Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Added monitoring endpoint #100

Merged
merged 35 commits into from
May 24, 2024
Merged

Added monitoring endpoint #100

merged 35 commits into from
May 24, 2024

Conversation

p-strusiewiczsurmacki-mobica
Copy link
Contributor

@p-strusiewiczsurmacki-mobica p-strusiewiczsurmacki-mobica commented Feb 28, 2024
edited
Loading

This PR adds monitoring endpoints as described in #96.

  • show ip/ipv6 route (vrf <vrf>) <input> json (with/without longer-prefixes)
  • show bgp (vrf <vrf>) ipv4/ipv6 unicast <input> json (with/without longer-prefixes)
  • show evpn vni json
  • show evpn rmac vni <all|vrf> json
  • show evpn mac vni <all|vrf> json
  • show evpn next-hops vni <all|vrf> json
  • show bgp vrf <all|vrf> summary json

@p-strusiewiczsurmacki-mobica
Added monitoring endpoint
a17a509 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Fixed linter issues
3b873c0 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica p-strusiewiczsurmacki-mobica changed the title Added monitoring endpoint [WIP] Added monitoring endpoint Feb 28, 2024
chdxD1
chdxD1 requested changes Mar 5, 2024
View reviewed changes
pkg/monitoring/endpoint.go Outdated Show resolved Hide resolved
pkg/monitoring/endpoint.go Outdated Show resolved Hide resolved
pkg/monitoring/endpoint.go Show resolved Hide resolved
pkg/monitoring/endpoint.go Outdated Show resolved Hide resolved
@p-strusiewiczsurmacki-mobica
Fixed issues from CR and added k8s client
561170b 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Added initial global endpoint
2c1b70e 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Added global endpoint
f9e1d11 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Added asynchronous GET calls
38920ff 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Fixed linter issues
aafc408 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Made label selector more specific
0a6fcf6 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
chdxD1
chdxD1 requested changes Mar 12, 2024
View reviewed changes
pkg/monitoring/endpoint.go Outdated Show resolved Hide resolved
pkg/monitoring/endpoint.go Outdated Show resolved Hide resolved
@p-strusiewiczsurmacki-mobica
Added basic unit tests
e0d5249 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Removed redundant const
0e99394 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Fixed linter issues
4d4ade2 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
ShowBGP - protocol ip will be accepted as ipv4
b1ba4dd 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Fixed json generation
dfb59cf 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Service/endpoint based discovery used instead of pod based discovery
869560e 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Fixed typo
47e7e9b 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Updated unit tests
f686f93 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Fixed linter issues
58b5509 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica p-strusiewiczsurmacki-mobica marked this pull request as ready for review March 13, 2024 11:56
@p-strusiewiczsurmacki-mobica p-strusiewiczsurmacki-mobica changed the title [WIP] Added monitoring endpoint Added monitoring endpoint Mar 13, 2024
@p-strusiewiczsurmacki-mobica
Reworked request passing and added more unit tests
fdc0e00 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Removed redundant line
c5080b1 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Fixed URL building
b499702 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Removed redundant code
595daa4 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Fixed linter issues
6861d81 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica p-strusiewiczsurmacki-mobica mentioned this pull request Mar 14, 2024
Closed
@p-strusiewiczsurmacki-mobica
Reworked pod discovery
dfe0051 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Status service and namespace will be now configured using env variables
cb9be8c 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Fixed linter issues
9aefc32 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
chdxD1
chdxD1 reviewed Apr 4, 2024
View reviewed changes
config/manager/service.yaml Outdated Show resolved Hide resolved
config/manager/service.yaml Outdated Show resolved Hide resolved
config/rbac/role.yaml Show resolved Hide resolved
config/rbac/role.yaml Show resolved Hide resolved
pkg/monitoring/endpoint.go Show resolved Hide resolved
@p-strusiewiczsurmacki-mobica
CR related changes
2ec4a6a 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@schrej schrej requested a review from chdxD1 April 17, 2024 12:47
schrej
schrej requested changes Apr 17, 2024
View reviewed changes
pkg/monitoring/endpoint.go Outdated Show resolved Hide resolved
pkg/monitoring/endpoint.go
return
}

data := e.cli.ExecuteWithJSON(command)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is this safe? We're directly passing query args (vrf) to the command. Do we need to do some additional sanitization here to prevent RCE? I think making sure it's only allowed characters would go a long way.

Same applies to all other cases.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done. However I am not sure what values can be used for VRF/VNI, so for now I've just restricted those to:

regexp.MustCompile("^[a-zA-Z0-9_]")

Should I add something to it? Is dash - valid character for this, for example? Or maybe underscore _ should be removed?

I believe, all the other parameters are sanitized in switch/if statements.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

dash and underscore should both be valid parameters here. VNI is a 24-bit number.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

OK, changed VRF regexp to
"^[a-zA-Z0-9-_.]+$"

And added validation function for VNI:

das-schiff-network-operator/pkg/monitoring/endpoint.go

Line 266 in 0ba752b

func validateVNI(vni string) error {

pkg/monitoring/endpoint.go Outdated Show resolved Hide resolved
pkg/monitoring/endpoint.go Outdated Show resolved Hide resolved
pkg/monitoring/endpoint.go Outdated Show resolved Hide resolved
@p-strusiewiczsurmacki-mobica @schrej
Update pkg/monitoring/endpoint.go
4ca3c42 
Separated passRequest

Co-authored-by: Jakob Schrettenbrunner <[email protected]>
@p-strusiewiczsurmacki-mobica
Separate HHTTP servers for frr-exporter and monitoring endpoint. Sepa…
3c402b2 
…rate docker images and contianers in pod.

Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Ranamed PassRequest function to QueryAll
d5f5df6 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Separated passRequest go routine as suggested in the CR
0744b4c 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Sanitized inputs
77d7182 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Fixed logging and other minor issues
0448608 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
schrej
schrej approved these changes Apr 22, 2024
View reviewed changes
Copy link
Member

@schrej schrej left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm, please wait for feedback on that validation comment from @chdxD1

@p-strusiewiczsurmacki-mobica
Fixed validation
0ba752b 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@p-strusiewiczsurmacki-mobica
Fixed linter issue
1827b80 
Signed-off-by: Patryk Strusiewicz-Surmacki <[email protected]>
@chdxD1 chdxD1 merged commit 9de1c88 into telekom:main May 24, 2024
3 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@schrej schrej schrej approved these changes

@MaxRink MaxRink Awaiting requested review from MaxRink MaxRink is a code owner

@Cellebyte Cellebyte Awaiting requested review from Cellebyte Cellebyte is a code owner

@chdxD1 chdxD1 Awaiting requested review from chdxD1 chdxD1 is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@p-strusiewiczsurmacki-mobica @schrej @chdxD1 @Cellebyte