commit c72aa433ff68b76317233ba8805d55845e9efd1a
author Serge Bazanski <serge@monogon.tech> Wed Sep 22 09:35:16 2021 +0200
committer Sergiusz Bazanski <serge@monogon.tech> Mon Sep 27 18:54:36 2021 +0000
tree ecdcb336a19c6cca8bbd426870b2ca023ec55207
parent 080f7ff710e359f2dab0d8ace98f0aa8e443d98d

m/n/k/containerd: less verbose runsc logging

This disables debug logging on non -c dbg builds of Metropolis, making
the console output less verbose.

This should maybe just be 'fixed' by making logtree -> console smarter,
ie. implement log output filters, but this will do for now - and I think
in general we don't want to have super verbose per-syscall logging
enabled unless necessary.

The implementation picks between two runsc .tomls to build the node
image with, which works for now but we might have to move to a
full-blown config generator (build-time or runtime) when we also start
having differences between containerd.toml.

Change-Id: I5539ca6f4763a769e879f7d50637aa36f3ffd29b
Reviewed-on: https://review.monogon.dev/c/monogon/+/327
Reviewed-by: Mateusz Zalega <mateusz@monogon.tech>

metropolis/node/kubernetes/containerd/BUILD.bazel

diff --git a/metropolis/node/kubernetes/containerd/BUILD.bazel b/metropolis/node/kubernetes/containerd/BUILD.bazel
index 5767af2..58534d7 100644
--- a/metropolis/node/kubernetes/containerd/BUILD.bazel
+++ b/metropolis/node/kubernetes/containerd/BUILD.bazel
@@ -15,6 +15,14 @@
 
 exports_files([
     "config.toml",
-    "runsc.toml",
     "cnispec.gojson",
 ])
+
+alias(
+    name = "runsc.toml",
+    actual = select({
+        "//metropolis/node:debug_build": ":runsc_debug.toml",
+        "//conditions:default": ":runsc_nondebug.toml",
+    }),
+    visibility = ["//metropolis/node:__pkg__"],
+)

metropolis/node/kubernetes/containerd/runsc_debug.toml

diff --git a/metropolis/node/kubernetes/containerd/runsc.toml b/metropolis/node/kubernetes/containerd/runsc_debug.toml
similarity index 100%
rename from metropolis/node/kubernetes/containerd/runsc.toml
rename to metropolis/node/kubernetes/containerd/runsc_debug.toml

metropolis/node/kubernetes/containerd/runsc_nondebug.toml

diff --git a/metropolis/node/kubernetes/containerd/runsc_nondebug.toml b/metropolis/node/kubernetes/containerd/runsc_nondebug.toml
new file mode 100644
index 0000000..5a80a30
--- /dev/null
+++ b/metropolis/node/kubernetes/containerd/runsc_nondebug.toml
@@ -0,0 +1,5 @@
+root = "/ephemeral/containerd/runsc"
+[runsc_config]
+debug = "false"
+panic-log = "/ephemeral/containerd/runsc-logs.fifo"
+log = "/ephemeral/containerd/runsc-logs.fifo"