Kanister Functions are written in go and are compiled when building the controller. They are referenced by Blueprints phases. A Kanister Function implements the following go interface:
// Func allows custom actions to be executed.
type Func interface {
Name() string
Exec(ctx context.Context, args ...string) (map[string]interface{}, error)
RequiredArgs() []string
}Kanister Functions are registered by the return value of Name(), which must be static.
Each phase in a Blueprint executes a Kanister Function. The Func field in a BlueprintPhase is used to lookup a Kanister Function. After BlueprintPhase.Args are rendered, they are passed into the Kanister Function's Exec() method.
The RequiredArgs method returns the list of argument names that are required.
The Kanister controller ships with the following Kanister Functions out-of-the-box that provide integration with Kubernetes:
KubeExec is similar to running
kubectl exec -it --namespace <NAMESPACE> <POD> -c <CONTAINER> [CMD LIST...]| Argument | Required | Type | Description |
|---|---|---|---|
| namespace | Yes | string | namespace in which to execute |
| pod | Yes | string | name of the pod in which to execute |
| container | Yes | string | name of the container in which to execute |
| command | Yes | []string | command list to execute |
Example:
- func: KubeExec
name: examplePhase
args:
namespace: "{{ .Deployment.Namespace }}"
pod: "{{ index .Deployment.Pods 0 }}"
container: kanister-sidecar
command:
- sh
- -c
- |
echo "Example"KubeExecAll is similar to running KubeExec on multiple containers on multiple pods (all specified containers on all pods) in parallel.
| Argument | Required | Type | Description |
|---|---|---|---|
| namespace | Yes | string | namespace in which to execute |
| pods | Yes | []string | list of names of pods in which to execute |
| containers | Yes | []string | list of names of the containers in which to execute |
| command | Yes | []string | command list to execute |
Example:
- func: KubeExec
name: examplePhase
args:
namespace: "{{ .Deployment.Namespace }}"
pods:
- "{{ index .Deployment.Pods 0 }}"
- "{{ index .Deployment.Pods 1 }}"
containers:
- kanister-sidecar1
- kanister-sidecar2
command:
- sh
- -c
- |
echo "Example"KubeTask spins up a new container and executes a command via a Pod. This allows you to run a new Pod from a Blueprint.
| Argument | Required | Type | Description |
|---|---|---|---|
| namespace | Yes | string | namespace in which to execute |
| image | Yes | string | image to be used for executing the task |
| command | Yes | []string | command list to execute |
Example:
- func: KubeTask
name: examplePhase
args:
namespace: "{{ .Deployment.Namespace }}"
image: busybox
command:
- sh
- -c
- |
echo "Example"ScaleWorkload is used to scale up or scale down a Kubernetes workload. The function only returns after the desired replica state is achieved:
- When reducing the replica count, wait until all terminating pods complete.
- When increasing the replica count, wait until all pods are ready.
Currently the function supports Deployments and StatefulSets.
It is similar to running
`kubectl scale deployment <DEPLOYMENT-NAME> --replicas=<NUMBER OF REPLICAS> --namespace <NAMESPACE>`This can be useful if the workload needs to be shutdown before processing certain data operations. For example, it may be useful to use ScaleWorkload to stop a database process before restoring files.
| Argument | Required | Type | Description |
|---|---|---|---|
| namespace | Yes | string | namespace in which to execute |
| kind | Yes | string | deployment or statefulset |
| replicas | Yes | int | The desired number of replicas |
Example of scaling down:
- func: ScaleWorkload
name: examplePhase
args:
namespace: "{{ .Deployment.Namespace }}"
kind: deployment
replicas: 0Example of scaling up:
- func: ScaleWorkload
name: examplePhase
args:
namespace: "{{ .Deployment.Namespace }}"
kind: deployment
replicas: 1This function allows running a new Pod that will mount one or more PVCs and execute a command or script that manipulates the data on the PVCs.
The function can be useful when it is necessary to perform operations on the data volumes that are used by one or more application containers. The typical sequence is to stop the application using ScaleWorkload, perform the data manipulation using PrepareData, and then restart the application using ScaleWorkload.
Note
It is extremely important that, if PrepareData modifies the underlying data, the PVCs must not be currently in use by an active application container (ensure by using ScaleWorkload with replicas=0 first). For advanced use cases, it is possible to have concurrent access but the PV needs to have RWX mode enabled and the volume needs to use a clustered file system that supports concurrent access.
| Argument | Required | Type | Description |
|---|---|---|---|
| namespace | Yes | string | namespace in which to execute |
| image | Yes | string | image to be used the command |
| volumes | No | map[string]string | Mapping of pvcName to mountPath under which the volume will be available. |
| command | Yes | []string | command list to execute |
Note
The volumes argument does not support subPath mounts so the data manipulation logic needs to be aware of any subPath mounts that may have been used when mounting a PVC in the primary application container. If volumes argument is not specified, all volumes belonging to the protected object will be mounted at the predefined path /mnt/prepare_data/<pvcName>
Example:
- func: ScaleWorkload
name: ShutdownApplication
args:
namespace: "{{ .Deployment.Namespace }}"
kind: deployment
replicas: 0
- func: PrepareData
name: ManipulateData
args:
namespace: "{{ .Deployment.Namespace }}"
image: busybox
volumes:
application-pvc-1: "/data"
application-pvc-2: "/restore-data"
command:
- sh
- -c
- |
cp /restore-data/file_to_replace.data /data/file.dataThis function backs up data from a container into an S3 compatible object store.
Note
It is important that the application includes a kanister-tools sidecar container. This sidecar is necessary to run the tools that capture path on a volume and store it on the object store.
| Argument | Required | Type | Description |
|---|---|---|---|
| namespace | Yes | string | namespace in which to execute |
| pod | Yes | string | pod in which to execute |
| container | Yes | string | container in which to execute |
| includePath | Yes | string | path of the data to be backed up |
| backupArtifactPrefix | Yes | string | path to store the backup on the object store |
| backupIdentifier | Yes | string | unique string to identify the backup |
Example:
- func: BackupData
name: BackupToObjectStore
args:
namespace: "{{ .Deployment.Namespace }}"
pod: "{{ index .Deployment.Pods 0 }}"
container: kanister-tools
includePath: /mnt/data
backupArtifactPrefix: s3-bucket/path/artifactPrefix
backupIdentifier: "{{ .Time }}"This function restores data backed up by the BackupData function. It creates a new Pod that mounts the PVCs referenced by the specified Pod and restores data to the specified path.
Note
It is extremely important that, the PVCs are not be currently in use by an active application container, as they are required to be mounted to the new Pod (ensure by using ScaleWorkload with replicas=0 first). For advanced use cases, it is possible to have concurrent access but the PV needs to have RWX mode enabled and the volume needs to use a clustered file system that supports concurrent access.
| Argument | Required | Type | Description |
|---|---|---|---|
| namespace | Yes | string | namespace in which to execute |
| image | Yes | string | image to be used for running restore |
| backupArtifactPrefix | Yes | string | path to the backup on the object store |
| backupIdentifier | Yes | string | unique string to identify the backup |
| restorePath | No | string | path where data is restored |
| pod | No | string | pod to which the volumes are attached |
| volumes | No | map[string]string | Mapping of pvcName to mountPath under which the volume will be available |
Note
The image argument requires the use of kanisterio/kanister-tools image since it includes the required tools to restore data from the S3 compatible object store. Between the pod and volumes arguments, exactly one argument must be specified.
Example:
- func: ScaleWorkload
name: ShutdownApplication
args:
namespace: "{{ .Deployment.Namespace }}"
name: "{{ .Deployment.Name }}"
kind: deployment
replicas: 0
- func: RestoreData
name: RestoreFromObjectStore
args:
namespace: "{{ .Deployment.Namespace }}"
pod: "{{ index .Deployment.Pods 0 }}"
image: kanisterio/kanister-tools:0.15.0
backupArtifactPrefix: s3-bucket/path/artifactPrefix
backupIdentifier: "{{ .Time }}"This function copies data from the specified volume (referenced by a Kubernetes PersistentVolumeClaim) into an object store. This data can be restored into a volume using the :ref:`restoredata` function
Note
The PVC must not be in-use (attached to a running Pod)
If data needs to be copied from a running workload without stopping it, use the :ref:`backupdata` function
Arguments:
| Argument | Required | Type | Description |
|---|---|---|---|
| namespace | Yes | string | namespace the source PVC is in |
| volume | Yes | string | name of the source PVC |
| dataArtifactPrefix | Yes | string | path on the object store to store the data in |
Outputs:
| Output | Type | Description |
|---|---|---|
| backupArtifactLocation | string | location in objectstore where data was copied |
| backupID | string | unique string to identify this data copy |
Example:
If the ActionSet Object is a PersistentVolumeClaim:
- func: CopyVolumeData
args:
namespace: "{{ .PVC.Namespace }}"
volume: "{{ .PVC.Name }}"
dataArtifactPrefix: s3-bucket-name/pathThis function uses a new Pod to delete the specified artifact from an S3 compatible object store.
| Argument | Required | Type | Description |
|---|---|---|---|
| namespace | No | string | namespace in which to execute |
| artifact | Yes | string | artifact to be deleted from the object store |
Note
The Kubernetes job uses the kanisterio/kanister-tools image, since it includes all the tools required to delete the artifact from an S3 compatible object store.
Example:
- func: DeleteData
name: DeleteFromObjectStore
args:
namespace: "{{ .Deployment.Namespace }}"
artifact: s3://bucket/path/artifactKanister can be extended by registering new Kanister Functions.
Kanister Functions are registered using a similar mechanism to database/sql drivers. To register new Kanister Functions, import a package with those new functions into the controller and recompile it.