Machine disruption budget controller should monitor machines and MachineDisruptionBudget objects and updates accordingly the MachineDisruptionBudget object status. It will provide the updated ingormation regarding the number of healthy machines with specific labels under the cluster that can be used by another controllers.
To provide updated information to a user or to an external controller regarding the number of healthy machines under the cluster.
- To provide the updated information regarding the number of healthy machines with specific labels via MachineDisruptionBudget object.
- To provide controller to delete unhealthy machines.
- To provide integration with controller that will delete unhealthy machines.
- When we talk about bare metal machines, possible the situation when the bare metal machine runs some critical flow, like CEPH storage replication and if more than the specified number of machines of such kind unavailable we do not want to delete all unavailable machines until we will have a healthy ones that succeeded to replicate the storage.
- Prevent the fencing storm when the cluster has the controller that responsible for deletion of unhealthy machines. The controller will check the relevant MachineDisruptionBudget object for the machine and if it already has more unhealthy machines than expected the controller will skip deletion of the unhealthy machine.
This proposal introduces a new API type: MachineDisruptionBudget.
This API makes possible to create simple MachineDisruptionBudget object with a label selector. You can specify minAvailable to prevent the deletion when less than minAvailable healthy machines are available or maxUnavailable to prevent the deletion when more than maxUnavailable unhealthy machines exist.
apiVersion: machineremediation.kubevirt.io/v1alpha1
kind: MachineDisruptionBudget
metadata:
name: mdb-test
namespace: openshift-machine-api
spec:
selector:
matchLabels:
machine.openshift.io/cluster-api-machine-role: worker
machine.openshift.io/ceph-storage: true
minAvailable: 3apiVersion: machineremediation.kubevirt.io/v1alpha1
kind: MachineDisruptionBudget
metadata:
name: mdb-test
namespace: openshift-machine-api
spec:
selector:
matchLabels:
machine.openshift.io/cluster-api-cluster: test-1-4pcgd
machine.openshift.io/cluster-api-machine-role: worker
machine.openshift.io/cluster-api-machine-type: worker
machine.openshift.io/cluster-api-machineset: test-1-4pcgd-worker-0
maxUnavailable: 4MachineDisruptionBudget status will show update information regarding the healthy machines under the cluster.
status:
# total number of machines with the labels that correspond to the label selector
total: 5
# currently number of healthy machines
currentHealthy: 3
# desired number of healthy machines
desiredHealthy: 3
# how many disruptions is currently available
disruptionsAllowed: 0
# used mostly for the integration with an additional controller that will delete unhealthy machines, if observedGeneration is different from the generation of the MDB object it means that MDB object still does not have updated information
observedGeneration: 1When the cluster has an unhealthy machine, the controller will try to get the MachineDisruptionBudget object for the machine, if it does not have one, continue, as usual, otherwise:
- if the MDB
observedGenerationless than the MDBgeneration, skip the machine deletion - if the MDB
disruptionsAllowedless or equal to zero, skip the machine deletion - if the
DisruptedMachinesmap has moreMaxDisruptedMachinSizeentries, skip the machine deletion - if it has
disruptionsAllowedgreater than zero, it will reduce the MDBdisruptionsAllowedby one, add the deleted machine to theDisruptedMachinesmap and will try to update the MDB status, in case it fails, the code will retry to update again with exponential backoff