OpenShift Pod Annotations
EnterpriseBacula Enterprise Only
This solution is only available for Bacula Enterprise. For subscription inquiries, please reach out to sales@baculasystems.com.
The CSI Snapshot Support feature described in openshiftcsisnapshot comes with a configuration of Volume data backup using Pod annotations. This feature allows you to define what volumes (PVC Data) to backup, where and what commands to execute, and how to react to some failures to achieve the best results from data snapshot functionality. You can select which volumes mounted at the Pod you want to backup, the preferred backup mode for the Pod, and what commands you want to execute.
The supported annotations are:
- bacula/backup.mode:[snapshot|standard]
defines how to handle PVC Data backups. If not defined, the default is snapshot.
- bacula/backup.volumes:<pvcname[,pvcname2…]>
defines what volumes will be backed up from this Pod. Multiple PVC names may be selected as a comma separated list. This annotation is required if you want to backup volumes on this Pod. Any other annotations are optional.
- bacula/run.before.job.container.command:<container>/<command>
defines what command to execute on which container of the Pod before any snapshot and data backup of this Pod occurs. An asterisk (
*) as<container>name means to execute<command>on all containers.- bacula/run.before.job.failjobonerror:[yes|no]
defines whether or not to fail the job when the exit code of the executed command is not zero. The default is yes.
- bacula/run.after.job.container.command:<container>/<command>
defines what command to execute on which container of the Pod after all snapshot and data backup of this Pod. An asterisk (
*) as<container>name means to execute<command>on all containers.- bacula/run.after.job.failjobonerror:[yes|no]
defines whether or not to fail the job when exit code of the executed command is not zero. The default is no.
- bacula/run.after.snapshot.container.command:<container>/<command>
defines what command to execute on which container of the Pod after all snapshot creations and just before any data backup. An asterisk (
*) as<container>name means to execute<command>on all containers.- bacula/run.after.snapshot.failjobonerror:[yes|no]
defines to fail the job when exit code of the executed command is not zero. The default is no.
Pod annotations is an extension to the current PVC Data backup feature available with the pvcdata=… plugin parameter as described in openshiftbackupparameters. This is an independent function which may be used together with the functionality described above, especially since both use the same data archive stream handling with Bacula Backup Pod.
All you need to use a new feature is to configure selected Pod annotations and make sure that the backup for a required OpenShift namespace is properly configured. There is no need for any plugin configuration modifications. A Pod’s volumes will be backed up automatically.
Examples
Below you can find some examples how to configure Bacula annotations in OpenShift Pods.
In the example below you will use a simple Linux command sync to
synchronize cached writes to persistent storage before volume snapshot.
apiVersion: v1
kind: Pod
metadata:
name: app1
namespace: default
annotations:
bacula/backup.mode: snapshot
bacula/run.before.job.container.command: "*/sync -f /data1; sync -f /data2"
bacula/run.before.job.failjobonerror: "no"
bacula/backup.volumes: "pvc1, pvc2"
spec:
containers:
- image: ubuntu:latest
name: test-container
volumeMounts:
- name: pvc1
mountPath: /data1
- name: pvc2
mountPath: /data2
volumes:
- name: pvc1
persistentVolumeClaim:
claimName: pvc1
- name: pvc2
persistentVolumeClaim:
claimName: pvc2
In the example below you will use PostgreSQL’s database data files quiesce feature to perform consistent backup with snapshot.
Note
The final PostgreSQL backup solution requires more configuration and preparation which was skipped in this example to make it clear
The first command (run.before.job.container.command) freezes writes to database files and the second (run.after.snapshot.container.command) resumes standard database operation as soon as PVC snapshot becomes ready.
apiVersion: v1
kind: Pod
metadata:
name: postgresql13
namespace: default
annotations:
bacula/backup.mode: standard
bacula/run.before.job.container.command: "*//bin/startpgsqlbackup.sh"
bacula/run.after.snapshot.container.command: "*//bin/stoppgsqlbackup.sh"
bacula/run.after.snapshot.failjobonerror: "yes"
bacula/backup.volumes: "pgsql"
spec:
containers:
- image: postgresql:13
name: postgresql-server
volumeMounts:
- name: pgsql
mountPath: /var/lib/pgsql
volumes:
- name: pgsql
persistentVolumeClaim:
claimName: pgsql-volume
Run Container Command Annotation
All flavors of the Run Container Command parameters are remotely
executed using the OpenShift Pod remote execution API. Every command is
prepared to execute with a standard Linux shell /bin/sh. This
requires that a container image has to have the specified shell
available. Using command shell execution gives flexibility to command
execution or even allows for preparation of small scripts without
additional container image customization.
Go back to: OpenShift Persistent Volume Claim Backup.