開發環境k8s重啓問題

原創 起航zhang 2020-07-04 20:02

k8s 1.17.2高可用版本重啓問題

  • 開發環境平均 每10分鐘重啓一次。
  • 測試環境6天平均 每天重啓一次。
  • cube環境 每小時重啓一次。
  • ramdisk 到目前18小時沒有重啓
1.測試的環境:192.168.1.135 密碼:xxxx 配置:3master 8c32g etcd版本:3.2.20

1.1重啓次數:

[root@portal135 ~]# kubectl get pods -n kube-system|grep "kube-.*bocloud.com"
kube-apiserver-portal134.bocloud.com            1/1     Running   2          5d23h
kube-apiserver-portal135.bocloud.com            1/1     Running   8          5d23h
kube-apiserver-portal136.bocloud.com            1/1     Running   3          5d23h
kube-controller-manager-portal134.bocloud.com   1/1     Running   2          5d23h
kube-controller-manager-portal135.bocloud.com   1/1     Running   7          5d23h
kube-controller-manager-portal136.bocloud.com   1/1     Running   5          5d23h
kube-scheduler-portal134.bocloud.com            1/1     Running   2          5d23h
kube-scheduler-portal135.bocloud.com            1/1     Running   7          5d23h
kube-scheduler-portal136.bocloud.com            1/1     Running   5          5d23h

1.2響應時間:

[root@portal134 upload]# export NODE_IPS="192.168.1.134 192.168.1.135 192.168.1.136"
[root@portal134 upload]# for ip in ${NODE_IPS}; do   ETCDCTL_API=3 etcdctl   --endpoints=https://${ip}:2379    --cacert=/etc/etcd/ssl/ca.crt   --cert=/etc/etcd/ssl/client.crt   --key=/etc/etcd/ssl/client.key   endpoint health; done
https://192.168.1.134:2379 is healthy: successfully committed proposal: took = 2.711272ms
https://192.168.1.135:2379 is healthy: successfully committed proposal: took = 2.089683ms
https://192.168.1.136:2379 is healthy: successfully committed proposal: took = 1.935061ms
2.開發環境:192.168.2.103 密碼:xxxx 配置:3master 4c8g etcd版本:3.4.3

2.1重啓次數:

[root@boc-108 ~]# kubectl get pods -n kube-system|grep "kube-.*.dev"
kube-apiserver-boc-103.dev                 1/1     Running            63         4d4h
kube-apiserver-boc-104.dev                 1/1     Running            67         4d4h
kube-apiserver-boc-108.dev                 1/1     Running            82         4d4h
kube-controller-manager-boc-103.dev        1/1     Running            543        4d4h
kube-controller-manager-boc-104.dev        1/1     Running            561        4d4h
kube-controller-manager-boc-108.dev        1/1     Running            558        4d4h
kube-scheduler-boc-103.dev                 1/1     Running            562        4d4h
kube-scheduler-boc-104.dev                 1/1     Running            556        4d4h
kube-scheduler-boc-108.dev                 1/1     Running            561        4d4h

2.2響應時間:

[root@boc-103 test]# export NODE_IPS="192.168.2.103 192.168.2.104 192.168.2.108"
[root@boc-103 test]# for ip in ${NODE_IPS}; do   ETCDCTL_API=3 etcdctl   --endpoints=https://${ip}:2379    --cacert=/etc/etcd/ssl/ca.crt   --cert=/etc/etcd/ssl/client.crt   --key=/etc/etcd/ssl/client.key   endpoint health; done
https://192.168.2.103:2379 is healthy: successfully committed proposal: took = 1.318040913s
https://192.168.2.104:2379 is healthy: successfully committed proposal: took = 1.557571675s
https://192.168.2.108:2379 is healthy: successfully committed proposal: took = 54.749774ms
3. 錯誤現象:

​ kube-controller-manager和kube-scheduler重啓原因etcdserver: request timed out

E0224 03:54:36.433286       1 cronjob_controller.go:125] Failed to extract job list: etcdserver: request timed out
E0224 03:54:37.592575       1 leaderelection.go:331] error retrieving resource lock kube-system/kube-controller-manager: etcdserver: request timed out
I0224 03:54:38.047024       1 leaderelection.go:288] failed to renew lease kube-system/kube-controller-manager: timed out waiting for the condition
I0224 03:54:38.047089       1 event.go:281] Event(v1.ObjectReference{Kind:"Endpoints", Namespace:"", Name:"", UID:"", APIVersion:"v1", ResourceVersion:"", FieldPath:""}): type: 'Normal' reason: 'LeaderElection' portal135.bocloud.com_46d96c59-fa2a-43d3-aa0e-4c969a287338 stopped leading
F0224 03:54:38.047158       1 controllermanager.go:279] leaderelection lost

​ apiserver也出現多次

E0224 03:54:37.591267       1 status.go:71] apiserver received an error that is not an metav1.Status: rpctypes.EtcdError{code:0xe, desc:"etcdserver: request timed out"}
4.cube環境 10.10.5.8 密碼:xxxx 配置:3master 8c16g

4.1重啓次數:

[root@master ~]# kubectl get pods -n kube-system|grep .novalocal
kube-apiserver-master.novalocal            1/1     Running            1          8h
kube-apiserver-node-1.novalocal            1/1     Running            1          8h
kube-apiserver-node-2.novalocal            1/1     Running            1          8h
kube-controller-manager-master.novalocal   1/1     Running            7          8h
kube-controller-manager-node-1.novalocal   1/1     Running            8          8h
kube-controller-manager-node-2.novalocal   1/1     Running            6          8h
kube-scheduler-master.novalocal            1/1     Running            8          8h
kube-scheduler-node-1.novalocal            1/1     Running            6          8h
kube-scheduler-node-2.novalocal            1/1     Running            8          8h

4.2響應時間:

https://10.10.5.8:2379 is healthy: successfully committed proposal: took = 15.970648ms
https://10.10.5.48:2379 is healthy: successfully committed proposal: took = 13.325127ms
https://10.10.5.38:2379 is healthy: successfully committed proposal: took = 18.190006ms
5.解決辦法

5.1 擴容到32g6c,但io操作依舊很慢,關機在於硬盤的讀寫速度。

5.2 做一個ramdisk。把內存掛載到/var/lib/etcd下當做硬盤存儲etcd數據。

mkdir /var/lib/etcd && mount -t tmpfs -o size=2G tmpfs /var/lib/etcd && echo "tmpfs                    /var/lib/etcd    tmpfs   defaults,size=2G        0 0" >> /etc/fstab

5.2.1 io操作對比結果:

  • ramdisk 2.3 GB/s
  • 數據盤 24.0 MB/s
[root@node-139 ~]# dd bs=1M count=1000 if=/dev/zero of=/media/tmp/a.txt conv=fdatasync
1000+0 records in
1000+0 records out
1048576000 bytes (1.0 GB) copied, 0.457043 s, 2.3 GB/s
[root@node-139 ~]# dd bs=1M count=1000 if=/dev/zero of=/home/a.txt conv=fdatasync
1000+0 records in
1000+0 records out
1048576000 bytes (1.0 GB) copied, 43.7001 s, 24.0 MB/s

注:/media/tmp是掛載ramdisk的路徑

5.3 驗證結果:etcd的響應速度有明顯提升。

[root@node-218 ~]# for ip in ${NODE_IPS}; do   ETCDCTL_API=3 etcdctl   --endpoints=https://${ip}:2379    --cacert=/etc/etcd/ssl/ca.crt   --cert=/etc/etcd/ssl/client.crt   --key=/etc/etcd/ssl/client.key   endpoint health; done
https://192.168.2.218:2379 is healthy: successfully committed proposal: took = 11.960397ms
https://192.168.2.219:2379 is healthy: successfully committed proposal: took = 10.482817ms
https://192.168.2.220:2379 is healthy: successfully committed proposal: took = 10.786569ms
[root@node-218 ~]# kubectl get pods -n kube-system|grep .dev
kube-apiserver-node-218.dev                1/1     Running            0          10m
kube-apiserver-node-219.dev                1/1     Running            0          10m
kube-apiserver-node-220.dev                1/1     Running            0          11m
kube-controller-manager-node-218.dev       1/1     Running            1          10m
kube-controller-manager-node-219.dev       1/1     Running            1          10m
kube-controller-manager-node-220.dev       1/1     Running            1          11m
kube-scheduler-node-218.dev                1/1     Running            1          10m
kube-scheduler-node-219.dev                1/1     Running            0          11m
kube-scheduler-node-220.dev                1/1     Running            1          11m
[root@node-218 ~]# df -h
Filesystem                Size  Used Avail Use% Mounted on
/dev/mapper/centos-root    28G  3.5G   25G  13% /
devtmpfs                  5.8G     0  5.8G   0% /dev
tmpfs                     5.8G     0  5.8G   0% /dev/shm
tmpfs                     5.8G   34M  5.8G   1% /run
tmpfs                     5.8G     0  5.8G   0% /sys/fs/cgroup
/dev/sda1                1014M  145M  870M  15% /boot
tmpfs                     1.2G     0  1.2G   0% /run/user/0
tmpfs                     2.0G  125M  1.9G   7% /var/lib/etcd
192.168.2.214:/opt/share   28G  2.5G   26G   9% /abcsys/upload

5.4 經過18小時後0次重啓

[root@node-218 ~]# kubectl get pods -n kube-system|grep dev
kube-apiserver-node-218.dev                1/1     Running            0          18h
kube-apiserver-node-219.dev                1/1     Running            0          18h
kube-apiserver-node-220.dev                1/1     Running            0          18h
kube-controller-manager-node-218.dev       1/1     Running            1          18h
kube-controller-manager-node-219.dev       1/1     Running            1          18h
kube-controller-manager-node-220.dev       1/1     Running            1          18h
kube-scheduler-node-218.dev                1/1     Running            1          18h
kube-scheduler-node-219.dev                1/1     Running            0          18h
kube-scheduler-node-220.dev                1/1     Running            1          18h

5.5 使用ramdisk純在的問題

由於數據是存儲在內存中的,斷電即丟失。

6 總結

​ 開發環境需要提升硬盤的讀寫速度,現在的硬盤讀寫熟讀只有24.0 MB/s,導致etcd數據庫經常出現request timeout,健康檢查超時,服務重啓等問題。

發表評論
所有評論
還沒有人評論,想成為第一個評論的人麼? 請在上方評論欄輸入並且點擊發布.
相關文章

電腦宕機後恢復K8s Pod啓動

1. 先開機看看集羣狀態是不是正常的 kubectl get cs 2. 看看pod狀態: kubectl -n xxx get pod 3. 進到nfs目錄內modeling mariab的文件夾 /dockerdata-nfs 4

liuskyter 2020-07-08 11:16:26

k8s(二)

佔位

6moji6 2020-07-08 10:26:30

利用 kubeadm 簡單搭建k8s(已更新爲V1.13.0版本)

1. 基本系統環境 1.1 系統內核 查看當前系統內核(我這裏是5.0.5-1.el7.elrepo.x86_64): uname -a 版本必須大於等於3.10,否則需要升級內核: # ELRepo 倉庫(可以先看一下 /et

jacksonary 2020-07-08 10:04:33

3.2 控制器——副本控制器(ReplicationController)

3.2 副本控制器(ReplicationController)  ReplicationController(在kubectl命令中經常縮寫爲rc或rcs)是實際確保特定數量的Pod副本在任意時刻的運行。如果Pod副本超過指定數

jacksonary 2020-07-08 10:04:33

3.5 控制器——DaemonSet(守護線程集)

3.5 控制器——DaemonSet(守護線程集)  每個DaemonSet可以確保某些甚至全部節點運行一個Pod的副本,當node加入集羣時,Pod就會加入這些節點,同樣的,當節點從集羣中移除時,這些pods被垃圾回收。刪除一個

jacksonary 2020-07-08 10:04:33

3.3 控制器——Deployments(部署)

3.3 Deployments(部署)  Deployments控制器(Deployment controller,Deployment應該也是控制器的一種吧)提供了Pod和ReplicaSets的聲明式更新。在Deploymen

jacksonary 2020-07-08 10:04:33

3.1 控制器——ReplicaSet

3. 控制器(Controller) 3.1 副本集(ReplicaSet) 定義:副本集(ReplicaSet)的目的是爲了保證一組穩定的Pod副本在任意給定時刻都在運行。因此,它通常用於保證特定數量的相同Pod的可用性。  副

jacksonary 2020-07-08 10:04:33

centos7搭建kubernetes v1.17.1集羣

機器 hostname 10.211.55.64 k8sMaster 10.211.55.65 k8sNode1 10.211.55.66 k8sNode2 所有機器執行以下操作 (1-13) 配置y

夜幕.思年华 2020-07-08 06:16:44

雲原生Tekton之觸發器Trigger

背景 前面的文章講了tekton中pipeline的教程和使用案例,大家有沒有想過,每次都要運行taskrun或者pipelineRun才能真正運行流水線。那怎麼做到自動化執行taskrun和pipelineRun呢?我想了下有

云原生手记 2020-07-08 03:27:17

kubernetes -- 結點調度控制的幾種方式

簡介 調度器通過 kubernetes 的 watch 機制來發現集羣中新創建且尚未被調度到 Node上的 Pod。調度器會將發現的每一個未調度的 Pod 調度到一個合適的 Node 上來運行。 kube-scheduler 是

生命热力٩( 'ω' )و 2020-07-08 02:17:36

k8s創建資源的兩種方式、訪問pod

創建資源 1.用kubectl命令直接創建,   #kubectl run httpd-app --image=reg.yunwei.edu/learn/httpd:latest --replicas=2 在命令行中通過參數指定資源的

PpikachuP 2020-07-08 01:52:27

O-RAN notes(3)---Bronze SMO deployment (2)

(continued) Most of the problems are related to 'docker pull'. Before you execute the install script(./dep/smo/bin/inst

zhenggao2 2020-07-07 23:48:07

centos安裝k8s集羣

一、集羣方式 機器配置:centos 4.4內核以上,cpu大於1核 1.主機配置 配置 規格 內存配置 2G CPU配置 2核 系統版本 Centos7.7 kubelet版本 1.5.1 do

意林飞笑 2020-07-07 18:12:18

kubernetes存儲 -- Volumes管理(三)StatefulSet控制器、StatefulSet部署mysql主從集羣

StatefulSet控制器 StatefulSet可以通過Headless Service維持Pod的拓撲狀態. StatefulSet將應用狀態抽象成了兩種情況: 拓撲狀態:應用實例必須按照某種順序啓動。新創建的Pod必須

生命热力٩( 'ω' )و 2020-07-07 02:59:20

使用kubeadm安裝kubenetes1.17.3

我們使用centos7的系統,內核升級到5.5.4,爲什麼使用升級後的內核,這是因爲centos7.4的內核是3.10,在docker運行時,有內核bug,導致運行緩慢,出現一堆錯誤異常,可以查閱我另外一個博客文章。 一、安裝前的準備工作

Blue_Tear 2020-07-07 01:26:46