Can one of the admins verify that this patch is reasonable to test? If so, please reply "ok to test".
(Note: "add to whitelist" is no longer supported. Please update configurations in kubernetes/test-infra/jenkins/job-configs/kubernetes-jenkins-pull instead.)

This message may repeat a few times in short succession due to jenkinsci/ghprb-plugin#292. Sorry.

Otherwise, if this message is too spammy, please complain to ixdy.

Can one of the admins verify that this patch is reasonable to test? If so, please reply "ok to test".
(Note: "add to whitelist" is no longer supported. Please update configurations in kubernetes/test-infra/jenkins/job-configs/kubernetes-jenkins-pull instead.)

This message may repeat a few times in short succession due to jenkinsci/ghprb-plugin#292. Sorry.

Otherwise, if this message is too spammy, please complain to ixdy.

@justinsb @bprashanth @thockin

@davidopp @justinsb @bprashanth @thockin @a-robinson can you guys take some time to review this change please? Thanks

Can one of the admins verify that this patch is reasonable to test? If so, please reply "ok to test".
(Note: "add to whitelist" is no longer supported. Please update configurations in kubernetes/test-infra/jenkins/job-configs/kubernetes-jenkins-pull instead.)

This message may repeat a few times in short succession due to jenkinsci/ghprb-plugin#292. Sorry.

Otherwise, if this message is too spammy, please complain to ixdy.

@k8s-bot ok to test

@bprashanth addressed your comments.

@mfanjie what is the fix? it's hard to tell with one giant commit. Can you please isolate the change in another commit, or comment around the fix so I can focus on that part?

@bprashanth I squashed the commits as there are several minor changes to test.
The change is not big, originally, the Run func of servicecontroller is func (s *ServiceController) Run(workers int, stopCh <-chan struct{}) (similar with resource_quota_controller.go) while in controllermanager.go this method was not called by go, as it return error. so the <-stopCh blocks the thread and the following controller could not be loaded.
I made the changes to remove stopCh <-chan struct{} as the parameter of Run, so that <-stopCh is remove together. similar with nodecontroller.

In addition, what kind of cloud resource leak you mentioned? LB IP? how can I ensure there is no leak for it, this is the first time I use gce to boot k8s cluster.
I have the e2e job ran overnight, but checking the logs, I see

ug  3 12:15:20.783: INFO: Waiting up to 20m0s for service "mutability-test" to have a LoadBalancer
Aug  3 12:35:20.949: INFO: Timeout waiting for service "mutability-test" to have a load balancer

From code, it seems a known problem exists on LB IP allocation?

// How long to wait for a load balancer to be created/modified.
    //TODO: once support ticket 21807001 is resolved, reduce this timeout back to something reasonable
    loadBalancerCreateTimeout = 20 * time.Minute

GCE e2e build/test passed for commit 5fa6404.

• Test Results
• Build Log
• Test Artifacts
• Internal Jenkins Results

All settled from my perspective, waiting for LGTM. @bprashanth

From code, it seems a known problem exists on LB IP allocation?

Yeah that 20m timeout was put in to mitigate the issue, it shouln't take that long (i.e the test shouldn't timeout, or if it was the submit queue would be closed). I haven't seen that timeout in a while. Can you investigate why the test failed? how long did it take to create the lb? how many successful runs did you get?

you can check for leaked resources by going to the gce console (console.cloud.google.com) and checking your quota (compute engine > quotas). Typically leaked addresses show up in gcloud (gcloud compute addresses list, target-pools list etc).

@bprashanth The timeout error happened occasionally last night, the e2e test is still ongoing and runs so far so good. I do not see the error now and here is the successful logs.

STEP: waiting for the TCP service to have a load balancer
Aug  4 00:46:59.688: INFO: Waiting up to 20m0s for service "mutability-test" to have a LoadBalancer
^@^@Aug  4 00:49:03.795: INFO: TCP load balancer: 104.197.122.110
STEP: demoting the static IP to ephemeral
I0804 00:49:03.795490   15443 google_compute.go:89] Deleting static IP with name "e2e-external-lb-test-cf7be64d-5a16-11e6-bd46-74dbd180286e" in project "nds1-1340" in region "us-central1"
STEP: waiting for the UDP service to have a load balancer
Aug  4 00:49:12.730: INFO: Waiting up to 20m0s for service "mutability-test" to have a LoadBalancer
^@Aug  4 00:50:06.837: INFO: UDP load balancer: 146.148.43.188

From gce console, it shows 5 target pools, and 4 in-used address. I did not see a leak with the time being.

I guess a nightly back to back run is fine. I assume the 5 target pools and 4 in use addresses are from the currently running test? otherwise a leak at that rate would close SQ in 10 days because the address quota is ~50 i think.

yes, the test is still on going, and the 5 pool and 4 address are using for the tests. I did not see any abnormal leak from the long run.

Please consider if it is ok for merge. I have no further action on this pr, except to check the result again next daytime, I do not expect any problem though.

? 2016?8?5??03:54?Prashanth B <notifications@github.commailto:notifications@github.com> ???

I guess a nightly back to back run is fine. I assume the 5 target pools and 4 in use addresses are from the currently running test? otherwise a leak at that rate would close SQ in 10 days because the address quota is ~50 i think.

You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHubhttps://github.com//pull/25189#issuecomment-237664354, or mute the threadhttps://github.com/notifications/unsubscribe-auth/AP30JPmI3Ts_gx78bWVPlT3_CmnYtkiKks5qckNSgaJpZM4IX1D_.

Thanks for running the test, LGTM

@k8s-bot test this [submit-queue is verifying that this PR is safe to merge]

GCE e2e build/test passed for commit 5fa6404.

• Test Results
• Build Log
• Test Artifacts
• Internal Jenkins Results

Automatic merge from submit-queue

@anguslees can you explain more detail? here is a brief flow by reading the code through, please checkout and point out if there is a logic error. Thanks.

initial state
111. s.knownHosts == empty array
623. nodes == all nodes meet the condition
628. newHosts == string array of node names

first loop
629. stringSlicesEqual(newHosts, s.knownHosts) == false
639. serviceToUpdate = all services
6406. numServices = all services size
641. servicesToUpdate = servicesToRetry
645. s.knownHosts = newHosts

next loop(no new nodes)
629. stringSlicesEqual(newHosts, s.knownHosts) == true
632. retry on serviceToUpdate which is servicesToRetry

next loop(with new nodes)
same as first loop

On the "next loop(no new nodes)" case, servicesToUpdate is always a new/empty list (from line 622).

So if the service failed to update fully on the first loop (stringSlicesEqual(newHosts, s.knownHosts) == false), then the service will not be retried on later loops (stringSlicesEqual(..) == true). The error will persist until the list of hosts changes again and we trigger the allServices() case again (stringSlicesEqual(..) == false)

Note that the old version did not have this problem because the servicesToUpdate value persists across iterations of the sync loop in (old version) line 687. I believe the fix for the new version is to persist servicesToUpdate in the ServiceController object in some form, much like was done with prevHosts => s.knownHosts as part of this commit.

@anguslees ah, yes, the servicesToUpdate is re-declared inside the loop, yes, we need to persist the latest value somewhere outside the loop. will send a fix.