empayre/fleet
14
0
Fork 0
mirror of https://github.com/empayre/fleet.git synced 2024-11-06 17:05:18 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
259d4fa1ac
fleet/server/datastore/mysqlredis/hosts.go

193 lines
5.7 KiB
Go
Raw Blame History

package mysqlredis
import (
"context"
"time"
"github.com/fleetdm/fleet/v4/server/contexts/ctxerr"
"github.com/fleetdm/fleet/v4/server/contexts/logging"
"github.com/fleetdm/fleet/v4/server/datastore/redis"
"github.com/fleetdm/fleet/v4/server/fleet"
redigo "github.com/gomodule/redigo/redis"
)
const enrolledHostsSetKey = "enrolled_hosts:host_ids"
var redisSetMembersBatchSize = 10000 // var so it can be changed in tests
// SyncEnrolledHostIDs forces synchronisation of host IDs between the DB and
// the Redis set. To optimize for the common case, it first checks if the
// counts are the same in the database and the redis set, and if so it does
// nothing else. Otherwise, it loads the current list of IDs from the database,
// clears the Redis set, and stores the IDs in the Redis set. This is called
// regularly (via a cron job) so that if the Redis set gets out of sync, it
// eventually fixes itself automatically.
func (d *Datastore) SyncEnrolledHostIDs(ctx context.Context) error {
if d.enforceHostLimit <= 0 {
// remove the enrolled hosts key, e.g. if the limit was enforced at some
// point and then disabled, so we reclaim the redis memory space.
conn := redis.ConfigureDoer(d.pool, d.pool.Get())
defer conn.Close()
if _, err := conn.Do("DEL", enrolledHostsSetKey); err != nil {
return ctxerr.Wrap(ctx, err, "delete enrolled hosts key")
}
return nil
}
dbCount, err := d.CountEnrolledHosts(ctx)
if err != nil {
return ctxerr.Wrap(ctx, err, "count enrolled hosts from the database")
}
conn := redis.ConfigureDoer(d.pool, d.pool.Get())
defer conn.Close()
redisCount, err := redigo.Int(conn.Do("SCARD", enrolledHostsSetKey))
if err != nil {
return ctxerr.Wrap(ctx, err, "count enrolled hosts from redis")
}
if redisCount == dbCount {
return nil
}
// counts differ, replace the redis set with ids from the database
ids, err := d.EnrolledHostIDs(ctx)
if err != nil {
return ctxerr.Wrap(ctx, err, "get enrolled host IDs from the database")
}
if _, err := conn.Do("DEL", enrolledHostsSetKey); err != nil {
return ctxerr.Wrap(ctx, err, "clear redis enrolled hosts set")
}
// return the connection to the pool so it can be reused in addHosts
conn.Close()
if err := addHosts(ctx, d.pool, ids...); err != nil {
return ctxerr.Wrap(ctx, err, "add database host IDs to the redis set")
}
return nil
}
func addHosts(ctx context.Context, pool fleet.RedisPool, hostIDs ...uint) error {
conn := redis.ConfigureDoer(pool, pool.Get())
defer conn.Close()
for len(hostIDs) > 0 {
max := len(hostIDs)
if max > redisSetMembersBatchSize {
max = redisSetMembersBatchSize
}
args := redigo.Args{enrolledHostsSetKey}
args = args.AddFlat(hostIDs[:max])
if _, err := conn.Do("SADD", args...); err != nil {
return ctxerr.Wrap(ctx, err, "enrolled limits: add hosts")
}
hostIDs = hostIDs[max:]
}
return nil
}
func removeHosts(ctx context.Context, pool fleet.RedisPool, hostIDs ...uint) error {
conn := redis.ConfigureDoer(pool, pool.Get())
defer conn.Close()
for len(hostIDs) > 0 {
max := len(hostIDs)
if max > redisSetMembersBatchSize {
max = redisSetMembersBatchSize
}
args := redigo.Args{enrolledHostsSetKey}
args = args.AddFlat(hostIDs)
if _, err := conn.Do("SREM", args...); err != nil {
return ctxerr.Wrap(ctx, err, "enrolled limits: remove hosts")
}
hostIDs = hostIDs[max:]
}
return nil
}
func (d *Datastore) checkCanAddHost(ctx context.Context) (bool, error) {
conn := redis.ConfigureDoer(d.pool, d.pool.Get())
defer conn.Close()
n, err := redigo.Int(conn.Do("SCARD", enrolledHostsSetKey))
if err != nil {
return false, ctxerr.Wrap(ctx, err, "enrolled limits: check can add host")
}
if n >= d.enforceHostLimit {
return false, nil
}
return true, nil
}
func (d *Datastore) NewHost(ctx context.Context, host *fleet.Host) (*fleet.Host, error) {
h, err := d.Datastore.NewHost(ctx, host)
if err == nil && d.enforceHostLimit > 0 {
if err := addHosts(ctx, d.pool, h.ID); err != nil {
logging.WithErr(ctx, err)
}
}
return h, err
}
func (d *Datastore) EnrollHost(ctx context.Context, isMDMEnabled bool, osqueryHostID, hardwareUUID, hardwareSerial, nodeKey string, teamID *uint, cooldown time.Duration) (*fleet.Host, error) {
h, err := d.Datastore.EnrollHost(ctx, isMDMEnabled, osqueryHostID, hardwareUUID, hardwareSerial, nodeKey, teamID, cooldown)
if err == nil && d.enforceHostLimit > 0 {
if err := addHosts(ctx, d.pool, h.ID); err != nil {
logging.WithErr(ctx, err)
}
}
return h, err
}
func (d *Datastore) DeleteHost(ctx context.Context, hid uint) error {
err := d.Datastore.DeleteHost(ctx, hid)
if err == nil && d.enforceHostLimit > 0 {
if err := removeHosts(ctx, d.pool, hid); err != nil {
logging.WithErr(ctx, err)
}
}
return err
}
func (d *Datastore) DeleteHosts(ctx context.Context, ids []uint) error {
err := d.Datastore.DeleteHosts(ctx, ids)
if err == nil && d.enforceHostLimit > 0 {
if err := removeHosts(ctx, d.pool, ids...); err != nil {
logging.WithErr(ctx, err)
}
}
return err
}
func (d *Datastore) CleanupExpiredHosts(ctx context.Context) ([]uint, error) {
ids, err := d.Datastore.CleanupExpiredHosts(ctx)
if err == nil && d.enforceHostLimit > 0 {
if err := removeHosts(ctx, d.pool, ids...); err != nil {
logging.WithErr(ctx, err)
}
}
return ids, err
}
func (d *Datastore) CleanupIncomingHosts(ctx context.Context, now time.Time) ([]uint, error) {
ids, err := d.Datastore.CleanupIncomingHosts(ctx, now)
if err == nil && d.enforceHostLimit > 0 {
if err := removeHosts(ctx, d.pool, ids...); err != nil {
logging.WithErr(ctx, err)
}
}
return ids, err
}
func (d *Datastore) CanEnrollNewHost(ctx context.Context) (bool, error) {
if d.enforceHostLimit > 0 {
return d.checkCanAddHost(ctx)
}
return true, nil
}
Reference in New Issue View Git Blame Copy Permalink