Kubernetes Control Plane Charm

limit the number of auth-webhook worker processes

Bug #1904747 reported by Kevin W Monroe on 2020-11-18

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Kubernetes Control Plane Charm	Fix Released	High	Kevin W Monroe	Kubernetes Control Plane Charm 1.20

Bug Description

Gunicorn recommends setting (2*cores)+1 as the number of workers for an application:

https://docs.gunicorn.org/en/stable/design.html#how-many-workers

It also says that 4-12 workers should be enough to handle 1000s of reqs per second. K8s master currently does not put a ceiling on the number of workers it spawns, so a 64-core system will fire up 129 workers. This is overkill.

Kevin W Monroe (kwmonroe) on 2020-11-18

Changed in charm-kubernetes-master:
status:	New → In Progress
assignee:	nobody → Kevin W Monroe (kwmonroe)
milestone:	none → 1.20

Revision history for this message

Kevin W Monroe (kwmonroe) wrote on 2020-11-18:

PR for review:

https://github.com/charmed-kubernetes/charm-kubernetes-master/pull/130

tags:

added: review-needed

Kevin W Monroe (kwmonroe) on 2020-11-19

Changed in charm-kubernetes-master:
importance:	Undecided → High
status:	In Progress → Fix Committed
tags:	removed: review-needed

Revision history for this message

Peter Jose De Sousa (pjds) wrote on 2020-12-15:

subscribing field high as this is affecting a kubeflow deployment

Revision history for this message

Chris Sanders (chris.sanders) wrote on 2020-12-15:

Peter if you are experience a definitive impact to the deployment please provide logs or some description of that effect. This is landing in 1.20 either way, but as far as I'm aware this is a matter of preventative adjustment to avoid issues.

Revision history for this message

Peter Jose De Sousa (pjds) wrote on 2020-12-15:

Adding some context to how this bug is exhibiting itself on a deployment.

We have machines with 49 threads per core with 2 cores per machine (resulting in 97 gunicorn workers per master) - this is exhibiting itself with quite persistent timeouts on kubectl or internal calls to etcd whereby we see 'context exceeded'. When the number was reduced the timeouts were also reduced significantly.

Chris Sanders (chris.sanders) on 2020-12-16

Changed in charm-kubernetes-master:
status:	Fix Committed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.