Cleanup and used existing caretta architecture

Author: PixNyb

pkg/caretta/caretta.go

@@ -73,7 +73,7 @@ func (caretta *Caretta) Start() {
 	pollingTicker := time.NewTicker(time.Duration(caretta.config.pollingIntervalSeconds) * time.Second)
 
 	pastLinks := make(map[NetworkLink]uint64)
-	pastConnections := []ConnectionLink{}
+	pastTcpConnections := make(map[TcpConnection]uint64)
 
 	go func() {
 		for {
@@ -82,20 +82,20 @@ func (caretta *Caretta) Start() {
 				return
 			case <-pollingTicker.C:
 				var links map[NetworkLink]uint64
-				var connections []ConnectionLink
+				var tcpConnections map[TcpConnection]uint64
 
 				if err != nil {
 					log.Printf("Error updating snapshot of cluster state, skipping iteration")
 					continue
 				}
 
-				pastLinks, links, pastConnections, connections = caretta.tracer.TracesPollingIteration(pastLinks, pastConnections)
+				pastLinks, links, pastTcpConnections, tcpConnections = caretta.tracer.TracesPollingIteration(pastLinks, pastTcpConnections)
 				for link, throughput := range links {
 					caretta.handleLink(&link, throughput)
 				}
 
-				for _, connection := range connections {
-					caretta.handleConnection(&connection)
+				for connection, throughput := range tcpConnections {
+					caretta.handleTcpConnection(&connection, throughput)
 				}
 			}
 		}
@@ -133,10 +133,20 @@ func (caretta *Caretta) handleLink(link *NetworkLink, throughput uint64) {
 	}).Set(float64(throughput))
 }
 
-func (caretta *Caretta) handleConnection(connection *ConnectionLink) {
+func (caretta *Caretta) handleTcpConnection(connection *TcpConnection, throughput uint64) {
+	tcpState := "unknown"
+	switch connection.State {
+	case TcpConnectionOpenState:
+		tcpState = "open"
+	case TcpConnectionAcceptState:
+		tcpState = "accept"
+	case TcpConnectionClosedState:
+		tcpState = "closed"
+	}
+
 	connectionsMetrics.With(prometheus.Labels{
 		"connection_id":    strconv.Itoa(int(fnvHash(connection.Client.Name+connection.Client.Namespace+connection.Server.Name+connection.Server.Namespace) + connection.Role)),
-		"connection_state": connection.State,
+		"connection_state": tcpState,
 		"client_id":        strconv.Itoa(int(fnvHash(connection.Client.Name + connection.Client.Namespace))),
 		"client_name":      connection.Client.Name,
 		"client_namespace": connection.Client.Namespace,
@@ -148,7 +158,7 @@ func (caretta *Caretta) handleConnection(connection *ConnectionLink) {
 		"server_kind":      connection.Server.Kind,
 		"server_port":      strconv.Itoa(int(connection.ServerPort)),
 		"role":             strconv.Itoa(int(connection.Role)),
-	}).Set(1)
+	}).Set(float64(throughput))
 }
 
 func (caretta *Caretta) getClientSet() (*kubernetes.Clientset, error) {

pkg/caretta/links_tracer.go

@@ -89,16 +89,15 @@ func (tracer *LinksTracer) Stop() error {
 
 // a single polling from the eBPF maps
 // iterating the traces from the kernel-space, summing each network link
-func (tracer *LinksTracer) TracesPollingIteration(pastLinks map[NetworkLink]uint64, pastConnections []ConnectionLink) (map[NetworkLink]uint64, map[NetworkLink]uint64, []ConnectionLink, []ConnectionLink) {
+func (tracer *LinksTracer) TracesPollingIteration(pastLinks map[NetworkLink]uint64, pastTcpConnections map[TcpConnection]uint64) (map[NetworkLink]uint64, map[NetworkLink]uint64, map[TcpConnection]uint64, map[TcpConnection]uint64) {
 	// outline of an iteration -
 	// filter unwanted connections, sum all connections as links, add past links, and return the new map
 	pollsMade.Inc()
 	unroledCounter := 0
 	loopbackCounter := 0
 
-	currentConnections := []ConnectionLink{}
-
 	currentLinks := make(map[NetworkLink]uint64)
+	currentTcpConnections := make(map[TcpConnection]uint64)
 	var connectionsToDelete []ConnectionIdentifier
 
 	var conn ConnectionIdentifier
@@ -128,49 +127,14 @@ func (tracer *LinksTracer) TracesPollingIteration(pastLinks map[NetworkLink]uint
 			continue
 		}
 
-		currentLinks[link] += throughput.BytesSent
-
-		// Update observed connections
-		state := "open"
-		if throughput.IsActive == 0 {
-			state = "close"
-		} else if conn.Role == ServerConnectionRole {
-			state = "accept"
-		}
-
-		connectionLink := ConnectionLink{
-			Client:     link.Client,
-			Server:     link.Server,
-			ServerPort: link.ServerPort,
-			Role:       conn.Role,
-			State:      state,
-		}
-
-		// Try to find the connection in the past connections
-		addToConnections := true
-		for i, pastConnection := range pastConnections {
-			// If the client, server and port are the same, and the state is close,
-			// remove the connection from the past connections and don't add it to the current connections
-			if pastConnection.Client == connectionLink.Client &&
-				pastConnection.Server == connectionLink.Server &&
-				pastConnection.ServerPort == connectionLink.ServerPort &&
-				pastConnection.Role == connectionLink.Role {
-
-				if pastConnection.State == "close" && state == "close" {
-					pastConnections = append(pastConnections[:i], pastConnections[i+1:]...)
-					addToConnections = false
-					break
-				}
-			}
+		tcpConn, err := tracer.reduceConnectionToTcp(conn, throughput)
+		if err != nil {
+			unroledCounter++
+			continue
 		}
 
-		if addToConnections {
-			currentConnections = append(currentConnections, connectionLink)
-
-			if throughput.IsActive == 0 {
-				pastConnections = append(pastConnections, connectionLink)
-			}
-		}
+		currentLinks[link] += throughput.BytesSent
+		currentTcpConnections[tcpConn] += throughput.BytesSent
 	}
 
 	mapSize.Set(float64(itemsCounter))
@@ -182,16 +146,21 @@ func (tracer *LinksTracer) TracesPollingIteration(pastLinks map[NetworkLink]uint
 		currentLinks[pastLink] += pastThroughput
 	}
 
+	// add past connections
+	for pastConn, pastThroughput := range pastTcpConnections {
+		currentTcpConnections[pastConn] += pastThroughput
+	}
+
 	// delete connections marked to delete
 	for _, conn := range connectionsToDelete {
-		tracer.deleteAndStoreConnection(&conn, pastLinks)
+		tracer.deleteAndStoreConnection(&conn, pastLinks, pastTcpConnections)
 	}
 
-	return pastLinks, currentLinks, pastConnections, currentConnections
+	return pastLinks, currentLinks, pastTcpConnections, currentTcpConnections
 
 }
 
-func (tracer *LinksTracer) deleteAndStoreConnection(conn *ConnectionIdentifier, pastLinks map[NetworkLink]uint64) {
+func (tracer *LinksTracer) deleteAndStoreConnection(conn *ConnectionIdentifier, pastLinks map[NetworkLink]uint64, pastTcpConnections map[TcpConnection]uint64) {
 	// newer kernels introduce batch map operation, but it might not be available so we delete item-by-item
 	var throughput ConnectionThroughputStats
 	err := tracer.connections.Lookup(conn, &throughput)
@@ -212,7 +181,17 @@ func (tracer *LinksTracer) deleteAndStoreConnection(conn *ConnectionIdentifier,
 		log.Printf("Error reducing connection to link when deleting: %v", err)
 		return
 	}
+
+	// if deletion is successful, add it to past tcp connections
+	tcpConn, err := tracer.reduceConnectionToTcp(*conn, throughput)
+	if err != nil {
+		log.Printf("Error reducing connection to tcp connection when deleting: %v", err)
+		return
+	}
+
 	pastLinks[link] += throughput.BytesSent
+	pastTcpConnections[tcpConn] += throughput.BytesSent
+
 	mapDeletions.Inc()
 }
 
@@ -240,6 +219,37 @@ func (tracer *LinksTracer) reduceConnectionToLink(connection ConnectionIdentifie
 	return link, nil
 }
 
+// reduce a specific connection to a general tcp connection
+func (tracer *LinksTracer) reduceConnectionToTcp(connection ConnectionIdentifier, throughput ConnectionThroughputStats) (TcpConnection, error) {
+	var tcpConn TcpConnection
+	tcpConn.Role = connection.Role
+
+	srcWorkload := tracer.resolver.ResolveIP(IP(connection.Tuple.SrcIp).String())
+	dstWorkload := tracer.resolver.ResolveIP(IP(connection.Tuple.DstIp).String())
+
+	if connection.Role == ClientConnectionRole {
+		// Src is Client, Dst is Server, Port is DstPort
+		tcpConn.Client = srcWorkload
+		tcpConn.Server = dstWorkload
+		tcpConn.ServerPort = connection.Tuple.DstPort
+		tcpConn.State = TcpConnectionOpenState
+	} else if connection.Role == ServerConnectionRole {
+		// Dst is Client, Src is Server, Port is SrcPort
+		tcpConn.Client = dstWorkload
+		tcpConn.Server = srcWorkload
+		tcpConn.ServerPort = connection.Tuple.SrcPort
+		tcpConn.State = TcpConnectionAcceptState
+	} else {
+		return TcpConnection{}, errors.New("connection's role is unknown")
+	}
+
+	if throughput.IsActive == 0 {
+		tcpConn.State = TcpConnectionClosedState
+	}
+
+	return tcpConn, nil
+}
+
 func isAddressLoopback(ip uint32) bool {
 	ipAddr := make(net.IP, 4)
 	binary.LittleEndian.PutUint32(ipAddr, ip)

pkg/caretta/links_tracer_test.go

@@ -357,7 +357,7 @@ func TestAggregations(t *testing.T) {
 
 			tracer := caretta.NewTracerWithObjs(&MockResolver{}, m, nil)
 			pastLinks := make(map[caretta.NetworkLink]uint64)
-			pastConnections := []caretta.ConnectionLink{}
+			pastConnections := make(map[caretta.TcpConnection]uint64)
 			var currentLinks map[caretta.NetworkLink]uint64
 			for _, connection := range test.connections {
 				m.Update(connection.connId, connection.throughput)
@@ -388,7 +388,7 @@ func TestDeletion_ActiveConnection_NotDeleted(t *testing.T) {
 	tracer := caretta.NewTracerWithObjs(&MockResolver{}, m, nil)
 
 	pastLinks := make(map[caretta.NetworkLink]uint64)
-	pastConnections := []caretta.ConnectionLink{}
+	pastConnections := make(map[caretta.TcpConnection]uint64)
 
 	// Act
 	m.Update(conn1, throughput1)
@@ -423,7 +423,7 @@ func TestDeletion_InactiveConnection_AddedToPastLinksAndRemovedFromMap(t *testin
 	tracer := caretta.NewTracerWithObjs(&MockResolver{}, m, nil)
 
 	pastLinks := make(map[caretta.NetworkLink]uint64)
-	pastConnections := []caretta.ConnectionLink{}
+	pastConnections := make(map[caretta.TcpConnection]uint64)
 
 	pastLinks, _, _, _ = tracer.TracesPollingIteration(pastLinks, pastConnections)
 
@@ -462,7 +462,7 @@ func TestDeletion_InactiveConnection_NewConnectionAfterDeletionUpdatesCorrectly(
 	tracer := caretta.NewTracerWithObjs(&MockResolver{}, m, nil)
 
 	pastLinks := make(map[caretta.NetworkLink]uint64)
-	pastConnections := []caretta.ConnectionLink{}
+	pastConnections := make(map[caretta.TcpConnection]uint64)
 
 	// update the throughput so the connection is inactive
 	throughput2 := inactiveThroughput
@@ -497,15 +497,19 @@ func TestConnectionState_Open(t *testing.T) {
 	tracer := caretta.NewTracerWithObjs(&MockResolver{}, m, nil)
 
 	pastLinks := make(map[caretta.NetworkLink]uint64)
-	pastConnections := []caretta.ConnectionLink{}
+	pastConnections := make(map[caretta.TcpConnection]uint64)
 
 	// Act
 	m.Update(conn1, throughput1)
 	_, _, _, currentConnections := tracer.TracesPollingIteration(pastLinks, pastConnections)
 
 	// Assert
 	assert.Equal(1, len(currentConnections))
-	assert.Equal("open", currentConnections[0].State)
+	// Get the first element of the map
+	for tcp := range currentConnections {
+		assert.Equal(uint32(caretta.TcpConnectionOpenState), tcp.State)
+		break
+	}
 }
 
 func TestConnectionState_Close(t *testing.T) {
@@ -525,15 +529,18 @@ func TestConnectionState_Close(t *testing.T) {
 	tracer := caretta.NewTracerWithObjs(&MockResolver{}, m, nil)
 
 	pastLinks := make(map[caretta.NetworkLink]uint64)
-	pastConnections := []caretta.ConnectionLink{}
+	pastConnections := make(map[caretta.TcpConnection]uint64)
 
 	// Act
 	m.Update(conn1, throughput1)
 	_, _, _, currentConnections := tracer.TracesPollingIteration(pastLinks, pastConnections)
 
 	// Assert
 	assert.Equal(1, len(currentConnections))
-	assert.Equal("close", currentConnections[0].State)
+	for tcp := range currentConnections {
+		assert.Equal(uint32(caretta.TcpConnectionClosedState), tcp.State)
+		break
+	}
 }
 
 func TestConnectionState_Accept(t *testing.T) {
@@ -553,15 +560,18 @@ func TestConnectionState_Accept(t *testing.T) {
 	tracer := caretta.NewTracerWithObjs(&MockResolver{}, m, nil)
 
 	pastLinks := make(map[caretta.NetworkLink]uint64)
-	pastConnections := []caretta.ConnectionLink{}
+	pastConnections := make(map[caretta.TcpConnection]uint64)
 
 	// Act
 	m.Update(conn1, throughput1)
 	_, _, _, currentConnections := tracer.TracesPollingIteration(pastLinks, pastConnections)
 
 	// Assert
 	assert.Equal(1, len(currentConnections))
-	assert.Equal("accept", currentConnections[0].State)
+	for tcp := range currentConnections {
+		assert.Equal(uint32(caretta.TcpConnectionAcceptState), tcp.State)
+		break
+	}
 }
 
 func TestConnectionState_UnknownRole(t *testing.T) {
@@ -581,7 +591,7 @@ func TestConnectionState_UnknownRole(t *testing.T) {
 	tracer := caretta.NewTracerWithObjs(&MockResolver{}, m, nil)
 
 	pastLinks := make(map[caretta.NetworkLink]uint64)
-	pastConnections := []caretta.ConnectionLink{}
+	pastConnections := make(map[caretta.TcpConnection]uint64)
 
 	// Act
 	m.Update(conn1, throughput1)
@@ -590,60 +600,3 @@ func TestConnectionState_UnknownRole(t *testing.T) {
 	// Assert
 	assert.Equal(0, len(currentConnections))
 }
-
-func TestConnectionRemoved_AfterClosed(t *testing.T) {
-	assert := assert.New(t)
-
-	// Arrange mock map, initial connection
-	m := NewMockConnectionsMap()
-
-	conn1 := caretta.ConnectionIdentifier{
-		Id:    1,
-		Pid:   1,
-		Tuple: serverTuple,
-		Role:  caretta.ServerConnectionRole,
-	}
-	throughput1 := activeThroughput
-
-	tracer := caretta.NewTracerWithObjs(&MockResolver{}, m, nil)
-
-	pastLinks := make(map[caretta.NetworkLink]uint64)
-	pastConnections := []caretta.ConnectionLink{}
-
-	// Act
-	m.Update(conn1, throughput1)
-	_, _, pastConnections, currentConnections := tracer.TracesPollingIteration(pastLinks, pastConnections)
-
-	// Assert
-	assert.Equal(1, len(currentConnections))
-	assert.Equal(0, len(pastConnections))
-
-	// Act
-	throughput2 := inactiveThroughput
-	m.Update(conn1, throughput2)
-	_, _, pastConnections, currentConnections = tracer.TracesPollingIteration(pastLinks, pastConnections)
-
-	// Assert
-	assert.Equal(1, len(currentConnections))
-	assert.Equal(1, len(pastConnections))
-
-	// Act
-	throughput3 := inactiveThroughput
-	m.Update(conn1, throughput3)
-	_, _, pastConnections, currentConnections = tracer.TracesPollingIteration(pastLinks, pastConnections)
-
-	// Assert
-	assert.Equal(0, len(currentConnections))
-	assert.Equal(0, len(pastConnections))
-
-	// Attempt to re-add the connection
-	throughput4 := activeThroughput
-
-	// Act
-	m.Update(conn1, throughput4)
-	_, _, pastConnections, currentConnections = tracer.TracesPollingIteration(pastLinks, pastConnections)
-
-	// Assert
-	assert.Equal(1, len(currentConnections))
-	assert.Equal(0, len(pastConnections))
-}