Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: expose nodeclaim disruption through new disruption condition, improves pod eviction event message #1370

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

feat: expose nodeclaim disruption through new disruption condition, improves pod eviction event message #1370

wants to merge 1 commit into from

Conversation

cnmcavoy
Copy link

@cnmcavoy cnmcavoy commented Jun 28, 2024
edited
Loading

Fixes #N/A

Description

Add's a new nodeclaim condition DisruptionCandidate which is set when a nodeclaim is being disrupted, and is applied after the disruption taint is set. The DisruptionCandidate nodeclaim condition contains the reason why the nodeclaim is being terminated (e.g node worker-mgn6n/ip-10-115-200-242.us-east-2.compute.internal was single node consolidated).

The motivation for this new nodeclaim condition is so that when evicting pods, we can look up this condition and use the condition's message in the pod event.

Example of what the pod events look like now from testing in our clusters:

keda                                          85s         Normal    Evicted                           pod/keda-admission-webhooks-5bd6b554ff-tn25h                                                Evicted pod: node worker-qa-czn28/ip-10-115-195-50.us-east-2.compute.internal drifted
keda                                          86s         Normal    Evicted                           pod/keda-operator-688bc9b887-7t4gd                                                          Evicted pod: node worker-qa-czn28/ip-10-115-195-50.us-east-2.compute.internal drifted

How was this change tested?

Built Karpenter with this change locally and tested in our clusters. Also make presubmit

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

@k8s-ci-robot k8s-ci-robot added the cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. label Jun 28, 2024
@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: cnmcavoy
Once this PR has been reviewed and has the lgtm label, please assign njtran for approval. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added the size/L Denotes a PR that changes 100-499 lines, ignoring generated files. label Jun 28, 2024
@coveralls
Copy link

coveralls commented Jun 28, 2024
edited
Loading

Pull Request Test Coverage Report for Build 9718717778

Details

  • 32 of 54 (59.26%) changed or added relevant lines in 4 files are covered.
  • No unchanged relevant lines lost coverage.
  • Overall coverage decreased (-0.1%) to 78.704%
Changes Missing Coverage Covered Lines Changed/Added Lines %
pkg/operator/operator.go 0 3 0.0%
pkg/controllers/disruption/controller.go 14 23 60.87%
pkg/controllers/node/termination/terminator/eviction.go 16 26 61.54%
Totals Coverage Status
Change from base Build 9718332603: -0.1%
Covered Lines: 8622
Relevant Lines: 10955
💛 - Coveralls

@coveralls
Copy link

coveralls commented Jul 1, 2024
edited
Loading

Pull Request Test Coverage Report for Build 9750492374

Details

  • 32 of 54 (59.26%) changed or added relevant lines in 4 files are covered.
  • 4 unchanged lines in 2 files lost coverage.
  • Overall coverage decreased (-0.1%) to 78.684%
Changes Missing Coverage Covered Lines Changed/Added Lines %
pkg/operator/operator.go 0 3 0.0%
pkg/controllers/disruption/controller.go 14 23 60.87%
pkg/controllers/node/termination/terminator/eviction.go 16 26 61.54%
Files with Coverage Reduction New Missed Lines %
pkg/test/expectations/expectations.go 2 93.69%
pkg/utils/atomic/lazy.go 2 87.88%
Totals Coverage Status
Change from base Build 9748897421: -0.1%
Covered Lines: 8619
Relevant Lines: 10954
💛 - Coveralls

@cnmcavoy cnmcavoy force-pushed the cmcavoy/eviction-reason branch 5 times, most recently from 9819849 to 3041c3e Compare July 3, 2024 16:14
@coveralls
Copy link

coveralls commented Jul 3, 2024
edited
Loading

Pull Request Test Coverage Report for Build 9781364600

Details

  • 39 of 57 (68.42%) changed or added relevant lines in 9 files are covered.
  • 2 unchanged lines in 1 file lost coverage.
  • Overall coverage decreased (-0.05%) to 78.695%
Changes Missing Coverage Covered Lines Changed/Added Lines %
pkg/operator/operator.go 0 3 0.0%
pkg/controllers/disruption/controller.go 6 11 54.55%
pkg/controllers/node/termination/terminator/eviction.go 16 26 61.54%
Files with Coverage Reduction New Missed Lines %
pkg/controllers/provisioning/scheduling/nodeclaim.go 2 89.13%
Totals Coverage Status
Change from base Build 9772878439: -0.05%
Covered Lines: 8636
Relevant Lines: 10974
💛 - Coveralls

@k8s-ci-robot k8s-ci-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jul 4, 2024
@coveralls
Copy link

coveralls commented Jul 8, 2024
edited
Loading

Pull Request Test Coverage Report for Build 11635491539

Details

  • 60 of 76 (78.95%) changed or added relevant lines in 6 files are covered.
  • 3 unchanged lines in 2 files lost coverage.
  • Overall coverage decreased (-0.02%) to 80.926%
Changes Missing Coverage Covered Lines Changed/Added Lines %
pkg/controllers/node/termination/terminator/eviction.go 19 21 90.48%
pkg/controllers/state/statenode.go 14 18 77.78%
pkg/controllers/disruption/controller.go 23 33 69.7%
Files with Coverage Reduction New Missed Lines %
pkg/controllers/disruption/controller.go 1 71.86%
pkg/controllers/provisioning/scheduling/nodeclaim.go 2 89.13%
Totals Coverage Status
Change from base Build 11619650738: -0.02%
Covered Lines: 8549
Relevant Lines: 10564
💛 - Coveralls

@cnmcavoy
Copy link
Author

cnmcavoy commented Jul 8, 2024

/remove-needs-rebase

@k8s-ci-robot k8s-ci-robot added needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. and removed needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. labels Jul 9, 2024
@k8s-ci-robot k8s-ci-robot removed the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jul 12, 2024
@k8s-ci-robot k8s-ci-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jul 26, 2024
@k8s-ci-robot k8s-ci-robot removed the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jul 26, 2024
@github-actions GitHub Actions
Copy link

This PR has been inactive for 14 days. StaleBot will close this stale PR after 14 more days of inactivity.

@github-actions github-actions bot added the lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. label Aug 24, 2024
@k8s-ci-robot k8s-ci-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Aug 28, 2024
@github-actions github-actions bot removed the lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. label Aug 29, 2024
@cnmcavoy cnmcavoy force-pushed the cmcavoy/eviction-reason branch 2 times, most recently from c531847 to dbe3f32 Compare August 29, 2024 19:14
@k8s-ci-robot k8s-ci-robot added size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files. and removed size/L Denotes a PR that changes 100-499 lines, ignoring generated files. labels Aug 29, 2024
@k8s-ci-robot k8s-ci-robot added size/L Denotes a PR that changes 100-499 lines, ignoring generated files. and removed size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files. labels Aug 29, 2024
@k8s-ci-robot k8s-ci-robot added needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. and removed needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. labels Aug 29, 2024
@github-actions GitHub Actions
Copy link

This PR has been inactive for 14 days. StaleBot will close this stale PR after 14 more days of inactivity.

@github-actions github-actions bot added the lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. label Sep 18, 2024
njtran
njtran reviewed Sep 26, 2024
View reviewed changes
Copy link
Contributor

@njtran njtran left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice work!

pkg/apis/v1/nodeclaim_status.go Outdated Show resolved Hide resolved
pkg/controllers/disruption/controller.go Outdated Show resolved Hide resolved
pkg/controllers/disruption/eventual.go Outdated Show resolved Hide resolved
pkg/controllers/node/termination/terminator/eviction.go Outdated Show resolved Hide resolved
pkg/controllers/node/termination/terminator/events/events.go Outdated Show resolved Hide resolved
pkg/controllers/node/termination/terminator/eviction.go Outdated Show resolved Hide resolved
pkg/controllers/node/termination/terminator/eviction.go Outdated Show resolved Hide resolved
pkg/operator/operator.go Outdated Show resolved Hide resolved
pkg/controllers/disruption/controller.go Outdated Show resolved Hide resolved
@github-actions github-actions bot removed the lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. label Sep 27, 2024
@k8s-ci-robot k8s-ci-robot removed the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Oct 2, 2024
@cnmcavoy cnmcavoy force-pushed the cmcavoy/eviction-reason branch 2 times, most recently from ab5dbb4 to 22ed1fe Compare October 2, 2024 20:48
@cnmcavoy cnmcavoy requested a review from njtran October 2, 2024 20:48
njtran
njtran reviewed Oct 8, 2024
View reviewed changes
pkg/controllers/disruption/controller.go Outdated Show resolved Hide resolved
pkg/controllers/disruption/controller.go Outdated Show resolved Hide resolved
pkg/controllers/disruption/controller.go Outdated Show resolved Hide resolved
pkg/controllers/state/statenode.go Outdated Show resolved Hide resolved
pkg/controllers/state/statenode.go Outdated Show resolved Hide resolved
pkg/controllers/nodeclaim/lifecycle/controller.go Outdated Show resolved Hide resolved
pkg/controllers/node/termination/terminator/eviction.go Outdated Show resolved Hide resolved
pkg/controllers/disruption/controller.go Outdated Show resolved Hide resolved
@cnmcavoy cnmcavoy force-pushed the cmcavoy/eviction-reason branch 2 times, most recently from 5743ceb to 5381d84 Compare October 8, 2024 20:04
njtran
njtran reviewed Oct 21, 2024
View reviewed changes
Copy link
Contributor

@njtran njtran left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice work, think we're getting close!

pkg/controllers/disruption/controller.go Outdated
if errors.IsConflict(err) {
return reconcile.Result{Requeue: true}, nil
}
return reconcile.Result{}, fmt.Errorf("removing taint %s from nodes, %w", pretty.Taint(v1.DisruptedNoScheduleTaint), err)
}
if err, requeue := state.ClearNodeClaimsCondition(ctx, c.kubeClient, v1.ConditionTypeDisruptionReason, outdatedNodes...); requeue {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We probably want to check that the node doesn't have deletion timestamp set, or else we may be fighting with another controller that adds this status condition.

pkg/controllers/state/statenode.go
// ClearNodeClaimsCondition will remove the conditionType from the NodeClaim status of the provided statenodes
func ClearNodeClaimsCondition(ctx context.Context, kubeClient client.Client, conditionType string, nodes ...*StateNode) (err error, requeue bool) {
return multierr.Combine(lo.Map(nodes, func(s *StateNode, _ int) error {
if !s.Initialized() || s.NodeClaim == nil {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

initialized should capture if the nodeclaim isn't set

Suggested change
if !s.Initialized() || s.NodeClaim == nil {
if !s.Initialized() {

https://github.com/kubernetes-sigs/karpenter/blob/main/pkg/controllers/state/statenode.go#L320

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Removing this check results in test panics - I don't think your assertions is correct. Here is Initialized():

func (in *StateNode) Initialized() bool {
	// Node is managed by Karpenter, so we can check for the Initialized label
	if in.Managed() {
		return in.Node != nil && in.Node.Labels[v1.NodeInitializedLabelKey] == "true"
	}
	// Nodes not managed by Karpenter are always considered Initialized
	return true
}

in.Managed() return false because in.NodeClaim is nil. So initialized actually returns true when the nodeclaim is nil.

pkg/controllers/state/statenode.go Outdated Show resolved Hide resolved
pkg/controllers/state/statenode.go Outdated Show resolved Hide resolved
pkg/controllers/state/statenode.go Outdated Show resolved Hide resolved
pkg/controllers/nodeclaim/lifecycle/controller.go Outdated Show resolved Hide resolved
pkg/controllers/node/termination/terminator/eviction.go Outdated Show resolved Hide resolved
pkg/controllers/node/termination/terminator/eviction.go
@@ -171,6 +175,10 @@ func (q *Queue) Reconcile(ctx context.Context) (reconcile.Result, error) {
// Evict returns true if successful eviction call, and false if there was an eviction-related error
func (q *Queue) Evict(ctx context.Context, key QueueKey) bool {
ctx = log.IntoContext(ctx, log.FromContext(ctx).WithValues("Pod", klog.KRef(key.Namespace, key.Name)))
evictionMessage, err := evictionReason(ctx, key, q.kubeClient)
if err != nil {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I personally think we should just silently fail here. I'm worried about super noisy logs in the case where a nodeclaim accidentally goes away, or if there are other issues with the apiserver

Copy link
Author

@cnmcavoy cnmcavoy Nov 1, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I dislike silently failing, bc when debugging I often end up having to re-add all the logs for suppressed errors. So I compromised and moved it to V(1).

pkg/controllers/disruption/controller.go Show resolved Hide resolved
pkg/controllers/disruption/controller.go Outdated Show resolved Hide resolved
@cnmcavoy
Expose nodeclaim disruption candidates through nodeclaim condition, a…
8f0d122 
…dd eviction message from condition

Signed-off-by: Cameron McAvoy <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@njtran njtran njtran left review comments

@engedaam engedaam Awaiting requested review from engedaam

@jackfrancis jackfrancis Awaiting requested review from jackfrancis

@Bryce-Soghigian Bryce-Soghigian Awaiting requested review from Bryce-Soghigian

Assignees
No one assigned
Labels
cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. size/L Denotes a PR that changes 100-499 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@cnmcavoy @k8s-ci-robot @coveralls @njtran @Bryce-Soghigian