Skip to content

Commit

Permalink
Merge pull request #1 from ba1ajinaidu/blog1
Browse files Browse the repository at this point in the history 
First blag
  • Loading branch information
@ba1ajinaidu
ba1ajinaidu authored Oct 27, 2023
2 parents ccc3a73 + 88c141d commit 0700995
Showing 1 changed file with 17 additions and 18 deletions.
35 changes: 17 additions & 18 deletions content/posts/k8s-and-postgres.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,11 +5,11 @@ draft = false
+++


Recently came across a issue while restoring a backup of a postgres database running on a kubernetes cluster that the restoration failed due to a bus error/SIGBUS.
Recently, I encountered an issue while restoring a backup of a PostgreSQL database running on a Kubernetes cluster that the restoration failed due to a bus error/SIGBUS.
```
LOG: server process (PID 497) was terminated by signal 7: Bus error
```
Bus error is a signal raised by hardware, when a process tries to access a part of memory that the CPU cannot address physically. This was the first time I came across a bus error in kubernetes and was curious to see what was causing it. So the postgres pod/container is trying to access memory which doesn't exist(or it's not accessible by the container πŸ˜‰). First thing to look was for resource limits/requests in pod spec and check if postgres was trying to access/allocate more than the limit.
A bus error is a signal raised by hardware when a process tries to access a part of memory that the CPU cannot address physically. This was the first time I encountered a bus error in Kubernetes, and I was curious to see what was causing it. So the Postgres pod/container is trying to access memory, which doesn't exist(or it's not accessible by the container πŸ˜‰). The first thing to look for was resource limits/requests in pod spec and check if Postgres was trying to access/allocate more than the limit.

```
resources:
Expand All @@ -22,30 +22,30 @@ resources:
hugepages-2Mi: 128Mi
memory: 4096M
```
That seems fine and postgres was not trying to access more than 4GB of memory. After a quick search on google found that it could be [related to hugepages](https://github.com/kubernetes/kubernetes/issues/71233). The solution mentined in the issue was to turn off hugepages, which is not ideal because enabling hugepages can provide better performance for databases because you need to load less no of pages into memory.
That seems fine, and Postgres was not trying to access more than 4GB of memory. After a quick search on Google, found that it could be [related to huge pages](https://github.com/kubernetes/kubernetes/issues/71233). The solution mentioned in the issue was to turn off hugepages, which is not ideal because enabling hugepages can provide better performance for databases because you need to load fewer pages into memory.

### Quick detour
What is hugepage and why is it used in postgres?
What is a hugepage, and why is it used in Postgres?

In Linux, Virtual memory and paging work together to manage memory efficiently and provide an abstraction layer between actual physical memory and the user space. Virtual memory address space is divided into fixed-size units called pages and the physical memory is divided into fixed-size units called frames. usually both are of the same size(4KB is default page size on x86 systems). Page table stores the mapping between virtual and physical memory. When a CPU access memory using virtual address it needs to be translated to physical address, which involves looking up the page table. Accessing page tablescan be slow as page table resides in the main memory(RAM). To speed up the lookup/address translation, CPUs uses a TLB (Translation Lookaside Buffer) which is a small cache of recently used page table entries. TLBs are faster than page tables because they are smaller and specialized cache built within CPUs. When a CPU needs to translate a virtual address to a physical address, it first checks if the virtual address is in the TLB. If the translation is found in the TLB("TLB hit"), it just returns the physical address. If the translation is not found in the TLB("TLB miss"), it needs to access the page table to perform a translation, which is called a "page table walk" which is costly and time consuming.
In Linux, Virtual memory and paging work together to manage memory efficiently and provide an abstraction layer between actual physical memory and the user space. Virtual memory address space is divided into fixed-size units called pages, and the physical memory is divided into fixed-size units called frames. Usually, both are the same size(4KB is the default page size on x86 systems). The page table stores the mapping between virtual and physical memory. When a CPU accesses memory using a virtual address, it must be translated to a physical address, which involves looking up the page table. Accessing page tables can be slow as page table resides in the main memory(RAM). To speed up the lookup/address translation, CPUs use TLB (Translation Lookaside Buffer), a small cache of recently used page table entries. TLBs are faster than page tables because they are smaller and specialized cache built within CPUs. When a CPU needs to translate a virtual address to a physical address, it first checks if the virtual address is in the TLB. If the translation is found in the TLB("TLB hit"), it just returns the physical address. If the translation is not found in the TLB("TLB miss"), it needs to access the page table to perform a translation, which is called a "page table walk", which is costly and time-consuming.


As the amount of physical memory increases(because of the clouds), number of TLB entries required to manage the memory increases to provide better performance. So, to solve this either you can increase the the size of TLB(not ideal) or increase the size of the pages from 4KB(hugepages).
As the amount of physical memory increases(because of the clouds), the number of TLB entries required to manage the memory increases to provide better performance. So, to solve this, either you can increase the the size of TLB(not ideal) or increase the size of the pages from 4KB(hugepages).

Hugepages address this by using larger contagious memory blocks(eg 2MB or 1GB on x86 systems), so now a single TLB entry can map large memory space.By using hugepages, with the same TLB size more memory can managed with fewer TLB misses.
Hugepages address this by using larger contagious memory blocks(e.g. 2MB or 1GB on x86 systems), so now a single TLB entry can map large memory space. By using hugepages with the same TLB size, more memory can managed with fewer TLB misses.


When memory is not tuned properly, databases try to use up all the memory on the node and crash due to OOM(Out Of Memory) killer. Infact this is one of the top reason for most of the postgreSQL database crashes reported to percona, and they have explained the reason and need of hugepages in this [article](https://www.percona.com/blog/why-linux-hugepages-are-super-important-for-database-servers-a-case-with-postgresql/).
When memory is not tuned correctly, databases try to use up all the memory on the node and crash due to the OOM(Out Of Memory) killer. This is one of the top reasons for most of the PostgreSQL database crashes reported to Percona, and they have explained the reason and need for hugepages in this [article](https://www.percona.com/blog/why-linux-hugepages-are-super-important-for-database-servers-a-case-with-postgresql/).

> TLDR:
Page table gets bloated because it's trying to cache too many translations of smaller pages and starts consuming all the memory including swap. Solution to this is to enable hugepages and tune no of hugepages based on heuristics. This reduces the memory consumption by a big margin and the background processes won't be targeted by OOM Killer.
The page table gets bloated because it's trying to cache too many translations of smaller pages and consuming all the memory, including swap. A solution to this is to enable hugepages and tune the number of hugepages based on heuristics. This reduces memory consumption considerably, and the background processes won't be targeted by OOM Killer.

## How to confirm if it was due to hugepages

I was still not sure if the SIGBUS was because of hugepages in the postgres pod/container. To confim this I had a simple plan
I was still unsure if the SIGBUS was because of hugepages in the Postgres pod/container. To confirm this, I had a simple plan.

- Allocate 128Mi/2Mi = 64 hugepages inside the pod and see if it works fine without error.
- Allocate 100 hugepages(which is more than the configured limit set on pod spec) - it should throw error right? It didn't 🧐
- Allocate 100 hugepages(which is more than the configured limit set on pod spec) - it should throw an error, right? It didn't 🧐
- Allocate 100 hugepages and try to write to the allocated memory

Wrote simple C programs to do this:
Expand Down Expand Up @@ -86,7 +86,7 @@ int main() {
alloc.c


This program just allocates the no of hugepages specified and prints whether the allocation was successful or not. When I ran this to allocate 64 pages and 100 pages it successfully allocated for both the runs. I was surprised how it could allocate more than 64 pages(that's the resource limit we have set). Upon checking the no of available hugepages on the pod I found out it has the same no of pages as the host node and not the limit configured on pod spec.
This program just allocates the no of hugepages specified and prints whether the allocation was successful or not. When I ran this to allocate 64 and 100 pages, it successfully allocated for both runs. I was surprised how it could allocate more than 64 pages(the resource limit we have set). Upon checking the number of available hugepages on the pod, I found out it has the same number of pages as the host node and not the limit configured on the pod spec.

```
$ grep -i hugepage /proc/meminfo
Expand All @@ -97,7 +97,7 @@ HugePages_Surp: 0
Hugepagesize: 2048 kB
```

That's not good, so a pod can use up all the hugepages on the host node? Not actually. I wrote another C program which allocates memory and tries to write something to the allocated space.
That's not good. So, Can a pod use up all the hugepages on the host node? Not actually. I wrote another C program which allocates memory and tries to write something to the allocated space.

``` go
#include <stdio.h>
Expand Down Expand Up @@ -159,22 +159,21 @@ writemem.c

![SIGBUS](/img/sigbus.png)

Now running this on the pod triggered a SIGBUS/Bus error πŸŽ‰. So a pod can allocate as many hugepages as the host node has but can't use all the allocated memory because of the limits configured in the pod spec. That explains why we got a Bus error while restoring the backup, pod tried to allocate more than 64 hugepages and it was successful. Postgres process tried to use that allocated memory but the pod physically can't address the memory outside the configured limits and threw a Bus error. That sounds really bad, when there's a SIGBUS the process is terminated(as we saw in the original log), so all postgres server processes are terminated and this triggers a auto-recovery which tries to start the postgres server and there are high chances that it might fail again because of bus error. This can potentially corrupt the database πŸ’€.

Now, running this on the pod triggered a SIGBUS/Bus error πŸŽ‰. So, a pod can allocate as many hugepages as the host node has but can't use all the allocated memory because of the limits configured in the pod spec. That explains why we got a Bus error while restoring the backup. Pod tried to allocate more than 64 hugepages, and it was successful. Postgres process tried to use that allocated memory, but the pod physically couldn't address the memory outside the configured limits and threw a Bus error. That sounds bad; when there's a SIGBUS, the process is terminated(as we saw in the original log), so all Postgres server processes are terminated, and this triggers an auto-recovery, which tries to start the Postgres server. There is a high chance that it might fail again because of a bus error. This can potentially corrupt the database πŸ’€.

## How to overcome this and run postgres on k8s then?

Let me remind you, yu can configure no of hugepages via sysctl (`vm.nr_hugepages`). So can't we just set no of hugepages on a pod and call it a day? You can't configure or change all sysctl values in a pod, you should enable the sysctl on kubelet via a kubelet arg `--allowed-unsafe-sysctls=<sysctl_name>`. But even with this you can't configure `vm.nr_hugepages` sysctl on pod level because it's not namespaced. What this means is it can't be set independently for each pod on a node and being namespaced is a requirement for sysctl to be accessible in a pod context. You might see something similar to this if it's not namespaced.
Remember that you can configure no of hugepages via sysctl (`vm.nr_hugepages`). So, can't we just set the number of hugepages on a pod and call it a day? You can't configure or change all sysctl values in a pod; you should enable the sysctl on the kubelet via a kubelet arg `--allowed-unsafe-sysctls=<sysctl_name>`. But even with this, you can't configure the `vm.nr_hugepages` sysctl on the pod level because it's not namespaced. What this means is it can't be set independently for each pod on a node, and being namespaced is a requirement for sysctl to be accessible in a pod context. You might see something similar to this if it's not namespaced.

```
FATA[0003] Error: failed to run Kubelet: failed to create kubelet: the sysctl "vm.nr_hugepages" are not known to be namespaced
```

## Conclusion

So, is it safe to run postgres databases on kubernetes clusters?
So, is it safe to run Postgres databases on a Kubernetes cluster?

If you are just running 1 postgres database on a cluster, you can schedule the postgres pods on particluar nodes using taints and tolerations where you have enabled hugepages and it can use all the hugepages of the underlying node. But if you want to run multiple databases on a cluster then postgres won't play nice with k8s, it's not very reliable and you might face these issues. And obviously you can always go back and disable hugepages and run multiple databases on a cluster, you'll loose all the performance advantages provided by hugepages and the OOM Killer can crash the postgres processes as explained in the article by Percona.
If you are running 1 Postgres database on a cluster, you can schedule the Postgres pods on particular nodes using taints and tolerations where you have enabled hugepages, and it can use all the hugepages of the underlying node. But if you want to run multiple databases on a cluster, then Postgres won't play nice with k8s; it's not very reliable, and you might face these issues. And obviously, you can always go back and disable hugepages and run multiple databases on a cluster; you'll lose all the performance advantages provided by hugepages, and the OOM Killer can crash the Postgres processes, as explained in the article by Percona.


### References
Expand Down

0 comments on commit 0700995

Please sign in to comment.