track volume mounts per node

[tzneal]

1. Issue, if available:
Fixes #919 and #1888

2. Description of changes:

track volume mounts per node

Assume nodes can support infinite volumes until they launch. Once the CSI driver is
reporting the current number of mountable volumes, use that value which may require
launching more nodes.

3. How was this change tested?

Unit testing & deployed to EKS with my EBS CSI driver configured with --volume-attach-limit=3. When the driver created the CSINode Karpenter launched another node for the remaining volumes.

4. Does this change impact docs?

• Yes, PR includes docs updates
• Yes, issue opened: link to issue
• No

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

[netlify]

✅ Deploy Preview for karpenter-docs-prod canceled.

Name	Link
🔨 Latest commit	3a77cca
🔍 Latest deploy log	https://app.netlify.com/sites/karpenter-docs-prod/deploys/62b128027561680009b904a0

[ellistarn]

Can this be expressed via Resources()?
From a real node:

    capacity:
      attachable-volumes-aws-ebs: "25"
      cpu: "8"
      ephemeral-storage: 83873772Ki
      hugepages-1Gi: "0"
      hugepages-2Mi: "0"
      memory: 32521312Ki
      pods: "58"

[tzneal]

See below, that number is incorrect.

[ellistarn]

Does it not make sense to store the entire state.Node if we're using multiple piece of data from it?

[tzneal]

A few of the pieces we use are intentionally deep copied so we can modify them.

[ellistarn]

We call this variable mountedVolumeCount and volumesPerNode in different parts of the code. Can we simplify to a single concept to minimize cognitive load for the reader? Perhaps just volumeCount with "mounted" and "node" implied.

[tzneal]

The results of Validate() is called mountedVolumeCount both times it's used. This is the number of volumes that would be mounted on the node if the pod were added. I think renaming this to volumeCount is slightly less clear. I renamed volumesPerNode to mountedVolumeCount.

[ellistarn]

Why are we using a different context object here? How does this differ from ctx on line 103?

[tzneal]

It just wasn't passed down and was only used for logging. Modified to pass it through add().

[ellistarn]

Why not pass the context in through the function arguments like we do everywhere else? IIUC, go style recommends passing context through call chains and avoiding setting as an object property. There are a few cases (e.g. provisioner.go) where this pattern must be violated, since it's not triggered by anything, but this isn't the case here.

[tzneal]

Modified, I started this code in cluster state which had a stored context already for the same reason provisioner does.

[ellistarn]

I'm having a hard time reading this. What's c stand for?

[tzneal]

collection, just renamed it to volumes.

[ellistarn]

likewise

Suggested change

	func NewVolumeLimits(ctx context.Context, kubeClient client.Client) *VolumeLimits {
	func NewVolumeLimits(ctx context.Context, kubeClient client.Client) VolumeLimits {

[tzneal]

VolumeLimits isn't a map type, it's a struct.

[diranged]

Am I right that AWS exposes no API for this?

[diranged]

This default only makes sense for Nitro instances. Obviously that's the majority of instances now ... but this might behave funny on an older non-Nitro instance.

[diranged]

Am I missing where this is used?

[diranged]

Just a thought here... rather than hard-coding this list, what if Karpenter just used the CSINode data for each node in the cluster to decide whether or not an already-running node was really eligible to launch a new pod?

apiVersion: storage.k8s.io/v1
kind: CSINode
metadata:
  creationTimestamp: "2022-06-14T17:13:09Z"
  name: ip-100-64-1-228.us-west-2.compute.internal
  ownerReferences:
  - apiVersion: v1
    kind: Node
    name: ip-100-64-1-228.us-west-2.compute.internal
    uid: 8126d39d-afa1-4967-8b5d-7d181e103545
  resourceVersion: "693807159"
  uid: 95d3d0d2-f92a-47ec-b0df-4abfd33ea3da
spec:
  drivers:
  - name: efs.csi.aws.com
    nodeID: i-01b557d4a5dc348ab
    topologyKeys: null
  - allocatable:
      count: 15
    name: ebs.csi.aws.com
    nodeID: i-01b557d4a5dc348ab
    topologyKeys:
    - topology.ebs.csi.aws.com/zone

Right now, as I understand it, Karpenter tries to replicate much of the kube-scheduler scheduling logic to determine whether not a Pod is going to be schedulable against the current cluster hardware or not. When Karpenter sees a Pod in status: Pending, it could go through its normal logic loop... but as its iterating over the nodes to determine whether or not the Pod should be schedulable, it could also take into account the allocatable.count values from the CSINodes API.

I guess the disadvantage of this model is that if you launch a large number of pods all at once, Karpenter might under-or-over-launch nodes because it still needs some concept of "default number of volumes that can be mounted". So perhaps you'd still need the ebsVolumeAttachLimit setting.

The advantage though is that you don't have to guess what the volume limit is for existing hosts, because it is exposed via the API.

[tzneal]

The downside is that we'll have slower provisioning in the event your pods hit the volume limit, but it probably doesn't matter much as its somewhat unlikely to hit the volume limits. Looking into it.

[ellistarn]

Optional: If you're not familiar with multierr.Combine. It can help you achieve declarative, functional code.

return &Node{
		Node:          node,
		HostPortUsage: NewHostPortUsage(),
		HostPortUsage: scheduling.NewHostPortUsage(),
		VolumeUsage:   scheduling.NewVolumeLimits(c.kubeClient),
		VolumeLimits:  scheduling.VolumeCount{},
		podRequests:   map[types.NamespacedName]v1.ResourceList{},
}, multierr.Combine(
  c.populateProvisioner(ctx, node, n)
  c.populateVolumeLimits(ctx, node, n),
  c.populateResourceRequests(ctx, node, n),
)

[ellistarn]

Is there a reason we're not handling this error and bubbling it up?

[tzneal]

If we can't find the instance type, it only matters for not ready nodes. We then treat them as having no capacity, once kubelet is running, not finding an instance type means something weird has happened (instance type is no longer reported by EC2 API or some other odd error), but it doesn't affect anything so we just log it.

[ellistarn]

If an error occurs, will we inadvertently set c.nodes[node.Name] to nil? This will cause it to show up when looping over the nodes.

[tzneal]

Previously newNode() always returned a node object, even if it failed to populate some portion of it. I could see it going both ways as some semi-failure modes aren't real failures in most cases (e.g. unable to read the CSINode), but for now I've modified it to return nil in the event of error for consistency sake.

[ellistarn]

same re: setting if err != nil

[ellistarn]

I'm wondering if we should do a similar error propagation pattern here. This will bubble up to adding a pod to a node, which shouldn't block other pods.

[dewjam]

This might be a silly question, but do we no longer need the PersistentVolumeClaim controller given we're no longer pre-binding pods?

[dewjam]

This might be a silly question, but do we no longer need the PersistentVolumeClaim controller given we're no longer pre-binding pods?

Discussed with @tzneal offline and the short answer is "yes".

[dewjam]

LGTM

[ellistarn]

Should we update if there's an error?

[ellistarn]

Consider just checking "" and not making options.Provisioner a pointer to avoid type juggling.