5.2. Virtual machine pools

Using virtual machine pools

A VirtualMachinePool tries to ensure that a specified number of virtual machines are always in a ready state.

However, the virtual machine pool does not maintain any state or provide guarantees about the maximum number of VMs running at any given time. For instance, the pool may initiate new replicas if it detects that some VMs have entered an unknown state, even if those VMs might still be running.

Using a virtual machine pool

Using the custom resource VirtualMachinePool, we can specify a template for our VM. A VirtualMachinePool consists of a VM specification just like a regular VirtualMachine. This specification resides in spec.virtualMachineTemplate.spec. Besides the VM specification, the pool requires some additional metadata like labels to keep track of the VMs in the pool. This metadata resides in spec.virtualMachineTemplate.metadata.

The amount of VMs we want the pool to manage is specified as spec.replicas. This number defaults to 1 if it is left empty. If you change the number of replicas in-flight, the controller will react to it and change the VMs running in the pool.

The pool controller needs to keep track of the VMs running in its pool. This is done by specifying a spec.selector. This selector must match the labels in spec.virtualMachineTemplate.metadata.labels.

A basic VirtualMachinePool template looks like this:

apiVersion: pool.kubevirt.io/v1alpha1    
kind: VirtualMachinePool    
metadata:    
  name: virtualmachine-pool   
spec:    
  replicas: 2 # desired instanced in the pool
  selector:    
    # VirtualMachinePool selector
  virtualMachineTemplate:    
    metadata:    
      # VirtualMachine metadata
    spec:    
      # VirtualMachine Template
[...]

To avoid conflicts, a common practice is to use the label kubevirt.io/vmpool and simply set it to the metadata.name of the VirtualMachinePool.

As an example this could look like this:

apiVersion: pool.kubevirt.io/v1alpha1    
kind: VirtualMachinePool    
metadata:    
  name: my-webserver-pool    
spec:
  replicas: 2
  selector:    
    matchLabels:    
      kubevirt.io/vmpool: my-webserver-pool
  virtualMachineTemplate:    
    metadata:    
      labels:    
        kubevirt.io/vmpool: my-webserver-pool
    spec:    
      template:    
        metadata:    
          labels:    
            kubevirt.io/vmpool: my-webserver-pool
[...]

Task 5.2.1: Preparation for our virtual machine

At the beginning of this lab we created a custom disk based on Fedora Cloud with nginx installed. We will use this image for our VirtualMachinePool. We still have to use cloud-init to configure our login credentials.

Since we have done this in a previous lab, you can practice using a cloud-init. The script should:

  • Set a password and configure it to not expire
  • Set the timezone to Europe/Zurich
Task hint

Create a file cloudinit-userdata.yaml in the folder labs/lab05 with the following content:

#cloud-config
password: kubevirt
chpasswd: { expire: False }
timezone: Europe/Zurich

Create the secret:

kubectl create secret generic lab05-cloudinit --from-file=userdata=labs/lab05/cloudinit-userdata.yaml --namespace lab-<username>

Task 5.2.2: Create a VirtualMachinePool

Now we have all our prerequisites in place and are ready to create our virtual machine pool.

Create a file vmpool_lab05-webserver.yaml in the folder labs/lab05 and start with the following boilerplate config:

apiVersion: pool.kubevirt.io/v1alpha1    
kind: VirtualMachinePool    
metadata:    
  name: lab05-webserver
spec:
  replicas: 2
  selector:    
    matchLabels:    
      kubevirt.io/vmpool: lab05-webserver
  virtualMachineTemplate:    
    metadata:    
      labels:    
        kubevirt.io/vmpool: lab05-webserver
    spec:
      template:    
        metadata:    
          labels:    
            kubevirt.io/vmpool: lab05-webserver
[...]

Now edit the section spec.virtualMachineTemplate.spec to specify your virtual machine. You can have a look at the cloud-init VM from the previous lab. Make sure the VM has the following characteristics:

  • Use a dataVolumeTemplate to clone the fedora-cloud-nginx-base PVC to the lab05-webserver-disk PVC
  • Mount this PVC as the datavolumedisk
  • Use a cloudInitNoCloud named cloudinitdisk and reference the created secret to initialize our credentials
Task hint

Your VirtualMachinePool should look like this:

apiVersion: pool.kubevirt.io/v1alpha1
kind: VirtualMachinePool
metadata:
  name: lab05-webserver
spec:
  replicas: 2
  selector:
    matchLabels:
      kubevirt.io/vmpool: lab05-webserver
  virtualMachineTemplate:
    metadata:
      labels:
        kubevirt.io/vmpool: lab05-webserver
    spec:
      runStrategy: Always
      template:
        metadata:
          labels:
            kubevirt.io/vmpool: lab05-webserver
        spec:
          domain:
            cpu:
              cores: 1
            devices:
              disks:
                - name: datavolumedisk
                  disk:
                    bus: virtio
                - name: cloudinitdisk
                  disk:
                    bus: virtio
              interfaces:
              - name: default
                masquerade: {}
            resources:
              requests:
                memory: 2Gi
          networks:
          - name: default
            pod: {}
          volumes:
            - name: datavolumedisk
              persistentVolumeClaim:
                claimName: lab05-webserver-disk
            - name: cloudinitdisk
              cloudInitNoCloud:
                secretRef:
                  name: lab05-cloudinit
      dataVolumeTemplates:
      - metadata:
          name: lab05-webserver-disk
        spec:
          pvc:
            accessModes:
            - ReadWriteOnce
            resources:
              requests:
                storage: 6Gi
          source:
            pvc:
              namespace: lab-<username>
              name: fedora-cloud-nginx-base

Create the VirtualMachinePool with:

kubectl apply -f labs/lab05/vmpool_lab05-webserver.yaml --namespace lab-<username>

virtualmachinepool.pool.kubevirt.io/lab05-webserver created

This will also automatically create two VMs and two VMIs:

kubectl get vm --namespace lab-<username>

and:

kubectl get vmi --namespace lab-<username>

As we used spec.virtualMachineTemplate.spec.dataVolumeTemplates, the VirtualMachinePool will create a disk for each instance in the pool. As we have configured to have two replicas, there should also be two disks, each with its sequential id as suffix of the disk name.

Investigate the availability of our PVC for the webserver instances:

kubectl get pvc --namespace lab-<username>

We see the two disk images to be present in our namespace. This means that each of our instances is a completely unique and independent stateful instance using its own disk.

NAME                      STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   VOLUMEATTRIBUTESCLASS   AGE
lab05-webserver-disk-0    Bound    pvc-95931127-195a-4814-82d0-11d604cdceae   6Gi        RWO            longhorn       <unset>                 3m42s
lab05-webserver-disk-1    Bound    pvc-4469db26-b820-4950-ab9f-7e6534ebfb5c   6Gi        RWO            longhorn       <unset>                 3m42s

Task 5.2.3: Access the VirtualMachinePool

Create a service to access our webservers from within the webshell.

Create a file svc_lab05-webserver.yaml in the folder labs/lab05 with the following content:

apiVersion: v1
kind: Service
metadata:
  name: lab05-webserver
spec:
  ports:
  - port: 80
    protocol: TCP
    targetPort: 80
  selector:
    kubevirt.io/vmpool: lab05-webserver
  type: ClusterIP

Apply the service with:

kubectl apply -f labs/lab05/svc_lab05-webserver.yaml --namespace lab-<username>

service/lab05-webserver created

From within your webshell, try to access the service using below command. Make sure you replace lab-<username> with your username:

curl -s lab05-webserver.lab-<username>.svc.cluster.local

Hello from lab05-webserver-0
GMT time:   Monday, 02-Sep-2024 14:05:04 GMT
Local time: Monday, 02-Sep-2024 14:05:04 UTC

Issue the request multiple times and watch for the greeting webserver. Do you see that both webservers respond in a loadbalanced way? This is the default behaviour of Kubernetes services.

Unique Secrets and ConfigMaps

We have seen that the VirtualMachinePool created unique disks for our webserver. However, the referenced secret in the cloudInitNoCloud section is the same and all instances access and use the same secret. If we had used machine specific settings in this config, this would be a problem.

This is the default behaviour, but it can be changed using AppendPostfixToSecretReferences and AppendPostfixToConfigMapReferences in the VirtualMachinePool spec section. When these booleans are set to true, the VirtualMachinePool ensures that references to Secrets or ConfigMaps have the sequential id as a suffix. It is your responsibility to pre-generate the secrets with the appropriate suffixes.

Scaling the VirtualMachinePool

As the VirtualMachinePool implements the Kubernetes standard scale sub-command, you could scale the VirtualMachinePool using:

kubectl scale vmpool lab05-webserver --replicas 1 --namespace lab-<username>

Horizontal pod autoscaler

The HorizontalPodAutoscaler (HPA)1 resource can be used to manage the replica count depending on resource usage.

apiVersion: autoscaling/v1
kind: HorizontalPodAutoscaler
metadata:
  name: lab05-webserver
spec:
  maxReplicas: 5
  minReplicas: 2
  scaleTargetRef:
    apiVersion: pool.kubevirt.io/v1alpha1
    kind: VirtualMachinePool
    name: lab05-webserver
  targetCPUUtilizationPercentage: 50

This will ensure that the VirtualMachinePool is automatically scaled depending on the CPU utilization.

Task 5.2.4: Scale down the VirtualMachinePool

Scale down the VM pool with:

kubectl scale vmpool lab05-webserver --replicas 0 --namespace lab-<username>

  1. Horizontal pod autoscaling  ↩︎

Previous
Next