GoogleContainerTools
kaniko build using too many memory
I am building a rather large docker image, end size is ~8GB. It builds fine in DinD, however we would like to use kaniko. The kaniko pod running the dockerfile balloons in memory usage and gets killed by kubernetes. How can I make kaniko work for me, or am I stuck with DinD?
Please help, thank you
/cc @priyawadhwa Can we provide users anything to measure the memory usage ?
@jyipks Can you tell us if you have set resource limits in kaniko pod spec Also please tell us cluster specification
@tejal29 @jyipks the only thing I can think of is upping the resource limits on the pod as well
i had no resource limits on the kaniko pods. This was on a 3 node cluster, 4cores, 16GB each. From grafana i believe the pod attempted to use more than 15GB I was building a custom jupyter-notebook image, that normally comes out to be ~8GB upon build completion via docker build.
does kaniko keep everything in memory as its building the image or it writes to a temp directory? if it goes into a temp directory can you please provide it?
thanks
This sounds like #862.
@jyipks do you remember if you were using the --reproducible flag?
This also happens when trying to do an npm install - I also have never used that flag before.
Same problem on gitlab runner: latest debian with latest docker. Building 12Mb docker image uses 15Gb - 35Gb of memory.
We're facing the same issue in Gitlab CI custom runner. We're building a docker image for node, the build started hanging on webpack everytime and the machine ends up running out of memory and crashes. It used to work fine without any issue. Our docker image is a little less than 300MB and our machine has 8Gb ram
Similar issue on Gitlab CI on GKE. We're building a python image based on official python base image, it consumes about 12Gb of RAM
Would also like to learn more about this. Kaniko doesn't have a feature equivalent to docker build --memory, does it?
We're seeing similar issues too. For example, this job failed with OOM: https://gitlab.com/gitlab-com/gl-infra/tamland/-/jobs/1405946307
The job includes some stacktrace information, which may help in diagnosing the problem.
The parameters that we were using, including --snapshotMode=redo are here: https://gitlab.com/gitlab-com/gl-infra/tamland/-/commit/0b399381d30655059ec78461640674af7562c708#587d266bb27a4dc3022bbed44dfa19849df3044c_116_125
I'm having the same problem as well. But, in my case, it's a Java-based build and the Maven cache repo is being included as an ignore-path. The number of changes that should occur outside of that are fairly minimal, yet I'm easily seeing 5+ GB of RAM being used where the build before that was using at most 1.2GB. We'd love to be able to use smaller instances for our builds.
I rolled back to 1.3.0 from 1.6.0 and now it seems to work again
1.7 has a gcloud credentials problem, rolling back to 1.3.0 worked.
Do you know when the tag gcr.io/kaniko-project/executor:debug (as well as :latest) gets updated? It still points to the v1.6.0 version: https://console.cloud.google.com/gcr/images/kaniko-project/GLOBAL/executor
I was also experiencing a memory issues in the last part of the image building with v1.7.0.
INFO[0380] Taking snapshot of full filesystem...
Killed
I tried all kinds of combinations with --compressed-caching=false and removing the --reproducible flag, downgrading to v1.3.0 and stuff. I finally got the build to pass by using the --use-new-run flag.
--use-new-runUse the experimental run implementation for detecting changes without requiring file system snapshots. In some cases, this may improve build performance by 75%.
So I guess you should put that into your toolbox while banging your head against the wall :)
Also got this issue when building with v1.9.1.
INFO[0133] Taking snapshot of full filesystem...
Killed
reverted back to v1.3.0 and it works.
I am using 1.9.0 and it seems to eat quite some memory. With or without --compressed-caching=false, --use-new-run same issue sporadically "The node was low on resource: memory. Container build was using 5384444Ki, which exceeds its request of 0. Container helper was using 24720Ki, which exceeds its request of 0. "The node was low on resource: memory. Container helper was using 9704Ki, which exceeds its request of 0. Container build was using 6871272Ki, which exceeds its request of 0."
7 GB to build an simple image ? The memory consumption is ridiculous. Why does the same with standard docker just works with 1x40 x less memory request?
Reiterating what I stated in https://github.com/GoogleContainerTools/kaniko/issues/2275 as well:
We're having this issue as well with 1.9.1-debug. End size of the image should be ~9GB, but the kaniko build (on GKE) fails due to limit in memory. See attached image to share in my agony.
Had this issue with kaniko v1.8.0-debug, also tried v1.3.0-debug, same issue. killed or evicted pod due to memory pressure on the (previously idle) node. This was the case when building an image nearly 2.5GB large, with the --cache=true flag.
Solution for me was to use v1.9.2-debug with the following options:
--cache=true --compressed-caching=false --use-new-run --cleanup
Further advise (from research of other previous issues):
DO NOT use the flags --single-snapshot or --cache-copy-layers
I've got the same issue. For my case, I'm using a git context and cloning it itself takes 10Gi+ and gets killed before initiating the build on the latest versions. I tried with a node with more than 16Gi and it worked 1 out of 3 times.
We have the same problem, get this in gitlab ci:
INFO[0172] Taking snapshot of full filesystem...
Killed
Cleaning up project directory and file based variables
ERROR: Job failed: command terminated with exit code 137
Solution for me was to use v1.9.2-debug with the following options: --cache=true --compressed-caching=false --use-new-run --cleanup
This worked for me, Thank you very much,
FYI For anyone else running into this.
I have the same problem in v1.12.1-debug
INFO[0206] Taking snapshot of full filesystem...
Killed
Hello everyone just to give my input, here are some CPU/RAM metrics with different kaniko versions.
Just to clarify the container where the build runs is using github actions hosted runners with 2core and 4GB RAM
Picture 1 - kaniko 1.9.2-debug with cache enabled --> Push failed with message Killed
Picture 2 - kaniko 1.9.2-debug with cache enabled and these settings --compressed-caching=false --use-new-run --cleanup Push failed with message Killed
Picture 3 - kaniko 1.12.1-debug with cache enabled and these settings --compressed-caching=false --use-new-run --cleanup Push failed with message Killed
Picture 4 - kaniko 1.3.0-debug with cache enabled (the flag --compressed-caching is not supported in this version) --> Push WORKS
The resulting image has around 500MB and the container uses around 1 core and less than the memory limit of the container (4GB). This build works if we increase the memory limit to 16GB that is an overkill and a waste of resources. The jobs that are killed are in fact using almost half of the memory (~2GB) of the job that was successful (3GB)
I would say that something broke kaniko starting on version 1.3.0, but even with all the flags set the builds do not work and the memory usage is way less than with v1.3.0 (Update the builds started to fail from version v1.9.1)
Thanks for your help
UPDATE
Tested also other older kaniko versions.
with kaniko 1.5.2-debug with cache enabled
with kaniko 1.5.2-debug with cache enabled
with kaniko 1.6.0-debug with cache enabled
with kaniko 1.8.1-debug with cache enabled
with kaniko 1.9.0-debug with cache enabled
Starting with kaniko v1.9.1 the builds started to fail
