apiVersion: apps/v1 kind: DaemonSet metadata: name: webdav-csi-node namespace: {{ .Release.Namespace }} spec: updateStrategy: rollingUpdate: maxUnavailable: 1 type: RollingUpdate selector: matchLabels: app: webdav-csi-node template: metadata: labels: app: webdav-csi-node spec: hostNetwork: true dnsPolicy: ClusterFirstWithHostNet serviceAccountName: webdav-csi-sa priorityClassName: system-node-critical securityContext: seccompProfile: type: RuntimeDefault nodeSelector: kubernetes.io/os: linux tolerations: - operator: "Exists" containers: - name: liveness-probe image: {{ .Values.livenessProbe.image.name }}:{{ .Values.livenessProbe.image.tag }} imagePullPolicy: {{ .Values.livenessProbe.image.pullPolicy }} args: - --csi-address=/csi/csi.sock - --probe-timeout=3s - --health-port=29653 - --v=2 volumeMounts: - name: socket-dir mountPath: /csi resources: limits: memory: 100Mi requests: cpu: 10m memory: 20Mi - name: node-driver-registrar image: registry.k8s.io/sig-storage/csi-node-driver-registrar:v2.9.1 imagePullPolicy: IfNotPresent args: - --v=2 - --csi-address=/csi/csi.sock - --kubelet-registration-path=$(DRIVER_REG_SOCK_PATH) livenessProbe: exec: command: - /csi-node-driver-registrar - --kubelet-registration-path=$(DRIVER_REG_SOCK_PATH) - --mode=kubelet-registration-probe initialDelaySeconds: 30 timeoutSeconds: 15 env: - name: DRIVER_REG_SOCK_PATH value: /var/lib/kubelet/plugins/webdav-csiplugin/csi.sock - name: KUBE_NODE_NAME valueFrom: fieldRef: fieldPath: spec.nodeName volumeMounts: - name: socket-dir mountPath: /csi - name: registration-dir mountPath: /registration resources: limits: memory: 100Mi requests: cpu: 10m memory: 20Mi - name: webdav securityContext: privileged: true capabilities: add: ["SYS_ADMIN"] allowPrivilegeEscalation: true image: {{ .Values.node.image.name }}:{{ .Values.node.image.tag }} imagePullPolicy: {{ .Values.node.image.pullPolicy }} args: - "-v=5" - "--nodeid=$(NODE_ID)" - "--endpoint=$(CSI_ENDPOINT)" env: - name: NODE_ID valueFrom: fieldRef: fieldPath: spec.nodeName - name: CSI_ENDPOINT value: unix:///csi/csi.sock ports: - containerPort: 29653 name: healthz protocol: TCP livenessProbe: failureThreshold: 5 httpGet: path: /healthz port: healthz initialDelaySeconds: 30 timeoutSeconds: 10 periodSeconds: 30 volumeMounts: - name: socket-dir mountPath: /csi - name: pods-mount-dir mountPath: /var/lib/kubelet/pods mountPropagation: "Bidirectional" resources: limits: memory: {{ .Values.node.resources.limits.memory }} requests: cpu: {{ .Values.node.resources.requests.cpu }} memory: {{ .Values.node.resources.requests.memory }} volumes: - name: socket-dir hostPath: path: /var/lib/kubelet/plugins/webdav-csiplugin type: DirectoryOrCreate - name: pods-mount-dir hostPath: path: /var/lib/kubelet/pods type: Directory - hostPath: path: /var/lib/kubelet/plugins_registry type: Directory name: registration-dir