Kubernetes Learning Part V: Workload Resource - StatefulSet

Kubernetes Learning Part V

Table of content

• Introduction
• StatefulSets
• Usecase for choosing StatefulSet
• What makes a StatefulSet config
• How to deploy a StatefulSet
  • Step 1 Define Database Storage as Persistent volume
  • Step 2 Define Database Creds as Secret
  • Step 3 Define Database Service
  • Step 4 Define StatefulSet for Database deployment
• Deploy Database using Kubectl command
• Verify Deployed Database
• Notable other details
  • Deployment and Scaling Guarantees
  • Update strategies
• Conclusion
• Further Reference

---

Introduction

• This is article is In this blog, we will continue discuss Workload Resource - StatefulSets
• Topics and definitions are hand picked from Kubernetes documentation for the purpose of learning.
• This blog is part of the Kubernetes Learning series

StatefulSets

• StatefulSet helps to create/manage one or more related Pods that requires to track the state of the Pods
• For example, if any workload needs to store data persistently, then we can run it as a StatefulSet that matches each Pod with a PersistentVolume.
• Our code, running in the Pods for that StatefulSet, can replicate data to other Pods in the same StatefulSet to improve overall resilience.

Usecase for choosing StatefulSet

• Major use case of StatefulSet is, If we want to use storage volumes to provide persistence for our workload, a StatefulSet can be chosen.
• Even though individual Pods in a StatefulSet is failed, the persistent Pod identifiers make it easier to match existing volumes to the new Pods, that replace any pods that have failed earlier.
• As mentioned in the docs,

StatefulSets are valuable for applications that require one or more of the following.

• Stable, unique network identifiers.
• Stable, persistent storage.
• Ordered, graceful deployment and scaling.
• Ordered, automated rolling updates.

What makes a StatefulSet config

• There are few important concepts we need to know, for creating StatefulSet
  • Persistent volume - Storage definition, A PersistentVolume (PV) is a piece of storage in the cluster that has been provisioned by an administrator or dynamically provisioned using Storage Classes.
  • Persistent volume claim - Storage definition identifier request by user. It is similar to a Pod. Pods consume node resources and PVCs consume PV resources. Pods can request specific levels of resources (CPU and Memory). Claims can request specific size and access modes. As we discussed earlier, StatefulSet is suitable for apps with persistent storage. So we need to have config defined for Persistent volume and Persistent volume claim. Refer the persistent-volumes docs for more details
• Also we require below configs as well,
  • Service config - Definition of application service
  • StatefulSet config - Definition of application deployment

How to deploy a StatefulSet

• Let us now try to create a MySql database using the StatefulSet configuration

Step 1 Define Database Storage as Persistent volume

• Create config for PV and PVC for DB storage
• We create a PVC requesting 20gig of storage and hence the PV creates a storage for 20gig of storage in the cluster

---
apiVersion: v1
kind: PersistentVolume
metadata:
  name: mysql-pv-volume
  labels:
    type: local
spec:
  storageClassName: manual
  capacity:
    storage: 20Gi
  accessModes:
    - ReadWriteOnce
  hostPath:
    path: "/mnt/data"
---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  name: mysql-pv-claim
spec:
  storageClassName: manual
  accessModes:
    - ReadWriteOnce
  resources:
    requests:
      storage: 20Gi

Step 2 Define Database Creds as Secret

• Create config mysql database, username and password as secret
• Below example shows the creation of credentials using secret config, using the base64 encoded string
• For the purpose of demo, it is not recommended to expose username and password in config yamls, it is recommended to integrate secret management tools for this purpose.

---
apiVersion: v1
kind: Secret
metadata:
  name: mysql-password
type: Opaque
# Run `echo -n 'admin' | base64` to get the base64 encoded value
data:
  password: YWRtaW4=
  user: YWRtaW4K
---
apiVersion: v1
kind: Secret
metadata:
  name: mysql-user
type: Opaque
# Run `echo -n 'admin' | base64` to get the base64 encoded value
data:
  user: YWRtaW4K

Step 3 Define Database Service

• We are creating a service that configures port 3306 as port and targetPort
• What is the difference between port and targetPort
  • Applications running inside the

---
apiVersion: v1
kind: Service
metadata:
  name: mysql
spec:
  ports:
    - name: mysql-ports
      port: 3306
      targetPort: 3306
  selector:
    app: mysql
  clusterIP: None

Step 4 Define StatefulSet for Database deployment

In the below example:

• The StatefulSet, named mysql, has a Spec that indicates that 2 replicas of the mysql container will be launched in Pods.
• The volumes section of config will provide stable storage using PersistentVolumes provisioned by a PersistentVolume Provisioner.
• Pod Selector should match with the .spec.selector field of a StatefulSet to match the labels of its .spec.template.metadata.labels. Failing to specify a matching Pod Selector will result in a validation error during StatefulSet creation.

---
apiVersion: apps/v1
kind: StatefulSet
metadata:
  name: mysql
spec:
  selector:
    matchLabels:
      app: mysql
  serviceName: mysql
  replicas: 2
  template:
    metadata:
      labels:
        app: mysql
    spec:
      containers:
        - image: mysql:5.7
          name: mysql
          env:
            - name: MYSQL_USER
              valueFrom:
                secretKeyRef:
                  name: mysql-user
                  key: user
            - name: MYSQL_PASSWORD
              valueFrom:
                secretKeyRef:
                  name: mysql-password
                  key: password
            - name: MYSQL_ROOT_PASSWORD
              valueFrom:
                secretKeyRef:
                  name: mysql-password
                  key: password
          ports:
            - containerPort: 3306
              name: mysql
          volumeMounts:
            - name: mysql-persistent-storage
              mountPath: /var/lib/mysql
      volumes:
        - name: mysql-persistent-storage
          persistentVolumeClaim:
            claimName: mysql-pv-claim

---

Deploy Database using Kubectl command

• Let us now execute kubectl command and see what is created
• First execute the PV and PVC to create storage config

$ kubectl apply -f mysql_pv_pvc.yml 
persistentvolume/mysql-pv-volume created
persistentvolumeclaim/mysql-pv-claim created

• Then execute stateful set creation config for database

$ kubectl apply -f mysql_statefulset_app.yml 
secret/mysql-password created
secret/mysql-user created
service/mysql created
statefulset.apps/mysql created

• We can also check the deployed pods using the command below,

$ kubectl get pods
NAME                          READY   STATUS    RESTARTS        AGE
mysql-0                       1/1     Running   0               11s
mysql-1                       1/1     Running   0               10s

• Since we deployed the pods in default namespace, we can use the get pods command without any namespaces

Pod Replica Behavior

• It shows the 2 replicas of mysql pods. In case if any healthy replica is failed, replica config make sure that, it spins up new pods and terminating other

---

Verify Deployed Database

• We can test the deployed database server by running a MySQL client to connect to the server
• This command creates a new Pod in the cluster running a MySQL client and connects it to the server through the Service.

$ kubectl run -it --rm --image=mysql:5.6 --restart=Never mysql-client -- mysql -h mysql -padmin

• If it connects, we can see the mysql> prompt. This shows our stateful MySQL database is up and running.

If you don't see a command prompt, try pressing enter.

mysql> 

---

Notable other details

Deployment and Scaling Guarantees

For a StatefulSet with N replicas,

• When Pods are being deployed, they are created sequentially, in order from {0..N-1}.
• When Pods are being deleted, they are terminated in reverse order, from {N-1..0}.
• Before a scaling operation is applied to a Pod, all of its predecessors must be Running and Ready.
• Before a Pod is terminated, all of its successors must be completely shutdown.

Update strategies

• A StatefulSet's .spec.updateStrategy field allows you to configure and disable automated rolling updates for containers, labels, resource request/limits, and annotations for the Pods in a StatefulSet. There are two possible values:
• OnDelete When a StatefulSet's .spec.updateStrategy.type is set to OnDelete, the StatefulSet controller will not automatically update the Pods in a StatefulSet. Users must manually delete Pods to cause the controller to create new Pods
• RollingUpdate The RollingUpdate update strategy implements automated, rolling update for the Pods in a StatefulSet. This is the default update strategy.

Conclusion

Hope this article is helpful to people getting started with kubernetes concepts on StatefulSets

Thanks for reading!

Further Reference

Workload Resources
StatefulSet
Persistent Volumes
Configure Persistent Volumes
Basics of StatefulSet
https://kubernetes.io/docs/concepts/workloads/

Full Source of Tutorial

• The full source code can be accessible in this GitHub repo

Follow me on,

• GitHub
• LinkedIn
• Twitter
• gsaravanan.dev