bpf: Add BPF map operations for the StateDB reconciler

This allows defining the desired state of a BPF map as a StateDB table and to reconcile it with a BPF map. The table can be inspected with "cilium-dbg statedb dump" (or with a table-specific command), and the reconciliation state of each object can be queried. Failure the reconcile will be reported in module health, metrics and in the individual objects. See ops_linux_test.go for example usage. Signed-off-by: Jussi Maki <jussi@isovalent.com>
cilium · Apr 24, 2024 · 6092fca · 6092fca
1 parent a358557
commit 6092fca
Show file tree

Hide file tree

Showing 2 changed files with 392 additions and 0 deletions.
diff --git a/pkg/bpf/ops_linux.go b/pkg/bpf/ops_linux.go
@@ -0,0 +1,146 @@
+// SPDX-License-Identifier: Apache-2.0
+// Copyright Authors of Cilium
+
+package bpf
+
+import (
+	"bytes"
+	"context"
+	"encoding"
+	"errors"
+	"reflect"
+	"unsafe"
+
+	"github.com/cilium/ebpf"
+
+	"github.com/cilium/cilium/pkg/statedb"
+	"github.com/cilium/cilium/pkg/statedb/reconciler"
+)
+
+// KeyValue is the interface that an BPF map value object must implement.
+//
+// The object can either store the key and value directly in struct form
+// and use StructBinaryMarshaler{}, or it can implement conversion to binary
+// form on the fly by implementing BinaryMarshaler by hand.
+type KeyValue interface {
+	BinaryKey() encoding.BinaryMarshaler
+	BinaryValue() encoding.BinaryMarshaler
+}
+
+// StructBinaryMarshaler implements a BinaryMarshaler for a struct of
+// primitive fields. Same caviats apply as with cilium/ebpf when using a
+// struct as key or value.
+// Example usage:
+//
+//	func (x *X) Key() encoding.BinaryMarshaler {
+//	  return StructBinaryMarshaler{x}
+//	}
+type StructBinaryMarshaler struct {
+	Target any // pointer to struct
+}
+
+func (m StructBinaryMarshaler) MarshalBinary() ([]byte, error) {
+	v := reflect.ValueOf(m.Target)
+	size := int(v.Type().Elem().Size())
+	return unsafe.Slice((*byte)(v.UnsafePointer()), size), nil
+}
+
+type mapOps[KV KeyValue] struct {
+	m *ebpf.Map
+}
+
+func NewMapOps2[KV KeyValue](m *ebpf.Map) reconciler.Operations[KV] {
+	ops := &mapOps[KV]{m}
+	return ops
+}
+
+func NewMapOps[KV KeyValue](m *Map) reconciler.Operations[KV] {
+	ops := &mapOps[KV]{m.m}
+	return ops
+}
+
+// Delete implements reconciler.Operations.
+func (ops *mapOps[KV]) Delete(ctx context.Context, txn statedb.ReadTxn, entry KV) error {
+	return ops.m.Delete(entry.BinaryKey())
+}
+
+type keyIterator struct {
+	m          *ebpf.Map
+	nextKey    []byte
+	err        error
+	maxEntries uint32
+}
+
+func (it *keyIterator) Err() error {
+	return it.err
+}
+
+func (it *keyIterator) Next() []byte {
+	if it.maxEntries == 0 {
+		return nil
+	}
+	var key []byte
+	if it.nextKey == nil {
+		key, it.err = it.m.NextKeyBytes(nil)
+	} else {
+		key, it.err = it.m.NextKeyBytes(it.nextKey)
+	}
+	if key == nil || it.err != nil {
+		return nil
+	}
+	it.nextKey = key
+	it.maxEntries--
+	return key
+}
+
+func (ops *mapOps[KV]) toStringKey(kv KV) string {
+	key, _ := kv.BinaryKey().MarshalBinary()
+	return string(key)
+}
+
+func (ops *mapOps[KV]) equalValue(b []byte, kv KV) bool {
+	value, _ := kv.BinaryValue().MarshalBinary()
+	return bytes.Equal(b, value)
+}
+
+// Prune BPF map values that do not exist in the table.
+func (ops *mapOps[KV]) Prune(ctx context.Context, txn statedb.ReadTxn, iter statedb.Iterator[KV]) error {
+	desiredKeys := statedb.CollectSet(statedb.Map(iter, func(kv KV) string { return ops.toStringKey(kv) }))
+	var errs []error
+	mapIter := &keyIterator{ops.m, nil, nil, ops.m.MaxEntries()}
+	for key := mapIter.Next(); key != nil; key = mapIter.Next() {
+		if !desiredKeys.Has(string(key)) {
+			if err := ops.m.Delete(key); err != nil {
+				errs = append(errs, err)
+			}
+		}
+	}
+	errs = append(errs, mapIter.Err())
+	return errors.Join(errs...)
+}
+
+// Update the BPF map value to match with the object in the desired state table.
+func (ops *mapOps[KV]) Update(ctx context.Context, txn statedb.ReadTxn, entry KV, changed *bool) error {
+	if changed != nil {
+		// If changed is set, then we're doing a full reconciliation and we want to track
+		// whether the full reconciliation fixes anything. We figure out if a change is
+		// necessary by doing a lookup and comparing values.
+		var value []byte
+		err := ops.m.Lookup(entry.BinaryKey(), &value)
+		if err != nil {
+			if errors.Is(err, ebpf.ErrKeyNotExist) {
+				*changed = true
+			} else {
+				return err
+			}
+		} else {
+			*changed = !ops.equalValue(value, entry)
+		}
+		if *changed {
+			return ops.m.Put(entry.BinaryKey(), entry.BinaryValue())
+		}
+		return nil
+	} else {
+		return ops.m.Put(entry.BinaryKey(), entry.BinaryValue())
+	}
+}
diff --git a/pkg/bpf/ops_linux_test.go b/pkg/bpf/ops_linux_test.go
@@ -0,0 +1,246 @@
+// SPDX-License-Identifier: Apache-2.0
+// Copyright Authors of Cilium
+
+package bpf
+
+import (
+	"context"
+	"encoding"
+	"testing"
+
+	"github.com/sirupsen/logrus"
+	"github.com/stretchr/testify/assert"
+	"github.com/stretchr/testify/require"
+
+	"github.com/cilium/ebpf"
+
+	"github.com/cilium/cilium/pkg/hive"
+	"github.com/cilium/cilium/pkg/hive/cell"
+	"github.com/cilium/cilium/pkg/hive/job"
+	"github.com/cilium/cilium/pkg/logging"
+	"github.com/cilium/cilium/pkg/statedb"
+	"github.com/cilium/cilium/pkg/statedb/index"
+	"github.com/cilium/cilium/pkg/statedb/reconciler"
+	"github.com/cilium/cilium/pkg/testutils"
+	"github.com/cilium/cilium/pkg/time"
+)
+
+type TestObject struct {
+	Key    TestKey
+	Value  TestValue
+	Status reconciler.Status
+}
+
+func (o *TestObject) BinaryKey() encoding.BinaryMarshaler {
+	return StructBinaryMarshaler{&o.Key}
+}
+
+func (o *TestObject) BinaryValue() encoding.BinaryMarshaler {
+	return StructBinaryMarshaler{&o.Value}
+}
+
+type emptyIterator struct{}
+
+func (*emptyIterator) Next() (*TestObject, uint64, bool) {
+	return nil, 0, false
+}
+
+var _ statedb.Iterator[*TestObject] = &emptyIterator{}
+
+func Test_MapOps(t *testing.T) {
+	testutils.PrivilegedTest(t)
+
+	testMap := NewMap("cilium_ops_test",
+		ebpf.Hash,
+		&TestKey{},
+		&TestValue{},
+		maxEntries,
+		BPF_F_NO_PREALLOC,
+	)
+
+	err := testMap.OpenOrCreate()
+	require.NoError(t, err, "OpenOrCreate")
+	defer testMap.Close()
+
+	ctx := context.TODO()
+	ops := NewMapOps[*TestObject](testMap)
+	obj := &TestObject{Key: TestKey{1}, Value: TestValue{2}}
+
+	// Test Update() and Delete()
+	changed := false
+	err = ops.Update(ctx, nil, obj, &changed)
+	assert.NoError(t, err, "Update")
+	assert.True(t, changed, "should have changed on first update")
+
+	err = ops.Update(ctx, nil, obj, &changed)
+	assert.NoError(t, err, "Update")
+	assert.False(t, changed, "no change on second update")
+
+	v, err := testMap.Lookup(&TestKey{1})
+	assert.NoError(t, err, "Lookup")
+	assert.Equal(t, v.(*TestValue).Value, obj.Value.Value)
+
+	err = ops.Delete(ctx, nil, obj)
+	assert.NoError(t, err, "Delete")
+
+	_, err = testMap.Lookup(&TestKey{1})
+	assert.Error(t, err, "Lookup")
+
+	// Test Prune()
+	err = testMap.Update(&TestKey{2}, &TestValue{3})
+	assert.NoError(t, err, "Update")
+
+	v, err = testMap.Lookup(&TestKey{2})
+	if assert.NoError(t, err, "Lookup") {
+		assert.Equal(t, v.(*TestValue).Value, uint32(3))
+	}
+
+	// Give Prune() an empty set of objects, which should cause it to
+	// remove everything.
+	err = ops.Prune(ctx, nil, &emptyIterator{})
+	assert.NoError(t, err, "Prune")
+
+	data := map[string][]string{}
+	testMap.Dump(data)
+	assert.Len(t, data, 0)
+}
+
+// Test_MapOps_ReconcilerExample serves as a testable example for the map ops.
+// This is not an "Example*" function as it can only run privileged.
+func Test_MapOps_ReconcilerExample(t *testing.T) {
+	testutils.PrivilegedTest(t)
+
+	exampleMap := NewMap("example",
+		ebpf.Hash,
+		&TestKey{},
+		&TestValue{},
+		maxEntries,
+		BPF_F_NO_PREALLOC,
+	)
+	err := exampleMap.OpenOrCreate()
+	require.NoError(t, err)
+	defer exampleMap.Close()
+
+	// Create the map operations and the reconciler configuration.
+	ops := NewMapOps[*TestObject](exampleMap)
+	config := reconciler.Config[*TestObject]{
+		FullReconcilationInterval: time.Minute,
+		RetryBackoffMinDuration:   100 * time.Millisecond,
+		RetryBackoffMaxDuration:   10 * time.Second,
+		IncrementalRoundSize:      1000,
+		GetObjectStatus: func(obj *TestObject) reconciler.Status {
+			return obj.Status
+		},
+		WithObjectStatus: func(obj *TestObject, s reconciler.Status) *TestObject {
+			obj2 := *obj
+			obj2.Status = s
+			return &obj2
+		},
+		Operations:      ops,
+		BatchOperations: nil,
+	}
+
+	// Create the table containing the desired state of the map.
+	keyIndex := statedb.Index[*TestObject, uint32]{
+		Name: "example",
+		FromObject: func(obj *TestObject) index.KeySet {
+			return index.NewKeySet(index.Uint32(obj.Key.Key))
+		},
+		FromKey: index.Uint32,
+		Unique:  true,
+	}
+	table, err := statedb.NewTable("example", keyIndex)
+	require.NoError(t, err, "NewTable")
+
+	// Silence the hive log output.
+	oldLogLevel := logging.DefaultLogger.GetLevel()
+	logging.SetLogLevel(logrus.ErrorLevel)
+	t.Cleanup(func() {
+		logging.SetLogLevel(oldLogLevel)
+	})
+
+	// Setup and start a hive to run the reconciler.
+	var db *statedb.DB
+	h := hive.New(
+		statedb.Cell,
+		reconciler.Cell,
+		job.Cell,
+
+		cell.Module(
+			"example",
+			"Example",
+
+			cell.Provide(
+				func(db_ *statedb.DB) (statedb.RWTable[*TestObject], error) {
+					db = db_
+					return table, db.RegisterTable(table)
+				},
+				func() reconciler.Config[*TestObject] {
+					return config
+				},
+			),
+			cell.Invoke(
+				reconciler.Register[*TestObject],
+			),
+		),
+	)
+
+	err = h.Start(context.Background())
+	require.NoError(t, err, "Start")
+
+	t.Cleanup(func() {
+		h.Stop(context.Background())
+	})
+
+	// Insert an object to the desired state and wait for it to reconcile.
+	txn := db.WriteTxn(table)
+	table.Insert(txn, &TestObject{
+		Key:   TestKey{1},
+		Value: TestValue{2},
+
+		// Mark the object to be pending for reconciliation. Without this
+		// the reconciler would ignore this object.
+		Status: reconciler.StatusPending(),
+	})
+	txn.Commit()
+
+	for {
+		obj, _, watch, ok := table.FirstWatch(db.ReadTxn(), keyIndex.Query(1))
+		if ok {
+			if obj.Status.Kind == reconciler.StatusKindDone {
+				// The object has been reconciled.
+				break
+			}
+			t.Logf("Object not done yet: %#v", obj)
+		}
+		// Wait for the object to update
+		<-watch
+	}
+
+	v, err := exampleMap.Lookup(&TestKey{1})
+	require.NoError(t, err, "Lookup")
+	require.Equal(t, uint32(2), v.(*TestValue).Value)
+
+	// Mark the object for deletion
+	txn = db.WriteTxn(table)
+	table.Insert(txn, &TestObject{
+		Key:    TestKey{1},
+		Value:  TestValue{2},
+		Status: reconciler.StatusPendingDelete(),
+	})
+	txn.Commit()
+
+	for {
+		obj, _, watch, ok := table.FirstWatch(db.ReadTxn(), keyIndex.Query(1))
+		if !ok {
+			// The object has been successfully deleted.
+			break
+		}
+		t.Logf("Object not deleted yet: %#v", obj)
+		// Wait for the object to update
+		<-watch
+	}
+
+	_, err = exampleMap.Lookup(&TestKey{1})
+	require.ErrorIs(t, err, ebpf.ErrKeyNotExist, "Lookup")
+}