The Multiarch Tuning Operator enhances the operational experience within multi-architecture clusters, and single-architecture clusters that are migrating to a multi-architecture compute configuration.
When diverse CPU architectures coexist within a cluster, the Multiarch Tuning Operator stands out as a pivotal tool to enhance efficiency and streamline operations such as architecture-aware scheduling of workloads.
The operator is available as part of the redhat-operator catalog in Openshift clusters.
There is no official, general available, upstream release of the operator yet.
The pod placement operand consists of
the pod placement controller and the pod placement webhook. It is managed through
a singleton custom resource: clusterpodplacementconfigs.multiarch.openshift.io.
When a pod is created, the operand performs the following actions:
multiarch.openshift.io/scheduling-gate scheduling gate that prevents the scheduling of the pod.kubernetes.io/arch.nodeAffinity requirement in the pod specification.When the operand removes the scheduling gate, the pod enters the scheduling cycle. The workload is then scheduled on nodes based on the supported architectures.
This operand is based on the KEP-3521 and KEP-3838, as described in the Openshift EP introducing it.
The aim of this operator will be to run on any Kubernetes cluster, although the main focus of development and testing will be carried out on Openshift clusters.
The development tooling of this repository depends on the following tools/technologies:
gpgme-devel in Fedora/CS9/RHEL, libgpgme-dev in Debian)operator-sdkmakeqemu-user-static (to support building multi-arch container images via docker buildx)# Multi-arch image build
make docker-buildx IMG=<some-registry>/multiarch-tuning-operator:tag
# Single arch image build
make docker-build IMG=<some-registry>/multiarch-tuning-operator:tag
# Local build
make buildIf you aim to use the multi-arch build and would avoid the deletion of the buildx instance, you can
create an empty .persistent-buildx file in the root of the repository.
touch .persistent-buildx
make docker-buildx IMG=<some-registry>/multiarch-tuning-operator:tag# Deploy the operator on the cluster
make deploy IMG=<some-registry>/multiarch-tuning-operator:tagTo enable architecture-aware workload scheduling, you must create the ClusterPodPlacementConfig object.
When you create the ClusterPodPlacementConfig object, this Operator deploys the pod placement operand.
The ClusterPodPlacementConfig is a singleton object: the API allows only one object with name cluster.
The following is an example of a ClusterPodPlacementConfig CR that sets the log verbosity level to Normal and
will watch and setup CPU architecture node affinities on all the pods, except the ones in namespaces labeled with
multiarch.openshift.io/exclude-pod-placement.
Note: the namespaces openshift-*, kube-*1, and hypershift-* are excluded by default and cannot be included back for
safety reasons.
# Deploy the pod placement operand on the cluster
kubectl create -f - <<EOF
apiVersion: multiarch.openshift.io/v1beta1
kind: ClusterPodPlacementConfig
metadata:
name: cluster
spec:
logVerbosityLevel: Normal
namespaceSelector:
matchExpressions:
- key: multiarch.openshift.io/exclude-pod-placement
operator: DoesNotExist
EOFkubectl delete clusterpodplacementconfigs/clusterOrdered uninstallation of the operand will be implemented in the future, and will remove the pod placement controller only after all the scheduling gated pods have been ungated.
To overcome this limitation currently, you can execute the following to ensure the deletion of the scheduling gate from all the pods:
kubectl get pods -A -l multiarch.openshift.io/scheduling-gate=gated -o json | jq 'del(.items[].spec.schedulingGates[] | select(.name=="multiarch.openshift.io/scheduling-gate"))' | kubectl apply -f -To delete the CRDs from the cluster:
make uninstallUnDeploy the controller from the cluster:
make undeployIf you are editing the API definitions, generate the manifests such as CRs or CRDs using:
make manifestsNOTE: Run make --help for more information on all potential make targets
More information can be found via the Kubebuilder Documentation
The following units are available as Makefile targets:
# Lint
make lint
# gosec (SAST)
make gosec
# vet
make vet
# goimports
make goimports
# gofmt
make fmt
# Run unit tests
make test
# Run e2e tests (after the operator is deployed, e.g., via `make deploy`)
KUBECONFIG=/path/to/cluster/kubeconfig NAMESPACE=openshift-multiarch-tuning-operator make e2e All the checks run on a containerized environment by default.
You can run them locally by setting the NO_DOCKER variable to 1:
NO_DOCKER=1 make testor adding the NO_DOCKER=1 row in the .env file.
See the dotenv.example file for other available settings.
See Openshift Enhancement Proposal.
// TODO(user): Add detailed information on how you would like others to contribute to this project
Copyright 2023 Red Hat, Inc.
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.