feat: Add CNI-telemtry sidecar in CNS pod

Author: behzad-mir

.pipelines/pipeline.yaml

@@ -158,6 +158,14 @@ stages:
                 arch: amd64
                 name: npm
                 os: windows
+              cni_telemetry_sidecar_linux_amd64:
+                arch: amd64
+                name: cni-telemetry-sidecar
+                os: linux
+              cni_telemetry_sidecar_windows_amd64:
+                arch: amd64
+                name: cni-telemetry-sidecar
+                os: windows
           steps:
             - template: containers/container-template.yaml
               parameters:
@@ -199,6 +207,10 @@ stages:
                 arch: arm64
                 name: npm
                 os: linux
+              cni_telemetry_sidecar_linux_arm64:
+                arch: arm64
+                name: cni-telemetry-sidecar
+                os: linux
           steps:
             - template: containers/container-template.yaml
               parameters:

Makefile

@@ -88,6 +88,10 @@ ACN_PACKAGE_PATH = github.com/Azure/azure-container-networking
 CNI_AI_PATH=$(ACN_PACKAGE_PATH)/telemetry.aiMetadata
 CNS_AI_PATH=$(ACN_PACKAGE_PATH)/cns/logger.aiMetadata
 NPM_AI_PATH=$(ACN_PACKAGE_PATH)/npm.aiMetadata
+CNI_TELEMETRY_SIDECAR_DIR = $(REPO_ROOT)/cns/cni-telemetry-sidecar
+CNI_TELEMETRY_SIDECAR_BUILD_DIR = $(BUILD_DIR)/cni-telemetry-sidecar
+CNI_TELEMETRY_SIDECAR_AI_ID = $(CNI_AI_ID)  # Reuse CNI AI ID
+CNI_TELEMETRY_SIDECAR_VERSION = $(CNS_VERSION)  # Version follows CNS
 
 # Tool paths
 CONTROLLER_GEN  := $(TOOLS_BIN_DIR)/controller-gen
@@ -235,6 +239,10 @@ azure-vnet-ipamv6-binary:
 azure-vnet-telemetry-binary:
 	cd $(CNI_TELEMETRY_DIR) && CGO_ENABLED=0 go build -v -o $(CNI_BUILD_DIR)/azure-vnet-telemetry$(EXE_EXT) -ldflags "-X main.version=$(CNI_VERSION) -X $(CNI_AI_PATH)=$(CNI_AI_ID) $(LD_BUILD_FLAGS)" -gcflags="-dwarflocationlists=true"
 
+# Build the Azure CNI Telemetry Sidecar binary.
+cni-telemetry-sidecar-binary:
+	cd $(CNI_TELEMETRY_SIDECAR_DIR) && CGO_ENABLED=0 go build -v -o $(CNI_TELEMETRY_SIDECAR_BUILD_DIR)/azure-cni-telemetry-sidecar$(EXE_EXT) -ldflags "-X main.version=$(CNI_TELEMETRY_SIDECAR_VERSION) -X $(CNI_AI_PATH)=$(CNI_TELEMETRY_SIDECAR_AI_ID)" -gcflags="-dwarflocationlists=true"
+
 # Build the Azure CLI network binary.
 acncli-binary:
 	cd $(ACNCLI_DIR) && CGO_ENABLED=0 go build -v -o $(ACNCLI_BUILD_DIR)/acn$(EXE_EXT) -ldflags "-X main.version=$(ACN_VERSION) $(LD_BUILD_FLAGS)" -gcflags="-dwarflocationlists=true"
@@ -596,6 +604,35 @@ npm-image-pull: ## pull cns container image.
 		IMAGE=$(NPM_IMAGE) \
 		TAG=$(NPM_PLATFORM_TAG)
 
+# cni-telemetry-sidecar
+
+cni-telemetry-sidecar-image-name: # util target to print the CNI telemetry sidecar image name
+	@echo $(CNI_TELEMETRY_SIDECAR_IMAGE)
+
+cni-telemetry-sidecar-image-name-and-tag: # util target to print the CNI telemetry sidecar image name and tag.
+    @echo $(IMAGE_REGISTRY)/$(CNI_TELEMETRY_SIDECAR_IMAGE):$(CNI_TELEMETRY_SIDECAR_PLATFORM_TAG)
+
+cni-telemetry-sidecar-image: ## build cni-telemetry-sidecar container image.
+	$(MAKE) container \
+        DOCKERFILE=cns/cni-telemetry-sidecar/Dockerfile \
+        IMAGE=$(CNI_TELEMETRY_SIDECAR_IMAGE) \
+        EXTRA_BUILD_ARGS='--build-arg CNI_AI_PATH=$(CNI_AI_PATH) --build-arg CNI_AI_ID=$(CNI_TELEMETRY_SIDECAR_AI_ID)' \
+        PLATFORM=$(PLATFORM) \
+        TAG=$(CNI_TELEMETRY_SIDECAR_PLATFORM_TAG) \
+        TARGET=$(OS) \
+        OS=$(OS) \
+        ARCH=$(ARCH)
+
+cni-telemetry-sidecar-image-push: ## push cni-telemetry-sidecar container image.
+	$(MAKE) container-push \
+        IMAGE=$(CNI_TELEMETRY_SIDECAR_IMAGE) \
+        TAG=$(CNI_TELEMETRY_SIDECAR_PLATFORM_TAG)
+
+cni-telemetry-sidecar-image-pull: ## pull cni-telemetry-sidecar container image.
+	$(MAKE) container-pull \
+        IMAGE=$(CNI_TELEMETRY_SIDECAR_IMAGE) \
+        TAG=$(CNI_TELEMETRY_SIDECAR_PLATFORM_TAG)
+
 ## Reusable targets for building multiplat container image manifests.
 
 IMAGE_ARCHIVE_DIR ?= $(shell pwd)
@@ -751,6 +788,21 @@ npm-skopeo-archive: ## export tar archive of multiplat container manifest.
 		IMAGE=$(NPM_IMAGE) \
 		TAG=$(NPM_VERSION)
 
+cni-telemetry-sidecar-manifest-build: ## build cni-telemetry-sidecar multiplat container manifest.
+	$(MAKE) manifest-build \
+        PLATFORMS="$(PLATFORMS)" \
+        IMAGE=$(CNI_TELEMETRY_SIDECAR_IMAGE) \
+        TAG=$(CNI_TELEMETRY_SIDECAR_VERSION)
+
+cni-telemetry-sidecar-manifest-push: ## push cni-telemetry-sidecar multiplat container manifest
+	$(MAKE) manifest-push \
+        IMAGE=$(CNI_TELEMETRY_SIDECAR_IMAGE) \
+        TAG=$(CNI_TELEMETRY_SIDECAR_VERSION)
+
+cni-telemetry-sidecar-skopeo-archive: ## export tar archive of cni-telemetry-sidecar multiplat container manifest.
+	$(MAKE) manifest-skopeo-archive \
+        IMAGE=$(CNI_TELEMETRY_SIDECAR_IMAGE) \
+        TAG=$(CNI_TELEMETRY_SIDECAR_VERSION)
 
 ########################### Archives ################################
 

cns/cni-telemetry-sidecar/Dockerfile

@@ -0,0 +1,59 @@
+# Azure CNI Telemetry Sidecar Dockerfile
+# Based on proven CNI Dockerfile pattern from azure-container-networking
+ARG ARCH
+ARG OS_VERSION
+ARG OS
+
+# Use the same proven base images as CNI
+# mcr.microsoft.com/oss/go/microsoft/golang:1.23-azurelinux3.0
+FROM --platform=linux/${ARCH} mcr.microsoft.com/oss/go/microsoft/golang@sha256:8f60e85f4b2f567c888d0b3a4cd12dc74bee534d94c528655546452912d90c74 AS go
+
+# mcr.microsoft.com/azurelinux/base/core:3.0
+FROM --platform=linux/${ARCH} mcr.microsoft.com/azurelinux/base/core@sha256:9948138108a3d69f1dae62104599ac03132225c3b7a5ac57b85a214629c8567d AS mariner-core
+
+FROM go AS azure-cni-telemetry-sidecar
+ARG OS
+ARG VERSION
+ARG CNI_AI_PATH
+ARG CNI_AI_ID
+
+WORKDIR /azure-container-networking
+COPY . .
+
+# Debug: Check if the source file exists and show Go version
+RUN ls -la cns/cni-telemetry-sidecar/ && go version
+
+# Build the Azure CNI telemetry sidecar binary for Linux
+RUN CGO_ENABLED=0 GOOS=linux go build \
+    -a \
+    -o /go/bin/azure-cni-telemetry-sidecar \
+    -trimpath \
+    -ldflags "-X main.version=${VERSION:-unknown} -X ${CNI_AI_PATH:-main.aiMetadata}=${CNI_AI_ID:-unknown}" \
+    -gcflags="-dwarflocationlists=true" \
+    ./cns/cni-telemetry-sidecar/
+
+# Build the Azure CNI telemetry sidecar binary for Windows
+RUN CGO_ENABLED=0 GOOS=windows go build \
+    -a \
+    -o /go/bin/azure-cni-telemetry-sidecar.exe \
+    -trimpath \
+    -ldflags "-X main.version=${VERSION:-unknown} -X ${CNI_AI_PATH:-main.aiMetadata}=${CNI_AI_ID:-unknown}" \
+    -gcflags="-dwarflocationlists=true" \
+    ./cns/cni-telemetry-sidecar/
+
+# Verify both binaries were built
+RUN ls -la /go/bin/azure-cni-telemetry-sidecar*
+
+FROM scratch AS bins
+COPY --from=azure-cni-telemetry-sidecar /go/bin/* /
+
+FROM scratch AS linux
+COPY --from=azure-cni-telemetry-sidecar /go/bin/azure-cni-telemetry-sidecar /azure-cni-telemetry-sidecar
+ENTRYPOINT [ "/azure-cni-telemetry-sidecar" ]
+
+# Windows support following CNI pattern
+FROM --platform=windows/${ARCH} mcr.microsoft.com/oss/kubernetes/windows-host-process-containers-base-image@sha256:b4c9637e032f667c52d1eccfa31ad8c63f1b035e8639f3f48a510536bf34032b AS hpc
+
+FROM hpc AS windows
+COPY --from=azure-cni-telemetry-sidecar /go/bin/azure-cni-telemetry-sidecar.exe /azure-cni-telemetry-sidecar.exe
+ENTRYPOINT [ "/azure-cni-telemetry-sidecar.exe" ]

cns/cni-telemetry-sidecar/configmanager.go

@@ -0,0 +1,107 @@
+package main
+
+import (
+	"encoding/json"
+	"fmt"
+	"os"
+	"time"
+
+	"github.com/Azure/azure-container-networking/cns/configuration"
+	"github.com/Azure/azure-container-networking/cns/logger"
+)
+
+// ConfigManager handles Azure CNS configuration loading and validation
+type ConfigManager struct {
+	configPath string
+}
+
+// NewConfigManager creates a new configuration manager for Azure CNS
+func NewConfigManager(configPath string) *ConfigManager {
+	return &ConfigManager{
+		configPath: configPath,
+	}
+}
+
+// LoadConfig loads and validates the Azure CNS configuration
+func (cm *ConfigManager) LoadConfig() (*configuration.CNSConfig, error) {
+	logger.Printf("Loading Azure CNS configuration from: %s", cm.configPath)
+
+	// Wait for configuration file to become available (Kubernetes ConfigMap mount)
+	if err := cm.waitForConfigFile(); err != nil {
+		return nil, fmt.Errorf("Azure CNS configuration file not available: %w", err)
+	}
+
+	// Read the configuration file from mounted volume
+	data, err := os.ReadFile(cm.configPath)
+	if err != nil {
+		return nil, fmt.Errorf("failed to read Azure CNS configuration file: %w", err)
+	}
+
+	// Parse JSON configuration into CNS config structure
+	var config configuration.CNSConfig
+	if err := json.Unmarshal(data, &config); err != nil {
+		return nil, fmt.Errorf("failed to parse Azure CNS configuration: %w", err)
+	}
+
+	// Validate configuration for Azure telemetry requirements
+	if err := cm.validateConfig(&config); err != nil {
+		return nil, fmt.Errorf("Azure CNS configuration validation failed: %w", err)
+	}
+
+	logger.Printf("Azure CNS configuration loaded and validated successfully")
+	return &config, nil
+}
+
+// waitForConfigFile waits for the configuration file to become available
+// This is important in Kubernetes environments where ConfigMaps are mounted asynchronously
+func (cm *ConfigManager) waitForConfigFile() error {
+	const maxRetries = 30
+	const retryInterval = 2 * time.Second
+
+	for i := 0; i < maxRetries; i++ {
+		if _, err := os.Stat(cm.configPath); err == nil {
+			return nil
+		}
+
+		if i == 0 {
+			logger.Printf("Waiting for Azure CNS configuration file to become available...")
+		}
+
+		time.Sleep(retryInterval)
+	}
+
+	return fmt.Errorf("Azure CNS configuration file not available after %d attempts (%v total wait time)",
+		maxRetries, time.Duration(maxRetries)*retryInterval)
+}
+
+// validateConfig performs Azure-specific validation of the CNS configuration
+func (cm *ConfigManager) validateConfig(config *configuration.CNSConfig) error {
+	// Validate that telemetry settings are properly configured
+	if config.TelemetrySettings.AppInsightsInstrumentationKey == "" && !config.TelemetrySettings.DisableAll {
+		logger.Printf("Warning: No Application Insights instrumentation key configured and telemetry not disabled")
+	}
+
+	// Validate batch size settings for Azure Application Insights
+	if config.TelemetrySettings.TelemetryBatchSizeBytes <= 0 {
+		logger.Printf("Warning: Invalid telemetry batch size, using default")
+	}
+
+	// Validate batch interval for optimal Azure ingestion
+	if config.TelemetrySettings.TelemetryBatchIntervalInSecs <= 0 {
+		logger.Printf("Warning: Invalid telemetry batch interval, using default")
+	}
+
+	// Log configuration summary for Azure monitoring and debugging
+	logger.Printf("Azure CNS Configuration Summary:")
+	logger.Printf("  - Telemetry DisableAll: %t", config.TelemetrySettings.DisableAll)
+	logger.Printf("  - Application Insights Key Present: %t",
+		config.TelemetrySettings.AppInsightsInstrumentationKey != "")
+	logger.Printf("  - Batch Size: %d bytes", config.TelemetrySettings.TelemetryBatchSizeBytes)
+	logger.Printf("  - Batch Interval: %d seconds", config.TelemetrySettings.TelemetryBatchIntervalInSecs)
+	logger.Printf("  - Disable Trace: %t", config.TelemetrySettings.DisableTrace)
+	logger.Printf("  - Disable Metric: %t", config.TelemetrySettings.DisableMetric)
+	logger.Printf("  - Disable Event: %t", config.TelemetrySettings.DisableEvent)
+	logger.Printf("  - Debug Mode: %t", config.TelemetrySettings.DebugMode)
+
+	return nil
+}

cns/cni-telemetry-sidecar/main.go

@@ -0,0 +1,51 @@
+package main
+
+import (
+	"context"
+	"flag"
+	"os"
+	"os/signal"
+	"syscall"
+
+	"github.com/Azure/azure-container-networking/cns/logger"
+)
+
+var (
+	version    = "unknown"
+	configPath = flag.String("config", "/etc/cns/cns-config.json", "Path to CNS configuration file")
+)
+
+func main() {
+	flag.Parse()
+
+	// Initialize logging for the CNI telemetry sidecar
+	logger.InitLogger("azure-cns-cni-telemetry-sidecar", 1, 1, "/var/log/azure-cns-telemetry")
+	defer logger.Close()
+
+	logger.Printf("Starting Azure CNI Telemetry Sidecar v%s", version)
+
+	// Create telemetry sidecar service
+	sidecar := NewTelemetrySidecar(*configPath)
+
+	// Setup graceful shutdown context
+	ctx, cancel := context.WithCancel(context.Background())
+	defer cancel()
+
+	// Handle OS signals for graceful shutdown
+	sigCh := make(chan os.Signal, 1)
+	signal.Notify(sigCh, os.Interrupt, syscall.SIGTERM)
+
+	go func() {
+		sig := <-sigCh
+		logger.Printf("Received shutdown signal %v, initiating graceful shutdown", sig)
+		cancel()
+	}()
+
+	// Run the telemetry sidecar
+	if err := sidecar.Run(ctx); err != nil {
+		logger.Errorf("Azure CNI Telemetry Sidecar failed: %v", err)
+		os.Exit(1)
+	}
+
+	logger.Printf("Azure CNI Telemetry Sidecar stopped gracefully")
+}