-
Notifications
You must be signed in to change notification settings - Fork 474
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Introduce .spec.pools[].userDataSecretRef
to prevent inlining the entire user data
#9722
Conversation
@rfranzke: GitHub didn't allow me to request PR reviews from the following users: hown3d. Note that only gardener members and repo collaborators can review this PR, and authors cannot review their own PRs. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
/lgtm
LGTM label has been added. Git tree hash: dfbb3ecd77a3952e0a899f0f774f86a648892ad7
|
Looks good, thanks for the implementation! |
/approve |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks for the great scalability improvement allowing hundreds of worker pools :-) .
/lgtm
/approve
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: kon-angelo, rfranzke, ScheererJ The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
…oud/v1alpha1.Worker` API (part of gardener#9722, released with `v1.95.0`)
…oud/v1alpha1.Worker` API (part of gardener#9722, released with `v1.95.0`)
* Drop deletion of deprecated `allow-to-shoot-networks` `NetworkPolicy` (part of #9752, released with `v1.96.0`) * Drop fetching extension observability configs with deprecated/legacy method (part of #9695, released with `v1.95.0`) * Drop Prometheus/Alertmanager migration coding (part of #9695, released with `v1.95.0`) * Drop deprecated `.spec.pools[].userData` from `extensions.gardener.cloud/v1alpha1.Worker` API (part of #9722, released with `v1.95.0`) * Drop OSC hash migration `Secret` creation (part of #9846, released with `v1.97.0`) * Drop OSC hash assertion from upgrade tests (part of #9865, released with `v1.98.0`) * Drop removal code of `HVPA` resources (part of #9698, released with `v1.95.0`) * Address PR review feedback
How to categorize this PR?
/area scalability
/kind enhancement
What this PR does / why we need it:
Creating a
Shoot
with > 80 worker pools leads to exceeds the etcd's max-request-bytes limit of1.5MiB
due to theWorker
resource. The culprit here is the.spec.pools[].userData
field which inlines the user data for all pools. This can reduce the size by ~85% - 90%.With this PR, the
extensions.gardener.cloud/v1alpha1.Worker
resource now has a new.spec.pools[].userDataSecretRef
field which references aSecret
containing the actual user data. the.spec.pools[].userData
field is deprecated and will be removed in a future version.Worker
extensions should fetch the user data from the secret and can use theextensions/pkg/controller/worker.FetchUserData
helper function for it.Which issue(s) this PR fixes:
Part of #9545
Special notes for your reviewer:
/cc @ScheererJ @rickardsjp @hown3d
Release note: