Add container garbage collection. #2022
Conversation
|
Will this only remove images that were previously pulled by the kubelet? For example, if I have other docker processes running on the minion-host, this will not look to delete those images, correct? Making sure I understand the code when I read through it. |
|
This doesn't remove images at all. It only removes the write layer Brendan
|
|
Also, it does filter to only those containers that are run by the kubelet. Thanks
|
| @@ -186,6 +186,15 @@ func main() { | |||
| *registryBurst) | |||
|
|
|||
| go func() { | |||
| util.Forever(func() { | |||
There was a problem hiding this comment.
Why the anonymous fund around util.Forever?
There was a problem hiding this comment.
util.Forever is blocking so that puts it in a go-routine.
There was a problem hiding this comment.
I meant go util.Forever(...)
----- Original Message -----
@@ -186,6 +186,15 @@ func main() {
*registryBurst)go func() {
util.Forever(func() {util.Forever is blocking.
Reply to this email directly or view it on GitHub:
https://github.com/GoogleCloudPlatform/kubernetes/pull/2022/files#r19452991
brendandburns
force-pushed
the
gc
branch
4 times, most recently
from
1225f62
to
f7b1a4e
Compare
|
Comments addressed. Please re-check. Thanks! |
|
Unit tests added. I also tested this empirically on my own cluster. I believe this is ready to merge. Thanks! |
|
Closes #157 |
brendandburns
changed the title
| } | ||
| } | ||
| sort.Sort(ByCreated(dockerData)) | ||
| if len(dockerData) <= 5 { |
|
Comments addressed. ptal. Thanks! |
| @@ -67,6 +67,7 @@ var ( | |||
| registryBurst = flag.Int("registry_burst", 10, "Maximum size of a bursty pulls, temporarily allows pulls to burst to this number, while still not exceeding registry_qps. Only used if --registry_qps > 0") | |||
| runonce = flag.Bool("runonce", false, "If true, exit after spawning pods from local manifests or remote urls. Exclusive with --etcd_servers and --enable-server") | |||
| enableDebuggingHandlers = flag.Bool("enable_debugging_handlers", true, "Enables server endpoints for log collection and local running of containers and commands") | |||
| minimumGCAge = flag.Duration("minimum_container_gc_age", 0, "Minimum age for a finished container before it is garbage collected.") | |||
There was a problem hiding this comment.
"minimum age before removal" is a complicated way to say "ttl", whereas ttl is a well-understood concept. Any reason NOT to just say "container_ttl" or "container_attempt_ttl" ? I think "attempt" is an important concept here.
There was a problem hiding this comment.
I don't like TTL because TTL implies that we will delete it when it's that old, whereas here we just guarantee that we won't delete it if it is younger than this.
Flag is a Duration object, so any units are accepted.
There was a problem hiding this comment.
Fair point on implied semantics. container_attempt_min_ttl?
How does a user specify duration as a flag? "1s" ? What if they just say "1" - what does it mean?
There was a problem hiding this comment.
|
LGTM in general. Two small things:
|
| @@ -39,6 +40,7 @@ import ( | |||
| ) | |||
|
|
|||
| const defaultChanSize = 1024 | |||
| const maxContainerCount = 5 | |||
There was a problem hiding this comment.
Why is TTL a flag and this is not?
|
Adding a max failures or max-failure/time setting is a good idea, but as a different PR. If we can't accurately count restarts, we should not offer a wrong count. My biggest concern is documenting it well enough that someone could understand it. |
| } | ||
| dockerData = dockerData[maxContainerCount:] | ||
| for _, data := range dockerData { | ||
| if err := kl.dockerClient.RemoveContainer(docker.RemoveContainerOptions{ID: data.ID}); err != nil { |
There was a problem hiding this comment.
Why? The error is going to get passed upstream, we log there.
|
@thockin I guess your last comments are related to my earlier comment.
Even we couldn't provide accurate restart count, but some rough number provide an indication for the user the failure is one-time, or crash-loop. For usability on debugging purpose, I think it is quite important. We could change restart_count field from int to string later, and report something like "restarted more than N times". But if we do so, we really need to embed the gc logic to SyncPods. |
| @@ -67,6 +67,8 @@ var ( | |||
| registryBurst = flag.Int("registry_burst", 10, "Maximum size of a bursty pulls, temporarily allows pulls to burst to this number, while still not exceeding registry_qps. Only used if --registry_qps > 0") | |||
| runonce = flag.Bool("runonce", false, "If true, exit after spawning pods from local manifests or remote urls. Exclusive with --etcd_servers and --enable-server") | |||
| enableDebuggingHandlers = flag.Bool("enable_debugging_handlers", true, "Enables server endpoints for log collection and local running of containers and commands") | |||
| minimumGCAge = flag.Duration("minimum_container_ttl_duration", 0, "Minimum age for a finished container before it is garbage collected. Examples: '300ms', '10s' or '2h45m'") | |||
| maxContainerCount = flag.Int("maximum_dead_containers_per_pod", 5, "Maximum number of old containers to retain per pod. Each container takes up some disk space. Default: 5.") | |||
There was a problem hiding this comment.
If a pod has more than 5 containers, and all of them are restarted, some of them might end up without any dead container left behind for debugging? Is that what we want? Also restart count is specified for per-container, and this max is at pod base.
There was a problem hiding this comment.
Good catch! Switched to do uuid + container name, and renamed this flag.
brendandburns
force-pushed
the
gc
branch
2 times, most recently
from
e68dc1a
to
7321ed8
Compare
|
LGTM. Once Travis is green, I will merge it. |
|
This is now green (earlier break was due to a break @ head) |
Add container garbage collection.
| RestartCount int `json:"restartCount" yaml:"restartCount"` | ||
| State ContainerState `json:"state,omitempty" yaml:"state,omitempty"` | ||
| // Note that this is calculated from dead containers. But those containers are subject to | ||
| // garbage collection. This value will get capped at 5 by GC. |
There was a problem hiding this comment.
nit: s/5/a flag-configured limit/
Work in progress, will add unit tests this evening, assuming this looks ok.