Profile picture
Michael Gasch @embano1
, 20 tweets, 5 min read Read on Twitter
I see a lot of people having problems to understand how the Kubernetes platform works at the fundamental level, e.g. resiliency and behaviour. If you start thinking about Kubernetes as a fully event-driven system, there's answers to so many "Why"'s
Think of the API server as an immutable (replicated) log (queue) and stream of events. Events are facts that can be causally related ("happened-before") or not related at all (then we say they happened "concurrently"). etcd is an implementation detail.
All controllers, e.g. the scheduler, deployment controller, endpoint controller, Kubelet, etc. can be understood as consumers and/or producers (consumers can be producers as well, and vice versa).
Consumers specify the objects (and optionally namespace) they want to receive events from the API server. This is called a "watch" in Kubernetes. Think of the combination of object+namespace as a dedicated (virtual) event queue the API server handles.
Consumers and producers don't know about each other as they're fully decoupled (by the log) and autonomous. This makes the whole system extremely scalable, robust and extensible (flexible).
Thus, by design, it's a fully asynchronous and eventual consistent platform. Information takes time to propagate from consumer(s) to producer(s). The picture above shows this where the HPA hasn't caught up with the metrics.
There's NO guarantee that the system will converge to the desired state (even if you got an "OK"/ACK from the control plane). Eg: kubectl scale <deploy> --replicas <n> (with cpu requests > cluster_capacity). You'll get a HTTP 200, even though there is no capacity left.
Another example for some unwanted "racy" conditions between controllers when scaling down services: freecontent.manning.com/handling-clien… by @markoluksa
Controllers are stateless. For efficiency and speed received events are placed in an in-memory buffer (typically also modelled as a queue) per controller. What if a controller crashes as it does not persist state?
This is not needed! The event-driven design will replay all (appropriate) events when the controller starts, also known as event-sourcing. This is also very useful as events are "at most once" delivered, i.e. could be lost during transmission.
Kubernetes is level-triggered. If an event gets lost during transmission (e.g. network issue), next time there's a sync you're going to receive the desired state (speakerdeck.com/thockin/edge-v… by @thockin ).
I described reconciliation in case of the scheduler here: mgasch.com/post/sched-rec…
Since information can get delivered more than once (e.g. after failure, resync, etc.) and controllers don't talk to each other directly, there's a potential of race conditions when state is to be changed (e.g. a write to same object from different controllers).
This is called optimistic concurrency and needs to be handled in the application layer (i.e. in each controller logic). Idempotency and compare and set (based on monotonically increasing resource versions) are patterns used here.
Event-driven design has many more advantages and can address a lot of problems in distributed systems (backpressure, queuing, retries, scale-out, etc.).
It's not a new idea. Relational databases work the same way (transaction log). The databases is said to be the (stale) cache of the immutable log :)
If you want to learn more about event-driven architecture, make sure to check out this video from @boner
Btw: @the_sttts and @mhausenblas have written a great series of how the API server actually is implemented. Remember: I was describing a thought model for better understanding. Hope it helps to answer some "Why"'s ;)
blog.openshift.com/kubernetes-dee…
Closing remark: this is not specific to computer science. Events are the reason for all being. Without events, there would be no change! Think about it, it's an applied and battle-tested design ,)
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Michael Gasch
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Related threads

Profile picture
Let's talk about #Kubernetes and how you probably don't really need it, and how you should be tackling some hard problems for your org and your customers, not the k8s problems.
1/x
Let's start with use case no. 1:
You're dev team (in a scrappy startup, or big boy enterprise) and you've got a few devs but need to host your code/service somewhere, and you want to use k8s (assuming GKE/EKS/AKS being used and not rolling your own)
2/x
Pros:
+ Step up from current/recent deployment methods out there in the industry
+ GKE/EKS/AKS aren't horrendous!
+ Cost reductions are possible compared to many previous solutions
3/x
Read 19 tweets
Profile picture
So, I've waded through the Evangelical Alliance's new pastoral "guidelines" for interacting with trans people (ughh, the things I do to expose #transphobic #ciswits to the world), and let's just say it's time to tear this particular sh*t-bag a new hole.

1/n
CW: #Transphobia, #ConversionTherapy, #Zucker, #Religiously #driven #zealotry

2/n
So, straight off the bat, first page of text, the use of #language is . . . well, yeah, see for yourself:

"It is important to remember that transgender is not simply an issue to be debated;" - p5, #Transformed

*sigh*

When such language gets reinforced by insisting...

3/n
Read 176 tweets
Profile picture
yoonmin abo au 🍑

Omega prince Jimin is the prettiest omega in royalty who has tons of suitors, but none have managed to steal his heart.

His personal body guard, Alpha Min Yoongi has one motto :

"If they want to get the fairest, they have to go through the fiercest."
i'm starting this !

- do not reply to the thread, just rt w comment

- if you spot any similarities with other works, it is by pure coincidence as im not some bitch who steals the fruit of other's hard work.

- uwu
"YOOOOOONGIIIIIII-" Jimin grinned when he heard the sound of rapid footsteps came nearer and nearer.

An alpha in his usual dark suit appeared in the doorway of Jimin's grand luxurious room. "WHAT- WHO- DID SOMEBODY HURT YOU?" He was almost out of breath since he
Read 1160 tweets
Profile picture
PRACTICE: Game Design in Detail is starting at the @NYUGameCenter with some opening comments by @flantz! I’ll be live-tweeting a bunch of talks on game design over the next couple days. Feel free to mute #Practice2018 if you’d rather opt out?
First up, social psychologist Daniel Ames of the Columbia biz school on roleplaying exercises for learning how to negotiate #Practice2018
Starting with a few examples of negotiation both simple and complex: two siblings trying to split an orange, pressure from a mother to a daughter to obey tradition at her wedding, an indie developer making an offer to a collaborator #Practice2018
Read 211 tweets
Profile picture
Having spent a lot of time working on GDPR compliance, this is a surprising move, and I'm wondering what's behind it. [Thread]
reuters.com/article/us-fac…
The GDPR is the new European privacy law, which takes effect May 25th. It's a very complex law, with a lot of consequences. Most of these affect organizations as a whole, rather than groups of users; e.g. things around keeping track of how data is flowing through your systems.
What Facebook has decided to do is to have different terms of service (TOS) for its users inside and outside of the EU, with the EU TOS being legally tied to an agreement with Facebook Ireland and the rest-of-world TOS tied to Facebook US.
Read 28 tweets
Profile picture
This is an incredibly important lesson, and one which is counterintuitive for a lot of people in SaaS, because you *almost never* hear from your best users.
If you e.g. figure out product priorities by listening to what your last 100 support tickets, they will be disproportionately from low-value plans with users who are fundamentally dissatisfied with offering and will not, with an incremental improvement in the product, be happy.
"Aren't your most valuable users the hardest ones to support?"

The exact opposite of the case. Normalized by account it's (often) the little users, by lots. Normalized by dollar value it isn't even funny.
Read 12 tweets

Trending hashtags

#homophobic #driven #cis #child #sexist #marginalise #LatterdaySaints #nastiness #hate #crime #SoCalledPresident #Practice2018 #Zucker #children #misgynistic #Therapy #Transform #community #women #groups #PatriotsUnited #tit #transphobic #Exvangelical #persons

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member and get exclusive features!

Premium member ($30.00/year)

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!