/kubernetes

Add content about replicationController to document use patterns #492

Closed
smarterclayton opened this Issue Jul 16, 2014 · 8 comments

Comments

Assignees

@bgrant0607 bgrant0607

Labels
Projects
None yet
Milestone
No milestone
4 participants
@smarterclayton @brendandburns @lavalamp @bgrant0607
@smarterclayton
Contributor

smarterclayton commented Jul 16, 2014

Currently replication controllers define an exact value. Are there disadvantages to allowing the replication controller to define more of a policy - at least X, at most X, exactly X?

Since replication controllers aren't really aware of overlapping sets, I guess you can't really use that to guide allocation between two pools because they would just end up fighting unproductively

@bgrant0607 bgrant0607 added the enhancement label Jul 16, 2014

@brendandburns

This comment has been minimized.

Show comment Hide comment
@brendandburns

brendandburns Jul 16, 2014

Contributor

What is the use case? This seems sort of like auto-scaling policy. I'd prefer to put those objects in the auto-scaler.
Contributor

brendandburns commented Jul 16, 2014

What is the use case? This seems sort of like auto-scaling policy. I'd prefer to put those objects in the auto-scaler.
@lavalamp

This comment has been minimized.

Show comment Hide comment
@lavalamp

lavalamp Jul 16, 2014

Member

It sounds like you want a canary-controller that scales the old version down while scaling the new one up. Combine with a service that spreads traffic across both versions and this should Just Work (tm).
Member

lavalamp commented Jul 16, 2014

It sounds like you want a canary-controller that scales the old version down while scaling the new one up. Combine with a service that spreads traffic across both versions and this should Just Work (tm).
@smarterclayton

This comment has been minimized.

Show comment Hide comment
@smarterclayton

smarterclayton Jul 16, 2014

Contributor

I'm thinking about this from the mechanics of doing a deployment by composing replication controllers. With controllers as they are today:

  • existing replication controller with old template, name=foo,deployment=1 x5
  • create new replication controller with new template, name=foo,deployment=2 x0
  • alter controller 2 to be x1 (or up by the batch size)
  • alter controller 1 to be x4 (or down by the batch size)
  • ... repeat until done
  • delete controller 1

The thought around atLeast was about explicitly representing the invariant you want during an available deployment:

  • existing replication controller with old template, name=foo,deployment=1 x5
  • create new replication controller with new template, name=foo, atLeast=5
  • set controller to be atMost=5
  • delete a pod from the name=foo,deployment=1 query
  • ... continue until 0 pods in that query
  • delete controller 1
  • update controller 2 to change the label query to name=foo,deployment=2

I'm not sure that's better.... just the for loop for deletes seems more reasonable. Not a huge deal, just trying to work through how we'd model common deploy cases for end users.
Contributor

smarterclayton commented Jul 16, 2014

I'm thinking about this from the mechanics of doing a deployment by composing replication controllers. With controllers as they are today:

  • existing replication controller with old template, name=foo,deployment=1 x5
  • create new replication controller with new template, name=foo,deployment=2 x0
  • alter controller 2 to be x1 (or up by the batch size)
  • alter controller 1 to be x4 (or down by the batch size)
  • ... repeat until done
  • delete controller 1

The thought around atLeast was about explicitly representing the invariant you want during an available deployment:

  • existing replication controller with old template, name=foo,deployment=1 x5
  • create new replication controller with new template, name=foo, atLeast=5
  • set controller to be atMost=5
  • delete a pod from the name=foo,deployment=1 query
  • ... continue until 0 pods in that query
  • delete controller 1
  • update controller 2 to change the label query to name=foo,deployment=2

I'm not sure that's better.... just the for loop for deletes seems more reasonable. Not a huge deal, just trying to work through how we'd model common deploy cases for end users.
@bgrant0607

This comment has been minimized.

Show comment Hide comment
@bgrant0607

bgrant0607 Jul 25, 2014

Member

@smarterclayton

Overlapping replicationController sets: I think we should validate that this isn't possible upon creation of a replicationController. We can do this by determining whether the label selector may overlap with any others, though to do this analytically without looking at the combinations of labels attached to pods it requires that all replicationController label selectors have at least one key in common, with a different value than all other replicationControllers.

Policy: As @brendandburns mentioned, we intended the policy to go in a separate auto-scaling policy entity, in a higher-level layer / separate component.

Deployment:

As @lavalamp pointed out, it is possible to create a new replicationController and gradually scale it up while scaling the original down.

Or, one could do the Asgard trick of creating a new replicationController and then shift traffic to it. It's possible to add/remove instances from a service by tweaking their labels. For instance one could toggle the value of an in_service=true/false label.

The update demo changes the template of a single replication controller and then kills instances one by one until they all get replaced. I don't like that due to the risk of unpredictable replacements and complexity involved with rollbacks. Splitting out the template ( #170 ) would address the rollback issue, but not the unpredictability. It seems to me that the atMost approach suffers from the same risk.

That said, I see what you mean that atLeast/atMost are not auto-scaling policies, but are invariants to maintain. I could imagine that flexibility could be useful. For example, a worker pool manager could use that to opportunistically request resources, where some pod requests may fail. Or, perhaps in the case that we need to temporarily create a new pod for some reason (CRIU-based migration?) but we don't want an old one to be killed.

So, I like the idea, just not the use case. :-)

FWIW, exactly X could be implemented by combining atLeast and atMost.
Member

bgrant0607 commented Jul 25, 2014

@smarterclayton

Overlapping replicationController sets: I think we should validate that this isn't possible upon creation of a replicationController. We can do this by determining whether the label selector may overlap with any others, though to do this analytically without looking at the combinations of labels attached to pods it requires that all replicationController label selectors have at least one key in common, with a different value than all other replicationControllers.

Policy: As @brendandburns mentioned, we intended the policy to go in a separate auto-scaling policy entity, in a higher-level layer / separate component.

Deployment:

As @lavalamp pointed out, it is possible to create a new replicationController and gradually scale it up while scaling the original down.

Or, one could do the Asgard trick of creating a new replicationController and then shift traffic to it. It's possible to add/remove instances from a service by tweaking their labels. For instance one could toggle the value of an in_service=true/false label.

The update demo changes the template of a single replication controller and then kills instances one by one until they all get replaced. I don't like that due to the risk of unpredictable replacements and complexity involved with rollbacks. Splitting out the template ( #170 ) would address the rollback issue, but not the unpredictability. It seems to me that the atMost approach suffers from the same risk.

That said, I see what you mean that atLeast/atMost are not auto-scaling policies, but are invariants to maintain. I could imagine that flexibility could be useful. For example, a worker pool manager could use that to opportunistically request resources, where some pod requests may fail. Or, perhaps in the case that we need to temporarily create a new pod for some reason (CRIU-based migration?) but we don't want an old one to be killed.

So, I like the idea, just not the use case. :-)

FWIW, exactly X could be implemented by combining atLeast and atMost.

This was referenced Jul 25, 2014

Open
Closed
@smarterclayton

This comment has been minimized.

Show comment Hide comment
@smarterclayton

smarterclayton Jul 25, 2014

Contributor

Agree that without a kill policy on the replication controller the uses cases described don't work. Is a kill policy something you've discussed for the replication controller (oldest, ones that don't match my template first, ones on most overloaded systems)?
Contributor

smarterclayton commented Jul 25, 2014

Agree that without a kill policy on the replication controller the uses cases described don't work. Is a kill policy something you've discussed for the replication controller (oldest, ones that don't match my template first, ones on most overloaded systems)?
@bgrant0607

This comment has been minimized.

Show comment Hide comment
@bgrant0607

bgrant0607 Jul 25, 2014

Member

@smarterclayton I agree that kill policy would be useful and all of the policies you mention are reasonable in particular scenarios. However, I see this as a rich, unbounded policy space, much like scheduling. IIRC, Joe and/or Brendan proposed kill policies early on and I asked for them to be removed.

Instead, I propose that we leave the default policy entirely up to the system, much like scheduling, so we can take as many factors into account as we like, and otherwise I'd like to enable the user to implement an arbitrary policy using event hooks #140 . For instance, I could imagine POSTing to a URL whenever a pod needed to be killed. The user's hook would have N seconds to respond (perhaps configurable), after which the replication controller would kill its default choice.
Member

bgrant0607 commented Jul 25, 2014

@smarterclayton I agree that kill policy would be useful and all of the policies you mention are reasonable in particular scenarios. However, I see this as a rich, unbounded policy space, much like scheduling. IIRC, Joe and/or Brendan proposed kill policies early on and I asked for them to be removed.

Instead, I propose that we leave the default policy entirely up to the system, much like scheduling, so we can take as many factors into account as we like, and otherwise I'd like to enable the user to implement an arbitrary policy using event hooks #140 . For instance, I could imagine POSTing to a URL whenever a pod needed to be killed. The user's hook would have N seconds to respond (perhaps configurable), after which the replication controller would kill its default choice.
@smarterclayton

This comment has been minimized.

Show comment Hide comment
@smarterclayton

smarterclayton Jul 25, 2014

Contributor

Thanks for the clarification - I think I'll close this for now until the API stabilizes, and then add some of this context to the doc.
Contributor

smarterclayton commented Jul 25, 2014

Thanks for the clarification - I think I'll close this for now until the API stabilizes, and then add some of this context to the doc.

@smarterclayton smarterclayton closed this Jul 25, 2014

@bgrant0607

This comment has been minimized.

Show comment Hide comment
@bgrant0607

bgrant0607 Jul 25, 2014

Member

I suggest re-opening this issue, but change the title to "add XXX context
to doc YYY", so that we can reference in the PR for posterity.
Member

bgrant0607 commented Jul 25, 2014

I suggest re-opening this issue, but change the title to "add XXX context
to doc YYY", so that we can reference in the PR for posterity.

@smarterclayton smarterclayton reopened this Jul 28, 2014

@smarterclayton smarterclayton changed the title from Allow replicationController to specify atLeast/atMost? to Add content about replicationController to document use patterns Jul 28, 2014

@smarterclayton smarterclayton added documentation and removed enhancement labels Jul 28, 2014

@bgrant0607 bgrant0607 referenced this issue Sep 18, 2014

Closed

Robust rollingupdate and rollback #1353

@bgrant0607 bgrant0607 self-assigned this Oct 1, 2014

@bgrant0607 bgrant0607 referenced this issue Oct 1, 2014

Merged

Add documentation of replication controller. #1527

@brendandburns brendandburns closed this in #1527 Oct 2, 2014

vishh pushed a commit to vishh/kubernetes that referenced this issue Apr 6, 2016

@rjnagal
Merge pull request #492 from vmarmol/nested 
Detect Docker containers by asking the Docker.
3d07070

mqliang pushed a commit to mqliang/kubernetes that referenced this issue Dec 8, 2016

@ddysher @liubog2008
Merge pull request #492 from reAsOn2010/bugfix-docker-flannel-opt 
fix bug: docker daemon starting with wrong opt after flanneld restarted.
1dc5ea1

metadave pushed a commit to metadave/kubernetes that referenced this issue Feb 22, 2017

@andresbono @viglesiasce
[stable/prestashop] Bump `bitnami/prestashop` image to version `1.6.1… 
….9-r5` (#492)

* prestashop-0.4.2: bump `bitnami/prestashop` image to version `1.6.1.9-r5`

* update mariadb dependency to 0.5.6
ebe70c6

mqliang pushed a commit to mqliang/kubernetes that referenced this issue Mar 3, 2017

@ddysher @keontang
Merge pull request #492 from reAsOn2010/bugfix-docker-flannel-opt 
fix bug: docker daemon starting with wrong opt after flanneld restarted.
db826af

@k8s-ci-robot k8s-ci-robot referenced this issue Dec 12, 2017

Merged

Add e2e test for when a webhook does not return. #56822

@k8s-ci-robot k8s-ci-robot referenced this issue Jan 25, 2018

Merged

Update the comments on webhook failure policy #56874

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment