The latest articles on DEV Community by Yutaro Yamanaka (@yutaroyamanaka). https://dev.to/yutaroyamanaka https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F1016493%2F8614e458-bc3a-43ca-a2f8-44b59624dbee.png https://dev.to/yutaroyamanaka en Yutaro Yamanaka Sun, 29 Jan 2023 08:10:20 +0000 https://dev.to/yutaroyamanaka/understand-how-graceful-shutdown-can-achieve-zero-downtime-during-k8s-rolling-update-15eh https://dev.to/yutaroyamanaka/understand-how-graceful-shutdown-can-achieve-zero-downtime-during-k8s-rolling-update-15eh <blockquote> <p>TL;DR If we don't prepare graceful shutdown for our application running on k8s, it can return 502 error (Bad Gateway) momentarily during the rolling update.</p> </blockquote> <p>First, I'll briefly explain how old pods will be terminated after the rolling update starts. Then I'll show the simple graceful shutdown implementation that helped my Go application have zero downtime.</p> <h2> <strong>What happens in pod termination?</strong> </h2> <p>According to <a href="https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#pod-lifetime" rel="noopener noreferrer">official documentation</a>, the following two steps will run asynchronously;</p> <p>Step1. Run preStop hook if it is defined on the manifest file. After this, send SIGTERM to terminate a process in each container of the shutting-down pod.</p> <p>Step2. Detach shutting-down pods from their associated service. The service doesn't route requests to those pods anymore.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F9y5yhs1dbgp5qc94g0hr.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F9y5yhs1dbgp5qc94g0hr.png" alt="Image description" width="800" height="667"></a></p> <p>If we don't let the application sleep for a few seconds by preStop hook or handle SIGTERM appropriately, Step1 can finish earlier than Step2. And if there are some requests before Step2 ends, the service might route those requests to terminated pods and return 502 error. Therefore, rolling update can cause a short downtime until all coming requests are routed to new pods.</p> <p>Let's understand this more with two experiments.</p> <h2> <strong>Experiment</strong> </h2> <p><strong>Setup</strong><br> Actually, running sleep command as a preStop hook is the easiest way to realize graceful shutdown. However, if our application is running on the lightweight container such as alpine, we can't set that command because shell is unavailable on such a container. </p> <p>The plan B is to handle SIGTERM in the application-code level.</p> <p>Here is my application code in Go.<br> package main<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">import</span> <span class="p">(</span> <span class="s">"context"</span> <span class="s">"flag"</span> <span class="s">"log"</span> <span class="s">"net/http"</span> <span class="s">"os"</span> <span class="s">"os/signal"</span> <span class="s">"syscall"</span> <span class="s">"time"</span> <span class="p">)</span> <span class="k">func</span> <span class="n">main</span><span class="p">()</span> <span class="p">{</span> <span class="k">var</span> <span class="n">t</span> <span class="n">time</span><span class="o">.</span><span class="n">Duration</span> <span class="n">flag</span><span class="o">.</span><span class="n">DurationVar</span><span class="p">(</span><span class="o">&amp;</span><span class="n">t</span><span class="p">,</span> <span class="s">"shutdown.delay"</span><span class="p">,</span> <span class="m">0</span><span class="p">,</span> <span class="s">"duration until shutdown starts"</span><span class="p">)</span> <span class="n">flag</span><span class="o">.</span><span class="n">Parse</span><span class="p">()</span> <span class="n">srv</span> <span class="o">:=</span> <span class="n">http</span><span class="o">.</span><span class="n">Server</span><span class="p">{</span> <span class="n">Addr</span><span class="o">:</span> <span class="s">":8080"</span><span class="p">,</span> <span class="n">Handler</span><span class="o">:</span> <span class="n">http</span><span class="o">.</span><span class="n">HandlerFunc</span><span class="p">(</span><span class="k">func</span><span class="p">(</span><span class="n">w</span> <span class="n">http</span><span class="o">.</span><span class="n">ResponseWriter</span><span class="p">,</span> <span class="n">r</span> <span class="o">*</span><span class="n">http</span><span class="o">.</span><span class="n">Request</span><span class="p">)</span> <span class="p">{</span> <span class="n">w</span><span class="o">.</span><span class="n">Write</span><span class="p">([]</span><span class="kt">byte</span><span class="p">(</span><span class="s">"hello world"</span><span class="p">))</span> <span class="p">}),</span> <span class="p">}</span> <span class="n">ctx</span><span class="p">,</span> <span class="n">stop</span> <span class="o">:=</span> <span class="n">signal</span><span class="o">.</span><span class="n">NotifyContext</span><span class="p">(</span><span class="n">context</span><span class="o">.</span><span class="n">Background</span><span class="p">(),</span> <span class="n">os</span><span class="o">.</span><span class="n">Interrupt</span><span class="p">,</span> <span class="n">syscall</span><span class="o">.</span><span class="n">SIGTERM</span><span class="p">)</span> <span class="k">defer</span> <span class="n">stop</span><span class="p">()</span> <span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="n">log</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="s">"Server is running"</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">srv</span><span class="o">.</span><span class="n">ListenAndServe</span><span class="p">();</span> <span class="n">err</span> <span class="o">!=</span> <span class="n">http</span><span class="o">.</span><span class="n">ErrServerClosed</span> <span class="p">{</span> <span class="n">log</span><span class="o">.</span><span class="n">Fatal</span><span class="p">(</span><span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="p">}()</span> <span class="k">for</span> <span class="p">{</span> <span class="k">select</span> <span class="p">{</span> <span class="k">case</span> <span class="o">&lt;-</span><span class="n">ctx</span><span class="o">.</span><span class="n">Done</span><span class="p">()</span><span class="o">:</span> <span class="n">time</span><span class="o">.</span><span class="n">Sleep</span><span class="p">(</span><span class="n">t</span><span class="p">)</span> <span class="n">srv</span><span class="o">.</span><span class="n">Shutdown</span><span class="p">(</span><span class="n">ctx</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>The server starts its shutdown in the seconds specified by shutdown.delay flag.<br> I created a local k8s cluster by minikube and used <a href="https://github.com/tsenart/vegeta" rel="noopener noreferrer">vegeta</a> for sending HTTP requests to my application. You can check k8s manifest files and Dockerfile on <a href="https://gist.github.com/yutaroyamanaka/3b77f028bfec131b86f2207714d7306c" rel="noopener noreferrer">Gist</a>.</p> <p><strong>Experiment without graceful shutdown</strong></p> <p>Let's start with the first experiment which doesn't have graceful shutdown.<br> In this case, we can set 0s as shutdown.delay.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># deployment.yaml</span> <span class="na">template</span><span class="pi">:</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">containers</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">graceful-shudown</span> <span class="na">args</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">--shutdown.delay=0s</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># rolling update starts in 30 seconds</span> <span class="nv">$ </span><span class="nb">sleep </span>30<span class="p">;</span> kubectl rollout restart deployment graceful-shutdown <span class="c"># execute vegeta command on a different tab</span> <span class="nv">$ </span><span class="nb">echo</span> <span class="s2">"GET http://graceful.shutdown.test"</span> | vegeta attack <span class="nt">-duration</span><span class="o">=</span>60s <span class="nt">-rate</span><span class="o">=</span>1000 | <span class="nb">tee </span>results.bin | vegeta report Requests <span class="o">[</span>total, rate, throughput] 60000, 1000.02, 996.32 Duration <span class="o">[</span>total, attack, <span class="nb">wait</span><span class="o">]</span> 59.999783354s, 59.999059582s, 723.772µs Latencies <span class="o">[</span>mean, 50, 95, 99, max] 136.958326ms, 553.588µs, 10.9967ms, 5.001062432s, 5.089183568s Bytes In <span class="o">[</span>total, mean] 690719, 11.51 Bytes Out <span class="o">[</span>total, mean] 0, 0.00 Success <span class="o">[</span>ratio] 99.63% Status Codes <span class="o">[</span>code:count] 200:59779 502:221 Error Set: 502 Bad Gateway </code></pre> </div> <p>I sent requests for 60 seconds and started rolling update in 30 seconds. As we can see, some 502 responses were returned.</p> <p><strong>Experiment with graceful shutdown</strong></p> <p>For this experiment, I set 5s as shutdown.delay and kept other settings the same as the previous experiment.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># deployment.yaml</span> <span class="na">template</span><span class="pi">:</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">containers</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">graceful-shudown</span> <span class="na">args</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">--shutdown.delay=5s</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># rolling update starts in 30 seconds</span> <span class="nv">$ </span><span class="nb">sleep </span>30<span class="p">;</span> kubectl rollout restart deployment graceful-shutdown <span class="c"># execute vegeta command on a different tab</span> <span class="nv">$ </span><span class="nb">echo</span> <span class="s2">"GET http://graceful.shutdown.test"</span> | vegeta attack <span class="nt">-duration</span><span class="o">=</span>60s <span class="nt">-rate</span><span class="o">=</span>1000 | <span class="nb">tee </span>results.bin | vegeta report Requests <span class="o">[</span>total, rate, throughput] 60000, 1000.02, 1000.00 Duration <span class="o">[</span>total, attack, <span class="nb">wait</span><span class="o">]</span> 59.999790006s, 59.999058824s, 731.182µs Latencies <span class="o">[</span>mean, 50, 95, 99, max] 1.662431ms, 512.264µs, 3.372343ms, 26.208994ms, 178.154272ms Bytes In <span class="o">[</span>total, mean] 660000, 11.00 Bytes Out <span class="o">[</span>total, mean] 0, 0.00 Success <span class="o">[</span>ratio] 100.00% Status Codes <span class="o">[</span>code:count] 200:60000 Error Set: </code></pre> </div> <p>This time, all responses had 200 status.</p> <h2> Conclusion </h2> <p>To avoid downtime during rolling update, we have to implement graceful shutdown by some methods such as a preStop hook or signal handling before the server starts shutdown.</p> cryptocurrency crypto offers web3