Introduction to the Block Storage Service
The OpenStack Block Storage Service provides persistent
block storage resources that OpenStack Compute instances can
consume. This includes secondary attached storage similar to
the Amazon Elastic Block Storage (EBS) offering. In addition,
you can write images to a Block Storage device for
Compute to use as a bootable persistent
instance.
The Block Storage Service differs slightly from
the Amazon EBS offering. The Block Storage Service
does not provide a shared storage solution like NFS. With the
Block Storage Service, you can attach a device to
only one instance.
The Block Storage Service provides:
cinder-api. A WSGI
app that authenticates and routes requests throughout
the Block Storage Service. It supports the OpenStack
APIs only, although there is a translation that can be
done through Compute's EC2 interface, which calls in to
the cinderclient.
cinder-scheduler. Schedules and routes requests
to the appropriate volume service. As of Grizzly; depending upon your configuration
this may be simple round-robin scheduling to the running volume services, or it can
be more sophisticated through the use of the Filter Scheduler. The Filter Scheduler
is the default in Grizzly and enables filters on things like Capacity, Availability
Zone, Volume Types, and Capabilities as well as custom filters.
cinder-volume.
Manages Block Storage devices, specifically the
back-end devices themselves.
cinder-backup.
Provides a means to back up a Block Storage Volume
to OpenStack Object Store (SWIFT).
The Block Storage Service contains the following
components:
Back-end Storage
Devices. The Block Storage
Service requires some form of back-end storage that
the service is built on. The default implementation is
to use LVM on a local volume group named
"cinder-volumes." In addition to the base driver
implementation, the Block Storage Service
also provides the means to add support for other
storage devices to be utilized such as external Raid
Arrays or other storage appliances. These back-end storage devices
may have custom block sizes when using KVM or QEMU as the hypervisor.
Users and Tenants
(Projects). The Block Storage
Service is designed to be used by many different cloud
computing consumers or customers, basically tenants on
a shared system, using role-based access assignments.
Roles control the actions that a user is allowed to
perform. In the default configuration, most actions do
not require a particular role, but this is
configurable by the system administrator editing the
appropriate policy.json file that
maintains the rules. A user's access to particular
volumes is limited by tenant, but the username and
password are assigned per user. Key pairs granting
access to a volume are enabled per user, but quotas to
control resource consumption across available hardware
resources are per tenant.
For tenants, quota controls are available to
limit:
The number of volumes that can be
created.
The number of snapshots that can be
created.
The total number of GBs allowed per tenant
(shared between snapshots and volumes).
You can revise the default quota values with the cinder CLI, so the limits placed by quotas are editable by admin users.
Volumes, Snapshots, and
Backups. The basic resources offered by
the Block Storage Service are volumes and
snapshots which are derived from volumes and
volume backups:
Volumes.
Allocated block storage resources that can be
attached to instances as secondary storage or
they can be used as the root store to boot
instances. Volumes are persistent R/W block
storage devices most commonly attached to the
Compute node through iSCSI.
Snapshots.
A read-only point in time copy of a volume.
The snapshot can be created from a volume that
is currently in use (through the use of
'--force True') or in an available state. The
snapshot can then be used to create a new
volume through create from snapshot.
Backups. An
archived copy of a volume currently stored in
OpenStack Object Storage (Swift).