Ephemeral storage monitoring via filesystem quotas

[RobertKrawitz]

Use XFS-style quotas to monitor ephemeral storage consumption where possible. Reference https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/0030-20180906-quotas-for-ephemeral-storage.md

kubelet now allows use of XFS quotas (on XFS and suitably configured ext4fs filesystems) to monitor storage consumption for ephemeral storage (currently for emptydir volumes only).  This method of monitoring consumption is faster and more accurate than the old method of walking the filesystem tree.  It does not enforce limits, only monitors consumption.  To utilize this functionality, you must set the feature  gate `LocalStorageCapacityIsolationFSQuotaMonitoring=true`. For ext4fs filesystems, you must create the
filesystem with `mkfs.ext4 -O project <block_device>` and run `tune2fs -Q prjquota `block device`; XFS
filesystems need no additional preparation.  The filesystem must be mounted with option `project` in
`/etc/fstab`.  If your primary partition is the root filesystem, you must also add `rootflags=pquota` to your
GRUB config file.

[RobertKrawitz]

/cc @dashpole

Could you look at this and approve as appropriate? Thanks!

[RobertKrawitz]

@dashpole, could you /lgtm, please?

[dashpole]

/lgtm

[RobertKrawitz]

/test pull-kubernetes-e2e-gce

[RobertKrawitz]

/retest

[RobertKrawitz]

ping @jingxu97

[dashpole]

I spoke with @jingxu97 offline, who took another pass and said it looked good.

[RobertKrawitz]

Thanks @dashpole

ping @derekwaynecarr

[derekwaynecarr]

@dashpole thanks.

/hold cancel
/approve

[RobertKrawitz]

/assign @childsb @luxas

@childsb @luxas can you look at this -- we're trying to get this into 1.15. Thanks!

[dashpole]

/assign @msau42
for approvals in /pkg/volume and /test/utils

[saad-ali]

/assign

[saad-ali]

/approve
/hold to give you a chance to address any feedback

[saad-ali]

Do we not have SizeLimits for other "ephermeral volume types", e.g. for SecretVolume, ConfigMapVolume, etc.?

[RobertKrawitz]

This project only applies to EmptyDir volumes (and potentially anything else covered by local ephemeral storage, but there are no plans to cover other volume types under that umbrella).

Local ephemeral storage is defined to be EmptyDir volumes, writable layers, and logs. Writable layers and logs aren't volumes and would have to be covered through cadvisor. Secrets and configmaps are not defined to be local ephemeral storage.

[saad-ali]

Something to keep in mind, if this will be supported for other ephemeral volume types (e.g. SecretVolumes, ConfigMapVolumes, etc.) in the future, those volume types do periodic "remounting" to ensure the data is fresh. Might be worth thinking through what happens in that case.

[RobertKrawitz]

See above.

[saad-ali]

Do we have to worry about accumulating quota IDs in these error scenarios? Meaning if this happens can the accumulation cause other parts of the system to stop functioning?

[saad-ali]

You don't have to add this argument here. It should be available via the emptyDir data structure in the SetUp method

[RobertKrawitz]

If you want, I can remove it; I agree it's not really needed here.

[RobertKrawitz]

As for accumulating quotas, it's not impossible that something could go wrong with the teardown and leave the quota in place applying to nothing. It is possible to remove quotas later if need be. We leave records in /etc/projects and /etc/projid with clearly defined names to make it possible to trace back to Kubernetes.

[saad-ali]

If you want, I can remove it; I agree it's not really needed here.

If you have time go for it, happy to reapply lgtm/approval. If not, no big deal.

[saad-ali]

nit: pkg/volume/util/quota/ seems like a very generic name. Worth being more specific?

[RobertKrawitz]

It could potentially be fsquota or the like, if you feel strongly about it.

[saad-ali]

Slight concern about confusing readers. But don't feel strongly. We could rename in the future if there is a collision.

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: derekwaynecarr, RobertKrawitz, saad-ali

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• pkg/features/OWNERS [derekwaynecarr,saad-ali]
• pkg/kubelet/OWNERS [derekwaynecarr]
• pkg/volume/OWNERS [saad-ali]
• test/e2e_node/OWNERS [derekwaynecarr,saad-ali]
• test/utils/image/OWNERS [saad-ali]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[saad-ali]

/hold
To give you a chance to address any feedback

[RobertKrawitz]

@saad-ali please let me know whether you deem any of the changes you discussed to be critical here.

[RobertKrawitz]

/hold cancel

On further thought, /approve means that it's OK, and this was just to let me reply.

[k8s-ci-robot]

@RobertKrawitz: The following test failed, say /retest to rerun them all:

Test name	Commit	Details	Rerun command
pull-kubernetes-local-e2e-containerized	31edcd999489109e15cefdaa3551d4016e62eb4e	link	/test pull-kubernetes-local-e2e-containerized

Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

[RobertKrawitz]

/test pull-kubernetes-bazel-test

[jingxu97]

sorry to comment the late. But where this DesiredSizeLimit is used?

[RobertKrawitz]

It will be used when we implement quota enforcement.

[gnufied]

shouldn't we hold from introducing this until we have a plan to use it? It seems like we introduced this field and almost an year later nobody is using it.