Set GOMAXPROCS and GOMEMLIMIT environment variables
#6977
Conversation
…r resources Signed-off-by: Jesper Noordsij <jesper@sslleiden.nl>
cert-manager-prow
bot
added
release-note
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
cert-manager-prow
bot
added
needs-kind
|
Hi @jnoordsij. Thanks for your PR. I'm waiting for a cert-manager member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
cert-manager-prow
bot
added
the
size/M
|
@wallrj FYI |
There was a problem hiding this comment.
Hey, appreciate you getting involved with the project!
I don't think we can merge this as is, and I think to merge something like this we'd need to discuss further about how to do this safely and in a way that won't lead to confusing outcomes. I'd encourage you to attend one of our meetings if you want to discuss this!
| {{- if (.Values.resources.limits).cpu }} | ||
| - name: GOMAXPROCS | ||
| valueFrom: | ||
| resourceFieldRef: | ||
| resource: limits.cpu | ||
| {{- end }} | ||
| {{- if (.Values.resources.limits).memory }} | ||
| - name: GOMEMLIMIT | ||
| valueFrom: | ||
| resourceFieldRef: | ||
| resource: limits.memory | ||
| {{- end }} |
There was a problem hiding this comment.
suggestion: A valid value for limits.cpu would be 100m. That value wouldn't be valid for GOMAXPROCS as far as I can tell, and I think it'd be ignored.
Similarly, a valid amount of memory in limits.memory would be 1e6 or 120M, and both of those would be invalid entries for GOMEMLIMIT (this says that supported suffixes are "B, KiB, MiB, GiB, and TiB").
I don't think we can generally apply the values of resource limits like this. This won't have the expected effect for a lot of totally valid resource limits.
It's maybe possible to construct some Helm function to convert resource limits to GOMAXPROCS / GOMEMLIMIT, but I think that'd be hard to do and a pain to debug. My instinct is that it's probably not worth the effort to add this - what do you think?
There was a problem hiding this comment.
It might actually work: https://billglover.me/2022/09/14/use-the-kubernetes-downwards-api-to-set-gomemlimit/
That article seems to suggest that the downwards API actually returns the computed int value.
There was a problem hiding this comment.
Then this PR needs confirmation, tests and documentation of that 😁 That article might be worth adding to the PR description but an article isn't really enough to get this change over the line.
Specifically, I'd like to see examples of what GOMAXPROCS is set to if my CPU limits are 0.01, 1m or 2.5 as initial test cases. I'd also like to see what GOMEMLIMIT is set to if I specify 1e6, or 1KB as memory limits.
There was a problem hiding this comment.
The resourceFieldRef is a very specific Kubernetes directive that is created specifically for passing resource-related values, which rounds up the CPU value to the nearest whole number (e.g. 250m to 1) and passes the memory as a numeric value; so 64Mi would result in the environment variable being set to 67108864. This by design makes it completely compatible with Go's API.
An example is documented within Kubernetes documentation itself: https://kubernetes.io/docs/tasks/inject-data-application/environment-variable-expose-pod-information/#use-container-fields-as-values-for-environment-variables.
Would referencing to Kubernetes documentation suffice here, given that this just basically ensures the correct behavior by design? And if so, what would be a suitable please to add this reference?
There was a problem hiding this comment.
Thank you for the link!
Honestly, having the docs linked in this PR is probably enough. I don't think we need to complicate the helm chart with a link, and anyone that cares will be able to git blame and find this PR easily enough.
I'll enable testing for this PR 👌
|
/ok-to-test |
cert-manager-prow
bot
added
ok-to-test
and removed
needs-ok-to-test
SgtCoDFish
added
kind/feature
Pull Request Motivation
Set
GOMAXPROCSandGOMEMLIMITenvironment variables based on container resources.Inspired by traefik/traefik-helm-chart#1029, this should reduce potential CPU throttling and OOMKills on containers.
Kind
/kind feature
Release Note