Skip to content

Commit

Permalink
Extract design document from web.archive.org
Browse files Browse the repository at this point in the history
Note: this document is under an unknown license, but from the intent
I can only assume it's meant to be shared freely.
  • Loading branch information
deepy committed Nov 4, 2023
1 parent d9a7f3a commit 469c00d
Show file tree
Hide file tree
Showing 2 changed files with 305 additions and 1 deletion.
304 changes: 304 additions & 0 deletions DESIGN.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,304 @@
# Prometheus Monitoring Mixins

## Using jsonnet to package together dashboards, alerts and exporters.

Status: Draft
Tom Wilkie, Grafana Labs
Frederic Branczyk, Red Hat

In this design doc we present a technique for packaging and deploying "Monitoring Mixins" -
extensible and customisable combinations of dashboards, alert definitions and exporters.

## Problem

[Prometheus](#Notes) offers powerful open source monitoring and alerting - but that comes with higher
degrees of freedom, making pre-configured monitoring configurations hard to build.
Simultaneously, it has become accepted wisdom that the developers of a given software
package are best placed to operate said software, or at least construct the basic monitoring
configuration.

This work aims to build on Julius Volz' document ["Prometheus Alerting and Dashboard Example Bundles"](#Notes)
and subsequent PR ["Add initial node-exporter example bundle"](#Notes). In particular, we
support the hypothesis that for Prometheus to gain increased traction we will need to appeal to
non-monitoring-experts, and allow for a relatively seamless pre-configured monitoring
experience. Where we disagree is around standardization: we do not want to prescribe a given
label schema, example deployment or topology. That being said, a lot of the challenges
surfaced in that doc are shared here.

## Aims

This solution aims to define a minimal standard for how to package together Prometheus alerts,
Prometheus recording rules and [Grafana](#Notes) dashboards in a way that is:

**Easy to install and use, platform agnostic.** The users of these packages are unlikely to be
monitoring experts. These packages must be easily installable with a few commands. And they
must be general enough to work in all the environments where Prometheus can work: we're not
just trying to build for Kubernetes here. That being said, the experience will be first class on
Kubernetes.

**Hosted alongside the programs which expose Prometheus metrics.** More often than not,
the best people to build the alerting rules and dashboards for a given application are the authors
of that application. And if that is not the case, then at least users of a given application will look
to its source for monitoring best practices. We aim to provide a packaging method which allows
the repo hosting the application source to also host the applications monitoring package; for
them to be versioned along side the application. For example, we envisage the monitoring
mixin for Etcd to live in the etcd repo and the monitoring package for Hashicorp's Consul to live
in the [consul_exporter](#Notes) repo.

**We want the ability to iterate and collaborate on packages.** A challenge with the existing
published dashboards and alerts is that they are static: the only way to use them is to copy them
into your codebase, edit them to make them fit with your deployment. This makes it hard for
users to contribute changes back to the original author; it makes it impossible to download new
improved versions and stay up to date with improvements. We want these packages to be
constantly evolving; we want to encourage drive-by commits.

**Packages should be reusable, configurable and extensible.** Users should be able to
configure the packages to fit their deployments and labels schema without modifying the
packages. Users should be able to extend the packages with extra dashboard panels and extra
alerts, without having to copy, paste and modify them. The packages must be configurable so
that they support the many different label schemes used today by different organisations.

## Proposal

**Monitoring Mixins.** A monitoring mixin is a package of configuration containing Prometheus
alerts, Prometheus recording rules and Grafana dashboards. Mixins will be maintained in
version controlled repos (eg git) as a set of files. Versioning of mixins will be provided by the
version control system; mixins themselves should not contain multiple versions.

Mixins are intended just for the combination of Prometheus and Grafana, and not other
monitoring or visualisation systems. Mixins are intended to be opinionated about the choice of
monitoring technology.

Mixins should not however be opinionated about how this configuration should be deployed;
they should not contain manifests for deploying Prometheus and Grafana on Kubernetes, for
instance. Multiple, separate projects can and should exist to help deploy mixins; we will provide
example of how to do this on Kubernetes, and a tool for integrating with traditional config
management systems.

**Jsonnet.** We propose the use of [jsonnet](#Notes), a configuration language from Google, as the basis of
our monitoring mixins. Jsonnet has some popularity in this space, as it is used in the [ksonnet](#Notes)
project for achieving similar goals for Kubernetes.

Jsonnet offers the ability to parameterise configuration, allowing for basic customisation.
Furthermore, in Jsonnet one can reference another part of the data structure, reducing
repetition. For example, with jsonnet one can specify a default job name, and then have all the
alerts use that:

```
{
_config+:: {
kubeStateMetricsSelector: ‘job=”default/kube-state-metrics"',
allowedNotReadyPods: 0,
},
groups+: [
{
name: "kubernetes",
rules: [
{
alert: "KubePodNotReady",
expr: |||
sum by (namespace, pod) (
kube_pod_status_phase{%(kubeStateMetricsSelector)s, phase!~"Running|Succeeded"}
) > $(allowedNotReadyPods)s
||| % $._config,
"for": "1h",
labels: {
severity: "critical",
},
annotations: {
message: "{{ $labels.namespace }}/{{ $labels.pod }} is not ready.",
},
},
],
},
],
}
```

**Configuration.* We'd like to suggest some standardisation of how configuration is supplied to
mixins. A top level `_config` dictionary should be provided, containing various parameters for
substitution into alerts and dashboards. In the above example, this is used to specify the
selector for the kube-state-metrics pod, and the threshold for the alert.

**Extension.** One of jsonnet's basic operations is to "merge” data structures - this also allows you
to extend existing configurations. For example, given an existing dashboard:

```
local g = import "klumps/lib/grafana.libsonnet";
{
dashboards+:: {
"foo.json": g.dashboard("Foo")
.addRow(
g.row("Foo")
.addPanel(
g.panel("Bar") +
g.queryPanel('irate(foor_bar_total[1m])', 'Foo Bar')
)
)
},
}
```

It is relatively easy to import it and add extra rows:

```
local g = import "foo.libsonnet";
{
dashboards+:: {
"foo.json"+:
super.addRow(
g.row("A new row")
.addPanel(
g.panel("A new panel") +
g.queryPanel('irate(new_total[1m])', 'New')
)
)
},
}
```

These abilities offered by jsonnet are key to being able to separate out "upstream” alerts and
dashboards from customizations, and keep upstream in sync with the source of the mixin.

**Higher Order Abstractions.** jsonnet is a functional programming language, and as such
allows you to build higher order abstractions over your configuration. For example, you can
build functions to generate recording rules for a set of percentiles and labels aggregations,
given a histogram:

```
local histogramRules(metric, labels) =
local vars = {
metric: metric,
labels_underscore: std.join("_", labels),
labels_comma: std.join(", ", labels),
};
[
{
record: "%(labels_underscore)s:%(metric)s:99quantile" % vars,
expr: "histogram_quantile(0.99, sum(rate(%(metric)s_bucket[5m])) by (le,
%(labels_comma)s))" % vars,
},
{
record: "%(labels_underscore)s:%(metric)s:50quantile" % vars,
expr: "histogram_quantile(0.50, sum(rate(%(metric)s_bucket[5m])) by (le,
%(labels_comma)s))" % vars,
},
{
record: "%(labels_underscore)s:%(metric)s:avg" % vars,
expr: "sum(rate(%(metric)s_sum[5m])) by (%(labels_comma)s) /
sum(rate(%(metric)s_count[5m])) by (%(labels_comma)s)" % vars,
},
];
{
groups+: [{
name: "frontend_rules",
rules:
histogramRules("frontend_request_duration_seconds", ["job"]) +
histogramRules("frontend_request_duration_seconds", ["job", "route"]),
}],
}
```

Other potential examples include functions to generate alerts at different thresholds, omitting
multiple alerts, warning and critical.

**[Grafonnet](#Notes)** An emerging pattern in the jsonnet ecosystem is the existence of libraries of helper
functions to generate objects for a given system. For example, ksonnet is a library to generate
objects for the Kubernetes object model. Grafonnet is a library for generating Grafana
Dashboards using jsonnet. We envisage a series of libraries, such as Grafonnet, to help people
build mixins. As such, any system for installing mixins needs to deal with transitive
dependencies.

**Package Management.** The current proof of concepts for mixins (see below) use the new
package manager [jsonnet-bundler](#Notes) enabling the following workflow:

```
$ jb install kausal github.com/kausalco/public/consul-mixin
```

This downloads a copy of the mixin into `vendor/consul-mixin` and allows users to include
the mixin in their ksonnet config like so:

```
local prometheus = import "prometheus-ksonnet/prometheus-ksonnet.libsonnet";
local consul_mixin = import "consul-mixin/mixin.libsonnet";
prometheus + consul_mixin {
_config+:: {
namespace: "default",
},
}
```

This example also uses the prometheus-ksonnet package from [Kausal](#Notes), which understands the
structure of the mixins and manifests alerting rules, recording rules and dashboards as config
maps in Kubernetes, mounted into the Kubernetes pods in the correct place.

However, we think this is a wider problem than just monitoring mixins, and are exploring designs
for a generic jsonnet package manager in a [separate design doc](#Notes).

**Proposed Schema.** To allow multiple tools to utilise mixins, we must agree on some common
naming. The proposal is that a mixin is a single dictionary containing three keys:

- `grafanaDashboards` A dictionary of dashboard file name (foo.json) to dashboard json.
- `prometheusAlerts` A list of Prometheus alert groups.
- `prometheusRules` A list of Prometheus rule groups.

Each of these values will be expressed as jsonnet objects - not strings. It is the responsibility of
the tool consuming the mixin to render these out as JSON or YAML. Jsonnet scripts to do this
for you will be provided.

```
{
grafanaDashboards+:: {
"dashboard-name.json”: {...},
},
prometheusAlerts+:: [...],
prometheusRules+:: [...],
}
```

**Consuming a mixin.**

- TODO examples of how we expect people to install, customise and extend mixins.
- TODO Ability to manifest out jsonnet configuration in a variety of formats - YAML, JSON, INI etc
- TODO show how it works with ksonnet but also with something like puppet..

Examples & Proof of Concepts
We will probably put the specification and list of known mixins in a repo somewhere, as a
readme. For now, these are the known mixins and related projects:

| Application | Mixin | Author |
|------------------|--------------------|--------------------------------|
| CoreOS Etcd | etcd-mixin | Grapeshot / Tom Wilkie |
| Cassandra | TBD | Grafana Labs |
| Hashicorp Consul | consul-mixin | Kausal |
| Hashicorp Vault | vault_exporter | Grapeshot / Tom Wilkie |
| Kubernetes | kubernetes-mixin | Tom Wilkie & Frederic Branczyk |
| Kubernetes | kubernetes-grafana | Frederic Branczyk |
| Kubernetes | kube-prometheus | Frederic Branczyk |
| Prometheus | prometheus-ksonnet | Kausal |

**Open Questions**

- Some systems require exporters; can / should these be packaged as part of the mixin?
Hard to do generally, easy to do for kubernetes with ksonnet.
- On the exporter topic, some systems need stats_exporter mappings to be consistent with alerts and dashboards. Even if
we can include statds_exporter in the mixin, can we include the mappings?
- A lot of questions from Julius' design are still open: how to deal with different aggregation windows, what labels to
use on alerts etc.

## Notes

This was recreated from
a [web.archive.org](https://web.archive.org/web/20211021151124/https://docs.google.com/document/d/1A9xvzwqnFVSOZ5fD3blKODXfsat5fg6ZhnKu9LK3lB4/edit)
capture of the original document, the license of this file is unknown.

The links in the archive do not work and have not been recreated.

The license of this file is unknown, but judging by the intent it was meant to be shared freely.
2 changes: 1 addition & 1 deletion README.md
Original file line number Diff line number Diff line change
Expand Up @@ -248,7 +248,7 @@ While the community has not yet fully agreed on alert severities and their to be

* For more motivation, see
"[The RED Method: How to instrument your services](https://kccncna17.sched.com/event/CU8K/the-red-method-how-to-instrument-your-services-b-tom-wilkie-kausal?iframe=no&w=100%&sidebar=yes&bg=no)" talk from CloudNativeCon Austin.
* For more information about monitoring mixins, see this [design doc](https://docs.google.com/document/d/1A9xvzwqnFVSOZ5fD3blKODXfsat5fg6ZhnKu9LK3lB4/edit#).
* For more information about monitoring mixins, see this [design doc](DESIGN.md).

## Note

Expand Down

0 comments on commit 469c00d

Please sign in to comment.