KEP-2570: Add documentation for MemoryQoS with cgroups v2 for 1.36 #54417
+37
−14
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change | ||||
|---|---|---|---|---|---|---|
|
|
@@ -97,14 +97,32 @@ Containers in a Pod can request other resources (not CPU or memory) and still be | |||||
|
|
||||||
| {{< feature-state feature_gate_name="MemoryQoS" >}} | ||||||
|
|
||||||
| Memory QoS uses the memory controller of cgroup v2 to guarantee memory resources in Kubernetes. When enabled, the kubelet can set `memory.high` to throttle workloads | ||||||
| approaching their memory limits, and can optionally reserve memory via `memory.min` or `memory.low`. | ||||||
|
|
||||||
| ### Configuring Memory QoS | ||||||
|
|
||||||
| Memory reservation is controlled via the kubelet configuration field `memoryReservationPolicy`: | ||||||
|
|
||||||
| - `None` (default): the kubelet does not set `memory.min` or `memory.low` for containers and pods, | ||||||
| ensuring no hard memory is locked by the kernel. This is the default to maintain node stability. | ||||||
| - `TieredReservation`: the kubelet sets tiered memory protection based on the pod's QoS class: | ||||||
| - Guaranteed pods (hard reservation): `memory.min` is set to memory requests, memory resources are reserved and never reclaimed by the kernel. | ||||||
| - Burstable pods (soft reservation): `memory.low` is set to memory requests, the kernel preferentially retains this memory but may reclaim it under extreme pressure. | ||||||
| - BestEffort pods: no memory protection is set. | ||||||
|
|
||||||
| If memory limits are set in the container,this means that the system needs to limit container memory usage; Memory QoS uses `memory.high` to throttle workloads | ||||||
|
Member
There was a problem hiding this comment.
Suggested change
Member
There was a problem hiding this comment. Also, this piece applies regardless of memoryReservationPolicy. Should be moved before "### Configuring Memory QoS" or into its own subsection (e.g., "### Memory Throttling") since throttling is independent of reservation policy. |
||||||
| approaching their memory limit, ensuring that the system is not overwhelmed by instantaneous memory allocation. | ||||||
|
|
||||||
|
|
||||||
| ### System Requirements | ||||||
|
|
||||||
| Memory QoS requires: | ||||||
| - Linux with cgroup v2 | ||||||
| - Kernel version 5.9 or higher for safe memory.high throttling. If the MemoryQoS feature gate is enabled on an older kernel, the kubelet logs a warning because of a known kernel livelock bug when using `memory.high` throttling on older kernels. | ||||||
|
|
||||||
| Memory QoS requires cgroup v2. When enabled on kernels older than 5.9, kubelet logs a warning | ||||||
|
Member
There was a problem hiding this comment. This looks duplicated. You might need to remove these lines |
||||||
| because `memory.high` throttling can trigger a kernel livelock bug on older kernels. | ||||||
|
|
||||||
| Memory QoS relies on QoS class to determine which settings to apply; however, these are different | ||||||
| mechanisms that both provide controls over quality of service. | ||||||
|
|
||||||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change | ||||
|---|---|---|---|---|---|---|
|
|
@@ -11,4 +11,8 @@ stages: | |||||
| fromVersion: "1.22" | ||||||
| --- | ||||||
| Enable memory protection and usage throttle on pod / container using | ||||||
| cgroup v2 memory controller. This feature allows kubelet to set `memory.high` | ||||||
| for throttling and configure tiered memory protection, when `memoryReservationPolicy` kubelet | ||||||
| configuration set to `TieredReservation`, `memory.min` / `memory.low` for memory protection are enabled. | ||||||
|
Member
There was a problem hiding this comment.
Suggested change
|
||||||
| Requires cgroup v2; kubelet warns on kernels older | ||||||
| than 5.9 because `memory.high` throttling can trigger a livelock bug. | ||||||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I think you would need to add a blurb about
memoryThrottlingFactorin pod-qos.md as well. Otherwise, Readers will wonder what it does