Redesign device plugin reset #747
Open
+671
−852
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Thanks for your PR,
To skip the vendors CIs, Maintainers can use one of:
|
Pull Request Test Coverage Report for Build 10683523602Warning: This coverage report may be inaccurate.This pull request's base commit is no longer the HEAD commit of its target branch. This means it includes changes from outside the original pull request, including, potentially, unrelated coverage changes.
Details
💛 - Coveralls |
bn222
reviewed
Jul 25, 2024
SchSeba
changed the title
SchSeba
force-pushed
the
device_plugin_redesign
branch
5 times, most recently
from
a3e8a58
to
ba8d6ef
Compare
SchSeba
force-pushed
the
device_plugin_redesign
branch
from
ba8d6ef
to
ef25135
Compare
|
@zeeke @adrianchiris @ykulazhenkov when you have time please take a look on this :) |
zeeke
reviewed
Aug 19, 2024
controllers/drain_controller.go
Outdated
Comment on lines
142
to
158
| // in case we have policy there is nothing else to do | ||
| if len(nodeNetworkState.Spec.Interfaces) > 0 { | ||
| reqLogger.Info("node and nodeState are on idle nothing todo") | ||
| } else { | ||
| // if we don't have any policy | ||
| // let's be sure the device plugin label doesn't exist on the node | ||
| reqLogger.Info("remove Device plugin from node nodeState spec is empty") | ||
| err = utils.LabelNode(ctx, node.Name, constants.SriovDevicePluginEnabledLabel, constants.SriovDevicePluginEnabledLabelDisabled, dr.Client) | ||
| if err != nil { | ||
| log.Log.Error(err, "failed to label node for device plugin label", | ||
| "labelKey", | ||
| constants.SriovDevicePluginEnabledLabel, | ||
| "labelValue", | ||
| constants.SriovDevicePluginEnabledLabelDisabled) | ||
| return reconcile.Result{}, err | ||
| } | ||
| } |
There was a problem hiding this comment.
we reached 4th level of nested if statement here. what about extracting:
Suggested change
| // in case we have policy there is nothing else to do | |
| if len(nodeNetworkState.Spec.Interfaces) > 0 { | |
| reqLogger.Info("node and nodeState are on idle nothing todo") | |
| } else { | |
| // if we don't have any policy | |
| // let's be sure the device plugin label doesn't exist on the node | |
| reqLogger.Info("remove Device plugin from node nodeState spec is empty") | |
| err = utils.LabelNode(ctx, node.Name, constants.SriovDevicePluginEnabledLabel, constants.SriovDevicePluginEnabledLabelDisabled, dr.Client) | |
| if err != nil { | |
| log.Log.Error(err, "failed to label node for device plugin label", | |
| "labelKey", | |
| constants.SriovDevicePluginEnabledLabel, | |
| "labelValue", | |
| constants.SriovDevicePluginEnabledLabelDisabled) | |
| return reconcile.Result{}, err | |
| } | |
| } | |
| func (dr *DrainReconcile) handleIdleIdle(ctx context.Context, node *corev1.Node, nodeNetworkState *sriovnetworkv1.SriovNetworkNodeState) (ctrl.Result, error) { | |
| reqLogger := log.FromContext(ctx) | |
| if len(nodeNetworkState.Spec.Interfaces) > 0 { | |
| reqLogger.Info("node and nodeState are on idle nothing todo") | |
| } else { | |
| // if we don't have any policy | |
| // let's be sure the device plugin label doesn't exist on the node | |
| err := utils.LabelNode(ctx, node.Name, constants.SriovDevicePluginEnabledLabel, constants.SriovDevicePluginEnabledLabelDisabled, dr.Client) | |
| if err != nil { | |
| log.Log.Error(err, "failed to label node for device plugin label", | |
| "labelKey", | |
| constants.SriovDevicePluginEnabledLabel, | |
| "labelValue", | |
| constants.SriovDevicePluginEnabledLabelDisabled) | |
| return reconcile.Result{}, err | |
| } | |
| } | |
| return reconcile.Result{}, nil | |
| } | |
pkg/utils/cluster.go
Outdated
|
|
||
| // LabelObject adds label to a kubernetes object | ||
| func LabelObject(ctx context.Context, obj client.Object, key, value string, c client.Client) error { | ||
| log.Log.V(2).Info("LabelObject(): Annotate object", |
There was a problem hiding this comment.
please, log only if the labels need to be updated. Otherwise, we'll get a lot of log lines even when the sriov configuration is stable.
controllers/drain_controller.go
Outdated
Comment on lines
296
to
349
| } else if nodeDrainAnnotation == constants.DevicePluginResetRequired { | ||
| // nothing to do here we need to wait for the node to move back to idle | ||
| if nodeStateDrainAnnotationCurrent == constants.DrainComplete { | ||
| reqLogger.Info("node requested a drain and nodeState is on drain completed nothing todo") | ||
| return ctrl.Result{}, nil | ||
| } | ||
|
|
||
| // if we are on idle state we move it to drain | ||
| if nodeStateDrainAnnotationCurrent == constants.DrainIdle { | ||
| err = utils.AnnotateObject(ctx, nodeNetworkState, constants.NodeStateDrainAnnotationCurrent, constants.Draining, dr.Client) | ||
| if err != nil { | ||
| reqLogger.Error(err, "failed to annotate node with annotation", "annotation", constants.Draining) | ||
| return ctrl.Result{}, err | ||
| } | ||
| return ctrl.Result{}, nil | ||
| } | ||
|
|
||
| // This cover a case where we only need to reset the device plugin | ||
| // for that we are going to cordon the node, so we don't get new pods allocated | ||
| // to the node in the time we remove the device plugin | ||
| err = dr.drainer.RunCordonOrUncordon(ctx, node, true) | ||
| if err != nil { | ||
| log.Log.Error(err, "failed to cordon on node") | ||
| return reconcile.Result{}, err | ||
| } | ||
|
|
||
| // we switch the sriov label to disable and mark the drain as completed | ||
| // no need to wait for the device plugin to exist here as we cordon the node, | ||
| // and we want to config-daemon to start the configuration in parallel of the kube-controller to remove the pod | ||
| // we check the device plugin was removed when the config-daemon moves is desire state to idle | ||
| reqLogger.Info("disable Device plugin from node") | ||
| err = utils.LabelNode(ctx, node.Name, constants.SriovDevicePluginEnabledLabel, constants.SriovDevicePluginEnabledLabelDisabled, dr.Client) | ||
| if err != nil { | ||
| log.Log.Error(err, "failed to label node for device plugin label", | ||
| "labelKey", | ||
| constants.SriovDevicePluginEnabledLabel, | ||
| "labelValue", | ||
| constants.SriovDevicePluginEnabledLabelDisabled) | ||
| return reconcile.Result{}, err | ||
| } | ||
|
|
||
| // if we manage to cordon we label the node state with drain completed and finish | ||
| err = utils.AnnotateObject(ctx, nodeNetworkState, constants.NodeStateDrainAnnotationCurrent, constants.DrainComplete, dr.Client) | ||
| if err != nil { | ||
| reqLogger.Error(err, "failed to annotate node with annotation", "annotation", constants.DrainComplete) | ||
| return ctrl.Result{}, err | ||
| } | ||
|
|
||
| reqLogger.Info("node cordoned successfully and device plugin removed") | ||
| dr.recorder.Event(nodeNetworkState, | ||
| corev1.EventTypeWarning, | ||
| "DrainController", | ||
| "node cordoned and device plugin removed completed") | ||
| return ctrl.Result{}, nil |
There was a problem hiding this comment.
Any chance to code a unit test for this case? It took me a while to understand the whole controller - daemon interaction
SchSeba
force-pushed
the
device_plugin_redesign
branch
3 times, most recently
from
7b4de70
to
d719a8c
Compare
…device plugin * use a general nodeSelector to avoid updating the daemonset yaml * remove the config-daemon removing pod (better security) * make the operator in charge of resetting the device plugin via annotations * mark the node as cordon BEFORE we remove the device plugin (without drain) to avoid scheduling new pods until the device plugin is backed up Signed-off-by: Sebastian Sch <[email protected]>
SchSeba
force-pushed
the
device_plugin_redesign
branch
from
d719a8c
to
0981cec
Compare
zeeke
reviewed
Sep 3, 2024
| @@ -214,13 +190,15 @@ func syncPluginDaemonObjs(ctx context.Context, | |||
| return err | |||
| } | |||
| ds.Spec.Template.Spec.NodeSelector = dc.Spec.ConfigDaemonNodeSelector | |||
| // add the special node selector for the device plugin | |||
| ds.Spec.Template.Spec.NodeSelector[constants.SriovDevicePluginEnabledLabel] = constants.SriovDevicePluginEnabledLabelEnabled | |||
There was a problem hiding this comment.
can't we put
nodeSelector:
sriovnetwork.openshift.io/device-plugin: Enabledin bindata/manifests/plugins/sriov-device-plugin.yaml ?
should we take care of the ConfigDaemonNodeSelector?
|
|
||
| // if we are on idle state we move it to drain | ||
| if nodeStateDrainAnnotationCurrent == constants.DrainIdle { | ||
| err := utils.AnnotateObject(ctx, nodeNetworkState, constants.NodeStateDrainAnnotationCurrent, constants.Draining, dr.Client) |
There was a problem hiding this comment.
It took me a while to understand this. We're setting nodeState = Draining even if we are not draining. We're just cordoning. It is to avoid having too many states?
| createDevicePluginPodOnNode(ctx, node.Name) | ||
| expectNodeStateAnnotation(nodeState, constants.DrainIdle) | ||
| expectNodeLabel(node, constants.SriovDevicePluginEnabledLabel, constants.SriovDevicePluginEnabledLabelEnabled) | ||
| }) |
There was a problem hiding this comment.
While checking if I understood all the step, I coded this unit test:
It("should restart the device plugin on multiple nodes if requested", func() {
simpleNodeStateSpec := sriovnetworkv1.SriovNetworkNodeStateSpec{Interfaces: sriovnetworkv1.Interfaces{
{
Name: "test",
NumVfs: 10,
VfGroups: []sriovnetworkv1.VfGroup{
{
PolicyName: "test",
ResourceName: "test",
VfRange: "0-9",
},
},
},
}}
node1, nodeState1 := createNode(ctx, "node-a")
nodeState1.Spec = simpleNodeStateSpec
node2, nodeState2 := createNode(ctx, "node-b")
nodeState2.Spec = simpleNodeStateSpec
simulateDaemonSetAnnotation(node1, constants.DevicePluginResetRequired)
simulateDaemonSetAnnotation(node2, constants.DevicePluginResetRequired)
expectNodeStateAnnotation(nodeState1, constants.DrainComplete)
expectNodeStateAnnotation(nodeState2, constants.DrainComplete)
expectNodeLabel(node1, constants.SriovDevicePluginEnabledLabel, constants.SriovDevicePluginEnabledLabelDisabled)
expectNodeLabel(node2, constants.SriovDevicePluginEnabledLabel, constants.SriovDevicePluginEnabledLabelDisabled)
simulateDaemonSetAnnotation(node1, constants.DrainIdle)
simulateDaemonSetAnnotation(node2, constants.DrainIdle)
expectNodeStateAnnotation(nodeState1, constants.DrainIdle)
expectNodeStateAnnotation(nodeState2, constants.DrainIdle)
expectNodeLabel(node1, constants.SriovDevicePluginEnabledLabel, constants.SriovDevicePluginEnabledLabelEnabled)
expectNodeLabel(node2, constants.SriovDevicePluginEnabledLabel, constants.SriovDevicePluginEnabledLabelEnabled)
})
But it fails and the device plugin is not enabled on any node. Is this test case wrong, or is there an underlying unmanaged condition?
| reqLogger *logr.Logger, | ||
| node *corev1.Node, | ||
| nodeNetworkState *sriovnetworkv1.SriovNetworkNodeState, | ||
| nodeDrainAnnotation, |
There was a problem hiding this comment.
This variable is not used. please, remove it
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This commit introduces a new redesign on how the operator resets the device plugin