k3s/cluster/addons/fluentd-gcp/fluentd-gcp-ds.yaml

apiVersion: extensions/v1beta1
kind: DaemonSet
metadata:
  name: fluentd-gcp-v2.0.14
  namespace: kube-system
  labels:
    k8s-app: fluentd-gcp
    kubernetes.io/cluster-service: "true"
    addonmanager.kubernetes.io/mode: Reconcile
    version: v2.0.14
spec:
  updateStrategy:
    type: RollingUpdate
  template:
    metadata:
      labels:
        k8s-app: fluentd-gcp
        kubernetes.io/cluster-service: "true"
        version: v2.0.14
      # This annotation ensures that fluentd does not get evicted if the node
      # supports critical pod annotation based priority scheme.
      # Note that this does not guarantee admission on the nodes (#40573).
      annotations:
        scheduler.alpha.kubernetes.io/critical-pod: ''
    spec:
      serviceAccountName: fluentd-gcp
      dnsPolicy: Default
      containers:
      - name: fluentd-gcp
        image: k8s.gcr.io/fluentd-gcp:2.0.14
        env:
        - name: FLUENTD_ARGS
          value: --no-supervisor -q
        resources:
          limits:
            memory: 300Mi
          requests:
            cpu: 100m
            memory: 200Mi
        volumeMounts:
        - name: varlog
          mountPath: /var/log
        - name: varlibdockercontainers
          mountPath: /var/lib/docker/containers
          readOnly: true
        - name: libsystemddir
          mountPath: /host/lib
          readOnly: true
        - name: config-volume
          mountPath: /etc/fluent/config.d
        # Liveness probe is aimed to help in situarions where fluentd
        # silently hangs for no apparent reasons until manual restart.
        # The idea of this probe is that if fluentd is not queueing or
        # flushing chunks for 5 minutes, something is not right. If
        # you want to change the fluentd configuration, reducing amount of
        # logs fluentd collects, consider changing the threshold or turning
        # liveness probe off completely.
        livenessProbe:
          initialDelaySeconds: 600
          periodSeconds: 60
          exec:
            command:
            - '/bin/sh'
            - '-c'
            - >
              LIVENESS_THRESHOLD_SECONDS=${LIVENESS_THRESHOLD_SECONDS:-300};
              STUCK_THRESHOLD_SECONDS=${LIVENESS_THRESHOLD_SECONDS:-900};
              if [ ! -e /var/log/fluentd-buffers ];
              then
                exit 1;
              fi;
              LAST_MODIFIED_DATE=`stat /var/log/fluentd-buffers | grep Modify | sed -r "s/Modify: (.*)/\1/"`;
              LAST_MODIFIED_TIMESTAMP=`date -d "$LAST_MODIFIED_DATE" +%s`;
              if [ `date +%s` -gt `expr $LAST_MODIFIED_TIMESTAMP + $STUCK_THRESHOLD_SECONDS` ];
              then
                rm -rf /var/log/fluentd-buffers;
                exit 1;
              fi;
              if [ `date +%s` -gt `expr $LAST_MODIFIED_TIMESTAMP + $LIVENESS_THRESHOLD_SECONDS` ];
              then
                exit 1;
              fi;
      # BEGIN_PROMETHEUS_TO_SD
      - name: prometheus-to-sd-exporter
        image: k8s.gcr.io/prometheus-to-sd:v0.2.2
        command:
          - /monitor
          - --stackdriver-prefix={{ prometheus_to_sd_prefix }}/addons
          - --api-override={{ prometheus_to_sd_endpoint }}
          - --source=fluentd:http://localhost:31337?whitelisted=stackdriver_successful_requests_count,stackdriver_failed_requests_count,stackdriver_ingested_entries_count,stackdriver_dropped_entries_count
          - --pod-id=$(POD_NAME)
          - --namespace-id=$(POD_NAMESPACE)
        env:
          - name: POD_NAME
            valueFrom:
              fieldRef:
                fieldPath: metadata.name
          - name: POD_NAMESPACE
            valueFrom:
              fieldRef:
                fieldPath: metadata.namespace
      # END_PROMETHEUS_TO_SD
      nodeSelector:
        beta.kubernetes.io/fluentd-ds-ready: "true"
      tolerations:
      - key: "node.alpha.kubernetes.io/ismaster"
        effect: "NoSchedule"
      - operator: "Exists"
        effect: "NoExecute"
      - operator: "Exists"
        effect: "NoSchedule"
      terminationGracePeriodSeconds: 30
      volumes:
      - name: varlog
        hostPath:
          path: /var/log
      - name: varlibdockercontainers
        hostPath:
          path: /var/lib/docker/containers
      - name: libsystemddir
        hostPath:
          path: /usr/lib64
      - name: config-volume
        configMap:
          name: fluentd-gcp-config-v1.2.3
Migrated fluentd to daemon set 2016-12-13 15:14:10 +00:00			`apiVersion: extensions/v1beta1`
			`kind: DaemonSet`
			`metadata:`
Bump fluentd-gcp version 2018-01-12 18:16:13 +00:00			`name: fluentd-gcp-v2.0.14`
Migrated fluentd to daemon set 2016-12-13 15:14:10 +00:00			`namespace: kube-system`
			`labels:`
			`k8s-app: fluentd-gcp`
			`kubernetes.io/cluster-service: "true"`
Adds the new addon-manager labels on cluster addon templates 2017-02-25 00:53:12 +00:00			`addonmanager.kubernetes.io/mode: Reconcile`
Bump fluentd-gcp version 2018-01-12 18:16:13 +00:00			`version: v2.0.14`
Migrated fluentd to daemon set 2016-12-13 15:14:10 +00:00			`spec:`
Enable RollingUpdates for the fluentd daemonset addon 2017-03-13 17:51:45 +00:00			`updateStrategy:`
			`type: RollingUpdate`
Migrated fluentd to daemon set 2016-12-13 15:14:10 +00:00			`template:`
			`metadata:`
			`labels:`
			`k8s-app: fluentd-gcp`
			`kubernetes.io/cluster-service: "true"`
Bump fluentd-gcp version 2018-01-12 18:16:13 +00:00			`version: v2.0.14`
Fix copying systemd libraries upon fluentd-gcp startup 2017-02-14 14:41:15 +00:00			`# This annotation ensures that fluentd does not get evicted if the node`
			`# supports critical pod annotation based priority scheme.`
			`# Note that this does not guarantee admission on the nodes (#40573).`
make fluentd a critical pod Signed-off-by: Vishnu kannan <vishnuk@google.com> 2017-02-06 19:47:48 +00:00			`annotations:`
			`scheduler.alpha.kubernetes.io/critical-pod: ''`
Migrated fluentd to daemon set 2016-12-13 15:14:10 +00:00			`spec:`
Update fluentd-gcp DaemonSet - Use a dedicated service account to run the fluentd-gcp DS - Update prometheus-to-sd from v0.1.3 to v0.2.1 - Use the certificates in the prometheus-to-sd image rather than mounting the host certs 2017-10-18 21:58:32 +00:00			`serviceAccountName: fluentd-gcp`
Make fluentd use default dns instead of cluster dns to make it work on master 2017-02-15 19:53:32 +00:00			`dnsPolicy: Default`
Migrated fluentd to daemon set 2016-12-13 15:14:10 +00:00			`containers:`
			`- name: fluentd-gcp`
Switch to k8s.gcr.io vanity domain This is the 2nd attempt. The previous was reverted while we figured out the regional mirrors (oops). New plan: k8s.gcr.io is a read-only facade that auto-detects your source region (us, eu, or asia for now) and pulls from the closest. To publish an image, push k8s-staging.gcr.io and it will be synced to the regionals automatically (similar to today). For now the staging is an alias to gcr.io/google_containers (the legacy URL). When we move off of google-owned projects (working on it), then we just do a one-time sync, and change the google-internal config, and nobody outside should notice. We can, in parallel, change the auto-sync into a manual sync - send a PR to "promote" something from staging, and a bot activates it. Nice and visible, easy to keep track of. 2018-01-17 19:36:53 +00:00			`image: k8s.gcr.io/fluentd-gcp:2.0.14`
Turn fluentd supervisor off for fluentd-gcp 2017-02-21 12:50:47 +00:00			`env:`
			`- name: FLUENTD_ARGS`
Make fluentd log to stdio instead of a dedicated file 2017-06-21 18:14:43 +00:00			`value: --no-supervisor -q`
Migrated fluentd to daemon set 2016-12-13 15:14:10 +00:00			`resources:`
			`limits:`
Increate memory limit for fluentd-gcp 2017-03-21 09:44:01 +00:00			`memory: 300Mi`
Migrated fluentd to daemon set 2016-12-13 15:14:10 +00:00			`requests:`
Revert "Decrese fluentd cpu request" 2017-06-26 14:18:24 +00:00			`cpu: 100m`
Migrated fluentd to daemon set 2016-12-13 15:14:10 +00:00			`memory: 200Mi`
			`volumeMounts:`
			`- name: varlog`
			`mountPath: /var/log`
			`- name: varlibdockercontainers`
			`mountPath: /var/lib/docker/containers`
			`readOnly: true`
Fix copying systemd libraries upon fluentd-gcp startup 2017-02-14 14:41:15 +00:00			`- name: libsystemddir`
			`mountPath: /host/lib`
			`readOnly: true`
Move fluentd DS config to configmap 2017-02-26 19:51:07 +00:00			`- name: config-volume`
			`mountPath: /etc/fluent/config.d`
Add liveness probe for fluentd-gcp 2016-12-09 14:10:42 +00:00			`# Liveness probe is aimed to help in situarions where fluentd`
			`# silently hangs for no apparent reasons until manual restart.`
			`# The idea of this probe is that if fluentd is not queueing or`
			`# flushing chunks for 5 minutes, something is not right. If`
			`# you want to change the fluentd configuration, reducing amount of`
			`# logs fluentd collects, consider changing the threshold or turning`
			`# liveness probe off completely.`
			`livenessProbe:`
			`initialDelaySeconds: 600`
			`periodSeconds: 60`
			`exec:`
			`command:`
			`- '/bin/sh'`
			`- '-c'`
			`- >`
Remove fluentd buffers if fluentd is stuck 2017-01-13 12:46:38 +00:00			`LIVENESS_THRESHOLD_SECONDS=${LIVENESS_THRESHOLD_SECONDS:-300};`
			`STUCK_THRESHOLD_SECONDS=${LIVENESS_THRESHOLD_SECONDS:-900};`
			`if [ ! -e /var/log/fluentd-buffers ];`
			`then`
			`exit 1;`
			`fi;`
Add liveness probe for fluentd-gcp 2016-12-09 14:10:42 +00:00			LAST_MODIFIED_DATE=`stat /var/log/fluentd-buffers \| grep Modify \| sed -r "s/Modify: (.*)/\1/"`;
			LAST_MODIFIED_TIMESTAMP=`date -d "$LAST_MODIFIED_DATE" +%s`;
Remove fluentd buffers if fluentd is stuck 2017-01-13 12:46:38 +00:00			if [ `date +%s` -gt `expr $LAST_MODIFIED_TIMESTAMP + $STUCK_THRESHOLD_SECONDS` ];
			`then`
			`rm -rf /var/log/fluentd-buffers;`
			`exit 1;`
			`fi;`
			if [ `date +%s` -gt `expr $LAST_MODIFIED_TIMESTAMP + $LIVENESS_THRESHOLD_SECONDS` ];
			`then`
			`exit 1;`
			`fi;`
Add flags for prometheus-to-sd components. Configure prometheus-to-sd-endpoint and prometheus-to-sd-prefix base on the environment. 2017-08-09 15:45:08 +00:00			`# BEGIN_PROMETHEUS_TO_SD`
Add metrics exporter to the fluentd-gcp deployment 2017-04-28 11:27:19 +00:00			`- name: prometheus-to-sd-exporter`
Switch to k8s.gcr.io vanity domain This is the 2nd attempt. The previous was reverted while we figured out the regional mirrors (oops). New plan: k8s.gcr.io is a read-only facade that auto-detects your source region (us, eu, or asia for now) and pulls from the closest. To publish an image, push k8s-staging.gcr.io and it will be synced to the regionals automatically (similar to today). For now the staging is an alias to gcr.io/google_containers (the legacy URL). When we move off of google-owned projects (working on it), then we just do a one-time sync, and change the google-internal config, and nobody outside should notice. We can, in parallel, change the auto-sync into a manual sync - send a PR to "promote" something from staging, and a bot activates it. Nice and visible, easy to keep track of. 2018-01-17 19:36:53 +00:00			`image: k8s.gcr.io/prometheus-to-sd:v0.2.2`
Add metrics exporter to the fluentd-gcp deployment 2017-04-28 11:27:19 +00:00			`command:`
			`- /monitor`
Add flags for prometheus-to-sd components. Configure prometheus-to-sd-endpoint and prometheus-to-sd-prefix base on the environment. 2017-08-09 15:45:08 +00:00			`- --stackdriver-prefix={{ prometheus_to_sd_prefix }}/addons`
			`- --api-override={{ prometheus_to_sd_endpoint }}`
Bump version of prometheus-to-sd to 0.2.2. Bump version of prometheus-to-sd to improve logging, add pod_name and pod_namespace flags and remove deprecated flags. 2017-10-26 13:25:26 +00:00			`- --source=fluentd:http://localhost:31337?whitelisted=stackdriver_successful_requests_count,stackdriver_failed_requests_count,stackdriver_ingested_entries_count,stackdriver_dropped_entries_count`
			`- --pod-id=$(POD_NAME)`
			`- --namespace-id=$(POD_NAMESPACE)`
			`env:`
			`- name: POD_NAME`
			`valueFrom:`
			`fieldRef:`
			`fieldPath: metadata.name`
			`- name: POD_NAMESPACE`
			`valueFrom:`
			`fieldRef:`
			`fieldPath: metadata.namespace`
Add flags for prometheus-to-sd components. Configure prometheus-to-sd-endpoint and prometheus-to-sd-prefix base on the environment. 2017-08-09 15:45:08 +00:00			`# END_PROMETHEUS_TO_SD`
Added upgrade story from manifest pod to ds 2016-12-13 15:18:00 +00:00			`nodeSelector:`
Renamed fluentd-ds-ready annotation 2017-03-21 19:48:13 +00:00			`beta.kubernetes.io/fluentd-ds-ready: "true"`
Update addons yaml files. 2017-02-16 20:01:52 +00:00			`tolerations:`
			`- key: "node.alpha.kubernetes.io/ismaster"`
			`effect: "NoSchedule"`
Add general NoExecute Toleration to fluentd in gcp configuration 2017-05-12 09:23:23 +00:00			`- operator: "Exists"`
			`effect: "NoExecute"`
Add generic NoSchedule toleration to fluentd in gcp config as a quick-fix for #44445 2017-06-28 08:35:58 +00:00			`- operator: "Exists"`
			`effect: "NoSchedule"`
Migrated fluentd to daemon set 2016-12-13 15:14:10 +00:00			`terminationGracePeriodSeconds: 30`
			`volumes:`
			`- name: varlog`
			`hostPath:`
			`path: /var/log`
			`- name: varlibdockercontainers`
			`hostPath:`
			`path: /var/lib/docker/containers`
Fix copying systemd libraries upon fluentd-gcp startup 2017-02-14 14:41:15 +00:00			`- name: libsystemddir`
			`hostPath:`
			`path: /usr/lib64`
Move fluentd DS config to configmap 2017-02-26 19:51:07 +00:00			`- name: config-volume`
			`configMap:`
Fix CRI fluentd config. Signed-off-by: Lantao Liu <lantaol@google.com> 2017-11-10 19:49:05 +00:00			`name: fluentd-gcp-config-v1.2.3`