@mborsz: This issue is currently awaiting triage.

If a SIG or subproject determines this is a relevant issue, they will accept it by applying the triage/accepted label and provide further guidance.

The triage/accepted label can be added by org members by writing /triage accepted in a comment.

/sig scalability

Re "why":

• high-churn workloads is something that we should be focused
• I wouldn't explicitly mention speeding up tests as the goal itself, we probably could come up with other ways to solve that too.
  But the first one is a compelling enough reasons and I fully support it.

Re solution itself:

• option 1: what if the option present in cache is stale?
  We currently don't set any preconditions on ResourceVersion, so we would have to start doing that, then retry on failures, etc.]
  [All of that seems doable, but I'm just trying to point that it's not necessary as easy as it seems]

• option 2:
  (a) it has the same problem as above
  (b) you're suggesting an additional periodic polling for virtual objects, which doesn't scale if we have many of those

Re option 1 comment:

• I think this is an issue also today: it is possible that between GET and DELETE calls the object has been modified. I agree that with moving to cache this may happen more often.
• Is there any way to DELETE api object conditionally (i.e. delete only if it has a given resourceVersion?)?

Re comment 2b: In fact we currently do periodic polling for virtual objects (here). I just suggest moving this logic to a separate place.

Yes - you can set Preconditions in DeleteOptions:
https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apimachinery/pkg/apis/meta/v1/types.go#L506
and you can set RV in Preconditions:
https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apimachinery/pkg/apis/meta/v1/types.go#L623

Re comment 2b: In fact we currently do periodic polling for virtual objects (here). I just suggest moving this logic to a separate place.

But unless I'm misreading it (sorry, didn't have time to look deep enough), this is happening on deletions.
The way how I understood your proposal is to poll them periodically for the whole lifetime?

I think it makes sense to start setting RV precondition anyway (so that if a given object changes between GET and DELETE, we will know that the DELETE is still up to date decision).

But unless I'm misreading it (sorry, didn't have time to look deep enough), this is happening on deletions.
The way how I understood your proposal is to poll them periodically for the whole lifetime?

My proposal is to "do whatever we are doing now, but in a separate loop". This way we will avoid doing API call on a standard code path only to support virtual objects. I understand that we are requeing all virtual objects, not only on deletions, but maybe I'm wrong.

I think it makes sense to start setting RV precondition anyway (so that if a given object changes between GET and DELETE, we will know that the DELETE is still up to date decision).

That will help in not taking action on stale data, but introduces the possibility that a frequently written object will never be garbage collected.

I understand that we are requeing all virtual objects, not only on deletions

Correct, virtual objects are already polled until they are observed present (via an informer event) or verified absent (via a 404 on the live lookup) and a virtual delete event is queued.

Having just spent a lot of time in the GC code, I'm not sure a third queue will simplify things.

I think it makes sense to start setting RV precondition anyway (so that if a given object changes between GET and DELETE, we will know that the DELETE is still up to date decision).

That will help in not taking action on stale data, but introduces the possibility that a frequently written object will never be garbage collected.

@liggitt - aren't we afraid that we delete something that we shouldn't delete in this case? I would assume that if something is supposed to be GC-ed it shouldn't be frequently changing (or at least it should eventually stop being updated frequently).
Setting preconditions here would make sense to me.

I think it makes sense to start setting RV precondition anyway (so that if a given object changes between GET and DELETE, we will know that the DELETE is still up to date decision).

That will help in not taking action on stale data, but introduces the possibility that a frequently written object will never be garbage collected.

Good point. Frequent object changes may cause gc starvation. This can be resolved by proper "precondition failed" error handing (i.e. retrying with GET API call)

Another idea: maybe in fact we don't need to get rid of GET call -- it's cheap and it's not a problem itself. The only problem about a GET call is that it consumes token from rate limiter. Maybe we can somehow change qps limit for gc collector only to allow it e.g. 200 qps while other controllers will be still using 100 qps?

So that will go away with Priority&Fairness eventually, because we want to get rid of qps-limits once this will prove to be stable.
[Also note that they are cheaper than modifying requests, but they are still not super cheap (e.g. they are linearized in etcd)]

@liggitt - aren't we afraid that we delete something that we shouldn't delete in this case?

Yes, but only if the updates are modifying ownerReferences

I would assume that if something is supposed to be GC-ed it shouldn't be frequently changing (or at least it should eventually stop being updated frequently).

I don't think that's necessarily true. Imagine a controller updating some status on an object as long as it exists, but which is depending on the object to go away when its owner does.

Yes, but only if the updates are modifying ownerReferences

Sure - that is exactly the point I had on my mind.
So doesn't that by itself deserve that we should protect this case?

I don't think that's necessarily true. Imagine a controller updating some status on an object as long as it exists, but which is depending on the object to go away when its owner does.

Sure - but I'm assuming that it shouldn't be more frequently than every 10s or so (so far by frequently I meant more than 1qps). And with longer delays between updates, we should eventually GC that (the latency of watch+GC processing time should be smaller than that).

Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.

If this issue is safe to close now please do so with /close.

Send feedback to sig-contributor-experience at kubernetes/community.
/lifecycle stale

/remove-lifecycle stale

@mborsz I am interested to increase deletion rate too, trying to understand your issue here. Does it mean with default settings at controller manager (--kube-api-qps=30), in one second only max 15 pods will go from RUNNING->TERMINATING? Or is this rate about after TERMINATING to removal from API Server?

Maciej Borsz I am interested to increase deletion rate too, trying to understand your issue here. Does it mean with default settings at controller manager (--kube-api-qps=30), in one second only max 15 pods will go from RUNNING->TERMINATED? Or is this rate about after TERMINATED to removal from API Server?

In that case, only 15 pods will be marked to be deleted (by setting deletetionTimestamp != 0; pod phase will not change IIUCC). Then kubelets will remove objects from API server, once they terminate the process running on the node.

In that case, only 15 pods will be marked to be deleted (by setting deletetionTimestamp != 0; pod phase will not change IIUCC). Then kubelets will remove objects from API server, once they terminate the process running on the node.

I see okay, I was interested to increase the rate at which pod status changes from RUNNING -> TERMINATING after deletion. If I delete say 1000 pods at once, their state changes from RUNNING -> TERMINATING in small batches.

Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.

If this issue is safe to close now please do so with /close.

Send feedback to sig-contributor-experience at kubernetes/community.
/lifecycle stale

/remove-lifecycle stale

The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.

This bot triages issues and PRs according to the following rules:

• After 90d of inactivity, lifecycle/stale is applied
• After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
• After 30d of inactivity since lifecycle/rotten was applied, the issue is closed

You can:

• Mark this issue or PR as fresh with /remove-lifecycle stale
• Mark this issue or PR as rotten with /lifecycle rotten
• Close this issue or PR with /close
• Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

/remove-lifecycle stale

The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.

This bot triages issues and PRs according to the following rules:

• After 90d of inactivity, lifecycle/stale is applied
• After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
• After 30d of inactivity since lifecycle/rotten was applied, the issue is closed

You can:

• Mark this issue or PR as fresh with /remove-lifecycle stale
• Mark this issue or PR as rotten with /lifecycle rotten
• Close this issue or PR with /close
• Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

/remove-lifecycle stale

The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.

This bot triages issues and PRs according to the following rules:

• After 90d of inactivity, lifecycle/stale is applied
• After 30d of inactivity since lifecycle/stale was applied, lifecycle/rotten is applied
• After 30d of inactivity since lifecycle/rotten was applied, the issue is closed

You can:

• Mark this issue or PR as fresh with /remove-lifecycle stale
• Mark this issue or PR as rotten with /lifecycle rotten
• Close this issue or PR with /close
• Offer to help out with Issue Triage

Please send feedback to sig-contributor-experience at kubernetes/community.

/lifecycle stale

Fixed in #104966

/close

@mborsz: Closing this issue.