Promote STS minReadySeconds to beta #2824
Conversation
k8s-ci-robot
added
the
cncf-cla: yes
k8s-ci-robot
added
kind/kep
|
/sig apps |
k8s-ci-robot
added
the
lgtm
|
@ravisantoshgudimetla actually one nit, please update https://github.com/kubernetes/enhancements/blob/master/keps/sig-apps/2599-minreadyseconds-for-statefulsets/kep.yaml to reflect latest milestone and sate |
| @@ -1,3 +1,30 @@ | |||
| kep-number: 2599 | |||
| alpha: | |||
| approver: "@ehashman" | |||
| owning-sig: sig-apps | |||
There was a problem hiding this comment.
I think these changes are not necessary, not for PRR metadata file.
There was a problem hiding this comment.
TY. Updated :)
ravisantoshgudimetla
force-pushed
the
add-minReadySeconds-beta
branch
from
2616d1a
to
07b3177
Compare
k8s-ci-robot
removed
the
lgtm
ravisantoshgudimetla
force-pushed
the
add-minReadySeconds-beta
branch
3 times, most recently
from
b611fb8
to
4d51bc1
Compare
k8s-ci-robot
added
the
lgtm
| @@ -438,6 +446,8 @@ Ideally, this should be a metric. Operations against the Kubernetes API (e.g., | |||
| checking if there are objects with field X set) may be a last resort. Avoid | |||
| logs or events for this purpose. | |||
| --> | |||
| By checking the StatefulSets's `.status.AvailableReplicas` field. If that field is populated | |||
There was a problem hiding this comment.
isn't this set in cases when minreadyseconds==0?
they could count how many statefulsets are doing that directly, right?
There was a problem hiding this comment.
Ohh you mean, I should set the value to be > 0?
| @@ -463,6 +473,7 @@ high level (needs more precise definitions) those may be things like: | |||
| job creation time) for cron job <= 10% | |||
| - 99,9% of /health requests per day finish with 200 code | |||
| --> | |||
| All the `Available` pods created should be more than the time specified in `.spec.minReadySeconds` 99.99% of the time. | |||
There was a problem hiding this comment.
how can a cluster-admin know this is happening? Or more generally, if the statefulset controller starts failing, is there a metric that tracks errors from the statefulset controller that could be alerted upon if it starts failing very often?
There was a problem hiding this comment.
Based on the above metric.
There was a problem hiding this comment.
It's not clear how to track this from the description of the above metric. Please be more specific.
Furthermore, I don't think this SLO is appropriate. There's nothing in the KEP that suggests this is engineered for (or that we can accurately measure) 99.99% correctness.
I think it's reasonable to think about expected latencies and correctness here, but 99.99% is a very stringent target and this SLO as written doesn't seem universal.
You may want to take a look at the updated question template: https://github.com/kubernetes/enhancements/blame/master/keps/NNNN-kep-template/README.md#L512-L513
There was a problem hiding this comment.
I changed the SLO to 99% instead of 4 9's. I also added a sentence in the previous question on how the metric can be used to determine correctness of the functionality.
ravisantoshgudimetla
force-pushed
the
add-minReadySeconds-beta
branch
from
4d51bc1
to
2eefb8e
Compare
k8s-ci-robot
removed
the
lgtm
ravisantoshgudimetla
force-pushed
the
add-minReadySeconds-beta
branch
from
2eefb8e
to
ff6c453
Compare
|
Hi there 👋 1.23 enhancement shadow here. PRR has not been approved for this enhancement stage and the Thanks |
|
|
||
| ###### What specific metrics should inform a rollback? | ||
|
|
||
| <!-- | ||
| What signals should users be paying attention to when the feature is young | ||
| that might indicate a serious problem? | ||
| --> | ||
| `minReadySeconds` in StatefulSet doesn't get respected and all the `Ready` pods would be shown as `Available`. |
There was a problem hiding this comment.
This is not a metric; how does one measure this?
There was a problem hiding this comment.
By looking at the logs. I tried explaining it below or should we always use a metric? I thought looking at the logs is a signal that cluster-admin or developer can use to check if the feature is working or not.
| the number of StatefulSets without `AvailableReplicas` growing overtime which can be used by | ||
| cluster-admin to track th failures. We also a metric called `kube_statefulset_status_replicas_available` | ||
| which we added recently to track the number of available replicas. The cluster-admin could use | ||
| this metric to track the problems. |
There was a problem hiding this comment.
How would they use this metric? What are acceptable and unacceptable values for it?
| @@ -438,19 +450,20 @@ Ideally, this should be a metric. Operations against the Kubernetes API (e.g., | |||
| checking if there are objects with field X set) may be a last resort. Avoid | |||
| logs or events for this purpose. | |||
| --> | |||
| By checking the `kube_statefulset_status_replicas_available` metric. | |||
There was a problem hiding this comment.
So if the metric exists, the feature is in use? Please specify what the user needs to check.
| - Details: | ||
| - Components exposing the metric: StatefulSet controller via kube_state_metrics | ||
|
|
||
| The `kube_statefulset_status_replicas_available` gives the number of replicas available. |
There was a problem hiding this comment.
Can you give a little more detail on the metric labels? Will a timeseries exist for every workload that this is enabled for?
There was a problem hiding this comment.
Yes. We use labels to identify the individual workload and timeseries would exist for it.
| @@ -463,6 +473,7 @@ high level (needs more precise definitions) those may be things like: | |||
| job creation time) for cron job <= 10% | |||
| - 99,9% of /health requests per day finish with 200 code | |||
| --> | |||
| All the `Available` pods created should be more than the time specified in `.spec.minReadySeconds` 99.99% of the time. | |||
There was a problem hiding this comment.
It's not clear how to track this from the description of the above metric. Please be more specific.
Furthermore, I don't think this SLO is appropriate. There's nothing in the KEP that suggests this is engineered for (or that we can accurately measure) 99.99% correctness.
I think it's reasonable to think about expected latencies and correctness here, but 99.99% is a very stringent target and this SLO as written doesn't seem universal.
You may want to take a look at the updated question template: https://github.com/kubernetes/enhancements/blame/master/keps/NNNN-kep-template/README.md#L512-L513
| @@ -589,6 +604,10 @@ details). For now, we leave it here. | |||
|
|
|||
| ###### How does this feature react if the API server and/or etcd is unavailable? | |||
|
|
|||
| This feature will not work if the API server or etcd is unavailable as the controller-manager won't be even able get events or updates for StatefulSets. | |||
There was a problem hiding this comment.
Does this feature have a dependency on events? They are lossy, that doesn't seem right.
There was a problem hiding this comment.
None. I meant the update/create events not the events that individual components create.
| @@ -589,6 +604,10 @@ details). For now, we leave it here. | |||
|
|
|||
| ###### How does this feature react if the API server and/or etcd is unavailable? | |||
|
|
|||
| This feature will not work if the API server or etcd is unavailable as the controller-manager won't be even able get events or updates for StatefulSets. | |||
| If the API server and/or etcd is unavailable during the mid-rollout, the featuregate may be enabled but it won't have any effect on the StatefulSet as | |||
| the controller-manager cannot communicate with the API server | |||
There was a problem hiding this comment.
This also doesn't sound right; if the field is present on the object that the controller manager is working on, why would this stop working?
There was a problem hiding this comment.
It needs to do an update on the status subresource of the STS object which is not possible without communicating with kube-apiserver
There was a problem hiding this comment.
I suggest simple statement like:
The controller won't be able to progress, all currently queued resources are re-queued. This feature does not change current behavior of the controller in this regard.
ravisantoshgudimetla
force-pushed
the
add-minReadySeconds-beta
branch
from
ff6c453
to
d7322b3
Compare
There was a problem hiding this comment.
Thank you for the review @ehashman. I addressed your comments and added few more sentences which can clarify things. PTAL
|
|
||
| ###### What specific metrics should inform a rollback? | ||
|
|
||
| <!-- | ||
| What signals should users be paying attention to when the feature is young | ||
| that might indicate a serious problem? | ||
| --> | ||
| `minReadySeconds` in StatefulSet doesn't get respected and all the `Ready` pods would be shown as `Available`. |
There was a problem hiding this comment.
By looking at the logs. I tried explaining it below or should we always use a metric? I thought looking at the logs is a signal that cluster-admin or developer can use to check if the feature is working or not.
| - Details: | ||
| - Components exposing the metric: StatefulSet controller via kube_state_metrics | ||
|
|
||
| The `kube_statefulset_status_replicas_available` gives the number of replicas available. |
There was a problem hiding this comment.
Yes. We use labels to identify the individual workload and timeseries would exist for it.
| @@ -589,6 +604,10 @@ details). For now, we leave it here. | |||
|
|
|||
| ###### How does this feature react if the API server and/or etcd is unavailable? | |||
|
|
|||
| This feature will not work if the API server or etcd is unavailable as the controller-manager won't be even able get events or updates for StatefulSets. | |||
| If the API server and/or etcd is unavailable during the mid-rollout, the featuregate may be enabled but it won't have any effect on the StatefulSet as | |||
| the controller-manager cannot communicate with the API server | |||
There was a problem hiding this comment.
It needs to do an update on the status subresource of the STS object which is not possible without communicating with kube-apiserver
| @@ -589,6 +604,10 @@ details). For now, we leave it here. | |||
|
|
|||
| ###### How does this feature react if the API server and/or etcd is unavailable? | |||
|
|
|||
| This feature will not work if the API server or etcd is unavailable as the controller-manager won't be even able get events or updates for StatefulSets. | |||
There was a problem hiding this comment.
None. I meant the update/create events not the events that individual components create.
| @@ -463,6 +473,7 @@ high level (needs more precise definitions) those may be things like: | |||
| job creation time) for cron job <= 10% | |||
| - 99,9% of /health requests per day finish with 200 code | |||
| --> | |||
| All the `Available` pods created should be more than the time specified in `.spec.minReadySeconds` 99.99% of the time. | |||
There was a problem hiding this comment.
I changed the SLO to 99% instead of 4 9's. I also added a sentence in the previous question on how the metric can be used to determine correctness of the functionality.
| the number of StatefulSets without `AvailableReplicas` growing overtime which can be used by | ||
| cluster-admin to track th failures. We also have a metric called `kube_statefulset_status_replicas_available` | ||
| which we added recently to track the number of available replicas. The cluster-admin could use | ||
| this metric to track the problems. If the value is immediately equal to the value of `Ready` replicas or if it is `0`, it can be considered as a feature failure. |
There was a problem hiding this comment.
@ravisantoshgudimetla let's focus just on the metrics, it'll be simpler and the question goal is to help cluster-admin identify problems with the feature (when enabled) and not necessarily regular users.
There was a problem hiding this comment.
Removed it.
| - Components exposing the metric: | ||
| - [ ] Other (treat as last resort) | ||
| - Details: | ||
| - Components exposing the metric: StatefulSet controller via kube_state_metrics |
There was a problem hiding this comment.
kube-controller-manager is the component
| - [ ] Metrics | ||
| - Metric name: | ||
| - [x] Metrics | ||
| - Metric name: `kube_statefulset_status_replicas_available` |
There was a problem hiding this comment.
Maybe availability ratio will be a better option for this one?
There was a problem hiding this comment.
I think we can get the same ratio number using ready and available metrics. I don't have a strong opinion one or the other. Having said that, the current metrics are coming from kube_state_metrics and if we decide to go with this metric, we have to add the same metric for all the controllers. We can also revisit this during implementation.
| @@ -589,6 +604,10 @@ details). For now, we leave it here. | |||
|
|
|||
| ###### How does this feature react if the API server and/or etcd is unavailable? | |||
|
|
|||
| This feature will not work if the API server or etcd is unavailable as the controller-manager won't be even able get events or updates for StatefulSets. | |||
| If the API server and/or etcd is unavailable during the mid-rollout, the featuregate may be enabled but it won't have any effect on the StatefulSet as | |||
| the controller-manager cannot communicate with the API server | |||
There was a problem hiding this comment.
I suggest simple statement like:
The controller won't be able to progress, all currently queued resources are re-queued. This feature does not change current behavior of the controller in this regard.
ravisantoshgudimetla
force-pushed
the
add-minReadySeconds-beta
branch
from
d7322b3
to
ef9d1a8
Compare
There was a problem hiding this comment.
Thank you for the feedback @soltysh. I included the changes you suggested. PTAL
| the number of StatefulSets without `AvailableReplicas` growing overtime which can be used by | ||
| cluster-admin to track th failures. We also have a metric called `kube_statefulset_status_replicas_available` | ||
| which we added recently to track the number of available replicas. The cluster-admin could use | ||
| this metric to track the problems. If the value is immediately equal to the value of `Ready` replicas or if it is `0`, it can be considered as a feature failure. |
There was a problem hiding this comment.
Removed it.
| - [ ] Metrics | ||
| - Metric name: | ||
| - [x] Metrics | ||
| - Metric name: `kube_statefulset_status_replicas_available` |
There was a problem hiding this comment.
I think we can get the same ratio number using ready and available metrics. I don't have a strong opinion one or the other. Having said that, the current metrics are coming from kube_state_metrics and if we decide to go with this metric, we have to add the same metric for all the controllers. We can also revisit this during implementation.
ravisantoshgudimetla
force-pushed
the
add-minReadySeconds-beta
branch
from
ef9d1a8
to
70800c1
Compare
k8s-ci-robot
added
the
lgtm
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: ehashman, ravisantoshgudimetla, soltysh The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
the
approved
Promote STS minReadySeconds to beta