打开查询日志文件时出错“file=/prometheus/ query ies.Active err=”打开/prometheus/query ies.active:权限被拒绝
打开查询日志文件时出错“file=/prometheus/ query ies.Active err=”打开/prometheus/query ies.active:权限被拒绝
提问于 2021-02-16 16:45:43
尝试使用非根用户运行prometheus,在尝试了https://github.com/prometheus/prometheus/issues/5976的许多建议后,它对我不起作用,我得到了:
level=error ts=xxxxxxxx caller=query_logger.go:87 component=activeQueryTracker msg="Error opening query log file" file=/prometheus/queries.active err="open /prometheus/queries.active: permission denied"
level=error ts=xxxxxxx caller=query_logger.go:87 component=activeQueryTracker msg="Error opening query log file" file=/prometheus/queries.active err="open /prometheus/queries.active: permission denied"
panic: Unable to create mmap-ed active query log
panic: Unable to create mmap-ed active query log下面是我的Dockerfile:
FROM <xxxx>
ARG PROMETHEUS_VERSION=2.17.2
# Dependencies
RUN apk add --update --no-cache \
ruby=~2 \
curl=~7
# Download prometheus
RUN curl -k -LSs --output /tmp/prometheus.tar.gz \
https://github.com/prometheus/prometheus/releases/download/v${PROMETHEUS_VERSION}/prometheus-${PROMETHEUS_VERSION}.linux-amd64.tar.gz && \
tar -C /tmp --strip-components=1 -zoxf /tmp/prometheus.tar.gz && \
rm -f /tmp/prometheus.tar.gz && \
mkdir -p /usr/share/prometheus && \
mv /tmp/prometheus /bin/ && \
mv /tmp/promtool /bin/ && \
mv /tmp/consoles /usr/share/prometheus/consoles && \
mv /tmp/console_libraries /usr/share/prometheus/console_libraries
# Adding config file
COPY config/ /etc/prometheus/config
# Adding Alert rule config file
COPY rules/ /etc/prometheus/rules
# Giving access to unpriviliged user to access prometheus configs
RUN ln -s /usr/share/prometheus/consoles /usr/share/prometheus/console_libraries /etc/prometheus/ && \
mkdir -p /prometheus && \
chown -R user:user /etc/prometheus && \
chmod -R a+rwx /prometheus
# Adding custom entrypoint
COPY entrypoint.rb /entrypoint.rb
# Using unprivileged user
USER user
# Expose prometheus port
EXPOSE 9090
# Data volume
VOLUME [ "/prometheus" ]
# Working from data dir
WORKDIR /prometheus
# Set custom entrypoint
ENTRYPOINT [ "/entrypoint.rb" ]
# Override default CMD
CMD [ \
"--storage.tsdb.path=/prometheus", \
"--web.console.libraries=/usr/share/prometheus/console_libraries", \
"--web.console.templates=/usr/share/prometheus/consoles" \
]以前有没有人遇到过这种情况,或者可以发现潜在的问题在哪里?
回答 1
Stack Overflow用户
发布于 2021-07-17 16:56:07
您可以在Prometheus组合文件中设置root用户,并修复此问题,但不是很安全:
prometheus:
image: prom/prometheus
restart: unless-stopped
user: root
....页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://stackoverflow.com/questions/66221155
复制相关文章
相似问题
腾讯云开发者
Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有
深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 
粤公网安备44030502008569号
腾讯云计算(北京)有限责任公司 京ICP证150476号 | 京ICP备11018762号