helm/metrics: add a new gauge metric to monitor helm releases

go.mod

@@ -14,15 +14,17 @@ require (
 	github.com/openshift/client-go v0.0.0-20210112160336-8889f8b15bd6
 	github.com/openshift/library-go v0.0.0-20210330121117-68dd4a4c9d9e
 	github.com/pkg/profile v1.4.0 // indirect
-	github.com/spf13/cobra v1.1.1
+	github.com/spf13/cobra v1.1.3
 	github.com/spf13/pflag v1.0.5
 	gopkg.in/yaml.v2 v2.4.0
+	helm.sh/helm/v3 v3.6.3
 	k8s.io/api v0.21.1
-	k8s.io/apiextensions-apiserver v0.21.0 // indirect
 	k8s.io/apimachinery v0.21.1
+	k8s.io/cli-runtime v0.21.0
 	k8s.io/client-go v0.21.0
 	k8s.io/component-base v0.21.0
 	k8s.io/klog/v2 v2.8.0
+	rsc.io/letsencrypt v0.0.3 // indirect
 )
 
 // points to temporary-watch-reduction-patch-1.21 to pick up k/k/pull/101102 - please remove it once the pr merges and a new Z release is cut

manifests/03-rbac-role-cluster.yaml

@@ -80,6 +80,14 @@ rules:
   - create
   - update
   - delete
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - watch
+  - list
 ---
 kind: ClusterRole
 apiVersion: rbac.authorization.k8s.io/v1

pkg/console/operator/sync_v400.go

@@ -30,6 +30,8 @@ import (
 	"github.com/openshift/library-go/pkg/route/routeapihelpers"
 
 	// operator
+	helmmetrics "github.com/openshift/console-operator/pkg/helm/metrics"
+
 	customerrors "github.com/openshift/console-operator/pkg/console/errors"
 	"github.com/openshift/console-operator/pkg/console/metrics"
 	"github.com/openshift/console-operator/pkg/console/status"
@@ -218,6 +220,7 @@ func (co *consoleOperator) GetActiveRouteInfo(ctx context.Context, activeRouteNa
 func (co *consoleOperator) SyncConsoleConfig(ctx context.Context, consoleConfig *configv1.Console, consoleURL string) (*configv1.Console, error) {
 	oldURL := consoleConfig.Status.ConsoleURL
 	metrics.HandleConsoleURL(oldURL, consoleURL)
+	helmmetrics.HandleHelmChartReleaseHealthStatus()
 	if oldURL != consoleURL {
 		klog.V(4).Infof("updating console.config.openshift.io with url: %v", consoleURL)
 		updated := consoleConfig.DeepCopy()

pkg/helm/metrics/metrics.go

@@ -0,0 +1,90 @@
+package metrics
+
+import (
+	"log"
+	"os"
+
+	"helm.sh/helm/v3/pkg/action"
+	"k8s.io/cli-runtime/pkg/genericclioptions"
+	"k8s.io/client-go/rest"
+	k8smetrics "k8s.io/component-base/metrics"
+	"k8s.io/component-base/metrics/legacyregistry"
+	"k8s.io/klog/v2"
+)
+
+var (
+	helmChartReleaseHealthStatus = k8smetrics.NewGaugeVec(
+		&k8smetrics.GaugeOpts{
+			Name: "helm_chart_release_health_status",
+			Help: "Health of the Helm release",
+		},
+		[]string{"releaseName", "chartName", "chartVersion"},
+	)
+)
+
+func init() {
+	legacyregistry.MustRegister(helmChartReleaseHealthStatus)
+}
+
+func HandleHelmChartReleaseHealthStatus() {
+	defer recoverMetricPanic()
+
+	actionConfig, err := getActionConfig()
+	if err != nil {
+		klog.Errorf("metric helm_chart_release_health_status unhandled: %v", err)
+		return
+	}
+	listAction := action.NewList(actionConfig)
+	releases, err := listAction.Run()
+	if err != nil {
+		klog.Errorf("metric helm_chart_release_health_status unhandled: %v", err)
+		return
+	}
+
+	if len(releases) == 0 {
+		// Initialize metrics with value 0
+		// Reference: https://prometheus.io/docs/practices/instrumentation/#avoid-missing-metrics
+		helmChartReleaseHealthStatus.WithLabelValues("", "", "").Set(0)
+		return
+	}
+
+	for _, release := range releases {
+		releaseStatus := release.Info.Status.String()
+		healthStatus := 1
+		if releaseStatus == "failed" || releaseStatus == "unknown" {
+			healthStatus = 0
+		}
+		klog.V(4).Infof("metric helm_chart_release_health_status %d: %s %s %s", healthStatus, release.Name, release.Chart.Metadata.Name, release.Chart.Metadata.Version)
+		helmChartReleaseHealthStatus.WithLabelValues(release.Name, release.Chart.Metadata.Name, release.Chart.Metadata.Version).Set(float64(healthStatus))
+	}
+}
+
+// Reference: https://github.com/helm/helm/issues/7430#issuecomment-620489002
+func getActionConfig() (*action.Configuration, error) {
+	actionConfig := new(action.Configuration)
+	var kubeConfig *genericclioptions.ConfigFlags
+	// Create the rest config instance with ServiceAccount values loaded in them
+	config, err := rest.InClusterConfig()
+	if err != nil {
+		return nil, err
+	}
+	// Create the ConfigFlags struct instance with initialized values from ServiceAccount
+	kubeConfig = genericclioptions.NewConfigFlags(false)
+	kubeConfig.APIServer = &config.Host
+	kubeConfig.BearerToken = &config.BearerToken
+	kubeConfig.CAFile = &config.CAFile
+	// Empty string for all namespaces
+	if err := actionConfig.Init(kubeConfig, "", os.Getenv("HELM_DRIVER"), log.Printf); err != nil {
+		return nil, err
+	}
+	return actionConfig, nil
+}
+
+// We will never want to panic our operator because of metric saving.
+// Therefore, we will recover our panics here and error log them
+// for later diagnosis but will never fail the operator.
+func recoverMetricPanic() {
+	if r := recover(); r != nil {
+		klog.Errorf("Recovering from metric function - %v", r)
+	}
+}

test/e2e/metrics_test.go

@@ -24,7 +24,8 @@ import (
 )
 
 const (
-	consoleURLMetric = "console_url"
+	consoleURLMetric                   = "console_url"
+	helmChartReleaseHealthStatusMetric = "helm_chart_release_health_status"
 )
 
 func setupMetricsEndpointTestCase(t *testing.T) (*framework.ClientSet, *operatorsv1.Console) {
@@ -66,6 +67,12 @@ func TestMetricsEndpoint(t *testing.T) {
 	if !found {
 		t.Fatalf("did not find %s", consoleURLMetric)
 	}
+
+	t.Logf("searching for %s in metrics data...\n", helmChartReleaseHealthStatusMetric)
+	found = findLineInResponse(t, respString, helmChartReleaseHealthStatusMetric)
+	if !found {
+		t.Fatalf("did not find %s", helmChartReleaseHealthStatusMetric)
+	}
 }
 
 func findLineInResponse(t *testing.T, haystack, needle string) (found bool) {