Product
Secure Your AI-Generated Code with Socket MCP
Socket MCP brings real-time security checks to AI-generated code, helping developers catch risky dependencies before they enter the codebase.
By Alexandros Kapravelos - May 28, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
sigs.k8s.io/azuredisk-csi-driver
sigs.k8s.io/azuredisk-csi-driver
- Version published
- Created
Azure Disk CSI driver for Kubernetes
About
This driver allows Kubernetes to access Azure Disk volume, csi plugin name: disk.csi.azure.com, supported accessModes: ReadWriteOnce
Disclaimer: Deploying this driver manually is not an officially supported Microsoft product. For a fully managed and supported experience on Kubernetes, use AKS with the managed Azure disk csi driver.
Project status: GA
Container Images & Kubernetes Compatibility
| Driver Version | Image | supported k8s version |
|---|---|---|
master branch | mcr.microsoft.com/k8s/csi/azuredisk-csi:latest | 1.21+ |
| v1.33.1 | mcr.microsoft.com/oss/kubernetes-csi/azuredisk-csi:v1.33.1 | 1.21+ |
| v1.32.1 | mcr.microsoft.com/oss/kubernetes-csi/azuredisk-csi:v1.32.1 | 1.21+ |
| v1.31.6 | mcr.microsoft.com/oss/kubernetes-csi/azuredisk-csi:v1.31.6 | 1.21+ |
Driver parameters
Please refer to disk.csi.azure.com driver parameters
storage class
disk.csi.azure.comparameters are compatible with built-in azuredisk plugin
Prerequisite
- The driver depends on cloud provider config file (here is config example), config file path on different platforms:
- AKS, capz, aks-engine:
/etc/kubernetes/azure.json - Azure RedHat OpenShift:
/etc/kubernetes/cloud.conf
- AKS, capz, aks-engine:
-
specify a different config file path via configmap
create configmap "azure-cred-file" before driver starts upkubectl create configmap azure-cred-file --from-literal=path="/etc/kubernetes/cloud.conf" --from-literal=path-windows="C:\\k\\cloud.conf" -n kube-system
-
edge zone support in cloud provider config
`extendedLocationType` and `extendedLocationName` should be added into cloud provider config file, available values of `extendedLocationName` are `attatlanta1`, `attdallas1`, `attnewyork1`, `attdetroit1````"extendedLocationType": "edgezone","extendedLocationName": "attatlanta1",```
- Cloud provider config can also be specified via kubernetes secret, check details here
- Make sure identity used by driver has
Contributorrole on node resource group- When install open source driver on the cluster, ensure agentpool service principal or managed service identity is assigned to the
Contributorrole on the resource group used to store managed disks.
- When install open source driver on the cluster, ensure agentpool service principal or managed service identity is assigned to the
Install driver on a Kubernetes cluster
- install by helm charts
- install by kubectl
- install open source CSI driver on following platforms:
- install managed CSI driver on following platforms:
Examples
Features
- Topology (Availability Zone)
- Snapshot
- Volume Cloning
- Volume Expansion
- Raw Block Volume
- Windows
- Volume Limits
- fsGroupPolicy
- Workload identity
- Advanced disk performance tuning (Preview)
Troubleshooting
Support
- Please see our support policy
Limitations
- Please refer to Azure Disk CSI Driver Limitations
Kubernetes Development
- Please refer to development guide
View CI Results
- Check testgrid provider-azure-azuredisk-csi-driver dashboard.
Links
FAQs
Unknown package
Package last updated on 28 May 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
NIST Under Federal Audit for NVD Processing Backlog and Delays
As vulnerability data bottlenecks grow, the federal government is formally investigating NIST’s handling of the National Vulnerability Database.
By Sarah Gooding - May 27, 2025
Research
Security News
60 Malicious npm Packages Leak Network and Host Data in Active Malware Campaign
Socket’s Threat Research Team has uncovered 60 npm packages using post-install scripts to silently exfiltrate hostnames, IP addresses, DNS servers, and user directories to a Discord-controlled endpoint.
By Kirill Boychenko - May 23, 2025