Application Troubleshooting

    The Kubernetes command line interface has several features for inspecting applications running in Pods. Some examples are as follows.

    • Viewing application logs (kubectl logs).
    • Attaching to a running container (kubectl attach).
    • Executing a process in a container and opening a terminal session (kubectl exec).
    • Port forwarding to a container (kubectl port-forward).

    Troubleshooting and debugging have consistently been a top priority from a user’s point of view. See:

    • Update the UI to allow easier troubleshooting of problem containers.
      • Allow users to execute arbitrary processes in containers.
      • Improve the UI so that troubleshooting functions are easier to find and use.
      • Attaching to the container process (e.g. kubectl attach) will be out of scope due to low priority. End users can solve most problems by viewing logs.
      • Port forwarding and API server proxy will be out of scope due to low priority and technical issues.

    Use cases for opening a terminal session are numerous and highly application specific. The use cases are similar to use cases for opening an SSH session to a server.

    Some generic use cases include but are not limited to:

    • Verifying the contents of files.
      • Files in the container image.
      • Files written by a process in the container.
      • Files in mounted volumes (PersistentVolume, ConfigMap, Secret, etc.)
    • Listing and verifying the state of processes.
    • Running commands to verify the output of a process.
    • Troubleshooting performance issues.
      • Verifying CPU/memory usage of processes.
        • Validating this against CPU/memory usage recorded by Kubernetes.
        • Comparing usage with CPU/memory limits imposed on the container.

    The basis of the design is adding one new feature and updating the UI so that troubleshooting features are logically grouped.

    • Terminal: Allow users to create a terminal session in a container from the UI.
    • UI Improvements: Logically group Details, Logs, and Terminal to allow for smoother troubleshooting.

    The UI will be improved to add tabs to a pod detail page. The tabs will include:

    • Details
    • Logs
    • Terminal

    End users can switch between the Details, Logs, and Terminal tabs without reloading the page. Users can switch tabs without ending an existing terminal session. This is important so that users can view logs or detailed pod information without losing their work in the terminal.

    The Logs tab is equivalent to the existing Logs page.

    Application Troubleshooting - 图2

    Terminal

    The terminal will allow users to execute arbitrary commands inside a container. When a user switches to the Terminal tab for the first time, Dashboard will establish a terminal session. The terminal will attempt to run the standard ‘/bin/sh’ shell command in the container. If ‘/bin/sh’ is present and executable users can use it to execute arbitrary commands in the shell environment.

    The terminal will allow the user to switch between containers in the pod. Dashboard will also show the status of the session. Dashboard will indicate when the user is disconnected and allow them to reconnect.

    Application Troubleshooting - 图4

    .

    The Kubernetes API for running commands requires the executed command to be in list format. The pseudo-terminal will take the commands as the user types them and perform simple shell escaping to break the full command into its arguments.

    • The shell will split the full command into command + arguments by delimiting by space.
    • … however. use of quotes will be respected. e.g. /mycommand -test “foo bar” will be split into “/mycommand”, “-test”, “foo bar”

    Similar Features in Other UIs

    Several other UIs have similar troubleshooting features.

    OpenShift

    The terminal feature was heavily influenced by the terminal feature in OpenShift. OpenShift’s terminal runs the ‘/bin/sh’ command automatically as outlined in this document, however it does not allow running of commands if the ‘/bin/sh’ command is not present in the container.

    Application Troubleshooting - 图6

    Cabin

    Cabin is a mobile application for interacting with a Kubernetes cluster. Cabin includes an exec feature that allows the user to execute commands in containers. Cabin allows the execution of commands but does not support running the command in a tty or piping stdin to the container.