Kubeadm: Preflight checks shall check hardware requirements.

currently we do outline such requirements here:
https://kubernetes.io/docs/setup/independent/create-cluster-kubeadm/

while we can use the runtime package to obtain the number of CPUs there is no way to obtain the available memory in a portable manner from golang without introducing platform specific code.

what we can do is print a message about the system requirements when kubeadm starts.

/priority backlog
/area UX

Hi,
yes i know that the requirements are listed in the documentation, but since you even warn about much other stuff and that is something you could fall over as well, testing memory and cores (or at least cores) should be reported/warned. i would be very glad if you do that. It costed days until i remembered that my machine was too small...

what we can do is print a message about the system requirements when kubeadm starts.

Print the requirements in the Preflight?

that only helps if there is a difference to the used system.
if that is not possible to do within kubeadm, perhaps from a solution standpoint, whould i make sense to fetch a preflight docker check container beforehand which tests all this stuff? or does that not work?

because this of course would be not only helpful for kubeadm but master/nodes as well.

But there should definitely be a warning, if there are too few cores and ram allocated for the kubeadm/kubernetes master/nodes system

if that is not possible to do within kubeadm, perhaps from a solution standpoint, whould i make sense to fetch a preflight docker check container beforehand which tests all this stuff? or does that not work?

this is doable but it has a complicated maintenance process.

But there should definitely be a warning, if there are too few cores and ram allocated for the kubeadm/kubernetes master/nodes system

as mentioned earlier, we cannot have portable multi-platform detection for that using golang yet and we wouldn't want to have to homecook different solutions for different OSes.
we can only show a static message with system requirements similar to the one outlined in the docs.

this is doable but it has a complicated maintenance process.

Would be even easier to do preflight checks within a docker container than in kubeadm itself. since containers have to adhere to linux environments, /proc/{cpuinfo,meminfo} could be parsed and you wouldnt have to worry about other environments? :-)

we can only show a static message with system requirements similar to the one outlined in the docs.

Better than nothing, i'll take it. Though i do not understand why you couldnt do the other thing (docker preflight check) in the long term :-)

Would be even easier to do preflight checks within a docker container than in kubeadm itself. since containers have to adhere to linux environments, /proc/{cpuinfo,meminfo} could be parsed and you wouldnt have to worry about other environments? :-)

contributions to kubeadm are always encouraged, of course. :+1:

Perhaps we just update the docs to run the node e2e test suite prior to setup.

@timothysc

Perhaps we just update the docs to run the node e2e test suite prior to setup.

we can do that.

however, @deknos noted that the users are going to miss the system requirements notes and start a cluster anyway, which we don't handle correctly and it results in unexpected behavior:

I had a machine where i tried to install it and it had only 1 core. and it initially worked often, but containers went down after a time and it did not work properly.

given this is node specific it seems to me that this should be on the kubelet side.

what we can do on the kubeadm side is show a warning / system req. notification.

@neolit123, @timothysc what do you think about using something like this: https://github.com/pbnjay/memory to get total memory?

According to this issue https://github.com/golang/go/issues/21816 this kind of API doesn't have a lot of chances to go to standard library, so we probably should come up with something similar to above package.

After all we need just a several lines of code for windows and linux to implement this. I think it makes sense to do to enforce requirements stated in the documentation. Even if we do it only for linux it will cover most of kubeadm user base in my opinion.

yep, i saw the memory package when writing my previous responses in this thread.
but not sure what the general policy of vendoring such multi-platform packages in kubeadm is.

Implemented check for number of CPUs on master, please review: https://github.com/kubernetes/kubernetes/pull/70048

@neolit123 as vendoring can be a problem can we just write our own similar code?

i'm personally fine with having https://github.com/pbnjay/memory vendored in kubeadm.
will defer to @timothysc on this one.

/assign @timothysc

The check for number of CPUs on master looks good! but i do not really know to formally review it other than testing it in a VM? Shall i do that?

The go memory library looks good, though i am a newbie to Golang, i could at least look at it.

we have not decided yet if the the memory check library is going to be used.
the CPU check is all we are going to have for k8s 1.13.

Yeah, i wanted to know if i could do anything to help. reviewing code or testing with a too small installation for example? :)

i'm personally fine with having https://github.com/pbnjay/memory vendored in kubeadm.
will defer to @timothysc on this one.

@timothysc wdyt?

(just stumbled across this!) happy to contribute directly if you all don't want to vendor the package. I also just added a BSD license to the repo if the missing license was a concern

I would channel what is done by the kubelet/cadvisor where possible b/c it's already vendored.

Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale

Stale issues rot after 30d of inactivity.
Mark the issue as fresh with /remove-lifecycle rotten.
Rotten issues close after an additional 30d of inactivity.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle rotten

/lifecycle frozen

I'm interested in picking this up. To make sure I've understood the issue correctly, I'll start by summarizing the current state:

It looks like this issue had two parts: checking the number of CPUs/cores and checking the amount of RAM. These checks need to work across platforms, including both Linux and Windows. The first part has already been merged, but the second part will require a cross-platform implementation that is not included in the Go standard library. kubelet/cadvisor is the top option for this because it is already vendored in k/k and supports Linux and Windows.

kubelet/cadvisor has a MachineInfo type that includes both CPUs and RAM. Based on this, it makes sense to move the CPU check to also be based on cadvisor.

@dpb587-pivotal and I have implemented this check using the pbnjay/memory library suggested earlier in this issue. You can see the changes here. We have not made a PR yet to avoid splitting the discussion, since there is still discussion to be had on the approach to take (vendoring this new library vs using kubectl/cadvisor).

Before writing the above code, we looked at what would be needed to implement this using kubectl/cadvisor. That appears to be an uncomfortable fit for this task for a couple reasons:

(1) The New function requires a bunch of arguments that don't seem relevant to this use-case. We'd either need to pass fake inputs or use not-yet-validated settings, neither of which seem clean.

(2) The Windows implementation claims to start a metrics server (as opposed to just returning a couple of current numbers). Windows support is a reason to use kubelet/cadvisor rather than the plain vendored cadvisor. The winstat code that kubelet/cadvisor uses does not look reusable.

@timothysc given that additional technical context, do you have concerns about pulling in this new metrics package vs trying to use kubelet/cadvisor?

this fell of my radar completely, but to answer the above query:

...using the pbnjay/memory library suggested earlier in this issue. You can see the changes here. We have not made a PR yet to avoid splitting the discussion, since there is still discussion to be had on the approach to take (vendoring this new library vs using kubectl/cadvisor).

this seems like the right approach, so if someone wants to send a PR we might get acceptance for it.

given that additional technical context, do you have concerns about pulling in this new metrics package vs trying to use kubelet/cadvisor?

we should definitely not use kubelet/cadvisor given kubeadm is moving away from k/k and the kubelet is trying to decouple from cadvisor.

PRs welcome.

@neolit123 I'd like to pick this up. And will use https://github.com/pbnjay/memory to check the memory.

/assign

@xlgao-zju thanks. we might want to make this change for 1.20, because it's too close to feature-freeze (9th of July).

Dropping a note that 2GB is definitely not a hard requirement and that necessary resources depend on the size and scope of the rest of the cluster.

kind runs kubeadm + a light workload in less.

on the PR i recommended to have this is a warning.
it will not be targeting 1.19, also unclear if the feature will be accepted in general.

/lifecycle active
this should close with https://github.com/kubernetes/kubernetes/pull/93275