Fix OOMKilled issues in Package / BB MR pipelines
Bug
Description
There are currently OOMKilled issues with pod/fortify-ssc-webapp-0 which sometimes results in a failed clean install job. We must ensure that the clean install job passes consistently by appropriately increasing resource limits for the test values used in both the Package and Big Bang Pipelines. This will most likely need to match the default resource limits set in the package values.yaml.
Package Default Resource Limit Values
Package Test Resource Limit Values
Big Bang Test Resource Limit Values
BigBang Version
2.28.1
Designs
Related merge requests 3
When these merge requests are accepted, this issue will be closed automatically.
Activity
changed milestone to %2.30.0
added kindbug priority1 teamDevelopment & Ops labels
changed iteration to Big Bang Iterations Jun 11, 2024 - Jun 24, 2024
Just wanted to add some clarification here as I feel like this could go in a wrong direction very easily. The helm tests (cypress included) should not be firing if there is more infrastructure/services required for the actual package to be considered healthy and ready for testing. In the past, we've had to go through and make sure we're removing all of the unnecessary waits and timeouts from Cypress tests as they were greatly increasing the amount of time it took for tests to complete and often still ended up failing.
The wait.sh script is the intended solution for these sort of race conditions if that is what's going on. Those are executed as part of the Package_Wait (prior to executing tests) step and ensure that all of the required items are in place (i.e. any additional k8s services, resources, etc.). The reason is because a helm chart can be seen as successfully installed even though its not 100% fully operational just yet.
If you check the logs under the artifacts for the last failed install job you'll see that the Fortify web app crashed:
https://repo1.dso.mil/big-bang/product/packages/fortify/-/jobs/35507632/artifacts/file/events.txt
May need to do a bit more digging to identify the actual root cause, but the cypress test failure isn't the cause, it's the symptom.
assigned to @alfredodiaz53
created branch
120-fix-cypress-test-race-conditionto address this issuementioned in merge request !150 (merged)
mentioned in merge request !153 (closed)
@alfredodiaz53 identified root cause as OOMKilled (Out of Memory). I have edited the issue title and description to reflect this.
@cshannon @julian.hair I believe you did some work on estimating resources, do you have anything to add to this?
I currently only have access to the DogFood cluster which isn't running Fortify. This explains why we missed it.
However, as I think we all know with OOMKilled, either bump the memory limits or if this keeps happening there's likely a memory leak that needs to be addressed. The node could be over-committed as well in which case adding another node could resolve the issue. Ideally, we can eventually get the other workloads right-sized so we won't have to "add a node".
-
@alfredodiaz53 we need to remove the overrides (test values for Package and BB) altogether so the default is used from values.yaml per @chris.oconnell
Values.yaml is currently set to:
resources: limits: cpu: 4 memory: 16Gi requests: cpu: 1 memory: 1GiThis should be a sufficient memory limit vs the 1Gi being given in the test values.. There are no issues when testing on k3d-dev with OOM which uses the above defaults.
Edited by Matt Vasquez
added statusdoing label
mentioned in commit 87c7391b
closed with merge request !150 (merged)
mentioned in merge request big-bang/bigbang!4516 (merged)
mentioned in commit big-bang/bigbang@4995b938
