Mirrors/wg-portal
1
0
Fork 0
mirror of https://github.com/h44z/wg-portal.git synced 2025-08-12 08:12:23 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

wip: ping handler per backend (#426)

Browse Source
This commit is contained in:
Christoph Haas 2025-06-01 09:50:46 +02:00
parent ea6da4114f
commit c612b5bbb1
No known key found for this signature in database
6 changed files with 171 additions and 30 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

33
internal/adapters/wgcontroller/local.go
View File

@ -10,7 +10,9 @@ import (
"os" "os"
"os/exec" "os/exec"
"strings" "strings"
"time"
probing "github.com/prometheus-community/pro-bing"
"github.com/vishvananda/netlink" "github.com/vishvananda/netlink"
"golang.org/x/sys/unix" "golang.org/x/sys/unix"
"golang.zx2c4.com/wireguard/wgctrl" "golang.zx2c4.com/wireguard/wgctrl"
@ -812,3 +814,34 @@ func (c LocalController) DeleteRouteRules(_ context.Context, rules []domain.Rout
} }
// endregion routing-related // endregion routing-related
// region statistics-related
func (c LocalController) PingAddresses(
ctx context.Context,
addr string,
) (*domain.PingerResult, error) {
pinger, err := probing.NewPinger(addr)
if err != nil {
return nil, fmt.Errorf("failed to instantiate pinger for %s: %w", addr, err)
}
checkCount := 1
pinger.SetPrivileged(!c.cfg.Statistics.PingUnprivileged)
pinger.Count = checkCount
pinger.Timeout = 2 * time.Second
err = pinger.RunWithContext(ctx) // Blocks until finished.
if err != nil {
return nil, fmt.Errorf("failed to ping %s: %w", addr, err)
}
stats := pinger.Statistics()
return &domain.PingerResult{
PacketsRecv: stats.PacketsRecv,
PacketsSent: stats.PacketsSent,
Rtts: stats.Rtts,
}, nil
}
// endregion statistics-related

37
internal/adapters/wgcontroller/mikrotik.go
View File

@ -336,3 +336,40 @@ func (c MikrotikController) DeleteRouteRules(_ context.Context, rules []domain.R
} }
// endregion routing-related // endregion routing-related
// region statistics-related
func (c MikrotikController) PingAddresses(
ctx context.Context,
addr string,
) (*domain.PingerResult, error) {
wgReply := c.client.ExecList(ctx, "/tool/ping",
// limit to 1 packet with a max running time of 2 seconds
lowlevel.GenericJsonObject{"address": addr, "count": 1, "interval": "00:00:02"},
)
if wgReply.Status != lowlevel.MikrotikApiStatusOk {
return nil, fmt.Errorf("failed to ping %s: %v", addr, wgReply.Error)
}
var result domain.PingerResult
for _, item := range wgReply.Data {
result.PacketsRecv += item.GetInt("received")
result.PacketsSent += item.GetInt("sent")
rttStr := item.GetString("avg-rtt")
if rttStr != "" {
rtt, err := time.ParseDuration(rttStr)
if err == nil {
result.Rtts = append(result.Rtts, rtt)
} else {
// use a high value to indicate failure or timeout
result.Rtts = append(result.Rtts, 999999*time.Millisecond)
}
}
}
return &result, nil
}
// endregion statistics-related

4
internal/app/wireguard/controller_manager.go
View File

@ -30,6 +30,10 @@ type InterfaceController interface {
updateFunc func(pp *domain.PhysicalPeer) (*domain.PhysicalPeer, error), updateFunc func(pp *domain.PhysicalPeer) (*domain.PhysicalPeer, error),
) error ) error
DeletePeer(_ context.Context, deviceId domain.InterfaceIdentifier, id domain.PeerIdentifier) error DeletePeer(_ context.Context, deviceId domain.InterfaceIdentifier, id domain.PeerIdentifier) error
PingAddresses(
ctx context.Context,
addr string,
) (*domain.PingerResult, error)
} }
type backendInstance struct { type backendInstance struct {

51
internal/app/wireguard/statistics.go
View File

@ -6,8 +6,6 @@ import (
"sync" "sync"
"time" "time"
probing "github.com/prometheus-community/pro-bing"
"github.com/h44z/wg-portal/internal/app" "github.com/h44z/wg-portal/internal/app"
"github.com/h44z/wg-portal/internal/config" "github.com/h44z/wg-portal/internal/config"
"github.com/h44z/wg-portal/internal/domain" "github.com/h44z/wg-portal/internal/domain"
@ -30,11 +28,6 @@ type StatisticsDatabaseRepo interface {
DeletePeerStatus(ctx context.Context, id domain.PeerIdentifier) error DeletePeerStatus(ctx context.Context, id domain.PeerIdentifier) error
} }
type StatisticsInterfaceController interface {
GetInterface(_ context.Context, id domain.InterfaceIdentifier) (*domain.PhysicalInterface, error)
GetPeers(_ context.Context, deviceId domain.InterfaceIdentifier) ([]domain.PhysicalPeer, error)
}
type StatisticsMetricsServer interface { type StatisticsMetricsServer interface {
UpdateInterfaceMetrics(status domain.InterfaceStatus) UpdateInterfaceMetrics(status domain.InterfaceStatus)
UpdatePeerMetrics(peer *domain.Peer, status domain.PeerStatus) UpdatePeerMetrics(peer *domain.Peer, status domain.PeerStatus)
@ -45,12 +38,17 @@ type StatisticsEventBus interface {
Subscribe(topic string, fn interface{}) error Subscribe(topic string, fn interface{}) error
} }
type pingJob struct {
Peer domain.Peer
Backend domain.InterfaceBackend
}
type StatisticsCollector struct { type StatisticsCollector struct {
cfg *config.Config cfg *config.Config
bus StatisticsEventBus bus StatisticsEventBus
pingWaitGroup sync.WaitGroup pingWaitGroup sync.WaitGroup
pingJobs chan domain.Peer pingJobs chan pingJob
db StatisticsDatabaseRepo db StatisticsDatabaseRepo
wg *ControllerManager wg *ControllerManager
@ -245,7 +243,7 @@ func (c *StatisticsCollector) startPingWorkers(ctx context.Context) {
c.pingWaitGroup = sync.WaitGroup{} c.pingWaitGroup = sync.WaitGroup{}
c.pingWaitGroup.Add(c.cfg.Statistics.PingCheckWorkers) c.pingWaitGroup.Add(c.cfg.Statistics.PingCheckWorkers)
c.pingJobs = make(chan domain.Peer, c.cfg.Statistics.PingCheckWorkers) c.pingJobs = make(chan pingJob, c.cfg.Statistics.PingCheckWorkers)
// start workers // start workers
for i := 0; i < c.cfg.Statistics.PingCheckWorkers; i++ { for i := 0; i < c.cfg.Statistics.PingCheckWorkers; i++ {
@ -288,7 +286,10 @@ func (c *StatisticsCollector) enqueuePingChecks(ctx context.Context) {
continue continue
} }
for _, peer := range peers { for _, peer := range peers {
c.pingJobs <- peer c.pingJobs <- pingJob{
Peer: peer,
Backend: in.Backend,
}
} }
} }
} }
@ -297,8 +298,10 @@ func (c *StatisticsCollector) enqueuePingChecks(ctx context.Context) {
func (c *StatisticsCollector) pingWorker(ctx context.Context) { func (c *StatisticsCollector) pingWorker(ctx context.Context) {
defer c.pingWaitGroup.Done() defer c.pingWaitGroup.Done()
for peer := range c.pingJobs { for job := range c.pingJobs {
peerPingable := c.isPeerPingable(ctx, peer) peer := job.Peer
backend := job.Backend
peerPingable := c.isPeerPingable(ctx, backend, peer)
slog.Debug("peer ping check completed", "peer", peer.Identifier, "pingable", peerPingable) slog.Debug("peer ping check completed", "peer", peer.Identifier, "pingable", peerPingable)
now := time.Now() now := time.Now()
@ -325,7 +328,11 @@ func (c *StatisticsCollector) pingWorker(ctx context.Context) {
} }
} }
func (c *StatisticsCollector) isPeerPingable(ctx context.Context, peer domain.Peer) bool { func (c *StatisticsCollector) isPeerPingable(
ctx context.Context,
backend domain.InterfaceBackend,
peer domain.Peer,
) bool {
if !c.cfg.Statistics.UsePingChecks { if !c.cfg.Statistics.UsePingChecks {
return false return false
} }
@ -335,25 +342,13 @@ func (c *StatisticsCollector) isPeerPingable(ctx context.Context, peer domain.Pe
return false return false
} }
// TODO: implement ping check on Mikrotik (or any other controller) stats, err := c.wg.GetControllerByName(backend).PingAddresses(ctx, checkAddr)
pinger, err := probing.NewPinger(checkAddr)
if err != nil { if err != nil {
slog.Debug("failed to instantiate pinger", "peer", peer.Identifier, "address", checkAddr, "error", err) slog.Debug("failed to ping peer", "peer", peer.Identifier, "error", err)
return false return false
} }
checkCount := 1 return stats.IsPingable()
pinger.SetPrivileged(!c.cfg.Statistics.PingUnprivileged)
pinger.Count = checkCount
pinger.Timeout = 2 * time.Second
err = pinger.RunWithContext(ctx) // Blocks until finished.
if err != nil {
slog.Debug("pinger for peer exited unexpectedly", "peer", peer.Identifier, "address", checkAddr, "error", err)
return false
}
stats := pinger.Statistics()
return stats.PacketsRecv == checkCount
} }
func (c *StatisticsCollector) updateInterfaceMetrics(status domain.InterfaceStatus) { func (c *StatisticsCollector) updateInterfaceMetrics(status domain.InterfaceStatus) {

26
internal/domain/statistics.go
View File

@ -1,6 +1,8 @@
package domain package domain
import "time" import (
"time"
)
type PeerStatus struct { type PeerStatus struct {
PeerId PeerIdentifier `gorm:"primaryKey;column:identifier"` PeerId PeerIdentifier `gorm:"primaryKey;column:identifier"`
@ -35,3 +37,25 @@ type InterfaceStatus struct {
BytesReceived uint64 `gorm:"column:received"` BytesReceived uint64 `gorm:"column:received"`
BytesTransmitted uint64 `gorm:"column:transmitted"` BytesTransmitted uint64 `gorm:"column:transmitted"`
} }
type PingerResult struct {
PacketsRecv int
PacketsSent int
Rtts []time.Duration
}
func (r PingerResult) IsPingable() bool {
return r.PacketsRecv > 0 && r.PacketsSent > 0 && len(r.Rtts) > 0
}
func (r PingerResult) AverageRtt() time.Duration {
if len(r.Rtts) == 0 {
return 0
}
var total time.Duration
for _, rtt := range r.Rtts {
total += rtt
}
return total / time.Duration(len(r.Rtts))
}

50
internal/lowlevel/mikrotik.go
View File

@ -1,6 +1,7 @@
package lowlevel package lowlevel
import ( import (
"bytes"
"context" "context"
"crypto/tls" "crypto/tls"
"encoding/json" "encoding/json"
@ -198,7 +199,7 @@ func (m *MikrotikApiClient) getFullPath(command string) string {
} }
func (m *MikrotikApiClient) prepareGetRequest(ctx context.Context, fullUrl string) (*http.Request, error) { func (m *MikrotikApiClient) prepareGetRequest(ctx context.Context, fullUrl string) (*http.Request, error) {
req, err := http.NewRequestWithContext(ctx, "GET", fullUrl, nil) req, err := http.NewRequestWithContext(ctx, http.MethodGet, fullUrl, nil)
if err != nil { if err != nil {
return nil, fmt.Errorf("failed to create request: %w", err) return nil, fmt.Errorf("failed to create request: %w", err)
} }
@ -210,6 +211,30 @@ func (m *MikrotikApiClient) prepareGetRequest(ctx context.Context, fullUrl strin
return req, nil return req, nil
} }
func (m *MikrotikApiClient) preparePostRequest(
ctx context.Context,
fullUrl string,
payload GenericJsonObject,
) (*http.Request, error) {
// marshal the payload to JSON
payloadBytes, err := json.Marshal(payload)
if err != nil {
return nil, fmt.Errorf("failed to marshal payload: %w", err)
}
req, err := http.NewRequestWithContext(ctx, http.MethodPost, fullUrl, bytes.NewReader(payloadBytes))
if err != nil {
return nil, fmt.Errorf("failed to create request: %w", err)
}
req.Header.Set("Accept", "application/json")
req.Header.Set("Content-Type", "application/json")
if m.cfg.ApiUser != "" && m.cfg.ApiPassword != "" {
req.SetBasicAuth(m.cfg.ApiUser, m.cfg.ApiPassword)
}
return req, nil
}
func errToApiResponse[T any](code int, message string, err error) MikrotikApiResponse[T] { func errToApiResponse[T any](code int, message string, err error) MikrotikApiResponse[T] {
return MikrotikApiResponse[T]{ return MikrotikApiResponse[T]{
Status: MikrotikApiStatusError, Status: MikrotikApiStatusError,
@ -296,4 +321,27 @@ func (m *MikrotikApiClient) Get(
return response return response
} }
func (m *MikrotikApiClient) ExecList(
ctx context.Context,
command string,
payload GenericJsonObject,
) MikrotikApiResponse[[]GenericJsonObject] {
apiCtx, cancel := context.WithTimeout(ctx, m.cfg.ApiTimeout)
defer cancel()
fullUrl := m.getFullPath(command)
req, err := m.preparePostRequest(apiCtx, fullUrl, payload)
if err != nil {
return errToApiResponse[[]GenericJsonObject](MikrotikApiErrorCodeRequestPreparationFailed,
"failed to create request", err)
}
start := time.Now()
m.debugLog("executing API get", "url", fullUrl)
response := parseHttpResponse[[]GenericJsonObject](m.client.Do(req))
m.debugLog("retrieved API get result", "url", fullUrl, "duration", time.Since(start).String())
return response
}
// endregion API-client // endregion API-client