[ovs-discuss] ovn-controller consuming lots of CPU

Ben Pfaff blp at ovn.org
Wed Dec 20 17:08:15 UTC 2017


On Tue, Dec 12, 2017 at 01:26:33PM -0800, Kevin Lin wrote:
> Hi again,
> 
> We’re trying to scale up our OVN deployment and we’re seeing some worrying log messages. 
> The topology is 32 containers connected to another 32 containers on 10 different ports. This is running on 17 machines (one machine runs ovn-northd and ovsdb-server, the other 16 run ovn-controller, ovs-vswitchd, and ovsdb-server). We’re using an address set for the source group, but not the destination group. We’re also creating a different ACL for each port. So the ACLs look like:
> One address set for { container1, container2, … container32 }
> addressSet -> container1 on port 80
> addressSet -> container1 on port 81
>> addressSet -> container1 on port 90
> addressSet -> container2 on port 80
>> addressSet -> container32 on port 90

Hmm, can you help me understand better what's going on?  I'd like to
help.

It sounds like this strategy for setting up ACL entries will not scale
well.  I guess you have 32*10 of them now, which doesn't bode well as
the number of containers or ports increases.  But that is not the
current problem.

After some reflection, I think that the easiest way to debug this might
be if you are willing to provide a copy of a northbound database that
exhibits the problem (ideally by attaching the DB file rather than some
kind of higher-level dump of it).  Is that OK?  If you do not want to
post it publicly to the mailing list, you can send it to me off-list and
I will keep it confidential.

Thanks,

Ben.


More information about the discuss mailing list