feat: Support DRA Admin Access #8063
Conversation
k8s-ci-robot
added
kind/feature
|
Hi @MenD32. Thanks for your PR. I'm waiting for a kubernetes member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
k8s-ci-robot
added
area/cluster-autoscaler
size/M
| result := map[string]map[string][]string{} | ||
| for _, claim := range claims { | ||
| alloc := claim.Status.Allocation | ||
| claimCopy := ClaimWithoutAdminAccessRequests(claim) |
There was a problem hiding this comment.
It might be cleaner to do this in CalculateDynamicResourceUtilization ? We'd have to wrap an enumerator around ClaimWithoutAdminAccessRequests, but at least we could prune the claims data at the source so that any additional downstream usages of it in the future get that pruning for free. (I don't think that CA would ever want to operate upon claim devices that are tagged for AdminAccess.)
wdyt?
There was a problem hiding this comment.
Do you think other calls to groupAllocatedDevices would expect adminAccess resource requests to be removed?
| wantErr: cmpopts.AnyError, | ||
| }, | ||
| } { | ||
| if tc.testName != "DRA slices and claims present, DRA enabled -> DRA util returned despite being lower than CPU" { |
There was a problem hiding this comment.
my bad, that was for debugging the test, i need to remove this
MenD32
force-pushed
the
feat/dra-admin-access
branch
from
94b849e to
bece2b0
Compare
|
/ok-to-test |
k8s-ci-robot
added
ok-to-test
|
/lgtm /assign @towca |
k8s-ci-robot
added
the
lgtm
|
@towca, could you please take a look at this PR when you get a chance? |
cluster-autoscaler/simulator/dynamicresources/utils/utilization.go
Outdated
Show resolved
Hide resolved
| wantHighestUtilization: 0.2, | ||
| wantHighestUtilizationName: apiv1.ResourceName(fmt.Sprintf("%s/%s", fooDriver, "pool1")), | ||
| }, | ||
| { |
There was a problem hiding this comment.
Could you add a test case with both kinds of claims together?
| Devices: resourceapi.DeviceAllocationResult{ | ||
| Results: []resourceapi.DeviceRequestAllocationResult{ | ||
| {Request: fmt.Sprintf("request-%d", podDevIndex), Driver: driverName, Pool: poolName, Device: devName}, | ||
| {Request: devReqName, Driver: driverName, Pool: poolName, Device: devName}, |
There was a problem hiding this comment.
The result has an AdminAccess field as well.
There was a problem hiding this comment.
nice catch, totally missed that, I'll fix
| claimCopy.UID = uuid.NewUUID() | ||
| claimCopy.Name = fmt.Sprintf("%s-%s", claim.Name, nameSuffix) | ||
| claimCopy.OwnerReferences = []metav1.OwnerReference{PodClaimOwnerReference(newOwner)} | ||
| claimCopy = ClaimWithoutAdminAccessRequests(claimCopy) |
There was a problem hiding this comment.
Hmm, it doesn't feel right modifying the claims to remove the admin-access allocation results. The claims are checked and possibly allocated by the DRA scheduler plugin during Filter. They just don't "block" the allocated devices from being allocated for other claims. If we remove the results we essentially have an "invalid" allocated claim where not all requests have an allocation. Not sure if the DRA scheduler plugin Filters would pass for such a Pod.
IMO we should duplicate the admin-access allocation results that are not Node-local without sanitization. The non-Node-local devices are then "double-booked", but this is fine because admin-access doesn't actually book them. We should still sanitize the Node-local results to avoid pointing to devices that definitely aren't available on the new Node. This should leave the claim in a relatively valid state - Node-local allocations are correctly pointing to the devices from the new Node, non-Node-local allocations point to the same devices as the initial claim did. The only assumption we're making is that if a non-Node-local device is available on oldNode, it will be available on newNode as well.
It seems that we can just slightly modify this function to achieve this:
- If a result Pool isn't in
oldNodePoolNamesbut it has admin-access set - add it tosanitizedAllocationsas-is instead of returning an error. - I wonder if we can just remove the nodeSelector check, it's pretty redundant with checking against
oldNodePoolNames. Otherwise we'd have to move the check after sanitizing result and do something like "don't error if there were any non-Node-local, admin-access results during sanitization". - I'd also definitely add new test cases to unit tests for this function.
There was a problem hiding this comment.
@MenD32 ping on this comment. Or maybe you responded and Github is just hiding it from me 😅?
There was a problem hiding this comment.
Hi, I forgot to ping you when I addressed that in a commit... sorry about that
k8s-ci-robot
added
needs-rebase
MenD32
force-pushed
the
feat/dra-admin-access
branch
from
358338b to
4fc845c
Compare
MenD32
force-pushed
the
feat/dra-admin-access
branch
from
4fc845c to
38083af
Compare
|
Just finished addressing the review comments, so this PR is ready for review again, @jackfrancis @towca |
k8s-ci-robot
removed
the
lifecycle/stale
| for _, deviceRequestAllocationResult := range claimCopy.Status.Allocation.Devices.Results { | ||
| // Device requests with AdminAccess don't reserve their allocated resources, and are ignored when scheuling. | ||
| devReq := getDeviceResultRequest(claim, &deviceRequestAllocationResult) | ||
| if devReq != nil && devReq.AdminAccess != nil && *devReq.AdminAccess { |
There was a problem hiding this comment.
We already have the ""k8s.io/utils/ptr" package in our go.mod, so we can change these pointer usages to leverage that package. E.g.:
if ptr.Deref(devReq.AdminAccess, false) {
Ref:
| } | ||
| deviceRequestAllocationResults = append(deviceRequestAllocationResults, deviceRequestAllocationResult) | ||
| } | ||
| if claimCopy.Status.Allocation != nil { |
There was a problem hiding this comment.
L122 already guarantees that claimCopy won't be nil at this point in the execution flow, so we can simply assign deviceRequestAllocationResults to claimCopy.Status.Allocation.Devices.Results without checking for nil here.
|
|
||
| // getDeviceResultRequest returns the DeviceRequest for the provided DeviceRequestAllocationResult in the provided ResourceClaim. If no result is found, nil is returned. | ||
| func getDeviceResultRequest(claim *resourceapi.ResourceClaim, deviceRequestAllocationResult *resourceapi.DeviceRequestAllocationResult) *resourceapi.DeviceRequest { | ||
| if claim.Status.Allocation == nil { |
There was a problem hiding this comment.
Do we need this defensive check here since we're only calling this from ClaimWithoutAdminAccessRequests (which as implemented would never pass a nil Allocation)
There was a problem hiding this comment.
I think its fair to add this check to this function so it could be insulated from how it might be called in the future, not just in ClaimWithoutAdminAccessRequests
There was a problem hiding this comment.
Will there be every be a non-nil claim.Spec.Devices.Requests when there is a nil claim.Status.Allocation?
There was a problem hiding this comment.
I think so, there could be a race-condition in the DRA plugin where is first adds the device requests and then updates the claim status
There was a problem hiding this comment.
I think the future value of this protection is unclear, and this function would be made more clear and maintainable if we enumerated through claim.Spec.Devices.Requests. Having an orthogonal check against claim.Status.Allocation inside the function itself, which seems not integrally related to the if claim.Spec.Devices.Requests[i].Name == deviceRequestAllocationResult.Request { evaluation, is a bit perplexing for naive maintainers (like me!)
There was a problem hiding this comment.
I guess I can remove it, or maybe move the check to before the function call, does that sound good?
There was a problem hiding this comment.
move the check to before the function call
that makes the most sense to me
There was a problem hiding this comment.
alright, should be a quick fix
There was a problem hiding this comment.
just noticed we already check the claim's deepcopy so it can just be removed entirely
| } | ||
|
|
||
| for _, deviceAlloc := range alloc.Devices.Results { | ||
| if deviceAlloc.AdminAccess != nil && *deviceAlloc.AdminAccess { |
There was a problem hiding this comment.
can shorten to if ptr.Deref(devAlloc.AdminAccess, false) { (have to import "k8s.io/utils/ptr" into this file as well)
|
I wasn't aware of |
|
/hold /lgtm @towca might have some more thoughts on this |
k8s-ci-robot
added
do-not-merge/hold
|
@MenD32 Sorry for the delay in reviews, I've been pretty swamped with them recently. I should be able to take a look early next week! |
Have you gotten a chance to look at this PR yet? (just a friendly ping :) ) |
|
@MenD32 Thanks for the ping and again apologies for the long reviews. I'm almost finished reviewing this one, I was just going to publish the comments but noticed that I completely misread a crucial detail and some of the comments need to be updated. I should have the review out tomorrow! |
cluster-autoscaler/simulator/dynamicresources/utils/utilization.go
Outdated
Show resolved
Hide resolved
cluster-autoscaler/simulator/dynamicresources/utils/utilization.go
Outdated
Show resolved
Hide resolved
cluster-autoscaler/simulator/dynamicresources/utils/utilization.go
Outdated
Show resolved
Hide resolved
cluster-autoscaler/simulator/dynamicresources/utils/utilization_test.go
Outdated
Show resolved
Hide resolved
cluster-autoscaler/simulator/dynamicresources/utils/resource_claims.go
Outdated
Show resolved
Hide resolved
cluster-autoscaler/simulator/dynamicresources/utils/sanitize.go
Outdated
Show resolved
Hide resolved
cluster-autoscaler/simulator/dynamicresources/utils/sanitize.go
Outdated
Show resolved
Hide resolved
k8s-ci-robot
removed
the
lgtm
|
@towca, I amended the PR, feel free to review the changes when you're available! |
cluster-autoscaler/simulator/dynamicresources/utils/utilization.go
Outdated
Show resolved
Hide resolved
cluster-autoscaler/simulator/dynamicresources/utils/utilization.go
Outdated
Show resolved
Hide resolved
cluster-autoscaler/simulator/dynamicresources/utils/resource_claims.go
Outdated
Show resolved
Hide resolved
cluster-autoscaler/simulator/dynamicresources/utils/sanitize.go
Outdated
Show resolved
Hide resolved
cluster-autoscaler/simulator/dynamicresources/utils/sanitize.go
Outdated
Show resolved
Hide resolved
cluster-autoscaler/simulator/dynamicresources/utils/sanitize.go
Outdated
Show resolved
Hide resolved
| }, | ||
| }, | ||
| { | ||
| testName: "allocated and reserved pod-owned claims are sanitized", |
There was a problem hiding this comment.
This test name is duplicated, could you distinguish it (only non-admin-access allocations are sanitized in this case)?
Sure! QQ: what is the difference between squashing manually and using the |
Signed-off-by: MenD32 <[email protected]> tests: added utilization test for adminaccess resourceclaims Signed-off-by: MenD32 <[email protected]> fix: ran gofmt Signed-off-by: MenD32 <[email protected]> fix: false positives on SanitizedPodResourceClaims Signed-off-by: MenD32 <[email protected]> fix: non admin results get removed from resourceclaim when requests is empty Signed-off-by: MenD32 <[email protected]> feat: Support DRA Admin Access Signed-off-by: MenD32 <[email protected]> refactor: moved device filtering to groupAllocatedDevices Signed-off-by: MenD32 <[email protected]> tests: added test of combined admin access and non-admin access utilization calculation Signed-off-by: MenD32 <[email protected]> tests: added test for admin access request sanitization Signed-off-by: MenD32 <[email protected]> feat: Support DRA Admin Access Signed-off-by: MenD32 <[email protected]> tests: added utilization test for adminaccess resourceclaims Signed-off-by: MenD32 <[email protected]> fix: ran gofmt Signed-off-by: MenD32 <[email protected]> fix: false positives on SanitizedPodResourceClaims Signed-off-by: MenD32 <[email protected]> fix: non admin results get removed from resourceclaim when requests is empty Signed-off-by: MenD32 <[email protected]> feat: Support DRA Admin Access Signed-off-by: MenD32 <[email protected]> refactor: moved device filtering to groupAllocatedDevices Signed-off-by: MenD32 <[email protected]> fix: removed ClaimWithoutAdminAccessRequests sanitization Signed-off-by: MenD32 <[email protected]> chore: migrated to v1 Signed-off-by: MenD32 <[email protected]> fix: changed methodology to using ptr.Deref Signed-off-by: MenD32 <[email protected]> fix: changed methodology to using ptr.Deref Signed-off-by: MenD32 <[email protected]> removed allocation status check from getDeviceResultRequest Signed-off-by: MenD32 <[email protected]> fix: added handling logic for daemonsets with non-adminAccess resource claims (and also style fixes) Signed-off-by: MenD32 <[email protected]> tests: changed duplicated test name Signed-off-by: MenD32 <[email protected]> style: changed variable name to hasRegularAllocations Signed-off-by: MenD32 <[email protected]>
MenD32
force-pushed
the
feat/dra-admin-access
branch
from
7046138 to
f7ffeb4
Compare
Probably not much, sorry I didn't notice the tide/squash label. You have more control over the commit message if you do it manually I guess, otherwise the default tide/squash behavior will just copy all the intermediate commit titles into the commit message. Thanks for the changes! /lgtm |
k8s-ci-robot
added
lgtm
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: jackfrancis, MenD32, towca The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
5 participants
What type of PR is this?
/kind feature
What this PR does / why we need it:
This is a part of Dynamic Resource Allocation (DRA) support in Cluster Autoscaler. ResourceClaims support the AdminAccess field which is used to allow cluster administrators to access devices already in use. This changes the CA's business logic by introducing the idea that "some resourceclaims don't reserve their allocated devices".
Which issue(s) this PR fixes:
Fixes #7685
Special notes for your reviewer:
Does this PR introduce a user-facing change?
Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.: