mirror of
https://github.com/gravitl/netmaker.git
synced 2025-09-06 05:04:27 +08:00
689b9b6b52
* optimise acl cache with network map * fix mutex clash * fix acl mutex * add new endpoint for metrics peer info * fix static check * add new endpoint for metrics peer info * fix host peer info api params * cache failover data * add json tag * avoid duplicate calls to failover * add failover check ctx * add failover check ctx * fix failover debug log * optimise failover operations * remove debug logs * rm unused model * rm unused model
244 lines
6.9 KiB
Go
244 lines
6.9 KiB
Go
package logic
|
|
|
|
import (
|
|
"errors"
|
|
"net"
|
|
"sync"
|
|
|
|
"github.com/google/uuid"
|
|
"github.com/gravitl/netmaker/logger"
|
|
"github.com/gravitl/netmaker/logic"
|
|
"github.com/gravitl/netmaker/models"
|
|
"golang.org/x/exp/slog"
|
|
)
|
|
|
|
var failOverCtxMutex = &sync.RWMutex{}
|
|
var failOverCacheMutex = &sync.RWMutex{}
|
|
var failOverCache = make(map[models.NetworkID]string)
|
|
|
|
func InitFailOverCache() {
|
|
failOverCacheMutex.Lock()
|
|
defer failOverCacheMutex.Unlock()
|
|
networks, err := logic.GetNetworks()
|
|
if err != nil {
|
|
return
|
|
}
|
|
allNodes, err := logic.GetAllNodes()
|
|
if err != nil {
|
|
return
|
|
}
|
|
|
|
for _, network := range networks {
|
|
networkNodes := logic.GetNetworkNodesMemory(allNodes, network.NetID)
|
|
for _, node := range networkNodes {
|
|
if node.IsFailOver {
|
|
failOverCache[models.NetworkID(network.NetID)] = node.ID.String()
|
|
break
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
func CheckFailOverCtx(failOverNode, victimNode, peerNode models.Node) error {
|
|
failOverCtxMutex.RLock()
|
|
defer failOverCtxMutex.RUnlock()
|
|
if peerNode.FailOverPeers == nil {
|
|
return nil
|
|
}
|
|
if victimNode.FailOverPeers == nil {
|
|
return nil
|
|
}
|
|
_, peerHasFailovered := peerNode.FailOverPeers[victimNode.ID.String()]
|
|
_, victimHasFailovered := victimNode.FailOverPeers[peerNode.ID.String()]
|
|
if peerHasFailovered && victimHasFailovered &&
|
|
victimNode.FailedOverBy == failOverNode.ID && peerNode.FailedOverBy == failOverNode.ID {
|
|
return errors.New("failover ctx is already set")
|
|
}
|
|
return nil
|
|
}
|
|
func SetFailOverCtx(failOverNode, victimNode, peerNode models.Node) error {
|
|
failOverCtxMutex.Lock()
|
|
defer failOverCtxMutex.Unlock()
|
|
if peerNode.FailOverPeers == nil {
|
|
peerNode.FailOverPeers = make(map[string]struct{})
|
|
}
|
|
if victimNode.FailOverPeers == nil {
|
|
victimNode.FailOverPeers = make(map[string]struct{})
|
|
}
|
|
_, peerHasFailovered := peerNode.FailOverPeers[victimNode.ID.String()]
|
|
_, victimHasFailovered := victimNode.FailOverPeers[peerNode.ID.String()]
|
|
if peerHasFailovered && victimHasFailovered &&
|
|
victimNode.FailedOverBy == failOverNode.ID && peerNode.FailedOverBy == failOverNode.ID {
|
|
return errors.New("failover ctx is already set")
|
|
}
|
|
peerNode.FailOverPeers[victimNode.ID.String()] = struct{}{}
|
|
victimNode.FailOverPeers[peerNode.ID.String()] = struct{}{}
|
|
victimNode.FailedOverBy = failOverNode.ID
|
|
peerNode.FailedOverBy = failOverNode.ID
|
|
if err := logic.UpsertNode(&victimNode); err != nil {
|
|
return err
|
|
}
|
|
if err := logic.UpsertNode(&peerNode); err != nil {
|
|
return err
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// GetFailOverNode - gets the host acting as failOver
|
|
func GetFailOverNode(network string, allNodes []models.Node) (models.Node, error) {
|
|
nodes := logic.GetNetworkNodesMemory(allNodes, network)
|
|
for _, node := range nodes {
|
|
if node.IsFailOver {
|
|
return node, nil
|
|
}
|
|
}
|
|
return models.Node{}, errors.New("auto relay not found")
|
|
}
|
|
|
|
func RemoveFailOverFromCache(network string) {
|
|
failOverCacheMutex.Lock()
|
|
defer failOverCacheMutex.Unlock()
|
|
delete(failOverCache, models.NetworkID(network))
|
|
}
|
|
|
|
func SetFailOverInCache(node models.Node) {
|
|
failOverCacheMutex.Lock()
|
|
defer failOverCacheMutex.Unlock()
|
|
failOverCache[models.NetworkID(node.Network)] = node.ID.String()
|
|
}
|
|
|
|
// FailOverExists - checks if failOver exists already in the network
|
|
func FailOverExists(network string) (failOverNode models.Node, exists bool) {
|
|
failOverCacheMutex.RLock()
|
|
defer failOverCacheMutex.RUnlock()
|
|
if nodeID, ok := failOverCache[models.NetworkID(network)]; ok {
|
|
failOverNode, err := logic.GetNodeByID(nodeID)
|
|
if err == nil {
|
|
return failOverNode, true
|
|
}
|
|
}
|
|
return
|
|
}
|
|
|
|
// ResetFailedOverPeer - removes failed over node from network peers
|
|
func ResetFailedOverPeer(failedOveredNode *models.Node) error {
|
|
nodes, err := logic.GetNetworkNodes(failedOveredNode.Network)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
failedOveredNode.FailedOverBy = uuid.Nil
|
|
failedOveredNode.FailOverPeers = make(map[string]struct{})
|
|
err = logic.UpsertNode(failedOveredNode)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
for _, node := range nodes {
|
|
if node.FailOverPeers == nil || node.ID == failedOveredNode.ID {
|
|
continue
|
|
}
|
|
delete(node.FailOverPeers, failedOveredNode.ID.String())
|
|
logic.UpsertNode(&node)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// ResetFailOver - reset failovered peers
|
|
func ResetFailOver(failOverNode *models.Node) error {
|
|
// Unset FailedOverPeers
|
|
nodes, err := logic.GetNetworkNodes(failOverNode.Network)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
for _, node := range nodes {
|
|
if node.FailedOverBy == failOverNode.ID {
|
|
node.FailedOverBy = uuid.Nil
|
|
node.FailOverPeers = make(map[string]struct{})
|
|
logic.UpsertNode(&node)
|
|
}
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// GetFailOverPeerIps - adds the failedOvered peerIps by the peer
|
|
func GetFailOverPeerIps(peer, node *models.Node) []net.IPNet {
|
|
allowedips := []net.IPNet{}
|
|
for failOverpeerID := range node.FailOverPeers {
|
|
failOverpeer, err := logic.GetNodeByID(failOverpeerID)
|
|
if err == nil && failOverpeer.FailedOverBy == peer.ID {
|
|
if failOverpeer.Address.IP != nil {
|
|
allowed := net.IPNet{
|
|
IP: failOverpeer.Address.IP,
|
|
Mask: net.CIDRMask(32, 32),
|
|
}
|
|
allowedips = append(allowedips, allowed)
|
|
}
|
|
if failOverpeer.Address6.IP != nil {
|
|
allowed := net.IPNet{
|
|
IP: failOverpeer.Address6.IP,
|
|
Mask: net.CIDRMask(128, 128),
|
|
}
|
|
allowedips = append(allowedips, allowed)
|
|
}
|
|
if failOverpeer.IsEgressGateway {
|
|
allowedips = append(allowedips, logic.GetEgressIPs(&failOverpeer)...)
|
|
}
|
|
if failOverpeer.IsRelay {
|
|
for _, id := range failOverpeer.RelayedNodes {
|
|
rNode, _ := logic.GetNodeByID(id)
|
|
if rNode.Address.IP != nil {
|
|
allowed := net.IPNet{
|
|
IP: rNode.Address.IP,
|
|
Mask: net.CIDRMask(32, 32),
|
|
}
|
|
allowedips = append(allowedips, allowed)
|
|
}
|
|
if rNode.Address6.IP != nil {
|
|
allowed := net.IPNet{
|
|
IP: rNode.Address6.IP,
|
|
Mask: net.CIDRMask(128, 128),
|
|
}
|
|
allowedips = append(allowedips, allowed)
|
|
}
|
|
if rNode.IsEgressGateway {
|
|
allowedips = append(allowedips, logic.GetEgressIPs(&rNode)...)
|
|
}
|
|
}
|
|
}
|
|
// handle ingress gateway peers
|
|
if failOverpeer.IsIngressGateway {
|
|
extPeers, _, _, err := logic.GetExtPeers(&failOverpeer, node)
|
|
if err != nil {
|
|
logger.Log(2, "could not retrieve ext peers for ", peer.ID.String(), err.Error())
|
|
}
|
|
for _, extPeer := range extPeers {
|
|
allowedips = append(allowedips, extPeer.AllowedIPs...)
|
|
}
|
|
}
|
|
}
|
|
}
|
|
return allowedips
|
|
}
|
|
|
|
func CreateFailOver(node models.Node) error {
|
|
if _, exists := FailOverExists(node.Network); exists {
|
|
return errors.New("failover already exists in the network")
|
|
}
|
|
host, err := logic.GetHost(node.HostID.String())
|
|
if err != nil {
|
|
return err
|
|
}
|
|
if host.OS != models.OS_Types.Linux {
|
|
return errors.New("only linux nodes are allowed to be set as failover")
|
|
}
|
|
if node.IsRelayed {
|
|
return errors.New("relayed node cannot be set as failover")
|
|
}
|
|
node.IsFailOver = true
|
|
err = logic.UpsertNode(&node)
|
|
if err != nil {
|
|
slog.Error("failed to upsert node", "node", node.ID.String(), "error", err)
|
|
return err
|
|
}
|
|
SetFailOverInCache(node)
|
|
return nil
|
|
}
|