diff --git a/charts/tidb-backup/values.yaml b/charts/tidb-backup/values.yaml index e5fb6d3c0e2..455bfb718b3 100644 --- a/charts/tidb-backup/values.yaml +++ b/charts/tidb-backup/values.yaml @@ -10,7 +10,7 @@ mode: backup # backup | restore name: fullbackup-20190306 image: pullPolicy: IfNotPresent - binlog: pingcap/tidb-binlog:v2.1.0 + binlog: pingcap/tidb-binlog:v2.1.8 # https://github.com/tennix/tidb-cloud-backup backup: pingcap/tidb-cloud-backup:latest diff --git a/charts/tidb-cluster/templates/config/_drainer-config.tpl b/charts/tidb-cluster/templates/config/_drainer-config.tpl index 59f4c7009a1..a93d90a7bc0 100644 --- a/charts/tidb-cluster/templates/config/_drainer-config.tpl +++ b/charts/tidb-cluster/templates/config/_drainer-config.tpl @@ -13,6 +13,9 @@ data-dir = "/data" # a comma separated list of PD endpoints pd-urls = "http://{{ template "cluster.name" . }}-pd:2379" +# Use the specified compressor to compress payload between pump and drainer +compressor = "" + #[security] # Path of file that contains list of trusted SSL CAs for connection with cluster components. # ssl-ca = "/path/to/ca.pem" @@ -24,14 +27,18 @@ pd-urls = "http://{{ template "cluster.name" . }}-pd:2379" # syncer Configuration. [syncer] -# disable sync these schema -ignore-schemas = {{ .Values.binlog.drainer.ignoreSchemas | default "INFORMATION_SCHEMA,PERFORMANCE_SCHEMA,mysql" | quote }} +# Assume the upstream sql-mode. +# If this is set , will use the same sql-mode to parse DDL statment, and set the same sql-mode at downstream when db-type is mysql. +# The default value will not set any sql-mode. +# sql-mode = "STRICT_TRANS_TABLES,NO_ENGINE_SUBSTITUTION" # number of binlog events in a transaction batch -txn-batch = {{ .Values.binlog.drainer.txnBatch | default 1 }} +txn-batch = {{ .Values.binlog.drainer.txnBatch | default 20 }} # work count to execute binlogs -worker-count = {{ .Values.binlog.drainer.workerCount | default 1 }} +# if the latency between drainer and downstream(mysql or tidb) are too high, you might want to increase this +# to get higher throughput by higher concurrent write to the downstream +worker-count = {{ .Values.binlog.drainer.workerCount | default 16 }} disable-dispatch = {{ .Values.binlog.drainer.disableDispatch | default false }} @@ -42,10 +49,14 @@ safe-mode = {{ .Values.binlog.drainer.safeMode | default false }} # valid values are "mysql", "pb", "tidb", "flash", "kafka" db-type = "{{ .Values.binlog.drainer.destDBType }}" +# disable sync these schema +ignore-schemas = {{ .Values.binlog.drainer.ignoreSchemas | default "INFORMATION_SCHEMA,PERFORMANCE_SCHEMA,mysql" | quote }} + ##replicate-do-db priority over replicate-do-table if have same db name ##and we support regex expression , start with '~' declare use regex expression. # #replicate-do-db = ["~^b.*","s1"] + #[[syncer.replicate-do-table]] #db-name ="test" #tbl-name = "log" @@ -54,6 +65,11 @@ db-type = "{{ .Values.binlog.drainer.destDBType }}" #db-name ="test" #tbl-name = "~^a.*" +# disable sync these table +#[[syncer.ignore-table]] +#db-name = "test" +#tbl-name = "log" + {{- if eq .Values.binlog.drainer.destDBType "mysql" }} # the downstream mysql protocol database [syncer.to] @@ -61,10 +77,9 @@ host = {{ .Values.binlog.drainer.mysql.host | quote }} user = {{ .Values.binlog.drainer.mysql.user | default "root" | quote }} password = {{ .Values.binlog.drainer.mysql.password | quote }} port = {{ .Values.binlog.drainer.mysql.port | default 3306 }} -# Time and size limits for flash batch write -time-limit = {{ .Values.binlog.drainer.mysql.timeLimit | default "30s" | quote }} -size-limit = {{ .Values.binlog.drainer.mysql.sizeLimit | default 100000 | quote }} + [syncer.to.checkpoint] +# you can uncomment this to change the database to save checkpoint when the downstream is mysql or tidb #schema = "tidb_binlog" {{- end }} @@ -73,6 +88,7 @@ size-limit = {{ .Values.binlog.drainer.mysql.sizeLimit | default 100000 | quote # Compress compresses output file, like pb and sql file. Now it supports "gzip" algorithm only. # Values can be "gzip". Leave it empty to disable compression. [syncer.to] +# directory to save pb file, default same as data-dir(save checkpoint file) if this is not configured. dir = "/data/pb" compression = "gzip" {{- end }} diff --git a/charts/tidb-cluster/templates/config/_grafana-config.tpl b/charts/tidb-cluster/templates/config/_grafana-config.tpl deleted file mode 100644 index 1e0f4ecd4f7..00000000000 --- a/charts/tidb-cluster/templates/config/_grafana-config.tpl +++ /dev/null @@ -1,409 +0,0 @@ -##################### Grafana Configuration Example ##################### -# -# Everything has defaults so you only need to uncomment things you want to -# change - -# possible values : production, development -; app_mode = production - -# instance name, defaults to HOSTNAME environment variable value or hostname if HOSTNAME var is empty -; instance_name = ${HOSTNAME} - -#################################### Paths #################################### -[paths] -# Path to where grafana can store temp files, sessions, and the sqlite3 db (if that is used) -# -;data = /var/lib/grafana -# -# Directory where grafana can store logs -# -;logs = /var/log/grafana -# -# Directory where grafana will automatically scan and look for plugins -# -;plugins = /var/lib/grafana/plugins - -# -#################################### Server #################################### -[server] -# Protocol (http or https) -;protocol = http - -# The ip address to bind to, empty will bind to all interfaces -;http_addr = - -# The http port to use -;http_port = 3000 - -# The public facing domain name used to access grafana from a browser -{{- if .Values.monitor.grafana.serverDomain }} -domain = {{ .Values.monitor.grafana.serverDomain }} -{{- else }} -domain = localhost -{{- end }} - -# Redirect to correct domain if host header does not match domain -# Prevents DNS rebinding attacks -;enforce_domain = false - -# The full public facing url you use in browser, used for redirects and emails -# If you use reverse proxy and sub path specify full url (with sub path) -{{- if .Values.monitor.grafana.serverRootUrl }} -root_url = {{ .Values.monitor.grafana.serverRootUrl }} -{{- else }} -root_url = %(protocol)s://%(domain)s:%(http_port)s/ -{{- end }} - -# Log web requests -;router_logging = false - -# the path relative working path -;static_root_path = public - -# enable gzip -;enable_gzip = false - -# https certs & key file -;cert_file = -;cert_key = - -#################################### Database #################################### -[database] -# You can configure the database connection by specifying type, host, name, user and password -# as seperate properties or as on string using the url propertie. - -# Either "mysql", "postgres" or "sqlite3", it's your choice -;type = sqlite3 -;host = 127.0.0.1:3306 -;name = grafana -;user = root -# If the password contains # or ; you have to wrap it with trippel quotes. Ex """#password;""" -;password = - -# Use either URL or the previous fields to configure the database -# Example: mysql://user:secret@host:port/database -;url = - -# For "postgres" only, either "disable", "require" or "verify-full" -;ssl_mode = disable - -# For "sqlite3" only, path relative to data_path setting -;path = grafana.db - -# Max conn setting default is 0 (mean not set) -;max_conn = -;max_idle_conn = -;max_open_conn = - - -#################################### Session #################################### -[session] -# Either "memory", "file", "redis", "mysql", "postgres", default is "file" -;provider = file - -# Provider config options -# memory: not have any config yet -# file: session dir path, is relative to grafana data_path -# redis: config like redis server e.g. `addr=127.0.0.1:6379,pool_size=100,db=grafana` -# mysql: go-sql-driver/mysql dsn config string, e.g. `user:password@tcp(127.0.0.1:3306)/database_name` -# postgres: user=a password=b host=localhost port=5432 dbname=c sslmode=disable -;provider_config = sessions - -# Session cookie name -;cookie_name = grafana_sess - -# If you use session in https only, default is false -;cookie_secure = false - -# Session life time, default is 86400 -;session_life_time = 86400 - -#################################### Data proxy ########################### -[dataproxy] - -# This enables data proxy logging, default is false -;logging = false - - -#################################### Analytics #################################### -[analytics] -# Server reporting, sends usage counters to stats.grafana.org every 24 hours. -# No ip addresses are being tracked, only simple counters to track -# running instances, dashboard and error counts. It is very helpful to us. -# Change this option to false to disable reporting. -;reporting_enabled = true - -# Set to false to disable all checks to https://grafana.net -# for new vesions (grafana itself and plugins), check is used -# in some UI views to notify that grafana or plugin update exists -# This option does not cause any auto updates, nor send any information -# only a GET request to http://grafana.net to get latest versions -;check_for_updates = true - -# Google Analytics universal tracking code, only enabled if you specify an id here -;google_analytics_ua_id = - -#################################### Security #################################### -[security] -# default admin user, created on startup -# admin_user = admin - -# default admin password, can be changed before first start of grafana, or in profile settings -# admin_password = admin - -# used for signing -;secret_key = SW2YcwTIb9zpOOhoPsMm - -# Auto-login remember days -;login_remember_days = 7 -;cookie_username = grafana_user -;cookie_remember_name = grafana_remember - -# disable gravatar profile images -;disable_gravatar = false - -# data source proxy whitelist (ip_or_domain:port separated by spaces) -;data_source_proxy_whitelist = - -[snapshots] -# snapshot sharing options -;external_enabled = true -;external_snapshot_url = https://snapshots-origin.raintank.io -;external_snapshot_name = Publish to snapshot.raintank.io - -# remove expired snapshot -;snapshot_remove_expired = true - -# remove snapshots after 90 days -;snapshot_TTL_days = 90 - -#################################### Users #################################### -[users] -# disable user signup / registration -;allow_sign_up = true - -# Allow non admin users to create organizations -;allow_org_create = true - -# Set to true to automatically assign new users to the default organization (id 1) -;auto_assign_org = true - -# Default role new users will be automatically assigned (if disabled above is set to true) -;auto_assign_org_role = Viewer - -# Background text for the user field on the login page -;login_hint = email or username - -# Default UI theme ("dark" or "light") -;default_theme = dark - -[auth] -# Set to true to disable (hide) the login form, useful if you use OAuth, defaults to false -;disable_login_form = false - -#################################### Anonymous Auth ########################## -[auth.anonymous] -# enable anonymous access -;enabled = false - -# specify organization name that should be used for unauthenticated users -;org_name = Main Org. - -# specify role for unauthenticated users -;org_role = Viewer - -#################################### Github Auth ########################## -[auth.github] -;enabled = false -;allow_sign_up = true -;client_id = some_id -;client_secret = some_secret -;scopes = user:email,read:org -;auth_url = https://github.com/login/oauth/authorize -;token_url = https://github.com/login/oauth/access_token -;api_url = https://api.github.com/user -;team_ids = -;allowed_organizations = - -#################################### Google Auth ########################## -[auth.google] -;enabled = false -;allow_sign_up = true -;client_id = some_client_id -;client_secret = some_client_secret -;scopes = https://www.googleapis.com/auth/userinfo.profile https://www.googleapis.com/auth/userinfo.email -;auth_url = https://accounts.google.com/o/oauth2/auth -;token_url = https://accounts.google.com/o/oauth2/token -;api_url = https://www.googleapis.com/oauth2/v1/userinfo -;allowed_domains = - -#################################### Generic OAuth ########################## -[auth.generic_oauth] -;enabled = false -;name = OAuth -;allow_sign_up = true -;client_id = some_id -;client_secret = some_secret -;scopes = user:email,read:org -;auth_url = https://foo.bar/login/oauth/authorize -;token_url = https://foo.bar/login/oauth/access_token -;api_url = https://foo.bar/user -;team_ids = -;allowed_organizations = - -#################################### Grafana.net Auth #################### -[auth.grafananet] -;enabled = false -;allow_sign_up = true -;client_id = some_id -;client_secret = some_secret -;scopes = user:email -;allowed_organizations = - -#################################### Auth Proxy ########################## -[auth.proxy] -;enabled = false -;header_name = X-WEBAUTH-USER -;header_property = username -;auto_sign_up = true -;ldap_sync_ttl = 60 -;whitelist = 192.168.1.1, 192.168.2.1 - -#################################### Basic Auth ########################## -[auth.basic] -;enabled = true - -#################################### Auth LDAP ########################## -[auth.ldap] -;enabled = false -;config_file = /etc/grafana/ldap.toml -;allow_sign_up = true - -#################################### SMTP / Emailing ########################## -[smtp] -;enabled = false -;host = localhost:25 -;user = -# If the password contains # or ; you have to wrap it with trippel quotes. Ex """#password;""" -;password = -;cert_file = -;key_file = -;skip_verify = false -;from_address = admin@grafana.localhost -;from_name = Grafana - -[emails] -;welcome_email_on_sign_up = false - -#################################### Logging ########################## -[log] -# Either "console", "file", "syslog". Default is console and file -# Use space to separate multiple modes, e.g. "console file" -;mode = console file - -# Either "trace", "debug", "info", "warn", "error", "critical", default is "info" -level = {{ .Values.monitor.grafana.logLevel }} - -# optional settings to set different levels for specific loggers. Ex filters = sqlstore:debug -;filters = - - -# For "console" mode only -[log.console] -;level = - -# log line format, valid options are text, console and json -;format = console - -# For "file" mode only -[log.file] -;level = - -# log line format, valid options are text, console and json -;format = text - -# This enables automated log rotate(switch of following options), default is true -;log_rotate = true - -# Max line number of single file, default is 1000000 -;max_lines = 1000000 - -# Max size shift of single file, default is 28 means 1 << 28, 256MB -;max_size_shift = 28 - -# Segment log daily, default is true -;daily_rotate = true - -# Expired days of log file(delete after max days), default is 7 -;max_days = 7 - -[log.syslog] -;level = - -# log line format, valid options are text, console and json -;format = text - -# Syslog network type and address. This can be udp, tcp, or unix. If left blank, the default unix endpoints will be used. -;network = -;address = - -# Syslog facility. user, daemon and local0 through local7 are valid. -;facility = - -# Syslog tag. By default, the process' argv[0] is used. -;tag = - - -#################################### AMQP Event Publisher ########################## -[event_publisher] -;enabled = false -;rabbitmq_url = amqp://localhost/ -;exchange = grafana_events - -;#################################### Dashboard JSON files ########################## -[dashboards.json] -;enabled = false -;path = /var/lib/grafana/dashboards - -#################################### Alerting ############################ -[alerting] -# Disable alerting engine & UI features -;enabled = true -# Makes it possible to turn off alert rule execution but alerting UI is visible -;execute_alerts = true - -#################################### Internal Grafana Metrics ########################## -# Metrics available at HTTP API Url /api/metrics -[metrics] -# Disable / Enable internal metrics -;enabled = true - -# Publish interval -;interval_seconds = 10 - -# Send internal metrics to Graphite -[metrics.graphite] -# Enable by setting the address setting (ex localhost:2003) -;address = -;prefix = prod.grafana.%(instance_name)s. - -#################################### Internal Grafana Metrics ########################## -# Url used to to import dashboards directly from Grafana.net -[grafana_net] -;url = https://grafana.net - -#################################### External image storage ########################## -[external_image_storage] -# Used for uploading images to public servers so they can be included in slack/email messages. -# you can choose between (s3, webdav) -;provider = - -[external_image_storage.s3] -;bucket_url = -;access_key = -;secret_key = - -[external_image_storage.webdav] -;url = -;username = -;password = diff --git a/charts/tidb-cluster/templates/config/_privileged-tidb-config.tpl b/charts/tidb-cluster/templates/config/_privileged-tidb-config.tpl deleted file mode 100644 index b6558971756..00000000000 --- a/charts/tidb-cluster/templates/config/_privileged-tidb-config.tpl +++ /dev/null @@ -1,249 +0,0 @@ -# TiDB Configuration. - -# TiDB server host. -host = "0.0.0.0" - -# tidb server advertise IP. -advertise-address = "" - -# TiDB server port. -port = 4000 - -# Registered store name, [tikv, mocktikv] -store = "mocktikv" - -# TiDB storage path. -path = "/tmp/tidb" - -# The socket file to use for connection. -socket = "" - -# Run ddl worker on this tidb-server. -run-ddl = true - -# Schema lease duration, very dangerous to change only if you know what you do. -lease = "45s" - -# When create table, split a separated region for it. It is recommended to -# turn off this option if there will be a large number of tables created. -split-table = true - -# The limit of concurrent executed sessions. -token-limit = 1000 - -# Only print a log when out of memory quota. -# Valid options: ["log", "cancel"] -oom-action = "log" - -# Set the memory quota for a query in bytes. Default: 32GB -mem-quota-query = 34359738368 - -# Enable coprocessor streaming. -enable-streaming = false - -# Set system variable 'lower_case_table_names' -lower-case-table-names = 2 - -# Make "kill query" behavior compatible with MySQL. It's not recommend to -# turn on this option when TiDB server is behind a proxy. -compatible-kill-query = false - -[log] -# Log level: debug, info, warn, error, fatal. -level = {{ .Values.privilegedTidb.logLevel | default "info" | quote }} - -# Log format, one of json, text, console. -format = "text" - -# Disable automatic timestamp in output -disable-timestamp = false - -# Stores slow query log into separated files. -slow-query-file = "" - -# Queries with execution time greater than this value will be logged. (Milliseconds) -slow-threshold = 300 - -# Queries with internal result greater than this value will be logged. -expensive-threshold = 10000 - -# Maximum query length recorded in log. -query-log-max-len = 2048 - -# File logging. -[log.file] -# Log file name. -filename = "" - -# Max log file size in MB (upper limit to 4096MB). -max-size = 300 - -# Max log file keep days. No clean up by default. -max-days = 0 - -# Maximum number of old log files to retain. No clean up by default. -max-backups = 0 - -# Rotate log by day -log-rotate = true - -[security] -# This option causes the server to start without using the privilege system at all. -skip-grant-table = true -# Path of file that contains list of trusted SSL CAs for connection with mysql client. -ssl-ca = "" - -# Path of file that contains X509 certificate in PEM format for connection with mysql client. -ssl-cert = "" - -# Path of file that contains X509 key in PEM format for connection with mysql client. -ssl-key = "" - -# Path of file that contains list of trusted SSL CAs for connection with cluster components. -cluster-ssl-ca = "" - -# Path of file that contains X509 certificate in PEM format for connection with cluster components. -cluster-ssl-cert = "" - -# Path of file that contains X509 key in PEM format for connection with cluster components. -cluster-ssl-key = "" - -[status] -# If enable status report HTTP service. -report-status = true - -# TiDB status port. -status-port = 10080 - -# Prometheus pushgateway address, leaves it empty will disable prometheus push. -metrics-addr = "" - -# Prometheus client push interval in second, set \"0\" to disable prometheus push. -metrics-interval = 15 - -[performance] -# Max CPUs to use, 0 use number of CPUs in the machine. -max-procs = 0 -# StmtCountLimit limits the max count of statement inside a transaction. -stmt-count-limit = 5000 - -# Set keep alive option for tcp connection. -tcp-keep-alive = true - -# Whether support cartesian product. -cross-join = true - -# Stats lease duration, which influences the time of analyze and stats load. -stats-lease = "3s" - -# Run auto analyze worker on this tidb-server. -run-auto-analyze = true - -# Probability to use the query feedback to update stats, 0 or 1 for always false/true. -feedback-probability = 0.05 - -# The max number of query feedback that cache in memory. -query-feedback-limit = 1024 - -# Pseudo stats will be used if the ratio between the modify count and -# row count in statistics of a table is greater than it. -pseudo-estimate-ratio = 0.8 - -# Force the priority of all statements in a specified priority. -# The value could be "NO_PRIORITY", "LOW_PRIORITY", "HIGH_PRIORITY" or "DELAYED". -force-priority = "NO_PRIORITY" - -[proxy-protocol] -# PROXY protocol acceptable client networks. -# Empty string means disable PROXY protocol, * means all networks. -networks = "" - -# PROXY protocol header read timeout, unit is second -header-timeout = 5 - -[prepared-plan-cache] -enabled = false -capacity = 100 - -[opentracing] -# Enable opentracing. -enable = false - -# Whether to enable the rpc metrics. -rpc-metrics = false - -[opentracing.sampler] -# Type specifies the type of the sampler: const, probabilistic, rateLimiting, or remote -type = "const" - -# Param is a value passed to the sampler. -# Valid values for Param field are: -# - for "const" sampler, 0 or 1 for always false/true respectively -# - for "probabilistic" sampler, a probability between 0 and 1 -# - for "rateLimiting" sampler, the number of spans per second -# - for "remote" sampler, param is the same as for "probabilistic" -# and indicates the initial sampling rate before the actual one -# is received from the mothership -param = 1.0 - -# SamplingServerURL is the address of jaeger-agent's HTTP sampling server -sampling-server-url = "" - -# MaxOperations is the maximum number of operations that the sampler -# will keep track of. If an operation is not tracked, a default probabilistic -# sampler will be used rather than the per operation specific sampler. -max-operations = 0 - -# SamplingRefreshInterval controls how often the remotely controlled sampler will poll -# jaeger-agent for the appropriate sampling strategy. -sampling-refresh-interval = 0 - -[opentracing.reporter] -# QueueSize controls how many spans the reporter can keep in memory before it starts dropping -# new spans. The queue is continuously drained by a background go-routine, as fast as spans -# can be sent out of process. -queue-size = 0 - -# BufferFlushInterval controls how often the buffer is force-flushed, even if it's not full. -# It is generally not useful, as it only matters for very low traffic services. -buffer-flush-interval = 0 - -# LogSpans, when true, enables LoggingReporter that runs in parallel with the main reporter -# and logs all submitted spans. Main Configuration.Logger must be initialized in the code -# for this option to have any effect. -log-spans = false - -# LocalAgentHostPort instructs reporter to send spans to jaeger-agent at this address -local-agent-host-port = "" - -[tikv-client] -# Max gRPC connections that will be established with each tikv-server. -grpc-connection-count = 16 - -# After a duration of this time in seconds if the client doesn't see any activity it pings -# the server to see if the transport is still alive. -grpc-keepalive-time = 10 - -# After having pinged for keepalive check, the client waits for a duration of Timeout in seconds -# and if no activity is seen even after that the connection is closed. -grpc-keepalive-timeout = 3 - -# max time for commit command, must be twice bigger than raft election timeout. -commit-timeout = "41s" - -[txn-local-latches] -# Enable local latches for transactions. Enable it when -# there are lots of conflicts between transactions. -enabled = false -capacity = 10240000 - -[binlog] -# enable to write binlog. -enable = false - -# WriteTimeout specifies how long it will wait for writing binlog to pump. -write-timeout = "15s" - -# If IgnoreError is true, when writting binlog meets error, TiDB would stop writting binlog, -# but still provide service. -ignore-error = false diff --git a/charts/tidb-cluster/templates/config/_pump-config.tpl b/charts/tidb-cluster/templates/config/_pump-config.tpl index 241f0edd731..e27d75a70d2 100644 --- a/charts/tidb-cluster/templates/config/_pump-config.tpl +++ b/charts/tidb-cluster/templates/config/_pump-config.tpl @@ -27,6 +27,9 @@ pd-urls = "http://{{ template "cluster.name" . }}-pd:2379" # Path of file that contains X509 key in PEM format for connection with cluster components. # ssl-key = "/path/to/drainer-key.pem" # +[storage] +# Set to `true` (default) for best reliability, which prevents data loss when there is a power failure. +sync-log = {{ .Values.binlog.pump.syncLog | default true }} # # we suggest using the default config of the embedded LSM DB now, do not change it unless you know what you are doing # [storage.kv] @@ -36,7 +39,7 @@ pd-urls = "http://{{ template "cluster.name" . }}-pd:2379" # compaction-L0-trigger = 8 # compaction-table-size = 67108864 # compaction-total-size = 536870912 -# compaction-total-size-multiplier = 8 +# compaction-total-size-multiplier = 8.0 # write-buffer = 67108864 # write-L0-pause-trigger = 24 # write-L0-slowdown-trigger = 17 diff --git a/charts/tidb-cluster/templates/config/_tidb-config.tpl b/charts/tidb-cluster/templates/config/_tidb-config.tpl index 56525ec41f1..f22bdc7aa26 100644 --- a/charts/tidb-cluster/templates/config/_tidb-config.tpl +++ b/charts/tidb-cluster/templates/config/_tidb-config.tpl @@ -22,25 +22,28 @@ socket = "" run-ddl = true # Schema lease duration, very dangerous to change only if you know what you do. -lease = "45s" +lease = {{ .Values.tidb.lease | default "45s" | quote }} # When create table, split a separated region for it. It is recommended to # turn off this option if there will be a large number of tables created. split-table = true # The limit of concurrent executed sessions. -token-limit = 1000 +token-limit = {{ .Values.tidb.tokenLimit | default "1000" | atoi }} # Only print a log when out of memory quota. # Valid options: ["log", "cancel"] oom-action = "log" # Set the memory quota for a query in bytes. Default: 32GB -mem-quota-query = 34359738368 +mem-quota-query = {{ .Values.tidb.memQuotaQuery | default "34359738368" | atoi }} # Enable coprocessor streaming. enable-streaming = false +# Enable batch commit for the DMLs. +enable-batch-dml = {{ .Values.tidb.enableBatchDml | default false }} + # Set system variable 'lower_case_table_names' lower-case-table-names = 2 @@ -48,6 +51,12 @@ lower-case-table-names = 2 # turn on this option when TiDB server is behind a proxy. compatible-kill-query = false +# check mb4 value in utf8 is used to control whether to check the mb4 characters when the charset is utf8. +check-mb4-value-in-utf8 = {{ .Values.tidb.checkMb4ValueInUtf8 | default true }} + +# treat-old-version-utf8-as-utf8mb4 use for upgrade compatibility. Set to true will treat old version table/column UTF8 charset as UTF8MB4. +treat-old-version-utf8-as-utf8mb4 = {{ .Values.tidb.treatOldVersionUtf8AsUtf8mb4 | default true }} + [log] # Log level: debug, info, warn, error, fatal. level = {{ .Values.tidb.logLevel | default "info" | quote }} @@ -121,7 +130,7 @@ metrics-interval = 15 [performance] # Max CPUs to use, 0 use number of CPUs in the machine. -max-procs = 0 +max-procs = {{ .Values.tidb.maxProcs | default 0 }} # StmtCountLimit limits the max count of statement inside a transaction. stmt-count-limit = 5000 @@ -151,6 +160,18 @@ pseudo-estimate-ratio = 0.8 # The value could be "NO_PRIORITY", "LOW_PRIORITY", "HIGH_PRIORITY" or "DELAYED". force-priority = "NO_PRIORITY" +# The limitation of the number for the entries in one transaction. +# If using TiKV as the storage, the entry represents a key/value pair. +# WARNING: Do not set the value too large, otherwise it will make a very large impact on the TiKV cluster. +# Please adjust this configuration carefully. +txn-entry-count-limit = {{ .Values.tidb.txnEntryCountLimit | default "300000" | atoi }} + +# The limitation of the size in byte for the entries in one transaction. +# If using TiKV as the storage, the entry represents a key/value pair. +# WARNING: Do not set the value too large, otherwise it will make a very large impact on the TiKV cluster. +# Please adjust this configuration carefully. +txn-total-size-limit = {{ .Values.tidb.txnTotalSizeLimit | default "104857600" | atoi }} + [proxy-protocol] # PROXY protocol acceptable client networks. # Empty string means disable PROXY protocol, * means all networks. @@ -160,8 +181,8 @@ networks = "" header-timeout = 5 [prepared-plan-cache] -enabled = false -capacity = 100 +enabled = {{ .Values.tidb.preparedPlanCacheEnabled | default false }} +capacity = {{ .Values.tidb.preparedPlanCacheCapacity | default 100 }} [opentracing] # Enable opentracing. @@ -232,8 +253,8 @@ commit-timeout = "41s" [txn-local-latches] # Enable local latches for transactions. Enable it when # there are lots of conflicts between transactions. -enabled = false -capacity = 10240000 +enabled = {{ .Values.tidb.txnLocalLatchesEnabled | default false }} +capacity = {{ .Values.tidb.txnLocalLatchesCapacity | default "10240000" | atoi }} [binlog] # enable to write binlog. @@ -245,3 +266,6 @@ write-timeout = "15s" # If IgnoreError is true, when writting binlog meets error, TiDB would stop writting binlog, # but still provide service. ignore-error = false + +# use socket file to write binlog, for compatible with kafka version tidb-binlog. +binlog-socket = "" diff --git a/charts/tidb-cluster/templates/config/_tikv-config.tpl b/charts/tidb-cluster/templates/config/_tikv-config.tpl index 6cddc4c2565..ab8f4a3ac51 100644 --- a/charts/tidb-cluster/templates/config/_tikv-config.tpl +++ b/charts/tidb-cluster/templates/config/_tikv-config.tpl @@ -70,10 +70,22 @@ low-concurrency = {{ .Values.tikv.readpoolCoprocessorConcurrency }} # maximum number of messages can be processed in one tick. # messages-per-tick = 4096 -# compression type for grpc channel, available values are none, deflate and gzip. +## Status address. +## This is used for reporting the status of TiKV directly through the HTTP address. +## Empty string means disabling it. +status-addr = "0.0.0.0:20180" + +## Set the maximum number of worker threads for the status report HTTP service. +# status-thread-pool-size = 1 + +## Compression type for gRPC channel: none, deflate or gzip. # grpc-compression-type = "none" # size of thread pool for grpc server. +{{- if .Values.tikv.grpcConcurrency }} +grpc-concurrency = {{ .Values.tikv.grpcConcurrency }} +{{- else }} # grpc-concurrency = 4 +{{- end }} # The number of max concurrent streams/requests on a client connection. # grpc-concurrent-stream = 1024 # The number of connections with each tikv server to send raft messages. @@ -134,14 +146,6 @@ scheduler-worker-pool-size = {{ .Values.tikv.storageSchedulerWorkerPoolSize }} # pd endpoints # endpoints = [] -[metric] -# the Prometheus client push interval. Setting the value to 0s stops Prometheus client from pushing. -# interval = "15s" -# the Prometheus pushgateway address. Leaving it empty stops Prometheus client from pushing. -address = "http://localhost:9091" # empty or http://localhost:9091 to disable or enable tikv push metrics -# the Prometheus client push job name. Note: A node id will automatically append, e.g., "tikv_1". -# job = "tikv" - [raftstore] # true (default value) for high reliability, this can prevent data loss when power failure. sync-log = {{ .Values.tikv.syncLog }} @@ -261,7 +265,7 @@ sync-log = {{ .Values.tikv.syncLog }} # Max size of rocksdb's MANIFEST file. # For detailed explanation please refer to https://github.com/facebook/rocksdb/wiki/MANIFEST -# max-manifest-file-size = "20MB" +# max-manifest-file-size = "128MB" # If true, the database will be created if it is missing. # create-if-missing = true diff --git a/charts/tidb-cluster/templates/monitor-configmap.yaml b/charts/tidb-cluster/templates/monitor-configmap.yaml index 650b4176bc5..6ed2fbc3951 100644 --- a/charts/tidb-cluster/templates/monitor-configmap.yaml +++ b/charts/tidb-cluster/templates/monitor-configmap.yaml @@ -19,7 +19,7 @@ data: {{ tuple "config/_grafana-datasource.tpl" . | include "helm-toolkit.utils.template" | indent 4 }} dashboard-config: |- {{ tuple "config/_grafana-dashboard.tpl" . | include "helm-toolkit.utils.template" | indent 4 }} - grafana-config: |- -{{ tuple "config/_grafana-config.tpl" . | include "helm-toolkit.utils.template" | indent 4 }} + grafana-prestart: |- +{{- tuple "scripts/_grafana-prestart.sh.tpl" . | include "helm-toolkit.utils.template" | indent 4 }} {{- end }} {{- end }} diff --git a/charts/tidb-cluster/templates/monitor-dashboard-configmap.yaml b/charts/tidb-cluster/templates/monitor-dashboard-configmap.yaml index 8cf4c08a920..e384e92645d 100644 --- a/charts/tidb-cluster/templates/monitor-dashboard-configmap.yaml +++ b/charts/tidb-cluster/templates/monitor-dashboard-configmap.yaml @@ -25,11 +25,12 @@ metadata: helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} binaryData: pd.json.gz: |- -  +  tidb.json.gz: |- -  +  tikv.json.gz: |- -  +  overview.json.gz: |- - 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 -{{- end }} + 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 + {{- end }} + diff --git a/charts/tidb-cluster/templates/monitor-deployment.yaml b/charts/tidb-cluster/templates/monitor-deployment.yaml index 21f876b7698..ef93931568a 100644 --- a/charts/tidb-cluster/templates/monitor-deployment.yaml +++ b/charts/tidb-cluster/templates/monitor-deployment.yaml @@ -97,14 +97,7 @@ spec: lifecycle: postStart: exec: - command: - - "/bin/sh" - - "-c" - - > - gzip -dc /tmp/dashboard-gz/tidb.json.gz > /grafana-dashboard-definitions/tidb/tidb.json && - gzip -dc /tmp/dashboard-gz/pd.json.gz > /grafana-dashboard-definitions/tidb/pd.json && - gzip -dc /tmp/dashboard-gz/tikv.json.gz > /grafana-dashboard-definitions/tidb/tikv.json && - gzip -dc /tmp/dashboard-gz/overview.json.gz > /grafana-dashboard-definitions/tidb/overview.json + command: ["/bin/sh", "/tmp/grafanaPrestart.sh"] {{- if .Values.monitor.grafana.resources }} resources: {{ toYaml .Values.monitor.grafana.resources | indent 12 }} @@ -114,18 +107,6 @@ spec: containerPort: 3000 protocol: TCP env: - # The following two env (SERVER_ROOT_URL and SERVER_DOMAIN) should be configured in configuration file - # but grafana container startup script will chown of configuration directory - # this will be failed because configmap is mounted as readonly volume in container - # so they're temporarily set here as env - {{- if .Values.monitor.grafana.serverRootUrl }} - - name: GF_SERVER_ROOT_URL - value: {{ .Values.monitor.grafana.serverRootUrl | quote }} - {{- end }} - {{- if .Values.monitor.grafana.serverRootUrl }} - - name: GF_SERVER_DOMAIN - value: {{ .Values.monitor.grafana.serverDomain | quote }} - {{- end }} - name: GF_PATHS_DATA value: /data/grafana - name: GF_SECURITY_ADMIN_USER @@ -138,13 +119,15 @@ spec: secretKeyRef: name: {{ template "cluster.name" . }}-monitor key: password + {{- if .Values.monitor.grafana.config }} + {{- range $key, $value := .Values.monitor.grafana.config }} + - name: {{ $key }} + value: {{ $value | quote }} + {{- end }} + {{- end }} - name: TZ value: {{ .Values.timezone | default "UTC" }} volumeMounts: - # configmap is always mounted as read only volume in container - # grafana startup script will fail with read only configuration directory - # - name: grafana-config - # mountPath: /etc/grafana - name: monitor-data mountPath: /data - mountPath: /etc/grafana/provisioning/datasources @@ -159,6 +142,9 @@ spec: - mountPath: /grafana-dashboard-definitions/tidb name: grafana-dashboard readOnly: false + - mountPath: /tmp + name: grafana-prestart + readOnly: false {{- end }} volumes: - name: monitor-data @@ -177,12 +163,6 @@ spec: - key: alert-rules-config path: alert.rules {{- if .Values.monitor.grafana.create }} - - name: grafana-config - configMap: - name: {{ template "cluster.name" . }}-monitor - items: - - key: grafana-config - path: grafana.ini - configMap: name: {{ template "cluster.name" . }}-monitor items: @@ -200,6 +180,12 @@ spec: - configMap: name: {{ template "cluster.name" . }}-monitor-dashboard name: dashboard-gz + - configMap: + name: {{ template "cluster.name" . }}-monitor + items: + - key: grafana-prestart + path: grafanaPrestart.sh + name: grafana-prestart {{- end }} {{- if .Values.monitor.tolerations }} tolerations: diff --git a/charts/tidb-cluster/templates/monitor-service.yaml b/charts/tidb-cluster/templates/monitor-service.yaml index 8c57ee40244..cbd297333d2 100644 --- a/charts/tidb-cluster/templates/monitor-service.yaml +++ b/charts/tidb-cluster/templates/monitor-service.yaml @@ -10,6 +10,10 @@ metadata: app.kubernetes.io/instance: {{ .Release.Name }} app.kubernetes.io/component: monitor helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} + {{- if .Values.monitor.grafana.service.annotations }} + annotations: +{{ toYaml .Values.monitor.grafana.service.annotations | indent 4 }} + {{- end }} spec: ports: - name: grafana diff --git a/charts/tidb-cluster/templates/privileged-tidb-configmap.yaml b/charts/tidb-cluster/templates/privileged-tidb-configmap.yaml deleted file mode 100644 index f13962d0861..00000000000 --- a/charts/tidb-cluster/templates/privileged-tidb-configmap.yaml +++ /dev/null @@ -1,18 +0,0 @@ -{{- if .Values.privilegedTidb }} -apiVersion: v1 -kind: ConfigMap -metadata: - name: {{ template "cluster.name" . }}-privileged-tidb - labels: - app.kubernetes.io/name: {{ template "chart.name" . }} - app.kubernetes.io/managed-by: {{ .Release.Service }} - app.kubernetes.io/instance: {{ .Release.Name }} - app.kubernetes.io/component: privileged-tidb - helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} -data: - startup-script: |- -{{ tuple "scripts/_start_privileged_tidb.sh.tpl" . | include "helm-toolkit.utils.template" | indent 4 }} - - config-file: |- -{{ tuple "config/_privileged-tidb-config.tpl" . | include "helm-toolkit.utils.template" | indent 4 }} -{{- end }} diff --git a/charts/tidb-cluster/templates/privileged-tidb-deployment.yaml b/charts/tidb-cluster/templates/privileged-tidb-deployment.yaml deleted file mode 100644 index 78141998e34..00000000000 --- a/charts/tidb-cluster/templates/privileged-tidb-deployment.yaml +++ /dev/null @@ -1,96 +0,0 @@ -{{- if .Values.privilegedTidb }} -apiVersion: apps/v1beta1 -kind: Deployment -metadata: - name: {{ template "cluster.name" . }}-privileged-tidb - labels: - app.kubernetes.io/name: {{ template "chart.name" . }} - app.kubernetes.io/managed-by: {{ .Release.Service }} - app.kubernetes.io/instance: {{ .Release.Name }} - app.kubernetes.io/component: privileged-tidb - helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} -spec: - replicas: {{ .Values.privilegedTidb.replicas }} - selector: - matchLabels: - app.kubernetes.io/name: {{ template "chart.name" . }} - app.kubernetes.io/instance: {{ .Release.Name }} - app.kubernetes.io/component: privileged-tidb - template: - metadata: - labels: - app.kubernetes.io/name: {{ template "chart.name" . }} - app.kubernetes.io/instance: {{ .Release.Name }} - app.kubernetes.io/component: privileged-tidb - spec: - {{- if .Values.privilegedTidb.nodeSelector }} - affinity: - nodeAffinity: - requiredDuringSchedulingIgnoredDuringExecution: - nodeSelectorTerms: - - matchExpressions: - {{- range $key, $val := .Values.privilegedTidb.nodeSelector }} - {{- $valList := splitList "," $val }} - - key: {{ $key }} - operator: In - values: - {{- range $kl, $vl := $valList }} - - {{ $vl }} - {{- end }} - {{- end }} - {{- end }} - containers: - - name: privileged-tidb - image: {{ .Values.privilegedTidb.image }} - imagePullPolicy: {{ .Values.privilegedTidb.imagePullPolicy | default "IfNotPresent" }} - {{- if .Values.privilegedTidb.resources }} - resources: -{{ toYaml .Values.privilegedTidb.resources | indent 10 }} - {{- end }} - command: - - /bin/sh - - /usr/local/bin/privileged_tidb_start_script.sh - ports: - - name: mysql-client - containerPort: 4000 - protocol: TCP - env: - - name: CLUSTER_NAME - value: {{ template "cluster.name" . }} - - name: TZ - value: {{ .Values.timezone | default "UTC" }} - volumeMounts: - - name: config - readOnly: true - mountPath: /etc/tidb - - name: annotations - readOnly: true - mountPath: /etc/podinfo - - name: startup-script - readOnly: true - mountPath: /usr/local/bin - restartPolicy: Always - volumes: - - name: config - configMap: - name: {{ template "cluster.name" . }}-privileged-tidb - items: - - key: config-file - path: tidb.toml - - name: annotations - downwardAPI: - items: - - path: annotations - fieldRef: - fieldPath: metadata.annotations - - name: startup-script - configMap: - name: {{ template "cluster.name" . }}-privileged-tidb - items: - - key: startup-script - path: privileged_tidb_start_script.sh - {{- if .Values.privilegedTidb.tolerations }} - tolerations: -{{ toYaml .Values.privilegedTidb.tolerations | indent 6 }} - {{- end }} -{{- end }} diff --git a/charts/tidb-cluster/templates/privileged-tidb-service.yaml b/charts/tidb-cluster/templates/privileged-tidb-service.yaml deleted file mode 100644 index 54f5c758f3a..00000000000 --- a/charts/tidb-cluster/templates/privileged-tidb-service.yaml +++ /dev/null @@ -1,28 +0,0 @@ -{{- if .Values.privilegedTidb }} -apiVersion: v1 -kind: Service -metadata: - name: {{ template "cluster.name" . }}-privileged-tidb - labels: - app.kubernetes.io/name: {{ template "chart.name" . }} - app.kubernetes.io/managed-by: {{ .Release.Service }} - app.kubernetes.io/instance: {{ .Release.Name }} - app.kubernetes.io/component: privileged-tidb - helm.sh/chart: {{ .Chart.Name }}-{{ .Chart.Version | replace "+" "_" }} -spec: - type: {{ .Values.privilegedTidb.service.type }} - ports: - - name: mysql-client - port: 4000 - targetPort: 4000 - protocol: TCP -{{- if (.Values.privilegedTidb.service.type) and eq .Values.privilegedTidb.service.type "NodePort" }} - {{- if .Values.privilegedTidb.service.nodePort }} - nodePort: {{ .Values.service.nodePort }} - {{- end }} -{{- end }} - selector: - app.kubernetes.io/name: {{ template "chart.name" . }} - app.kubernetes.io/instance: {{ .Release.Name }} - app.kubernetes.io/component: privileged-tidb -{{- end }} diff --git a/charts/tidb-cluster/templates/scripts/_grafana-prestart.sh.tpl b/charts/tidb-cluster/templates/scripts/_grafana-prestart.sh.tpl new file mode 100644 index 00000000000..0b87b1bf22b --- /dev/null +++ b/charts/tidb-cluster/templates/scripts/_grafana-prestart.sh.tpl @@ -0,0 +1,16 @@ +#!/bin/sh + +#decompress dashboard files +gzip -dc /tmp/dashboard-gz/tidb.json.gz > /grafana-dashboard-definitions/tidb/tidb.json +gzip -dc /tmp/dashboard-gz/pd.json.gz > /grafana-dashboard-definitions/tidb/pd.json +gzip -dc /tmp/dashboard-gz/tikv.json.gz > /grafana-dashboard-definitions/tidb/tikv.json +gzip -dc /tmp/dashboard-gz/overview.json.gz > /grafana-dashboard-definitions/tidb/overview.json + +#replace dashboard name using cluster name +clusterName={{ template "cluster.name" . }} +clusterName=${clusterName:-"TiDB-Cluster"} + +sed -i 's/TIDB-Cluster-TiDB/'$clusterName'-TiDB/g' /grafana-dashboard-definitions/tidb/tidb.json +sed -i 's/TIDB-Cluster-PD/'$clusterName'-PD/g' /grafana-dashboard-definitions/tidb/pd.json +sed -i 's/TIDB-Cluster-TiKV/'$clusterName'-TiKV/g' /grafana-dashboard-definitions/tidb/tikv.json +sed -i 's/TIDB-Cluster-Overview/'$clusterName'-Overview/g' /grafana-dashboard-definitions/tidb/overview.json diff --git a/charts/tidb-cluster/templates/scripts/_start_privileged_tidb.sh.tpl b/charts/tidb-cluster/templates/scripts/_start_privileged_tidb.sh.tpl deleted file mode 100644 index 0f0831f1b6a..00000000000 --- a/charts/tidb-cluster/templates/scripts/_start_privileged_tidb.sh.tpl +++ /dev/null @@ -1,36 +0,0 @@ -#!/bin/sh - -# This script is used to start privileged tidb containers in kubernetes cluster - -# Use DownwardAPIVolumeFiles to store informations of the cluster: -# https://kubernetes.io/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/#the-downward-api -# -# runmode="normal/debug" -# -set -euo pipefail -ANNOTATIONS="/etc/podinfo/annotations" - -if [[ ! -f "${ANNOTATIONS}" ]] -then - echo "${ANNOTATIONS} does't exist, exiting." - exit 1 -fi -source ${ANNOTATIONS} 2>/dev/null || true - -runmode=${runmode:-normal} -if [[ X${runmode} == Xdebug ]] -then - echo "entering debug mode." - tail -f /dev/null -fi - -ARGS="--store=tikv \ ---run-ddl=false \ ---host=0.0.0.0 \ ---path=${CLUSTER_NAME}-pd:2379 \ ---config=/etc/tidb/tidb.toml -" - -echo "start privileged-tidb-server ..." -echo "/tidb-server ${ARGS}" -exec /tidb-server ${ARGS} diff --git a/charts/tidb-cluster/templates/tidb-cluster.yaml b/charts/tidb-cluster/templates/tidb-cluster.yaml index a0a91c4dabb..8eab712c3c1 100644 --- a/charts/tidb-cluster/templates/tidb-cluster.yaml +++ b/charts/tidb-cluster/templates/tidb-cluster.yaml @@ -54,12 +54,6 @@ spec: {{- if .Values.tikv.tolerations }} tolerations: {{ toYaml .Values.tikv.tolerations | indent 4 }} - {{- end }} - tikvPromGateway: - image: {{ .Values.tikvPromGateway.image }} - imagePullPolicy: {{ .Values.tikvPromGateway.imagePullPolicy | default "IfNotPresent" }} - {{- if .Values.tikvPromGateway.resources }} -{{ toYaml .Values.tikvPromGateway.resources | indent 4 }} {{- end }} tidb: replicas: {{ .Values.tidb.replicas }} diff --git a/charts/tidb-cluster/values.yaml b/charts/tidb-cluster/values.yaml index 6d264f09861..cb822d517d9 100644 --- a/charts/tidb-cluster/values.yaml +++ b/charts/tidb-cluster/values.yaml @@ -42,7 +42,7 @@ discovery: pd: replicas: 3 - image: pingcap/pd:v2.1.0 + image: pingcap/pd:v2.1.8 logLevel: info # storageClassName is a StorageClass provides a way for administrators to describe the "classes" of storage they offer. # different classes might map to quality-of-service levels, or to backup policies, @@ -84,7 +84,7 @@ pd: tikv: replicas: 3 - image: pingcap/tikv:v2.1.0 + image: pingcap/tikv:v2.1.8 logLevel: info # storageClassName is a StorageClass provides a way for administrators to describe the "classes" of storage they offer. # different classes might map to quality-of-service levels, or to backup policies, @@ -98,6 +98,8 @@ tikv: # syncLog is a bool value to enable or disable syc-log for raftstore, default is true # enable this can prevent data loss when power failure syncLog: true + # size of thread pool for grpc server. + # grpcConcurrency: 4 resources: limits: {} # cpu: 16000m @@ -135,17 +137,6 @@ tikv: # also should less than total cpu cores. # storageSchedulerWorkerPoolSize: 4 -tikvPromGateway: - image: prom/pushgateway:v0.3.1 - imagePullPolicy: IfNotPresent - resources: - limits: {} - # cpu: 100m - # memory: 100Mi - requests: {} - # cpu: 50m - # memory: 50Mi - tidb: replicas: 2 # The secret name of root password, you can create secret with following command: @@ -155,10 +146,40 @@ tidb: # initSql is the SQL statements executed after the TiDB cluster is bootstrapped. # initSql: |- # create database app; - image: pingcap/tidb:v2.1.0 + image: pingcap/tidb:v2.1.8 # Image pull policy. imagePullPolicy: IfNotPresent logLevel: info + preparedPlanCacheEnabled: false + preparedPlanCacheCapacity: 100 + # Enable local latches for transactions. Enable it when + # there are lots of conflicts between transactions. + txnLocalLatchesEnabled: false + txnLocalLatchesCapacity: "10240000" + # The limit of concurrent executed sessions. + tokenLimit: "1000" + # Set the memory quota for a query in bytes. Default: 32GB + memQuotaQuery: "34359738368" + # The limitation of the number for the entries in one transaction. + # If using TiKV as the storage, the entry represents a key/value pair. + # WARNING: Do not set the value too large, otherwise it will make a very large impact on the TiKV cluster. + # Please adjust this configuration carefully. + txnEntryCountLimit: "300000" + # The limitation of the size in byte for the entries in one transaction. + # If using TiKV as the storage, the entry represents a key/value pair. + # WARNING: Do not set the value too large, otherwise it will make a very large impact on the TiKV cluster. + # Please adjust this configuration carefully. + txnTotalSizeLimit: "104857600" + # enableBatchDml enables batch commit for the DMLs + enableBatchDml: false + # check mb4 value in utf8 is used to control whether to check the mb4 characters when the charset is utf8. + checkMb4ValueInUtf8: true + # treat-old-version-utf8-as-utf8mb4 use for upgrade compatibility. Set to true will treat old version table/column UTF8 charset as UTF8MB4. + treatOldVersionUtf8AsUtf8mb4: true + # lease is schema lease duration, very dangerous to change only if you know what you do. + lease: 45s + # Max CPUs to use, 0 use number of CPUs in the machine. + maxProcs: 0 resources: limits: {} # cpu: 16000m @@ -230,12 +251,17 @@ monitor: # memory: 4Gi username: admin password: admin + config: + # Configure Grafana using environment variables except GF_PATHS_DATA, GF_SECURITY_ADMIN_USER and GF_SECURITY_ADMIN_PASSWORD + # Ref https://grafana.com/docs/installation/configuration/#using-environment-variables + GF_AUTH_ANONYMOUS_ENABLED: "true" + GF_AUTH_ANONYMOUS_ORG_NAME: "Main Org." + GF_AUTH_ANONYMOUS_ORG_ROLE: "Viewer" + # if grafana is running behind a reverse proxy with subpath http://foo.bar/grafana + # GF_SERVER_DOMAIN: foo.bar + # GF_SERVER_ROOT_URL: "%(protocol)s://%(domain)s/grafana/" service: type: NodePort - # if grafana is running behind a reverse proxy with subpath http://foo.bar/grafana - # config the `serverDomain` and `serverRootUrl` as follows - # serverDomain: foo.bar - # serverRootUrl: "%(protocol)s://%(domain)s/grafana/" prometheus: image: prom/prometheus:v2.2.1 imagePullPolicy: IfNotPresent @@ -265,7 +291,7 @@ binlog: pump: create: false replicas: 1 - image: pingcap/tidb-binlog:v2.1.0 + image: pingcap/tidb-binlog:v2.1.8 imagePullPolicy: IfNotPresent logLevel: info # storageClassName is a StorageClass provides a way for administrators to describe the "classes" of storage they offer. @@ -274,6 +300,7 @@ binlog: # refer to https://kubernetes.io/docs/concepts/storage/storage-classes storageClassName: local-storage storage: 10Gi + syncLog: true # a integer value to control expiry date of the binlog data, indicates for how long (in days) the binlog data would be stored. # must bigger than 0 gc: 7 @@ -282,7 +309,7 @@ binlog: drainer: create: false - image: pingcap/tidb-binlog:v2.1.0 + image: pingcap/tidb-binlog:v2.1.8 imagePullPolicy: IfNotPresent logLevel: info # storageClassName is a StorageClass provides a way for administrators to describe the "classes" of storage they offer. @@ -291,8 +318,8 @@ binlog: # refer to https://kubernetes.io/docs/concepts/storage/storage-classes storageClassName: local-storage storage: 10Gi - # parallel worker count (default 1) - workerCount: 1 + # parallel worker count (default 16) + workerCount: 16 # the interval time (in seconds) of detect pumps' status (default 10) detectInterval: 10 # disbale detect causality @@ -305,8 +332,8 @@ binlog: initialCommitTs: 0 # enable safe mode to make syncer reentrant safeMode: false - # number of binlog events in a transaction batch (default 1) - txnBatch: 1 + # number of binlog events in a transaction batch (default 20) + txnBatch: 20 # downstream storage, equal to --dest-db-type # valid values are "mysql", "pb", "kafka" destDBType: pb @@ -326,7 +353,7 @@ binlog: scheduledBackup: create: false - binlogImage: pingcap/tidb-binlog:v2.1.0 + binlogImage: pingcap/tidb-binlog:v2.1.8 binlogImagePullPolicy: IfNotPresent # https://github.com/tennix/tidb-cloud-backup mydumperImage: pingcap/tidb-cloud-backup:latest diff --git a/deploy/alicloud/templates/tidb-cluster-values.yaml.tpl b/deploy/alicloud/templates/tidb-cluster-values.yaml.tpl index abcd02dbc5a..3509aeb1611 100644 --- a/deploy/alicloud/templates/tidb-cluster-values.yaml.tpl +++ b/deploy/alicloud/templates/tidb-cluster-values.yaml.tpl @@ -99,6 +99,8 @@ tikv: # syncLog is a bool value to enable or disable syc-log for raftstore, default is true # enable this can prevent data loss when power failure syncLog: true + # size of thread pool for grpc server. + # grpcConcurrency: 4 resources: limits: {} # cpu: 16000m @@ -134,21 +136,10 @@ tikv: # also should less than total cpu cores. # storageSchedulerWorkerPoolSize: 4 -tikvPromGateway: - image: prom/pushgateway:v0.3.1 - imagePullPolicy: IfNotPresent - resources: - limits: {} - # cpu: 100m - # memory: 100Mi - requests: {} - # cpu: 50m - # memory: 50Mi - tidb: replicas: ${tidb_replicas} # The secret name of root password, you can create secret with following command: - # kubectl create secret generic tidb-secret --from-literal=root_password= + # kubectl create secret generic tidb-secret --from-literal=root= --namespace= # If unset, the root password will be empty and you can set it after connecting # passwordSecretName: tidb-secret # initSql is the SQL statements executed after the TiDB cluster is bootstrapped. @@ -158,6 +149,36 @@ tidb: # Image pull policy. imagePullPolicy: IfNotPresent logLevel: info + preparedPlanCacheEnabled: false + preparedPlanCacheCapacity: 100 + # Enable local latches for transactions. Enable it when + # there are lots of conflicts between transactions. + txnLocalLatchesEnabled: false + txnLocalLatchesCapacity: "10240000" + # The limit of concurrent executed sessions. + tokenLimit: "1000" + # Set the memory quota for a query in bytes. Default: 32GB + memQuotaQuery: "34359738368" + # The limitation of the number for the entries in one transaction. + # If using TiKV as the storage, the entry represents a key/value pair. + # WARNING: Do not set the value too large, otherwise it will make a very large impact on the TiKV cluster. + # Please adjust this configuration carefully. + txnEntryCountLimit: "300000" + # The limitation of the size in byte for the entries in one transaction. + # If using TiKV as the storage, the entry represents a key/value pair. + # WARNING: Do not set the value too large, otherwise it will make a very large impact on the TiKV cluster. + # Please adjust this configuration carefully. + txnTotalSizeLimit: "104857600" + # enableBatchDml enables batch commit for the DMLs + enableBatchDml: false + # check mb4 value in utf8 is used to control whether to check the mb4 characters when the charset is utf8. + checkMb4ValueInUtf8: true + # treat-old-version-utf8-as-utf8mb4 use for upgrade compatibility. Set to true will treat old version table/column UTF8 charset as UTF8MB4. + treatOldVersionUtf8AsUtf8mb4: true + # lease is schema lease duration, very dangerous to change only if you know what you do. + lease: 45s + # Max CPUs to use, 0 use number of CPUs in the machine. + maxProcs: 0 resources: limits: {} # cpu: 16000m @@ -193,6 +214,15 @@ tidb: cpu: 20m memory: 5Mi + # tidb plugin configuration + plugin: + # enable plugin or not + enable: false + # the start argument to specify the folder containing + directory: /plugins + # the start argument to specify the plugin id (name "-" version) that needs to be loaded, e.g. 'conn_limit-1'. + list: ["whitelist-1"] + # mysqlClient is used to set password for TiDB # it must has Python MySQL client installed mysqlClient: @@ -222,12 +252,19 @@ monitor: # memory: 4Gi username: admin password: admin + config: + # Configure Grafana using environment variables except GF_PATHS_DATA, GF_SECURITY_ADMIN_USER and GF_SECURITY_ADMIN_PASSWORD + # Ref https://grafana.com/docs/installation/configuration/#using-environment-variables + GF_AUTH_ANONYMOUS_ENABLED: "true" + GF_AUTH_ANONYMOUS_ORG_NAME: "Main Org." + GF_AUTH_ANONYMOUS_ORG_ROLE: "Viewer" + # if grafana is running behind a reverse proxy with subpath http://foo.bar/grafana + # GF_SERVER_DOMAIN: foo.bar + # GF_SERVER_ROOT_URL: "%(protocol)s://%(domain)s/grafana/" service: type: LoadBalancer - # if grafana is running behind a reverse proxy with subpath http://foo.bar/grafana - # config the `serverDomain` and `serverRootUrl` as follows - # serverDomain: foo.bar - # serverRootUrl: "%(protocol)s://%(domain)s/grafana/" + annotations: + service.beta.kubernetes.io/alicloud-loadbalancer-address-type: ${monitor_slb_network_type} prometheus: image: prom/prometheus:v2.2.1 imagePullPolicy: IfNotPresent @@ -241,8 +278,6 @@ monitor: # memory: 4Gi service: type: NodePort - annotations: - service.beta.kubernetes.io/alicloud-loadbalancer-address-type: ${monitor_slb_network_type} reserveDays: ${monitor_reserve_days} # alertmanagerURL: "" nodeSelector: {} @@ -268,6 +303,7 @@ binlog: # refer to https://kubernetes.io/docs/concepts/storage/storage-classes storageClassName: ${local_storage_class} storage: 10Gi + syncLog: true # a integer value to control expiry date of the binlog data, indicates for how long (in days) the binlog data would be stored. # must bigger than 0 gc: 7 @@ -285,8 +321,8 @@ binlog: # refer to https://kubernetes.io/docs/concepts/storage/storage-classes storageClassName: ${local_storage_class} storage: 10Gi - # parallel worker count (default 1) - workerCount: 1 + # parallel worker count (default 16) + workerCount: 16 # the interval time (in seconds) of detect pumps' status (default 10) detectInterval: 10 # disbale detect causality @@ -299,8 +335,8 @@ binlog: initialCommitTs: 0 # enable safe mode to make syncer reentrant safeMode: false - # number of binlog events in a transaction batch (default 1) - txnBatch: 1 + # number of binlog events in a transaction batch (default 20) + txnBatch: 20 # downstream storage, equal to --dest-db-type # valid values are "mysql", "pb", "kafka" destDBType: pb @@ -368,4 +404,4 @@ scheduledBackup: metaInstance: "{{ $labels.instance }}" metaType: "{{ $labels.type }}" -metaValue: "{{ $value }}" \ No newline at end of file +metaValue: "{{ $value }}" diff --git a/deploy/aws/templates/tidb-cluster-values.yaml.tpl b/deploy/aws/templates/tidb-cluster-values.yaml.tpl index 30e5ed55083..7b5e1a49d28 100644 --- a/deploy/aws/templates/tidb-cluster-values.yaml.tpl +++ b/deploy/aws/templates/tidb-cluster-values.yaml.tpl @@ -99,6 +99,8 @@ tikv: # syncLog is a bool value to enable or disable syc-log for raftstore, default is true # enable this can prevent data loss when power failure syncLog: true + # size of thread pool for grpc server. + # grpcConcurrency: 4 resources: limits: {} # cpu: 16000m @@ -137,21 +139,10 @@ tikv: # also should less than total cpu cores. # storageSchedulerWorkerPoolSize: 4 -tikvPromGateway: - image: prom/pushgateway:v0.3.1 - imagePullPolicy: IfNotPresent - resources: - limits: {} - # cpu: 100m - # memory: 100Mi - requests: {} - # cpu: 50m - # memory: 50Mi - tidb: replicas: ${tidb_replicas} # The secret name of root password, you can create secret with following command: - # kubectl create secret generic tidb-secret --from-literal=root_password= + # kubectl create secret generic tidb-secret --from-literal=root= --namespace= # If unset, the root password will be empty and you can set it after connecting # passwordSecretName: tidb-secret # initSql is the SQL statements executed after the TiDB cluster is bootstrapped. @@ -161,6 +152,36 @@ tidb: # Image pull policy. imagePullPolicy: IfNotPresent logLevel: info + preparedPlanCacheEnabled: false + preparedPlanCacheCapacity: 100 + # Enable local latches for transactions. Enable it when + # there are lots of conflicts between transactions. + txnLocalLatchesEnabled: false + txnLocalLatchesCapacity: "10240000" + # The limit of concurrent executed sessions. + tokenLimit: "1000" + # Set the memory quota for a query in bytes. Default: 32GB + memQuotaQuery: "34359738368" + # The limitation of the number for the entries in one transaction. + # If using TiKV as the storage, the entry represents a key/value pair. + # WARNING: Do not set the value too large, otherwise it will make a very large impact on the TiKV cluster. + # Please adjust this configuration carefully. + txnEntryCountLimit: "300000" + # The limitation of the size in byte for the entries in one transaction. + # If using TiKV as the storage, the entry represents a key/value pair. + # WARNING: Do not set the value too large, otherwise it will make a very large impact on the TiKV cluster. + # Please adjust this configuration carefully. + txnTotalSizeLimit: "104857600" + # enableBatchDml enables batch commit for the DMLs + enableBatchDml: false + # check mb4 value in utf8 is used to control whether to check the mb4 characters when the charset is utf8. + checkMb4ValueInUtf8: true + # treat-old-version-utf8-as-utf8mb4 use for upgrade compatibility. Set to true will treat old version table/column UTF8 charset as UTF8MB4. + treatOldVersionUtf8AsUtf8mb4: true + # lease is schema lease duration, very dangerous to change only if you know what you do. + lease: 45s + # Max CPUs to use, 0 use number of CPUs in the machine. + maxProcs: 0 resources: limits: {} # cpu: 16000m @@ -184,6 +205,7 @@ tidb: exposeStatus: true annotations: service.beta.kubernetes.io/aws-load-balancer-internal: 0.0.0.0/0 + service.beta.kubernetes.io/aws-load-balancer-type: nlb # separateSlowLog: true slowLogTailer: image: busybox:1.26.2 @@ -195,6 +217,15 @@ tidb: cpu: 20m memory: 5Mi + # tidb plugin configuration + plugin: + # enable plugin or not + enable: false + # the start argument to specify the folder containing + directory: /plugins + # the start argument to specify the plugin id (name "-" version) that needs to be loaded, e.g. 'conn_limit-1'. + list: ["whitelist-1"] + # mysqlClient is used to set password for TiDB # it must has Python MySQL client installed mysqlClient: @@ -224,12 +255,17 @@ monitor: # memory: 4Gi username: admin password: admin + config: + # Configure Grafana using environment variables except GF_PATHS_DATA, GF_SECURITY_ADMIN_USER and GF_SECURITY_ADMIN_PASSWORD + # Ref https://grafana.com/docs/installation/configuration/#using-environment-variables + GF_AUTH_ANONYMOUS_ENABLED: "true" + GF_AUTH_ANONYMOUS_ORG_NAME: "Main Org." + GF_AUTH_ANONYMOUS_ORG_ROLE: "Viewer" + # if grafana is running behind a reverse proxy with subpath http://foo.bar/grafana + # GF_SERVER_DOMAIN: foo.bar + # GF_SERVER_ROOT_URL: "%(protocol)s://%(domain)s/grafana/" service: type: LoadBalancer - # if grafana is running behind a reverse proxy with subpath http://foo.bar/grafana - # config the `serverDomain` and `serverRootUrl` as follows - # serverDomain: foo.bar - # serverRootUrl: "%(protocol)s://%(domain)s/grafana/" prometheus: image: prom/prometheus:v2.2.1 imagePullPolicy: IfNotPresent @@ -268,6 +304,7 @@ binlog: # refer to https://kubernetes.io/docs/concepts/storage/storage-classes storageClassName: local-storage storage: 10Gi + syncLog: true # a integer value to control expiry date of the binlog data, indicates for how long (in days) the binlog data would be stored. # must bigger than 0 gc: 7 @@ -285,8 +322,8 @@ binlog: # refer to https://kubernetes.io/docs/concepts/storage/storage-classes storageClassName: local-storage storage: 10Gi - # parallel worker count (default 1) - workerCount: 1 + # parallel worker count (default 16) + workerCount: 16 # the interval time (in seconds) of detect pumps' status (default 10) detectInterval: 10 # disbale detect causality @@ -299,8 +336,8 @@ binlog: initialCommitTs: 0 # enable safe mode to make syncer reentrant safeMode: false - # number of binlog events in a transaction batch (default 1) - txnBatch: 1 + # number of binlog events in a transaction batch (default 20) + txnBatch: 20 # downstream storage, equal to --dest-db-type # valid values are "mysql", "pb", "kafka" destDBType: pb diff --git a/docs/local-dind-tutorial.md b/docs/local-dind-tutorial.md index c65e5d031c4..707f01abcea 100644 --- a/docs/local-dind-tutorial.md +++ b/docs/local-dind-tutorial.md @@ -101,9 +101,9 @@ demo-pd-1 1/1 Running 0 1m demo-pd-2 1/1 Running 0 1m demo-tidb-0 1/1 Running 0 1m demo-tidb-1 1/1 Running 0 1m -demo-tikv-0 2/2 Running 0 1m -demo-tikv-1 2/2 Running 0 1m -demo-tikv-2 2/2 Running 0 1m +demo-tikv-0 1/1 Running 0 1m +demo-tikv-1 1/1 Running 0 1m +demo-tikv-2 1/1 Running 0 1m ``` To access the TiDB cluster, use `kubectl port-forward` to expose the services to host. @@ -155,7 +155,7 @@ You can scale out or scale in the TiDB cluster simply by modifying the number of 1. Configure the `charts/tidb-cluster/values.yaml` file. - For example, change the version of PD/TiKV/TiDB `image` to `v2.1.1`. + For example, change the version of PD/TiKV/TiDB `image` to `v2.1.9`. 2. Run the following command to apply the changes: diff --git a/images/tidb-operator-e2e/tidb-cluster-values.yaml b/images/tidb-operator-e2e/tidb-cluster-values.yaml index 734e1d25388..29d7da86678 100644 --- a/images/tidb-operator-e2e/tidb-cluster-values.yaml +++ b/images/tidb-operator-e2e/tidb-cluster-values.yaml @@ -36,7 +36,7 @@ discovery: pd: replicas: 3 - image: pingcap/pd:v2.1.0 + image: pingcap/pd:v2.1.8 imagePullPolicy: IfNotPresent logLevel: info # storageClassName is a StorageClass provides a way for administrators to describe the "classes" of storage they offer. @@ -76,7 +76,7 @@ pd: tikv: replicas: 3 - image: pingcap/tikv:v2.1.0 + image: pingcap/tikv:v2.1.8 imagePullPolicy: IfNotPresent logLevel: info # storageClassName is a StorageClass provides a way for administrators to describe the "classes" of storage they offer. @@ -127,7 +127,7 @@ tidb: # initSql is the SQL statements executed after the TiDB cluster is bootstrapped. # initSql: |- # create database app; - image: pingcap/tidb:v2.1.0 + image: pingcap/tidb:v2.1.8 imagePullPolicy: IfNotPresent logLevel: info resources: @@ -214,7 +214,7 @@ monitor: fullbackup: create: false - binlogImage: pingcap/tidb-binlog:v2.1.0 + binlogImage: pingcap/tidb-binlog:v2.1.8 binlogImagePullPolicy: IfNotPresent # https://github.com/tennix/tidb-cloud-backup mydumperImage: pingcap/tidb-cloud-backup:latest @@ -255,7 +255,7 @@ binlog: pump: create: false replicas: 1 - image: pingcap/tidb-binlog:v2.1.0 + image: pingcap/tidb-binlog:v2.1.8 imagePullPolicy: IfNotPresent logLevel: info # storageClassName is a StorageClass provides a way for administrators to describe the "classes" of storage they offer. @@ -272,7 +272,7 @@ binlog: drainer: create: false - image: pingcap/tidb-binlog:v2.1.0 + image: pingcap/tidb-binlog:v2.1.8 imagePullPolicy: IfNotPresent logLevel: info # storageClassName is a StorageClass provides a way for administrators to describe the "classes" of storage they offer. diff --git a/manifests/crd.yaml b/manifests/crd.yaml index 3573d2268a7..789dde4285c 100644 --- a/manifests/crd.yaml +++ b/manifests/crd.yaml @@ -101,13 +101,3 @@ spec: properties: cpu: type: string - tikvPromGateway: - properties: - limits: - properties: - cpu: - type: string - requests: - properties: - cpu: - type: string diff --git a/pkg/apis/pingcap.com/v1alpha1/types.go b/pkg/apis/pingcap.com/v1alpha1/types.go index 458543df41e..d24a29a5de9 100644 --- a/pkg/apis/pingcap.com/v1alpha1/types.go +++ b/pkg/apis/pingcap.com/v1alpha1/types.go @@ -42,8 +42,6 @@ const ( TiDBMemberType MemberType = "tidb" // TiKVMemberType is tikv container type TiKVMemberType MemberType = "tikv" - // PushGatewayMemberType is pushgateway container type - PushGatewayMemberType MemberType = "pushgateway" // SlowLogTailerMemberType is tidb log tailer container type SlowLogTailerMemberType MemberType = "slowlog" // UnknownMemberType is unknown container type diff --git a/pkg/controller/controller_utils.go b/pkg/controller/controller_utils.go index ece3327da63..faee7142f2b 100644 --- a/pkg/controller/controller_utils.go +++ b/pkg/controller/controller_utils.go @@ -34,8 +34,6 @@ var ( ) const ( - // defaultPushgatewayImage is default image of pushgateway - defaultPushgatewayImage = "prom/pushgateway:v0.3.1" // defaultTiDBSlowLogImage is default image of tidb log tailer defaultTiDBLogTailerImage = "busybox:1.26.2" ) @@ -111,26 +109,6 @@ func TiKVCapacity(limits *v1alpha1.ResourceRequirement) string { return fmt.Sprintf("%dGB", int(float64(i)/math.Pow(2, 30))) } -// DefaultPushGatewayRequest for the TiKV sidecar -func DefaultPushGatewayRequest() corev1.ResourceRequirements { - rr := corev1.ResourceRequirements{} - rr.Requests = make(map[corev1.ResourceName]resource.Quantity) - rr.Limits = make(map[corev1.ResourceName]resource.Quantity) - rr.Requests[corev1.ResourceCPU] = resource.MustParse("50m") - rr.Requests[corev1.ResourceMemory] = resource.MustParse("50Mi") - rr.Limits[corev1.ResourceCPU] = resource.MustParse("100m") - rr.Limits[corev1.ResourceMemory] = resource.MustParse("100Mi") - return rr -} - -// GetPushgatewayImage returns TidbCluster's pushgateway image -func GetPushgatewayImage(cluster *v1alpha1.TidbCluster) string { - if img := cluster.Spec.TiKVPromGateway.Image; img != "" { - return img - } - return defaultPushgatewayImage -} - func GetSlowLogTailerImage(cluster *v1alpha1.TidbCluster) string { if img := cluster.Spec.TiDB.SlowLogTailer.Image; img != "" { return img diff --git a/pkg/controller/controller_utils_test.go b/pkg/controller/controller_utils_test.go index 23a50340d77..9c9b0a75db7 100644 --- a/pkg/controller/controller_utils_test.go +++ b/pkg/controller/controller_utils_test.go @@ -21,7 +21,6 @@ import ( "github.com/pingcap/tidb-operator/pkg/apis/pingcap.com/v1alpha1" apps "k8s.io/api/apps/v1beta1" corev1 "k8s.io/api/core/v1" - "k8s.io/apimachinery/pkg/api/resource" metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" "k8s.io/apimachinery/pkg/types" ) @@ -138,25 +137,6 @@ func TestTiKVCapacity(t *testing.T) { } } -func TestDefaultPushGatewayRequest(t *testing.T) { - g := NewGomegaWithT(t) - - rr := DefaultPushGatewayRequest() - g.Expect(rr.Requests[corev1.ResourceCPU]).To(Equal(resource.MustParse("50m"))) - g.Expect(rr.Requests[corev1.ResourceMemory]).To(Equal(resource.MustParse("50Mi"))) - g.Expect(rr.Limits[corev1.ResourceCPU]).To(Equal(resource.MustParse("100m"))) - g.Expect(rr.Limits[corev1.ResourceMemory]).To(Equal(resource.MustParse("100Mi"))) -} - -func TestGetPushgatewayImage(t *testing.T) { - g := NewGomegaWithT(t) - - tc := &v1alpha1.TidbCluster{} - g.Expect(GetPushgatewayImage(tc)).To(Equal(defaultPushgatewayImage)) - tc.Spec.TiKVPromGateway.Image = "image-1" - g.Expect(GetPushgatewayImage(tc)).To(Equal("image-1")) -} - func TestGetSlowLogTailerImage(t *testing.T) { g := NewGomegaWithT(t) diff --git a/pkg/manager/member/tikv_member_manager.go b/pkg/manager/member/tikv_member_manager.go index 8fe442a2bfe..e68c19474e2 100644 --- a/pkg/manager/member/tikv_member_manager.go +++ b/pkg/manager/member/tikv_member_manager.go @@ -293,7 +293,6 @@ func (tkmm *tikvMemberManager) getNewSetForTidbCluster(tc *v1alpha1.TidbCluster) }}, }, } - pgwVolMounts := []corev1.VolumeMount{} // pushgateway volumeMounts var q resource.Quantity var err error @@ -328,7 +327,7 @@ func (tkmm *tikvMemberManager) getNewSetForTidbCluster(tc *v1alpha1.TidbCluster) Template: corev1.PodTemplateSpec{ ObjectMeta: metav1.ObjectMeta{ Labels: tikvLabel.Labels(), - Annotations: controller.AnnProm(9091), + Annotations: controller.AnnProm(20180), }, Spec: corev1.PodSpec{ SchedulerName: tc.Spec.SchedulerName, @@ -380,22 +379,6 @@ func (tkmm *tikvMemberManager) getNewSetForTidbCluster(tc *v1alpha1.TidbCluster) }, }, }, - { - Name: v1alpha1.PushGatewayMemberType.String(), - Image: controller.GetPushgatewayImage(tc), - ImagePullPolicy: tc.Spec.TiKVPromGateway.ImagePullPolicy, - Ports: []corev1.ContainerPort{ - { - Name: "metrics", - ContainerPort: int32(9091), - Protocol: corev1.ProtocolTCP, - }, - }, - VolumeMounts: pgwVolMounts, - Resources: util.ResourceRequirement(tc.Spec.TiKVPromGateway.ContainerSpec, - controller.DefaultPushGatewayRequest()), - Env: []corev1.EnvVar{{Name: "TZ", Value: tc.Spec.Timezone}}, // Note: `TZ` is unused in pushgateway image, we set it here just to keep consistency - }, }, RestartPolicy: corev1.RestartPolicyAlways, Tolerations: tc.Spec.TiKV.Tolerations,