mirror of
https://github.com/yusing/godoxy.git
synced 2026-04-27 02:38:33 +02:00
e1eb8e9c03
LXCGetIPsWithStatus reads net config for stopped and suspended guests instead of the interfaces API. UpdateResources reuses IP lists for 30s when the resource status is unchanged, caps concurrent LXC IP lookups, and sets MaxConnsPerHost on the HTTP transport to match. Add httptest coverage for offline IPs, second-poll IP reuse, and status transitions. Replace math.Pow session backoff with fixed-duration retries.
181 lines
4.7 KiB
Go
181 lines
4.7 KiB
Go
package proxmox
|
|
|
|
import (
|
|
"context"
|
|
"crypto/tls"
|
|
"errors"
|
|
"fmt"
|
|
"net"
|
|
"net/http"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/luthermonson/go-proxmox"
|
|
"github.com/rs/zerolog/log"
|
|
strutils "github.com/yusing/goutils/strings"
|
|
)
|
|
|
|
type Config struct {
|
|
URL string `json:"url" validate:"required,url"`
|
|
|
|
Username string `json:"username" validate:"required_without_all=TokenID Secret"`
|
|
Password strutils.Redacted `json:"password" validate:"required_without_all=TokenID Secret"`
|
|
Realm string `json:"realm"` // default is "pam"
|
|
|
|
TokenID string `json:"token_id" validate:"required_without_all=Username Password"`
|
|
Secret strutils.Redacted `json:"secret" validate:"required_without_all=Username Password"`
|
|
|
|
NoTLSVerify bool `json:"no_tls_verify" yaml:"no_tls_verify,omitempty"`
|
|
|
|
client *Client
|
|
}
|
|
|
|
const (
|
|
ResourcePollInterval = 3 * time.Second
|
|
SessionRefreshInterval = 1 * time.Minute
|
|
|
|
maxConcurrentResourceLookups = 8
|
|
proxmoxMaxConnsPerHost = maxConcurrentResourceLookups
|
|
)
|
|
|
|
// NodeStatsPollInterval controls how often node stats are streamed when streaming is enabled.
|
|
const NodeStatsPollInterval = time.Second
|
|
|
|
func (c *Config) Client() *Client {
|
|
if c.client == nil {
|
|
panic("proxmox client accessed before init")
|
|
}
|
|
return c.client
|
|
}
|
|
|
|
func (c *Config) Init(ctx context.Context) error {
|
|
dialer := net.Dialer{
|
|
Timeout: 10 * time.Second,
|
|
}
|
|
tr := http.Transport{
|
|
Proxy: http.ProxyFromEnvironment,
|
|
DialContext: dialer.DialContext,
|
|
TLSHandshakeTimeout: 10 * time.Second,
|
|
IdleConnTimeout: 90 * time.Second,
|
|
}
|
|
tr.MaxConnsPerHost = proxmoxMaxConnsPerHost
|
|
if c.NoTLSVerify {
|
|
tr.TLSClientConfig = &tls.Config{
|
|
InsecureSkipVerify: true, //nolint:gosec
|
|
|
|
}
|
|
}
|
|
|
|
c.URL = strings.TrimSuffix(c.URL, "/")
|
|
if !strings.HasSuffix(c.URL, "/api2/json") {
|
|
c.URL += "/api2/json"
|
|
}
|
|
|
|
opts := []proxmox.Option{
|
|
proxmox.WithHTTPClient(&http.Client{
|
|
Transport: &tr,
|
|
}),
|
|
}
|
|
useCredentials := false
|
|
if c.Username != "" && c.Password != "" {
|
|
if c.Realm == "" {
|
|
c.Realm = "pam"
|
|
}
|
|
opts = append(opts, proxmox.WithCredentials(&proxmox.Credentials{
|
|
Username: c.Username,
|
|
Password: c.Password.String(),
|
|
Realm: c.Realm,
|
|
}))
|
|
useCredentials = true
|
|
} else {
|
|
opts = append(opts, proxmox.WithAPIToken(c.TokenID, c.Secret.String()))
|
|
}
|
|
c.client = NewClient(c.URL, opts...)
|
|
|
|
initCtx, initCtxCancel := context.WithTimeout(ctx, 5*time.Second)
|
|
defer initCtxCancel()
|
|
|
|
if useCredentials {
|
|
err := c.client.CreateSession(initCtx)
|
|
if err != nil {
|
|
return fmt.Errorf("failed to create session: %w", err)
|
|
}
|
|
}
|
|
|
|
if err := c.client.UpdateClusterInfo(initCtx); err != nil {
|
|
if errors.Is(err, context.DeadlineExceeded) {
|
|
return fmt.Errorf("timeout fetching proxmox cluster info: %w", err)
|
|
}
|
|
return fmt.Errorf("failed to fetch proxmox cluster info: %w", err)
|
|
}
|
|
|
|
{
|
|
reqCtx, reqCtxCancel := context.WithTimeout(ctx, ResourcePollInterval)
|
|
err := c.client.UpdateResources(reqCtx)
|
|
reqCtxCancel()
|
|
if err != nil {
|
|
log.Warn().Err(err).Str("cluster", c.client.Cluster.Name).Msg("[proxmox] failed to update resources")
|
|
}
|
|
}
|
|
|
|
go c.updateResourcesLoop(ctx)
|
|
go c.refreshSessionLoop(ctx)
|
|
return nil
|
|
}
|
|
|
|
func (c *Config) updateResourcesLoop(ctx context.Context) {
|
|
ticker := time.NewTicker(ResourcePollInterval)
|
|
defer ticker.Stop()
|
|
|
|
log.Trace().Str("cluster", c.client.Cluster.Name).Msg("[proxmox] starting resources update loop")
|
|
|
|
for {
|
|
select {
|
|
case <-ctx.Done():
|
|
log.Trace().Str("cluster", c.client.Cluster.Name).Msg("[proxmox] stopping resources update loop")
|
|
return
|
|
case <-ticker.C:
|
|
reqCtx, reqCtxCancel := context.WithTimeout(ctx, ResourcePollInterval)
|
|
err := c.client.UpdateResources(reqCtx)
|
|
reqCtxCancel()
|
|
if err != nil {
|
|
log.Error().Err(err).Str("cluster", c.client.Cluster.Name).Msg("[proxmox] failed to update resources")
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
func (c *Config) refreshSessionLoop(ctx context.Context) {
|
|
ticker := time.NewTicker(SessionRefreshInterval)
|
|
defer ticker.Stop()
|
|
|
|
log.Trace().Str("cluster", c.client.Cluster.Name).Msg("[proxmox] starting session refresh loop")
|
|
|
|
numRetries := 0
|
|
|
|
for {
|
|
select {
|
|
case <-ctx.Done():
|
|
log.Trace().Str("cluster", c.client.Cluster.Name).Msg("[proxmox] stopping session refresh loop")
|
|
return
|
|
case <-ticker.C:
|
|
reqCtx, reqCtxCancel := context.WithTimeout(ctx, SessionRefreshInterval)
|
|
err := c.client.RefreshSession(reqCtx)
|
|
reqCtxCancel()
|
|
if err != nil {
|
|
log.Err(err).Str("cluster", c.client.Cluster.Name).Msg("[proxmox] failed to refresh session")
|
|
// exponential backoff
|
|
numRetries++
|
|
backoff := 10 * time.Second
|
|
if numRetries <= 3 {
|
|
backoff = time.Duration(1<<numRetries) * time.Second
|
|
}
|
|
ticker.Reset(backoff)
|
|
} else {
|
|
numRetries = 0
|
|
ticker.Reset(SessionRefreshInterval)
|
|
}
|
|
}
|
|
}
|
|
}
|