Skip to content

Bug 1822296: Expose raft (nb-db/sb-db) election-timer and ovn-controller inactivit… #615

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
openshift-merge-robot merged 4 commits into from
Jun 25, 2020
Merged

Bug 1822296: Expose raft (nb-db/sb-db) election-timer and ovn-controller inactivit… #615

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
b1ea406
Expose raft (nb-db/sb-db) election-timer and ovn-controller inactivit…
vishnoianil Apr 29, 2020
83d8b0a
Fix review comment - Remove the test OVN_IMAGE url
vishnoianil May 7, 2020
6a0395c
Fix review comments:
vishnoianil May 7, 2020
9dfe317
Fix CI failures
vishnoianil Jun 11, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -106,5 +106,7 @@ Session.vim
!.vscode/extensions.json
.history

### GoLand files ###
.idea

# End of https://www.gitignore.io/api/go,vim,emacs,visualstudiocode
122 changes: 121 additions & 1 deletion bindata/network/ovn-kubernetes/ovnkube-master.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -151,9 +151,12 @@ spec:
- /bin/bash
- -c
- |
set -x
MASTER_IP="{{.OVN_MASTER_IP}}"
if [[ "${K8S_NODE_IP}" == "${MASTER_IP}" ]]; then
echo "$(date -Iseconds) - nbdb - postStart - waiting for master to be selected"

# set the connection and disable inactivity probe
retries=0
while ! ovn-nbctl --no-leader-only -t 5 set-connection pssl:{{.OVN_NB_PORT}}{{.LISTEN_DUAL_STACK}} -- set connection . inactivity_probe=60000; do
(( retries += 1 ))
Expand All @@ -164,6 +167,61 @@ spec:
sleep 2
done
fi

election_timer="${OVN_NB_RAFT_ELECTION_TIMER}"
Copy link
Contributor

@squeed squeed May 26, 2020
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should this all block ovn-kube master process? Would it make sense for it to be a separate container? It could just apply changes as necessary.

Copy link
Contributor Author

@vishnoianil vishnoianil May 27, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think setting this timer while the master pods startup will give us bit more deterministic behavior. If user start cluster with high number of worker nodes, we can get into the death loop of raft partition.
Also i believe the general guideline is that we don't want to allow user to change this bahavior dynamically.

Copy link
Contributor

@squeed squeed May 27, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Right, what I'm saying is that this should be a separate container in the master pod, rather than gating the master container.

Copy link
Contributor Author

@vishnoianil vishnoianil Jun 2, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If we think of allowing user to change this value dynamically, i think having separate container makes sense to me. But if it's one time startup config, there is nothing much for this container to do, it will come up, set the value and die, and not sure CNO will be happy with that.

echo "Setting nb-db raft election timer to ${election_timer} ms"
retries=0
while current_election_timer=$(ovs-appctl -t /var/run/ovn/ovnnb_db.ctl cluster/status OVN_Northbound 2>/dev/null \
| grep -oP '(?<=Election timer:\s)[[:digit:]]+'); do
if [[ -z "${current_election_timer}" ]]; then
(( retries += 1 ))
if [[ "${retries}" -gt 10 ]]; then
echo "Failed to get current nb-db raft election timer value after multiple attempts. Exiting..."
exit 1
fi
sleep 2
else
break
fi
done

if [[ ${election_timer} -ne ${current_election_timer} ]]; then
retries=0
while is_candidate=$(ovs-appctl -t /var/run/ovn/ovnnb_db.ctl cluster/status OVN_Northbound 2>/dev/null \
| grep "Role: candidate" ); do
if [[ ! -z "${is_candidate}" ]]; then
(( retries += 1 ))
if [[ "${retries}" -gt 10 ]]; then
echo "Cluster node (nb-db raft) is in candidate role for prolonged time. Continuing..."
fi
sleep 2
else
break
fi
done

is_leader=$(ovs-appctl -t /var/run/ovn/ovnnb_db.ctl cluster/status OVN_Northbound 2>/dev/null \
| grep "Role: leader")
if [[ ! -z "${is_leader}" ]]; then
while [[ ${current_election_timer} != ${election_timer} ]]; do
max_election_timer=$((${current_election_timer} * 2))
if [[ ${election_timer} -le ${max_election_timer} ]]; then
if ! ovs-appctl -t /var/run/ovn/ovnnb_db.ctl cluster/change-election-timer OVN_Northbound ${election_timer}; then
echo "Failed to set nb-db raft election timer ${election_timer}. Exiting..."
exit 2
fi
current_election_timer=${election_timer}
else
if ! ovs-appctl -t /var/run/ovn/ovnnb_db.ctl cluster/change-election-timer OVN_Northbound ${max_election_timer}; then
echo "Failed to set nb-db raft election timer ${max_election_timer}. Exiting..."
exit 2
fi
current_election_timer=${max_election_timer}
fi
done
fi
fi

readinessProbe:
initialDelaySeconds: 30
timeoutSeconds: 5
Expand All @@ -177,6 +235,8 @@ spec:
env:
- name: OVN_LOG_LEVEL
value: info
- name: OVN_NB_RAFT_ELECTION_TIMER
value: "{{.OVN_NB_RAFT_ELECTION_TIMER}}"
- name: K8S_NODE_IP
valueFrom:
fieldRef:
Expand Down Expand Up @@ -216,7 +276,7 @@ spec:
- /bin/bash
- -c
- |
set -xe
set -x
if [[ -f /env/_master ]]; then
set -o allexport
source /env/_master
Expand Down Expand Up @@ -261,9 +321,12 @@ spec:
- /bin/bash
- -c
- |
set -x
MASTER_IP="{{.OVN_MASTER_IP}}"
if [[ "${K8S_NODE_IP}" == "${MASTER_IP}" ]]; then
echo "$(date -Iseconds) - sdb - postStart - waiting for master to be selected"

# set the connection and disable inactivity probe
retries=0
while ! ovn-sbctl --no-leader-only -t 5 set-connection pssl:{{.OVN_SB_PORT}}{{.LISTEN_DUAL_STACK}} -- set connection . inactivity_probe=60000; do
(( retries += 1 ))
Expand All @@ -274,6 +337,61 @@ spec:
sleep 2
done
fi

election_timer="${OVN_SB_RAFT_ELECTION_TIMER}"
echo "Setting sb-db raft election timer to ${election_timer} ms"
retries=0
while current_election_timer=$(ovs-appctl -t /var/run/ovn/ovnsb_db.ctl cluster/status OVN_Southbound 2>/dev/null \
| grep -oP '(?<=Election timer:\s)[[:digit:]]+'); do
if [[ -z "${current_election_timer}" ]]; then
(( retries += 1 ))
if [[ "${retries}" -gt 10 ]]; then
echo "Failed to get current sb-db raft election timer value after multiple attempts. Exiting..."
exit 1
fi
sleep 2
else
break
fi
done

if [[ ${election_timer} -ne ${current_election_timer} ]]; then
retries=0
while is_candidate=$(ovs-appctl -t /var/run/ovn/ovnsb_db.ctl cluster/status OVN_Southbound 2>/dev/null \
| grep "Role: candidate" ); do
if [[ ! -z "${is_candidate}" ]]; then
(( retries += 1 ))
if [[ "${retries}" -gt 10 ]]; then
echo "Cluster node (sb-db raft) is in candidate role for prolonged time. Continuing..."
fi
sleep 2
else
break
fi
done

is_leader=$(ovs-appctl -t /var/run/ovn/ovnsb_db.ctl cluster/status OVN_Southbound 2>/dev/null \
| grep "Role: leader")
if [[ ! -z "${is_leader}" ]]; then
while [[ ${current_election_timer} != ${election_timer} ]]; do
max_election_timer=$((${current_election_timer} * 2))
if [[ ${election_timer} -le ${max_election_timer} ]]; then
if ! ovs-appctl -t /var/run/ovn/ovnsb_db.ctl cluster/change-election-timer OVN_Southbound ${election_timer}; then
echo "Failed to set sb-db raft election timer ${election_timer}. Exiting..."
exit 2
fi
current_election_timer=${election_timer}
else
if ! ovs-appctl -t /var/run/ovn/ovnsb_db.ctl cluster/change-election-timer OVN_Southbound ${max_election_timer}; then
echo "Failed to set sb-db raft election timer ${max_election_timer}. Exiting..."
exit 2
fi
current_election_timer=${max_election_timer}
fi
done
fi
fi

readinessProbe:
initialDelaySeconds: 30
timeoutSeconds: 5
Expand All @@ -287,6 +405,8 @@ spec:
env:
- name: OVN_LOG_LEVEL
value: info
- name: OVN_SB_RAFT_ELECTION_TIMER
value: "{{.OVN_SB_RAFT_ELECTION_TIMER}}"
- name: K8S_NODE_IP
valueFrom:
fieldRef:
Expand Down
3 changes: 3 additions & 0 deletions bindata/network/ovn-kubernetes/ovnkube-node.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -134,6 +134,7 @@ spec:
--sb-client-cacert /ovn-ca/ca-bundle.crt \
--config-file=/run/ovnkube-config/ovnkube.conf \
--loglevel "${OVN_KUBE_LOG_LEVEL}" \
--inactivity-probe="${OVN_CONTROLLER_INACTIVITY_PROBE}"
${hybrid_overlay_flags} \
--metrics-bind-address "0.0.0.0:9103"
env:
Expand All @@ -142,6 +143,8 @@ spec:
value: "{{.KUBERNETES_SERVICE_PORT}}"
- name: KUBERNETES_SERVICE_HOST
value: "{{.KUBERNETES_SERVICE_HOST}}"
- name: OVN_CONTROLLER_INACTIVITY_PROBE
value: "{{.OVN_CONTROLLER_INACTIVITY_PROBE}}"
- name: OVN_KUBE_LOG_LEVEL
value: "4"
- name: K8S_NODE
Expand Down
6 changes: 6 additions & 0 deletions manifests/0000_70_cluster-network-operator_03_deployment.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -45,6 +45,12 @@ spec:
value: "quay.io/openshift/origin-multus-route-override-cni:4.4"
- name: OVN_IMAGE
value: "quay.io/openshift/origin-ovn-kubernetes:4.3"
- name: OVN_NB_RAFT_ELECTION_TIMER
Copy link
Contributor

@squeed squeed May 26, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This should be added the operator configuration CRD, which is defined here: https://github.com/openshift/api/blob/master/operator/v1/types_network.go#L37

Copy link
Contributor

@squeed squeed May 26, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

However, that is a long process, and won't be in in time for 4.5. The problem is that these fields will be instantly overwritten by the CVO.

Copy link
Contributor Author

@vishnoianil vishnoianil May 27, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Personally i don't like this PR as well. Mainly because the method that OVN provides us to set the election-timer is not very operation friendly. I already raised a RFE for OVN team to improve this and take election-timer as a parameter to ovn-ctl. That will make the entire logic pretty simple and we can write more stable logic to set the timer. So i am hoping that we will get rid of this logic, once OVN provides us a better way to set this timer.

Copy link
Contributor

@squeed squeed May 27, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

That makes sense. I'm arguing that this value should either be hard-coded in the code, or available as a configuration knob.

Copy link
Contributor Author

@vishnoianil vishnoianil Jun 2, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I am more in the favor of having it as a configuration knob, because for raft based implementation, choosing approximately right election-timer depends on the workload.

Copy link
Contributor

@dcbw dcbw Jun 5, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I agree with @squeed that it should be hard-coded for now, until we have a better idea whether it acutally does need to be changed. It should not be user-visible configuration at any rate, especially not in the API.

Copy link
Contributor Author

@vishnoianil vishnoianil Jun 8, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@dcbw In general we want to keep these numbers as minimal as possible. Currently these numbers are set for 200 nodes (for 50 pods per node workload), so the moment number of nodes increases, you will have to increase it, there is no question about it. We can hardcode it for 500 nodes as of now (60 seconds-- frankly it's very high), and live with it until and unless something else comes up that require it to change it.
For election-timer i don't have strong opinion against hardcoding, because you can change this value anyways directly on the pod if needed.
So for hardcoding what approach do we need to take ? using operator CRD? is it okay to make operator CRD to be aware of SB DB deployment model (raft or ha)?

value: "5000"
- name: OVN_SB_RAFT_ELECTION_TIMER
value: "5000"
- name: OVN_CONTROLLER_INACTIVITY_PROBE
value: "30000"
- name: KURYR_DAEMON_IMAGE
value: "quay.io/openshift/origin-kuryr-cni:4.3"
- name: KURYR_CONTROLLER_IMAGE
Expand Down
3 changes: 3 additions & 0 deletions pkg/network/ovn_kubernetes.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -58,6 +58,9 @@ func renderOVNKubernetes(conf *operv1.NetworkSpec, bootstrapResult *bootstrap.Bo
data.Data["OVN_SB_PORT"] = OVN_SB_PORT
data.Data["OVN_NB_RAFT_PORT"] = OVN_NB_RAFT_PORT
data.Data["OVN_SB_RAFT_PORT"] = OVN_SB_RAFT_PORT
data.Data["OVN_NB_RAFT_ELECTION_TIMER"] = os.Getenv("OVN_NB_RAFT_ELECTION_TIMER")
data.Data["OVN_SB_RAFT_ELECTION_TIMER"] = os.Getenv("OVN_SB_RAFT_ELECTION_TIMER")
data.Data["OVN_CONTROLLER_INACTIVITY_PROBE"] = os.Getenv("OVN_CONTROLLER_INACTIVITY_PROBE")
data.Data["OVN_NB_DB_LIST"] = dbList(bootstrapResult.OVN.MasterIPs, OVN_NB_PORT)
data.Data["OVN_SB_DB_LIST"] = dbList(bootstrapResult.OVN.MasterIPs, OVN_SB_PORT)
data.Data["OVN_MASTER_IP"] = bootstrapResult.OVN.MasterIPs[0]
Expand Down