Post launch Log level control for the Server #4880
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
edwbuck
requested review from
evan2645,
amartinezfayo,
azdagron,
MarcosDY and
rturner3
as code owners
azdagron
reviewed
Mar 4, 2024
azdagron
reviewed
Mar 5, 2024
edwbuck
changed the title
MarcosDY
reviewed
Mar 7, 2024
| } | ||
|
|
||
| // mock implementation for GetLogger | ||
| func (s *mockLoggerServer) GetLogger(_ context.Context, _ *loggerv1.GetLoggerRequest) (*types.Logger, error) { |
There was a problem hiding this comment.
Suggested change
| func (s *mockLoggerServer) GetLogger(_ context.Context, _ *loggerv1.GetLoggerRequest) (*types.Logger, error) { | |
| func (s *mockLoggerServer) GetLogger(context.Context, *loggerv1.GetLoggerRequest) (*types.Logger, error) { |
| return s.returnLogger, s.returnErr | ||
| } | ||
|
|
||
| func (s *mockLoggerServer) ResetLogLevel(_ context.Context, _ *loggerv1.ResetLogLevelRequest) (*types.Logger, error) { |
There was a problem hiding this comment.
Suggested change
| func (s *mockLoggerServer) ResetLogLevel(_ context.Context, _ *loggerv1.ResetLogLevelRequest) (*types.Logger, error) { | |
| func (s *mockLoggerServer) ResetLogLevel(context.Context, *loggerv1.ResetLogLevelRequest) (*types.Logger, error) { |
| // The routine that executes the command | ||
| func (c *setCommand) Run(ctx context.Context, _ *commoncli.Env, serverClient util.ServerClient) error { | ||
| if c.newLevel == "" { | ||
| return fmt.Errorf("a value (-level) must be set") |
There was a problem hiding this comment.
Suggested change
| return fmt.Errorf("a value (-level) must be set") | |
| return errors.New("a value (-level) must be set") |
| } | ||
| apiLevel, found := serverlogger.APILevel[logrusLevel] | ||
| if !found { | ||
| return fmt.Errorf("the logrus level %d could not be transformed into an api log level", logrusLevel) |
There was a problem hiding this comment.
mmm decimal has not too much value for a user, what do you think about returning level that is string instead?
There was a problem hiding this comment.
If you look carefully, this is an error message for returning a log level that doesn't have an associated string
| level := strings.ToLower(c.newLevel) | ||
| var logger *apitype.Logger | ||
| var err error | ||
| if level == "launch" { |
There was a problem hiding this comment.
it is confusing to me to have launch to reset as part of level,
may we add a reset option instead?
--resetLevel
There was a problem hiding this comment.
in case we want to keep using launch, I think we must add more documentation about what that launch means
| if req.NewLevel == apitype.LogLevel_UNSPECIFIED { | ||
| return nil, fmt.Errorf("Invalid request, NewLevel value cannot be LogLevel_UNSPECIFIED") | ||
| } | ||
| service.log.WithFields(logrus.Fields{ |
There was a problem hiding this comment.
same as previous function can you get logger from context and use that to add logs?
the service.Log must be used only to change levels
you can get it using:
ctxLog := rpccontext.Logger(ctx)
| } | ||
|
|
||
| func (service *Service) SetLogLevel(_ context.Context, req *loggerv1.SetLogLevelRequest) (*apitype.Logger, error) { | ||
| if req.NewLevel == apitype.LogLevel_UNSPECIFIED { |
There was a problem hiding this comment.
can you add:
rpccontext.AddRPCAuditFields(ctx, logrus.Fields{telemetry.LogLevel: req.NewLevel})
this is to add get parammeters to audit logs
| CurrentLevel: APILevel[service.log.GetLevel()], | ||
| LaunchLevel: APILevel[service.launchLevel], | ||
| } | ||
| return logger, nil |
There was a problem hiding this comment.
can you add? (it is to execute audit log)
rpccontext.AuditRPC(ctx)
| } | ||
|
|
||
| func (service *Service) ResetLogLevel(_ context.Context, _ *loggerv1.ResetLogLevelRequest) (*apitype.Logger, error) { | ||
| service.log.Info("ResetLogLevel Called") |
There was a problem hiding this comment.
can you use logger from context?
| CurrentLevel: APILevel[service.log.GetLevel()], | ||
| LaunchLevel: APILevel[service.launchLevel], | ||
| } | ||
| return logger, nil |
There was a problem hiding this comment.
can you add? (it is to execute audit log)
rpccontext.AuditRPC(ctx)
Add list command to cli. Add some of the receiving services in the server "run" instance. Add the "registry" of loggers (currently a btree) Beginning unit testing on naming ordering. Signed-off-by: Edwin Buck <[email protected]>
Signed-off-by: Edwin Buck <[email protected]>
Signed-off-by: Edwin Buck <[email protected]>
JSON now outputs log levels as their logrus lower-case strings. Some unit testing on logger.get cli commands. Signed-off-by: Edwin Buck <[email protected]>
Complete unit testing for spire-server cli. Signed-off-by: Edwin Buck <[email protected]>
Signed-off-by: Edwin Buck <[email protected]>
Signed-off-by: Edwin Buck <[email protected]>
logrus.Logger. Signed-off-by: Edwin Buck <[email protected]>
The Logger service fields are now private, the service config fields remain public. The Logger variable / field names are now log (or Log) to match conventions. The logger package now adds a Logger type which extends the logrus.Logger interface with set log level and get log level funcs. Signed-off-by: Edwin Buck <[email protected]>
This fixes the inability of this unit test to intialize the new GRPC logger service, as it requires a Logger type that also includes the ability to change log levels. Signed-off-by: Edwin Buck <[email protected]>
Signed-off-by: Edwin Buck <[email protected]>
endpoints_test.go Signed-off-by: Edwin Buck <[email protected]>
is fixed. Removed allow_admin from policy_data.json until determination can be made to make this allow_admin Signed-off-by: Edwin Buck <[email protected]>
Signed-off-by: Edwin Buck <[email protected]>
Signed-off-by: Edwin Buck <[email protected]>
Signed-off-by: Edwin Buck <[email protected]>
Signed-off-by: Edwin Buck <[email protected]>
Signed-off-by: Edwin Buck <[email protected]>
Signed-off-by: Edwin Buck <[email protected]>
Signed-off-by: Edwin Buck <[email protected]>
azdagron
approved these changes
Mar 11, 2024
rushi47
pushed a commit
to rushi47/spire
that referenced
this pull request
Apr 11, 2024
Signed-off-by: Edwin Buck <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
fixes #4785
Code for server log level adjustment is complete and functional. Unit tests are being added. Core solution is ready for initial review.
Affected functionality
After the spire server is running, one can request its logger caracteristics with the command
Which will output the current logger details
Where
Logger Levelindicates the current logger's level andLogger Defaultindicates the logger's level according to the configuration at server launch time.To adjust the log level, on can use the command
Which will adjust the logger's log level and return the updated logger details
Supported
logger setvalues include (panic, fatal, error, warn, info, debug, trace, and default).defaultwill set theLogger Levelto the value held inLogger DefaultLogger adjustments for the spire-agent will be added soon. Currently, I'm updating the unit testing to obtain more code coverage. Functionality has only been manually tested.
Is a no-op, as no directive on what to set (or what value to set it to) is provided.
Description of change
The spire-server executable has two new cli commands
logger getandlogger setwhich access the dynamically configurable logger.logger getbuilds a grpc call (loggerv1) logger.GetLogger in the new spire-api-sdk logger (v1) api, as detailed in PR spiffe/spire-api-sdk#55logger setmay, if-level <value>is passed, build a grpc call (loggerv1) logger.SetLogLevel, detailed in the same PR spiffe/spire-api-sdk#55The spire server then processes the request, adjusts the logrus logger level, and returns the system's Logger details, which indicates both the logger's current level and the logger's default level.