Add initial Tracing with OpenTelemetry

[lilic]

This PR adds initial tracing using OpenTelemetry, as per discussion on the #12460. Let me know if we want this merged in 3.5, I believe it still adds value and observability with some tradeoffs to resource usage, that I detailed below.

This introduces:

• Setups up OpenTelemetry tracing.
• New experimental flags for Tracing which for enabling tracing, specifying OpenTelemetry collector address and customizing service name. Usage:
  etcd --experimental-enable-tracing --experimental-tracing-address="0.0.0.0:55680" --experimental-tracing-service-name="etcd-new"
• Only if the experimental-enable-tracing is enabled does tracing of the gRPC start collecting.
• This is how the traces look like visulazed in jaeger UI:

And the individual gRPC request span:

Performance/resource usage

I ran an initial small load with tracing on and found that overall on average it adds a 1.5% - 4% CPU overhead:

This is the merged profile during the total load test: https://share.polarsignals.com/d92bfce/, we can see under the icicle graph there that the otelgrpc.UnaryServerInterceptor function was 1.84% of the total CPU. Plus extra 0.84% CPU time in the otelgrpc.messageType.Event.

In some individual profiles, we can see around 4.71% CPU overhead. https://share.polarsignals.com/e5d524c/

Happy to share more profiles, if needed, or run more load tests!

Open Questions

1. Do we need to add tracing to the grpc-proxy as well?
2. OpenTelemetry go client is not yet GA or stable, between the last two minor releases there were some breaking changes, is that okay for etcd? Can we bump the version of this in a patch etcd release or after code freeze?

Follow up improvements and features:

• I will add some documentation if we decide to merge this in a follow-up PR. And mention the above resource overhead to users.
• We can add more finite traces for various parts of the codebase in the future.
• More configuration options in the future, like sampling configuration.

[lilic]

@ptabor @dashpole @logicalhan @hexfusion please have a look, thank you!

[dims]

@lilic just to be sure zero cost if experimental-enable-tracing is false (which is default) right?

[hexfusion]

Thanks, @lilic overall I think this is a nice feature to try and move forward into 3.5. apiserver[1] is working on this as well so the pairing will be an important part of the observability story for k8s. While the performance hit is unfortunate documenting it as such and gating under an experimental flag seems appropriate. My understanding is that there are continuing efforts to improve performance. +1

[1] kubernetes/kubernetes#94942

[hexfusion]

would it make sense to use etcd name and reduce flag footprint?

[lilic]

Having the ability to specify the name allows you to collect the traces from all the running instances of etcd separately, so you can detect issues per running instance of etcd, this way you can in your UI select just the instance you had an issue with and troubleshoot.

[gyuho]

Having the ability to specify the name allows you to collect the traces from all the running instances of etcd separately, so you can detect issues per running instance of etcd, this way you can in your UI select just the instance you had an issue with and troubleshoot.

Can we have this as flag description or some format of doc :)

e.g.,

// ExperimentalTracingServiceName is the tracing service name for
// OpenTelemetry (if enabled) -- "etcd" is the default service name.
// When shared, all telemetry data are aggregated under the same namespace.
// Use different names in order to collect data per each node.

(if I understand your comment correctly)

[lilic]

That is a good idea, will add it there!

The plan was to also add some docs if PR is merged, maybe similar to where metrics docs are right now.

[hexfusion]

Having the ability to specify the name allows you to collect the traces from all the running instances of etcd separately, so you can detect issues per running instance of etcd, this way you can in your UI select just the instance you had an issue with and troubleshoot.

If I understand what your saying this name should be unique per etcd? This is why I was wondering if using etcd member name[1] which is unique for the cluster would make sense maybe as a default.

[1]https://github.com/etcd-io/etcd/blob/master/server/config/config.go#L37

[logicalhan]

Oh I like that idea.

[lilic]

Yes should be unique per etcd process/member.

Missed this comment sorry, nice will use that as default! But I think we should still let users override it.

[lilic]

On second thought, if the name is not passed it defaults to... default. IMHO this makes the discoverability out of the box in the tracing UI a bit harder, when the service is called default. Should we stick to Name as default or constant"etcd"?

[hexfusion]

how about if the name is default use etcd otherwise use name and allow override with flag?

[lilic]

just to be sure zero cost if experimental-enable-tracing is false (which is default) right?

Exactly, we only ever enable OTel tracing if that flag is passed yes.

You can see this more clearly here https://share.polarsignals.com/442c0d2/ I ran some load when the experimental-enable-tracing flag was passed and the same load when the flag was not enabled, you can see the CPU diff if you look at the top view and search for telemetry.

[gyuho]

Looks great overall. Requesting some minor changes. Thanks!

[gyuho]

Having the ability to specify the name allows you to collect the traces from all the running instances of etcd separately, so you can detect issues per running instance of etcd, this way you can in your UI select just the instance you had an issue with and troubleshoot.

Can we have this as flag description or some format of doc :)

e.g.,

// ExperimentalTracingServiceName is the tracing service name for
// OpenTelemetry (if enabled) -- "etcd" is the default service name.
// When shared, all telemetry data are aggregated under the same namespace.
// Use different names in order to collect data per each node.

(if I understand your comment correctly)

[codecov-commenter]

⚠️ Please install the to ensure uploads and comments are reliably processed by Codecov.

Codecov Report

Attention: Patch coverage is 12.28070% with 50 lines in your changes missing coverage. Please review.

Project coverage is 72.77%. Comparing base (a8f38eb) to head (3cdd242).

Files with missing lines	Patch %	Lines
server/embed/etcd.go	2.08%	45 Missing and 2 partials ⚠️
server/etcdserver/api/v3rpc/grpc.go	40.00%	2 Missing and 1 partial ⚠️

❗ Your organization needs to install the Codecov GitHub app to enable full functionality.

Additional details and impacted files

@@            Coverage Diff             @@
##           master   #12919      +/-   ##
==========================================
- Coverage   73.12%   72.77%   -0.36%     
==========================================
  Files         430      430              
  Lines       34185    34238      +53     
==========================================
- Hits        24998    24915      -83     
- Misses       7252     7376     +124     
- Partials     1935     1947      +12     

Flag	Coverage Δ
all	72.77% <12.28%> (-0.36%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[gyuho]

@lilic On second thought. tracing is not descriptive enough, given that we do already have tracing within etcd process. I think we should name it something like distributed-tracing?

[lilic]

I think that is a good idea yes, for clarity! So we would have everything prefixed with experimental-distributed-tracing-*.

[lilic]

I noticed the help text file (server/etcdmain/help.go) , is there a way to generate that file or is it manually edited?

[logicalhan]

lgtm :)

[gyuho]

I noticed the help text file (server/etcdmain/help.go) , is there a way to generate that file or is it manually edited?

We manually edit :)

[gyuho]

lgtm, thanks!

[dashpole]

Just to call this out to reviewers less familiar with opentelemetry: This is setting a global variable, which is used by tracing libraries. In the kubernetes APIServer, we will likely avoid doing this by explicitly passing the TracerProvider to the libraries we want to do tracing. It is more code, but avoids global variables. Not saying you should do it one way or another, but wanted to point it out.

[lilic]

Thanks! Agreed on globals! 💯 Right now we are not creating any indivual spans only using the gRPC so I don't see it being different, but I could be wrong?

[dashpole]

If, for example, a library you rely on added OpenTelemetry tracing, you would start getting traces from that library without changing anything on your end, since it will look up the global TracerProvider to see where to send traces. That may or may not be desirable. Also, if you have multiple different "services" in the same go binary, you can't customize the TracerProviders individually for each service while using the global TracerProvider. I think it is perfectly fine to start with using the global one, though.

[ptabor]

Embed server is being used 'as a library' by our customers. Also in tests we create multiple instances of Embed server to mimic multiple etcd nodes. Recently we get rid of 'global loggers' (including grpc loggers) being overridden by each of the embed servers (leading to misleading zap-fields being reported).

I don't know how differently otl can be configured for different libs, but having lib-specific tracer seems to be on the safer side.

[lilic]

I am all for removing globals, I felt the pain many times with Prometheus global registry (which I would love to remove from etcd one day as well, if folks agree).

From what I can tell we can pass it via https://pkg.go.dev/go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc#WithTracerProvider, so will do that.

[lilic]

Side note here: @dashpole I would love to see the default examples have all the knowledge you shared here, as all the various tutorials and examples out there for OTel use global registry and essentially do what I did initially. I fear this will cause some of the same issues as Prometheus has with the global registry (think etcd + apiserver). What do you think?

[dashpole]

Agreed. I opened https://github.com/open-telemetry/opentelemetry-go/issues/1888

[Aneurysm9]

Embed server is being used 'as a library' by our customers. Also in tests we create multiple instances of Embed server to mimic multiple etcd nodes.

If the embedded server is used as a library it may be better to avoid use of the OTel SDK at all and only use the API. In that case the server should receive its TracerProvider and propagators using the API interfaces from the main package that has instantiated them with the SDK. That would allow the consumer of the embedded server to decide whether to enable tracing, which exporters and propagators to use, even which SDK to use if alternate implementations of the SDK become available.

[dashpole]

in addition to setting the global TracerProvider, you should also set the global propagators:

otel.SetTextMapPropagator(propagation.NewCompositeTextMapPropagator(propagation.TraceContext{}, propagation.Baggage{}))

The TraceContext propagator will allow linking traces from the APIServer to etcd, and Baggage allows passing additional tags via context.

[dashpole]

One thing you don't do here, but probably should is add a sampling policy. The default is to ParentBased(AlwaysSample) (always sample unless there is an incoming parent context that is explicitly not sampled), which is quite verbose. Something like sampling 1% of requests is probably more appropriate. But that can easily be done in a follow-up

[lilic]

But that can easily be done in a follow-up

Yes agreed, this was a minimal PR and was also one of my questions in the PR description, if we can do follow-ups even in the patch releases that would include new configurations.

[ptabor]

The tests fail due to:

FAIL: inconsistent versions for depencency: github.com/golang/protobuf
  - github.com/golang/protobuf@v1.5.1 from: go.etcd.io/etcd/api/v3
  - github.com/golang/protobuf@v1.5.1 from: go.etcd.io/etcd/raft/v3
  - github.com/golang/protobuf@v1.5.2 from: go.etcd.io/etcd/server/v3
  - github.com/golang/protobuf@v1.5.2 from: go.etcd.io/etcd/tests/v3
FAIL: inconsistent versions for depencency: google.golang.org/grpc
  - go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc@v0.20.0 from: go.etcd.io/etcd/server/v3
  - google.golang.org/grpc@v1.36.1 from: go.etcd.io/etcd/api/v3
  - google.golang.org/grpc@v1.36.1 from: go.etcd.io/etcd/client/pkg/v3
  - google.golang.org/grpc@v1.36.1 from: go.etcd.io/etcd/client/v3
  - google.golang.org/grpc@v1.36.1 from: go.etcd.io/etcd/pkg/v3
  - google.golang.org/grpc@v1.37.0 from: go.etcd.io/etcd/etcdctl/v3
  - google.golang.org/grpc@v1.37.0 from: go.etcd.io/etcd/server/v3
  - google.golang.org/grpc@v1.37.0 from: go.etcd.io/etcd/tests/v3
  - google.golang.org/grpc@v1.37.0 from: go.etcd.io/etcd/v3
FAIL: inconsistent dependencies

Should get fixed by:

./scripts/update_dep.sh  github.com/golang/protobuf v1.5.2
./scripts/update_dep.sh google.golang.org/grpc v1.37.0

[lilic]

Okay, this should be ready for another look:

• I added ability of setting service instance ID which should be the unique key, with service name being always the same (added comments)
• Removed the global setting and I instead pass the tracer around to the gRPC.
• Various other safe guard checks.

Please have another look, thank you!

TODO from my side:

• Change help text once we decide on the flag names and default values as its manual process.
• Add a changelog entry?
• Will add some docs in a follow-up PR.

[hexfusion]

so if Instance ID is empty string is that an error?

[lilic]

As this field is optional in OTel I wouldn't return any errors just skip. We just don't add it, as that is our default value, but also as an empty string can never be unique and the ID must be unique. Happy to do another approach here well, suggestions welcome!

[hexfusion]

yeah I think driving reasonable defaults from the current member would be a nice option. If the flag is not required folks will leave it blank and then get errors later on. as noted above etcd name or peerURL could be considered.

[hexfusion]

this could be a followup

[lilic]

etcd name is not unique per etcd instance, at least not by default (default :) ). But happy to do peerURL.

There tend to be two approaches from what I have seen, either nothing by default or in some places, hostname is what some projects use the default.

[dashpole]

lgtm!

[ptabor]

./scripts/fix.sh needed to refresh bom

[lilic]

Thank you all, some new changes: I ran the above script, added the changelog entries and the help text for the flags. Please have another look.

[gyuho]

lgtm. Let's follow up in separate PRs for other changes mentioned here.