Skip to content

Add container resource requirements customization for affinity-assistant pods #9287

Open
Feature
Open
Add container resource requirements customization for affinity-assistant pods#9287
Feature
Labels
kind/featureCategorizes issue or PR as related to a new feature.
@vdemeester

Description

@vdemeester
vdemeester
opened on Jan 9, 2026

Problem

Affinity-assistant pods have hardcoded resource requirements that cannot be customized:

// pkg/reconciler/pipelinerun/affinity_assistant.go:331-339
Resources: corev1.ResourceRequirements{
    Limits: corev1.ResourceList{
        "cpu":    resource.MustParse("50m"),
        "memory": resource.MustParse("100Mi"),
    },
    Requests: corev1.ResourceList{
        "cpu":    resource.MustParse("50m"),
        "memory": resource.MustParse("100Mi"),
    },
}

This causes issues in environments with ResourceQuota policies:

  • Resource Contention: Hardcoded values may be insufficient or excessive
  • Quota Exhaustion: Minimal AA pods still consume quota needed for workloads
  • LimitRange Conflicts: Namespace LimitRanges may prevent pod creation
  • Inflexibility: No tuning based on cluster size or workload needs

Use Case

Red Hat OpenShift Pipelines customers with strict ResourceQuota policies need to customize affinity-assistant resources to match quota constraints and prevent scheduling failures (#8015, #3049).

Proposed Solution

Add Resources field to AffinityAssistantTemplate, following the pattern from #2679:

type AffinityAssistantTemplate struct {
    NodeSelector      map[string]string
    Tolerations       []corev1.Toleration
    ImagePullSecrets  []corev1.LocalObjectReference
    SecurityContext   *corev1.PodSecurityContext
    PriorityClassName *string
    Resources         *corev1.ResourceRequirements `json:"resources,omitempty"` // NEW
}

Configuration examples:

Global default:

default-affinity-assistant-pod-template: |
  resources:
    requests:
      cpu: "50m"
      memory: "100Mi"
    limits:
      cpu: "100m"
      memory: "200Mi"

Per-PipelineRun override:

spec:
  taskRunTemplate:
    podTemplate:
      resources:
        requests:
          cpu: "100m"
          memory: "200Mi"

Implementation

  1. Update AffinityAssistantTemplate struct
  2. Update MergeAAPodTemplateWithDefault() merge logic
  3. Apply resources in affinityAssistantStatefulSet()
  4. Add validation (requests ≤ limits)
  5. Maintain backward compatibility (current hardcoded values as defaults)
  6. Update docs and generate OpenAPI schemas

Alternatives Considered

  • Extend default-container-resource-requirements: Inconsistent with AffinityAssistantTemplate pattern
  • LimitRange: Already available; applies to all pods (not targeted)
  • MutatingAdmissionWebhook: Over-engineered
  • Environment variables: Anti-pattern

Related Issues

Benefits

  • Flexibility for different cluster configurations
  • ResourceQuota compatibility
  • Follows existing AffinityAssistantTemplate pattern
  • Backward compatible
  • Kubernetes-native

Implementation Offer

Red Hat OpenShift Pipelines team is willing to contribute this implementation if the community agrees with the approach.

Questions

  1. Does this align with Tekton's AA configuration vision?
  2. Should this go through the TEP process (API change)?
  3. Beta feature flag before stabilization?

cc @tektoncd/core-maintainers

Metadata

Metadata

Assignees

No one assigned

    Labels

    kind/featureCategorizes issue or PR as related to a new feature.

    Type

    Feature

    Projects

    Milestone board

    Status

    Todo

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions