This chart will deploy a pod running a script that fills up the hosts memory using stress-ng.
By default we will fill up to 16GB of memory (--vm-bytes) with a single worker (--vm). This can be adjusted in script.sh if needed.
All components will be deployed to the specified --namespace in the helm upgrade --install command.
In this demo we are allocating memory on the node to the point where the OS will get into a out-of-memory (OOM) situation. The reaction is then dependent on the Kubernetes flavor.
We have tested this on AKS and EKS and have noticed slightly different behaviours. This can potentially raise an alert if the workload is monitored.
The kernel will kill the workload as it's identified as the problem source automatically.
The process will be spawned over and over again and will cause a continuous oom-kill, respawn loop.
$ kubectl describe node -l demo=node-pressure
[...]
Events:
Type Reason Age From Message
Warning SystemOOM 3m57s kubelet System OOM encountered, victim process: stress-ng-vm, pid: 3103923
Warning OOMKilling 3m56s kernel-monitor Out of memory: Killed process 3103923 (stress-ng-vm) total-vm:15791416kB, anon-rss:14369596kB, file-rss:4kB, shmem-rss:36kB, UID:0 pgtables:28184kB oom_score_adj:1000
Warning SystemOOM 2m13s (x16 over 3m50s) kubelet (combined from similar events): System OOM encountered, victim process: stress-ng-vm, pid: 3106306
Warning OOMKilling 2m13s (x16 over 3m50s) kernel-monitor (combined from similar events): Out of memory: Killed process 3106306 (stress-ng-vm) total-vm:15791416kB, anon-rss:14360328kB, file-rss:4kB, shmem-rss:36kB, UID:0 pgtables:28168kB oom_score_adj:1000The node's MemoryPressure condition will be set to True and a taint is set automatically: node.kubernetes.io/memory-pressure:NoSchedule
Theoretically this prevents any further scheduling until the unhealthy status is resolved. We are queueing our workload nonetheless by actively tolerating the taint for our workload.
Once the node has recovered itself, the condition will be set to False and the taint is removed. Our workload is scheduled and will put the node under pressure again.
$ kubectl describe node -l demo=node-pressure
[...]
Events:
Type Reason Age From Message
---- ------ ---- ---- -------
Normal NodeHasSufficientMemory 10m (x5 over 46d) kubelet Node <DEDUCTED>.eu-central-1.compute.internal status is now: NodeHasSufficientMemory
Warning EvictionThresholdMet 85s (x4 over 27m) kubelet Attempting to reclaim memory
Normal NodeHasInsufficientMemory 75s (x4 over 26m) kubelet Node <DEDUCTED>.eu-central-1.compute.internal status is now: NodeHasInsufficientMemorySimply run a helm upgrade command from the root of this repository:
helm upgrade --install node-pressure ./node-pressure --namespace parallel-processing --create-namespaceIf you run dynatrace-fluentbit for log collection, make sure to tolerate the following:
tolerations:
- key: "node.kubernetes.io/memory-pressure"
operator: "Exists"
effect: "NoSchedule"
- key: "memory-pressure-demo"
operator: "Exists"
effect: "NoExecute"
Helm uninstall will get rid of everything but the namespaces. Thus we need to issue a kubectl delete manually to finish the cleanup.
Note
The faultInjection.namespace will be left regardless. It is used by many of our charts, so we will not delete it.
Please remove it manually when you are sure it's not needed anymore.
helm uninstall node-pressure --namespace parallel-processing
kubectl delete namespace parallel-processingWe are using the stress-ng tool to cause memory pressure on the host. More details on the usage of this tool can be found in Ubuntu Wiki or on GitHub.