mirror of
https://github.com/akvorado/akvorado.git
synced 2025-12-12 06:24:10 +01:00
1ec89aac1f
revive default configuration has changed in 1.3.0. Some stuff is a bit silly (like empty blocks), but I find it easier to follow that than to try to tweak the configuration.
204 lines
7.0 KiB
Go
204 lines
7.0 KiB
Go
// SPDX-FileCopyrightText: 2022 Free Mobile
|
|
// SPDX-License-Identifier: AGPL-3.0-only
|
|
|
|
package snmp
|
|
|
|
import (
|
|
"errors"
|
|
"net/netip"
|
|
"reflect"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/gosnmp/gosnmp"
|
|
"github.com/mitchellh/mapstructure"
|
|
|
|
"akvorado/common/helpers"
|
|
)
|
|
|
|
// Configuration describes the configuration for the SNMP client
|
|
type Configuration struct {
|
|
// CacheDuration defines how long to keep cached entries without access
|
|
CacheDuration time.Duration `validate:"min=1m"`
|
|
// CacheRefresh defines how soon to refresh an existing cached entry
|
|
CacheRefresh time.Duration `validate:"eq=0|min=1m,eq=0|gtefield=CacheDuration"`
|
|
// CacheRefreshInterval defines the interval to check for expiration/refresh
|
|
CacheCheckInterval time.Duration `validate:"ltefield=CacheRefresh,min=1s"`
|
|
// CachePersist defines a file to store cache and survive restarts
|
|
CachePersistFile string
|
|
// PollerRetries tell how many time a poller should retry before giving up
|
|
PollerRetries int `validate:"min=0"`
|
|
// PollerTimeout tell how much time a poller should wait for an answer
|
|
PollerTimeout time.Duration `validate:"min=100ms"`
|
|
// PollerCoalesce tells how many requests can be contained inside a single SNMP PDU
|
|
PollerCoalesce int `validate:"min=0"`
|
|
// Workers define the number of workers used to poll SNMP
|
|
Workers int `validate:"min=1"`
|
|
|
|
// Communities is a mapping from exporter IPs to SNMPv2 communities
|
|
Communities *helpers.SubnetMap[string]
|
|
// SecurityParameters is a mapping from exporter IPs to SNMPv3 security parameters
|
|
SecurityParameters *helpers.SubnetMap[SecurityParameters] `validate:"omitempty,dive"`
|
|
// Agents is a mapping from exporter IPs to SNMP agent IP
|
|
Agents map[netip.Addr]netip.Addr
|
|
// Ports is a mapping from agent IPs to SNMP port
|
|
Ports *helpers.SubnetMap[uint16]
|
|
}
|
|
|
|
// SecurityParameters describes SNMPv3 USM security parameters.
|
|
type SecurityParameters struct {
|
|
UserName string `validate:"required"`
|
|
AuthenticationProtocol AuthProtocol `validate:"required_with=PrivProtocol"`
|
|
AuthenticationPassphrase string `validate:"required_with=AuthenticationProtocol"`
|
|
PrivacyProtocol PrivProtocol
|
|
PrivacyPassphrase string `validate:"required_with=PrivacyProtocol"`
|
|
ContextName string
|
|
}
|
|
|
|
// DefaultConfiguration represents the default configuration for the SNMP client.
|
|
func DefaultConfiguration() Configuration {
|
|
return Configuration{
|
|
CacheDuration: 30 * time.Minute,
|
|
CacheRefresh: time.Hour,
|
|
CacheCheckInterval: 2 * time.Minute,
|
|
CachePersistFile: "",
|
|
PollerRetries: 1,
|
|
PollerTimeout: time.Second,
|
|
PollerCoalesce: 10,
|
|
Workers: 1,
|
|
|
|
Communities: helpers.MustNewSubnetMap(map[string]string{
|
|
"::/0": "public",
|
|
}),
|
|
SecurityParameters: helpers.MustNewSubnetMap(map[string]SecurityParameters{}),
|
|
Ports: helpers.MustNewSubnetMap(map[string]uint16{
|
|
"::/0": 161,
|
|
}),
|
|
}
|
|
}
|
|
|
|
// ConfigurationUnmarshallerHook normalize SNMP configuration:
|
|
// - append default-community to communities (as ::/0)
|
|
// - ensure we have a default value for communities
|
|
func ConfigurationUnmarshallerHook() mapstructure.DecodeHookFunc {
|
|
return func(from, to reflect.Value) (interface{}, error) {
|
|
if from.Kind() != reflect.Map || from.IsNil() || to.Type() != reflect.TypeOf(Configuration{}) {
|
|
return from.Interface(), nil
|
|
}
|
|
|
|
// default-community → communities
|
|
var defaultKey, mapKey *reflect.Value
|
|
fromMap := from.MapKeys()
|
|
for i, k := range fromMap {
|
|
k = helpers.ElemOrIdentity(k)
|
|
if k.Kind() != reflect.String {
|
|
return from.Interface(), nil
|
|
}
|
|
if helpers.MapStructureMatchName(k.String(), "DefaultCommunity") {
|
|
defaultKey = &fromMap[i]
|
|
} else if helpers.MapStructureMatchName(k.String(), "Communities") {
|
|
mapKey = &fromMap[i]
|
|
}
|
|
}
|
|
var communities reflect.Value
|
|
if mapKey != nil {
|
|
communities = helpers.ElemOrIdentity(from.MapIndex(*mapKey))
|
|
}
|
|
if defaultKey != nil && !helpers.ElemOrIdentity(from.MapIndex(*defaultKey)).IsZero() {
|
|
if mapKey == nil {
|
|
// Use the fact we can set the default value directly.
|
|
from.SetMapIndex(reflect.ValueOf("communities"), from.MapIndex(*defaultKey))
|
|
} else if communities.Kind() == reflect.String {
|
|
return nil, errors.New("do not provide default-community when using communities")
|
|
} else {
|
|
communities.SetMapIndex(reflect.ValueOf("::/0"), from.MapIndex(*defaultKey))
|
|
}
|
|
} else {
|
|
// communities should contain ::/0
|
|
if mapKey == nil {
|
|
from.SetMapIndex(reflect.ValueOf("communities"), reflect.ValueOf("public"))
|
|
} else if communities.Kind() != reflect.String && !communities.MapIndex(reflect.ValueOf("::/0")).IsValid() {
|
|
communities.SetMapIndex(reflect.ValueOf("::/0"), reflect.ValueOf("public"))
|
|
}
|
|
}
|
|
if defaultKey != nil {
|
|
from.SetMapIndex(*defaultKey, reflect.Value{})
|
|
}
|
|
|
|
return from.Interface(), nil
|
|
}
|
|
}
|
|
|
|
// AuthProtocol represents a SNMPv3 authentication protocol
|
|
type AuthProtocol gosnmp.SnmpV3AuthProtocol
|
|
|
|
// UnmarshalText parses a SNMPv3 authentication protocol
|
|
func (ap *AuthProtocol) UnmarshalText(text []byte) error {
|
|
protocols := map[string]gosnmp.SnmpV3AuthProtocol{
|
|
"": gosnmp.NoAuth,
|
|
"MD5": gosnmp.MD5,
|
|
"SHA": gosnmp.SHA,
|
|
"SHA224": gosnmp.SHA224,
|
|
"SHA256": gosnmp.SHA256,
|
|
"SHA384": gosnmp.SHA384,
|
|
"SHA512": gosnmp.SHA512,
|
|
}
|
|
protocol, ok := protocols[strings.ToUpper(string(text))]
|
|
if !ok {
|
|
return errors.New("unknown auth protocol")
|
|
}
|
|
*ap = AuthProtocol(protocol)
|
|
return nil
|
|
}
|
|
|
|
// String turns a SNMPv3 authentication protocol to a string
|
|
func (ap AuthProtocol) String() string {
|
|
return gosnmp.SnmpV3AuthProtocol(ap).String()
|
|
}
|
|
|
|
// MarshalText turns a SNMPv3 authentication protocol to a string
|
|
func (ap AuthProtocol) MarshalText() ([]byte, error) {
|
|
return []byte(ap.String()), nil
|
|
}
|
|
|
|
// PrivProtocol represents a SNMPv3 privacy protocol
|
|
type PrivProtocol gosnmp.SnmpV3PrivProtocol
|
|
|
|
// UnmarshalText parses a SNMPv3 privacy protocol
|
|
func (pp *PrivProtocol) UnmarshalText(text []byte) error {
|
|
protocols := map[string]gosnmp.SnmpV3PrivProtocol{
|
|
"": gosnmp.NoPriv,
|
|
"DES": gosnmp.DES,
|
|
"AES": gosnmp.AES,
|
|
"AES192": gosnmp.AES192,
|
|
"AES256": gosnmp.AES256,
|
|
"AES192C": gosnmp.AES192C,
|
|
"AES256C": gosnmp.AES256C,
|
|
}
|
|
protocol, ok := protocols[strings.ToUpper(string(text))]
|
|
if !ok {
|
|
return errors.New("unknown privacy protocol")
|
|
}
|
|
*pp = PrivProtocol(protocol)
|
|
return nil
|
|
}
|
|
|
|
// String turns a SNMPv3 privacy protocol to a string
|
|
func (pp PrivProtocol) String() string {
|
|
return gosnmp.SnmpV3PrivProtocol(pp).String()
|
|
}
|
|
|
|
// MarshalText turns a SNMPv3 privacy protocol to a string
|
|
func (pp PrivProtocol) MarshalText() ([]byte, error) {
|
|
return []byte(pp.String()), nil
|
|
}
|
|
|
|
func init() {
|
|
helpers.RegisterMapstructureUnmarshallerHook(ConfigurationUnmarshallerHook())
|
|
helpers.RegisterMapstructureUnmarshallerHook(helpers.SubnetMapUnmarshallerHook[string]())
|
|
helpers.RegisterMapstructureUnmarshallerHook(helpers.SubnetMapUnmarshallerHook[SecurityParameters]())
|
|
helpers.RegisterMapstructureUnmarshallerHook(helpers.SubnetMapUnmarshallerHook[uint16]())
|
|
helpers.RegisterSubnetMapValidation[SecurityParameters]()
|
|
helpers.RegisterSubnetMapValidation[uint16]()
|
|
}
|