Re: Possible netns creation and execution performance/scalability regression since v3.8 due to rcu callbacks being offloaded to multiple cpus

From: David Chiluk
Date: Wed Jun 11 2014 - 11:46:14 EST

Next message: Alexander Shishkin: "[RFC v2 4/7] perf: add a capability for AUX_NO_SG pmus to do software double buffering"
Previous message: Alexander Shishkin: "[RFC v2 2/7] perf: add AUX area to ring buffer for raw data streams"
In reply to: Rafael Tinoco: "Re: Possible netns creation and execution performance/scalability regression since v3.8 due to rcu callbacks being offloaded to multiple cpus"
Next in thread: Paul E. McKenney: "Re: Possible netns creation and execution performance/scalability regression since v3.8 due to rcu callbacks being offloaded to multiple cpus"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 06/11/2014 10:17 AM, Rafael Tinoco wrote:
> This script simulates a failure on a cloud infrastructure, for ex. As soon as
> one virtualization host fails all its network namespaces have to be migrated
> to other node. Creating thousands of netns in the shortest time possible
> is the objective here. This regression was observed trying to migrate from
> v3.5 to v3.8+.
>
> Script creates up to 3000/4000 thousands network namespaces and places
> links on them. Every 250 mark (netns already created) we have a throughput
> average (how many were created per second up from last mark to this one).

Here's a little more background, and the "why it matters".

In an openstack cloud, neutron *(openstack's networking framework) keeps
all customers of the cloud separated via network namespaces. On each
compute node this is not a big deal, since each compute node can only
handle at most a few hundred VMs. However in order for neutron to route
a customer's network traffic between disparate compute hosts, it uses
the concept of a neutron gateway. In order for customer A's vm on host
1 to talk to customer A's vm on host 2, it must first go through a gre
tunnel to the neutron gateway. The Neutron gateay then turns around and
routes the network traffic over another gre tunnel to host 2. The
neutron gateway is where the problem is.

The neutron gateway must have a network namespace for every net
namespace in the cloud. Granted this collection can be split up by
increasing the number of neutron gateways *(scaling out), but some
clouds have decided to run these gateways on very beefy machines. As
you can see by the graph, there is a software limitation that prevents
these machines from hosting any more than a few thousand namespaces.
This makes the gateway's hardware severely under-utilized.

Now think about what happens when a gateway goes down, the namespaces
need to be migrated, or a new machine needs to be brought up to replace
it. When we're talking about 3000 namespaces, the amount of time it
takes simply to recreate the namespaces becomes very significant.

The script is a stripped down example of what exactly is being done on
the neutron gateway in order to create namespaces.

Dave.

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alexander Shishkin: "[RFC v2 4/7] perf: add a capability for AUX_NO_SG pmus to do software double buffering"
Previous message: Alexander Shishkin: "[RFC v2 2/7] perf: add AUX area to ring buffer for raw data streams"
In reply to: Rafael Tinoco: "Re: Possible netns creation and execution performance/scalability regression since v3.8 due to rcu callbacks being offloaded to multiple cpus"
Next in thread: Paul E. McKenney: "Re: Possible netns creation and execution performance/scalability regression since v3.8 due to rcu callbacks being offloaded to multiple cpus"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]