feat: RFC Implementation Supporting ODCR

[tvonhacht-apple]

This is a collaboration on implementing the RFC #5716 Supporting ODCRs

Progress

• NodePool
  • Requirements
    • CapacityType capacity-reservation
• EC2NodeClass
  • Capacity Reservation
    • Selector Terms
    • Status update
    • Provisioning
      • with available Capacity Reservation
      • fallback to On-Demand without available Capacity Reservation
    • Consolidation
      • feat: RFC Implementation Supporting AWS On-Demand Capacity Reservations kubernetes-sigs/karpenter#1263

Description

Supporting associating ODCR to EC2NodeClass

Add a new field capacityReservationSelectorTerms to EC2NodeClass

apiVersion: karpenter.k8s.aws/v1beta1
kind: EC2NodeClass
metadata:
  name: example-node-class
spec:
  capacityReservationSelectorTerms:
    - # The Availability Zone of the Capacity Reservation
      availabilityZone: String | None
      # The platform of operating system for which the Capacity Reservation reserves capacity
      id: String | None
      # The type of operating system for which the Capacity Reservation reserves capacity
      instancePlatform: String | None
      # The type of operating system for which the Capacity Reservation reserves capacity
      instanceType: String | None
      # The ID of the Amazon Web Services account that owns the Capacity Reservation
      ownerId: String | None
      # Tags is a map of key/value tags used to select subnets
      # Specifying '*' for a value selects all values for a given tag key.
      tags: Map | None
      # Indicates the tenancy of the Capacity Reservation.
      # A Capacity Reservation can have one of the following tenancy 'default' or 'dedicated':
      #   default - The Capacity Reservation is created on hardware that is shared with other Amazon Web Services accounts.
      #   dedicated - The Capacity Reservation is created on single-tenant hardware that is dedicated to a single Amazon Web Services account.
      tenancy: String | None

This follows closely (does not implement all fields) how EC2 DescribeCapacityReservations can filter.

Karpenter will perform validation against the spec to ensure there isn't any violation prior to creating the LaunchTemplates.

Supporting new capacity-type capacity-reservation

Adding a new karpenter.sh/capacity-type: capacity-reservation allows us to have a EC2NodeClass that does not automatically fallback to on-demand if capacity-reservation is not available.

• only allow capacity-reservations

apiVersion: karpenter.sh/v1beta1
kind: NodePool
spec:
  template:
    spec:
      requirements:
      - key: karpenter.sh/capacity-type
        operator: In
        values:
        - capacity-reservation

• capacity-reservation-fleet (falling back to on-demand if capacity-reservation not available)

apiVersion: karpenter.sh/v1beta1
kind: NodePool
spec:
  template:
    spec:
      requirements:
      - key: karpenter.sh/capacity-type
        operator: In
        values:
        - capacity-reservation
        - on-demand

How was this change tested?

Does this change impact docs?

• Yes, PR includes docs updates
• Yes, issue opened: #
• No

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

[netlify]

✅ Deploy Preview for karpenter-docs-prod canceled.

Name	Link
🔨 Latest commit	5471bc4
🔍 Latest deploy log	https://app.netlify.com/sites/karpenter-docs-prod/deploys/664c35ed65311e0008595635

[tvonhacht-apple]

I think we can handle this within the if below, we dont need to create this variable beforehand

[jonathan-innis]

If we already get an ICE error back, we shouldn't have to wrap the error again, when we do a check down the line, it should be able to identify that the error is an ICE error, so long as one of the wrapped errors is.

[jonathan-innis]

If we select a capacity reservation NodeClaim, should we just best effort the NodeClaim launch here and then have it get deleted with an ICE error from Fleet if there isn't any available capacity. The next iteration of GetInstanceTypes should have the updated capacity reservation availability so we shouldn't try and launch with the same offering again on the second attempt

[jonathan-innis]

lo.Filter?

[jonathan-innis]

When we group paramsToInstanceTypes above should we also group these with the capacity reservations in mind? This would allow us to keep the same logic on L178 where we iterate through the params and instance types, and I think this may work better as well since there should only be specific instance types that are valid for a given capacity reservation

[jonathan-innis]

Suggested change

	"Action": "eks:DescribeCapacityReservations",
	"Action": "ec2:DescribeCapacityReservations",

[jonathan-innis]

When we return this type of ICE error, should we short-circuit and update the capacity reservation that we launched with in-place so we don't have to wait for another iteration of the capacity reservation polling to update the instance availability.

If we didn't want to directly update this to 0, we could also use this as a trigger to re-call DescribeCapacityReservations since we know that something has changed since we made the launch decision originally

[jonathan-innis]

What is instance match criteria?

[jonathan-innis]

What's the instance platform?

[jonathan-innis]

Do we need to add OwnerID here?

[jonathan-innis]

How many of these selector fields do we think we truly need for the initial run? We can always add more fields later but the second we introduce something, we're stuck with it. High-level, I can see tags, id, and instance type making sense. Do we think the other fields would be commonly used?