Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Problematic dimension handling of network metrics for host network pods/interfaces #2615

Open
brancz opened this issue Jul 10, 2020 · 7 comments
Open

Problematic dimension handling of network metrics for host network pods/interfaces #2615

brancz opened this issue Jul 10, 2020 · 7 comments

Comments

@brancz
Copy link
Contributor

brancz commented Jul 10, 2020

Prometheus convention is that any sum over a metric's dimensions should make sense. Metrics exposed by cAdvisor violate this in multiple occurrences, but here I would like to focus on one specific one: Kubernetes Pod's with hostNetwork: true.

The particularly confusing result of this is that the sum of all container's network traffic accounts in multiples for any container/pod with host network enabled.

I don't know cAdvisor's relationship with Kubernetes well enough to be able to say whether cAdvisor even knows about this, but a potential solution could be to exclude metrics for those that use host networking, and have 1 separate set of series just for host networking (or leave that up to an entirely separate component like node_exporter).

@dashpole
@dashpole
Copy link
Collaborator

Completely agree that the current behavior is problematic. We might be able to do this by inspecting the container definition for different container runtimes. E.g. for docker, we can tell if it is using hostnetwork:

cadvisor/container/docker/handler.go

Line 75 in 65fa5b4

networkMode dockercontainer.NetworkMode

@dashpole
Copy link
Collaborator

I don't think we can do it generically, so it would be a per-runtime-integration change

@dashpole
Copy link
Collaborator

The only other consideration is backwards-compatibility... This makes sense for prometheus metrics, but i'm not sure if it makes sense for the summary API. I guess we could either re-insert node-level usage for pods that have hostNetwork: true, or instead of removing the streams, just provide a new metric (e.g. container_network_type) that we can join with network metrics to filter out host network metrics. Preference?

@brancz
Copy link
Contributor Author

brancz commented Jul 13, 2020

I do agree on backwards-compatibility. My preference would be the first, as the later would still violate the "sum of all must make sense" rule.

@Jean-Daniel
Copy link

Wouldn't it be possible to simply add a new label (container_network_type) instead of a new metric ?

It would then be at least easy to filter the pods using host network.

@weibeld
Copy link

weibeld commented Mar 12, 2021
edited

A label to distinguish between host network pods and normal as proposed by @Jean-Daniel would already make things easier.

Currently, I distinguish between the two kinds of Pods as follows (Prometheus):

sum(rate(container_network_receive_bytes_total{interface!="eth0", id="/"}[5m]))
+
sum(rate(container_network_receive_bytes_total{interface="eth0", id!="/"}[5m]))

The above calculates the total receive data rate of the cluster. The first line represents the node network interfaces (that are used by the host network Pods). The id="/" label ensures that the value for a given network interface is counted only once (the time series with id="/" is present exactly once for each node network interface on a node and doesn't correspond to a specific host network Pod).

The second line represents the normal Pods (i.e. non host network). It happens in my cluster that all normal Pods have an eth0 interface and the nodes don't, so this selects only the time series corresponding to normal Pods.

This solution is certainly not generally applicable since network interfaces may be named differently in different clusters, or there may be multiple network interfaces per Pod. So, a label indicating whether a Pod is in the host network or not would already make things easier.

However, this still wouldn't meet the "sum must make sense" principle mentioned by @brancz. So, omitting the host network Pods from the metric entirely and having only a single time series for the entire network interface of a node might make sense.

@vinayan3
Copy link

Pods with hostNetwork: true where the host has many network interfaces leads to a huge bloat of metrics. In my case I have a node which has a couple of daemonsets with host networking on. The node itself has multiple interfaces. What happens is that each pod for the daemonset has multiple metrics for each networking metric. This leads to high cardinality in metrics in very large clusters with many nodes.

A solution is to sum up all the network interfaces by the pod but I'm unsure if that is a correct way to handle a pod with hostNetwork: true.

@diafour diafour mentioned this issue Nov 17, 2022
Merged
4 tasks
@deckhouse-BOaTswain deckhouse-BOaTswain mentioned this issue Nov 20, 2022
Merged
4 tasks
@anjmao anjmao mentioned this issue Dec 22, 2022
Open
JamesRaynor67 added a commit to JamesRaynor67/cadvisor that referenced this issue May 29, 2023
@JamesRaynor67
Update doc to note a hostnetwork pods' metrics known behavior
67b6fa6 
google#2615 mentioned a WAI cAdvisor behavior for pods with `hostNetwork: true`.

It should be mentioned in doc to avoid people spending days to do test and searching and then finally find it in issue list.
@JamesRaynor67 JamesRaynor67 mentioned this issue May 29, 2023
Open
@gberche-orange gberche-orange mentioned this issue Jan 17, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@Jean-Daniel @vinayan3 @weibeld @dashpole @brancz