Add Inspektor Gadget TCP and DNS traces

.github/workflows/ci-pipeline.yaml

@@ -48,6 +48,6 @@ jobs:
         with:
           go-version: ${{ env.GO_VERSION }}
       - name: Go tests
-        run: go test -v -race -coverprofile=coverage.out -covermode=atomic ./...
+        run: sudo go test -v -race -coverprofile=coverage.out -covermode=atomic ./...
       - name: Upload coverage to Codecov
         run: bash <(curl -s https://codecov.io/bash) -C $(Build.SourceVersion)

.gitignore

@@ -344,3 +344,6 @@ deployment/overlays/temp
 # Local deployment configuration files
 **/.env
 **/.env.*
+
+# Test binaries
+__debug_bin

.vscode/launch.json

@@ -8,22 +8,15 @@
             "name": "Launch Tests",
             "type": "go",
             "request": "launch",
-            "program": "${fileDirname}",
-            "mode": "test",
+            "program": "${fileDirname}/__debug_bin",
+            "mode": "exec",
             "env": {},
             "args": ["-test.v"],
-            "showLog": true
-        },
-        {
-            "name": "Launch Tests with race check",
-            "type": "go",
-            "request": "launch",
-            "program": "${fileDirname}",
-            "mode": "test",
-            "env": {},
-            "buildFlags": "-race",
-            "args": ["-test.v"],
-            "showLog": true
+            "showLog": true,
+            // https://github.com/golang/vscode-go/blob/master/docs/debugging.md#debug-a-package-test-as-root
+            "console": "integratedTerminal",
+            "asRoot": true,
+            "preLaunchTask": "go test (debug)",
         },
     ]
 }

.vscode/tasks.json

@@ -0,0 +1,21 @@
+{
+    "version": "2.0.0",
+    "tasks": [
+        {
+            "label": "go test (debug)",
+            "type": "shell",
+            "command": "go",
+            "args": [
+                "test",
+                "-race",
+                "-c",
+                "-gcflags=all=-N -l",
+                "-o",
+                "${fileDirname}/__debug_bin"
+            ],
+            "options": {
+                "cwd": "${fileDirname}"
+            }
+        }
+    ]
+}

builder/Dockerfile.linux

@@ -16,7 +16,7 @@ RUN go mod download
 
 COPY . .
 
-RUN go build ./cmd/aks-periscope
+RUN go build -buildvcs=false ./cmd/aks-periscope
 
 # Add dependencies for building nsenter
 RUN apt-get update && \

builder/Dockerfile.windows

@@ -16,7 +16,7 @@ RUN go mod download
 
 COPY . .
 
-RUN go build ./cmd/aks-periscope
+RUN go build -buildvcs=false ./cmd/aks-periscope
 
 # Runner
 FROM $BASE_IMAGE

cmd/aks-periscope/aks-periscope.go

@@ -13,6 +13,7 @@ import (
 	"github.com/Azure/aks-periscope/pkg/exporter"
 	"github.com/Azure/aks-periscope/pkg/interfaces"
 	"github.com/Azure/aks-periscope/pkg/utils"
+
 	restclient "k8s.io/client-go/rest"
 )
 
@@ -99,6 +100,7 @@ func run(osIdentifier utils.OSIdentifier, knownFilePaths *utils.KnownFilePaths,
 		collector.NewSystemPerfCollector(config, runtimeInfo),
 		collector.NewWindowsLogsCollector(osIdentifier, runtimeInfo, knownFilePaths, fileSystem, 10*time.Second, 20*time.Minute),
 	}
+	collectors = addOSSpecificCollectors(collectors, config, runtimeInfo)
 
 	collectorGrp := new(sync.WaitGroup)
 

cmd/aks-periscope/collectorsfactory_linux.go

@@ -0,0 +1,52 @@
+package main
+
+import (
+	"log"
+	"time"
+
+	"github.com/Azure/aks-periscope/pkg/collector"
+	"github.com/Azure/aks-periscope/pkg/interfaces"
+	"github.com/Azure/aks-periscope/pkg/utils"
+
+	containercollection "github.com/inspektor-gadget/inspektor-gadget/pkg/container-collection"
+	"github.com/inspektor-gadget/inspektor-gadget/pkg/runcfanotify"
+
+	restclient "k8s.io/client-go/rest"
+)
+
+func addOSSpecificCollectors(collectors []interfaces.Collector, config *restclient.Config, runtimeInfo *utils.RuntimeInfo) []interfaces.Collector {
+	// Use the default InspektorGadget behaviour for determining containers:
+	// https://github.com/inspektor-gadget/inspektor-gadget/blob/6b00fea3f925c9da478126931e774e340ca9bfdf/pkg/gadgettracermanager/gadgettracermanager.go#L275-L283
+	var containerCollectionOptions []containercollection.ContainerCollectionOption
+	if runcfanotify.Supported() {
+		containerCollectionOptions = []containercollection.ContainerCollectionOption{
+			containercollection.WithRuncFanotify(),
+			containercollection.WithInitialKubernetesContainers(runtimeInfo.HostNodeName),
+		}
+	} else {
+		containerCollectionOptions = []containercollection.ContainerCollectionOption{
+			containercollection.WithPodInformer(runtimeInfo.HostNodeName),
+		}
+	}
+
+	containerCollectionOptions = append(
+		containerCollectionOptions,
+		containercollection.WithNodeName(runtimeInfo.HostNodeName),
+		containercollection.WithCgroupEnrichment(),
+		containercollection.WithLinuxNamespaceEnrichment(),
+		containercollection.WithKubernetesEnrichment(runtimeInfo.HostNodeName, config),
+	)
+
+	// Traces can produce a lot of data.
+	// TODO: Consider whether this should be lower or configurable.
+	traceCollectionPeriod := 30 * time.Second
+	traceWaiter := func() {
+		log.Printf("\twait for %v to stop collection", traceCollectionPeriod)
+		time.Sleep(traceCollectionPeriod)
+	}
+
+	return append(collectors,
+		collector.NewInspektorGadgetDNSTraceCollector(runtimeInfo, traceWaiter, containerCollectionOptions),
+		collector.NewInspektorGadgetTCPTraceCollector(runtimeInfo, traceWaiter, containerCollectionOptions),
+	)
+}

cmd/aks-periscope/collectorsfactory_windows.go

@@ -0,0 +1,11 @@
+package main
+
+import (
+	"github.com/Azure/aks-periscope/pkg/interfaces"
+	"github.com/Azure/aks-periscope/pkg/utils"
+	restclient "k8s.io/client-go/rest"
+)
+
+func addOSSpecificCollectors(collectors []interfaces.Collector, config *restclient.Config, runtimeInfo *utils.RuntimeInfo) []interfaces.Collector {
+	return collectors
+}

deployment/base/daemon-set.yaml

@@ -35,8 +35,8 @@ spec:
           mountPath: /secret
         - name: varlog
           mountPath: /var/log
-        - name: resolvlog
-          mountPath: /run/systemd/resolve
+        - name: run
+          mountPath: /run
         - name: etcvmlog
           mountPath: /etchostlogs
         resources:
@@ -56,9 +56,11 @@ spec:
       - name: varlog
         hostPath:
           path: /var/log
-      - name: resolvlog
+      # Need /run from the host to access the container runtime (e.g. containerd) client socket,
+      # which is used by InspektorGadget to determine the PID for a container ID.
+      - name: run
         hostPath:
-          path: /run/systemd/resolve
+          path: /run
       - name: etcvmlog
         hostPath:
           path: /etc

go.mod

@@ -6,21 +6,31 @@ go 1.19
 
 require (
 	github.com/Azure/azure-storage-blob-go v0.14.0
+	github.com/cilium/ebpf v0.9.3
 	github.com/docker/docker v20.10.17+incompatible
 	github.com/google/uuid v1.2.0
 	github.com/hashicorp/go-multierror v1.1.1
+	github.com/inspektor-gadget/inspektor-gadget v0.12.1
+	github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417
 	helm.sh/helm/v3 v3.10.3
-	k8s.io/api v0.25.2
-	k8s.io/apimachinery v0.25.2
-	k8s.io/cli-runtime v0.25.2
-	k8s.io/client-go v0.25.2
+	k8s.io/api v0.25.4
+	k8s.io/apimachinery v0.25.4
+	k8s.io/cli-runtime v0.25.4
+	k8s.io/client-go v0.25.4
 	k8s.io/kubectl v0.25.2
 	k8s.io/metrics v0.25.2
 )
 
 require (
+	cloud.google.com/go v0.99.0 // indirect
 	github.com/Azure/azure-pipeline-go v0.2.3 // indirect
 	github.com/Azure/go-ansiterm v0.0.0-20210617225240-d185dfc1b5a1 // indirect
+	github.com/Azure/go-autorest v14.2.0+incompatible // indirect
+	github.com/Azure/go-autorest/autorest v0.11.27 // indirect
+	github.com/Azure/go-autorest/autorest/adal v0.9.20 // indirect
+	github.com/Azure/go-autorest/autorest/date v0.3.0 // indirect
+	github.com/Azure/go-autorest/logger v0.2.1 // indirect
+	github.com/Azure/go-autorest/tracing v0.6.0 // indirect
 	github.com/BurntSushi/toml v1.1.0 // indirect
 	github.com/MakeNowJust/heredoc v1.0.0 // indirect
 	github.com/Masterminds/goutils v1.1.1 // indirect
@@ -56,6 +66,7 @@ require (
 	github.com/go-openapi/swag v0.19.14 // indirect
 	github.com/gobwas/glob v0.2.3 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
+	github.com/golang-jwt/jwt/v4 v4.2.0 // indirect
 	github.com/golang/protobuf v1.5.2 // indirect
 	github.com/google/btree v1.0.1 // indirect
 	github.com/google/gnostic v0.5.7-v3refs // indirect
@@ -98,31 +109,34 @@ require (
 	github.com/opencontainers/image-spec v1.0.3-0.20211202183452-c5a74bcca799 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
-	github.com/prometheus/client_golang v1.12.1 // indirect
+	github.com/prometheus/client_golang v1.12.2 // indirect
 	github.com/prometheus/client_model v0.2.0 // indirect
 	github.com/prometheus/common v0.32.1 // indirect
 	github.com/prometheus/procfs v0.7.3 // indirect
 	github.com/rubenv/sql-migrate v1.1.2 // indirect
 	github.com/russross/blackfriday v1.5.2 // indirect
+	github.com/s3rj1k/go-fanotify/fanotify v0.0.0-20210917134616-9c00a300bb7a // indirect
 	github.com/shopspring/decimal v1.2.0 // indirect
 	github.com/sirupsen/logrus v1.8.1 // indirect
 	github.com/spf13/cast v1.4.1 // indirect
 	github.com/spf13/cobra v1.5.0 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
+	github.com/vishvananda/netns v0.0.0-20210104183010-2eb08e3e575f // indirect
 	github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f // indirect
 	github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415 // indirect
 	github.com/xeipuuv/gojsonschema v1.2.0 // indirect
 	github.com/xlab/treeprint v1.1.0 // indirect
 	go.etcd.io/etcd/api/v3 v3.5.4 // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/crypto v0.0.0-20220525230936-793ad666bf5e // indirect
+	golang.org/x/exp v0.0.0-20220613132600-b0d781184e0d // indirect
 	golang.org/x/net v0.0.0-20220722155237-a158d28d115b // indirect
 	golang.org/x/oauth2 v0.0.0-20211104180415-d3ed0bb246c8 // indirect
 	golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4 // indirect
-	golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f // indirect
+	golang.org/x/sys v0.0.0-20220928140112-f11e5e49a4ec // indirect
 	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
 	golang.org/x/text v0.3.7 // indirect
-	golang.org/x/time v0.0.0-20220210224613-90d013bbcef8 // indirect
+	golang.org/x/time v0.0.0-20220609170525-579cf78fd858 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto v0.0.0-20220502173005-c8bf987b8c21 // indirect
 	google.golang.org/grpc v1.47.0 // indirect
@@ -133,6 +147,7 @@ require (
 	k8s.io/apiextensions-apiserver v0.25.2 // indirect
 	k8s.io/apiserver v0.25.2 // indirect
 	k8s.io/component-base v0.25.2 // indirect
+	k8s.io/cri-api v0.23.1 // indirect
 	k8s.io/klog/v2 v2.70.1 // indirect
 	k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1 // indirect
 	k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed // indirect
@@ -143,4 +158,3 @@ require (
 	sigs.k8s.io/structured-merge-diff/v4 v4.2.3 // indirect
 	sigs.k8s.io/yaml v1.3.0 // indirect
 )
-