knative
/
caching
mirror of https://github.com/knative/caching.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
caching/vendor/knative.dev/pkg/metrics/stackdriver_exporter.go

400 lines
14 KiB
Go
Raw Blame History

/*
Copyright 2019 The Knative Authors
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
package metrics
import (
"context"
"fmt"
"path"
"sync"
"time"
sd "contrib.go.opencensus.io/exporter/stackdriver"
"go.opencensus.io/resource"
"go.opencensus.io/stats"
"go.opencensus.io/stats/view"
"go.opencensus.io/tag"
"go.uber.org/zap"
"google.golang.org/api/option"
"k8s.io/apimachinery/pkg/util/sets"
"knative.dev/pkg/metrics/metricskey"
corev1 "k8s.io/api/core/v1"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"k8s.io/client-go/kubernetes"
"k8s.io/client-go/rest"
)
const (
customMetricTypePrefix = "custom.googleapis.com"
// defaultCustomMetricSubDomain is the default subdomain to use for unsupported metrics by monitored resource types.
// See: https://cloud.google.com/monitoring/api/ref_v3/rest/v3/projects.metricDescriptors#MetricDescriptor
defaultCustomMetricSubDomain = "knative.dev"
// StackdriverSecretNamespaceDefault is the default namespace to search for a k8s Secret to pass to Stackdriver client to authenticate with Stackdriver.
StackdriverSecretNamespaceDefault = "default"
// StackdriverSecretNameDefault is the default name of the k8s Secret to pass to Stackdriver client to authenticate with Stackdriver.
StackdriverSecretNameDefault = "stackdriver-service-account-key"
// secretDataFieldKey is the name of the k8s Secret field that contains the Secret's key.
secretDataFieldKey = "key.json"
// stackdriverApiTimeout is the timeout value of Stackdriver API service side.
stackdriverAPITimeout = 12 * time.Second
)
var (
// gcpMetadataFunc is the function used to fetch GCP metadata.
// In product usage, this is always set to function retrieveGCPMetadata.
// In unit tests this is set to a fake one to avoid calling GCP metadata
// service.
gcpMetadataFunc func() *gcpMetadata
// newStackdriverExporterFunc is the function used to create new stackdriver
// exporter.
// In product usage, this is always set to function newOpencensusSDExporter.
// In unit tests this is set to a fake one to avoid calling actual Google API
// service.
newStackdriverExporterFunc func(sd.Options) (view.Exporter, error)
// kubeclient is the in-cluster Kubernetes kubeclient, which is lazy-initialized on first use.
kubeclient *kubernetes.Clientset
// initClientOnce is the lazy initializer for kubeclient.
initClientOnce sync.Once
// kubeclientInitErr capture an error during initClientOnce
kubeclientInitErr error
// stackdriverMtx protects setting secretNamespace and secretName and useStackdriverSecretEnabled
stackdriverMtx sync.RWMutex
// secretName is the name of the k8s Secret to pass to Stackdriver client to authenticate with Stackdriver.
secretName = StackdriverSecretNameDefault
// secretNamespace is the namespace to search for a k8s Secret to pass to Stackdriver client to authenticate with Stackdriver.
secretNamespace = StackdriverSecretNamespaceDefault
// useStackdriverSecretEnabled specifies whether or not the exporter can be configured with a Secret.
// Consuming packages must do explicitly enable this by calling SetStackdriverSecretLocation.
useStackdriverSecretEnabled = false
// metricToResourceLabels provides a quick lookup from a custom metric name to the set of tags
// which should be promoted to Stackdriver Resource labels via opencensus resources.
metricToResourceLabels = map[string]*resourceTemplate{}
// TestOverrideBundleCount is a variable for testing to reduce the size (number of metrics) buffered before
// Stackdriver will send a bundled metric report. Only applies if non-zero.
TestOverrideBundleCount = 0
)
type resourceTemplate struct {
Type string
LabelKeys sets.String
}
// SetStackdriverSecretLocation sets the name and namespace of the Secret that can be used to authenticate with Stackdriver.
// The Secret is only used if both:
// 1. This function has been explicitly called to set the name and namespace
// 2. Users set metricsConfig.stackdriverClientConfig.UseSecret to "true"
func SetStackdriverSecretLocation(name string, namespace string) {
stackdriverMtx.Lock()
defer stackdriverMtx.Unlock()
secretName = name
secretNamespace = namespace
useStackdriverSecretEnabled = true
}
func init() {
// Set gcpMetadataFunc to call GCP metadata service.
gcpMetadataFunc = retrieveGCPMetadata
newStackdriverExporterFunc = newOpencensusSDExporter
kubeclientInitErr = nil
metricsToTemplates := []struct {
metrics sets.String
template resourceTemplate
}{
{metricskey.KnativeRevisionMetrics, resourceTemplate{metricskey.ResourceTypeKnativeRevision, metricskey.KnativeRevisionLabels}},
{metricskey.KnativeTriggerMetrics, resourceTemplate{metricskey.ResourceTypeKnativeTrigger, metricskey.KnativeTriggerLabels}},
{metricskey.KnativeBrokerMetrics, resourceTemplate{metricskey.ResourceTypeKnativeBroker, metricskey.KnativeBrokerLabels}},
{metricskey.KnativeSourceMetrics, resourceTemplate{metricskey.ResourceTypeKnativeSource, metricskey.KnativeSourceLabels}},
}
for _, item := range metricsToTemplates {
t := item.template
for k := range item.metrics {
metricToResourceLabels[k] = &t
}
}
}
type pollOnlySDExporter struct {
internalExporter view.Exporter
}
var _ (view.Exporter) = (*pollOnlySDExporter)(nil)
var _ (flushable) = (*pollOnlySDExporter)(nil)
func (e *pollOnlySDExporter) ExportView(viewData *view.Data) {
// Stackdriver will run an internal loop to bundle stats, so ignore this.
}
func (e *pollOnlySDExporter) Flush() {
if e.internalExporter != nil {
if f, ok := e.internalExporter.(flushable); ok {
f.Flush()
}
}
}
func (e *pollOnlySDExporter) StopMetricsExporter() {
if e.internalExporter != nil {
if f, ok := e.internalExporter.(stoppable); ok {
f.StopMetricsExporter()
}
}
}
func newOpencensusSDExporter(o sd.Options) (view.Exporter, error) {
e, err := sd.NewExporter(o)
if err != nil {
return nil, err
}
// Start the exporter.
// TODO(https://github.com/knative/pkg/issues/866): Move this to an interface.
if err := e.StartMetricsExporter(); err != nil {
return nil, err
}
return e, nil
}
func newStackdriverExporter(config *metricsConfig, logger *zap.SugaredLogger) (view.Exporter, ResourceExporterFactory, error) {
gm := getMergedGCPMetadata(config)
mpf := getMetricPrefixFunc(config.stackdriverMetricTypePrefix, config.stackdriverCustomMetricTypePrefix)
co, err := getStackdriverExporterClientOptions(config)
if err != nil {
logger.Warnw("Issue configuring Stackdriver exporter client options, no additional client options will be used: ", zap.Error(err))
}
// Automatically fall back on Google application default credentials
e, err := newStackdriverExporterFunc(sd.Options{
ProjectID: gm.project,
Location: gm.location,
MonitoringClientOptions: co,
TraceClientOptions: co,
GetMetricPrefix: mpf,
ReportingInterval: config.reportingPeriod,
DefaultMonitoringLabels: &sd.Labels{},
Timeout: stackdriverAPITimeout,
BundleCountThreshold: TestOverrideBundleCount,
})
if err != nil {
logger.Errorw("Failed to create the Stackdriver exporter: ", zap.Error(err))
return nil, nil, err
}
logger.Info("Created Opencensus Stackdriver exporter with config ", config)
// We have to return a ResourceExporterFactory here to enable tracking resources, even though we always poll for them.
return &pollOnlySDExporter{e},
func(r *resource.Resource) (view.Exporter, error) { return &pollOnlySDExporter{}, nil },
nil
}
func sdCustomMetricsRecorder(mc metricsConfig, allowCustomMetrics bool) func(context.Context, []stats.Measurement, ...stats.Options) error {
gm := getMergedGCPMetadata(&mc)
metadataMap := map[string]string{
metricskey.LabelProject: gm.project,
metricskey.LabelLocation: gm.location,
metricskey.LabelClusterName: gm.cluster,
}
return func(ctx context.Context, mss []stats.Measurement, ros ...stats.Options) error {
// Some metrics may be promoted to known Stackdriver schemas, so we may
// end up multiple Resources recorded for a single `RecordBatch` call.
metricsByResource := map[*resourceTemplate][]stats.Measurement{}
for _, m := range mss {
metricType := path.Join(mc.stackdriverMetricTypePrefix, m.Measure().Name())
t, ok := metricToResourceLabels[metricType]
if ok || allowCustomMetrics {
if metricsByResource[t] == nil {
metricsByResource[t] = make([]stats.Measurement, 0, len(mss))
}
metricsByResource[t] = append(metricsByResource[t], m)
}
}
baseLabels := map[string]string{}
baseResource := metricskey.GetResource(ctx)
if baseResource != nil {
baseLabels = baseResource.Labels
}
tagMap := tag.FromContext(ctx)
for templ, ms := range metricsByResource {
sdResource := baseResource
sdCtx := ctx
if templ != nil {
sdResource = &resource.Resource{
Type: templ.Type,
Labels: map[string]string{},
}
tagMutations := make([]tag.Mutator, 0, len(templ.LabelKeys))
for k := range templ.LabelKeys {
if v, ok := baseLabels[k]; ok {
sdResource.Labels[k] = v
continue
}
tagKey := tag.MustNewKey(k)
if v, ok := tagMap.Value(tagKey); ok {
sdResource.Labels[k] = v
tagMutations = append(tagMutations, tag.Delete(tagKey))
continue
}
if v, ok := metadataMap[k]; ok {
sdResource.Labels[k] = v
continue
}
sdResource.Labels[k] = metricskey.ValueUnknown
}
var err error
sdCtx, err = tag.New(metricskey.WithResource(ctx, *sdResource), tagMutations...)
if err != nil {
return err
}
}
if sdResource != nil {
opt, err := optionForResource(sdResource)
if err != nil {
return err
}
ros = append(ros, opt)
}
if err := stats.RecordWithOptions(sdCtx, append(ros, stats.WithMeasurements(ms...))...); err != nil {
return err
}
}
return nil
}
}
// getStackdriverExporterClientOptions creates client options for the opencensus Stackdriver exporter from the given stackdriverClientConfig.
// On error, an empty array of client options is returned.
func getStackdriverExporterClientOptions(config *metricsConfig) ([]option.ClientOption, error) {
var co []option.ClientOption
// SetStackdriverSecretLocation must have been called by calling package for this to work.
if config.stackdriverClientConfig.UseSecret {
if config.secret == nil {
return co, fmt.Errorf("no secret provided for component %q; cannot use stackdriver-use-secret=true", config.component)
}
if opt, err := convertSecretToExporterOption(config.secret); err == nil {
co = append(co, opt)
} else {
return co, err
}
}
return co, nil
}
// getMergedGCPMetadata returns GCP metadata required to export metrics
// to Stackdriver. Values can come from the GCE metadata server or the config.
// Values explicitly set in the config take the highest precedent.
func getMergedGCPMetadata(config *metricsConfig) *gcpMetadata {
gm := gcpMetadataFunc()
if config.stackdriverClientConfig.ProjectID != "" {
gm.project = config.stackdriverClientConfig.ProjectID
}
if config.stackdriverClientConfig.GCPLocation != "" {
gm.location = config.stackdriverClientConfig.GCPLocation
}
if config.stackdriverClientConfig.ClusterName != "" {
gm.cluster = config.stackdriverClientConfig.ClusterName
}
return gm
}
func getMetricPrefixFunc(metricTypePrefix, customMetricTypePrefix string) func(name string) string {
return func(name string) string {
metricType := path.Join(metricTypePrefix, name)
inServing := metricskey.KnativeRevisionMetrics.Has(metricType)
inEventing := metricskey.KnativeBrokerMetrics.Has(metricType) ||
metricskey.KnativeTriggerMetrics.Has(metricType) ||
metricskey.KnativeSourceMetrics.Has(metricType)
if inServing || inEventing {
return metricTypePrefix
}
// Unsupported metric by knative_revision, use custom domain.
return customMetricTypePrefix
}
}
// getStackdriverSecret returns the Kubernetes Secret specified in the given config.
// SetStackdriverSecretLocation must have been called by calling package for this to work.
// TODO(anniefu): Update exporter if Secret changes (https://github.com/knative/pkg/issues/842)
func getStackdriverSecret(ctx context.Context, secretFetcher SecretFetcher) (*corev1.Secret, error) {
stackdriverMtx.RLock()
defer stackdriverMtx.RUnlock()
if !useStackdriverSecretEnabled {
return nil, nil
}
var secErr error
var sec *corev1.Secret
if secretFetcher != nil {
sec, secErr = secretFetcher(fmt.Sprintf("%s/%s", secretNamespace, secretName))
} else {
// This else-block can be removed once UpdateExporterFromConfigMap is fully deprecated in favor of ConfigMapWatcher
if err := ensureKubeclient(); err != nil {
return nil, err
}
sec, secErr = kubeclient.CoreV1().Secrets(secretNamespace).Get(ctx, secretName, metav1.GetOptions{})
}
if secErr != nil {
return nil, fmt.Errorf("error getting Secret [%v] in namespace [%v]: %v", secretName, secretNamespace, secErr)
}
return sec, nil
}
// convertSecretToExporterOption converts a Kubernetes Secret to an OpenCensus Stackdriver Exporter Option.
func convertSecretToExporterOption(secret *corev1.Secret) (option.ClientOption, error) {
if data, ok := secret.Data[secretDataFieldKey]; ok {
return option.WithCredentialsJSON(data), nil
}
return nil, fmt.Errorf("expected Secret to store key in data field named [%s]", secretDataFieldKey)
}
// ensureKubeclient is the lazy initializer for kubeclient.
func ensureKubeclient() error {
// initClientOnce is only run once and cannot return error, so kubeclientInitErr is used to capture errors.
initClientOnce.Do(func() {
config, err := rest.InClusterConfig()
if err != nil {
kubeclientInitErr = err
return
}
cs, err := kubernetes.NewForConfig(config)
if err != nil {
kubeclientInitErr = err
return
}
kubeclient = cs
})
return kubeclientInitErr
}
Reference in New Issue View Git Blame Copy Permalink