2022-11-02 14:34:37 +02:00
|
|
|
---
|
|
|
|
|
title: "NFD-Master"
|
|
|
|
|
layout: default
|
|
|
|
|
sort: 3
|
|
|
|
|
---
|
|
|
|
|
|
|
|
|
|
# NFD-Master
|
|
|
|
|
{: .no_toc}
|
|
|
|
|
|
|
|
|
|
---
|
|
|
|
|
|
2022-12-01 19:28:25 +02:00
|
|
|
NFD-Master is responsible for connecting to the Kubernetes API server and
|
|
|
|
|
updating node objects. More specifically, it modifies node labels, taints and
|
|
|
|
|
extended resources based on requests from nfd-workers and 3rd party extensions.
|
|
|
|
|
|
|
|
|
|
## NodeFeature controller
|
|
|
|
|
|
2023-09-05 13:47:25 +02:00
|
|
|
The NodeFeature Controller uses NodeFeature objects as
|
2023-01-11 17:23:36 -08:00
|
|
|
the input for the [NodeFeatureRule](custom-resources.md#nodefeaturerule)
|
2022-12-01 19:28:25 +02:00
|
|
|
processing pipeline. In addition, any labels listed in the NodeFeature object
|
|
|
|
|
are created on the node (note the allowed
|
2023-01-11 17:23:36 -08:00
|
|
|
[label namespaces](customization-guide.md#node-labels) are controlled).
|
2022-12-01 19:28:25 +02:00
|
|
|
|
|
|
|
|
## NodeFeatureRule controller
|
|
|
|
|
|
|
|
|
|
NFD-Master acts as the controller for
|
2023-01-11 17:23:36 -08:00
|
|
|
[NodeFeatureRule](custom-resources.md#nodefeaturerule) objects.
|
2022-12-01 19:28:25 +02:00
|
|
|
It applies the rules specified in NodeFeatureRule objects on raw feature data
|
2023-09-05 13:47:25 +02:00
|
|
|
and creates node labels accordingly. The feature data used as the input is
|
|
|
|
|
received from nfd-worker instances through
|
|
|
|
|
[NodeFeature](custom-resources.md#nodefeature-custom-resource) objects.
|
|
|
|
|
|
Deprecate gRPC API
Now that the NodeFeature API has been set enabled by default, the gRPC
mode will be deprecated and with it all flags and features around it.
For nfd-master, flags
-port, -key-file, -ca-file, -cert-file, -verify-node-name, -enable-nodefeature-api
are now marked as deprecated.
For nfd-worker flags
-enable-nodefeature-api, -ca-file, -cert-file, -key-file, -server, -server-name-override
are now marked as deprecated.
Deprecated flags, as well as gRPC related code will be removed in future
releases.
Signed-off-by: Carlos Eduardo Arango Gutierrez <eduardoa@nvidia.com>
Co-authored-by: Markus Lehtonen <markus.lehtonen@intel.com>
2023-09-06 10:22:13 +02:00
|
|
|
> **NOTE**: when gRPC (**DEPRECATED**) is used for communicating
|
2024-03-14 19:23:07 +01:00
|
|
|
> the features (by setting the flag `-feature-gates NodeFeatureAPI=false` on both
|
|
|
|
|
> nfd-master and nfd-worker, or via Helm values.featureGates.NodeFeatureAPI=false),
|
Deprecate gRPC API
Now that the NodeFeature API has been set enabled by default, the gRPC
mode will be deprecated and with it all flags and features around it.
For nfd-master, flags
-port, -key-file, -ca-file, -cert-file, -verify-node-name, -enable-nodefeature-api
are now marked as deprecated.
For nfd-worker flags
-enable-nodefeature-api, -ca-file, -cert-file, -key-file, -server, -server-name-override
are now marked as deprecated.
Deprecated flags, as well as gRPC related code will be removed in future
releases.
Signed-off-by: Carlos Eduardo Arango Gutierrez <eduardoa@nvidia.com>
Co-authored-by: Markus Lehtonen <markus.lehtonen@intel.com>
2023-09-06 10:22:13 +02:00
|
|
|
> (re-)labelling only happens when a request is received from nfd-worker.
|
|
|
|
|
> That is, in practice rules are evaluated and labels for each node are created
|
|
|
|
|
> on intervals specified by the
|
2023-01-11 17:23:36 -08:00
|
|
|
> [`core.sleepInterval`](../reference/worker-configuration-reference.md#coresleepinterval)
|
2022-12-01 19:28:25 +02:00
|
|
|
> configuration option of nfd-worker instances. This means that modification or
|
|
|
|
|
> creation of NodeFeatureRule objects does not instantly cause the node
|
|
|
|
|
> labels to be updated. Instead, the changes only come visible in node labels
|
|
|
|
|
> as nfd-worker instances send their labelling requests. This limitation is not
|
|
|
|
|
> present when gRPC interface is disabled
|
2023-01-11 17:23:36 -08:00
|
|
|
> and [NodeFeature](custom-resources.md#nodefeature-custom-resource) API is used.
|
2022-12-01 19:28:25 +02:00
|
|
|
|
2023-03-05 22:56:46 +01:00
|
|
|
## Master configuration
|
|
|
|
|
|
|
|
|
|
NFD-Master supports dynamic configuration through a configuration file. The
|
|
|
|
|
default location is `/etc/kubernetes/node-feature-discovery/nfd-master.conf`,
|
|
|
|
|
but, this can be changed by specifying the`-config` command line flag.
|
|
|
|
|
Configuration file is re-read whenever it is modified which makes run-time
|
|
|
|
|
re-configuration of nfd-master straightforward.
|
|
|
|
|
|
|
|
|
|
Master configuration file is read inside the container, and thus, Volumes and
|
|
|
|
|
VolumeMounts are needed to make your configuration available for NFD. The
|
|
|
|
|
preferred method is to use a ConfigMap which provides easy deployment and
|
|
|
|
|
re-configurability.
|
|
|
|
|
|
|
|
|
|
The provided nfd-master deployment templates create an empty configmap and
|
|
|
|
|
mount it inside the nfd-master containers. In kustomize deployments,
|
|
|
|
|
configuration can be edited with:
|
|
|
|
|
|
|
|
|
|
```bash
|
|
|
|
|
kubectl -n ${NFD_NS} edit configmap nfd-master-conf
|
|
|
|
|
```
|
|
|
|
|
|
|
|
|
|
In Helm deployments,
|
|
|
|
|
[Master pod parameter](../deployment/helm.md#master-pod-parameters)
|
|
|
|
|
`master.config` can be used to edit the respective configuration.
|
|
|
|
|
|
|
|
|
|
See
|
|
|
|
|
[nfd-master configuration file reference](../reference/master-configuration-reference.md)
|
|
|
|
|
for more details.
|
|
|
|
|
The (empty-by-default)
|
|
|
|
|
[example config](https://github.com/kubernetes-sigs/node-feature-discovery/blob/{{site.release}}/deployment/components/master-config/nfd-master.conf.example)
|
|
|
|
|
contains all available configuration options and can be used as a reference
|
|
|
|
|
for creating a configuration.
|
|
|
|
|
|
2022-12-01 19:28:25 +02:00
|
|
|
## Deployment notes
|
|
|
|
|
|
|
|
|
|
NFD-Master runs as a deployment, by default
|
2022-11-02 14:34:37 +02:00
|
|
|
it prefers running on the cluster's master nodes but will run on worker
|
|
|
|
|
nodes if no master nodes are found.
|
|
|
|
|
|
2023-11-28 20:27:33 +02:00
|
|
|
For High Availability, you should increase the replica count of
|
2022-11-02 14:34:37 +02:00
|
|
|
the deployment object. You should also look into adding
|
|
|
|
|
[inter-pod](https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity)
|
|
|
|
|
affinity to prevent masters from running on the same node.
|
|
|
|
|
However note that inter-pod affinity is costly and is not recommended
|
|
|
|
|
in bigger clusters.
|
|
|
|
|
|
2023-09-05 13:47:25 +02:00
|
|
|
> **Note:** When NFD-Master is intended to run with more than one replica,
|
|
|
|
|
> it is advised to use `-enable-leader-election` flag. This flag turns on
|
|
|
|
|
> leader election for NFD-Master and let only one replica to act on changes
|
|
|
|
|
> in NodeFeature and NodeFeatureRule objects.
|
2022-11-02 14:34:37 +02:00
|
|
|
|
|
|
|
|
If you have RBAC authorization enabled (as is the default e.g. with clusters
|
|
|
|
|
initialized with kubeadm) you need to configure the appropriate ClusterRoles,
|
2023-12-01 15:55:45 +02:00
|
|
|
ClusterRoleBindings and a ServiceAccount for NFD to create node
|
2022-11-02 14:34:37 +02:00
|
|
|
labels. The provided template will configure these for you.
|
