RDMA Environment Preparation and Installation¶

This chapter mainly introduces the parameters and instructions for RDMA when installing Spiderpool. Currently, RDMA supports the following two usage modes:

• Based on Macvlan/IPVLAN CNI, using RDMA Shared mode to expose the RoCE network card on the host to the Pod. It is necessary to deploy the Shared Device Plugin to expose the RDMA network card resources and schedule Pods.

• Based on SR-IOV CNI, using RDMA Exclusive mode to expose the RoCE network card on the host to the Pod. The RDMA CNI needs to be used to achieve RDMA device isolation.

Prerequisites¶

1. Please make sure that RDMA devices are available in the cluster environment.

2. Please make sure that the corresponding OFED driver is available in the cluster, in this example, we use the Mellanox ConnectX 5 network card with RoCE support. You can install the latest OFED driver according to the NVIDIA official guide. You can use the following command to check the RDMA devices:

   rdma link show
   link mlx5_0/1 state ACTIVE physical_state LINK_UP netdev ens6f0np0
   link mlx5_1/1 state ACTIVE physical_state LINK_UP netdev ens6f1np1
   

   If you are using SR-IOV CNI to isolate RDMA network cards, please meet one of the following conditions:

   • The kernel version requires 5.3.0 or higher, and the RDMA module is loaded in the system. The rdma-core package provides the function of automatically loading the relevant modules at system startup.
   • Mellanox OFED requires version 4.7 or higher. In this case, it is not necessary to use a kernel version of 5.3.0 or higher.

Exposing RoCE Network Card based on Macvlan/IPVLAN¶

1. When exposing the RoCE network card based on Macvlan/IPVLAN, you need to make sure that the RDMA subsystem on the host is working in Shared mode. Otherwise, please switch to Shared mode.

   # Check the RoCE network card mode
   rdma system
   netns shared copy-on-fork on
   
   # Switch to shared mode
   rdma system set netns shared
   

2. Confirm the information of the RDMA network card for subsequent device plugin discovery.

   Enter the following command to view the vendor of the network card, which is 15b3, and the deviceIDs, which is 1017. This information is required when deploying Spiderpool.

   $ lspci -nn | grep Ethernet
   af:00.0 Ethernet controller [0200]: Mellanox Technologies MT27800 Family [ConnectX-5] [15b3:1017]
   af:00.1 Ethernet controller [0200]: Mellanox Technologies MT27800 Family [ConnectX-5] [15b3:1017]
   

3. Install Spiderpool and configure the parameters related to the Shared Device Plugin. Please refer to Installing Spiderpool for deployment details.

   Parameter	Value	Description
   RdmaSharedDevicePlugin.install	True	Whether to enable RdmaSharedDevicePlugin
   rdmaSharedDevicePlugin.deviceConfig.resourceName	hca_shared_devices	Define the name of the Shared RDMA Device resource, which needs to be used when creating Workloads
   rdmaSharedDevicePlugin.deviceConfig.deviceIDs	1017	Device ID number, consistent with the information queried in the previous step
   rdmaSharedDevicePlugin.deviceConfig.vendors	15b3	Network card Vendors information, consistent with the information queried in the previous step

   

   After successful deployment, you can view the installed components.

   

4. After the installation is complete, you can log in to the controller node to view the reported RDMA device resources.

   kubectl get no -o json | jq -r '[.items[] | {name:.metadata.name, allocable:.status.allocatable}]'
     [
       {
          "name": "10-20-1-10",
          "allocable": {
            "cpu": "40",
            "memory": "263518036Ki",
            "pods": "110",
            "spidernet.io/hca_shared_devices": "500", # Number of available hca_shared_devices
            ...
         }
       },
       ...
     ]
   

   If the reported resource count is 0, possible reasons are:

   • Please confirm that the vendors and deviceID in the Configmap spiderpool-rdma-shared-device-plugin match the actual ones.
   • Check the logs of rdma-shared-device-plugin. For network cards that support RDMA, if the following error is found in the log, you can try to run apt-get install rdma-core or dnf install rdma-core on the host to install rdma-core.

   error creating new device: "missing RDMA device spec for device 0000:04:00.0, RDMA device \"issm\" not found"
   

5. If Spiderpool has been successfully deployed and the Device resources have been successfully discovered, please complete the following steps:

   • Complete the creation of Multus instances, refer to Creating Multus CR
   • Complete the creation of IP Pool, refer to Creating Subnets and IP Pool

6. After the creation is complete, you can use this resource pool to create workloads. Please refer to Using RDMA in Workloads for details. For more usage methods, please refer to Using IP Pool in Workloads.

Using RoCE Network Card based on SR-IOV¶

1. When exposing the RoCE network card based on SR-IOV, you need to make sure that the RDMA subsystem on the host is working in exclusive mode. Otherwise, please switch to exclusive mode.

   # Switch to exclusive mode, invalid after restarting the host
   rdma system set netns exclusive
   
   # Persistently configure, please restart the machine after modification
   echo "options ib_core netns_mode=0" >> /etc/modprobe.d/ib_core.conf
   
   rdma system
   netns exclusive copy-on-fork on
   

2. Confirm that the network card has SR-IOV functionality and check the maximum number of VFs supported:

   cat /sys/class/net/ens6f0np0/device/sriov_totalvfs
   

   The output is similar to:

   8
   

3. Confirm the information of the RDMA network card for subsequent Device Plugin discovery.

   In this demo environment, the network card vendors is 15b3, and the network card deviceIDs is 1017. These information will be used when creating SriovNetworkNodePolicy in the next step.

   lspci -nn | grep Ethernet
   

   The output is similar to:

   04:00.0 Ethernet controller [0200]: Mellanox Technologies MT27800 Family [ConnectX-5] [15b3:1017]
   04:00.1 Ethernet controller [0200]: Mellanox Technologies MT27800 Family [ConnectX-5] [15b3:1017]
   

4. Install Spiderpool and enable RDMA CNI and SR-IOV CNI. Please refer to Installing Spiderpool for installation details.

   Parameter	Value	Description
   multus.multusCNI.defaultCniCRName	sriov-rdma	Default CNI name, specifies the name of the NetworkAttachmentDefinition instance used by multus by default. If the multus.multusCNI.defaultCniCRName option is not empty, an empty NetworkAttachmentDefinition corresponding instance will be automatically generated after installation. If the multus.multusCNI.defaultCniCRName option is empty, an attempt will be made to create a corresponding NetworkAttachmentDefinition instance based on the first CNI configuration in the /etc/cni/net.d directory. Otherwise, a NetworkAttachmentDefinition instance named default will be automatically generated to complete the installation of multus.
   sriov.install	true	Enable SR-IOV CNI
   plugins.installRdmaCNI	true	Enable RDMA CNI

   

   

   

5. After the installation is complete, the installed components are as follows:

   

6. Refer to the following SriovNetworkNodePolicy configuration to allow the SR-IOV Operator to create VFs on the host and report resources.

   The YAML configuration is as follows:

   apiVersion: sriovnetwork.openshift.io/v1
   kind: SriovNetworkNodePolicy
   metadata:
     name: policyrdma
     namespace: kube-system
   spec:
     nodeSelector:
       kubernetes.io/os: "linux"
     resourceName: mellanoxrdma  # Custom resource name, used when creating applications
     priority: 99
     numVfs: 8  # Number of available numVFS, cannot be greater than the maximum available number queried in step 2
     nicSelector:
       deviceID: "1017" # Device ID queried in step 3
       rootDevices: # rootDevices pfNames queried in step 3
       - 0000:04:00.0 
       vendor: "15b3" # Network card vendors queried in step 3
     deviceType: netdevice
     isRdma: true  # Enable RDMA
   

   Interface configuration:

   

   

7. After the installation is complete, check the available device resources:

   kubectl get no -o json | jq -r '[.items[] | {name:.metadata.name, allocable:.status.allocatable}]'
   [
    {
      "name": "10-20-1-220",
      "allocable": {
        "cpu": "56",
        "ephemeral-storage": "3971227249029",
        "hugepages-1Gi": "0",
        "hugepages-2Mi": "0",
        "memory": "131779740Ki",
        "pods": "110",
        "spidernet.io/hca_shared_devices": "0",
        "spidernet.io/mellanoxrdma": "8", # Number of available device resources
        ...
      }
    }
   

8. If Spiderpool has been successfully deployed and the Device resources have been successfully discovered, please complete the following steps:

   • Complete the creation of Multus instances, please refer to Creating Multus CR
   • Complete the creation of IP Pool, please refer to Creating Subnets and IP Pool

   After the creation is complete, you can use this resource pool to create workloads. Please refer to Using RDMA in Workloads for details. For more usage methods, please refer to Using IP Pool in Workloads.

Comments