Customize Support Bundles for KOTS
This topic provides a basic understanding and some key considerations about support bundle specifications for Replicated KOTS installations to help guide you in customizing them for your application.
About Support Bundles
Replicated KOTS provides the ability to generate support bundles from the admin console using the default support bundle specifications. However, there may be application-related data that you want to collect and analyze for troubleshooting.
You can customize the default support bundle specification by adding, editing, or excluding the default collectors and analyzers.
For a comprehensive overview, see About Preflight Checks and Support Bundles.
For more information about specifications, see About Specifications in About Preflight Checks and Support Bundles.
Customize the Support Bundle Resource
To customize a support bundle for KOTS, add a SupportBundle custom resource manifest file (kind: SupportBundle) to your release.
Use one of the following support bundle template options to start populating your manifest file:
To add collectors and analyzers to the default collectors, copy the following basic support bundle template to your manifest file. In this template, the collectors field is empty, so only the default collectors run until you customize this file.
apiVersion: troubleshoot.sh/v1beta2
kind: SupportBundle
metadata:
name: collectors
spec:
collectors: []
analyzers: []To fully customize the support bundle, including editing or excluding the default collectors and analyzers, copy the default
spec.yamlfile to your manifest file. For the default YAML file, see spec.yaml in the kots repository.
Then edit the collectors and analyzers as needed.
For more information about defining collectors and analyzers, see Collecting Data and Analyzing Data in the Troubleshoot documentation.
Cluster Collectors
Although Replicated recommends including the default clusterInfo and clusterResources collectors because they collect a large amount of data to help with installation and debugging, you can set the exclude field to true to exclude them.
If clusterResources is defined in your specification, the default namespace cannot be removed, but you can add a namespace to the namespaces field.
The following example shows the clusterInfo collector will run because the exlcude field is set to the default value false. Additionally, there is a second namespace being used for the application.
spec:
collectors:
- clusterInfo:
exclude: false
- clusterResources:
namespaces:
- default
- my-app-namespace
For more information about defining collectors and analyzers, see Collecting Data and Analyzing Data in the Troubleshoot documentation.
Pod Log Collectors
Replicated recommends adding application Pod logs and set the collection limits for the number of lines logged. Typically the selector attribute is matched to the labels.
To get the labels for an application, either inspect the YAML or run kubectl get pods --show-labels.
After the labels are discovered, create collectors to include logs from these pods in a bundle. Depending on the complexity of an application's labeling schema, you might need a few different declarations of the logs collector. You can include the logs collector as many times as needed.
The limits field can support maxAge or maxLines. This limits the output to the constraints provided. Default: maxLines: 10000
The following example shows an API log file set with the default value for maxLines:
spec:
collectors:
- clusterInfo:
- clusterResources:
exclude: false
- clusterResources:
namespaces:
- default
- my-app-namespace
- logs:
selector:
- app=api
namespace: my-app-namespace
limits:
maxLines: 10000
For more information about defining collectors and analyzers, see Collecting Data and Analyzing Data in the Troubleshoot documentation.
Recommended Collectors
Add any custom collectors to the file. Collectors that Replicated recommends considering are:
- Kubernetes resources: Use for custom resource definitions (CRDs), Secrets, and ConfigMaps, if they are required for your application to work.
- Databases: Return a selection of rows or entire tables.
- Volumes: Ensure that an application's persistent state files exist, are readable/writeable, and have the right permissions.
- Pods: Run a Pod from a custom image.
- Files: Copy files from Pods and hosts.
- HTTP: Consume your own application APIs with HTTP requests. If your application has its own API that serves status, metrics, performance data, and so on, this information can be collected and analyzed.
For more information about defining collectors and analyzers, see Collecting Data and Analyzing Data in the Troubleshoot documentation.
Analyzers
Add analyzers based on conditions that you expect for your application. For example, you might require that a cluster have at least 2 CPUs and 4GB memory available.
Good analyzers clearly identify failure modes. For example, if you can identify a log message from your database component that indicates a problem, you should write an analyzer that checks for that log.
At a minimum, include application log analyzers. A simple text analyzer can detect specific log lines and inform an end user of remediation steps.
Analyzers that Replicated recommends considering are:
- Resource statuses: Check the status of various resources, such as Deployments, StatefulSets, Jobs, and so on.
- Regular expressions: Analyze arbitrary data.
- Databases: Check the version and connection status.
The following example shows an analyzer for a minimum version of Kubernetes that can be run on the cluster, and an analyzer to check the status of the nodes. You can customize the messages to help guide customers to fix the issue on their own.
spec:
collectors:
- clusterInfo:
- clusterResources:
analyzers:
- clusterVersion:
outcomes:
- fail:
when: "< 1.22.0"
message: The Admin Console requires at least Kubernetes 1.22.0
- pass:
message: Your cluster meets the recommended and required versions of Kubernetes
- nodeResources:
checkName: Node status check
outcomes:
- fail:
when: "nodeCondition(Ready) == False"
message: "Not all nodes are online."
- warn:
when: "nodeCondition(Ready) == Unknown"
message: "Not all nodes are online."
- pass:
message: "All nodes are online."
For more information about defining collectors and analyzers, see Collecting Data and Analyzing Data in the Troubleshoot documentation.
Examples
Simplified Specification
The following example shows a simplified specification with some edits to the default settings.
For more information about defining collectors and analyzers, see Collecting Data and Analyzing Data in the Troubleshoot documentation.
apiVersion: troubleshoot.sh/v1beta2
kind: SupportBundle
metadata:
name: collectors
spec:
collectors:
- clusterInfo:
exclude: false
- clusterResources:
namespaces:
- default
- my-app-namespace
- logs:
selector:
- app=api
namespace: my-app-namespace
limits:
maxLines: 10000
analyzers:
- clusterVersion:
outcomes:
- fail:
when: "< 1.22.0"
message: The Admin Console requires at least Kubernetes 1.22.0
- pass:
message: Your cluster meets the recommended and required versions of Kubernetes
- nodeResources:
checkName: Node status check
outcomes:
- fail:
when: "nodeCondition(Ready) == False"
message: "Not all nodes are online."
- warn:
when: "nodeCondition(Ready) == Unknown"
message: "Not all nodes are online."
- pass:
message: "All nodes are online."
Full Specification
The following example shows a full specification for KOTS. To get the most current full specification, see spec.yaml in the kots repository.
For more information about defining collectors and analyzers, see Collecting Data and Analyzing Data in the Troubleshoot documentation.
apiVersion: troubleshoot.sh/v1beta2
kind: SupportBundle
metadata:
name: collector-sample
spec:
collectors:
- clusterInfo: {}
- clusterResources: {}
- ceph: {}
- longhorn: {}
- exec: # this is removable when we don't need to support kots <= 1.87
args:
- "-U"
- kotsadm
collectorName: kotsadm-postgres-db
command:
- pg_dump
containerName: kotsadm-postgres
name: kots/admin_console
selector:
- app=kotsadm-postgres
timeout: 10s
- exec:
collectorName: kotsadm-rqlite-db
name: kots/admin_console
selector:
- app=kotsadm-rqlite
command:
- sh
- -c
- |
wget -qO- kotsadm:${RQLITE_PASSWORD}@localhost:4001/db/backup?fmt=sql
timeout: 10s
- exec:
args:
- "http://localhost:3030/goroutines"
collectorName: kotsadm-goroutines
command:
- curl
containerName: kotsadm
name: kots/admin_console
selector:
- app=kotsadm
timeout: 10s
- exec:
args:
- "http://localhost:3030/goroutines"
collectorName: kotsadm-operator-goroutines
command:
- curl
containerName: kotsadm-operator
name: kots/admin_console
selector:
- app=kotsadm-operator
timeout: 10s
- logs: # this is removable when we don't need to support kots <= 1.87
collectorName: kotsadm-postgres-db
name: kots/admin_console
selector:
- app=kotsadm-postgres
- logs:
collectorName: kotsadm-rqlite-db
name: kots/admin_console
selector:
- app=kotsadm-rqlite
- logs: # this is removable when we don't need to support kots <= 1.19
collectorName: kotsadm-api
name: kots/admin_console
selector:
- app=kotsadm-api
- logs:
collectorName: kotsadm-operator
name: kots/admin_console
selector:
- app=kotsadm-operator
- logs:
collectorName: kotsadm
name: kots/admin_console
selector:
- app=kotsadm
- logs:
collectorName: kurl-proxy-kotsadm
name: kots/admin_console
selector:
- app=kurl-proxy-kotsadm
- logs:
collectorName: kotsadm-dex
name: kots/admin_console
selector:
- app=kotsadm-dex
- logs:
collectorName: kotsadm-fs-minio
name: kots/admin_console
selector:
- app=kotsadm-fs-minio
- logs:
collectorName: kotsadm-s3-ops
name: kots/admin_console
selector:
- app=kotsadm-s3-ops
- logs:
collectorName: registry
name: kots/kurl
selector:
- app=registry
namespace: kurl
- logs:
collectorName: ekc-operator
name: kots/kurl
selector:
- app=ekc-operator
namespace: kurl
- secret:
collectorName: kotsadm-replicated-registry
name: kotsadm-replicated-registry # NOTE: this will not live under the kots/ directory like other collectors
includeValue: false
key: .dockerconfigjson
- logs:
collectorName: rook-ceph-logs
namespace: rook-ceph
name: kots/rook
- exec:
collectorName: weave-status
command:
- /home/weave/weave
args:
- --local
- status
containerName: weave
exclude: ""
name: kots/kurl/weave
namespace: kube-system
selector:
- name=weave-net
timeout: 10s
- exec:
collectorName: weave-report
command:
- /home/weave/weave
args:
- --local
- report
containerName: weave
exclude: ""
name: kots/kurl/weave
namespace: kube-system
selector:
- name=weave-net
timeout: 10s
- logs:
collectorName: weave-net
selector:
- name=weave-net
namespace: kube-system
name: kots/kurl/weave
- logs:
collectorName: kube-flannel
selector:
- app=flannel
namespace: kube-flannel
name: kots/kurl/flannel
- exec:
args:
- "http://goldpinger.kurl.svc.cluster.local:80/check_all"
collectorName: goldpinger-statistics
command:
- curl
containerName: kotsadm
name: kots/goldpinger
selector:
- app=kotsadm
timeout: 10s
- copyFromHost:
collectorName: kurl-host-preflights
name: kots/kurl/host-preflights
hostPath: /var/lib/kurl/host-preflights
extractArchive: true
image: alpine
imagePullPolicy: IfNotPresent
timeout: 1m
- configMap:
collectorName: kurl-current-config
name: kurl-current-config # NOTE: this will not live under the kots/ directory like other collectors
namespace: kurl
includeAllData: true
- configMap:
collectorName: kurl-last-config
name: kurl-last-config # NOTE: this will not live under the kots/ directory like other collectors
namespace: kurl
includeAllData: true
- collectd:
collectorName: collectd
hostPath: /var/lib/collectd/rrd
image: alpine
imagePullPolicy: IfNotPresent
timeout: 5m
analyzers:
- clusterVersion:
outcomes:
- fail:
when: "< 1.16.0"
message: The Admin Console requires at least Kubernetes 1.16.0
- pass:
message: Your cluster meets the recommended and required versions of Kubernetes
- containerRuntime:
outcomes:
- fail:
when: "== gvisor"
message: The Admin Console does not support using the gvisor runtime
- pass:
message: A supported container runtime is present on all nodes
- cephStatus: {}
- longhorn: {}
- clusterPodStatuses:
outcomes:
- fail:
when: "!= Healthy"
message: "Status: {{ .Status.Reason }}"
- statefulsetStatus: {}
- deploymentStatus: {}
- jobStatus: {}
- replicasetStatus: {}
- weaveReport:
reportFileGlob: kots/kurl/weave/kube-system/*/weave-report-stdout.txt
- textAnalyze:
checkName: Weave Status
exclude: ""
ignoreIfNoFiles: true
fileName: kots/kurl/weave/kube-system/weave-net-*/weave-status-stdout.txt
outcomes:
- fail:
message: Weave is not ready
- pass:
message: Weave is ready
regex: 'Status: ready'
- textAnalyze:
checkName: Weave Report
exclude: ""
ignoreIfNoFiles: true
fileName: kots/kurl/weave/kube-system/weave-net-*/weave-report-stdout.txt
outcomes:
- fail:
message: Weave is not ready
- pass:
message: Weave is ready
regex: '"Ready": true'
- textAnalyze:
checkName: "Flannel: can read net-conf.json"
ignoreIfNoFiles: true
fileName: kots/kurl/flannel/kube-flannel-ds-*/kube-flannel.log
outcomes:
- fail:
when: "true"
message: "failed to read net-conf.json"
- pass:
when: "false"
message: "can read net-conf.json"
regex: 'failed to read net conf'
- textAnalyze:
checkName: "Flannel: net-conf.json properly formatted"
ignoreIfNoFiles: true
fileName: kots/kurl/flannel/kube-flannel-ds-*/kube-flannel.log
outcomes:
- fail:
when: "true"
message: "malformed net-conf.json"
- pass:
when: "false"
message: "properly formatted net-conf.json"
regex: 'error parsing subnet config'
- textAnalyze:
checkName: "Flannel: has access"
ignoreIfNoFiles: true
fileName: kots/kurl/flannel/kube-flannel-ds-*/kube-flannel.log
outcomes:
- fail:
when: "true"
message: "RBAC error"
- pass:
when: "false"
message: "has access"
regex: 'the server does not allow access to the requested resource'
- textAnalyze:
checkName: Inter-pod Networking
exclude: ""
ignoreIfNoFiles: true
fileName: kots/goldpinger/*/kotsadm-*/goldpinger-statistics-stdout.txt
outcomes:
- fail:
when: "OK = false"
message: Some nodes have pod communication issues
- pass:
message: Goldpinger can communicate properly
regexGroups: '"OK": ?(?P<OK>\w+)'
- nodeResources:
checkName: Node status check
outcomes:
- fail:
when: "nodeCondition(Ready) == False"
message: "Not all nodes are online."
- fail:
when: "nodeCondition(Ready) == Unknown"
message: "Not all nodes are online."
- pass:
message: "All nodes are online."
- clusterPodStatuses:
checkName: contour pods unhealthy
namespaces:
- projectcontour
outcomes:
- fail:
when: "!= Healthy" # Catch all unhealthy pods. A pod is considered healthy if it has a status of Completed, or Running and all of its containers are ready.
message: A Contour pod, {{ .Name }}, is unhealthy with a status of {{ .Status.Reason }}. Restarting the pod may fix the issue.
Next Steps
To test this feature in a promoted release:
Install the release in your development environment, and then generate a support bundle using one of the following options:
Generate the support bundle from the CLI. See Generating Support Bundles.
Generate a support bundle from the Troubleshoot tab in the admin console and do one of the following:
- If you have the Support Bundle Upload Enabled license entitlement, click Send bundle to vendor. You can also open the TAR file to review the files. For more information about license entitlements, see Creating a Customer.
- Download the
support-bundle.tar.gzfile.
You can use the vendor portal to run an analysis and inspect the support bundle. See Inspecting Support Bundles.