sentry-kubernetes

command module

v0.0.0-...-1c7bcb8 Latest Latest Go to latest Published: Nov 28, 2023 License: MIT Imports: 29 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/tonyo/sentry-kubernetes

Links

Open Source Insights

README ¶

sentry-kubernetes

Archived on November 28, 2023. Development will continue here: https://github.com/getsentry/sentry-kubernetes

Yet another Sentry Kubernetes agent (should it be called "YASKA"?)

Configuration

SENTRY_DSN - Sentry DSN that will be used by the agent.
SENTRY_ENVIRONMENT - Sentry environment that will be used for reported events.
SENTRY_K8S_WATCH_NAMESPACES - a comma-separated list of namespaces that will be watched. Only the default namespace is watched by default. If you want to watch all namespaces, set the varible to value __all__.
SENTRY_K8S_WATCH_HISTORICAL - if set to 1, all existing (old) events will also be reported. Default is 0 (old events will not be reported).
SENTRY_K8S_CLUSTER_CONFIG_TYPE - the type of the cluster initialization method. Allowed options: auto, in-cluster, out-cluster. Default is auto.
SENTRY_K8S_KUBECONFIG_PATH - filesystem path to the kubeconfig configuration that will be used to connect to the cluster. Not used if SENTRY_K8S_CLUSTER_CONFIG_TYPE is set to in-cluster.
SENTRY_K8S_LOG_LEVEL - logging level. Can be trace, debug, info, warn, error, disabled. Default is info.

Adding custom tags

To add a custom tag to all events produced by the agent, set an environment variable, whose name is prefixed with SENTRY_K8S_GLOBAL_TAG_.

Example:

SENTRY_K8S_GLOBAL_TAG_cluster_name=main-cluster will add cluster_name=main_cluster tag to every outgoing Sentry event.

Integrations

SENTRY_K8S_INTEGRATION_GKE_ENABLED - if set to 1, enable the GKE integration. Default is 0 (disabled).

The GKE integration will attempt to fetch GKE/GCE metadata from the GCP metadata server, such as project name, cluster name, and cluster location.

Client-side Filters

If you don't want to report certain kinds of events to Sentry, you can configure client-side filters.

Event Reason: filtering by Event.Reason field.

SENTRY_K8S_FILTER_OUT_EVENT_REASONS is a comma separated set of event Reason values. If the event's Reason is in that list, the event will be dropped. By default, the following reasons are filtered out (muted): DockerStart, KubeletStart, NodeSysctlChange, ContainerdStart.
Event Source: filtering by Event.Source.Component field.

SENTRY_K8S_FILTER_OUT_EVENT_SOURCES is a comma separated set of Source Component values (examples include kubelet, default-cheduler, job-controller, kernel-monitor). If the event's Source Component is in that list, the event will be dropped. By default, no events are filtered out by Source Component.

Caveats

When the same event (for example, a failed readiness check) happens multiple times, Kubernetes might not report each of them individually, and instead combine them, and send with some backoff. The event message in that case will be prefixed with "(combined from similar events)" string, that we currently strip. AFAIK, there's no way to disable this batching behaviour.

Potential Improvements

For pod-related events: fetch last log lines and displaying them as breadcrumbs or stacktrace.
Automatic Sentry cron monitoring instrumentaion of Kubernetes CronJobs.

Local Development (out of cluster configuration)

Install necessary dependencies to run Kubernetes locally
1. Install docker and start the docker daemon
  
  https://docs.docker.com/engine/install/
  
  docker is a service that manages containers and is used by Kubernetes to create nodes (since kind actually create Kubernetes “nodes” as docker containers rather than VMs)
2. Install kind and add it to PATH
  
  https://kind.sigs.k8s.io/docs/user/quick-start/
  
  kind is a tool for running local Kubernetes clusters and we use it here for testing. The container runtime used by it is containerd, which is the same runtime used now by Docker.
3. Install kubectl, which is the command line tool we use to interact with Kubernetes clusters ran locally by kind
  
  https://kubernetes.io/docs/tasks/tools/
Run Kubernetes cluster locally for development purposes
1. Create a Kubernetes cluster with kind using the command (the cluster name is “kind” by default)
kind create cluster

b. Output information about the created cluster named “kind” or some cluster name you have chosen using the following command (replacing <cluster name> with kind if default used)

kubectl cluster-info --context kind-<cluster name>

You should see an output similar to the following:
```
Kubernetes control plane is running at https://127.0.0.1:61502
CoreDNS is running at https://127.0.0.1:61502/api/v1/namespaces/kube-system/services/kube-dns:dns/proxy
```
Run the sentry-kubernetes Go module (which must be performed after the Kubernetes cluster is already running because the module requires the kubeconfig file)
1. Clone the sentry-kubernetes repository
git clone https://github.com/tonyo/sentry-kubernetes.git

b. Pass a valid Sentry DSN to the an environment variable named SENTRY_DSN (https://docs.sentry.io/product/sentry-basics/concepts/dsn-explainer/)

c. At the root of the repository directory, build the Go module with the command

make build

d. Run the module outside of the k8s cluster by executing the command

go run .

which now starts up the process that automatically detects the cluster configuration in order to detect events

Add error-producing pods to test event capturing

Create resources (e.g. pods or deployments) using existing manifests meant to produce errors to be captured by sentry-kubernetes. For example, we can apply the manifest for a pod that exhibits crash loop behavior with the command

kubectl apply -f ./k8s/errors/pod-crashloop.yaml

b. Check that the pod is created using the command

kubectl get pods

which should produce an output similar to the following:

NAME            READY   STATUS             RESTARTS       AGE
pod-crashloop   0/1     CrashLoopBackOff   32 (33s ago)   3h10m

Notice that the Status is CrashLoopBackOff, which is the intended state for our purpose

c. Check that the sentry-kubernetes process capture this crash loop error by checking for the an output similar to the following:

[Sentry] 2023/11/08 12:07:53 Using release from Git: abc123
12:07PM INF Auto-detecting cluster configuration...
12:07PM WRN Could not initialize in-cluster config
12:07PM INF Detected out-of-cluster configuration
12:07PM INF Running integrations...
12:07PM INF Watching events starting from: Wed, 08 Nov 2023 12:07:53 -0800 namespace=default watcher=events
12:07PM INF CronJob monitoring is disabled namespace=default watcher=events
[Sentry] 2023/11/08 12:09:27 Sending error event [w0dc9c22094d7rg9b27afabc868e32] to o4506191942320128.ingest.sentry.io project: 4506191948087296
[Sentry] 2023/11/08 12:10:57 Sending error event [4808b623f0eb446eac0eb6c5f0a43681] to o4506191942320128.ingest.sentry.io project: 4506191948087296

d. Check the Issues tab of the corresponding Sentry project to ensure the events captured are shown similar to below:

ExampleEvent

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL