X-Git-Url: https://git.openstreetmap.org./chef.git/blobdiff_plain/648027d09aea42101ce964a312219a4b5051432b..cc57b9e9a6f06eb2fdce5ed83aa5f9ed6cd90cad:/cookbooks/prometheus/resources/exporter.rb diff --git a/cookbooks/prometheus/resources/exporter.rb b/cookbooks/prometheus/resources/exporter.rb index 8dd928846..782f84aa3 100644 --- a/cookbooks/prometheus/resources/exporter.rb +++ b/cookbooks/prometheus/resources/exporter.rb @@ -17,46 +17,79 @@ # limitations under the License. # +unified_mode true + default_action :create property :exporter, :kind_of => String, :name_property => true +property :address, :kind_of => String property :port, :kind_of => Integer, :required => [:create] property :listen_switch, :kind_of => String, :default => "web.listen-address" -property :exporter_options, :kind_of => [String, Array] -property :package, :kind_of => String -property :package_options, :kind_of => String -property :defaults, :kind_of => String +property :listen_type, :kind_of => String, :default => "address" +property :user, :kind_of => String +property :group, :kind_of => String +property :command, :kind_of => String +property :options, :kind_of => [String, Array] +property :environment, :kind_of => Hash, :default => {} +property :protect_proc, String +property :proc_subset, String +property :private_devices, [true, false] +property :protect_clock, [true, false] +property :restrict_address_families, [String, Array] +property :remove_ipc, [true, false] +property :system_call_filter, [String, Array] property :service, :kind_of => String +property :scrape_interval, :kind_of => String +property :scrape_timeout, :kind_of => String +property :metric_relabel, :kind_of => Array +property :register_target, :kind_of => [TrueClass, FalseClass], :default => true action :create do - package package_name do - options new_resource.package_options - end - - template defaults_name do - cookbook "prometheus" - source "defaults.erb" - owner "root" - group "root" - mode "644" - variables new_resource.to_hash.merge(:listen_address => listen_address) + systemd_service service_name do + after "network-online.target" + wants "network-online.target" + description "Prometheus #{new_resource.exporter} exporter" + type "simple" + user new_resource.user + dynamic_user new_resource.user.nil? + group new_resource.group + environment new_resource.environment + exec_start "#{executable_path} #{new_resource.command} #{executable_options}" + sandbox :enable_network => true + protect_proc new_resource.protect_proc if new_resource.property_is_set?(:protect_proc) + proc_subset new_resource.proc_subset if new_resource.property_is_set?(:proc_subset) + private_devices new_resource.private_devices if new_resource.property_is_set?(:private_devices) + protect_clock new_resource.protect_clock if new_resource.property_is_set?(:protect_clock) + restrict_address_families new_resource.restrict_address_families if new_resource.property_is_set?(:restrict_address_families) + remove_ipc new_resource.remove_ipc if new_resource.property_is_set?(:remove_ipc) + system_call_filter new_resource.system_call_filter if new_resource.property_is_set?(:system_call_filter) end service service_name do action [:enable, :start] - subscribes :restart, "template[#{defaults_name}]" + subscribes :restart, "systemd_service[#{service_name}]" end - firewall_rule "accept-prometheus-#{new_resource.name}" do + firewall_rule "accept-prometheus-#{new_resource.exporter}" do action :accept source "osm" dest "fw" - proto "tcp:syn" + proto "tcp" dest_ports new_resource.port only_if { node[:prometheus][:mode] == "external" } end - node.default[:prometheus][:exporters][new_resource.exporter] = listen_address + node.default[:prometheus][:addresses][new_resource.exporter] = listen_address + + if new_resource.register_target + node.default[:prometheus][:exporters][new_resource.port] = { + :name => new_resource.exporter, + :address => listen_address, + :scrape_interval => new_resource.scrape_interval, + :scrape_timeout => new_resource.scrape_timeout, + :metric_relabel => new_resource.metric_relabel + } + end end action :delete do @@ -64,29 +97,73 @@ action :delete do action [:disable, :stop] end - package package_name do - action :purge + systemd_service service_name do + action :delete + end +end + +action :restart do + service service_name do + action :restart + only_if { service_exists? } end end action_class do - def package_name - new_resource.package || "prometheus-#{new_resource.exporter}-exporter" + def service_name + if new_resource.service + "prometheus-#{new_resource.service}-exporter" + else + "prometheus-#{new_resource.exporter}-exporter" + end + end + + def service_exists? + ::File.exist?("/etc/systemd/system/#{service_name}.service") + end + + def executable_path + if ::File.exist?("#{executable_directory}/#{executable_name}_#{executable_architecture}") + "#{executable_directory}/#{executable_name}_#{executable_architecture}" + else + "#{executable_directory}/#{executable_name}" + end + end + + def executable_directory + "/opt/prometheus-exporters/exporters/#{new_resource.exporter}" + end + + def executable_name + "#{new_resource.exporter}_exporter" end - def defaults_name - new_resource.defaults || "/etc/default/prometheus-#{new_resource.exporter}-exporter" + def executable_architecture + node[:kernel][:machine] + end + + def executable_options + "--#{new_resource.listen_switch}=#{listen_argument} #{Array(new_resource.options).join(' ')}" + end + + def listen_argument + case new_resource.listen_type + when "address" then listen_address + when "url" then "http://#{listen_address}/metrics" + end end def listen_address - if node[:prometheus][:mode] == "wireguard" + if new_resource.address + "#{new_resource.address}:#{new_resource.port}" + elsif node[:prometheus][:mode] == "wireguard" "[#{node[:prometheus][:address]}]:#{new_resource.port}" else "#{node[:prometheus][:address]}:#{new_resource.port}" end end +end - def service_name - new_resource.service || "prometheus-#{new_resource.exporter}-exporter" - end +def after_created + subscribes :restart, "git[/opt/prometheus-exporters]" end