Skip to content
GitLab
Switch branch/tag
This project is mirrored from https://gitee.com/cowcomic/pixie.git. Pull mirroring failed .
Repository mirroring has been paused due to too many failed attempts. It can be resumed by a project maintainer.
  1. 28 Jul, 2021 6 commits
  3. 27 Jul, 2021 13 commits
    • Phillip Kuznetsov's avatar
      Refactor metadata_reader_tests for better reuse · dbc9a406
      Phillip Kuznetsov authored 
      Summary: @vjain left a comment that I forgot to properly address in the diff that added this test. I ran into a bug in a later diff that would've been fixed if this was easier to maintain and the tests were combined. Therefore, decided to dedupe the tests and combine them together.

Test Plan: Ran the test, should pass

Reviewers: vihang, michelle, vjain

Reviewed By: vjain

Subscribers: vjain

Differential Revision: https://phab.corp.pixielabs.ai/D9329

GitOrigin-RevId: ab5e511192d79173eecd1ef7f248e7655a640bcb
      dbc9a406
    • Nick Lanam's avatar
      [PC-1091] Refresh cached information when first loading it. · 5daf42d6
      Nick Lanam authored 
      Summary:
*TL;DR*: Rebalances how aggressively we update cached GQL data.

Apollo has a few `fetchPolicy` options when asking it to make queries. These ones are relevant for this diff:
- `cache-first`: Query cache first. If it hits, skip the network.
- `cache-and-network`: Query cache and network simultaneously, returning cached results while waiting for network results. Updates the cache when the network call completes.
- `network-only`: Only queries the network, but still updates cache when the network call completes.

When using the `pollInterval` option on a query, the default behavior is like `cache-first` for the initial query and `cache-and-network` for polled requests.

Note: for queries like `selectedClusterInfo`, changing the query variables immediately queries the network as it should.

In the admin page, we instead want to always query the network. In some other Live View components, relying on the cache alone is sufficient. This diff rebalances the settings to match.

Test Plan: Watch graphQL calls in the dev tools when checking each admin tab, and when messing with the cluster selection in the breadcrumbs of the live view. Data should no longer start stale in most places.

Reviewers: michelle, vihang

Reviewed By: michelle

JIRA Issues: PC-1091

Differential Revision: https://phab.corp.pixielabs.ai/D9325

GitOrigin-RevId: c2b22df858053745b3fdbbc6de67084af2c11235
      5daf42d6
    • James Bartlett's avatar
      [PP-2884] Fix bug where query broker hangs on healthcheck. · 9080cd30
      James Bartlett authored 
      Summary:
There was an incorrect usage of go channels causing a hang on the healthcheck, and since a lock was being held during the entire healthcheck, it would cause all future healthchecks to hang.

I fixed both the channel issue in LaunchQuery, and the lock being held during the CheckHealth call.

Test Plan: Added test for LaunchQuery hang. Tested on skaffold.

Reviewers: nserrino, michelle, vihang

Reviewed By: vihang

JIRA Issues: PP-2884

Differential Revision: https://phab.corp.pixielabs.ai/D9322

GitOrigin-RevId: 5d71dc6575df1695d51fc09b050910fab519de65
      9080cd30
    • Zain Asgar's avatar
      PC-1094 - Add proto files for e2e encryption · 53c47ad4
      Zain Asgar authored 
      Summary: TSIA

Test Plan: N/A

Reviewers: vihang, michelle

Reviewed By: vihang, michelle

JIRA Issues: PC-1094

Differential Revision: https://phab.corp.pixielabs.ai/D9324

GitOrigin-RevId: ae0dcd4f0aba239d306f5bc530c67e68e8a6df0d
      53c47ad4
    • Vihang Mehta's avatar
      Upgrade libuv · 923e6b03
      Vihang Mehta authored 
      Summary:
This includes commit https://github.com/libuv/libuv/commit/c9406ba0e3d67907c1973a71968b89a6bd83c63c
which I believe fixes the crash in P131.

Test Plan: skaffold deploy vizier.

Reviewers: zasgar, michelle, nserrino, #third_party_approvers

Reviewed By: michelle, #third_party_approvers

JIRA Issues: PP-2891

Differential Revision: https://phab.corp.pixielabs.ai/D9323

GitOrigin-RevId: d684ea66bad293bc5b035ef6e74676b2858db8ff
      923e6b03
    • Phillip Kuznetsov's avatar
      Remove idmanager package · deb33a10
      Phillip Kuznetsov authored 
      Summary: Following D9316, idmanager is basically unused and creates a web of deps that don't need to be around. Cleaning this up.

Test Plan: Tested on skaffold and invite still works, the only feature that previously depended on the idmanager.

Reviewers: vihang, michelle, vjain

Reviewed By: vihang

Differential Revision: https://phab.corp.pixielabs.ai/D9317

GitOrigin-RevId: 512c9c895c4216472dfb2fe35129f831b812ae27
      deb33a10
    • Phillip Kuznetsov's avatar
      Remove idmanager from profile service · 55ee2e4f
      Phillip Kuznetsov authored 
      Summary:
After moving InviteUser to authpb, we still had these leftover methods sitting around. Deprecating the profile function and removing references to idmanager as part of cleanup.

Reviewers-> Let me know if this is a fine way to deprecate a function or if I should go ahead and remove the method entirely. It's unused internally at the moment.

Test Plan: deploy public cloud with skaffold and invites still work.

Reviewers: vihang, michelle

Reviewed By: vihang

Differential Revision: https://phab.corp.pixielabs.ai/D9316

GitOrigin-RevId: 4892a983daf6302101a08a789c4922d2e4a2dfc3
      55ee2e4f
    • Yaxiong Zhao's avatar
      [CLEANUP] Add a test to check the state with different protocol and role combinations · 376d76ef
      Yaxiong Zhao authored 
      Summary: Preparing for additional work of more principled approach of role setting for tracing.

Test Plan: Jenkins

Reviewers: #stirling, jps

Reviewed By: #stirling, jps

Differential Revision: https://phab.corp.pixielabs.ai/D9321

GitOrigin-RevId: fbe4eeed422b87cabb732343ab8d4ed3274e6656
      376d76ef
    • Vihang Mehta's avatar
      Upgrade nats.cc to v2.6.0 · ffd76537
      Vihang Mehta authored 
      Summary:
We were seeing issues where NATS would restart and PEMs/Kelvin would
fail to reconnect to it. It seemed like this was due to issues in the underlying
nats.c lib and that upgrading it would solve our issues.
(See https://github.com/nats-io/nats.c/pull/426 https://github.com/nats-io/nats.c/pull/413 )

So let's try to upgrade to the latest version of `nats.c`

Note: Leaving `NATS_BUILD_TLS_FORCE_HOST_VERIFY = On` doesn't seem to work.
It causes our natcConnect to error with `NATS_SSL_ERROR, "unable to set expected hostname"`
Disabling seems fine for now, but we might want to investigate this further.

Test Plan:
`skaffold` vizier. Make sure it builds and works. Kill the `pl-nats-1`
pod and wait for it to restart. The cluster should take a minute or two but
eventually should become healthy again and be able to run queries.

Reviewers: zasgar, michelle, nserrino, #third_party_approvers

Reviewed By: michelle, #third_party_approvers

JIRA Issues: PP-2867

Differential Revision: https://phab.corp.pixielabs.ai/D9314

GitOrigin-RevId: 8dfa1205b3110128ab2a8f791233d2fc641257ee
      ffd76537
    • Michelle Nguyen's avatar
      PC-1092 API Key should be associated to org, not user · 66eb82b6
      Michelle Nguyen authored 
      Summary:
currently, when we create the claims for a user using an API key, we create the UserClaims for the user who created the API key. this can lead to problems if the user has been deleted. the API key should still be valid, since it is actually tied to the org.
allowed userClaims to be set as an "API user claim" using a boolean.

Test Plan: unit tests, deployed to staging and tested API key

Reviewers: zasgar, vihang

Reviewed By: zasgar

JIRA Issues: PC-1092

Differential Revision: https://phab.corp.pixielabs.ai/D9319

GitOrigin-RevId: 7871fb5cbeb7628498671b461ac717e2f6009a8f
      66eb82b6
    • Michelle Nguyen's avatar
      Accept API key in regular login · 612186f6
      Michelle Nguyen authored 
      Summary:
we want to support login using the API key, outside of embed mode.
this diff updates the regular LoginHandler to include the api key logic that was added for the embed

Test Plan: CLI

Reviewers: zasgar

Reviewed By: zasgar

Differential Revision: https://phab.corp.pixielabs.ai/D9309

GitOrigin-RevId: 523e41b4258413c2469276d129f0eba23efa5172
      612186f6
    • Yaxiong Zhao's avatar
      [CLEANUP] Remove workaround that do mysql client tracing · fe069ec9
      Yaxiong Zhao authored 
      Test Plan: Jenkins

Reviewers: #stirling, oazizi

Reviewed By: #stirling, oazizi

Differential Revision: https://phab.corp.pixielabs.ai/D9320

GitOrigin-RevId: 5dc130bce3e99dd402a12317b169ae1578b8ccef
      fe069ec9
    • Vihang Mehta's avatar
      Fix golint · 60274a88
      Vihang Mehta authored 
      Summary: TSIA, just some cleanup on lint warnings.

Test Plan: N/A

Reviewers: zasgar, michelle

Reviewed By: michelle

Differential Revision: https://phab.corp.pixielabs.ai/D9307

GitOrigin-RevId: 9be8927135bb8873760c49919e8fdc5bd37ca549
      60274a88
  5. 26 Jul, 2021 8 commits
    • Nick Lanam's avatar
      [PC-1089] Don't assume localStorage is available · 2ed516f0
      Nick Lanam authored 
      Summary: In Chrome, the default settings prevent `localStorage` from being accessed cross-origin while in incognito mode. When Pixie is embedded by New Relic One, the embedded frame is considered cross-origin. Thus, all `localStorage` access needs to be wrapped in `try/catch`.

Test Plan: This is a little tricky. See the [Notion guide](https://www.notion.so/pixielabs/Testing-embedded-Pixie-web-UI-62568eb507b0473e8fc5b24aea2bfd14) for testing the embed locally. Remember to use a separate hostname to access the embed script, to ensure cross-origin rules apply. You'll need to use an Incognito window in Chrome to verify this particular fix.

Reviewers: michelle, vihang

Reviewed By: michelle

JIRA Issues: PC-1089

Differential Revision: https://phab.corp.pixielabs.ai/D9315

GitOrigin-RevId: d69bb4e8bc450c044c0432de52a22c6b14de9329
      2ed516f0
    • Omid Azizi's avatar
      ElfSymbolizer: return address on failed resolution · 4e77d8cd
      Omid Azizi authored 
      Summary: Tweak for consistent behavior between the symbolizers

Test Plan: Updated the test case

Reviewers: #stirling, jps

Reviewed By: #stirling, jps

Differential Revision: https://phab.corp.pixielabs.ai/D9297

GitOrigin-RevId: 957da66f8447393afe8151a0d5538de05973e960
      4e77d8cd
    • Omid Azizi's avatar
      Hybrid symbolizer · 84298256
      Omid Azizi authored 
      Summary:
Enable use of different symbolizers for user and kernel space.

Important, since the ElfReader symbolizer doesn't handle kernel symbols.

Test Plan: Existing tests.

Reviewers: #stirling, jps

Reviewed By: #stirling, jps

Subscribers: jps

Differential Revision: https://phab.corp.pixielabs.ai/D9296

GitOrigin-RevId: dc27c10346d0a23f0171268478f542d8c889fd17
      84298256
    • Natalie Serrino's avatar
      PP-2873: Vizier operator should automatically select etcd when PVCs are not supported on cluster · 92cacf0e
      Natalie Serrino authored 
      Summary:
This is currently done in the CLI deploy, but we want the logic to exist for all deploy methods.
WIll remove in CLI deploy once everyone uses the operator.

Test Plan: ran it with and without storage classes

Reviewers: michelle, vjain

Reviewed By: michelle, vjain

JIRA Issues: PP-2873

Differential Revision: https://phab.corp.pixielabs.ai/D9303

GitOrigin-RevId: e760e2995909bc963b0768630536680266602459
      92cacf0e
    • Phillip Kuznetsov's avatar
      PC-1090: Replace v2c subscribe with a Durable QueueSubscribe · e1e9c892
      Phillip Kuznetsov authored 
      Summary:
We want our consumer of v2c to be a Durable so that we don't have to re-ingest v2c messages that we've already processed (and thought to be the cause of PC-1090). We also need to make the subscriber a queue subscribe to handle the case where two vzmgr pods are running simultaneously during a release rollout (see comment on QueueSubscribe in indexer/md/md.go).

If you're comparing the two, it's important to note that we don't care about index updating for this QueueSubscribe so we don't use the Index name anywhere. Anything that's pushed on the Indexer stream can be reread by Indexer consumers By changing the durable names.

Test Plan: Tested on skaffold and updates still propagate as expected (update in cluster pod should show up in the autocomplete which uses data from the indexer).

Reviewers: vihang, michelle, vjain

Reviewed By: michelle

JIRA Issues: PC-1090

Differential Revision: https://phab.corp.pixielabs.ai/D9308

GitOrigin-RevId: 3ca414035fd43063426390e1adc29de84bc52c47
      e1e9c892
    • Omid Azizi's avatar
      ElfSymbolizer: function symbols only · 73fc4ab5
      Omid Azizi authored 
      Summary: Don't index non function symbols (like variables) to save some memory.

Test Plan: Existing tests

Reviewers: #stirling, jps

Reviewed By: #stirling, jps

Differential Revision: https://phab.corp.pixielabs.ai/D9301

GitOrigin-RevId: cfd1ddcae720708be77b766ab914b72a42ac40d9
      73fc4ab5
    • James Bartlett's avatar
      Add debug logs in case of HasColumn check failure. · ccd1b0b0
      James Bartlett authored 
      Summary: Unable to repro the HasColumn issue, so adding some more info if we see that again on a customer cluster.

Test Plan: n/a

Reviewers: nserrino

Reviewed By: nserrino

Differential Revision: https://phab.corp.pixielabs.ai/D9302

GitOrigin-RevId: d2f4265a5330e92f5f70558d2621d752125dde6d
      ccd1b0b0
    • Vishal Jain's avatar
      Add Sentry to Vizier CRD & Return from Cloud · 87d3718d
      Vishal Jain authored 
      Summary: Pick up Sentry DSN from Cloud, fill out in template

Test Plan: manual

Reviewers: nserrino, michelle

Reviewed By: michelle

JIRA Issues: PP-2811

Differential Revision: https://phab.corp.pixielabs.ai/D9151

GitOrigin-RevId: 706beecc3ffd3c7bd96d2d96722aa515b4d5f218
      87d3718d
  7. 24 Jul, 2021 1 commit
  9. 23 Jul, 2021 12 commits

免费DevSecOps平台,让您的项目体验完整的DevSecOps流程,让项目更安全