(min.ErrorResponse); ok {
+				if errResp.Code == "NoSuchBucket" {
+					clChan <- cl
+					return
+				}
+				if errResp.StatusCode == 403 {
+					errChan <- errors.Wrap(errors.New("Access Denied"), "Connection to MinIO Failed")
+					return
+				}
+			}
+			errChan <- errors.Wrap(err, "Connection to MinIO Failed")
+			return
+		}
+
+		clChan <- cl
+		klog.InfoS("Successfully connected to MinIO")
+	}()
+
+	select {
+	case <-ctx.Done():
+		return nil, ctx.Err()
+	case cl := <-clChan:
+		return &C{
+			accessKey: accessKey,
+			secretKey: secretKey,
+			host:      host,
+
+			client: cl,
+		}, nil
+	case err := <-errChan:
+		return nil, err
+	}
+}

Diff for: container-object-storage-interface-provisioner-sidecar/pkg/sampledriver/driver.go renamed to container-object-storage-interface-provisioner-sidecar/cmd/minio-cosi-driver/internal/minio/const.go

@@ -11,12 +11,8 @@
 // See the License for the specific language governing permissions and
 // limitations under the License.
 
-package sampledriver
+package minio
 
-func NewDriver(provisioner string) (*IdentityServer, *ProvisionerServer) {
-	return &IdentityServer{
-			provisioner: provisioner,
-		}, &ProvisionerServer{
-			provisioner: provisioner,
-		}
-}
+const (
+	ObjectLocking = "objectlocking.min.io"
+)