From db3cf3e42d93112278f5e86cca2c886627ef48b2 Mon Sep 17 00:00:00 2001
From: Ava Hahn <a.hahn@f5.com>
Date: Mon, 22 Apr 2024 13:26:34 +0100
Subject: tools: Add unitctl CLI

* Pull in entire unit-rust-sdk project
  * not included: CLA, COC, License
  * not included: duplicate openapi spec
  * not included: CI workflows
  * not included: changelog tooling
  * not included: commitsar tooling
  * not included: OpenAPI Web UI feature
* update links in unitctl manpage
* remove IDE configuration from .gitignore
* rename Containerfile.debian to Dockerfile
* simplify call to uname
* keep Readmes and Makefiles to 80 character lines
* outline specifically how to build unitctl
  for any desired target, and where to then
  find the binary for use
* remove a section on the vision of the CLI
  which was superfluous given the state of
  completeness of the code and its use in
  unit
* remove out of date feature proposals from readme
* makefile: do not run when Rustup is not present
* bump mio version to latest
* generate openapi client library on demand
  * generate-openapi only runs when not present
  * generate-openapi now a dependency of binary build targets
  * deleted autogenerated code
  * reverted readme and Cargo document to autogenerated state
  * add additional build requirement to Readme

Co-developed-by: Elijah Zupancic <e.zupancic@f5.com>
Signed-off-by: Elijah Zupancic <e.zupancic@f5.com>
Signed-off-by: Ava Hahn <a.hahn@f5.com>
Reviewed-by: Andrew Clayton <a.clayton@nginx.com> # non rust stuff
[ tools/cli => tools/unitctl and subject tweak - Andrew ]
Signed-off-by: Andrew Clayton <a.clayton@nginx.com>
---
 tools/unitctl/unit-client-rs/src/unitd_process.rs | 170 ++++++++++++++++++++++
 1 file changed, 170 insertions(+)
 create mode 100644 tools/unitctl/unit-client-rs/src/unitd_process.rs

(limited to 'tools/unitctl/unit-client-rs/src/unitd_process.rs')

diff --git a/tools/unitctl/unit-client-rs/src/unitd_process.rs b/tools/unitctl/unit-client-rs/src/unitd_process.rs
new file mode 100644
index 00000000..b8604e89
--- /dev/null
+++ b/tools/unitctl/unit-client-rs/src/unitd_process.rs
@@ -0,0 +1,170 @@
+use crate::unitd_cmd::UnitdCmd;
+use crate::unitd_instance::UNITD_BINARY_NAMES;
+use crate::unitd_process_user::UnitdProcessUser;
+use std::collections::HashMap;
+use std::path::Path;
+use sysinfo::{Pid, Process, ProcessRefreshKind, System, UpdateKind, Users};
+
+#[derive(Debug, Clone)]
+pub struct UnitdProcess {
+    pub binary_name: String,
+    pub process_id: u64,
+    pub executable_path: Option<Box<Path>>,
+    pub environ: Vec<String>,
+    pub all_cmds: Vec<String>,
+    pub working_dir: Option<Box<Path>>,
+    pub child_pids: Vec<u64>,
+    pub user: Option<UnitdProcessUser>,
+    pub effective_user: Option<UnitdProcessUser>,
+}
+
+impl UnitdProcess {
+    pub fn find_unitd_processes() -> Vec<UnitdProcess> {
+        let process_refresh_kind = ProcessRefreshKind::new()
+            .with_cmd(UpdateKind::Always)
+            .with_cwd(UpdateKind::Always)
+            .with_exe(UpdateKind::Always)
+            .with_user(UpdateKind::Always);
+        let refresh_kind = sysinfo::RefreshKind::new().with_processes(process_refresh_kind);
+        let sys = System::new_with_specifics(refresh_kind);
+        let unitd_processes: HashMap<&Pid, &Process> = sys
+            .processes()
+            .iter()
+            .filter(|p| {
+                let process_name = p.1.name();
+                UNITD_BINARY_NAMES.contains(&process_name)
+            })
+            .collect::<HashMap<&Pid, &Process>>();
+        let users = Users::new_with_refreshed_list();
+
+        unitd_processes
+            .iter()
+            // Filter out child processes
+            .filter(|p| {
+                let parent_pid = p.1.parent();
+                match parent_pid {
+                    Some(pid) => !unitd_processes.contains_key(&pid),
+                    None => false,
+                }
+            })
+            .map(|p| {
+                let tuple = p.to_owned();
+                /* The sysinfo library only supports 32-bit pids, yet larger values are possible
+                 * if the OS is configured to support it, thus we use 64-bit integers internally
+                 * because it is just a matter of time until the library changes to larger values. */
+                let pid = *tuple.0;
+                let process = *tuple.1;
+                let process_id: u64 = pid.as_u32().into();
+                let executable_path: Option<Box<Path>> = process.exe().map(|p| p.to_path_buf().into_boxed_path());
+                let environ: Vec<String> = process.environ().into();
+                let cmd: Vec<String> = process.cmd().into();
+                let working_dir: Option<Box<Path>> = process.cwd().map(|p| p.to_path_buf().into_boxed_path());
+                let child_pids = unitd_processes
+                    .iter()
+                    .filter_map(|p| p.to_owned().1.parent())
+                    .filter(|parent_pid| parent_pid == pid)
+                    .map(|p| p.as_u32() as u64)
+                    .collect::<Vec<u64>>();
+
+                let user = process
+                    .user_id()
+                    .and_then(|uid| users.get_user_by_id(uid))
+                    .map(UnitdProcessUser::from);
+                let effective_user = process
+                    .effective_user_id()
+                    .and_then(|uid| users.get_user_by_id(uid))
+                    .map(UnitdProcessUser::from);
+
+                UnitdProcess {
+                    binary_name: process.name().to_string(),
+                    process_id,
+                    executable_path,
+                    environ,
+                    all_cmds: cmd,
+                    working_dir,
+                    child_pids,
+                    user,
+                    effective_user,
+                }
+            })
+            .collect::<Vec<UnitdProcess>>()
+    }
+
+    pub fn cmd(&self) -> Option<UnitdCmd> {
+        if self.all_cmds.is_empty() {
+            return None;
+        }
+
+        match UnitdCmd::new(self.all_cmds[0].clone(), self.binary_name.as_ref()) {
+            Ok(cmd) => Some(cmd),
+            Err(error) => {
+                eprintln!("Failed to parse process cmd: {}", error);
+                None
+            }
+        }
+    }
+
+    pub fn executable_path(&self) -> Option<Box<Path>> {
+        if self.executable_path.is_some() {
+            return self.executable_path.clone();
+        }
+        self.cmd().and_then(|cmd| cmd.process_executable_path)
+    }
+}
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+
+    fn can_parse_runtime_cmd_absolute_path(binary_name: &str) {
+        let cmd = format!(
+            "unit: main v1.28.0 [/usr/sbin/{} --log /var/log/unit.log --pid /var/run/unit.pid]",
+            binary_name
+        );
+        let unitd_cmd = UnitdCmd::new(cmd, binary_name).expect("Failed to parse unitd cmd");
+        assert_eq!(unitd_cmd.version.unwrap(), "1.28.0");
+        assert_eq!(
+            unitd_cmd.process_executable_path.unwrap().to_string_lossy(),
+            format!("/usr/sbin/{}", binary_name)
+        );
+        let flags = unitd_cmd.flags.unwrap();
+        assert_eq!(flags.get_flag_value("log").unwrap(), "/var/log/unit.log");
+        assert_eq!(flags.get_flag_value("pid").unwrap(), "/var/run/unit.pid");
+    }
+
+    fn can_parse_runtime_cmd_relative_path(binary_name: &str) {
+        let cmd = format!(
+            "unit: main v1.29.0 [./sbin/{} --no-daemon --tmp /tmp --something]",
+            binary_name
+        );
+        let unitd_cmd = UnitdCmd::new(cmd, binary_name).expect("Failed to parse unitd cmd");
+        assert_eq!(unitd_cmd.version.unwrap(), "1.29.0");
+        assert_eq!(
+            unitd_cmd.process_executable_path.unwrap().to_string_lossy(),
+            format!("./sbin/{}", binary_name)
+        );
+        let flags = unitd_cmd.flags.unwrap();
+        assert_eq!(flags.get_flag_value("tmp").unwrap(), "/tmp");
+        assert!(flags.has_flag("something"));
+    }
+
+    #[test]
+    fn can_parse_runtime_cmd_unitd_absolute_path() {
+        can_parse_runtime_cmd_absolute_path("unitd");
+    }
+
+    #[test]
+    fn can_parse_runtime_cmd_unitd_debug_absolute_path() {
+        can_parse_runtime_cmd_absolute_path("unitd-debug");
+    }
+
+    #[test]
+    fn can_parse_runtime_cmd_unitd_relative_path() {
+        can_parse_runtime_cmd_relative_path("unitd");
+    }
+
+    #[test]
+    fn can_parse_runtime_cmd_unitd_debug_relative_path() {
+        can_parse_runtime_cmd_relative_path("unitd-debug");
+    }
+}
-- 
cgit 


From 6e8f7bbb91e7069d82abd22fbe8d0fcaa1bb2f8c Mon Sep 17 00:00:00 2001
From: Ava Hahn <a.hahn@f5.com>
Date: Thu, 25 Apr 2024 20:02:26 -0700
Subject: tools/unitctl: Initial Docker Procedures

* move UnitdProcess serialization logic into UnitdProcess
* filter out docker processes from process output on Linux
* initial implementation of a UnitdContainer type
* initial implementation of a docker container search for unitd
* pull out custom openapi future executor and use same tokio
  runtime as docker client
* refactor openapi client to not manage its own tokio runtime
* process mount points per docker container
* correctly output docker container info in relevant unitd
  instances
* create UnitdProcess from UnitdContainer
* UnitdProcess now owns UnitdContainer
* get and parse container details from docker API
* introduce procedure to rewrite file paths based on docker
  container mounts
* test path rewrite facilities
* apply path rewrite to unix socket

Signed-off-by: Ava Hahn <a.hahn@f5.com>
---
 tools/unitctl/unit-client-rs/src/unitd_process.rs | 34 ++++++++++++++++++++---
 1 file changed, 30 insertions(+), 4 deletions(-)

(limited to 'tools/unitctl/unit-client-rs/src/unitd_process.rs')

diff --git a/tools/unitctl/unit-client-rs/src/unitd_process.rs b/tools/unitctl/unit-client-rs/src/unitd_process.rs
index b8604e89..2a78bfc6 100644
--- a/tools/unitctl/unit-client-rs/src/unitd_process.rs
+++ b/tools/unitctl/unit-client-rs/src/unitd_process.rs
@@ -1,6 +1,9 @@
 use crate::unitd_cmd::UnitdCmd;
+use crate::unitd_docker::{pid_is_dockerized, UnitdContainer};
 use crate::unitd_instance::UNITD_BINARY_NAMES;
 use crate::unitd_process_user::UnitdProcessUser;
+use serde::ser::SerializeMap;
+use serde::{Serialize, Serializer};
 use std::collections::HashMap;
 use std::path::Path;
 use sysinfo::{Pid, Process, ProcessRefreshKind, System, UpdateKind, Users};
@@ -16,6 +19,23 @@ pub struct UnitdProcess {
     pub child_pids: Vec<u64>,
     pub user: Option<UnitdProcessUser>,
     pub effective_user: Option<UnitdProcessUser>,
+    pub container: Option<UnitdContainer>,
+}
+
+impl Serialize for UnitdProcess {
+    fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error>
+    where
+        S: Serializer,
+    {
+        let mut state = serializer.serialize_map(Some(6))?;
+        state.serialize_entry("pid", &self.process_id)?;
+        state.serialize_entry("user", &self.user)?;
+        state.serialize_entry("effective_user", &self.effective_user)?;
+        state.serialize_entry("executable", &self.executable_path())?;
+        state.serialize_entry("child_pids", &self.child_pids)?;
+        state.serialize_entry("container", &self.container)?;
+        state.end()
+    }
 }
 
 impl UnitdProcess {
@@ -41,10 +61,15 @@ impl UnitdProcess {
             .iter()
             // Filter out child processes
             .filter(|p| {
-                let parent_pid = p.1.parent();
-                match parent_pid {
-                    Some(pid) => !unitd_processes.contains_key(&pid),
-                    None => false,
+                #[cfg(target_os = "linux")]
+                if pid_is_dockerized(p.0.as_u32().into()) {
+                    false
+                } else {
+                    let parent_pid = p.1.parent();
+                    match parent_pid {
+                        Some(pid) => !unitd_processes.contains_key(&pid),
+                        None => false,
+                    }
                 }
             })
             .map(|p| {
@@ -85,6 +110,7 @@ impl UnitdProcess {
                     child_pids,
                     user,
                     effective_user,
+                    container: None,
                 }
             })
             .collect::<Vec<UnitdProcess>>()
-- 
cgit 


From 787980db2e4cdc39c6195584e54661841e542a47 Mon Sep 17 00:00:00 2001
From: Ava Hahn <a.hahn@f5.com>
Date: Fri, 3 May 2024 16:14:36 -0700
Subject: tools/unitctl: Improve quality of life on osx

* unit-client-rs Mac build fix
* elaborate in Readme on build requirements
  with examples for Mac users.

Signed-off-by: Ava Hahn <a.hahn@f5.com>
---
 tools/unitctl/unit-client-rs/src/unitd_process.rs | 11 +++++------
 1 file changed, 5 insertions(+), 6 deletions(-)

(limited to 'tools/unitctl/unit-client-rs/src/unitd_process.rs')

diff --git a/tools/unitctl/unit-client-rs/src/unitd_process.rs b/tools/unitctl/unit-client-rs/src/unitd_process.rs
index 2a78bfc6..848f31bc 100644
--- a/tools/unitctl/unit-client-rs/src/unitd_process.rs
+++ b/tools/unitctl/unit-client-rs/src/unitd_process.rs
@@ -64,12 +64,11 @@ impl UnitdProcess {
                 #[cfg(target_os = "linux")]
                 if pid_is_dockerized(p.0.as_u32().into()) {
                     false
-                } else {
-                    let parent_pid = p.1.parent();
-                    match parent_pid {
-                        Some(pid) => !unitd_processes.contains_key(&pid),
-                        None => false,
-                    }
+                }
+                let parent_pid = p.1.parent();
+                match parent_pid {
+                    Some(pid) => !unitd_processes.contains_key(&pid),
+                    None => false,
                 }
             })
             .map(|p| {
-- 
cgit 


From cb03d31e02741b87fc3a3aa379bf8f1849442ae2 Mon Sep 17 00:00:00 2001
From: Ava Hahn <a.hahn@f5.com>
Date: Fri, 3 May 2024 17:52:47 -0700
Subject: tools/unitctl: Update host_path() to account for OSX special
 behaviour

Signed-off-by: Ava Hahn <a.hahn@f5.com>
---
 tools/unitctl/unit-client-rs/src/unitd_process.rs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'tools/unitctl/unit-client-rs/src/unitd_process.rs')

diff --git a/tools/unitctl/unit-client-rs/src/unitd_process.rs b/tools/unitctl/unit-client-rs/src/unitd_process.rs
index 848f31bc..47ffcb5d 100644
--- a/tools/unitctl/unit-client-rs/src/unitd_process.rs
+++ b/tools/unitctl/unit-client-rs/src/unitd_process.rs
@@ -63,7 +63,7 @@ impl UnitdProcess {
             .filter(|p| {
                 #[cfg(target_os = "linux")]
                 if pid_is_dockerized(p.0.as_u32().into()) {
-                    false
+                    return false;
                 }
                 let parent_pid = p.1.parent();
                 match parent_pid {
-- 
cgit 


From cc9eb8e756e84cd3fd59baf5b80efab0ffd5757d Mon Sep 17 00:00:00 2001
From: Ava Hahn <a.hahn@f5.com>
Date: Mon, 6 May 2024 12:28:40 -0700
Subject: tools/unitctl: enable passing IP addresses to the 'instances new'
 command

* use path seperator constant from rust std package
* pass a ControlSocket into deploy_new_container instead of a string
* parse and validate a ControlSocket from argument to instances new
* conditionally mount control socket only if its a unix socket
* use create_image in a way that actually pulls nonpresent images
* possibly override container command if TCP socket passed in
* handle more weird error cases
* add a ton of validation cases in the CLI command handler
* add a nice little progress bar :)

Signed-off-by: Ava Hahn <a.hahn@f5.com>
---
 tools/unitctl/unit-client-rs/src/unitd_process.rs | 1 +
 1 file changed, 1 insertion(+)

(limited to 'tools/unitctl/unit-client-rs/src/unitd_process.rs')

diff --git a/tools/unitctl/unit-client-rs/src/unitd_process.rs b/tools/unitctl/unit-client-rs/src/unitd_process.rs
index 47ffcb5d..3dc0c3af 100644
--- a/tools/unitctl/unit-client-rs/src/unitd_process.rs
+++ b/tools/unitctl/unit-client-rs/src/unitd_process.rs
@@ -27,6 +27,7 @@ impl Serialize for UnitdProcess {
     where
         S: Serializer,
     {
+        // 6 = fields to serialize
         let mut state = serializer.serialize_map(Some(6))?;
         state.serialize_entry("pid", &self.process_id)?;
         state.serialize_entry("user", &self.user)?;
-- 
cgit