External-master initial commit.

Signed-off-by: Sergei Mouravyov <sergei.mouravyov@gmail.com>

Author: s0m01n3

api/redisreplication/v1beta2/redisreplication_types.go

@@ -6,6 +6,25 @@ import (
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 )
 
+// ExternalMaster defines an external Redis master endpoint for slave-only deployments.
+// When set (non-nil), all pods in this deployment become read-replicas of the specified
+// external master instead of having a local master elected within the cluster.
+// This is useful for cross-cluster replication where the primary cluster runs a full
+// RedisReplication deployment and secondary clusters run slave-only deployments.
+// Cannot be combined with Sentinel.
+// +k8s:deepcopy-gen=true
+type ExternalMaster struct {
+	// Host is the DNS name or IP address of the external Redis master.
+	// +kubebuilder:validation:MinLength=1
+	Host string `json:"host"`
+	// Port is the port of the external Redis master.
+	// Defaults to 6379 when omitted.
+	// +kubebuilder:validation:Minimum=1
+	// +kubebuilder:validation:Maximum=65535
+	// +kubebuilder:default:=6379
+	Port *int32 `json:"port,omitempty"`
+}
+
 type RedisReplicationSpec struct {
 	Size                          *int32                            `json:"clusterSize"`
 	KubernetesConfig              common.KubernetesConfig           `json:"kubernetesConfig"`
@@ -31,6 +50,12 @@ type RedisReplicationSpec struct {
 	TopologySpreadConstrains      []corev1.TopologySpreadConstraint `json:"topologySpreadConstraints,omitempty"`
 	HostPort                      *int                              `json:"hostPort,omitempty"`
 	Sentinel                      *Sentinel                         `json:"sentinel,omitempty"`
+	// ExternalMaster configures slave-only mode where all pods replicate from an
+	// external Redis master residing in another cluster. When enabled, no local
+	// master is elected, the master-role service is not created, and all
+	// leader-election / failover logic is skipped.
+	// Cannot be combined with Sentinel.
+	ExternalMaster *ExternalMaster `json:"externalMaster,omitempty"`
 }
 
 type Sentinel struct {

api/redisreplication/v1beta2/redisreplication_types_helper.go

@@ -1,11 +1,33 @@
 package v1beta2
 
-import "fmt"
+import (
+	"fmt"
+	"strconv"
+)
 
 func (cr *RedisReplication) EnableSentinel() bool {
 	return cr != nil && cr.Spec.Sentinel != nil && cr.Spec.Sentinel.Size > 0
 }
 
+// UseExternalMaster returns true when slave-only mode with an external master is active.
+// Presence of a non-nil ExternalMaster spec field activates this mode.
+func (cr *RedisReplication) UseExternalMaster() bool {
+	return cr != nil && cr.Spec.ExternalMaster != nil
+}
+
+// GetExternalMasterPort returns the configured external master port, defaulting to 6379.
+func (cr *RedisReplication) GetExternalMasterPort() int32 {
+	if cr.Spec.ExternalMaster != nil && cr.Spec.ExternalMaster.Port != nil {
+		return *cr.Spec.ExternalMaster.Port
+	}
+	return 6379
+}
+
+// GetExternalMasterEndpoint returns the "host:port" string of the external master.
+func (cr *RedisReplication) GetExternalMasterEndpoint() string {
+	return cr.Spec.ExternalMaster.Host + ":" + strconv.Itoa(int(cr.GetExternalMasterPort()))
+}
+
 func (cr *RedisReplication) SentinelStatefulSet() string {
 	return cr.Name + "-s"
 }
@@ -25,6 +47,14 @@ func (cr *RedisReplication) MasterService() string {
 // GetConnectionInfo returns connection info for clients based on the mode.
 // The dnsDomain parameter should be the cluster DNS domain (e.g., "cluster.local").
 func (cr *RedisReplication) GetConnectionInfo(dnsDomain string) *ConnectionInfo {
+	if cr.UseExternalMaster() {
+		// In slave-only mode return the external master endpoint so ConnectionInfo
+		// is consistent with the "write endpoint" semantics used in other modes.
+		return &ConnectionInfo{
+			Host: cr.Spec.ExternalMaster.Host,
+			Port: int(cr.GetExternalMasterPort()),
+		}
+	}
 	if cr.EnableSentinel() {
 		return &ConnectionInfo{
 			Host:       fmt.Sprintf("%s.%s.svc.%s", cr.SentinelHLService(), cr.Namespace, dnsDomain),

api/redisreplication/v1beta2/redisreplication_webhook.go

@@ -80,6 +80,29 @@ func (r *RedisReplication) validate(_ *RedisReplication) (admission.Warnings, er
 		}
 	}
 
+	// Validate ExternalMaster configuration.
+	// Presence of the externalMaster field activates slave-only mode (nil = disabled).
+	if r.Spec.ExternalMaster != nil {
+		// Sentinel and ExternalMaster are mutually exclusive:
+		// ExternalMaster skips all leader-election / failover logic, so there
+		// is no local master for Sentinel to monitor.
+		if r.Spec.Sentinel != nil && r.Spec.Sentinel.Size > 0 {
+			errors = append(errors, field.Invalid(
+				field.NewPath("spec").Child("externalMaster"),
+				r.Spec.ExternalMaster,
+				"externalMaster cannot be combined with sentinel: sentinel requires a local master, "+
+					"but externalMaster mode creates read-replicas only",
+			))
+		}
+		// Host is mandatory
+		if r.Spec.ExternalMaster.Host == "" {
+			errors = append(errors, field.Required(
+				field.NewPath("spec").Child("externalMaster").Child("host"),
+				"host must be set when externalMaster is configured",
+			))
+		}
+	}
+
 	if len(errors) == 0 {
 		return nil, nil
 	}

api/redisreplication/v1beta2/zz_generated.deepcopy.go

@@ -164,3 +164,8 @@ spec:
     additionalSentinelConfig: {{ .Values.sentinel.additionalSentinelConfig | quote }}
     {{- end }}
   {{- end }}
+  {{- if and .Values.externalMaster .Values.externalMaster.enabled }}
+  externalMaster:
+    host: {{ required "externalMaster.host is required when externalMaster.enabled is true" .Values.externalMaster.host | quote }}
+    port: {{ .Values.externalMaster.port | default 6379 }}
+  {{- end }}

charts/redis-replication/templates/redis-replication.yaml

@@ -241,3 +241,15 @@ sentinel:
   # -- Additional raw sentinel.conf lines
   # additionalSentinelConfig: |
   #   sentinel auth-pass mymaster password123
+
+# -- External master configuration for slave-only (cross-cluster) deployments.
+# When enabled, all pods become read-replicas of the specified external Redis master.
+# Cannot be combined with sentinel.
+externalMaster:
+  # -- Enable slave-only mode. All pods become read-replicas of host:port.
+  # Cannot be combined with sentinel.
+  enabled: false
+  # -- DNS name or IP address of the external Redis master.
+  host: ""
+  # -- Port of the external Redis master. Defaults to 6379.
+  port: 6379

charts/redis-replication/values.yaml

@@ -1192,6 +1192,31 @@ spec:
                   - name
                   type: object
                 type: array
+              externalMaster:
+                description: |-
+                  ExternalMaster configures slave-only mode where all pods replicate from an
+                  external Redis master residing in another cluster. When enabled, no local
+                  master is elected, the master-role service is not created, and all
+                  leader-election / failover logic is skipped.
+                  Cannot be combined with Sentinel.
+                properties:
+                  host:
+                    description: Host is the DNS name or IP address of the external
+                      Redis master.
+                    minLength: 1
+                    type: string
+                  port:
+                    default: 6379
+                    description: |-
+                      Port is the port of the external Redis master.
+                      Defaults to 6379 when omitted.
+                    format: int32
+                    maximum: 65535
+                    minimum: 1
+                    type: integer
+                required:
+                - host
+                type: object
               hostPort:
                 type: integer
               initContainer:

config/crd/bases/redis.redis.opstreelabs.in_redisreplications.yaml

@@ -345,6 +345,18 @@ func (r *Reconciler) sentinelResetIfNeed(ctx context.Context, inst *rrvb2.RedisR
 }
 
 func (r *Reconciler) reconcileRedis(ctx context.Context, instance *rrvb2.RedisReplication) (ctrl.Result, error) {
+	// Slave-only mode: skip all local master-election and failover logic.
+	// Every pod is configured as a read-replica of the external master.
+	if instance.UseExternalMaster() {
+		if err := k8sutils.ConfigureExternalMasterReplication(ctx, r.K8sClient, instance); err != nil {
+			return intctrlutil.RequeueAfter(ctx, time.Second*60, "failed to configure external master replication")
+		}
+		monitoring.RedisReplicationReplicasSizeMismatch.WithLabelValues(instance.Namespace, instance.Name).Set(0)
+		monitoring.RedisReplicationReplicasSizeCurrent.WithLabelValues(instance.Namespace, instance.Name).Set(float64(*instance.Spec.Size))
+		monitoring.RedisReplicationReplicasSizeDesired.WithLabelValues(instance.Namespace, instance.Name).Set(float64(*instance.Spec.Size))
+		return intctrlutil.Reconciled()
+	}
+
 	if instance.EnableSentinel() {
 		if !r.IsStatefulSetReady(ctx, instance.Namespace, instance.SentinelStatefulSet()) {
 			return intctrlutil.RequeueAfter(ctx, time.Second*30, "waiting for sentinel statefulset to be ready")
@@ -432,8 +444,26 @@ func (r *Reconciler) reconcileRedis(ctx context.Context, instance *rrvb2.RedisRe
 // reconcileStatus update status and label.
 func (r *Reconciler) reconcileStatus(ctx context.Context, instance *rrvb2.RedisReplication) (ctrl.Result, error) {
 	var err error
-	var realMaster string
 
+	// Slave-only mode: no local master to discover.
+	// Status.MasterNode is set to the external "host:port"; all pods are slaves,
+	// so UpdateRedisRoleLabel will label them all with redis-role=slave which
+	// makes the replica service selector resolve correctly.
+	if instance.UseExternalMaster() {
+		externalMaster := instance.GetExternalMasterEndpoint()
+		if err = r.UpdateRedisReplicationMaster(ctx, instance, externalMaster); err != nil {
+			return intctrlutil.RequeueE(ctx, err, "")
+		}
+		labels := common.GetRedisLabels(instance.GetName(), common.SetupTypeReplication, "replication", instance.GetLabels())
+		if err = r.Healer.UpdateRedisRoleLabel(ctx, instance.GetNamespace(), labels, instance.Spec.KubernetesConfig.ExistingPasswordSecret, instance.Spec.TLS); err != nil {
+			return intctrlutil.RequeueE(ctx, err, "")
+		}
+		// All pods are slaves of the external master.
+		monitoring.RedisReplicationConnectedSlavesTotal.WithLabelValues(instance.Namespace, instance.Name).Set(float64(*instance.Spec.Size))
+		return intctrlutil.Reconciled()
+	}
+
+	var realMaster string
 	masterNodes, err := k8sutils.GetRedisNodesByRole(ctx, r.K8sClient, instance, "master")
 	if err != nil {
 		return intctrlutil.RequeueE(ctx, err, "")

internal/controller/redisreplication/redisreplication_controller.go

@@ -56,9 +56,13 @@ func CreateReplicationService(ctx context.Context, cr *rrvb2.RedisReplication, c
 		log.FromContext(ctx).Error(err, "Cannot create additional service for Redis Replication")
 		return err
 	}
-	if err := CreateOrUpdateService(ctx, cr.Namespace, masterObjectMetaInfo, redisReplicationAsOwner(cr), disableMetrics, false, "ClusterIP", common.RedisPort, cl); err != nil {
-		log.FromContext(ctx).Error(err, "Cannot create master service for Redis")
-		return err
+	// In slave-only mode (ExternalMaster enabled) there is no local master pod,
+	// so the master-role selector service must not be created (req 8).
+	if !cr.UseExternalMaster() {
+		if err := CreateOrUpdateService(ctx, cr.Namespace, masterObjectMetaInfo, redisReplicationAsOwner(cr), disableMetrics, false, "ClusterIP", common.RedisPort, cl); err != nil {
+			log.FromContext(ctx).Error(err, "Cannot create master service for Redis")
+			return err
+		}
 	}
 	if err := CreateOrUpdateService(ctx, cr.Namespace, replicaObjectMetaInfo, redisReplicationAsOwner(cr), disableMetrics, false, "ClusterIP", common.RedisPort, cl); err != nil {
 		log.FromContext(ctx).Error(err, "Cannot create replica service for Redis")

internal/k8sutils/redis-replication.go

@@ -814,6 +814,94 @@ func GetRedisReplicationRealMaster(ctx context.Context, client kubernetes.Interf
 	return ""
 }
 
+// ConfigureExternalMasterReplication configures every pod in the replication StatefulSet
+// as a read-replica (slave) of an external Redis master. It is used exclusively in
+// slave-only mode (ExternalMaster.Enabled = true).
+//
+// For each pod the function:
+//  1. Checks the current INFO replication output; if the pod is already a slave of the
+//     correct external master it is skipped to avoid unnecessary resync disruption.
+//  2. Issues CONFIG SET masterauth before REPLICAOF so authentication to the external
+//     master succeeds on the first attempt.
+//  3. Issues REPLICAOF <host> <port>.
+//
+// All operations are idempotent and safe to call on every reconcile loop.
+func ConfigureExternalMasterReplication(ctx context.Context, client kubernetes.Interface, cr *rrvb2.RedisReplication) error {
+	logger := log.FromContext(ctx)
+
+	externalHost := cr.Spec.ExternalMaster.Host
+	externalPort := cr.GetExternalMasterPort()
+	externalPortStr := strconv.Itoa(int(externalPort))
+
+	var pass string
+	if cr.Spec.KubernetesConfig.ExistingPasswordSecret != nil {
+		var err error
+		pass, err = getRedisPassword(
+			ctx, client, cr.Namespace,
+			*cr.Spec.KubernetesConfig.ExistingPasswordSecret.Name,
+			*cr.Spec.KubernetesConfig.ExistingPasswordSecret.Key,
+		)
+		if err != nil {
+			logger.Error(err, "Failed to get Redis password for external master replication")
+			return err
+		}
+	}
+
+	replicas := cr.Spec.GetReplicationCounts("replication")
+	for i := 0; i < int(replicas); i++ {
+		podName := cr.Name + "-" + strconv.Itoa(i)
+		redisClient := configureRedisReplicationClient(ctx, client, cr, podName)
+		defer redisClient.Close()
+
+		// Check current replication state; skip pod if already correctly configured
+		// to avoid unnecessary resync disruption every 30 s.
+		info, err := redisClient.Info(ctx, "Replication").Result()
+		if err != nil {
+			logger.Error(err, "Failed to get replication info, skipping pod", "pod", podName)
+			continue
+		}
+		if isAlreadySlaveOf(info, externalHost, externalPortStr) {
+			logger.V(1).Info("Pod already replicating from correct external master, skipping",
+				"pod", podName, "host", externalHost, "port", externalPort)
+			continue
+		}
+
+		// Set masterauth BEFORE issuing REPLICAOF so the first handshake authenticates.
+		if pass != "" {
+			if err := redisClient.ConfigSet(ctx, "masterauth", pass).Err(); err != nil {
+				logger.Error(err, "Failed to set masterauth on pod", "pod", podName)
+				return err
+			}
+		}
+
+		logger.V(1).Info("Configuring pod as slave of external master",
+			"pod", podName, "host", externalHost, "port", externalPort)
+		if err := redisClient.SlaveOf(ctx, externalHost, externalPortStr).Err(); err != nil {
+			logger.Error(err, "Failed to issue REPLICAOF to external master", "pod", podName)
+			return err
+		}
+	}
+
+	return nil
+}
+
+// isAlreadySlaveOf reports whether an INFO replication output indicates the instance
+// is already a slave of the given host:port. Both host and port must match exactly.
+func isAlreadySlaveOf(info, host, port string) bool {
+	var isSlave, correctHost, correctPort bool
+	for _, line := range strings.Split(info, "\r\n") {
+		switch {
+		case strings.HasPrefix(line, "role:"):
+			isSlave = strings.TrimPrefix(line, "role:") == "slave"
+		case strings.HasPrefix(line, "master_host:"):
+			correctHost = strings.TrimPrefix(line, "master_host:") == host
+		case strings.HasPrefix(line, "master_port:"):
+			correctPort = strings.TrimPrefix(line, "master_port:") == port
+		}
+	}
+	return isSlave && correctHost && correctPort
+}
+
 // SetRedisClusterDynamicConfig applies dynamic configuration to each Redis instance in the cluster
 func SetRedisClusterDynamicConfig(ctx context.Context, client kubernetes.Interface, cr *rcvb2.RedisCluster) error {
 	// Get dynamic configuration