Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

VPA: prune stale container aggregates, split recommendations over true number of containers #6745

Open
wants to merge 14 commits into
base: master
Choose a base branch
from

Conversation

jkyros
Copy link

@jkyros jkyros commented Apr 22, 2024

What type of PR is this?

/kind bug

What this PR does / why we need it:

Previously we weren't cleaning up "stale" aggregates when container names changed (because of renames, removals) and that was resulting in:

  • VPAs showing recommendations for containers which no longer exist
  • Resources being split across containers which no longer exist (resulting in some containers ending up with resource limits too small for them to effectively live)
  • There was also a corner case where during a rollout after a container was renamed/removed from a deployment, we were counting the number of unique container names and not the actual number of containers in each pod, so we were splitting resources that shouldn't have been split.

This PR is an attempt to clean up those stale aggregates without incurring too much overhead, and make sure that the resources get spread across the correct number of containers during a rollout.

Which issue(s) this PR fixes:

Fixes #6744

Special notes for your reviewer:

There are probably a lot of different ways we can do the pruning of stale aggregates for missing containers:

  • I went with explicitly marking and sweeping them because it saved us an additional loop through all the pods and containers
  • We could also just as easily just have a PruneAggregates() that runs after LoadPods() that goes through everything and removes them (or do this work as part of LoadPods() but that seems...deceptive?)
  • We could probably also tweak the existing garbageCollectAggregateCollectionStates and run it immediately after LoadPods() every time but that might be expensive.

I'm not super-attached to any particular approach, I'd just like to fix this, so I can retool it if necessary.

  • If I am being ignorant, and there are corner cases I'm missing, absolutely let me know
  • it probably need some tests/cleanup and I'll change the names of things to...whatever you want them to be. 😄

Does this PR introduce a user-facing change?

Added pruning of container aggregates and changed container math so resources will no longer be split across the wrong number of containers

Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.:


@k8s-ci-robot k8s-ci-robot added do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. kind/bug Categorizes issue or PR as related to a bug. labels Apr 22, 2024
@k8s-ci-robot k8s-ci-robot added area/vertical-pod-autoscaler cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. labels Apr 22, 2024
@k8s-ci-robot
Copy link
Contributor

Hi @jkyros. Thanks for your PR.

I'm waiting for a kubernetes member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@k8s-ci-robot k8s-ci-robot added the size/L Denotes a PR that changes 100-499 lines, ignoring generated files. label Apr 22, 2024
@jkyros jkyros marked this pull request as ready for review April 22, 2024 17:56
@k8s-ci-robot k8s-ci-robot removed the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Apr 22, 2024
@k8s-ci-robot k8s-ci-robot requested a review from kgolab April 22, 2024 17:57
// TODO(jkyros): This only removes the container state from the VPA's aggregate states, there
// is still a reference to them in feeder.clusterState.aggregateStateMap, and those get
// garbage collected eventually by the rate limited aggregate garbage collector later.
// Maybe we should clean those up here too since we know which ones are stale?
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is it a lot of extra work to do that? Do you see any risks doing it here?

Copy link
Author

@jkyros jkyros May 2, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No, I don't think it's a lot of extra work, it should be reasonably cheap to clean them up here since it's just deletions from the other maps if the keys exist, I just didn't know all the history.

It seemed possible at least that we were intentionally waiting to clean up the aggregates so if there was an unexpected hiccup we didn't just immediately blow away all that aggregate history we worked so hard to get? (Like maybe someone oopses, deletes their deployment, then puts it back? Right now we don't have to start over -- the pods come back in, find their container aggregates, and resume ? But if I clean them up here, we have to start over...)

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Cleaning the map is cheap, so I don't mind handling it here. However, in cases like the one mentioned above (where someone deletes a deployment and recreates it immediately), I think it's better to leave this logic to be handled by gc.
@adrianmoisey, any thoughts on this?

// the correct number and not just the number of aggregates that have *ever* been present. (We don't want minimum resources
// to erroneously shrink, either)
func (cluster *ClusterState) setVPAContainersPerPod(pod *PodState) {
for _, vpa := range cluster.Vpas {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm wondering if there is already a place where this logic could go so we don't have to loop over all VPAs for every pod again here.
In large clusters with a VPA to Pod ratio that's closer to 1 this could be a little wasteful.

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hmm, yeah, I struggled with finding a less expensive way without making too much of a mess. Unless I'm missing something (and I might be) we don't seem to have a VPA <--> Pod map -- probably because we didn't need one until now? At the very least I think I should gate this to only run if the number of containers in the pod is > 1.

Like, I think our options are:

  1. update the VPA as the pods roll through (which requires me to find the VPA for each pod like I did here) or
  2. count the containers as we load the VPAs (but we load the VPAs before we load the pods, so we'd have to go through the pods again, so that doesn't help us)
  3. have the VPA actually track the pods it's managing, something like this: jkyros@6ddc208 (could also just be an array of PodIDs and we could look up the state so we could save the memory cost of the PodState pointer, but you know what I mean)

I put it where I did (option 1) because at least LoadPods() was already looping through all the pods so we could freeload off the "outer" pod loop and I figured we didn't want to spend the memory on option 3. If we'd entertain option 3 and are okay with the memory usage, I can totally do that?

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I believe option 3 is the best approach. We can implement this in a follow-up PR.

@k8s-triage-robot
Copy link

The Kubernetes project currently lacks enough contributors to adequately respond to all PRs.

This bot triages PRs according to the following rules:

  • After 90d of inactivity, lifecycle/stale is applied
  • After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
  • After 30d of inactivity since lifecycle/rotten was applied, the PR is closed

You can:

  • Mark this PR as fresh with /remove-lifecycle stale
  • Close this PR with /close
  • Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

@k8s-ci-robot k8s-ci-robot added the lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. label Jul 31, 2024
@k8s-triage-robot
Copy link

The Kubernetes project currently lacks enough active contributors to adequately respond to all PRs.

This bot triages PRs according to the following rules:

  • After 90d of inactivity, lifecycle/stale is applied
  • After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
  • After 30d of inactivity since lifecycle/rotten was applied, the PR is closed

You can:

  • Mark this PR as fresh with /remove-lifecycle rotten
  • Close this PR with /close
  • Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle rotten

@k8s-ci-robot k8s-ci-robot added lifecycle/rotten Denotes an issue or PR that has aged beyond stale and will be auto-closed. and removed lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. labels Aug 30, 2024
@sreber84
Copy link

/remove-lifecycle rotten

@k8s-ci-robot k8s-ci-robot removed the lifecycle/rotten Denotes an issue or PR that has aged beyond stale and will be auto-closed. label Sep 20, 2024
@adrianmoisey
Copy link
Member

/ok-to-test
/assign

I want to see if I can help get this merged

@k8s-ci-robot k8s-ci-robot added ok-to-test Indicates a non-member PR verified by an org member that is safe to test. and removed needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. labels Dec 3, 2024
@maxcao13
Copy link

maxcao13 commented Dec 3, 2024

Hi everyone, so John has take a hiatus and has left me with this PR, so after catching up, I guess we are still waiting for those conversations to resolve on which way do we want to go with those design decisions. The two commits I just put up are just a improvement on the existing implementation (assuming we will go with that, we don't have to), and some e2e tests to prove this works.

@maxcao13 maxcao13 force-pushed the vpa-aggregates-fix-mark-sweep branch 2 times, most recently from c3a1f0e to c84075b Compare December 3, 2024 22:29
@adrianmoisey
Copy link
Member

Generally this seems OK to me.
I just want to give it a test drive locally before giving it a lgtm

I'd also like other approvers to weigh in here too

// By default, recommendations for non-existent containers are never pruned until its top-most controller is deleted,
// after which the recommendations are subject to the VPA's recommendation garbage collector.
// +optional
PruningGracePeriod *metav1.Duration `json:"pruningGracePeriod,omitempty" protobuf:"bytes,4,opt,name=pruningGracePeriod"`
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm unsure how others feel about this, but this change adds PruningGracePeriod to verticalpodautoscaler.spec.resourcePolicy.containerPolicies

Where the description of containerPolicies is:

Per-container resource policies.
ContainerResourcePolicy controls how autoscaler computes the recommended
resources for a specific container.

Technically speaking, PruningGracePeriod isn't related to how the VPA generates recommendations. It feels wrong to put it there, but I don't know of a better location to put it.

An idea I have, which I'm not super excited by, is to use an annotation on the VPA object to drive this.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I feel the flags are a bit messy. Some are in the VPA object, some are global in the recommender, and some are in annotations. I think most flags related to how the VPA generates recommendations should be in the VPA object, while others should go in annotations. So yes, I agree.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sure, makes sense to me. Thanks!

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Changed in 70826a0

}
duration, err := time.ParseDuration(*globalPruningGracePeriodDuration)
if err != nil {
panic(fmt.Sprintf("Failed to parse --pruning-grace-period-duration: %v", err))
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Instead of using panic(), we should return an error to be handled by the caller of this function. Could we modify this to return an error using klog.ErrorS() followed by os.Exit(255)?
What do you think?

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fixed in b2ae65a, does it make sense? I used klog.Fatalf instead of error and exit.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, that's fine, but could you use Errors and Exit? It's the correct approach for structural logging.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hopefully cd63322 is correct? 🤞

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yup! Thanks

@adrianmoisey
Copy link
Member

There's potentially something wrong here. I tested it locally.
I made a deploy with 2 containers, and set the annotation vpaPruningGracePeriod: 70s on the VPA (may be this value is too short? I'm unsure).

Everything was fine, I was getting recommendations as expected.

I then deleted the second container, and eventually saw this in the logs:

I0105 13:04:21.715400       1 cluster_feeder.go:448] "Deleting Aggregate for VPA: container no longer present" namespace="default" vpaName="hamster-vpa" containerName="hamster"
I0105 13:04:21.715442       1 cluster_feeder.go:448] "Deleting Aggregate for VPA: container no longer present" namespace="default" vpaName="hamster-vpa" containerName="hamster2"

hamster2 was the only container I had removed, but for some reason it removed both.

A while later I re-added hamster2, and eventually the VPA did this:

I0105 13:10:21.726150       1 cluster_feeder.go:448] "Deleting Aggregate for VPA: container no longer present" namespace="default" vpaName="hamster-vpa" containerName="hamster"

My guess is that it's related to the MarkAggregates() run, but I'm not too sure.

@maxcao13
Copy link

maxcao13 commented Jan 6, 2025

There's potentially something wrong here. I tested it locally. I made a deploy with 2 containers, and set the annotation vpaPruningGracePeriod: 70s on the VPA (may be this value is too short? I'm unsure).

Everything was fine, I was getting recommendations as expected.

I then deleted the second container, and eventually saw this in the logs:
...
My guess is that it's related to the MarkAggregates() run, but I'm not too sure.

What's happening (I think) is that removing the container makes the deployment deploy a new pod, and the VPA doesn't associate both of the old container aggregates with the new pod, so it never marks isUnderVPA=true for the next LoadPods loop.

From what I can tell, this is probably okay because AggregateStateKey includes info about the pod's labelSet to make them unique (is there a situation where this breaks?). We don't want the old pod's aggregate to contribute to the recommendation anymore (assuming that's the reason someone sets the pruning grace period).

…e for non-breaking opt-in change

Signed-off-by: Max Cao <[email protected]>
@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: jkyros
Once this PR has been reviewed and has the lgtm label, please assign kgolab for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@adrianmoisey
Copy link
Member

There's potentially something wrong here. I tested it locally. I made a deploy with 2 containers, and set the annotation vpaPruningGracePeriod: 70s on the VPA (may be this value is too short? I'm unsure).
Everything was fine, I was getting recommendations as expected.
I then deleted the second container, and eventually saw this in the logs:
...
My guess is that it's related to the MarkAggregates() run, but I'm not too sure.

What's happening (I think) is that removing the container makes the deployment deploy a new pod, and the VPA doesn't associate both of the old container aggregates with the new pod, so it never marks isUnderVPA=true for the next LoadPods loop.

From what I can tell, this is probably okay because AggregateStateKey includes info about the pod's labelSet to make them unique (is there a situation where this breaks?). We don't want the old pod's aggregate to contribute to the recommendation anymore (assuming that's the reason someone sets the pruning grace period).

That theory sounds plausible. I worry that it's confusing to the user though, since it sounds like their recommendation gets removed.

What I'm mostly worried about is this part:

A while later I re-added hamster2, and eventually the VPA did this:

I0105 13:10:21.726150 1 cluster_feeder.go:448] "Deleting Aggregate for VPA: container no longer present" namespace="default" vpaName="hamster-vpa" containerName="hamster"
My guess is that it's related to the MarkAggregates() run, but I'm not too sure.

When this happened, the recommendations were deleted, and the status of my VPA looked like this:

status:
  conditions:
  - lastTransitionTime: "2025-01-07T19:50:10Z"
    status: "False"
    type: RecommendationProvided
  recommendation: {}

…to be linked to new containers

We need to set VPAContainersPerPod for a VPA correctly so we can split resources correctly on its first run through the recommendation loop. So I opted to explicitly set it after updating the pod's containers.

This also allows old aggregateContainerStates that were previously created from a removed Pod's container, to be reused by a new Pod's container that shares the same VPA and targetRef. This allows recommendations to be updated correctly when aggregates are pruned or created.

Signed-off-by: Max Cao <[email protected]>
…ong time for non-breaking opt-in change

Signed-off-by: Max Cao <[email protected]>
@maxcao13
Copy link

maxcao13 commented Jan 8, 2025

That theory sounds plausible. I worry that it's confusing to the user though, since it sounds like their recommendation gets removed.

What I'm mostly worried about is this part:

A while later I re-added hamster2, and eventually the VPA did this:

I0105 13:10:21.726150 1 cluster_feeder.go:448] "Deleting Aggregate for VPA: container no longer present" namespace="default" vpaName="hamster-vpa" containerName="hamster"
My guess is that it's related to the MarkAggregates() run, but I'm not too sure.

When this happened, the recommendations were deleted, and the status of my VPA looked like this:

status:
  conditions:
  - lastTransitionTime: "2025-01-07T19:50:10Z"
    status: "False"
    type: RecommendationProvided
  recommendation: {}

I wasn't able to make the bug appear that removes the recommendations completely, but I noticed that the pruning stale aggregates wouldn't update the number of container recommendations to the new number of pod containers, which is probably the same bug.

I fixed this in 11bcee3 hopefully. I needed to link old aggregates that were used by a previous pod/container, to the new pod/container explicitly. This is because the cluster.findOrCreateAggregateContainerState(containerID) function will not create a new aggregate. It finds the old one, and never calls UseAggregationIfMatching which never links this aggregation to the VPA object if the old aggregates are pruned. Then the GetContainerNameToAggregateStateMap function would be able to aggregate all the containerAggregateStates (super confusing naming) by container name based on how many non-stale aggregates actually still exist for the recommender post processor.

As long as the container name and namespace is the same, all of these aggregates will contribute to a recommendation for that container (hence the name aggregates I guess 😛). PruningGracePeriod just lets you decide if "old enough" containers can still contribute or not.

var recommendation = make(RecommendedPodResources)
if len(containerNameToAggregateStateMap) == 0 {
return recommendation
}

fraction := 1.0 / float64(len(containerNameToAggregateStateMap))
fraction := 1.0 / float64(containersPerPod)
klog.V(4).Infof("Spreading recommendation across %d containers (fraction %f)", containersPerPod, fraction)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could you switch to structured logging here... something like:

Suggested change
klog.V(4).Infof("Spreading recommendation across %d containers (fraction %f)", containersPerPod, fraction)
klog.V(4).InfoS("Spreading recommendation across containers", "containerCount", containersPerPod, "fraction", fraction)

@adrianmoisey
Copy link
Member

I wasn't able to make the bug appear that removes the recommendations completely, but I noticed that the pruning stale aggregates wouldn't update the number of container recommendations to the new number of pod containers, which is probably the same bug.

Yeah, it seems to be fixed now.

Something I noticed, was that the old recommendation still exists.

When I have 1 containers per Pod:

status:
  conditions:
  - lastTransitionTime: "2025-01-08T11:56:36Z"
    status: "True"
    type: RecommendationProvided
  recommendation:
    containerRecommendations:
    - containerName: hamster
      lowerBound:
        cpu: 527m
        memory: 131072k
      target:
        cpu: 627m
        memory: 131072k
      uncappedTarget:
        cpu: 627m
        memory: 131072k
      upperBound:
        cpu: "1"
        memory: 500Mi
    - containerName: hamster2
      lowerBound:
        cpu: 537m
        memory: 131072k
      target:
        cpu: 627m
        memory: 131072k
      uncappedTarget:
        cpu: 627m
        memory: 131072k
      upperBound:
        cpu: "1"
        memory: 500Mi

(notice that the memory is half of the default value of --pod-recommendation-min-memory-mb, as expected).

Then when I remove a container from the Deployment, I get this:

status:
  conditions:
  - lastTransitionTime: "2025-01-08T11:56:36Z"
    status: "True"
    type: RecommendationProvided
  recommendation:
    containerRecommendations:
    - containerName: hamster
      lowerBound:
        cpu: 558m
        memory: 262144k
      target:
        cpu: 627m
        memory: 262144k
      uncappedTarget:
        cpu: 627m
        memory: 262144k
      upperBound:
        cpu: "1"
        memory: 500Mi
    - containerName: hamster2
      lowerBound:
        cpu: 210m
        memory: 262144k
      target:
        cpu: 627m
        memory: 262144k
      uncappedTarget:
        cpu: 627m
        memory: 262144k
      upperBound:
        cpu: "1"
        memory: 500Mi

Notice that the second (now removed) container persists, and the memory (for both containers) is now correct.

I had assumed that as part of this PR, the removed recommendation should be removed from the status field.

@maxcao13
Copy link

maxcao13 commented Jan 8, 2025

I assume for your VPA object, there is no pruningGracePeriod set or it's very long? I get the same behaviour when I do that.

If so, yeah, I guess that's a side effect of the aggregates not having getting pruned - that there will be stale recommendations still in the VPA (remember CronJobs pods!). To make it less confusing to the user, maybe there could be an extra field to mark it as visibly stale? Maybe it would also make more sense that the recommendation for hamster2 is not updated at all if it goes away?
e.g.
vpaPruningGracePeriod not set; container "hamster2" was removed"

    recommendation:
      containerRecommendations:
      - containerName: hamster
        lowerBound:
          cpu: 582m
          memory: 262144k
        target:
          cpu: 587m
          memory: 262144k
        uncappedTarget:
          cpu: 587m
          memory: 262144k
        upperBound:
          cpu: "1"
          memory: 262144k
      - containerName: hamster2
        lowerBound:
          cpu: 403m
          memory: same as before
        target:
          cpu: 587m
          memory: same as before
        uncappedTarget:
          cpu: 587m
          memory: same as before
        upperBound:
          cpu: "1"
          memory: 500Mi
        stale: true

EDIT:

Alternatively, I just thought of this, and if we don't want stale recommendations to appear regardless of grace period, but still want cronjob recommendations to appear, then maybe we can do:

  • If at least one pod under a targetRef for a VPA object exists, but some container for that pod does not exist anymore, don't keep the recommendation for that non-existent container but keep the aggregate in-memory in case it comes back.
  • If there are no pods are under a targetRef for a VPA object (but targetRef/top-level-controller still exists), do not prune and keep all the recommendations in the VPA object, and all the aggregates.

Thinking about it, I think this alternative solution would remove the need for the pruningGracePeriod altogether, and maybe it's not useful to keep as a feature.

I think I figured out another edge-case that needs to be handled.

Sometimes in my day-job, when we're firefighting issues, we may scale a deployment down to zero to alleviate pressure on other parts of the system. I think this use-case is possibly common, tools such as https://keda.sh/ are built to allow users to scale workloads down to zero, to save costs.

The issue here, would still be covered as if there are no pods for a deployment, we don't remove anything, and the cronJob issue would be solved as well. Is there any bugs I'm missing in this solution?

@adrianmoisey
Copy link
Member

Oh hold on, I was too impatient and wasn't waiting for the grace period to actually remove recommendation. My bad!

Maybe it would also make more sense that the recommendation for hamster2 is not updated at all if it goes away?

I think this may make sense, updating the recommendation for a container that's about to be removed seems to show a sign of life, may be it needs to be ignored instead.

The issue here, would still be covered as if there are no pods for a deployment, we don't remove anything, and the cronJob issue would be solved as well. Is there any bugs I'm missing in this solution?

Nope, I think the solution is fine at the moment (besides the point above, which is a mild confusion, and not a big deal), I was just not waiting the grace period that I had set.

I'll give this a few more tests though, just to see if anything else crops up

@maxcao13 maxcao13 force-pushed the vpa-aggregates-fix-mark-sweep branch from 182cead to b76f2b4 Compare January 10, 2025 01:25
@maxcao13 maxcao13 force-pushed the vpa-aggregates-fix-mark-sweep branch from b76f2b4 to 811fa14 Compare January 11, 2025 01:48
@maxcao13
Copy link

Maybe it would also make more sense that the recommendation for hamster2 is not updated at all if it goes away?

I think this may make sense, updating the recommendation for a container that's about to be removed seems to show a sign of life, may be it needs to be ignored instead.

Latest commit should fix this now.

@adrianmoisey
Copy link
Member

I have another comment, and I'm unsure on this one.

The new behaviour results in this:

status:
  conditions:
  - lastTransitionTime: "2025-01-11T12:07:41Z"
    status: "True"
    type: RecommendationProvided
  recommendation:
    containerRecommendations:
    - containerName: hamster
      lowerBound:
        cpu: 445m
        memory: 262144k
      target:
        cpu: 627m
        memory: 262144k
      uncappedTarget:
        cpu: 627m
        memory: 262144k
      upperBound:
        cpu: "1"
        memory: 500Mi
    - containerName: hamster2
      lowerBound:
        cpu: 214m
        memory: 131072k
      target:
        cpu: 627m
        memory: 131072k
      uncappedTarget:
        cpu: 627m
        memory: 131072k
      upperBound:
        cpu: "1"
        memory: 500Mi

This happens after the second container is removed, but before the vpaPruningGracePeriod period happens.
The remaining container's memory is set to the value of --pod-recommendation-min-memory-mb, and the deleted container still exists.

What I had originally expected to happen was that the --pod-recommendation-min-memory-mb would be split between the two containers, until the vpaPruningGracePeriod period expires, then the stale container would be removed, and --pod-recommendation-min-memory-mb be recalculated.

But, thinking it over, I guess this is fine? The second container's recommendations are retained (until it comes back, or when vpaPruningGracePeriod elapses). The primary container gets recommendations that make sense.

@adrianmoisey
Copy link
Member

Generally speaking I'm fine with this change. I haven't given it a thorough review, but it works locally in a way that makes sense.
I see there's a TODO item to add more tests, and documentation still needs updating.

But I kinda want to get more thoughts on this (ping @omerap12 @raywainman @voelzmo) just to check if it all makes sense to someone else too

@omerap12
Copy link
Member

Generally speaking I'm fine with this change. I haven't given it a thorough review, but it works locally in a way that makes sense. I see there's a TODO item to add more tests, and documentation still needs updating.

But I kinda want to get more thoughts on this (ping @omerap12 @raywainman @voelzmo) just to check if it all makes sense to someone else too

Thanks for pinging, Ill take a look tomorrow

Copy link
Member

@omerap12 omerap12 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good, I have a couple of notes.

// TODO(jkyros): This only removes the container state from the VPA's aggregate states, there
// is still a reference to them in feeder.clusterState.aggregateStateMap, and those get
// garbage collected eventually by the rate limited aggregate garbage collector later.
// Maybe we should clean those up here too since we know which ones are stale?
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Cleaning the map is cheap, so I don't mind handling it here. However, in cases like the one mentioned above (where someone deletes a deployment and recreates it immediately), I think it's better to leave this logic to be handled by gc.
@adrianmoisey, any thoughts on this?

if podExists && len(pod.Containers) > 1 {
feeder.clusterState.SetVPAContainersPerPod(podState, true)
} else if !podExists {
panic("This shouldn't happen because AddOrUpdatePod should've placed this pod in the clusterState")
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why do we want to exit here? and if so can we use klog.ErrorS + os.Exit(255)?

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Oh, sorry I forgot about that. That was a temporary check for me. I'll remove that in the next set of patches, thanks.

func (cluster *ClusterState) addPodToItsVpa(pod *PodState) {
// SetVPAContainersPerPod sets the number of containers per pod seen for pods connected to this VPA
// so that later when we're splitting the minimum recommendations over containers, we're splitting them over
// the correct number and not just the number of aggregates that have *ever* been present. (We don't want minimum resources
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🚀

// the correct number and not just the number of aggregates that have *ever* been present. (We don't want minimum resources
// to erroneously shrink, either)
func (cluster *ClusterState) setVPAContainersPerPod(pod *PodState) {
for _, vpa := range cluster.Vpas {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I believe option 3 is the best approach. We can implement this in a follow-up PR.

}
vpaExists = false
}
if !vpaExists {
vpa = NewVpa(vpaID, selector, apiObject.CreationTimestamp.Time)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can we log that we are creating a new VPA?

containerName := resources.ContainerName
containerAggregateState := vpaContainerNameToAggregateStateMap[containerName]
if containerAggregateState != nil && !containerAggregateState.IsUnderVPA && !containerAggregateState.IsAggregateStale(now) {
klog.V(5).InfoS("Container no longer exists, but is not stale. Keeping container recommendation at previous state.", "vpa", vpa.ID.VpaName, "container", containerName)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm not sure I follow. If the container no longer exists and is not under the VPA (!containerAggregateState.IsUnderVPA), and it's not stale (!containerAggregateState.IsAggregateStale(now)), then why are we keeping the recommendation instead of pruning it?

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If the container no longer exists, then either:

  • It's considered stale by grace period
  • Not considered stale by grace period

If it is considered stale, then we are not going to overwrite the new recommendation with the previous, and we just ignore this branch of code which should set a new recommendation that we calculated in https://github.com/kubernetes/autoscaler/pull/6745/files#diff-5c44f22eb0f35931ab799838d2584dd10037916c74f114124e6904af48fcd608R96

If it's not considered stale, then potentially the user still want's this container's recommendation to exist for later, so here I explicitly overwrite the stale container's calculated recommendation with it's previous recommendation.

So the logic is sort of backwards, if that makes sense.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Understood. Thanks for clarifying this :)

@maxcao13
Copy link

maxcao13 commented Jan 13, 2025

I have another comment, and I'm unsure on this one.

The new behaviour results in this:
...minimized

What I had originally expected to happen was that the --pod-recommendation-min-memory-mb would be split between the two containers, until the vpaPruningGracePeriod period expires, then the stale container would be removed, and --pod-recommendation-min-memory-mb be recalculated.

But, thinking it over, I guess this is fine? The second container's recommendations are retained (until it comes back, or when vpaPruningGracePeriod elapses). The primary container gets recommendations that make sense.

I agree I was unsure on what behaviour should be "correct".

On one hand, I think we want to keep the stale recommendation in there if the pruning hasn't happened, but here's a scenario that might be a problem.

  1. We have
    containerRecommendations:
    - containerName: hamster
      lowerBound:
        cpu: 445m
        memory: 262144k
      target:
        cpu: 627m
        memory: 262144k
      uncappedTarget:
        cpu: 627m
        memory: 262144k
      upperBound:
        cpu: "1"
        memory: 500Mi
    - containerName: hamster2
      lowerBound:
        cpu: 214m
        memory: 131072k
      target:
        cpu: 627m
        memory: 131072k
      uncappedTarget:
        cpu: 627m
        memory: 131072k
      upperBound:
        cpu: "1"
        memory: 500Mi
  1. Then we restart the pod with the 2nd container added back.
  2. I think the admission controller will set the pod container resources exactly like the recommendation above? Which is incorrect until the recommender loops once and recommends the correct resources.

I'm not exactly sure how we want to handle that. If we remove the recommendation entirely, that means the second container doesn't get a recommended resource initially at all, even if the pruning grace period wasn't met.

@omerap12
Copy link
Member

I have another comment, and I'm unsure on this one.

The new behaviour results in this:

status:
  conditions:
  - lastTransitionTime: "2025-01-11T12:07:41Z"
    status: "True"
    type: RecommendationProvided
  recommendation:
    containerRecommendations:
    - containerName: hamster
      lowerBound:
        cpu: 445m
        memory: 262144k
      target:
        cpu: 627m
        memory: 262144k
      uncappedTarget:
        cpu: 627m
        memory: 262144k
      upperBound:
        cpu: "1"
        memory: 500Mi
    - containerName: hamster2
      lowerBound:
        cpu: 214m
        memory: 131072k
      target:
        cpu: 627m
        memory: 131072k
      uncappedTarget:
        cpu: 627m
        memory: 131072k
      upperBound:
        cpu: "1"
        memory: 500Mi

This happens after the second container is removed, but before the vpaPruningGracePeriod period happens. The remaining container's memory is set to the value of --pod-recommendation-min-memory-mb, and the deleted container still exists.

What I had originally expected to happen was that the --pod-recommendation-min-memory-mb would be split between the two containers, until the vpaPruningGracePeriod period expires, then the stale container would be removed, and --pod-recommendation-min-memory-mb be recalculated.

But, thinking it over, I guess this is fine? The second container's recommendations are retained (until it comes back, or when vpaPruningGracePeriod elapses). The primary container gets recommendations that make sense.

For me it makes sense

@adrianmoisey
Copy link
Member

/milestone vertical-pod-autoscaler-1.4.0

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
area/vertical-pod-autoscaler cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. kind/bug Categorizes issue or PR as related to a bug. ok-to-test Indicates a non-member PR verified by an org member that is safe to test. size/L Denotes a PR that changes 100-499 lines, ignoring generated files.
Projects
None yet
9 participants