Merge branch 'feature/ebpf-core' into identity_enhancements

Author: LorenzoTettamanti

core/Cargo.lock

@@ -14,7 +14,7 @@ members = [
     "src/components/maps",
     "src/components/conntracker",
     "xtask",
-    "src/components/identity",
+    "src/components/identity", "src/components/metrics_tracer", "src/components/metrics",
 ]
 
 [dependencies]

core/Cargo.toml

@@ -19,6 +19,8 @@ If you're interested or have any questions, feel free to contact:
    | ------------------------- |--------------------------------------------------- | --------------- |
    | **Conntracker**      |   Kernel space component that tracks connections inside the cluster using TC hook and classifier. Intercepts Ingress and Egress connections by registering a PerfEventArray with five parameters (Source Ip, Source Port, Destination Ip, Destination Port, Hash ID). The hash ID is generated to uniquely track the connection based on the previous 4 parameters          | - [[92]](https://github.com/CortexFlow/CortexBrain/issues/92) <br> - [Core](https://github.com/CortexFlow/CortexBrain/milestone/1)
    | **Identity**      |    User Space program that uses Conntracker component and displays active connections in the cluster           | -  [[92]](https://github.com/CortexFlow/CortexBrain/issues/92) <br> - [Core](https://github.com/CortexFlow/CortexBrain/milestone/1)
+   | **Metrics_tracer**      |  Kernel Space program that collects the main CortexBrain metrics collectors | - [[91]](https://github.com/CortexFlow/CortexBrain/issues/78) <br> - [Core](https://github.com/CortexFlow/CortexBrain/milestone/1)
+   | **Metrics**      |  User Space implementation of the metrics_tracer BPF scripts. The metrics crate also aggregates,  stores, and hosts the main data processing functions | - [[91]](https://github.com/CortexFlow/CortexBrain/issues/78) <br> - [Core](https://github.com/CortexFlow/CortexBrain/milestone/1)
    | **Loadbalancer**      |    User space component. One of the core functionalities. The load balancer uses XDP, Maps, and Identity to distribute traffic across multiple backends in the cluster using optimized load balancing techniques | - [[91]](https://github.com/CortexFlow/CortexBrain/issues/91) <br> - [[Core]](https://github.com/CortexFlow/CortexBrain/milestone/1)
    | **Maps**      |    Contains all the BPF maps used in the XDP component           | /
    | **XDP**      |  Kernel Space program that operates in the XDP hook to filter traffic and apply access policies in the cluster | - [[91]](https://github.com/CortexFlow/CortexBrain/issues/91) <br> - [Core](https://github.com/CortexFlow/CortexBrain/milestone/1)

core/Readme.md

@@ -214,7 +214,6 @@ pub fn try_veth_tracer(ctx: ProbeContext, mode: u8) -> Result<u32, i64> {
 
     Ok(0)
 }
-
 #[classifier]
 pub fn identity_classifier(ctx: TcContext) -> i32 {
     match try_identity_classifier(ctx) {

core/src/components/conntracker/src/main.rs

@@ -0,0 +1,16 @@
+[package]
+name = "metrics"
+version = "0.1.0"
+edition = "2024"
+
+[dependencies]
+aya = "0.13.1"
+aya-log = "0.2.1"
+bytes = "1.4"
+tokio = { version = "1", features = ["full"] }
+anyhow = "1.0"
+tracing = "0.1.41"
+tracing-subscriber = { version = "0.3.19", features = ["env-filter"] }
+libc = "0.2.172"
+bytemuck = "1.23.0"
+nix  ={version="0.30.1",features=["net"]}

core/src/components/metrics/Cargo.toml

@@ -0,0 +1,35 @@
+# Phase 1: Build image
+FROM rust:1.85 AS builder
+
+# Set working directory
+WORKDIR /usr/src/app/metrics
+
+# Copy Cargo manifest and sources
+COPY Cargo.toml .
+COPY src ./src
+
+# Fetch dependencies and build release
+RUN cargo fetch && cargo build --release
+
+# Phase 2: Final minimal image
+FROM ubuntu:24.04
+
+# Install runtime dependencies
+RUN apt-get update && apt-get install -y \
+    ca-certificates \
+    && rm -rf /var/lib/apt/lists/*
+
+# Create working directory
+WORKDIR /usr/src/cortexbrain-metrics
+
+# Copy the compiled binary
+COPY --from=builder /usr/src/app/metrics/target/release/metrics /usr/local/bin/cortexflow-metrics
+
+# Copy configuration files
+COPY metrics_tracer /usr/src/cortexbrain-metrics/metrics_tracer
+
+# Set environment variable
+ENV BPF_PATH="/usr/src/cortexbrain-metrics/metrics_tracer"
+
+# Default command
+CMD ["cortexflow-metrics"]

core/src/components/metrics/Dockerfile

@@ -0,0 +1,17 @@
+#!/bin/bash
+
+# Building identity files
+echo "Building the metrics-tracer files"
+pushd ../metrics_tracer
+./build-metrics-tracer.sh
+popd
+
+echo "Copying metrics_tracer binaries"
+cp -r ../../../target/bpfel-unknown-none/release/metrics_tracer metrics_tracer
+
+# Run docker build
+docker build -t metrics:0.0.1 .
+
+# Cleanup
+echo "Cleaning building files"
+rm -rf metrics_tracer

core/src/components/metrics/build-metrics.sh

@@ -0,0 +1,132 @@
+use aya::{
+    Ebpf,
+    maps::{
+        Map, MapData,
+        perf::{PerfEventArray, PerfEventArrayBuffer},
+    },
+    programs::{KProbe, SchedClassifier, TcAttachType, tc::SchedClassifierLinkId},
+    util::online_cpus,
+};
+
+use aya_log::EbpfLogger;
+use bytes::BytesMut;
+use std::{
+    convert::TryInto,
+    env, fs,
+    net::Ipv4Addr,
+    path::Path,
+    sync::{
+        Arc, Mutex,
+        atomic::{AtomicBool, Ordering},
+    },
+};
+
+use anyhow::{Context, Ok};
+use tokio::{signal, sync::broadcast::error};
+use tracing::{error, info, warn};
+use tracing_subscriber::{EnvFilter, fmt::format::FmtSpan};
+
+const BPF_PATH: &str = "BPF_PATH"; //BPF env path
+use std::collections::HashMap;
+
+#[repr(C)]
+#[derive(Clone, Copy)]
+struct NetworkMetrics {
+    src_addr: u32,
+}
+
+#[tokio::main]
+async fn main() -> Result<(), anyhow::Error> {
+    //init tracing subscriber
+    tracing_subscriber::fmt()
+        .with_max_level(tracing::Level::INFO)
+        .with_target(false)
+        .with_level(true)
+        .with_span_events(FmtSpan::NONE)
+        .with_file(false)
+        .pretty()
+        .with_env_filter(EnvFilter::new("info"))
+        .with_line_number(false)
+        .init();
+
+    info!("Starting metrics service...");
+    info!("fetching data");
+
+    let bpf_path = env::var(BPF_PATH).context("BPF_PATH environment variable required")?;
+    let data = fs::read(Path::new(&bpf_path)).context("Failed to load file from path")?;
+    let mut bpf = Ebpf::load(&data)?;
+    //init bpf logger
+    info!("Running Ebpf logger");
+    info!("loading programs");
+    let net_metrics_map = bpf
+        .take_map("net_metrics")
+        .ok_or_else(|| anyhow::anyhow!("net_metrics map not found"))?;
+
+    let program: &mut KProbe = bpf
+        .program_mut("metrics_tracer")
+        .ok_or_else(|| anyhow::anyhow!("program 'metrics_tracer' not found"))?
+        .try_into()
+        .context("Failed to init Kprobe program")?;
+
+    program
+        .load()
+        .context("Failed to load metrics_tracer program")?;
+
+    match program.attach("tcp_identify_packet_loss", 0) {
+        std::result::Result::Ok(_) => {
+            info!("program attacched successfully to the tcp_identify_packet_loss kprobe ")
+        }
+        Err(e) => error!(
+            "An error occured while attaching the program to the tcp_identify_packet_loss kprobe. {:?} ",
+            e
+        ),
+    }
+    let mut net_perf_buffer: Vec<PerfEventArrayBuffer<MapData>> = Vec::new();
+    let mut net_perf_array: PerfEventArray<MapData> = PerfEventArray::try_from(net_metrics_map)?;
+
+    for cpu_id in online_cpus().map_err(|e| anyhow::anyhow!("Error {:?}", e))? {
+        let buf: PerfEventArrayBuffer<MapData> = net_perf_array.open(cpu_id, None)?;
+        net_perf_buffer.push(buf);
+    }
+    let running = AtomicBool::new(true);
+
+    let buffers = vec![BytesMut::with_capacity(1024); 10];
+
+    
+    tokio::spawn(async move{
+        display_metrics_map(net_perf_buffer, running, buffers).await;
+    });
+
+
+    signal::ctrl_c().await?;
+    Ok(())
+}
+
+pub async fn display_metrics_map(
+    mut perf_buffers: Vec<PerfEventArrayBuffer<MapData>>,
+    running: AtomicBool,
+    mut buffers: Vec<BytesMut>,
+) {
+    while running.load(Ordering::SeqCst) {
+        for buf in perf_buffers.iter_mut() {
+            match buf.read_events(&mut buffers) {
+                std::result::Result::Ok(events) => {
+                    for i in 0..events.read {
+                        let data = &buffers[i];
+                        if data.len() >= std::mem::size_of::<NetworkMetrics>() {
+                            let net_metrics: NetworkMetrics =
+                                unsafe { std::ptr::read(data.as_ptr() as *const _) };
+                            let src = Ipv4Addr::from(u32::from_be(net_metrics.src_addr));
+
+                            info!("Detected packet loss SRC: {}", src);
+                        }
+                    }
+                }
+                Err(e) => {
+                    error!("Error reading events: {:?}", e);
+                }
+            }
+        }
+        tokio::time::sleep(std::time::Duration::from_millis(100)).await;
+    }
+}

core/src/components/metrics/src/main.rs

@@ -0,0 +1,31 @@
+[package]
+name = "metrics_tracer"
+version = "0.1.0"
+edition = "2024"
+
+[dependencies]
+aya-ebpf = { git = "https://github.com/aya-rs/aya" }
+aya-log-ebpf = { git = "https://github.com/aya-rs/aya" }
+bytemuck = {version ="1.23.0",features = ["derive"]}
+network-types = "0.0.8"
+
+[build-dependencies]
+which = { version = "7.0.0", default-features = false }
+
+[[bin]]
+name = "metrics_tracer"
+path = "src/main.rs"
+
+[profile.dev]
+panic = "abort"
+
+[profile.release]
+panic = "abort"
+
+[target.bpfel-unknown-none]
+linker = "bpf-linker"
+rustflags = [
+    "-C", "panic=abort",
+    "-C", "target-feature=+alu32",
+    "-C", "link-args=-znotext",
+]

core/src/components/metrics_tracer/Cargo.toml

@@ -0,0 +1,20 @@
+echo "🚀 Building metrics tracer"
+
+bpftool btf dump file /sys/kernel/btf/vmlinux format c > vmlinux.h
+
+if [ $? -ne 0 ]; then
+    echo "Error: Failed to dump BTF from vmlinux. Ensure bpftool is installed and has access to the kernel BTF."
+    exit 1
+fi
+
+if ! command -v bindgen &> /dev/null; then
+    echo "bindgen not found, installing..."
+    cargo install bindgen-cli
+    export PATH="$HOME/.cargo/bin:$PATH" #add the ./cargo/bin directory to the PATH env variable
+fi
+
+bindgen vmlinux.h -o src/bindings.rs --use-core --allowlist-type 'sk_buff'
+
+cargo +nightly build -Z build-std=core --target bpfel-unknown-none --release --bin metrics_tracer
+
+rm -f vmlinux.h