Helps you resize pods created by a DaemonSet depending on the amount of allocatable resources present on the node.
-
Add the
node-specific-sizing.manomano.tech/enabled: "true"label any pod you'd like to size depending on the node. Only the"true"string works. For DaemonSets - the intended use-case - this should therefore go inspec: metadata: labels: -
Override pod CPU/Memory Request/Limit based on node resources using the following annotations.
node-specific-sizing.manomano.tech/request-cpu-fraction: 0.1node-specific-sizing.manomano.tech/limit-cpu-fraction: 0.1node-specific-sizing.manomano.tech/request-memory-fraction: 0.1node-specific-sizing.manomano.tech/limit-memory-fraction: 0.1
-
Optionally, set up appropriate minimums and maximums.
node-specific-sizing.manomano.tech/minimum-cpu: 50mnode-specific-sizing.manomano.tech/maximum-cpu: 4node-specific-sizing.manomano.tech/minimum-memory: 50Mnode-specific-sizing.manomano.tech/maximum-memory: 4G- NOTE: Minimums and maximums are applied to both resource and limits. We don't see the need to add different minimums for requests in limits in practice. You may challenge that choice by opening an issue.
- NOTE: Minimums and maximums are to be understood per-pod and not per-container. See resource-sizing algorithm for details.
-
Optionally, exclude some containers from dynamic sizing.
node-specific-sizing.manomano.tech/exclude-containers: istio-init,istio-proxy- NOT IMPLEMENTED
-
Take care of the following
- In some instances, if limit ends up being below request it will be adjusted to be equal to the request.
- WARNING: We have not tested all cases of partial configuration or weird mish-mashes.
- You're safer defining both requests and limits, or just requests if the underlying DaemonSet does not have limits.
- Having some containers define a request or limit while others do not is unsupported.
On principle, the node-specific allocation is per-pod and not per-container - this is to lower the amount of annotations that we found tedious to maintain.
To achieve this, the updated container requests and limits (from here on out, "tunables") are derived from the pod ones as follows:
- For each container in the pod, and for each tunable, compute the tunable's relative value per container.
For any given container,
relative_tunable = container_tunable / (sum(container_tunables) - sum(excluded_container_tunables)) - Derive a
pod_tunable_budget = allocatable_tunable_on_node * configured_pod_proportion - sum(excluded_container_tunables). This represents the resources that will be given to the pod. - Clamp
pod_tunable_budgetif minimums and/or maximums are set for that tunable. - Finally,
new_absolute_tunable = pod_tunable_budget * relative_tunablespreads the budget between containers.
Exclusions and clamping notwithstanding, the requests/limits proportions between the different containers do not vary with node specific sizing.
Here's a little example of figuring out relative_tunables for memory requests (MR), memory limits (ML), cpu requests (CR) and cpu limits (CL):
Memory Compute
MR ML CR CL
------------------
C1| 1 2 1 2 //
C2| 2 2 2 2 // <- Container absolute resource requirements
C3| 3 5 3 5 // Input: container_tunable above
T | 6 9 6 9 // <- Pod total absolute resource requirements
// Intermediate result: sum(container_tunable_values)
PC1| .16 .22 .16 .22 //
PC2| .33 .22 .33 .22 // <- Container relative resource requirements
PC3| .50 .55 .50 .55 // Output: relative_tunables
make buildandmake docker-buildmake deployto setup manifests in current contextbin/playground.shto setup a K3D playground cluster with a toy daemonset with annotations setbin/dev_toggle.shto reconfigure the K3D playground cluster so that it can reach the webhook server on your workstation, as well as extracting certs from the cluster. This allows you to use the IDE of your choice and try things directly.