Add subcommands for agent and debug events #537
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
tklauser
added
⌨️ area/cli
gandro
reviewed
Apr 26, 2021
tklauser
force-pushed
the
pr/tklauser/agent-debug-events
branch
from
7091367
to
498bcfb
Compare
gandro
approved these changes
Apr 26, 2021
maintainer-s-little-helper
bot
added
the
ready-to-merge
kaworu
reviewed
Apr 27, 2021
tklauser
force-pushed
the
pr/tklauser/agent-debug-events
branch
from
498bcfb
to
c7a6d2c
Compare
tklauser
added
the
dont-merge/blocked
tklauser
force-pushed
the
pr/tklauser/agent-debug-events
branch
from
c7a6d2c
to
68497d4
Compare
|
here is our current proposal based on an offline discussion we had: add a sub-sub command for hubble observethe existing behavior of getting flows. no change here. hubble observe flowssame as hubble observe hubble observe agent-eventsget agent-events hubble observe debug-eventsget debug-events and then share common flags like |
rolinh
removed
the
ready-to-merge
tklauser
force-pushed
the
pr/tklauser/agent-debug-events
branch
from
68497d4
to
bf87be7
Compare
Reworked this PR as noted above, except for the |
tklauser
removed
the
dont-merge/blocked
maintainer-s-little-helper
bot
added
the
ready-to-merge
michi-covalent
approved these changes
May 1, 2021
maintainer-s-little-helper
bot
removed
the
ready-to-merge
completionExample is a constant text not changed at runtime. Declare it as const instead of var. Signed-off-by: Tobias Klauser <tobias@cilium.io>
Move timeFormatNameToLayout and the valid format names into package time. This will allow to reuse them for the agent and debug event commands introduced in successive commits. Signed-off-by: Tobias Klauser <tobias@cilium.io>
Add a new `hubble observe agent-events` subcommand used to observe agent events using the Hubble GetAgentEvents API. This works similar to the existing `hubble observe` command for flows and will be extended to support other events, namely debug events. Example: ``` $ hubble observe agent-events TIMESTAMP TYPE DETAILS Apr 26 13:32:03.225 ENDPOINT_CREATED id: 3478 Apr 26 13:32:14.281 IPCACHE_UPSERTED cidr: 10.244.2.221/32, identity: 2806, host ip: 172.18.0.4, encrypt key: 0 Apr 26 13:32:14.805 IPCACHE_UPSERTED cidr: 10.244.0.80/32, identity: 5027, host ip: 172.18.0.3, encrypt key: 0 Apr 26 13:32:14.866 IPCACHE_UPSERTED cidr: 10.244.0.164/32, identity: 5882, host ip: 172.18.0.3, encrypt key: 0 Apr 26 13:32:14.923 IPCACHE_UPSERTED cidr: 10.244.0.174/32, identity: 5027, host ip: 172.18.0.3, encrypt key: 0 Apr 26 13:32:17.620 ENDPOINT_REGENERATE_SUCCESS id: 142, labels: [reserved:host] Apr 26 13:32:17.624 ENDPOINT_REGENERATE_SUCCESS id: 142, labels: [reserved:host] Apr 26 13:32:18.683 ENDPOINT_REGENERATE_SUCCESS id: 3478, labels: [reserved:health] Apr 26 13:32:18.686 ENDPOINT_REGENERATE_SUCCESS id: 3478, labels: [reserved:health] Apr 26 13:32:24.296 SERVICE_UPSERTED id: 2, frontend: 10.96.0.10:53, backends: [10.244.0.174:53], type: ClusterIP, traffic policy: Cluster, namespace: kube-system, name: kube-dns Apr 26 13:32:24.297 SERVICE_UPSERTED id: 3, frontend: 10.96.0.10:9153, backends: [10.244.0.174:9153], type: ClusterIP, traffic policy: Cluster, namespace: kube-system, name: kube-dns Apr 26 13:32:26.475 SERVICE_UPSERTED id: 4, frontend: 10.96.214.93:80, backends: [10.244.2.221:4245], type: ClusterIP, traffic policy: Cluster, namespace: kube-system, name: hubble-relay Apr 26 13:32:27.986 SERVICE_UPSERTED id: 2, frontend: 10.96.0.10:53, backends: [10.244.0.174:53,10.244.0.80:53], type: ClusterIP, traffic policy: Cluster, namespace: kube-system, name: kube-dns Apr 26 13:32:27.986 SERVICE_UPSERTED id: 3, frontend: 10.96.0.10:9153, backends: [10.244.0.174:9153,10.244.0.80:9153], type: ClusterIP, traffic policy: Cluster, namespace: kube-system, name: kube-dns Apr 26 13:33:02.147 IPCACHE_UPSERTED cidr: 172.18.0.2/32, identity: 1, old identity: 1, encrypt key: 0 Apr 26 13:33:02.147 IPCACHE_UPSERTED cidr: 10.244.1.116/32, identity: 1, old identity: 1, encrypt key: 0 Apr 26 13:33:02.148 IPCACHE_UPSERTED cidr: 0.0.0.0/0, identity: 2, old identity: 2, encrypt key: 0 Apr 26 13:34:02.149 IPCACHE_UPSERTED cidr: 172.18.0.2/32, identity: 1, old identity: 1, encrypt key: 0 Apr 26 13:34:02.149 IPCACHE_UPSERTED cidr: 10.244.1.116/32, identity: 1, old identity: 1, encrypt key: 0 Apr 26 13:34:02.150 IPCACHE_UPSERTED cidr: 0.0.0.0/0, identity: 2, old identity: 2, encrypt key: 0 ``` Signed-off-by: Tobias Klauser <tobias@cilium.io>
Add a new `hubble observe debug-events` subcommand used to observe debug events using the Hubble GetDebugEvents API. This works similar to the `hubble observe` command for flows and the `hubble observe agent-events` command for agent events. Example: ``` $ hubble observe debug-events TIMESTAMP FROM TYPE CPU/MARK MESSAGE Apr 26 15:58:41.050 ID: 142 DBG_CT_MATCH 01 0x3cbea25 CT entry found lifetime=16811869, revnat=0 Apr 26 15:58:41.050 ID: 142 DBG_CT_VERDICT 01 0x3cbea25 CT verdict: Reply, revnat=0 Apr 26 15:58:41.050 ID: 142 DBG_CT_LOOKUP4_1 01 0x3cbea25 Conntrack lookup 1/2: src=172.18.0.3:6443 dst=172.18.0.2:44656 Apr 26 15:58:41.050 ID: 142 DBG_CT_LOOKUP4_2 01 0x3cbea25 Conntrack lookup 2/2: nexthdr=6 flags=0 Apr 26 15:58:41.050 ID: 142 DBG_CT_MATCH 01 0x3cbea25 CT entry found lifetime=16811869, revnat=0 Apr 26 15:58:41.050 ID: 142 DBG_CT_VERDICT 01 0x3cbea25 CT verdict: Reply, revnat=0 Apr 26 15:58:41.050 ID: 142 DBG_CT_LOOKUP4_1 01 0x60902282 Conntrack lookup 1/2: src=172.18.0.2:44656 dst=172.18.0.3:6443 Apr 26 15:58:41.050 ID: 142 DBG_CT_LOOKUP4_2 01 0x60902282 Conntrack lookup 2/2: nexthdr=6 flags=1 Apr 26 15:58:41.050 ID: 142 DBG_CT_MATCH 01 0x60902282 CT entry found lifetime=16811869, revnat=0 Apr 26 15:58:41.050 ID: 142 DBG_CT_VERDICT 01 0x60902282 CT verdict: Established, revnat=0 Apr 26 15:58:41.266 ID: 142 DBG_IP_ID_MAP_SUCCEED4 01 0x9ec04f8c Successfully mapped addr=172.18.0.3 to identity=6 Apr 26 15:58:41.266 ID: 142 DBG_IP_ID_MAP_SUCCEED4 01 0x9ec04f8c Successfully mapped addr=172.18.0.3 to identity=6 Apr 26 15:58:41.266 ID: 142 DBG_IP_ID_MAP_SUCCEED4 01 0x9ec04f8c Successfully mapped addr=172.18.0.3 to identity=6 Apr 26 15:58:41.267 ID: 142 DBG_IP_ID_MAP_SUCCEED4 04 0x9ec04f8c Successfully mapped addr=172.18.0.3 to identity=6 Apr 26 15:58:41.267 ID: 142 DBG_IP_ID_MAP_SUCCEED4 04 0x9ec04f8c Successfully mapped addr=172.18.0.3 to identity=6 Apr 26 15:58:42.036 ID: 142 DBG_IP_ID_MAP_SUCCEED4 04 0xf142bcaf Successfully mapped addr=172.18.0.3 to identity=6 Apr 26 15:58:42.275 ID: 142 DBG_IP_ID_MAP_SUCCEED4 04 0x9ec04f8c Successfully mapped addr=172.18.0.3 to identity=6 Apr 26 15:58:42.275 ID: 142 DBG_IP_ID_MAP_SUCCEED4 04 0x9ec04f8c Successfully mapped addr=172.18.0.3 to identity=6 Apr 26 15:58:42.275 ID: 142 DBG_IP_ID_MAP_SUCCEED4 04 0x9ec04f8c Successfully mapped addr=172.18.0.3 to identity=6 Apr 26 15:58:42.275 ID: 142 DBG_IP_ID_MAP_SUCCEED4 00 0x9ec04f8c Successfully mapped addr=172.18.0.3 to identity=6 ``` Signed-off-by: Tobias Klauser <tobias@cilium.io>
AFAIK only starting the Cilium agent with debug flag is not enough, I also needed to enable the debug events using |
tklauser
force-pushed
the
pr/tklauser/agent-debug-events
branch
from
bf87be7
to
8dc2df6
Compare
|
👍 thanks @tklauser i was able to observe debug events as well: |
gandro
approved these changes
May 3, 2021
Let's try to do that in a follow-up PR if feasible. This one is already big enough as is. I created a tracking issue: #543 |
maintainer-s-little-helper
bot
added
the
ready-to-merge
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR adds the
hubble observe agent-eventsandhubble observe debug-eventssub-commands to retrieve agent and debug events, respectively. These use the newGetAgentEvents/GetDebugEventsAPI introduced in cilium/cilium#15715.Flags such as
--since,--until,--followor--time-formatare available for the sub-commands as well. Flow-specific flags (e.g.--from-*,--http-*or--ip-translationare restricted tohubble observeand not available in the sub-commands. Seehubble observe -h,hubble observe agent-events -handhubble observe debug-events -h.Examples:
See individual commits for details.