TRACING-4752: Add OpenTelemetry-Collector as optional sub-package

[copejon]

Which issue(s) this PR addresses:

Closes #

[openshift-ci]

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

[ggiguash]

Do we want to run the collector even when MicroShift fails?

[copejon]

I'd think yes. If MicroShift fails to start, the metrics and log data should still be collectable by the metrics/logging backend remotely.

[ggiguash]

/retitle NO-ISSUE: OpenTelemetry certificates and service for MicroShift

[openshift-ci-robot]

@copejon: This pull request explicitly references no jira issue.

In response to this:

Which issue(s) this PR addresses:

Closes #

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci-robot]

@copejon: This pull request references TRACING-4752 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.19.0" version, but no target version was set.

In response to this:

Which issue(s) this PR addresses:

Closes #

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[copejon]

/jira refresh

[openshift-ci-robot]

@copejon: This pull request references TRACING-4752 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.19.0" version, but no target version was set.

In response to this:

/jira refresh

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[ggiguash]

We need to be consistent in the naming case. Either fix this, or the Summary section, please.

Suggested change

	Deploys the Red Hat build of Opentelemetry-collector as a systemd service on host. MicroShift provides client
	Deploys the Red Hat build of OpenTelemetry-Collector as a systemd service on host. MicroShift provides client

[ggiguash]

Suggested change

	certificates to permit access to the kube-apiserver metrics endpoints. If a user defined opentelemetry-collector exists
	at /etc/microshift/opentelemetry-collector.yaml, this config is used. Otherwise, a default config is provided. Note that
	the default configuration requires the backend endpoint be set by the user.
	certificates to permit access to the kube-apiserver metrics endpoints. If a user-defined configuration file exists
	at /etc/microshift/opentelemetry-collector.yaml, this configuration is used. Otherwise, a default configuration is provided.
	Note that the default configuration requires the backend endpoint be set by the user.

[ggiguash]

For the backend endpoint, should we be specific on what we expect users to set?
I mean, should we say exporters.otlp section must be edited by users?

[copejon]

Added more specific instructions

[ggiguash]

Let's think what we can do so that the logs are not "spammed" when the default configuration is used. It sounds as if we should copy this file with .example suffix so that users would have to explicitly rename the file when they enable the collector service.

[ggiguash]

In any case, the "style" of this comment should be reworded.

[copejon]

I've tweaked the comment and made it a little more informational

[ggiguash]

Should we use ConditionPathExists here for all the files the service expects to have before it starts?

[copejon]

The opentelemetry-collector performs that check for us each time it starts.

[ggiguash]

Right, but the point of the condition in systemd is not to attempt starting the service if the path does no exist.

[ggiguash]

Could this help to avoid unnecessary restarts?

[ggiguash]

Do we really need this? We've configured the service to start After microshift, so microshift must report readiness to systemd before the current service startup is attempted. MicroShift only reports readiness after creating all certificates.
What am I missing?

[copejon]

In earlier tests this was necessary to keep the service from crash looping, but that doesn't seem to be an issue in the latest opentelemetry-collector. Will remove

[ggiguash]

These paths need to be updated too -> /var/lib/microshift/..../

[ggiguash]

Let's not use shortened words because it's a user-facing RPM description.

[ggiguash]

Please, fix the case of Opentelemety -> OpenTelemetry to make it consistent with the summary text.

[ggiguash]

Should we specify a unit here?
There seems to be a race condition here. Since we're testing a new unit, should we not just parse the logs from the beginning after we get enough lines there?

[copejon]

The missing unit was an oversight on my part. Fixed now. I don't understand what you mean about the race condition though. Can you elaborate?

[ggiguash]

What is "Contain"?

[copejon]

oops, lost and er there :D

[ggiguash]

Why do we need this preset?

[copejon]

If the observability rpm were installed without the preset, then it's disabled by default and systemctl enable microshift command doesn't propagate to dependencies. That, coupled with the service settings RequiredBy=microshift.service, means that microshift itself can't start without the user manually enabling the observability service.

This way, the user isn't required to manage the service, as it's handled automatically.

[ggiguash]

What about the other way around? When microshift+observability are installed, microshift is disabled, but observability enabled by default. So, the observability service will fail on reboot.

[ggiguash]

We already have the following in the observability unit configuration.
Isn't it enough to couple service start / stop?

[Unit]
PartOf=microshift.service
After=microshift.service

[copejon]

Isn't it enough to couple service start / stop?

Well, no. In order for the RequiredBy= directive to take effect, the service must be enabled. But as you said, if it's enabled, then after a reboot it would start and enter a fail loop. This is fixed by applying the After=microshift.service.

So the .preset file + the RequiredBy= is what activates the dependency. The After= ensures that the service doesn't start until microshift is active. PartOf= propagates stops/restarts of the microshift service to the observability service.

But I think in the end this ended up being a long walk to accomplishing (basically) the same thing as adding microshift-observability to the microshift.service's Wants= directive.

[ggiguash]

We may want to increase the wait interval to say 5m?

[copejon]

If we've made it to this point, then the observability service is running and generating output. This check is more of a precaution to ensure the test is only checking output that's been generated very recently. Otherwise we may pickup errors or failures caused by service restarts or reboots. That can happen for instance if another test set is run before the observability tests.

[pmtk]

File name is different from what's in the comment

[pmtk]

There are also ovsdb-server.service and ovs-vswitchd.service - should we include them?
In my experience, I think I saw more times ovsdb-server failing than the others

[pmtk]

It looks uncommented to me :)

[pmtk]

So... This is a scenario for ostree tests, but you changed bootc containerfile (test/image-blueprints-bootc/layer2-source/group2/rhel96-bootc-source-optionals.containerfile).
And that explains why:

• setup of THIS scenario (ostree el94 src optional) failed
• robot test cannot find the logs (it obtained cursor because the unit is up, but probably because of missing configuration in bootc x el96 x optional it didn't contain the logs it expected)

[copejon]

🤦🏻 good catch!

[pmtk]

https://prow.ci.openshift.org/view/gs/test-platform-results/pr-logs/pull/openshift_microshift/4281/pull-ci-openshift-microshift-main-e2e-aws-tests-bootc/1902841887996252160:

+ 23:06:18.550008348 ./bin/scenario.sh:123 	scp -P 22 /tmp/tmp.lwpuNyOYUt [email protected]:/etc/microshift/opentelemetry-collector.yaml
dest open("/etc/microshift/opentelemetry-collector.yaml"): Permission denied
failed to upload file /tmp/tmp.lwpuNyOYUt to /etc/microshift/opentelemetry-collector.yaml

[ggiguash]

/test all

[copejon]

/test all

[copejon]

gateway api test failed, rerunning the test

/retest

[ggiguash]

/lgtm

[openshift-ci]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: copejon, ggiguash

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [copejon,ggiguash]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci-robot]

/retest-required

Remaining retests: 0 against base HEAD 2e7d5dd and 2 for PR HEAD 689986c in total

[ggiguash]

/test e2e-aws-tests-bootc

[openshift-ci-robot]

/retest-required

Remaining retests: 0 against base HEAD bfe386c and 1 for PR HEAD 689986c in total

[openshift-ci]

@copejon: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/e2e-aws-tests-bootc-periodic-arm	e759ad1	link	true	/test e2e-aws-tests-bootc-periodic-arm
ci/prow/e2e-aws-tests-bootc-periodic	e759ad1	link	true	/test e2e-aws-tests-bootc-periodic
ci/prow/e2e-aws-tests-periodic	e759ad1	link	true	/test e2e-aws-tests-periodic
ci/prow/e2e-aws-tests-periodic-arm	e759ad1	link	true	/test e2e-aws-tests-periodic-arm

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[openshift-ci-robot]

/retest-required

Remaining retests: 0 against base HEAD bfe386c and 2 for PR HEAD 689986c in total