package diagnostics import ( "context" _ "embed" "fmt" "time" metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" "sigs.k8s.io/yaml" "github.com/aws/eks-anywhere/pkg/api/v1alpha1" "github.com/aws/eks-anywhere/pkg/cluster" "github.com/aws/eks-anywhere/pkg/constants" "github.com/aws/eks-anywhere/pkg/executables" "github.com/aws/eks-anywhere/pkg/filewriter" "github.com/aws/eks-anywhere/pkg/logger" "github.com/aws/eks-anywhere/pkg/providers" "github.com/aws/eks-anywhere/pkg/retrier" "github.com/aws/eks-anywhere/pkg/types" ) //go:embed config/diagnostic-collector-rbac.yaml var diagnosticCollectorRbac []byte const ( troubleshootApiVersion = "troubleshoot.sh/v1beta2" generatedBundleNameFormat = "%s-%s-bundle.yaml" generatedAnalysisNameFormat = "%s-%s-analysis.yaml" maxRetries = 5 backOffPeriod = 5 * time.Second defaultClusterName = "eksa-cluster" ) type EksaDiagnosticBundle struct { bundle *supportBundle hostBundle *supportBundle bundlePath string client BundleClient collectorFactory CollectorFactory clusterSpec *cluster.Spec analyzerFactory AnalyzerFactory kubeconfig string kubectl *executables.Kubectl retrier *retrier.Retrier writer filewriter.FileWriter analysis []*executables.SupportBundleAnalysis } func newDiagnosticBundleManagementCluster(af AnalyzerFactory, cf CollectorFactory, spec *cluster.Spec, client BundleClient, kubectl *executables.Kubectl, kubeconfig string, writer filewriter.FileWriter, ) (*EksaDiagnosticBundle, error) { b := &EksaDiagnosticBundle{ bundle: &supportBundle{ TypeMeta: metav1.TypeMeta{ Kind: "SupportBundle", APIVersion: troubleshootApiVersion, }, ObjectMeta: metav1.ObjectMeta{ Name: "bootstrap-cluster", }, Spec: supportBundleSpec{}, }, analyzerFactory: af, collectorFactory: cf, client: client, kubectl: kubectl, kubeconfig: kubeconfig, retrier: retrier.NewWithMaxRetries(maxRetries, backOffPeriod), writer: writer, } b.WithDefaultCollectors(). WithFileCollectors([]string{logger.GetOutputFilePath()}). WithDefaultAnalyzers(). WithManagementCluster(true). WithDatacenterConfig(spec.Cluster.Spec.DatacenterRef, spec). WithLogTextAnalyzers(). WithHostCollectors(spec.Cluster.Spec.DatacenterRef) err := b.WriteBundleConfig() if err != nil { return nil, fmt.Errorf("writing bundle config: %v", err) } return b, nil } func newDiagnosticBundleFromSpec(af AnalyzerFactory, cf CollectorFactory, spec *cluster.Spec, provider providers.Provider, client BundleClient, kubectl *executables.Kubectl, kubeconfig string, writer filewriter.FileWriter, ) (*EksaDiagnosticBundle, error) { b := &EksaDiagnosticBundle{ bundle: &supportBundle{ TypeMeta: metav1.TypeMeta{ Kind: "SupportBundle", APIVersion: troubleshootApiVersion, }, ObjectMeta: metav1.ObjectMeta{ Name: spec.Cluster.Name, }, Spec: supportBundleSpec{}, }, analyzerFactory: af, collectorFactory: cf, client: client, clusterSpec: spec, kubeconfig: kubeconfig, kubectl: kubectl, retrier: retrier.NewWithMaxRetries(maxRetries, backOffPeriod), writer: writer, } b = b. WithGitOpsConfig(spec.GitOpsConfig). WithOidcConfig(spec.OIDCConfig). WithExternalEtcd(spec.Cluster.Spec.ExternalEtcdConfiguration). WithDatacenterConfig(spec.Cluster.Spec.DatacenterRef, spec). WithHostCollectors(spec.Cluster.Spec.DatacenterRef). WithMachineConfigs(provider.MachineConfigs(spec)). WithManagementCluster(spec.Cluster.IsSelfManaged()). WithDefaultAnalyzers(). WithDefaultCollectors(). WithFileCollectors([]string{logger.GetOutputFilePath()}). WithPackagesCollectors(). WithLogTextAnalyzers() err := b.WriteBundleConfig() if err != nil { return nil, fmt.Errorf("writing bundle config: %v", err) } return b, nil } func newDiagnosticBundleDefault(af AnalyzerFactory, cf CollectorFactory) *EksaDiagnosticBundle { b := &EksaDiagnosticBundle{ bundle: &supportBundle{ TypeMeta: metav1.TypeMeta{ Kind: "SupportBundle", APIVersion: troubleshootApiVersion, }, ObjectMeta: metav1.ObjectMeta{ Name: "default", }, Spec: supportBundleSpec{}, }, analyzerFactory: af, collectorFactory: cf, } return b.WithDefaultAnalyzers(). WithDefaultCollectors(). WithManagementCluster(true) } func newDiagnosticBundleCustom(af AnalyzerFactory, cf CollectorFactory, client BundleClient, kubectl *executables.Kubectl, bundlePath string, kubeconfig string, writer filewriter.FileWriter) *EksaDiagnosticBundle { return &EksaDiagnosticBundle{ bundlePath: bundlePath, analyzerFactory: af, collectorFactory: cf, client: client, kubeconfig: kubeconfig, kubectl: kubectl, retrier: retrier.NewWithMaxRetries(maxRetries, backOffPeriod), writer: writer, } } func (e *EksaDiagnosticBundle) CollectAndAnalyze(ctx context.Context, sinceTimeValue *time.Time) error { e.createDiagnosticNamespaceAndRoles(ctx) logger.Info("⏳ Collecting support bundle from cluster, this can take a while", "cluster", e.clusterName(), "bundle", e.bundlePath, "since", sinceTimeValue, "kubeconfig", e.kubeconfig) archivePath, err := e.client.Collect(ctx, e.bundlePath, sinceTimeValue, e.kubeconfig) if err != nil { return fmt.Errorf("failed to Collect support bundle: %v", err) } logger.Info("Support bundle archive created", "path", archivePath) logger.Info("Analyzing support bundle", "bundle", e.bundlePath, "archive", archivePath) analysis, err := e.client.Analyze(ctx, e.bundlePath, archivePath) if err != nil { return fmt.Errorf("analyzing bundle: %v", err) } e.analysis = analysis analysisPath, err := e.WriteAnalysisToFile() if err != nil { return err } logger.Info("Analysis output generated", "path", analysisPath) e.deleteDiagnosticNamespaceAndRoles(ctx) return nil } func (e *EksaDiagnosticBundle) PrintBundleConfig() error { bundleYaml, err := yaml.Marshal(e.bundle) if err != nil { return fmt.Errorf("outputting yaml: %v", err) } fmt.Println(string(bundleYaml)) return nil } func (e *EksaDiagnosticBundle) WriteBundleConfig() error { bundleYaml, err := yaml.Marshal(e.bundle) if err != nil { return fmt.Errorf("outputing yaml: %v", err) } bundleYaml, err = e.combineWithHostBundle(bundleYaml) if err != nil { return err } timestamp := time.Now().Format(time.RFC3339) filename := fmt.Sprintf(generatedBundleNameFormat, e.clusterName(), timestamp) e.bundlePath, err = e.writer.Write(filename, bundleYaml) if err != nil { return err } logger.V(3).Info("bundle config written", "path", e.bundlePath) return nil } func (e *EksaDiagnosticBundle) PrintAnalysis() error { if e.analysis == nil { return nil } analysis, err := yaml.Marshal(e.analysis) if err != nil { return fmt.Errorf("outputing yaml: %v", err) } fmt.Println(string(analysis)) return nil } func (e *EksaDiagnosticBundle) WriteAnalysisToFile() (path string, err error) { if e.analysis == nil { return "", nil } yamlAnalysis, err := yaml.Marshal(e.analysis) if err != nil { return "", fmt.Errorf("writing analysis: %v", err) } timestamp := time.Now().Format(time.RFC3339) filename := fmt.Sprintf(generatedAnalysisNameFormat, e.clusterName(), timestamp) analysisPath, err := e.writer.Write(filename, yamlAnalysis) if err != nil { return "", err } e.bundlePath = analysisPath return analysisPath, nil } // WithHostCollectors configures host bundle with collectors that run on host machines. func (e *EksaDiagnosticBundle) WithHostCollectors(config v1alpha1.Ref) *EksaDiagnosticBundle { hostBundle := &supportBundle{ TypeMeta: metav1.TypeMeta{ Kind: "HostCollector", APIVersion: troubleshootApiVersion, }, ObjectMeta: metav1.ObjectMeta{ Name: "host-collector", }, Spec: supportBundleSpec{}, } e.hostBundle = hostBundle return e.WithDefaultHostCollectors(config) } // WithDefaultHostCollectors collects the default collectors that run on the host machine. func (e *EksaDiagnosticBundle) WithDefaultHostCollectors(config v1alpha1.Ref) *EksaDiagnosticBundle { e.hostBundle.Spec.Collectors = append(e.hostBundle.Spec.Collectors, e.collectorFactory.HostCollectors(config)...) return e } func (e *EksaDiagnosticBundle) WithDefaultCollectors() *EksaDiagnosticBundle { e.bundle.Spec.Collectors = append(e.bundle.Spec.Collectors, e.collectorFactory.DefaultCollectors()...) return e } func (e *EksaDiagnosticBundle) WithDefaultAnalyzers() *EksaDiagnosticBundle { e.bundle.Spec.Analyzers = append(e.bundle.Spec.Analyzers, e.analyzerFactory.DefaultAnalyzers()...) return e } func (e *EksaDiagnosticBundle) WithManagementCluster(isSelfManaged bool) *EksaDiagnosticBundle { if isSelfManaged { e.bundle.Spec.Analyzers = append(e.bundle.Spec.Analyzers, e.analyzerFactory.ManagementClusterAnalyzers()...) e.bundle.Spec.Collectors = append(e.bundle.Spec.Collectors, e.collectorFactory.ManagementClusterCollectors()...) } return e } // WithFileCollectors appends collectors that collect static data from the specified paths to the bundle. func (e *EksaDiagnosticBundle) WithFileCollectors(paths []string) *EksaDiagnosticBundle { e.bundle.Spec.Collectors = append(e.bundle.Spec.Collectors, e.collectorFactory.FileCollectors(paths)...) return e } func (e *EksaDiagnosticBundle) WithPackagesCollectors() *EksaDiagnosticBundle { e.bundle.Spec.Analyzers = append(e.bundle.Spec.Analyzers, e.analyzerFactory.PackageAnalyzers()...) e.bundle.Spec.Collectors = append(e.bundle.Spec.Collectors, e.collectorFactory.PackagesCollectors()...) return e } func (e *EksaDiagnosticBundle) WithDatacenterConfig(config v1alpha1.Ref, spec *cluster.Spec) *EksaDiagnosticBundle { e.bundle.Spec.Analyzers = append(e.bundle.Spec.Analyzers, e.analyzerFactory.DataCenterConfigAnalyzers(config)...) e.bundle.Spec.Collectors = append(e.bundle.Spec.Collectors, e.collectorFactory.DataCenterConfigCollectors(config, spec)...) return e } func (e *EksaDiagnosticBundle) WithOidcConfig(config *v1alpha1.OIDCConfig) *EksaDiagnosticBundle { if config != nil { e.bundle.Spec.Analyzers = append(e.bundle.Spec.Analyzers, e.analyzerFactory.EksaOidcAnalyzers()...) } return e } func (e *EksaDiagnosticBundle) WithExternalEtcd(config *v1alpha1.ExternalEtcdConfiguration) *EksaDiagnosticBundle { if config != nil { e.bundle.Spec.Analyzers = append(e.bundle.Spec.Analyzers, e.analyzerFactory.EksaExternalEtcdAnalyzers()...) } return e } func (e *EksaDiagnosticBundle) WithGitOpsConfig(config *v1alpha1.GitOpsConfig) *EksaDiagnosticBundle { if config != nil { e.bundle.Spec.Analyzers = append(e.bundle.Spec.Analyzers, e.analyzerFactory.EksaGitopsAnalyzers()...) } return e } func (e *EksaDiagnosticBundle) WithMachineConfigs(configs []providers.MachineConfig) *EksaDiagnosticBundle { e.bundle.Spec.Collectors = append(e.bundle.Spec.Collectors, e.collectorFactory.EksaHostCollectors(configs)...) return e } func (e *EksaDiagnosticBundle) WithLogTextAnalyzers() *EksaDiagnosticBundle { e.bundle.Spec.Analyzers = append(e.bundle.Spec.Analyzers, e.analyzerFactory.EksaLogTextAnalyzers(e.bundle.Spec.Collectors)...) return e } // hasHostCollectors checks if the host bundle has any collectors added. func (e *EksaDiagnosticBundle) hasHostCollectors() bool { if e.hostBundle == nil { return false } return len(e.hostBundle.Spec.Collectors) > 0 } // combineWithHostBundle adds host bundle YAML to the main bundle YAML if host collectors exist. func (e *EksaDiagnosticBundle) combineWithHostBundle(bundleYaml []byte) ([]byte, error) { if !e.hasHostCollectors() { return bundleYaml, nil } hostYaml, err := yaml.Marshal(e.hostBundle) if err != nil { return nil, fmt.Errorf("marshaling host yaml: %v", err) } // Add a separator between the two YAML documents separator := []byte("\n---\n") // Combine the original bundle YAML with the host collector YAML combinedYaml := append([]byte{}, bundleYaml...) combinedYaml = append(combinedYaml, separator...) combinedYaml = append(combinedYaml, hostYaml...) return combinedYaml, nil } // createDiagnosticNamespace attempts to create the namespace eksa-diagnostics and associated RBAC objects. // collector pods, for example host log collectors or run command collectors, will be launched in this namespace with the default service account. // this method intentionally does not return an error // a cluster in need of diagnosis may be unable to create new API objects and we should not stop our collection/analysis just because the namespace fails to create. func (e *EksaDiagnosticBundle) createDiagnosticNamespaceAndRoles(ctx context.Context) { targetCluster := &types.Cluster{ KubeconfigFile: e.kubeconfig, } logger.V(1).Info("creating temporary namespace for diagnostic collector", "namespace", constants.EksaDiagnosticsNamespace) err := e.retrier.Retry( func() error { return e.kubectl.CreateNamespace(ctx, e.kubeconfig, constants.EksaDiagnosticsNamespace) }, ) if err != nil { logger.Info("WARNING: failed to create eksa-diagnostics namespace. Some collectors may fail to run.", "err", err) } logger.V(1).Info("creating temporary ClusterRole and RoleBinding for diagnostic collector") err = e.retrier.Retry( func() error { return e.kubectl.ApplyKubeSpecFromBytes(ctx, targetCluster, diagnosticCollectorRbac) }, ) if err != nil { logger.Info("WARNING: failed to create roles for eksa-diagnostic-collector. Some collectors may fail to run.", "err", err) } } func (e *EksaDiagnosticBundle) deleteDiagnosticNamespaceAndRoles(ctx context.Context) { targetCluster := &types.Cluster{ KubeconfigFile: e.kubeconfig, } logger.V(1).Info("cleaning up temporary roles for diagnostic collectors") err := e.retrier.Retry( func() error { return e.kubectl.DeleteKubeSpecFromBytes(ctx, targetCluster, diagnosticCollectorRbac) }, ) if err != nil { logger.Info("WARNING: failed to clean up roles for eksa-diagnostics.", "err", err) } logger.V(1).Info("cleaning up temporary namespace for diagnostic collectors", "namespace", constants.EksaDiagnosticsNamespace) err = e.retrier.Retry( func() error { return e.kubectl.DeleteNamespace(ctx, e.kubeconfig, constants.EksaDiagnosticsNamespace) }, ) if err != nil { logger.Info("WARNING: failed to clean up eksa-diagnostics namespace.", "err", err, "namespace", constants.EksaDiagnosticsNamespace) } } func ParseTimeFromDuration(since string) (*time.Time, error) { var sinceTimeValue time.Time duration, err := time.ParseDuration(since) if err != nil { return nil, fmt.Errorf("unable to parse since time: %v", err) } now := time.Now() sinceTimeValue = now.Add(0 - duration) return &sinceTimeValue, nil } func ParseTimeOptions(since string, sinceTime string) (*time.Time, error) { var sinceTimeValue time.Time var err error if sinceTime == "" && since == "" { return &sinceTimeValue, nil // returning an uninitialized (zero) Time value here results in a // sinceTimeValue of "0001-01-01 00:00:00 +0000 UTC" // so all pod logs will be collected from the very beginning } else if sinceTime != "" && since != "" { return nil, fmt.Errorf("at most one of `sinceTime` or `since` could be specified") } else if sinceTime != "" { sinceTimeValue, err = time.Parse(time.RFC3339, sinceTime) return &sinceTimeValue, err } else if since != "" { return ParseTimeFromDuration(since) } return nil, nil } func (e *EksaDiagnosticBundle) clusterName() string { if e.bundle != nil { return e.bundle.Name } return defaultClusterName }