Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Prevent Kepler deployment on fargate #915

Open
petewall opened this issue Nov 15, 2024 · 1 comment · Fixed by #925
Open

Prevent Kepler deployment on fargate #915

petewall opened this issue Nov 15, 2024 · 1 comment · Fixed by #925

Comments

@petewall
Copy link
Collaborator

No description provided.

@skpaz
Copy link

skpaz commented Nov 15, 2024
edited
Loading

GKE Autopilot clusters do not like Kepler!

Raw error text:

Error: release grafana-k8s-monitoring failed, and has been uninstalled due to atomic being set: 1 error occurred:
	* admission webhook "warden-validating.common-webhooks.networking.gke.io" denied the request: GKE Warden rejected the request because it violates one or more constraints.
Violations details: {"[denied by autogke-disallow-hostnamespaces]":["enabling hostNetwork is not allowed in Autopilot."],"[denied by autogke-disallow-privilege]":["container kepler-exporter is privileged; not allowed in Autopilot"],"[denied by autogke-no-host-port]":["container kepler-exporter specifies host ports [9102], which are disallowed in Autopilot."],"[denied by autogke-no-write-mode-hostpath]":["hostPath volume lib-modules in container kepler-exporter is accessed in write mode; disallowed in Autopilot.","hostPath volume tracing in container kepler-exporter is accessed in write mode; disallowed in Autopilot.","hostPath volume proc in container kepler-exporter is accessed in write mode; disallowed in Autopilot."]}
Requested by user: '<REDACTED>', groups: 'system:authenticated'.

Extracted JSON/error:

{
	"[denied by autogke-disallow-hostnamespaces]":[
		"enabling hostNetwork is not allowed in Autopilot."
	],
	"[denied by autogke-disallow-privilege]":[
		"container kepler-exporter is privileged; not allowed in Autopilot"
	],
	"[denied by autogke-no-host-port]":[
		"container kepler-exporter specifies host ports [9102], which are disallowed in Autopilot."
	],
	"[denied by autogke-no-write-mode-hostpath]":[
		"hostPath volume lib-modules in container kepler-exporter is accessed in write mode; disallowed in Autopilot.",
		"hostPath volume tracing in container kepler-exporter is accessed in write mode; disallowed in Autopilot.",
		"hostPath volume proc in container kepler-exporter is accessed in write mode; disallowed in Autopilot."
	]
}

I unselected the Energy Metrics option and Alloy installed w/out issue. YAML equivalent:

metrics:
  kepler:
    enabled: false

kepler:
  enabled: false

Possible solutions:

  • Automatically disable Energy Metrics (Kepler) when the GKE Autopilot option is selected in the K8s wizard in Grafana.
  • Prevent the installation, period, if used on GKE ... somehow; I have no idea if that's possible.
  • Modify the Kepler install to meet GKE Autopilot requirements, if possible.

@petewall petewall linked a pull request Nov 19, 2024 that will close this issue
Update the Kepler deployment to not deploy on Fargate nodes #925
Merged
@petewall petewall reopened this Nov 19, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Update the Kepler deployment to not deploy on Fargate nodes grafana/k8s-monitoring-helm
2 participants
@petewall @skpaz