github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-27 13:37:30 +00:00
Code Issues Projects Releases Wiki Activity

fix and extend apiserver tracing tests

Browse Source
This commit is contained in:
David Ashpole 2022-10-26 21:31:08 +00:00
parent dbb3b4f340
commit f830d971b8
No known key found for this signature in database
GPG Key ID: 563A85007BFA1BA2
1 changed files with 433 additions and 82 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

495
test/integration/apiserver/tracing/tracing_test.go
View File

@ -18,54 +18,33 @@ package tracing
import ( import (
"context" "context"
"encoding/hex"
"encoding/json"
"fmt" "fmt"
"net" "net"
"os" "os"
"strings" "strings"
"sync"
"testing" "testing"
"time" "time"
sdktrace "go.opentelemetry.io/otel/sdk/trace"
"go.opentelemetry.io/otel/trace"
traceservice "go.opentelemetry.io/proto/otlp/collector/trace/v1" traceservice "go.opentelemetry.io/proto/otlp/collector/trace/v1"
commonv1 "go.opentelemetry.io/proto/otlp/common/v1"
tracev1 "go.opentelemetry.io/proto/otlp/trace/v1"
"google.golang.org/grpc" "google.golang.org/grpc"
v1 "k8s.io/api/core/v1"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"k8s.io/apimachinery/pkg/types"
"k8s.io/apimachinery/pkg/util/strategicpatch"
genericfeatures "k8s.io/apiserver/pkg/features" genericfeatures "k8s.io/apiserver/pkg/features"
utilfeature "k8s.io/apiserver/pkg/util/feature" utilfeature "k8s.io/apiserver/pkg/util/feature"
client "k8s.io/client-go/kubernetes" client "k8s.io/client-go/kubernetes"
featuregatetesting "k8s.io/component-base/featuregate/testing" featuregatetesting "k8s.io/component-base/featuregate/testing"
"k8s.io/component-base/tracing"
kubeapiservertesting "k8s.io/kubernetes/cmd/kube-apiserver/app/testing" kubeapiservertesting "k8s.io/kubernetes/cmd/kube-apiserver/app/testing"
"k8s.io/kubernetes/test/integration/framework" "k8s.io/kubernetes/test/integration/framework"
) )
func TestAPIServerTracing(t *testing.T) {
// Listen for traces from the API Server before starting it, so the
// API Server will successfully connect right away during the test.
listener, err := net.Listen("tcp", "localhost:")
if err != nil {
t.Fatal(err)
}
// Write the configuration for tracing to a file
tracingConfigFile, err := os.CreateTemp("", "tracing-config.yaml")
if err != nil {
t.Fatal(err)
}
defer os.Remove(tracingConfigFile.Name())
if err := os.WriteFile(tracingConfigFile.Name(), []byte(fmt.Sprintf(`
apiVersion: apiserver.config.k8s.io/v1alpha1
kind: TracingConfiguration
endpoint: %s`, listener.Addr().String())), os.FileMode(0755)); err != nil {
t.Fatal(err)
}
testAPIServerTracing(t,
listener,
[]string{"--tracing-config-file=" + tracingConfigFile.Name()},
)
}
func TestAPIServerTracingWithEgressSelector(t *testing.T) { func TestAPIServerTracingWithEgressSelector(t *testing.T) {
// Listen for traces from the API Server before starting it, so the // Listen for traces from the API Server before starting it, so the
// API Server will successfully connect right away during the test. // API Server will successfully connect right away during the test.
@ -105,24 +84,55 @@ kind: TracingConfiguration
endpoint: %s`, listener.Addr().String())), os.FileMode(0755)); err != nil { endpoint: %s`, listener.Addr().String())), os.FileMode(0755)); err != nil {
t.Fatal(err) t.Fatal(err)
} }
testAPIServerTracing(t,
listener, // Start the API Server with our tracing configuration
testServer := kubeapiservertesting.StartTestServerOrDie(t,
kubeapiservertesting.NewDefaultTestServerOptions(),
[]string{ []string{
"--tracing-config-file=" + tracingConfigFile.Name(), "--tracing-config-file=" + tracingConfigFile.Name(),
"--egress-selector-config-file=" + egressSelectorConfigFile.Name(), "--egress-selector-config-file=" + egressSelectorConfigFile.Name(),
}, },
framework.SharedEtcd(),
) )
defer testServer.TearDownFn()
clientSet, err := client.NewForConfig(testServer.ClientConfig)
if err != nil {
t.Fatal(err)
}
// Make sure the API Server hasn't crashed.
_, err = clientSet.CoreV1().Nodes().List(context.Background(), metav1.ListOptions{})
if err != nil {
t.Fatal(err)
}
} }
func testAPIServerTracing(t *testing.T, listener net.Listener, apiserverArgs []string) { func TestAPIServerTracing(t *testing.T) {
defer featuregatetesting.SetFeatureGateDuringTest(t, utilfeature.DefaultFeatureGate, genericfeatures.APIServerTracing, true)() defer featuregatetesting.SetFeatureGateDuringTest(t, utilfeature.DefaultFeatureGate, genericfeatures.APIServerTracing, true)()
// Listen for traces from the API Server before starting it, so the
// API Server will successfully connect right away during the test.
listener, err := net.Listen("tcp", "localhost:")
if err != nil {
t.Fatal(err)
}
// Write the configuration for tracing to a file
tracingConfigFile, err := os.CreateTemp("", "tracing-config.yaml")
if err != nil {
t.Fatal(err)
}
defer os.Remove(tracingConfigFile.Name())
if err := os.WriteFile(tracingConfigFile.Name(), []byte(fmt.Sprintf(`
apiVersion: apiserver.config.k8s.io/v1alpha1
kind: TracingConfiguration
samplingRatePerMillion: 1000000
endpoint: %s`, listener.Addr().String())), os.FileMode(0755)); err != nil {
t.Fatal(err)
}
traceFound := make(chan struct{})
defer close(traceFound)
srv := grpc.NewServer() srv := grpc.NewServer()
traceservice.RegisterTraceServiceServer(srv, &traceServer{ fakeServer := &traceServer{t: t}
traceFound: traceFound, fakeServer.resetExpectations([]*spanExpectation{})
filterFunc: containsNodeListSpan}) traceservice.RegisterTraceServiceServer(srv, fakeServer)
go srv.Serve(listener) go srv.Serve(listener)
defer srv.Stop() defer srv.Stop()
@ -130,68 +140,409 @@ func testAPIServerTracing(t *testing.T, listener net.Listener, apiserverArgs []s
// Start the API Server with our tracing configuration // Start the API Server with our tracing configuration
testServer := kubeapiservertesting.StartTestServerOrDie(t, testServer := kubeapiservertesting.StartTestServerOrDie(t,
kubeapiservertesting.NewDefaultTestServerOptions(), kubeapiservertesting.NewDefaultTestServerOptions(),
apiserverArgs, []string{"--tracing-config-file=" + tracingConfigFile.Name()},
framework.SharedEtcd(), framework.SharedEtcd(),
) )
defer testServer.TearDownFn() defer testServer.TearDownFn()
clientConfig := testServer.ClientConfig clientSet, err := client.NewForConfig(testServer.ClientConfig)
// Create a client that creates sampled traces.
tp := trace.TracerProvider(sdktrace.NewTracerProvider(sdktrace.WithSampler(sdktrace.AlwaysSample())))
clientConfig.Wrap(tracing.WrapperFor(tp))
clientSet, err := client.NewForConfig(clientConfig)
if err != nil { if err != nil {
t.Fatal(err) t.Fatal(err)
} }
// Make a request with the instrumented client for _, tc := range []struct {
_, err = clientSet.CoreV1().Nodes().List(context.TODO(), metav1.ListOptions{}) desc string
apiCall func(*client.Clientset) error
expectedTrace []*spanExpectation
}{
{
desc: "create node",
apiCall: func(c *client.Clientset) error {
_, err = clientSet.CoreV1().Nodes().Create(context.Background(),
&v1.Node{ObjectMeta: metav1.ObjectMeta{Name: "fake"}}, metav1.CreateOptions{})
return err
},
expectedTrace: []*spanExpectation{
{
name: "KubernetesAPI",
attributes: map[string]func(*commonv1.AnyValue) bool{
"http.user_agent": func(v *commonv1.AnyValue) bool {
return strings.HasPrefix(v.GetStringValue(), "tracing.test")
},
"http.target": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "/api/v1/nodes"
},
"http.method": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "POST"
},
},
},
{
name: "etcdserverpb.KV/Txn",
attributes: map[string]func(*commonv1.AnyValue) bool{
"rpc.system": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "grpc"
},
},
events: []string{"message"},
},
},
},
{
desc: "get node",
apiCall: func(c *client.Clientset) error {
// This depends on the "create node" step having completed successfully
_, err = clientSet.CoreV1().Nodes().Get(context.Background(), "fake", metav1.GetOptions{})
return err
},
expectedTrace: []*spanExpectation{
{
name: "KubernetesAPI",
attributes: map[string]func(*commonv1.AnyValue) bool{
"http.user_agent": func(v *commonv1.AnyValue) bool {
return strings.HasPrefix(v.GetStringValue(), "tracing.test")
},
"http.target": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "/api/v1/nodes/fake"
},
"http.method": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "GET"
},
},
},
{
name: "etcdserverpb.KV/Range",
attributes: map[string]func(*commonv1.AnyValue) bool{
"rpc.system": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "grpc"
},
},
events: []string{"message"},
},
},
},
{
desc: "list nodes",
apiCall: func(c *client.Clientset) error {
_, err = clientSet.CoreV1().Nodes().List(context.Background(), metav1.ListOptions{})
return err
},
expectedTrace: []*spanExpectation{
{
name: "KubernetesAPI",
attributes: map[string]func(*commonv1.AnyValue) bool{
"http.user_agent": func(v *commonv1.AnyValue) bool {
return strings.HasPrefix(v.GetStringValue(), "tracing.test")
},
"http.target": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "/api/v1/nodes"
},
"http.method": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "GET"
},
},
},
{
name: "etcdserverpb.KV/Range",
attributes: map[string]func(*commonv1.AnyValue) bool{
"rpc.system": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "grpc"
},
},
events: []string{"message"},
},
},
},
{
desc: "update node",
apiCall: func(c *client.Clientset) error {
// This depends on the "create node" step having completed successfully
_, err = clientSet.CoreV1().Nodes().Update(context.Background(),
&v1.Node{ObjectMeta: metav1.ObjectMeta{
Name: "fake",
Annotations: map[string]string{"foo": "bar"},
}}, metav1.UpdateOptions{})
return err
},
expectedTrace: []*spanExpectation{
{
name: "KubernetesAPI",
attributes: map[string]func(*commonv1.AnyValue) bool{
"http.user_agent": func(v *commonv1.AnyValue) bool {
return strings.HasPrefix(v.GetStringValue(), "tracing.test")
},
"http.target": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "/api/v1/nodes/fake"
},
"http.method": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "PUT"
},
},
},
{
name: "etcdserverpb.KV/Txn",
attributes: map[string]func(*commonv1.AnyValue) bool{
"rpc.system": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "grpc"
},
},
events: []string{"message"},
},
},
},
{
desc: "patch node",
apiCall: func(c *client.Clientset) error {
// This depends on the "create node" step having completed successfully
oldNode := &v1.Node{ObjectMeta: metav1.ObjectMeta{
Name: "fake",
Annotations: map[string]string{"foo": "bar"},
}}
oldData, err := json.Marshal(oldNode)
if err != nil { if err != nil {
return err
}
newNode := &v1.Node{ObjectMeta: metav1.ObjectMeta{
Name: "fake",
Annotations: map[string]string{"foo": "bar"},
Labels: map[string]string{"hello": "world"},
}}
newData, err := json.Marshal(newNode)
if err != nil {
return err
}
patchBytes, err := strategicpatch.CreateTwoWayMergePatch(oldData, newData, v1.Node{})
if err != nil {
return err
}
_, err = clientSet.CoreV1().Nodes().Patch(context.Background(), "fake", types.StrategicMergePatchType, patchBytes, metav1.PatchOptions{})
return err
},
expectedTrace: []*spanExpectation{
{
name: "KubernetesAPI",
attributes: map[string]func(*commonv1.AnyValue) bool{
"http.user_agent": func(v *commonv1.AnyValue) bool {
return strings.HasPrefix(v.GetStringValue(), "tracing.test")
},
"http.target": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "/api/v1/nodes/fake"
},
"http.method": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "PATCH"
},
},
},
{
name: "etcdserverpb.KV/Txn",
attributes: map[string]func(*commonv1.AnyValue) bool{
"rpc.system": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "grpc"
},
},
events: []string{"message"},
},
},
},
{
desc: "delete node",
apiCall: func(c *client.Clientset) error {
// This depends on the "create node" step having completed successfully
return clientSet.CoreV1().Nodes().Delete(context.Background(), "fake", metav1.DeleteOptions{})
},
expectedTrace: []*spanExpectation{
{
name: "KubernetesAPI",
attributes: map[string]func(*commonv1.AnyValue) bool{
"http.user_agent": func(v *commonv1.AnyValue) bool {
return strings.HasPrefix(v.GetStringValue(), "tracing.test")
},
"http.target": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "/api/v1/nodes/fake"
},
"http.method": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "DELETE"
},
},
},
{
name: "etcdserverpb.KV/Txn",
attributes: map[string]func(*commonv1.AnyValue) bool{
"rpc.system": func(v *commonv1.AnyValue) bool {
return v.GetStringValue() == "grpc"
},
},
events: []string{"message"},
},
},
},
} {
t.Run(tc.desc, func(t *testing.T) {
fakeServer.resetExpectations(tc.expectedTrace)
// Make our call to the API server
if err := tc.apiCall(clientSet); err != nil {
t.Fatal(err) t.Fatal(err)
} }
// Wait for a span to be recorded from our request // Wait for a span to be recorded from our request
select { select {
case <-traceFound: case <-fakeServer.traceFound:
return
case <-time.After(30 * time.Second): case <-time.After(30 * time.Second):
t.Fatal("Timed out waiting for trace") t.Fatal("Timed out waiting for trace")
} }
})
}
} }
func containsNodeListSpan(req *traceservice.ExportTraceServiceRequest) bool { // traceServer implements TracesServiceServer, which can receive spans from the
for _, resourceSpans := range req.GetResourceSpans() { // API Server via OTLP.
for _, instrumentationSpans := range resourceSpans.GetScopeSpans() { type traceServer struct {
for _, span := range instrumentationSpans.GetSpans() { t *testing.T
if span.Name != "HTTP GET" { traceservice.UnimplementedTraceServiceServer
continue // the lock guards the per-scenario state below
lock sync.Mutex
traceFound chan struct{}
expectations traceExpectation
}
func (t *traceServer) Export(ctx context.Context, req *traceservice.ExportTraceServiceRequest) (*traceservice.ExportTraceServiceResponse, error) {
t.lock.Lock()
defer t.lock.Unlock()
t.expectations.update(req)
// if all expectations are met, notify the test scenario by closing traceFound
if t.expectations.met() {
select {
case <-t.traceFound:
// traceFound is already closed
default:
close(t.traceFound)
} }
for _, attr := range span.GetAttributes() { }
if attr.GetKey() == "http.url" { return &traceservice.ExportTraceServiceResponse{}, nil
value := attr.GetValue().GetStringValue() }
if strings.HasSuffix(value, "/api/v1/nodes") {
// We found our request! // resetExpectations is used by a new test scenario to set new expectations for
// the test server.
func (t *traceServer) resetExpectations(newExpectations traceExpectation) {
t.lock.Lock()
defer t.lock.Unlock()
t.traceFound = make(chan struct{})
t.expectations = newExpectations
}
// traceExpectation is an expectation for an entire trace
type traceExpectation []*spanExpectation
// met returns true if all span expectations the server is looking for have
// been satisfied.
func (t traceExpectation) met() bool {
if len(t) == 0 {
return true return true
} }
} // we want to find any trace ID which all span IDs contain.
} // try each trace ID met by the first span.
} possibleTraceIDs := t[0].metTraceIDs
for _, tid := range possibleTraceIDs {
if t.contains(tid) {
return true
} }
} }
return false return false
} }
// traceServer implements TracesServiceServer // contains returns true if the all spans in the trace expectation contain the
type traceServer struct { // trace ID
traceFound chan struct{} func (t traceExpectation) contains(checkTID string) bool {
filterFunc func(req *traceservice.ExportTraceServiceRequest) bool for _, expectation := range t {
traceservice.UnimplementedTraceServiceServer if !expectation.contains(checkTID) {
return false
}
}
return true
} }
func (t *traceServer) Export(ctx context.Context, req *traceservice.ExportTraceServiceRequest) (*traceservice.ExportTraceServiceResponse, error) { // update finds all expectations that are met by a span in the
var emptyValue = traceservice.ExportTraceServiceResponse{} // incoming request.
if t.filterFunc(req) { func (t traceExpectation) update(req *traceservice.ExportTraceServiceRequest) {
t.traceFound <- struct{}{} for _, resourceSpans := range req.GetResourceSpans() {
for _, instrumentationSpans := range resourceSpans.GetScopeSpans() {
for _, span := range instrumentationSpans.GetSpans() {
t.updateForSpan(span)
}
}
} }
return &emptyValue, nil }
// updateForSpan updates expectations based on a single incoming span.
func (t traceExpectation) updateForSpan(span *tracev1.Span) {
for i, spanExpectation := range t {
if span.Name != spanExpectation.name {
continue
}
if !spanExpectation.attributes.matches(span.GetAttributes()) {
continue
}
if !spanExpectation.events.matches(span.GetEvents()) {
continue
}
t[i].metTraceIDs = append(spanExpectation.metTraceIDs, hex.EncodeToString(span.TraceId[:]))
}
}
// spanExpectation is the expectation for a single span
type spanExpectation struct {
name string
attributes attributeExpectation
events eventExpectation
// For each trace ID that meets this expectation, record it here.
// This way, we can ensure that all spans that should be in the same trace have the same trace ID
metTraceIDs []string
}
func (s *spanExpectation) contains(tid string) bool {
for _, metTID := range s.metTraceIDs {
if tid == metTID {
return true
}
}
return false
}
// eventExpectation is the expectation for an event attached to a span.
// It is comprised of event names.
type eventExpectation []string
// matches returns true if all expected events exist in the list of input events.
func (e eventExpectation) matches(events []*tracev1.Span_Event) bool {
eventMap := map[string]struct{}{}
for _, event := range events {
eventMap[event.Name] = struct{}{}
}
for _, wantEvent := range e {
if _, ok := eventMap[wantEvent]; !ok {
return false
}
}
return true
}
// eventExpectation is the expectation for an event attached to a span.
// It is a map from attribute key, to a value-matching function.
type attributeExpectation map[string]func(*commonv1.AnyValue) bool
// matches returns true if all expected attributes exist in the intput list of attributes.
func (a attributeExpectation) matches(attrs []*commonv1.KeyValue) bool {
attrsMap := map[string]*commonv1.AnyValue{}
for _, attr := range attrs {
attrsMap[attr.GetKey()] = attr.GetValue()
}
for key, checkVal := range a {
if val, ok := attrsMap[key]; !ok || !checkVal(val) {
return false
}
}
return true
} }