Add KEP skeleton & initial proposal for in-place update of Pod resources #2908
Conversation
k8s-ci-robot
added
size/L
|
Hi @kgolab. Thanks for your PR. I'm waiting for a kubernetes member to verify that this patch is reasonable to test. If it is, they should reply with I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
k8s-ci-robot
added
kind/kep
sig/architecture
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: If they are not already assigned, you can assign the PR to them by writing The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
|
Can you detail here the relationship with #1719 which has a lot of feedback already? The doc says it builds upon it, but does that mean people need to digest that one first? Or that this replaces that one? |
|
Regarding #1719 - this KEP partially supersedes it.
The goal of this KEP is to provide building blocks for Controllers wanting to use in-place resource update but not concentrate on any specific Controller. |
|
/ok-to-test |
k8s-ci-robot
added
ok-to-test
|
/sig scheduling |
k8s-ci-robot
added
the
sig/scheduling
|
/assign |
|
REMINDER: KEPs are moving to k/enhancements on November 30. Please attempt to merge this KEP before then to signal consensus. Any questions regarding this move should be directed to that thread and not asked on GitHub. |
|
KEPs have moved to k/enhancements. Any questions regarding this move should be directed to that thread and not asked on GitHub. |
|
@justaugustus: Closed this PR. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
| but might be possible if some conditions change, | ||
| * Rejected - resource update was rejected by any of the components involved. | ||
|
|
||
| To provide some fine-grained control to the user, |
There was a problem hiding this comment.
Please review our early thoughts below:
Policy controls: After going through pull 1719, we feel it may be a good idea to having two distinct levels of policy control:
- Pod level resize policy (from Slawomir’s feedback in our document) where scheduler determines resize action at pod level. Proposed policy values:
- InPlacePreferred (default) - Resize the pod on current node if possible, reschedule if not.
- InPlaceOnly - Resize the pod on current node, fail the request if on possible.
- Reschedule - Always reschedule the pod (For potential use by VPA ‘Recreate’ mode)
- Container level restart policy discussed in pull 1719 - cpu/memory restart/live-resize. To make it simpler, it may be sufficient to have ‘LiveResize’ and ‘Restart’ (default) policy options for cpu/memory that dictates whether a particular container will be restarted or resource-updated depending on the policy + resource-type affected. If UpdateContainerResources CRI API fails, restart container as a fallback. This should cover cases of jvm / legacy apps that cannot handle UpdateContainerResources. This policy is orthogonal to pod level resize policy above.
KEP design: I need to go over this more thoroughly. At first, we see the following flow:
- Resources update to a controller’s Template.PodSpec will be propagated into PodSpec Resource updates for its running pod instances by the controller, and it sets PodStatus.Conditions[]type=PodResizeResources to ResizeRequested.
- Scheduler will use sum(PodSpec.Containers[].Resources) to perform pod resources accounting in updatePod (removePod / addPod) and decide the action. If it fits on current node, it sets PodStatus.Contitions[type=PodResizeResources] to ActionUpdate.
- Kubelet acts on the ActionUpdate, and applies the declarative values in UpdateContainerResources (or restart container per policy). Kubelet sets PodStatus.ContainerStatuses[].ResourcesAllocated to the declarative value, and sets PodResizeResources condition to Complete/Done, or Failed on any errors.
Handling multiple scheduler race-condition: Kubelet reruns pod admission predicates during HandlePodUpdates (perhaps just running PodFitsResources might suffice). If fit == false, kubelet reschedules the pod if pod resize policy == InPlacePreferred, and fails the operation if InPlaceOnly.
Handling failure with roll-back & retry rather than letting user handle failures: Resizing may fail at scheduler due to pod disruption budget or insufficient node resources gated by policy, or at kubelet due to multiple scheduler race condition with InPlaceOnly pod resize policy. We feel it may be worth doing a smart retry as default mode of operation on resize failure at pod level. On failure, to controller queues the failed pod for resize retry. The retries are triggered by events such as pods leaving a node (InPlaceOnly - node insufficient resources case) and a PDBUpdate (PDB violation failure case). The retry approach seems to fit with the k8s paradigm.
Handling resize requests when a resize operation is pending: queue requests and apply the discrete requests from queue one-by-one upon completion of inflight operation (success or failure)
Please let me know how this sounds, very likely I’m missing some details.
There was a problem hiding this comment.
|
@kgolab Do you plan to move this KEP to the new repo? Also, as mentioned above, there are several parallel efforts/proposals trying to address the same problem. It would be best if you folks could join efforts and merge the ideas into a single KEP. |
@kgolab I joined the SIG-node weekly meeting this Tuesday and brought this topic up. I mentioned, based on my chat with @bskiba and @DirectXMan12 during last KubeCon, that we were looking for sig-node to review and comment on the proposal. @bsalamat and I talked about this as well at KubeCon, and he has been very helpful and supportive of this effort. @dchen1107 seemed open to it, and suggested that we move the draft KEP into the new process and create a starting point for them. If you don't mind, I can move your draft-KEP over to k/enhancements/kep/sig-autoscaling. I have blocked out some time tomorrow to closely review the new KEP process and get this moved over, and send a PR. Or would you prefer to drive it next week? |
|
@vinaykul I think Karol is planning to start the new KEP considering all his efforts in this old one. At the same time, not sure if it's possible for you and other folks interested in this feature draft a simple requirements/use cases/design doc from your own perspective? |
@resouer The above merged draft KEP builds on our design and the IBM proposal. Please review the following thread: https://groups.google.com/forum/#!topic/kubernetes-sig-scheduling/UnIhGOKpohI The design doc linked in that thread documents our requirements and use case, and there are links to the implementation to try out as well. It would be great if you could review it and provide any feedback to help evolve the merged design. |
|
@vinaykul That would be great! I am drafting a requirement doc from our side to help with the join effort KEP as well. Will share it next week. |
@kgolab I went through the KEP template & documentation in k/enhancements, and no changes were needed to your initial KEP besides changing the owning-sig to sig-autoscaling, and adding initial set of reviewers from sig-scheduling and sig-node where I think bulk of the code changes will occur. I'll fix it if sig-autoscaling is not the right owner. To get the ball rolling, I plan to join the weekly sig-node meeting next Tuesday and bring this up for review. @resouer Please share your requirements and implementation as it can help evolve this to address all known use cases. |
|
@vinaykul The requirements from my side has been included by our team member's comment here: kubernetes/enhancements#686 (comment) |
@resouer Yes I kept those requirements in mind while updating the KEP flow control. We can have policy guide whether initiating actor (e.g. job/deploy controller) will take no action (default), retry, reschedule - I'm yet to add this part to the KEP. Resizing ephemeral storage (while I've not scoped for it in the KEP) should be a doable extension, and currently defined policies may be valid choices for it as well. As for not changing PodSpec, as discussed in that comment, it is a reasonable change. Annotations are a security concern as they can allow user to mess-up the system. |
This proposal aims at allowing Pod resource requests & limits to be updated in-place, without a need to restart the Pod or its Containers.
This commit is aimed at starting KEP process.