Re-write parts of AEP-4016 (VPA with In-Place Updates) to align with the new In-Place Updates KEP changes

[raywainman]

What type of PR is this?

/kind documentation
/kind feature

What this PR does / why we need it:

Many changes have happened to the In-Place Updates KEP since 2023, we need to refresh AEP-4016 to align with the new changes so that we can proceed with implementation.

Which issue(s) this PR fixes:

Part of #7673

Does this PR introduce a user-facing change?

NONE - internal documentation only

Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.:

All information linked in the AEP.

[k8s-ci-robot]

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

[raywainman]

/assign maxcao13

[k8s-ci-robot]

@raywainman: GitHub didn't allow me to assign the following users: maxcao13.

Note that only kubernetes members with read permissions, repo collaborators and people who have commented on this issue/PR can be assigned. Additionally, issues/PRs can only have 10 assignees at the same time.
For more information please see the contributor guide

In response to this:

/assign maxcao13

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[raywainman]

cc @maxcao13

[raywainman]

@maxcao13 We can consider cutting the "disruption-less" updates as part of our initial MVP. This essentially means that we have the current Auto mode + in-place updates.

Would love your thoughts :)

[raywainman]

/assign @laoj2

[k8s-ci-robot]

@raywainman: GitHub didn't allow me to assign the following users: laoj2.

Note that only kubernetes members with read permissions, repo collaborators and people who have commented on this issue/PR can be assigned. Additionally, issues/PRs can only have 10 assignees at the same time.
For more information please see the contributor guide

In response to this:

/assign @laoj2

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[raywainman]

cc @jpawelczak
cc @laoj2

[maxcao13]

Thanks for writing this up! Some comments and questions.

[maxcao13]

I'd say the updater should only attempt to apply these "disruptive" updates if the container restart resize policy is RestartContainer. VPA shouldn't actively try to do this otherwise. At least that's what I understood from the previous AEP description.

[laoj2]

Do you mean: if the container restart resize policy is RestartContainer, instead?

[maxcao13]

Yes! My mistake, I've edited the original comment,

[raywainman]

As discussed on Slack, I don't think VPA needs to care about the resize policy, I think it should simply attempt the resize operation if the user set it that way and let the rest of the Kubernetes machinery take care of actually applying the update.

Does that sound OK?

[raywainman]

I added a small section about the interaction between VPA and the ResizePolicy setting, hopefully that clarifies things a bit?

[laoj2]

Do you mean: if the container restart resize policy is RestartContainer, instead?

[adrianmoisey]

I'm not entirely sure if this AEP is the correct place to make this comment, but the promise of Auto was that it would one day support in-place, see https://github.com/kubernetes/autoscaler/blob/78c8173b979316f892327022d53369760b000210/vertical-pod-autoscaler/docs/api.md#updatemode

We've been promising users that if they use Auto today, one day in the future the VPA will start resizing their pods for them without recreating them.
It seems that this may not be the case since the container runtime can't guarantee it.

Do we need to start thinking about what to do with Auto in the future?

Again, I'm unsure if this really fits into the context of this AEP, but I thought I'd bring it up.

[maxcao13]

My 2 cents on this are that, switching Auto to be InPlace or some variation of InPlace would be a breaking change that should be in something like VPA 2.0. It may not "break" someone's configuration, but the change probably won't be the same expected behaviour in VPA 0.x and 1.x when the updater was freely evicting pods in Auto mode. Although, what I'm talking about is probably a discussion for the future timeline of VPA in general.

[sftim]

Changing the behavior of Auto, good idea. Major version bump to accompany that, also a good idea.

[voelzmo]

With the discussion around changing the behavior of auto, we're talking about a future where in-place vertical scaling is GA and not under a feature gate, right? IMHO it would feel a bit weird to make the default behavior of VPA depend on a beta feature gate.

[adrianmoisey]

With the discussion around changing the behavior of auto, we're talking about a future where in-place vertical scaling is GA and not under a feature gate, right?

Correct. Since the work on in-place is starting to happen now, and we are potentially diverging on the promise given to users, it seems appropriate to discuss Auto now, just so it's considered in our discussions as we move forward with the in-place rollout.

[raywainman]

Specified in the AEP that the intention is that this eventually graduates into the Auto mode.

[raywainman]

Thanks all! I've applied changes based on the feedback and some discussions we've on Slack.

Would love another look when folks have some time, thanks again!

[voelzmo]

Looks great! Not instantly approving to give others a chance for a second look.

[adrianmoisey]

/hold

EDIT: Oh, hold is already on this PR

[omerap12]

Looks great! Thanks @raywainman!

[adrianmoisey]

Just want to clarify this...
So an in-place update will be attempted, if that in-place fails, the VPA will not attempt an eviction?
Almost as if it was InPlaceOrNotAtAll ?

[raywainman]

It will attempt an eviction but the eviction won't go through because the actual condition will prevent it from happening. Let me clarify that in the text.

[adrianmoisey]

These two sentences seem to conflict with each other

[raywainman]

Clarified.

The idea here is that we can be slightly more relaxed with in-place resizes and still allow VPA to proceed with eviction when the operation fails. The eviction would get blocked anyway since these conditions themselves prevent eviction from happening. Hopefully that makes sense.

[adrianmoisey]

The content /lgtm

I left some mostly minor comments, and one clarification on wording

[laoj2]

/lgtm

Looks great, thanks @raywainman!

[k8s-ci-robot]

@laoj2: changing LGTM is restricted to collaborators

In response to this:

/lgtm

Looks great, thanks @raywainman!

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[maxcao13]

This looks great and clears up much of my concerns with the previous iteration. Thanks so much @raywainman. I think we'll be able to close #7722 from this too.

[raywainman]

cc @tallclair

[adrianmoisey]

/lgtm

Thank you!

[omerap12]

/lgtm for me too

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: omerap12, raywainman, voelzmo

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• vertical-pod-autoscaler/OWNERS [raywainman,voelzmo]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[raywainman]

Thanks all! Will merge this now. We can make further updates in new PRs as needed.

[raywainman]

/unhold