Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix CNI CPU allocations #3844

Merged
merged 2 commits into from
Nov 13, 2017
Merged

Fix CNI CPU allocations #3844

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
aff2e6a
Fix resources for etcd-events
justinsb Nov 13, 2017
148a65e
Fix CNI CPU allocations
justinsb Nov 13, 2017
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
15 changes: 11 additions & 4 deletions docs/development/instancesizes.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ Note these are only _requests_, not limits.

```
50m dns-controller
150m etcd main
200m etcd main
100m etcd events
150m kube-apiserver
100m kube-controller-manager
Expand All @@ -13,7 +13,14 @@ Note these are only _requests_, not limits.

====

750m total

(leaving 250m for misc services e.g. CNI controller, log infrastructure etc)
800m total
```

* One a 1 core master, this leaves 200m for misc services e.g. CNI controller, log infrastructure etc. That will be
less if we start reserving capacity on the master.

* kube-dns is relatively CPU hungry, and runs on the nodes.

* We restrict CNI controllers to 100m. If a controller needs more, it can support a user-settable option.

* Setting a resource limit is a bad idea: https://github.com/kubernetes/kubernetes/issues/51135
2 changes: 1 addition & 1 deletion protokube/pkg/protokube/etcd_cluster.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -103,7 +103,7 @@ func newEtcdController(kubeBoot *KubeBoot, v *Volume, spec *etcd.EtcdClusterSpec
// @TODO we need to deprecate this port and use 2379, but that would be a breaking change
ClientPort: 4001,
ClusterName: "etcd-" + spec.ClusterKey,
CPURequest: resource.MustParse("200m"),
CPURequest: resource.MustParse("100m"),
DataDirName: "data-" + spec.ClusterKey,
ImageSource: kubeBoot.EtcdImageSource,
TLSCA: kubeBoot.TLSCA,
Expand Down
35 changes: 16 additions & 19 deletions upup/models/cloudup/resources/addons/networking.flannel/k8s-1.6.yaml.template
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -97,9 +97,23 @@ spec:
serviceAccountName: flannel
tolerations:
- operator: Exists
initContainers:
- name: install-cni
image: quay.io/coreos/flannel:v0.9.0-amd64
command:
- cp
args:
- -f
- /etc/kube-flannel/cni-conf.json
- /etc/cni/net.d/10-flannel.conf
volumeMounts:
- name: cni
mountPath: /etc/cni/net.d
- name: flannel-cfg
mountPath: /etc/kube-flannel/
containers:
- name: kube-flannel
image: quay.io/coreos/flannel:v0.7.1
image: quay.io/coreos/flannel:v0.9.0-amd64
command: [ "/opt/bin/flanneld", "--ip-masq", "--kube-subnet-mgr" ]
securityContext:
privileged: true
Expand All @@ -114,31 +128,14 @@ spec:
fieldPath: metadata.namespace
resources:
limits:
cpu: 100m
memory: 100Mi
requests:
cpu: 100m
memory: 100Mi
cpu: 100Mi
volumeMounts:
- name: run
mountPath: /run
- name: flannel-cfg
mountPath: /etc/kube-flannel/
- name: install-cni
image: quay.io/coreos/flannel:v0.7.1
command: [ "/bin/sh", "-c", "set -e -x; cp -f /etc/kube-flannel/cni-conf.json /etc/cni/net.d/10-flannel.conf; while true; do sleep 3600; done" ]
resources:
limits:
cpu: 10m
memory: 25Mi
requests:
cpu: 10m
memory: 25Mi
volumeMounts:
- name: cni
mountPath: /etc/cni/net.d
- name: flannel-cfg
mountPath: /etc/kube-flannel/
volumes:
- name: run
hostPath:
Expand Down
1 change: 0 additions & 1 deletion upup/models/cloudup/resources/addons/networking.flannel/pre-k8s-1.6.yaml.template
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -72,7 +72,6 @@ spec:
cpu: 100m
memory: 100Mi
requests:
cpu: 100m
memory: 100Mi
volumeMounts:
- name: run
Expand Down
2 changes: 1 addition & 1 deletion upup/models/cloudup/resources/addons/networking.kope.io/k8s-1.6.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ spec:
containers:
- resources:
requests:
cpu: 20m
cpu: 50m
memory: 100Mi
limits:
memory: 100Mi
Expand Down
2 changes: 1 addition & 1 deletion upup/models/cloudup/resources/addons/networking.kope.io/pre-k8s-1.6.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ spec:
containers:
- resources:
requests:
cpu: 20m
cpu: 50m
memory: 100Mi
limits:
memory: 100Mi
Expand Down
2 changes: 1 addition & 1 deletion upup/models/cloudup/resources/addons/networking.kuberouter/k8s-1.6.yaml.template
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -51,7 +51,7 @@ spec:
fieldPath: spec.nodeName
resources:
requests:
cpu: 250m
cpu: 100m
memory: 250Mi
securityContext:
privileged: true
Expand Down
2 changes: 1 addition & 1 deletion .../models/cloudup/resources/addons/networking.projectcalico.org.canal/k8s-1.6.yaml.template
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -139,7 +139,7 @@ spec:
privileged: true
resources:
requests:
cpu: 250m
cpu: 100m
volumeMounts:
- mountPath: /lib/modules
name: lib-modules
Expand Down
7 changes: 2 additions & 5 deletions .../models/cloudup/resources/addons/networking.projectcalico.org.canal/k8s-1.8.yaml.template
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -149,10 +149,8 @@ spec:
securityContext:
privileged: true
resources:
limits:
cpu: 250m
requests:
cpu: 250m
cpu: 50m
livenessProbe:
httpGet:
path: /liveness
Expand Down Expand Up @@ -221,10 +219,9 @@ spec:
key: masquerade
resources:
limits:
cpu: 100m
memory: 100Mi
requests:
cpu: 100m
cpu: 50m
memory: 100Mi
volumeMounts:
- name: run
Expand Down
2 changes: 1 addition & 1 deletion ...els/cloudup/resources/addons/networking.projectcalico.org.canal/pre-k8s-1.6.yaml.template
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -131,7 +131,7 @@ spec:
privileged: true
resources:
requests:
cpu: 250m
cpu: 100m
volumeMounts:
- mountPath: /lib/modules
name: lib-modules
Expand Down
7 changes: 1 addition & 6 deletions upup/models/cloudup/resources/addons/networking.romana/k8s-1.6.yaml.template
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -144,7 +144,6 @@ spec:
cpu: 10m
memory: 64Mi
limits:
cpu: 10m
memory: 64Mi
args:
- --cloud=aws
Expand Down Expand Up @@ -178,7 +177,6 @@ spec:
cpu: 10m
memory: 64Mi
limits:
cpu: 10m
memory: 64Mi
---
apiVersion: extensions/v1beta1
Expand Down Expand Up @@ -209,7 +207,6 @@ spec:
cpu: 25m
memory: 128Mi
limits:
cpu: 25m
memory: 128Mi
env:
- name: NODENAME
Expand Down Expand Up @@ -309,7 +306,6 @@ spec:
cpu: 10m
memory: 64Mi
limits:
cpu: 10m
memory: 64Mi
---
apiVersion: extensions/v1beta1
Expand All @@ -336,10 +332,9 @@ spec:
imagePullPolicy: Always
resources:
requests:
cpu: 50m
cpu: 45m
memory: 128Mi
limits:
cpu: 50m
memory: 128Mi
args:
- --etcd_use_v2
Expand Down
6 changes: 2 additions & 4 deletions upup/models/cloudup/resources/addons/networking.weave/k8s-1.6.yaml.template
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -92,10 +92,9 @@ spec:
initialDelaySeconds: 30
resources:
requests:
cpu: 100m
cpu: 50m
memory: 200Mi
limits:
cpu: 100m
memory: 200Mi
securityContext:
privileged: true
Expand All @@ -122,10 +121,9 @@ spec:
image: 'weaveworks/weave-npc:2.0.5'
resources:
requests:
cpu: 100m
cpu: 50m
memory: 200Mi
limits:
cpu: 100m
memory: 200Mi
securityContext:
privileged: true
Expand Down
6 changes: 2 additions & 4 deletions upup/models/cloudup/resources/addons/networking.weave/k8s-1.7.yaml.template
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -92,10 +92,9 @@ spec:
initialDelaySeconds: 30
resources:
requests:
cpu: 100m
cpu: 50m
memory: 200Mi
limits:
cpu: 100m
memory: 200Mi
securityContext:
privileged: true
Expand Down Expand Up @@ -124,10 +123,9 @@ spec:
image: 'weaveworks/weave-npc:2.0.5'
resources:
requests:
cpu: 100m
cpu: 50m
memory: 200Mi
limits:
cpu: 100m
memory: 200Mi
securityContext:
privileged: true
Expand Down
6 changes: 2 additions & 4 deletions upup/models/cloudup/resources/addons/networking.weave/pre-k8s-1.6.yaml.template
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -51,10 +51,9 @@ spec:
initialDelaySeconds: 30
resources:
requests:
cpu: 100m
cpu: 50m
memory: 200Mi
limits:
cpu: 100m
memory: 200Mi
securityContext:
privileged: true
Expand All @@ -81,10 +80,9 @@ spec:
image: 'weaveworks/weave-npc:2.0.5'
resources:
requests:
cpu: 100m
cpu: 50m
memory: 200Mi
limits:
cpu: 100m
memory: 200Mi
securityContext:
privileged: true
Expand Down
23 changes: 11 additions & 12 deletions upup/pkg/fi/cloudup/bootstrapchannelbuilder.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -341,6 +341,8 @@ func (b *BootstrapChannelBuilder) buildManifest() (*channelsapi.Addons, map[stri

// TODO: Create configuration object for cni providers (maybe create it but orphan it)?

// NOTE: we try to suffix with -kops.1, so that we can increment versions even if the upstream version
// hasn't changed. The problem with semver is that there is nothing > 1.0.0 other than 1.0.1-pre.1
networkingSelector := map[string]string{"role.kubernetes.io/networking": "1"}

if b.cluster.Spec.Networking.Kopeio != nil {
Expand Down Expand Up @@ -380,8 +382,8 @@ func (b *BootstrapChannelBuilder) buildManifest() (*channelsapi.Addons, map[stri

if b.cluster.Spec.Networking.Weave != nil {
key := "networking.weave"

version := "2.0.5"
// 2.0.6-kops.1 = 2.0.5 with kops manifest tweaks. This should go away with the next version bump.
version := "2.0.6-kops.1"

{
location := key + "/pre-k8s-1.6.yaml"
Expand Down Expand Up @@ -431,9 +433,7 @@ func (b *BootstrapChannelBuilder) buildManifest() (*channelsapi.Addons, map[stri

if b.cluster.Spec.Networking.Flannel != nil {
key := "networking.flannel"

// 0.7.2-kops.1 = 0.7.1 + hairpinMode fix
version := "0.7.2-kops.1"
version := "0.9.0-kops.1"

{
location := key + "/pre-k8s-1.6.yaml"
Expand Down Expand Up @@ -503,10 +503,11 @@ func (b *BootstrapChannelBuilder) buildManifest() (*channelsapi.Addons, map[stri

if b.cluster.Spec.Networking.Canal != nil {
key := "networking.projectcalico.org.canal"
// 2.6.3-kops.1 = 2.6.2 with kops manifest tweaks. This should go away with the next version bump.
versions := map[string]string{
"pre-k8s-1.6": "2.4.1",
"k8s-1.6": "2.4.1",
"k8s-1.8": "2.6.2",
"pre-k8s-1.6": "2.4.2-kops.1",
"k8s-1.6": "2.4.2-kops.1",
"k8s-1.8": "2.6.3-kops.1",
}

{
Expand Down Expand Up @@ -557,8 +558,7 @@ func (b *BootstrapChannelBuilder) buildManifest() (*channelsapi.Addons, map[stri

if b.cluster.Spec.Networking.Kuberouter != nil {
key := "networking.kuberouter"

version := "0.1.0"
version := "0.1.1-kops.1"

{
location := key + "/k8s-1.6.yaml"
Expand All @@ -578,8 +578,7 @@ func (b *BootstrapChannelBuilder) buildManifest() (*channelsapi.Addons, map[stri

if b.cluster.Spec.Networking.Romana != nil {
key := "networking.romana"

version := "v2.0-preview.2"
version := "v2.0-preview.3"

{
location := key + "/k8s-1.6.yaml"
Expand Down
6 changes: 3 additions & 3 deletions upup/pkg/fi/cloudup/tests/bootstrapchannelbuilder/weave/manifest.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -69,18 +69,18 @@ spec:
name: networking.weave
selector:
role.kubernetes.io/networking: "1"
version: 2.0.5
version: 2.0.6-kops.1
- id: k8s-1.6
kubernetesVersion: '>=1.6.0 <1.7.0'
manifest: networking.weave/k8s-1.6.yaml
name: networking.weave
selector:
role.kubernetes.io/networking: "1"
version: 2.0.5
version: 2.0.6-kops.1
- id: k8s-1.7
kubernetesVersion: '>=1.7.0'
manifest: networking.weave/k8s-1.7.yaml
name: networking.weave
selector:
role.kubernetes.io/networking: "1"
version: 2.0.5
version: 2.0.6-kops.1