🚀 Build Images Ready

Images are ready for commit 5b69e0d. To use with deploy scripts:

export MAIN_IMAGE_TAG=4.11.x-1104-g5b69e0dc85

Note on GOMEMLIMIT

It seems to be injected without surprises: no other environment variables are lost. On the screenshot: left is from pod before GOMEMLIMIT was added, right - after.

Few nuances:

• It does get set on all containers of the pod due to being in podTemplate. The ones where we override memory and the ones where we don't.
• It should only be recognized by Go programs.
• It is an advisory setting, the actual memory usage can go higher. Just Go GC will try harder (slowing up the program up to 2x) to clean memory when its use is approaching GOMEMLIMIT.
• Therefore there should be some buffer between GOMEMLIMIT and memory limit, although it has to be small.
• Yes, in this revision I have some tasks where the buffer is large, but otherwise I would not be able to find a setting that fits all (due to being applied to all containers).
  • Worst cases: we reserve some idle memory, or GC overhead occurs earlier than it should. Neither is critical, IMO.

Kudos to @davdhacs for researching and suggesting it in github.com//pull/20625.

Yes, in this revision I have some tasks where the buffer is large, but otherwise I would not be able to find a setting that fits all (due to being applied to all containers).
Worst cases: we reserve some idle memory, or GC overhead occurs earlier than it should. Neither is critical, IMO.

I think this is okay for testing, but won't it limit the schedule-ability of the tasks if the request is kept high?

I think this is okay for testing, but won't it limit the schedule-ability of the tasks if the request is kept high?

Yes, increasing memory requests creates more demand on the cluster's resources and so it may happen that our pods/tasks/pipelines can be getting stuck waiting.

Given that GOMEMLIMIT is only a soft hint and by itself not capable of preventing OOMKills (experience from Sensor), adjusting the memory requests is the only working way to prevent OOMs.

I don't see any way around it. Do you?

I think this is okay for testing, but won't it limit the schedule-ability of the tasks if the request is kept high?

Yes, increasing memory requests creates more demand on the cluster's resources and so it may happen that our pods/tasks/pipelines can be getting stuck waiting.

Given that GOMEMLIMIT is only a soft hint and by itself not capable of preventing OOMKills (experience from Sensor), adjusting the memory requests is the only working way to prevent OOMs.

I don't see any way around it. Do you?

I think with the GOMEMLIMIT, we'll begin to see the tasks memory use to flatten out at/near that memlimit. So maybe it could be a TODO to reduce the request(and possibly limit) once we measure the memory use to be stable around GOMEMLIMIT?

That's why I'm thinking we can set a lower request (for 95% of running time) and then a limit above where we measure it can burst to. That does open a risk of, if there are many tasks that burst simultaneously they will exhaust the memory. But in my monitoring I only saw these burst happen for a max of 10s (with GOMEMLIMIT below the limit) and not at the same time for the set of jobs for one commit. So I think the risk is very low and less likely than the OOMs for certain.

https://konflux-ui.apps.stone-prd-rh01.pg1f.p1.openshiftapps.com/ns/rh-acs-tenant/applications/acs/pipelineruns/retag-scanner-db-slim-jn6sk -> Quay issue.

/konflux-retest retag-scanner-db-slim

@tommartensen please feel free to share your comments after this gets merged. I'll keep an eye and will address in a follow-up.

@kurlov: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Full PR test history. Your PR dashboard.