github/kubeshark
1
0
Fork 0
mirror of https://github.com/kubeshark/kubeshark.git synced 2025-08-08 03:54:18 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add service mesh badge (#989)

Browse Source 
Co-authored-by: M. Mert Yıldıran <mehmet@up9.com>
Co-authored-by: M. Mert Yıldıran <mehmet@up9.com>
Co-authored-by: Nimrod Gilboa Markevich <59927337+nimrod-up9@users.noreply.github.com>
This commit is contained in:
David Levanon 2022-04-13 13:30:57 +03:00 committed by GitHub
parent 97000293fd
commit 32d473ea26
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
7 changed files with 39 additions and 19 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
tap/source/netns_packet_source.go
View File

@ -5,11 +5,12 @@ import (
"runtime" "runtime"
"github.com/up9inc/mizu/shared/logger" "github.com/up9inc/mizu/shared/logger"
"github.com/up9inc/mizu/tap/api"
"github.com/vishvananda/netns" "github.com/vishvananda/netns"
) )
func newNetnsPacketSource(procfs string, pid string, func newNetnsPacketSource(procfs string, pid string, interfaceName string,
interfaceName string, behaviour TcpPacketSourceBehaviour) (*tcpPacketSource, error) { behaviour TcpPacketSourceBehaviour, origin api.Capture) (*tcpPacketSource, error) {
nsh, err := netns.GetFromPath(fmt.Sprintf("%s/%s/ns/net", procfs, pid)) nsh, err := netns.GetFromPath(fmt.Sprintf("%s/%s/ns/net", procfs, pid))
if err != nil { if err != nil {
@ -17,7 +18,7 @@ func newNetnsPacketSource(procfs string, pid string,
return nil, err return nil, err
} }
src, err := newPacketSourceFromNetnsHandle(pid, nsh, interfaceName, behaviour) src, err := newPacketSourceFromNetnsHandle(pid, nsh, interfaceName, behaviour, origin)
if err != nil { if err != nil {
logger.Log.Errorf("Error starting netns packet source for %s - %w", pid, err) logger.Log.Errorf("Error starting netns packet source for %s - %w", pid, err)
@ -28,7 +29,7 @@ func newNetnsPacketSource(procfs string, pid string,
} }
func newPacketSourceFromNetnsHandle(pid string, nsh netns.NsHandle, interfaceName string, func newPacketSourceFromNetnsHandle(pid string, nsh netns.NsHandle, interfaceName string,
behaviour TcpPacketSourceBehaviour) (*tcpPacketSource, error) { behaviour TcpPacketSourceBehaviour, origin api.Capture) (*tcpPacketSource, error) {
done := make(chan *tcpPacketSource) done := make(chan *tcpPacketSource)
errors := make(chan error) errors := make(chan error)
@ -57,7 +58,7 @@ func newPacketSourceFromNetnsHandle(pid string, nsh netns.NsHandle, interfaceNam
} }
name := fmt.Sprintf("netns-%s-%s", pid, interfaceName) name := fmt.Sprintf("netns-%s-%s", pid, interfaceName)
src, err := newTcpPacketSource(name, "", interfaceName, behaviour) src, err := newTcpPacketSource(name, "", interfaceName, behaviour, origin)
if err != nil { if err != nil {
logger.Log.Errorf("Error listening to PID %s - %w", pid, err) logger.Log.Errorf("Error listening to PID %s - %w", pid, err)

23
tap/source/packet_source_manager.go
View File

@ -5,6 +5,7 @@ import (
"strings" "strings"
"github.com/up9inc/mizu/shared/logger" "github.com/up9inc/mizu/shared/logger"
"github.com/up9inc/mizu/tap/api"
v1 "k8s.io/api/core/v1" v1 "k8s.io/api/core/v1"
) )
@ -37,10 +38,10 @@ func NewPacketSourceManager(procfs string, filename string, interfaceName string
} }
sourceManager.config = PacketSourceManagerConfig{ sourceManager.config = PacketSourceManagerConfig{
mtls: mtls, mtls: mtls,
procfs: procfs, procfs: procfs,
interfaceName: interfaceName, interfaceName: interfaceName,
behaviour: behaviour, behaviour: behaviour,
} }
go hostSource.readPackets(ipdefrag, packets) go hostSource.readPackets(ipdefrag, packets)
@ -56,7 +57,7 @@ func newHostPacketSource(filename string, interfaceName string,
name = fmt.Sprintf("file-%s", filename) name = fmt.Sprintf("file-%s", filename)
} }
source, err := newTcpPacketSource(name, filename, interfaceName, behaviour) source, err := newTcpPacketSource(name, filename, interfaceName, behaviour, api.Pcap)
if err != nil { if err != nil {
return nil, err return nil, err
} }
@ -85,9 +86,9 @@ func (m *PacketSourceManager) updateMtlsPods(procfs string, pods []v1.Pod,
} }
} }
for pid := range relevantPids { for pid, origin := range relevantPids {
if _, ok := m.sources[pid]; !ok { if _, ok := m.sources[pid]; !ok {
source, err := newNetnsPacketSource(procfs, pid, interfaceName, behaviour) source, err := newNetnsPacketSource(procfs, pid, interfaceName, behaviour, origin)
if err == nil { if err == nil {
go source.readPackets(ipdefrag, packets) go source.readPackets(ipdefrag, packets)
@ -97,15 +98,15 @@ func (m *PacketSourceManager) updateMtlsPods(procfs string, pods []v1.Pod,
} }
} }
func (m *PacketSourceManager) getRelevantPids(procfs string, pods []v1.Pod) map[string]bool { func (m *PacketSourceManager) getRelevantPids(procfs string, pods []v1.Pod) map[string]api.Capture {
relevantPids := make(map[string]bool) relevantPids := make(map[string]api.Capture)
relevantPids[hostSourcePid] = true relevantPids[hostSourcePid] = api.Pcap
if envoyPids, err := discoverRelevantEnvoyPids(procfs, pods); err != nil { if envoyPids, err := discoverRelevantEnvoyPids(procfs, pods); err != nil {
logger.Log.Warningf("Unable to discover envoy pids - %w", err) logger.Log.Warningf("Unable to discover envoy pids - %w", err)
} else { } else {
for _, pid := range envoyPids { for _, pid := range envoyPids {
relevantPids[pid] = true relevantPids[pid] = api.Envoy
} }
} }
@ -113,7 +114,7 @@ func (m *PacketSourceManager) getRelevantPids(procfs string, pods []v1.Pod) map[
logger.Log.Warningf("Unable to discover linkerd pids - %w", err) logger.Log.Warningf("Unable to discover linkerd pids - %w", err)
} else { } else {
for _, pid := range linkerdPids { for _, pid := range linkerdPids {
relevantPids[pid] = true relevantPids[pid] = api.Linkerd
} }
} }

5
tap/source/tcp_packet_source.go
View File

@ -10,6 +10,7 @@ import (
"github.com/google/gopacket/layers" "github.com/google/gopacket/layers"
"github.com/google/gopacket/pcap" "github.com/google/gopacket/pcap"
"github.com/up9inc/mizu/shared/logger" "github.com/up9inc/mizu/shared/logger"
"github.com/up9inc/mizu/tap/api"
"github.com/up9inc/mizu/tap/diagnose" "github.com/up9inc/mizu/tap/diagnose"
) )
@ -19,6 +20,7 @@ type tcpPacketSource struct {
defragger *ip4defrag.IPv4Defragmenter defragger *ip4defrag.IPv4Defragmenter
Behaviour *TcpPacketSourceBehaviour Behaviour *TcpPacketSourceBehaviour
name string name string
Origin api.Capture
} }
type TcpPacketSourceBehaviour struct { type TcpPacketSourceBehaviour struct {
@ -36,13 +38,14 @@ type TcpPacketInfo struct {
} }
func newTcpPacketSource(name, filename string, interfaceName string, func newTcpPacketSource(name, filename string, interfaceName string,
behaviour TcpPacketSourceBehaviour) (*tcpPacketSource, error) { behaviour TcpPacketSourceBehaviour, origin api.Capture) (*tcpPacketSource, error) {
var err error var err error
result := &tcpPacketSource{ result := &tcpPacketSource{
name: name, name: name,
defragger: ip4defrag.NewIPv4Defragmenter(), defragger: ip4defrag.NewIPv4Defragmenter(),
Behaviour: &behaviour, Behaviour: &behaviour,
Origin: origin,
} }
if filename != "" { if filename != "" {

3
tap/tcp_assembler.go
View File

@ -29,6 +29,7 @@ type tcpAssembler struct {
// The assembler context // The assembler context
type context struct { type context struct {
CaptureInfo gopacket.CaptureInfo CaptureInfo gopacket.CaptureInfo
Origin api.Capture
} }
func (c *context) GetCaptureInfo() gopacket.CaptureInfo { func (c *context) GetCaptureInfo() gopacket.CaptureInfo {
@ -87,8 +88,10 @@ func (a *tcpAssembler) processPackets(dumpPacket bool, packets <-chan source.Tcp
logger.Log.Fatalf("Failed to set network layer for checksum: %s", err) logger.Log.Fatalf("Failed to set network layer for checksum: %s", err)
} }
} }
c := context{ c := context{
CaptureInfo: packet.Metadata().CaptureInfo, CaptureInfo: packet.Metadata().CaptureInfo,
Origin: packetInfo.Source.Origin,
} }
diagnose.InternalStats.Totalsz += len(tcp.Payload) diagnose.InternalStats.Totalsz += len(tcp.Payload)
a.assemblerMutex.Lock() a.assemblerMutex.Lock()

3
tap/tcp_reader.go
View File

@ -98,8 +98,7 @@ func (h *tcpReader) Close() {
func (h *tcpReader) run(wg *sync.WaitGroup) { func (h *tcpReader) run(wg *sync.WaitGroup) {
defer wg.Done() defer wg.Done()
b := bufio.NewReader(h) b := bufio.NewReader(h)
// TODO: Add api.Pcap, api.Envoy and api.Linkerd distinction by refactoring NewPacketSourceManager method err := h.extension.Dissector.Dissect(b, h.progress, h.parent.origin, h.isClient, h.tcpID, h.counterPair, h.superTimer, h.parent.superIdentifier, h.emitter, filteringOptions, h.reqResMatcher)
err := h.extension.Dissector.Dissect(b, h.progress, api.Pcap, h.isClient, h.tcpID, h.counterPair, h.superTimer, h.parent.superIdentifier, h.emitter, filteringOptions, h.reqResMatcher)
if err != nil { if err != nil {
_, err = io.Copy(ioutil.Discard, b) _, err = io.Copy(ioutil.Discard, b)
if err != nil { if err != nil {

1
tap/tcp_stream.go
View File

@ -29,6 +29,7 @@ type tcpStream struct {
clients []tcpReader clients []tcpReader
servers []tcpReader servers []tcpReader
ident string ident string
origin api.Capture
sync.Mutex sync.Mutex
streamsMap *tcpStreamMap streamsMap *tcpStreamMap
} }

12
tap/tcp_stream_factory.go
View File

@ -78,6 +78,7 @@ func (factory *tcpStreamFactory) New(net, transport gopacket.Flow, tcp *layers.T
optchecker: reassembly.NewTCPOptionCheck(), optchecker: reassembly.NewTCPOptionCheck(),
superIdentifier: &api.SuperIdentifier{}, superIdentifier: &api.SuperIdentifier{},
streamsMap: factory.streamsMap, streamsMap: factory.streamsMap,
origin: getPacketOrigin(ac),
} }
if stream.isTapTarget { if stream.isTapTarget {
stream.id = factory.streamsMap.nextId() stream.id = factory.streamsMap.nextId()
@ -182,6 +183,17 @@ func (factory *tcpStreamFactory) shouldNotifyOnOutboundLink(dstIP string, dstPor
return true return true
} }
func getPacketOrigin(ac reassembly.AssemblerContext) api.Capture {
c, ok := ac.(*context)
if !ok {
// If ac is not our context, fallback to Pcap
return api.Pcap
}
return c.Origin
}
type streamProps struct { type streamProps struct {
isTapTarget bool isTapTarget bool
isOutgoing bool isOutgoing bool