New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
flowschema for etcd operator traffic #462
Conversation
/hold questions:
|
maybe a link to docs would help :) |
https://kubernetes.io/blog/2020/04/06/kubernetes-1-18-feature-api-priority-and-fairness-alpha/
yes, all control plane operators (kas-o, etcd-o, oauth-o, oas-o) share the same concurrency pool, right now its share is 10. By default (max-mutating=1000 and max-readonly=3000) it translates to about
the apiserver will reject the request with a 429.
There are metrics in place to see if there are requests in queue for this particular request flow (all requests originating from etcd operator)
The previous limit was not as fine grained as this. Previously we have max inflight requests allowed (readonly=3000 and mutating=1000)
same, the apiserver would reject it with a 429. The difference now is that if a bad actor (a different user) floods the apiserver with requests it won't have any affect on the etc operator traffic. |
@hexfusion this shows how many requests per second etcd operator is generating. :) |
ok so plenty of room to expand! thanks for details |
/hold cancel |
/lgtm |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: deads2k, tkashem The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
@tkashem: The following test failed, say
Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
/retest |
Traffic from control plane operators are important (kas-o, oas-o, auth operator, etcd operator), they have a dedicated concurrency pool now.
See openshift/cluster-kube-apiserver-operator#966 for more details.