Skip to content

worker & executor: use vector to forward logs from executor to worker (HMS-9304) #4858

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

worker & executor: use vector to forward logs from executor to worker (HMS-9304) #4858

wants to merge 2 commits into from

Conversation

croissanne
Copy link
Member

@croissanne croissanne commented Sep 9, 2025
edited
Loading

This is a requirement to remove internet access from the executors entirely, yet keep logging.

Mind that this is just the first step, removing internet access would need to be done after the forwarding has been shown to work properly.

@croissanne croissanne requested review from lzap and bcl and removed request for a team September 9, 2025 09:25
lzap
lzap previously approved these changes Sep 9, 2025
View reviewed changes
Copy link
Contributor

@lzap lzap left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM couple of minors.

@croissanne
templates/packer: add vector forwarding from executor to worker
8c41f07 
This configures forwarding from the executor to the worker to
cloudwatch.

This prepares for removing internet access from the executor. Vector
forwarding via the worker is easier than trying to get the executor
cloudwatch access through VPC endpoints. The latter would make the
secure instance code a lot more complex.
@croissanne
cloud/aws: forward host address to the executor
99cd89d 
The executor can use this to stream logs via vector.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lzap lzap lzap approved these changes

@kingsleyzissou kingsleyzissou Awaiting requested review from kingsleyzissou kingsleyzissou is a code owner

@schuellerf schuellerf Awaiting requested review from schuellerf schuellerf is a code owner

@thozza thozza Awaiting requested review from thozza thozza is a code owner

@bcl bcl Awaiting requested review from bcl bcl is a code owner automatically assigned from osbuild/osbuild-reviewers

@ondrejbudai ondrejbudai Awaiting requested review from ondrejbudai

At least 2 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@croissanne @lzap