POWERMON-235: Add support for Redfish

bundle/manifests/kepler-operator.clusterserviceversion.yaml

@@ -27,7 +27,7 @@ metadata:
     capabilities: Basic Install
     categories: Monitoring
     containerImage: quay.io/sustainable_computing_io/kepler-operator:0.10.0
-    createdAt: "2024-02-15T04:47:16Z"
+    createdAt: "2024-03-01T19:29:40Z"
     description: 'Deploys and Manages Kepler on Kubernetes '
     operators.operatorframework.io/builder: operator-sdk-v1.27.0
     operators.operatorframework.io/internal-objects: |-
@@ -117,6 +117,7 @@ spec:
           resources:
           - daemonsets
           - deployments
+          - secrets
           verbs:
           - create
           - delete
@@ -155,6 +156,7 @@ spec:
           - nodes/metrics
           - nodes/proxy
           - nodes/stats
+          - secrets
           verbs:
           - get
           - list

bundle/manifests/kepler.system.sustainable.computing.io_keplerinternals.yaml

@@ -221,6 +221,25 @@ spec:
                     - image
                     - namespace
                     type: object
+                  redfish:
+                    description: RedfishSpec for connecting to Redfish API
+                    properties:
+                      probeInterval:
+                        description: ProbeInterval controls how frequently power info
+                          is queried from Redfish
+                        type: string
+                      secretRef:
+                        description: SecretRef refers to the name of secret which
+                          contains credentials to initialize RedfishClient
+                        type: string
+                      skipSSLVerify:
+                        default: false
+                        description: SkipSSLVerify controls if RedfishClient will
+                          skip verifying server
+                        type: boolean
+                    required:
+                    - secretRef
+                    type: object
                 required:
                 - deployment
                 type: object

bundle/manifests/kepler.system.sustainable.computing.io_keplers.yaml

@@ -139,6 +139,25 @@ spec:
                           type: object
                         type: array
                     type: object
+                  redfish:
+                    description: RedfishSpec for connecting to Redfish API
+                    properties:
+                      probeInterval:
+                        description: ProbeInterval controls how frequently power info
+                          is queried from Redfish
+                        type: string
+                      secretRef:
+                        description: SecretRef refers to the name of secret which
+                          contains credentials to initialize RedfishClient
+                        type: string
+                      skipSSLVerify:
+                        default: false
+                        description: SkipSSLVerify controls if RedfishClient will
+                          skip verifying server
+                        type: boolean
+                    required:
+                    - secretRef
+                    type: object
                 type: object
             type: object
           status:

config/crd/bases/kepler.system.sustainable.computing.io_keplerinternals.yaml

@@ -221,6 +221,25 @@ spec:
                     - image
                     - namespace
                     type: object
+                  redfish:
+                    description: RedfishSpec for connecting to Redfish API
+                    properties:
+                      probeInterval:
+                        description: ProbeInterval controls how frequently power info
+                          is queried from Redfish
+                        type: string
+                      secretRef:
+                        description: SecretRef refers to the name of secret which
+                          contains credentials to initialize RedfishClient
+                        type: string
+                      skipSSLVerify:
+                        default: false
+                        description: SkipSSLVerify controls if RedfishClient will
+                          skip verifying server
+                        type: boolean
+                    required:
+                    - secretRef
+                    type: object
                 required:
                 - deployment
                 type: object

config/crd/bases/kepler.system.sustainable.computing.io_keplers.yaml

@@ -129,6 +129,25 @@ spec:
                           type: object
                         type: array
                     type: object
+                  redfish:
+                    description: RedfishSpec for connecting to Redfish API
+                    properties:
+                      probeInterval:
+                        description: ProbeInterval controls how frequently power info
+                          is queried from Redfish
+                        type: string
+                      secretRef:
+                        description: SecretRef refers to the name of secret which
+                          contains credentials to initialize RedfishClient
+                        type: string
+                      skipSSLVerify:
+                        default: false
+                        description: SkipSSLVerify controls if RedfishClient will
+                          skip verifying server
+                        type: boolean
+                    required:
+                    - secretRef
+                    type: object
                 type: object
             type: object
           status:

config/rbac/role.yaml

@@ -9,6 +9,7 @@ rules:
   resources:
   - daemonsets
   - deployments
+  - secrets
   verbs:
   - create
   - delete
@@ -47,6 +48,7 @@ rules:
   - nodes/metrics
   - nodes/proxy
   - nodes/stats
+  - secrets
   verbs:
   - get
   - list

docs/api.md

@@ -140,6 +140,13 @@ KeplerInternalSpec defines the desired state of KeplerInternal
           <br/>
         </td>
         <td>true</td>
+      </tr><tr>
+        <td><b><a href="#keplerinternalspecexporterredfish">redfish</a></b></td>
+        <td>object</td>
+        <td>
+          RedfishSpec for connecting to Redfish API<br/>
+        </td>
+        <td>false</td>
       </tr></tbody>
 </table>
 
@@ -265,6 +272,49 @@ The pod this Toleration is attached to tolerates any taint that matches the trip
 </table>
 
 
+### KeplerInternal.spec.exporter.redfish
+<sup><sup>[↩ Parent](#keplerinternalspecexporter)</sup></sup>
+
+
+
+RedfishSpec for connecting to Redfish API
+
+<table>
+    <thead>
+        <tr>
+            <th>Name</th>
+            <th>Type</th>
+            <th>Description</th>
+            <th>Required</th>
+        </tr>
+    </thead>
+    <tbody><tr>
+        <td><b>secretRef</b></td>
+        <td>string</td>
+        <td>
+          SecretRef refers to the name of secret which contains credentials to initialize RedfishClient<br/>
+        </td>
+        <td>true</td>
+      </tr><tr>
+        <td><b>probeInterval</b></td>
+        <td>string</td>
+        <td>
+          ProbeInterval controls how frequently power info is queried from Redfish<br/>
+        </td>
+        <td>false</td>
+      </tr><tr>
+        <td><b>skipSSLVerify</b></td>
+        <td>boolean</td>
+        <td>
+          SkipSSLVerify controls if RedfishClient will skip verifying server<br/>
+          <br/>
+            <i>Default</i>: false<br/>
+        </td>
+        <td>false</td>
+      </tr></tbody>
+</table>
+
+
 ### KeplerInternal.spec.estimator
 <sup><sup>[↩ Parent](#keplerinternalspec)</sup></sup>
 
@@ -1518,6 +1568,13 @@ KeplerSpec defines the desired state of Kepler
           <br/>
         </td>
         <td>false</td>
+      </tr><tr>
+        <td><b><a href="#keplerspecexporterredfish">redfish</a></b></td>
+        <td>object</td>
+        <td>
+          RedfishSpec for connecting to Redfish API<br/>
+        </td>
+        <td>false</td>
       </tr></tbody>
 </table>
 
@@ -1629,6 +1686,49 @@ The pod this Toleration is attached to tolerates any taint that matches the trip
 </table>
 
 
+### Kepler.spec.exporter.redfish
+<sup><sup>[↩ Parent](#keplerspecexporter)</sup></sup>
+
+
+
+RedfishSpec for connecting to Redfish API
+
+<table>
+    <thead>
+        <tr>
+            <th>Name</th>
+            <th>Type</th>
+            <th>Description</th>
+            <th>Required</th>
+        </tr>
+    </thead>
+    <tbody><tr>
+        <td><b>secretRef</b></td>
+        <td>string</td>
+        <td>
+          SecretRef refers to the name of secret which contains credentials to initialize RedfishClient<br/>
+        </td>
+        <td>true</td>
+      </tr><tr>
+        <td><b>probeInterval</b></td>
+        <td>string</td>
+        <td>
+          ProbeInterval controls how frequently power info is queried from Redfish<br/>
+        </td>
+        <td>false</td>
+      </tr><tr>
+        <td><b>skipSSLVerify</b></td>
+        <td>boolean</td>
+        <td>
+          SkipSSLVerify controls if RedfishClient will skip verifying server<br/>
+          <br/>
+            <i>Default</i>: false<br/>
+        </td>
+        <td>false</td>
+      </tr></tbody>
+</table>
+
+
 ### Kepler.status
 <sup><sup>[↩ Parent](#kepler)</sup></sup>
 

pkg/api/v1alpha1/kepler_internal_types.go

@@ -39,6 +39,8 @@ type InternalExporterDeploymentSpec struct {
 type InternalExporterSpec struct {
 	// +kubebuilder:validation:Required
 	Deployment InternalExporterDeploymentSpec `json:"deployment"`
+
+	Redfish *RedfishSpec `json:"redfish,omitempty"`
 }
 
 type DashboardSpec struct {

pkg/api/v1alpha1/kepler_types.go

@@ -38,8 +38,25 @@ type ExporterDeploymentSpec struct {
 	Tolerations []corev1.Toleration `json:"tolerations,omitempty"`
 }
 
+// RedfishSpec for connecting to Redfish API
+type RedfishSpec struct {
+	// SecretRef refers to the name of secret which contains credentials to initialize RedfishClient
+	SecretRef string `json:"secretRef"`
+
+	// ProbeInterval controls how frequently power info is queried from Redfish
+	// +optional
+	ProbeInterval metav1.Duration `json:"probeInterval,omitempty"`
+
+	// SkipSSLVerify controls if RedfishClient will skip verifying server
+	// +optional
+	// +kubebuilder:validation:Required
+	// +kubebuilder:default:=false
+	SkipSSLVerify bool `json:"skipSSLVerify,omitempty"`
+}
+
 type ExporterSpec struct {
 	Deployment ExporterDeploymentSpec `json:"deployment,omitempty"`
+	Redfish    *RedfishSpec           `json:"redfish,omitempty"`
 }
 
 // KeplerSpec defines the desired state of Kepler

pkg/components/exporter/exporter.go

@@ -45,6 +45,11 @@ const (
 	overviewDashboardName = "power-monitoring-overview"
 	nsInfoDashboardName   = "power-monitoring-by-ns"
 	DashboardNs           = "openshift-config-managed"
+	REDFISH_ARGS          = "-redfish-cred-file-path=/etc/redfish/redfish.csv"
+	REDFISH_CSV           = "redfish.csv"
+	REDFISH_ANNOTATION    = "kepler.system.sustainable.computing.io/redfish-secret-ref"
+
+	IdxKeplerContainer = 0
 )
 
 var (
@@ -132,6 +137,19 @@ func NewDaemonSet(detail components.Detail, k *v1alpha1.KeplerInternal) *appsv1.
 	}
 }
 
+func MountRedfishSecretToDaemonSet(ds *appsv1.DaemonSet, secret *corev1.Secret) {
+	spec := ds.Spec.Template.Spec
+	spec.Containers[IdxKeplerContainer].Command = append(spec.Containers[IdxKeplerContainer].Command, REDFISH_ARGS)
+	spec.Containers[IdxKeplerContainer].VolumeMounts = append(spec.Containers[IdxKeplerContainer].VolumeMounts,
+		corev1.VolumeMount{Name: "redfish-cred", MountPath: "/etc/redfish", ReadOnly: true})
+	spec.Volumes = append(spec.Volumes,
+		k8s.VolumeFromSecret("redfish-cred", secret.ObjectMeta.Name))
+	ds.Spec.Template.Spec = spec
+	ds.Spec.Template.Annotations = map[string]string{
+		REDFISH_ANNOTATION: secret.ResourceVersion,
+	}
+}
+
 func openshiftDashboardObjectMeta(name string) metav1.ObjectMeta {
 	return metav1.ObjectMeta{
 		Name:      name,
@@ -377,6 +395,7 @@ func NewSCC(d components.Detail, ki *v1alpha1.KeplerInternal) *secv1.SecurityCon
 		Users: []string{ki.FQServiceAccountName()},
 		Volumes: []secv1.FSType{
 			secv1.FSType("configMap"),
+			secv1.FSType("secret"),
 			secv1.FSType("projected"),
 			secv1.FSType("emptyDir"),
 			secv1.FSType("hostPath")},
@@ -596,7 +615,6 @@ func newExporterContainer(kiName, dsName string, deployment v1alpha1.InternalExp
 			"-enable-gpu=$(ENABLE_GPU)",
 			"-v=$(KEPLER_LOG_LEVEL)",
 			"-kernel-source-dir=/usr/share/kepler/kernel_sources",
-			"-redfish-cred-file-path=/etc/redfish/redfish.csv",
 		},
 		Ports: []corev1.ContainerPort{{
 			ContainerPort: int32(deployment.Port),