Gitiles
Code Review Sign In
gerrit-dev.monogon.dev / monogon / 74e8e5c35fea1ec9ce13c8a2d16100bab45d42d9 / . / metropolis / cli / dbg / main.go
blob: c0baad96ee59a07bebf7d7822bee19f2b0adb3b0 [file] [log] [blame]
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]1// Copyright 2020 The Monogon Project Authors.
2//
3// SPDX-License-Identifier: Apache-2.0
4//
5// Licensed under the Apache License, Version 2.0 (the "License");
6// you may not use this file except in compliance with the License.
7// You may obtain a copy of the License at
8//
9// http://www.apache.org/licenses/LICENSE-2.0
10//
11// Unless required by applicable law or agreed to in writing, software
12// distributed under the License is distributed on an "AS IS" BASIS,
13// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14// See the License for the specific language governing permissions and
15// limitations under the License.
16
17package main
18
19import (
20 "context"
21 "flag"
22 "fmt"
Serge Bazanskib0272182020-11-02 18:39:44 +0100[diff] [blame]23 "io"
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]24 "io/ioutil"
25 "math/rand"
26 "os"
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]27 "time"
28
29 "github.com/spf13/pflag"
30 "google.golang.org/grpc"
31 cliflag "k8s.io/component-base/cli/flag"
32 "k8s.io/kubectl/pkg/cmd/plugin"
33 "k8s.io/kubectl/pkg/util/logs"
34 "k8s.io/kubernetes/pkg/kubectl/cmd"
35
Serge Bazanski31370b02021-01-07 16:31:14 +0100[diff] [blame]36 "source.monogon.dev/metropolis/pkg/logtree"
37 apb "source.monogon.dev/metropolis/proto/api"
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]38)
39
40func main() {
Serge Bazanskiefdb6e92020-07-13 17:19:27 +0200[diff] [blame]41 ctx := context.Background()
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]42 // Hardcode localhost since this should never be used to interface with a production node because of missing
43 // encryption & authentication
44 grpcClient, err := grpc.Dial("localhost:7837", grpc.WithInsecure())
45 if err != nil {
46 fmt.Printf("Failed to dial debug service (is it running): %v\n", err)
47 }
Serge Bazanskiefdb6e92020-07-13 17:19:27 +0200[diff] [blame]48 debugClient := apb.NewNodeDebugServiceClient(grpcClient)
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]49 if len(os.Args) < 2 {
50 fmt.Println("Please specify a subcommand")
51 os.Exit(1)
52 }
53
54 logsCmd := flag.NewFlagSet("logs", flag.ExitOnError)
Serge Bazanskib0272182020-11-02 18:39:44 +0100[diff] [blame]55 logsTailN := logsCmd.Int("tail", -1, "Get last n lines (-1 = whole buffer, 0 = disable)")
56 logsStream := logsCmd.Bool("follow", false, "Stream log entries live from the system")
57 logsRecursive := logsCmd.Bool("recursive", false, "Get entries from entire DN subtree")
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]58 logsCmd.Usage = func() {
Serge Bazanskib0272182020-11-02 18:39:44 +0100[diff] [blame]59 fmt.Fprintf(os.Stderr, "Usage: %s %s [options] dn\n", os.Args[0], os.Args[1])
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]60 flag.PrintDefaults()
61
Serge Bazanskib0272182020-11-02 18:39:44 +0100[diff] [blame]62 fmt.Fprintf(os.Stderr, "Example:\n %s %s --tail 5 --follow init\n", os.Args[0], os.Args[1])
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]63 }
Serge Bazanski57b43752020-07-13 19:17:48 +0200[diff] [blame]64 goldenticketCmd := flag.NewFlagSet("goldenticket", flag.ExitOnError)
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]65 conditionCmd := flag.NewFlagSet("condition", flag.ExitOnError)
66 conditionCmd.Usage = func() {
67 fmt.Fprintf(os.Stderr, "Usage: %s %s [options] component_path\n", os.Args[0], os.Args[1])
68 flag.PrintDefaults()
69
70 fmt.Fprintf(os.Stderr, "Example:\n %s %s IPAssigned\n", os.Args[0], os.Args[1])
71 }
Serge Bazanskib0272182020-11-02 18:39:44 +0100[diff] [blame]72
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]73 switch os.Args[1] {
74 case "logs":
75 logsCmd.Parse(os.Args[2:])
Serge Bazanskib0272182020-11-02 18:39:44 +0100[diff] [blame]76 dn := logsCmd.Arg(0)
77 req := &apb.GetLogsRequest{
78 Dn: dn,
79 BacklogMode: apb.GetLogsRequest_BACKLOG_DISABLE,
80 StreamMode: apb.GetLogsRequest_STREAM_DISABLE,
81 Filters: nil,
82 }
83
84 switch *logsTailN {
85 case 0:
86 case -1:
87 req.BacklogMode = apb.GetLogsRequest_BACKLOG_ALL
88 default:
89 req.BacklogMode = apb.GetLogsRequest_BACKLOG_COUNT
90 req.BacklogCount = int64(*logsTailN)
91 }
92
93 if *logsStream {
94 req.StreamMode = apb.GetLogsRequest_STREAM_UNBUFFERED
95 }
96
97 if *logsRecursive {
98 req.Filters = append(req.Filters, &apb.LogFilter{
99 Filter: &apb.LogFilter_WithChildren_{WithChildren: &apb.LogFilter_WithChildren{}},
100 })
101 }
102
103 stream, err := debugClient.GetLogs(ctx, req)
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]104 if err != nil {
105 fmt.Fprintf(os.Stderr, "Failed to get logs: %v\n", err)
106 os.Exit(1)
107 }
Serge Bazanskib0272182020-11-02 18:39:44 +0100[diff] [blame]108 for {
109 res, err := stream.Recv()
110 if err != nil {
111 if err == io.EOF {
112 os.Exit(0)
113 }
114 fmt.Fprintf(os.Stderr, "Failed to stream logs: %v\n", err)
115 os.Exit(1)
116 }
117 for _, entry := range res.BacklogEntries {
118 entry, err := logtree.LogEntryFromProto(entry)
119 if err != nil {
120 fmt.Printf("error decoding entry: %v", err)
121 continue
122 }
123 fmt.Println(entry.String())
124 }
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]125 }
Serge Bazanski57b43752020-07-13 19:17:48 +0200[diff] [blame]126 case "goldenticket":
127 goldenticketCmd.Parse(os.Args[2:])
128 ip := goldenticketCmd.Arg(0)
129 res, err := debugClient.GetGoldenTicket(ctx, &apb.GetGoldenTicketRequest{ExternalIp: ip})
130 if err != nil {
131 fmt.Fprintf(os.Stderr, "Failed to get golden ticket: %v\n", err)
132 os.Exit(1)
133 }
134 fmt.Println(res.Ticket)
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]135 case "kubectl":
136 // Always get a kubeconfig with cluster-admin (group system:masters), kubectl itself can impersonate
137 kubeconfigFile, err := ioutil.TempFile("", "dbg_kubeconfig")
138 if err != nil {
139 fmt.Fprintf(os.Stderr, "Failed to create kubeconfig temp file: %v\n", err)
140 os.Exit(1)
141 }
142 defer kubeconfigFile.Close()
143 defer os.Remove(kubeconfigFile.Name())
144
Serge Bazanskiefdb6e92020-07-13 17:19:27 +0200[diff] [blame]145 res, err := debugClient.GetDebugKubeconfig(ctx, &apb.GetDebugKubeconfigRequest{Id: "debug-user", Groups: []string{"system:masters"}})
Lorenz Brun878f5f92020-05-12 16:15:39 +0200[diff] [blame]146 if err != nil {
147 fmt.Fprintf(os.Stderr, "Failed to get kubeconfig: %v\n", err)
148 os.Exit(1)
149 }
150 if _, err := kubeconfigFile.WriteString(res.DebugKubeconfig); err != nil {
151 fmt.Fprintf(os.Stderr, "Failed to write kubeconfig: %v\n", err)
152 os.Exit(1)
153 }
154
155 // This magic sets up everything as if this was just the kubectl binary. It sets the KUBECONFIG environment
156 // variable so that it knows where the Kubeconfig is located and forcibly overwrites the arguments so that
157 // the "wrapper" arguments are not visible to its flags parser. The base code is straight from
158 // https://github.com/kubernetes/kubernetes/blob/master/cmd/kubectl/kubectl.go
159 os.Setenv("KUBECONFIG", kubeconfigFile.Name())
160 rand.Seed(time.Now().UnixNano())
161 pflag.CommandLine.SetNormalizeFunc(cliflag.WordSepNormalizeFunc)
162 pflag.CommandLine.AddGoFlagSet(flag.CommandLine)
163 logs.InitLogs()
164 defer logs.FlushLogs()
165 command := cmd.NewDefaultKubectlCommandWithArgs(cmd.NewDefaultPluginHandler(plugin.ValidPluginFilenamePrefixes), os.Args[2:], os.Stdin, os.Stdout, os.Stderr)
166 command.SetArgs(os.Args[2:])
167 if err := command.Execute(); err != nil {
168 os.Exit(1)
169 }
170 }
171}