-
Notifications
You must be signed in to change notification settings - Fork 73
/
Copy pathservice_windows.go
475 lines (408 loc) · 18.1 KB
/
service_windows.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
// Copyright 2025 Google LLC
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//go:build windows
// +build windows
package main
import (
"context"
"fmt"
"log"
"os"
"os/exec"
"path"
"path/filepath"
"sync"
"unsafe"
"github.com/GoogleCloudPlatform/ops-agent/apps"
"github.com/GoogleCloudPlatform/ops-agent/cmd/google_cloud_ops_agent_diagnostics/utils"
"github.com/GoogleCloudPlatform/ops-agent/confgenerator"
"github.com/GoogleCloudPlatform/ops-agent/internal/healthchecks"
"github.com/GoogleCloudPlatform/ops-agent/internal/logs"
"github.com/GoogleCloudPlatform/ops-agent/internal/self_metrics"
"github.com/kardianos/osext"
"go.opentelemetry.io/otel"
"golang.org/x/sys/windows"
"golang.org/x/sys/windows/svc/debug"
"golang.org/x/sys/windows/svc/eventlog"
"golang.org/x/sys/windows/svc/mgr"
"google.golang.org/grpc/status"
pb "github.com/GoogleCloudPlatform/ops-agent/cmd/ops_agent_uap_plugin/google_guest_agent/plugin"
)
const (
GeneratedConfigsOutDir = "generated_configs"
LogsDirectory = "log"
RuntimeDirectory = "run"
OpsAgentUAPPluginEventID uint32 = 8
DiagnosticsEventID uint32 = 2
WindowsEventLogIdentifier = "google-cloud-ops-agent-uap-plugin"
WindowJobHandleIdentifier = "google-cloud-ops-agent-uap-plugin-job-handle"
AgentWrapperBinary = "google-cloud-ops-agent-wrapper.exe"
DiagnosticsBinary = "google-cloud-ops-agent-diagnostics.exe"
FluentbitBinary = "fluent-bit.exe"
OtelBinary = "google-cloud-metrics-agent_windows_amd64.exe"
)
var (
AgentWindowsServiceName = []string{"StackdriverLogging", "StackdriverMonitoring", "google-cloud-ops-agent"}
DefaultPluginStateDirectory = filepath.Join(os.Getenv("PROGRAMDATA"), "Google/Compute Engine/google-guest-agent/agent_state/plugins/ops-agent-plugin")
OpsAgentConfigLocationWindows = filepath.Join("C:", "Program Files/Google/Cloud Operations/Ops Agent/config/config.yaml")
)
// RunSubAgentCommandFunc defines a function type that starts a subagent. If one subagent execution exited, other sugagents are also terminated via context cancellation. This abstraction is introduced
// primarily to facilitate testing by allowing the injection of mock
// implementations.
type RunSubAgentCommandFunc func(ctx context.Context, cancel context.CancelFunc, cmd *exec.Cmd, runCommand RunCommandFunc, wg *sync.WaitGroup)
// Apply applies the config sent or performs the work defined in the message.
// ApplyRequest is opaque to the agent and is expected to be well known contract
// between Plugin and the server itself. For e.g. service might want to update
// plugin config to enable/disable feature here plugins can react to such requests.
func (ps *OpsAgentPluginServer) Apply(ctx context.Context, msg *pb.ApplyRequest) (*pb.ApplyResponse, error) {
panic("Apply method is not implemented on Windows yet")
}
// otelErrorHandler is an implementation of otel.ErrorHandler that is used in the diagnostics service to log otel errors to the Windows event log.
type otelErrorHandler struct {
windowsEventLogger debug.Log
windowsEventId uint32
}
func (h *otelErrorHandler) Handle(err error) {
h.windowsEventLogger.Error(h.windowsEventId, fmt.Sprintf("error collecting metrics: %v", err))
}
// Start starts the plugin and initiates the plugin functionality.
// Until plugin receives Start request plugin is expected to be not functioning
// and just listening on the address handed off waiting for the request.
func (ps *OpsAgentPluginServer) Start(ctx context.Context, msg *pb.StartRequest) (*pb.StartResponse, error) {
ps.mu.Lock()
if ps.cancel != nil {
log.Printf("The Ops Agent plugin is started already, skipping the current request")
ps.mu.Unlock()
return &pb.StartResponse{}, nil
}
log.Printf("Received a Start request: %s. Starting the Ops Agent", msg)
pContext, cancel := context.WithCancel(context.Background())
ps.cancel = cancel
ps.mu.Unlock()
// Detect conflicting installations.
preInstalledAgents, err := findPreExistentAgents(&windowsServiceManager{}, AgentWindowsServiceName)
if len(preInstalledAgents) != 0 || err != nil {
ps.Stop(ctx, &pb.StopRequest{Cleanup: false})
log.Printf("Start() failed: %s", err)
return nil, status.Error(9, err.Error()) // FailedPrecondition
}
// Calculate plugin install and state dirs.
pluginInstallDir, err := osext.ExecutableFolder()
if err != nil {
ps.Stop(ctx, &pb.StopRequest{Cleanup: false})
log.Printf("Start() failed, because it cannot determine the plugin install location: %s", err)
return nil, status.Error(13, err.Error()) // Internal
}
pluginStateDir := msg.GetConfig().GetStateDirectoryPath()
if pluginStateDir == "" {
pluginStateDir = DefaultPluginStateDirectory
}
log.Printf("Determined pluginInstallDir: %v, and pluginStateDir: %v", pluginInstallDir, pluginStateDir)
// Create a windows Event logger. This is used to log generated subagent configs, and health check results.
windowsEventLogger, err := createWindowsEventLogger()
if err != nil {
ps.Stop(ctx, &pb.StopRequest{Cleanup: false})
log.Printf("Start() failed, because it failed to create Windows event logger: %s", err)
return nil, status.Error(13, err.Error()) // Internal
}
// Receive config from the Start request and write it to the Ops Agent config file.
if err := writeCustomConfigToFile(msg, OpsAgentConfigLocationWindows); err != nil {
ps.Stop(ctx, &pb.StopRequest{Cleanup: false})
windowsEventLogger.Close()
log.Printf("Start() failed, because it failed to write the custom Ops Agent config to file: %s", err)
return nil, status.Errorf(13, "failed to write the custom Ops Agent config to file: %s", err) // Internal
}
// Subagents config validation and generation.
if err := generateSubAgentConfigs(ctx, OpsAgentConfigLocationWindows, pluginStateDir, windowsEventLogger); err != nil {
ps.Stop(ctx, &pb.StopRequest{Cleanup: false})
windowsEventLogger.Close()
log.Printf("Start() failed at the subagent config validation and generation step: %s", err)
return nil, status.Error(9, err.Error()) // FailedPrecondition
}
// Trigger Healthchecks.
healthCheckFileLogger := healthchecks.CreateHealthChecksLogger(filepath.Join(pluginStateDir, LogsDirectory))
runHealthChecks(healthCheckFileLogger, windowsEventLogger)
// Create a Windows Job object and stores its handle, to ensure that all child processes are killed when the parent process exits.
_, err = createWindowsJobHandle()
if err != nil {
ps.Stop(ctx, &pb.StopRequest{Cleanup: false})
windowsEventLogger.Close()
log.Printf("Start() failed, because it failed to create a Windows Job object: %s", err)
return nil, status.Error(13, err.Error()) // Internal
}
cancelFunc := func() {
ps.Stop(ctx, &pb.StopRequest{Cleanup: false})
windowsEventLogger.Close()
}
otelErrorHandler := &otelErrorHandler{windowsEventLogger: windowsEventLogger, windowsEventId: OpsAgentUAPPluginEventID}
go runSubagents(pContext, cancelFunc, pluginInstallDir, pluginStateDir, runSubAgentCommand, ps.runCommand, otelErrorHandler)
return &pb.StartResponse{}, nil
}
// Stop is the stop hook and implements any cleanup if required.
// Stop maybe called if plugin revision is being changed.
// For e.g. if plugins want to stop some task it was performing or remove some
// state before exiting it can be done on this request.
func (ps *OpsAgentPluginServer) Stop(ctx context.Context, msg *pb.StopRequest) (*pb.StopResponse, error) {
ps.mu.Lock()
defer ps.mu.Unlock()
if ps.cancel == nil {
log.Printf("The Ops Agent plugin is stopped already, skipping the current request")
return &pb.StopResponse{}, nil
}
log.Printf("Received a Stop request: %s. Stopping the Ops Agent", msg)
ps.cancel()
ps.cancel = nil
return &pb.StopResponse{}, nil
}
// GetStatus is the health check agent would perform to make sure plugin process
// is alive. If request fails process is considered dead and relaunched. Plugins
// can share any additional information to report it to the service. For e.g. if
// plugins detect some non-fatal errors causing it unable to offer some features
// it can reported in status which is sent back to the service by agent.
func (ps *OpsAgentPluginServer) GetStatus(ctx context.Context, msg *pb.GetStatusRequest) (*pb.Status, error) {
log.Println("Received a GetStatus request")
ps.mu.Lock()
defer ps.mu.Unlock()
if ps.cancel == nil {
log.Println("The Ops Agent plugin is not running")
return &pb.Status{Code: 1, Results: []string{"The Ops Agent Plugin is not running."}}, nil
}
log.Println("The Ops Agent plugin is running")
return &pb.Status{Code: 0, Results: []string{"The Ops Agent Plugin is running ok."}}, nil
}
// serviceManager is an interface to abstract the Windows service manager. This is used to facilitate testing.
type serviceManager interface {
Connect() (serviceManagerConnection, error)
}
// serviceManagerConnection is an interface to abstract the connection to the Windows service manager. This is used to facilitate testing.
type serviceManagerConnection interface {
ListServices() ([]string, error)
Disconnect() error
}
type windowsServiceManager struct{}
type windowsServiceManagerConn struct {
mgr *mgr.Mgr
}
func (w *windowsServiceManager) Connect() (serviceManagerConnection, error) {
m, err := mgr.Connect()
if err != nil {
return nil, err
}
return &windowsServiceManagerConn{mgr: m}, nil
}
func (c *windowsServiceManagerConn) ListServices() ([]string, error) {
return c.mgr.ListServices()
}
func (c *windowsServiceManagerConn) Disconnect() error {
return c.mgr.Disconnect()
}
// findPreExistentAgents checks if any of the Ops Agent and legacy agents are already installed as Window Services.
func findPreExistentAgents(mgr serviceManager, agentWindowsServiceNames []string) ([]string, error) {
conn, err := mgr.Connect()
if err != nil {
return nil, fmt.Errorf("failed to connect to service manager: %s", err)
}
defer conn.Disconnect()
installedServices, err := conn.ListServices()
if err != nil {
return nil, fmt.Errorf("failed to list installed Windows services: %s", err)
}
installedServicesSet := make(map[string]bool)
for _, s := range installedServices {
installedServicesSet[s] = true
}
alreadyInstalledAgentServiceNames := []string{}
for _, s := range agentWindowsServiceNames {
if installedServicesSet[s] {
alreadyInstalledAgentServiceNames = append(alreadyInstalledAgentServiceNames, s)
}
}
if len(alreadyInstalledAgentServiceNames) != 0 {
return alreadyInstalledAgentServiceNames, fmt.Errorf("conflicting installations identified: %v", alreadyInstalledAgentServiceNames)
}
return alreadyInstalledAgentServiceNames, nil
}
// eventLogWriter implements the io.Writer interface. It writes logs to the Windows Event Log.
type eventLogWriter struct {
EventID uint32
EventLog *eventlog.Log
}
func (w *eventLogWriter) Write(p []byte) (int, error) {
err := w.EventLog.Info(w.EventID, string(p))
if err != nil {
return 0, err
}
return len(p), nil
}
func createWindowsEventLogger() (debug.Log, error) {
eventlog.InstallAsEventCreate(WindowsEventLogIdentifier, eventlog.Error|eventlog.Warning|eventlog.Info)
elog, err := eventlog.Open(WindowsEventLogIdentifier)
if err != nil {
return nil, err
}
// ConfGenerator might log messages to stdout, redirect them to the windows event log.
log.SetOutput(&eventLogWriter{
EventID: OpsAgentUAPPluginEventID,
EventLog: elog,
})
return elog, nil
}
func generateSubAgentConfigs(ctx context.Context, userConfigPath string, pluginStateDir string, windowsEventLogger debug.Log) error {
uc, err := confgenerator.MergeConfFiles(ctx, userConfigPath, apps.BuiltInConfStructs)
if err != nil {
return err
}
windowsEventLogger.Info(OpsAgentUAPPluginEventID, fmt.Sprintf("Built-in config:\n%s\n", apps.BuiltInConfStructs["windows"]))
windowsEventLogger.Info(OpsAgentUAPPluginEventID, fmt.Sprintf("Merged config:\n%s\n", uc))
// The generated otlp metric json files are used only by the otel service.
if err = self_metrics.GenerateOpsAgentSelfMetricsOTLPJSON(ctx, userConfigPath, filepath.Join(pluginStateDir, GeneratedConfigsOutDir, "otel")); err != nil {
return err
}
for _, subagent := range []string{
"otel",
"fluentbit",
} {
if err := uc.GenerateFilesFromConfig(
ctx,
subagent,
filepath.Join(pluginStateDir, LogsDirectory),
filepath.Join(pluginStateDir, RuntimeDirectory),
filepath.Join(pluginStateDir, GeneratedConfigsOutDir, subagent)); err != nil {
return err
}
}
return nil
}
func runHealthChecks(healthCheckFileLogger logs.StructuredLogger, windowsEventLogger debug.Log) {
gceHealthChecks := healthchecks.HealthCheckRegistryFactory()
// Log health check results to health-checks.log log file.
healthCheckResults := gceHealthChecks.RunAllHealthChecks(healthCheckFileLogger)
// Log health check results to windows event log too.
healthCheckWindowsEventLogger := logs.WindowsServiceLogger{EventID: OpsAgentUAPPluginEventID, Logger: windowsEventLogger}
healthchecks.LogHealthCheckResults(healthCheckResults, healthCheckWindowsEventLogger)
windowsEventLogger.Info(OpsAgentUAPPluginEventID, "Health checks completed")
}
func createWindowsJobHandle() (windows.Handle, error) {
jobHandle, err := windows.CreateJobObject(nil, nil)
if err != nil {
return 0, err
}
info := windows.JOBOBJECT_EXTENDED_LIMIT_INFORMATION{
BasicLimitInformation: windows.JOBOBJECT_BASIC_LIMIT_INFORMATION{
LimitFlags: windows.JOB_OBJECT_LIMIT_KILL_ON_JOB_CLOSE,
},
}
_, err = windows.SetInformationJobObject(
jobHandle,
windows.JobObjectExtendedLimitInformation,
uintptr(unsafe.Pointer(&info)),
uint32(unsafe.Sizeof(info)))
if err != nil {
windows.CloseHandle(jobHandle)
return 0, err
}
// Assign the current process to the job object. This ensures that all child processes are automatically assigned to the same Job object.
err = windows.AssignProcessToJobObject(jobHandle, windows.CurrentProcess())
if err != nil {
windows.CloseHandle(jobHandle)
return 0, err
}
return jobHandle, nil
}
// runSubagents starts up the diagnostics service, otel, and fluent bit subagents in separate goroutines.
// All child goroutines create a new context derived from the same parent context.
// This ensures that crashes in one goroutine don't affect other goroutines.
// However, when one goroutine exits with errors, it won't be restarted, and all other goroutines are also terminated.
// This is done by canceling the parent context.
// This makes sure that GetStatus() returns a non-healthy status, signaling UAP to Start() the plugin again.
//
// ctx: the parent context that all child goroutines share.
//
// cancel: the cancel function for the parent context. By calling this function, the parent context is canceled,
// and GetStatus() returns a non-healthy status, signaling UAP to re-trigger Start().
//
// otelErrorHandler: an implementation of otel.ErrorHandler that is used in the diagnostics service to log otel errors to the Windows event log.
func runSubagents(ctx context.Context, cancel context.CancelFunc, pluginInstallDirectory string, pluginStateDirectory string, runSubAgentCommand RunSubAgentCommandFunc, runCommand RunCommandFunc, otelErrorHandler otel.ErrorHandler) {
var wg sync.WaitGroup
// Starting the diagnostics service
wg.Add(1)
go runDiagnosticsService(ctx, cancel, otelErrorHandler, &wg)
// Starting Otel
runOtelCmd := exec.CommandContext(ctx,
path.Join(pluginInstallDirectory, OtelBinary),
"--config", path.Join(pluginStateDirectory, GeneratedConfigsOutDir, "otel/otel.yaml"),
)
wg.Add(1)
go runSubAgentCommand(ctx, cancel, runOtelCmd, runCommand, &wg)
// Starting Fluentbit
runFluentBitCmd := exec.CommandContext(ctx,
path.Join(pluginInstallDirectory, AgentWrapperBinary),
"-config_path", OpsAgentConfigLocationWindows,
"-log_path", path.Join(pluginStateDirectory, LogsDirectory, "logging-module.log"),
path.Join(pluginInstallDirectory, FluentbitBinary),
"-c", path.Join(pluginStateDirectory, GeneratedConfigsOutDir, "fluentbit/fluent_bit_main.conf"),
"-R", path.Join(pluginStateDirectory, GeneratedConfigsOutDir, "fluentbit/fluent_bit_parser.conf"),
"--storage_path", path.Join(pluginStateDirectory, "run/buffers"),
)
wg.Add(1)
go runSubAgentCommand(ctx, cancel, runFluentBitCmd, runCommand, &wg)
wg.Wait()
}
func runDiagnosticsService(ctx context.Context, cancel context.CancelFunc, otelErrorHandler otel.ErrorHandler, wg *sync.WaitGroup) {
defer wg.Done()
userUc, mergedUc, err := utils.GetUserAndMergedConfigs(ctx, OpsAgentConfigLocationWindows)
if err != nil {
log.Printf("Failed to run the diagnostics service: %v", err)
cancel()
return
}
// Set otel error handler
otel.SetErrorHandler(otelErrorHandler)
err = self_metrics.CollectOpsAgentSelfMetrics(ctx, userUc, mergedUc)
if err != nil {
log.Printf("Failed to run the diagnostics service: %v", err)
cancel()
return
}
}
func runCommand(cmd *exec.Cmd) (string, error) {
if cmd == nil {
return "", nil
}
log.Printf("Running command: %s", cmd.Args)
out, err := cmd.CombinedOutput()
if err != nil {
log.Printf("Command %s failed, \ncommand output: %s\ncommand error: %s", cmd.Args, string(out), err)
}
return string(out), err
}
func runSubAgentCommand(ctx context.Context, cancel context.CancelFunc, cmd *exec.Cmd, runCommand RunCommandFunc, wg *sync.WaitGroup) {
defer wg.Done()
if cmd == nil {
return
}
if ctx.Err() != nil {
// context has been cancelled
log.Printf("cannot execute command: %s, because the context has been cancelled", cmd.Args)
return
}
output, err := runCommand(cmd)
if err != nil {
log.Printf("command: %s exited with errors, not restarting.\nCommand output: %s\n Command error:%s", cmd.Args, string(output), err)
} else {
log.Printf("command: %s %s exited successfully.\nCommand output: %s", cmd.Path, cmd.Args, string(output))
}
cancel() // cancels the parent context which also stops other Ops Agent sub-binaries from running.
return
}