bpfman-api 0.6.0

gRPC bindings to the bpfman API
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183

// SPDX-License-Identifier: Apache-2.0
// Copyright Authors of bpfman
use std::{env, fs::create_dir_all, path::PathBuf, str::FromStr, sync::Arc};

use anyhow::Context;
use bpfman::{
    add_programs, attach_program,
    config::Config,
    detach,
    errors::BpfmanError,
    get_program, list_programs, pull_bytecode, remove_program, setup,
    types::{AttachInfo, BytecodeImage, Link, ListFilter, Program},
};
use clap::{Args, Parser};
use log::debug;
use systemd_journal_logger::{JournalLog, connected_to_journal};
use tokio::{sync::Mutex, task::spawn_blocking};

use crate::serve::serve;

mod rpc;
mod serve;
mod storage;

const BPFMAN_ENV_LOG_LEVEL: &str = "RUST_LOG";

const RTDIR_SOCK: &str = "/run/bpfman-sock";
// The CSI socket must be in it's own sub directory so we can easily create a dedicated
// K8s volume mount for it.
const RTDIR_BPFMAN_CSI: &str = "/run/bpfman/csi";

#[derive(Parser, Debug)]
#[command(long_about = "A rpc server proxy for the bpfman library")]
#[command(name = "bpfman-rpc")]
#[command(version = env!("BPFMAN_BUILD_INFO"))]
pub(crate) struct Rpc {
    /// Optional: Enable CSI support. Only supported when run in a Kubernetes
    /// environment with bpfman-agent.
    #[clap(long, verbatim_doc_comment)]
    pub(crate) csi_support: bool,
    /// Optional: Shutdown after N seconds of inactivity. Use 0 to disable.
    #[clap(long, verbatim_doc_comment, default_value = "15")]
    pub(crate) timeout: u64,
    #[clap(long, default_value = "/run/bpfman-sock/bpfman.sock")]
    /// Optional: Configure the location of the bpfman unix socket.
    pub(crate) socket_path: PathBuf,
}

#[derive(Args, Debug)]
#[command(disable_version_flag = true)]
pub(crate) struct ServiceArgs {
    /// Optional: Shutdown after N seconds of inactivity. Use 0 to disable.
    #[clap(long, verbatim_doc_comment, default_value = "15")]
    pub(crate) timeout: u64,
    #[clap(long, default_value = "/run/bpfman-sock/bpfman.sock")]
    /// Optional: Configure the location of the bpfman unix socket.
    pub(crate) socket_path: PathBuf,
}

fn manage_rpc_journal_log_level() {
    // env_logger uses the environment variable RUST_LOG to set the log
    // level. Parse RUST_LOG to set the log level for journald.
    log::set_max_level(log::LevelFilter::Error);
    if env::var(BPFMAN_ENV_LOG_LEVEL).is_ok() {
        let rust_log = log::LevelFilter::from_str(&env::var(BPFMAN_ENV_LOG_LEVEL).unwrap());
        match rust_log {
            Ok(value) => log::set_max_level(value),
            Err(e) => log::error!("Invalid Log Level: {}", e),
        }
    }
}

fn initialize_rpc(csi_support: bool) -> anyhow::Result<()> {
    if connected_to_journal() {
        // If bpfman is running as a service, log to journald.
        JournalLog::new()?
            .with_extra_fields(vec![("VERSION", env!("CARGO_PKG_VERSION"))])
            .install()
            .expect("unable to initialize journal based logs");
        manage_rpc_journal_log_level();
        debug!("Log using journald");
    } else {
        // Ignore error if already initialized.
        let _ = env_logger::try_init();
        debug!("Log using env_logger");
    }

    create_dir_all(RTDIR_SOCK).context("unable to create socket directory")?;
    if csi_support {
        create_dir_all(RTDIR_BPFMAN_CSI).context("unable to create CSI directory")?;
    }

    Ok(())
}

pub struct AsyncBpfman {}
impl AsyncBpfman {
    pub(crate) fn new() -> Self {
        Self {}
    }

    fn setup(&self) -> anyhow::Result<(Config, sled::Db)> {
        setup().map_err(|e| e.into())
    }

    pub(crate) async fn add_programs(
        &self,
        programs: Vec<Program>,
    ) -> anyhow::Result<Vec<Program>> {
        let (config, root_db) = self.setup()?;
        match spawn_blocking(move || add_programs(&config, &root_db, programs)).await {
            Ok(result) => result.map_err(|e| e.into()),
            Err(e) => Err(BpfmanError::InternalError(e.to_string()).into()),
        }
    }

    pub(crate) async fn attach(&self, id: u32, attach_info: AttachInfo) -> anyhow::Result<Link> {
        let (config, root_db) = self.setup()?;
        match spawn_blocking(move || attach_program(&config, &root_db, id, attach_info)).await {
            Ok(result) => result.map_err(|e| e.into()),
            Err(e) => Err(BpfmanError::InternalError(e.to_string()).into()),
        }
    }

    pub(crate) async fn detach(&self, link_id: u32) -> anyhow::Result<()> {
        let (config, root_db) = self.setup()?;
        match spawn_blocking(move || detach(&config, &root_db, link_id)).await {
            Ok(result) => result.map_err(|e| e.into()),
            Err(e) => Err(BpfmanError::InternalError(e.to_string()).into()),
        }
    }

    pub(crate) async fn get_program(&self, id: u32) -> anyhow::Result<Program> {
        let (_, root_db) = self.setup()?;
        match spawn_blocking(move || get_program(&root_db, id)).await {
            Ok(result) => result.map_err(|e| e.into()),
            Err(e) => Err(BpfmanError::InternalError(e.to_string()).into()),
        }
    }

    pub(crate) async fn list_programs(&self, filter: ListFilter) -> anyhow::Result<Vec<Program>> {
        let (_, root_db) = self.setup()?;
        match spawn_blocking(move || list_programs(&root_db, filter)).await {
            Ok(result) => result.map_err(|e| e.into()),
            Err(e) => Err(BpfmanError::InternalError(e.to_string()).into()),
        }
    }

    pub(crate) async fn remove_program(&self, id: u32) -> anyhow::Result<()> {
        let (config, root_db) = self.setup()?;
        match spawn_blocking(move || remove_program(&config, &root_db, id)).await {
            Ok(result) => result.map_err(|e| e.into()),
            Err(e) => Err(BpfmanError::InternalError(e.to_string()).into()),
        }
    }

    pub(crate) async fn pull_bytecode(&self, image: BytecodeImage) -> anyhow::Result<()> {
        let (_, root_db) = self.setup()?;
        match spawn_blocking(move || pull_bytecode(&root_db, image)).await {
            Ok(result) => result,
            Err(e) => Err(BpfmanError::InternalError(e.to_string()).into()),
        }
    }
}

#[tokio::main]
async fn main() -> anyhow::Result<()> {
    let args = Rpc::parse();
    let async_bpfman = AsyncBpfman::new();
    let bpfman_lock: Arc<Mutex<_>> = Arc::new(Mutex::new(async_bpfman));

    initialize_rpc(args.csi_support)?;
    //TODO https://github.com/bpfman/bpfman/issues/881
    serve(
        bpfman_lock,
        args.csi_support,
        args.timeout,
        &args.socket_path,
    )
    .await?;

    Ok(())
}