Persistent Storage
In Kubernetes, there are many types of volumes and persistent storage is just one type of volume. It has multiple concepts which represent the entire storage lifecycle.
This type of volume supports static or dynamic provisioning. Which means, the volume provisioning is fully abstracted to the user.
- plugin - It's just the interfaces defined by Kubernetes which must be implemented by any storage provider to offer volume to the cluster. There are many types of plugin and most of them are implemented natively within the kubelet itself. Only CSI plugin was introduced where the implementations come externally.
- Driver - It's the controller that implements the plugin specification. It's running mostly as controller on admin layer and the node driver is running as a daemonSet on each node.
- Storage Class - Represents different types of storage available. Depending on storage class requested, different provisioners will handle the request.
- Persistent Volume Claim - Request for storage by a user. This is the volume type requested by the user.
- Persistent Volume - Actual storage resource created on the infrastructure. Every persistent volume claim will be bound to a persistent volume.
- VolumeClaimTemplate - Used in StatefulSets to create a persistent volume claim for each pod.
Plugins are just pure interfaces and drivers are the implementation. This is exactly why there are multiple types of plugin such as CSI, NFS, local, etc. Drivers for some are already part of vanilla Kubernetes.
When we've a deployment with 3 replicas, we can use a single Persistent Volume Claim (PVC) to request storage for all 3 pods.
But in case of StatefulSets, we need to use a VolumeClaimTemplate. In this case, each pod will get it's own Persistent Volume Claim (PVC) using the requested template.
CSI Plugin Workflowβ
When a Persistent Volume Claim (PVC) is created, the PVC controller creates the PV resource by itself. The user need not create a Persistent Volume (PV) manually.
In cases where the storage provisioning isn't automated, somebody will have to create the storage manually and then create the physical volume, PV and link it to the PVC.
Storage Classβ
This is similar to what we saw in ingress. Every storage class represents a different provisioner.
Every cluster has a default storage class. Every PVC created without specifying a storage class will use the default storage class.
Access Modesβ
Storage access modes defines what kind of access is required for the volume. It's the storage class and the access modes which determines the provisioner that will handle the request.
Access modes aren't for Pods. It's at node level.
For example, if a volume is mounted on a node in ReadWriteOnce mode, then it's mounted on a single node and all pods on that node can access it. But if we use the RWOP mode, then the volume can be also used by only one pod at a time.
Volume Mount Locationβ
The CSI specifies where the volume must be mounted on the host. Kubelet expects the volume at that very specific location after the volume provisioning is complete.
This is defined by the specifications -
/var/lib/kubelet/pods/${pod-uid}/volumes/${plugin-name}/${volume-name}/
Different types of volumesβ
- emptyDir - Means the directory is empty when started and also is emptied/deleted when the pod is deleted on the node. It can also be memory backed storage.
- hostPath - The data in the volume is specific to the host. When a pod is scheduled to another host, then it sees completely different data volume on that host.
- persistentVolumeClaim - Long-term storage. The volume and its data survives pod restarts.
- configMap - injects configMap data as files.
- secret - Injects secrets as files or environment variables.
- downwardAPI - Pod metadata is provided as files inside the pod.
- NFS, iSCSI, local, many more.