Page MenuHomePhabricator
Create Task
Maniphest T294564

Migrate Foundations Prometheus alerts to AlertManager
Open, MediumPublic
Actions

Description

Followup from a chat with @Volans, there are a few Prometheus-based alerts in Puppet that should be straightforward to migrate to alerting rules (i.e. alerts.git or puppet if for some reason we want to set alerts "administratively" since alerts.git is self-service even for non-root / non-sre).

Specifically:

modules/profile/manifests/monitoring.pp:        monitoring::check_prometheus { 'smart_healthy':
modules/profile/manifests/monitoring.pp:    monitoring::check_prometheus { 'edac_correctable_errors':
modules/profile/manifests/monitoring.pp:    monitoring::check_prometheus { 'edac_syslog_events':
modules/profile/manifests/monitoring.pp:    monitoring::check_prometheus { 'filesystem_avail_bigger_than_size':

These could be either still valid (e.g. smart_healthy) or could be possibly discarded as not relevant anymore (e.g. filesystem_avail_bigger_than_size)

Details

ProjectBranchLines +/-Subject
operations/puppetproduction+5 -23icinga: remove SMART check
operations/puppetproduction+12 -4smart_data_dump: skip over iDRAC devices
operations/alertsmaster+44 -0Add SmartNotHealthy to monitor for disk smart alerts
Customize query in gerrit

Related Objects
Search...

Event Timeline

fgiunchedi created this task.Oct 28 2021, 2:14 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptOct 28 2021, 2:14 PM
lmata triaged this task as Medium priority.Nov 16 2021, 4:45 PM
fgiunchedi mentioned this in T196994: Open Phab tasks on SMART failure.Dec 15 2021, 9:23 AM
fgiunchedi moved this task from FY2021/2022-Q2 to Backlog on the SRE Observability board.Jan 17 2022, 2:08 PM
fgiunchedi edited projects, added SRE Observability; removed SRE Observability (FY2021/2022-Q2).
lmata edited projects, added Observability-Alerting; removed SRE Observability.Jan 17 2022, 11:07 PM
gerritbot added a comment.Jan 26 2022, 5:39 PM

Change 757489 had a related patch set uploaded (by Volans; author: Volans):

[operations/alerts@master] [WIP] team-sre: add hardware-related checks

https://gerrit.wikimedia.org/r/757489

gerritbot added a project: Patch-For-Review.Jan 26 2022, 5:39 PM
jhathaway added a subtask: T302639: How should we monitor for faulty memory modules?.Feb 27 2022, 11:25 PM
gerritbot added a comment.Feb 28 2022, 2:36 PM

Change 757489 merged by jenkins-bot:

[operations/alerts@master] Add SmartNotHealthy to monitor for disk smart alerts

https://gerrit.wikimedia.org/r/757489

Maintenance_bot removed a project: Patch-For-Review.Feb 28 2022, 3:11 PM
jhathaway closed subtask T302687: Don't move filesystem_avail_bigger_than_size icinga check to alert manager? as Resolved.Mar 1 2022, 3:10 PM
lmata moved this task from Inbox to Prioritized on the Observability-Alerting board.Apr 5 2022, 12:27 PM
lmata moved this task from Prioritized to Radar on the Observability-Alerting board.Apr 5 2022, 12:29 PM
fgiunchedi added a subscriber: jhathaway.Apr 7 2022, 12:42 PM
In T294564#7741525, @gerritbot wrote:

Change 757489 merged by jenkins-bot:

[operations/alerts@master] Add SmartNotHealthy to monitor for disk smart alerts

https://gerrit.wikimedia.org/r/757489

@jhathaway I saw the alert firing today, looks like it is working as expected so that's great! I believe the old icinga alert can be removed now (i.e. both are firing e.g. for aqs1007 ATM)

jhathaway added a comment.EditedApr 8 2022, 7:49 PM
In T294564#7838028, @fgiunchedi wrote:

@jhathaway I saw the alert firing today, looks like it is working as expected so that's great! I believe the old icinga alert can be removed now (i.e. both are firing e.g. for aqs1007 ATM)

That is good news, however it appears that the two alerts are false positives. I dug into it a bit and it appears both drives are virtual drives exposed by the idrac:

root@aqs1007:~# lsblk -S /dev/{sdm,sdh}
NAME HCTL       TYPE VENDOR   MODEL             REV TRAN
sdh  10:0:0:0   disk iDRAC    MAS001           0329 usb
sdm  11:0:0:0   disk iDRAC    MAS025           0329 usb

I then went digging in the Prometheus smartmon script, https://github.com/prometheus-community/node-exporter-textfile-collector-scripts/blob/master/smartmon.py, only to discover that we wrote our own.

However neither theirs nor ours seems to provide a way to skip a certain vendor or model of a drive.

I think we should augment the script to query the vendor via /sys/, i.e. cat /sys/block/sdm/device/vendor in addition to or instead of querying via smartctl, so that we can exclude idrac devices.

fgiunchedi added a comment.Apr 11 2022, 2:22 PM
In T294564#7842052, @jhathaway wrote:
In T294564#7838028, @fgiunchedi wrote:

@jhathaway I saw the alert firing today, looks like it is working as expected so that's great! I believe the old icinga alert can be removed now (i.e. both are firing e.g. for aqs1007 ATM)

That is good news, however it appears that the two alerts are false positives. I dug into it a bit and it appears both drives are virtual drives exposed by the idrac:

root@aqs1007:~# lsblk -S /dev/{sdm,sdh}
NAME HCTL       TYPE VENDOR   MODEL             REV TRAN
sdh  10:0:0:0   disk iDRAC    MAS001           0329 usb
sdm  11:0:0:0   disk iDRAC    MAS025           0329 usb

I then went digging in the Prometheus smartmon script, https://github.com/prometheus-community/node-exporter-textfile-collector-scripts/blob/master/smartmon.py, only to discover that we wrote our own.

However neither theirs nor ours seems to provide a way to skip a certain vendor or model of a drive.

I think we should augment the script to query the vendor via /sys/, i.e. cat /sys/block/sdm/device/vendor in addition to or instead of querying via smartctl, so that we can exclude idrac devices.

+1 to exclude list, thank you for digging out the root cause. Just as an historical/contextual note I can't remember at the minute why we went with our implementation of smartmon.py (it is possible it wasn't available at the time though). Having said that, nowadays it might make sense to move to upstream' smartmon (100% out of scope for this task, but putting it out there)

The other thing to note is that aqs1007 and its idrac devices seem definitely a mis-setup of idrac / unexpected situation (e.g. aqs1008 doesn't have the idrac disks) and the host is pending decom (according to T304938, I can't find the decom task itself).

gerritbot added a comment.Apr 14 2022, 7:20 PM

Change 780990 had a related patch set uploaded (by JHathaway; author: JHathaway):

[operations/puppet@production] smart_data_dump: skip over iDRAC devices

https://gerrit.wikimedia.org/r/780990

gerritbot added a project: Patch-For-Review.Apr 14 2022, 7:20 PM
jhathaway added a comment.Apr 14 2022, 7:24 PM

+1 to exclude list, thank you for digging out the root cause. Just as an historical/contextual note I can't remember at the minute why we went with our implementation of smartmon.py (it is possible it wasn't available at the time though). Having said that, nowadays it might make sense to move to upstream' smartmon (100% out of scope for this task, but putting it out there)

I added a patch to exclude iDRAC devices. It appears our code predates upstream's code and it looks like it would take a fair bit of work to the upstream code in order to reach feature parity with ours.

The other thing to note is that aqs1007 and its idrac devices seem definitely a mis-setup of idrac / unexpected situation (e.g. aqs1008 doesn't have the idrac disks) and the host is pending decom (according to T304938, I can't find the decom task itself).

Good point, however I suspect we may see these devices pop up from time to time.

gerritbot added a comment.Apr 19 2022, 7:48 PM

Change 780990 merged by JHathaway:

[operations/puppet@production] smart_data_dump: skip over iDRAC devices

https://gerrit.wikimedia.org/r/780990

Maintenance_bot removed a project: Patch-For-Review.Apr 19 2022, 8:31 PM
gerritbot added a comment.Apr 25 2022, 9:07 PM

Change 785921 had a related patch set uploaded (by JHathaway; author: JHathaway):

[operations/puppet@production] icinga: remove SMART check

https://gerrit.wikimedia.org/r/785921

gerritbot added a project: Patch-For-Review.Apr 25 2022, 9:07 PM
gerritbot added a comment.Apr 26 2022, 5:44 PM

Change 785921 merged by JHathaway:

[operations/puppet@production] icinga: remove SMART check

https://gerrit.wikimedia.org/r/785921

Maintenance_bot removed a project: Patch-For-Review.Apr 26 2022, 6:31 PM
Content licensed under Creative Commons Attribution-ShareAlike 3.0 (CC-BY-SA) unless otherwise noted; code licensed under GNU General Public License (GPL) or other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL