Merge branch 'develop' into dependabot/go_modules/develop/golang.org/x/term-0.29.0

tanmoysrt · web-flow · commit e662352a0783 · 2025-02-09T00:43:40.000+05:30
diff --git a/README.md b/README.md
@@ -64,5 +64,3 @@ Many thanks to all of the sponsors who support Swiftwave.
 ### License
 
 [Apache-2.0](LICENSE)
-
-[![FOSSA Status](https://app.fossa.com/api/projects/git%2Bgithub.com%2Fswiftwave-org%2Fswiftwave.svg?type=large)](https://app.fossa.com/projects/git%2Bgithub.com%2Fswiftwave-org%2Fswiftwave?ref=badge_large)
diff --git a/agent/api_server.go b/agent/api_server.go
@@ -73,6 +73,10 @@ func startHttpServer() {
 	e.GET("/nf-rules/:uuid", getNFRule)
 	e.DELETE("/nf-rules/:uuid", deleteNFRule)
 
+	// HAProxy API
+	e.GET("/haproxy/service-status", getHAProxyStatus)
+	e.Any("/haproxy/*", sendRequestToHAProxy)
+
 	if err := e.Start(":8080"); err != nil && !errors.Is(err, http.ErrServerClosed) {
 		e.Logger.Fatal(err)
 	}
diff --git a/agent/cli.go b/agent/cli.go
@@ -25,6 +25,8 @@ func init() {
 	setupCmd.Flags().String("wireguard-address", "", "Wireguard address")
 	setupCmd.Flags().String("docker-network-gateway-address", "", "Docker network gateway address")
 	setupCmd.Flags().String("docker-network-subnet", "", "Docker network subnet")
+	setupCmd.Flags().String("swiftwave-service-address", "", "Swiftwave service address ip:port")
+	setupCmd.Flags().Bool("enable-haproxy", false, "Enable haproxy")
 
 	setupCmd.Flags().Bool("master-node", false, "Setup as a master node")
 	setupCmd.Flags().String("master-node-endpoint", "", "Master server endpoint")
@@ -35,6 +37,7 @@ func init() {
 	setupCmd.MarkFlagRequired("wireguard-address")
 	setupCmd.MarkFlagRequired("docker-network-gateway-address")
 	setupCmd.MarkFlagRequired("docker-network-subnet")
+	setupCmd.MarkFlagRequired("swiftwave-service-address")
 }
 
 var rootCmd = &cobra.Command{
@@ -68,7 +71,14 @@ var startCmd = &cobra.Command{
 var setupCmd = &cobra.Command{
 	Use: "setup",
 	Run: func(cmd *cobra.Command, args []string) {
-		_, err := GetConfig()
+		// Migrate the database
+		err := MigrateDatabase()
+		if err != nil {
+			cmd.PrintErr("Failed to migrate database")
+			return
+		}
+		// Try to get the config
+		_, err = GetConfig()
 		if err == nil {
 			cmd.Println("Sorry, you can't change any config")
 			return
@@ -80,13 +90,27 @@ var setupCmd = &cobra.Command{
 			return
 		}
 
+		isEnableHaproxy, err := cmd.Flags().GetBool("enable-haproxy")
+		if err != nil {
+			cmd.PrintErr("Invalid enable haproxy flag")
+			return
+		}
+
+		// validate swiftwave service address
+		_, _, err = net.SplitHostPort(cmd.Flag("swiftwave-service-address").Value.String())
+		if err != nil {
+			cmd.PrintErr("Invalid swiftwave service address")
+			return
+		}
+
 		nodeType := WorkerNode
 		if isMasterNode {
 			nodeType = MasterNode
 		}
 
 		config := AgentConfig{
-			NodeType: nodeType,
+			NodeType:                nodeType,
+			SwiftwaveServiceAddress: cmd.Flag("swiftwave-service-address").Value.String(),
 			WireguardConfig: WireguardConfig{
 				PrivateKey: cmd.Flag("wireguard-private-key").Value.String(),
 				Address:    cmd.Flag("wireguard-address").Value.String(),
@@ -100,6 +124,11 @@ var setupCmd = &cobra.Command{
 				PublicKey:  cmd.Flag("master-node-public-key").Value.String(),
 				AllowedIPs: cmd.Flag("master-node-allowed-ips").Value.String(),
 			},
+			HaproxyConfig: HAProxyConfig{
+				Enabled:  isEnableHaproxy,
+				Username: GenerateRandomString(10),
+				Password: GenerateRandomString(30),
+			},
 		}
 
 		if !isMasterNode {
@@ -137,6 +166,20 @@ var setupCmd = &cobra.Command{
 			}
 		}()
 
+		// Get ip from wireguard address
+		ip, _, err := net.ParseCIDR(config.WireguardConfig.Address)
+		if err != nil {
+			cmd.PrintErr("Failed to parse wireguard address")
+			return
+		}
+
+		// Install haproxy
+		err = installHAProxy(config.SwiftwaveServiceAddress, fmt.Sprintf("%s:53", ip), config.HaproxyConfig.Username, config.HaproxyConfig.Password)
+		if err != nil {
+			cmd.PrintErr(err.Error())
+			return
+		}
+
 		err = SetConfig(&config)
 		if err != nil {
 			cmd.PrintErr(err.Error())
@@ -162,6 +205,12 @@ var setupCmd = &cobra.Command{
 			cmd.PrintErr(err.Error())
 			return
 		}
+		// Enable haproxy and data plane api
+		if config.HaproxyConfig.Enabled {
+			enableHAProxy()
+		}
+		cmd.Println("Haproxy and data plane api enabled")
+
 		isSuccess = true
 	},
 }
@@ -208,6 +257,11 @@ var getConfig = &cobra.Command{
 		cmd.Printf("  • Bridge ID ---------- %s\n", config.DockerNetwork.BridgeId)
 		cmd.Printf("  • Gateway Address ---- %s\n", config.DockerNetwork.GatewayAddress)
 		cmd.Printf("  • Subnet ------------- %s\n", config.DockerNetwork.Subnet)
+		cmd.Println()
+		cmd.Println("Haproxy Configuration:")
+		cmd.Printf("  • Enabled ------------ %t\n", config.HaproxyConfig.Enabled)
+		cmd.Printf("  • Username ---------- %s\n", config.HaproxyConfig.Username)
+		cmd.Printf("  • Password ---------- %s\n", config.HaproxyConfig.Password)
 	},
 }
 
@@ -216,7 +270,7 @@ var cleanup = &cobra.Command{
 	Run: func(cmd *cobra.Command, args []string) {
 		// Ask for confirmation
 		fmt.Println("This will delete all containers and remove docker and wireguard networks")
-		fmt.Println("Are you sure you want to continue? (y/n)")
+		fmt.Print("Are you sure you want to continue? (y/n) : ")
 		var response string
 		_, err := fmt.Scanln(&response)
 		if err != nil {
@@ -274,6 +328,9 @@ var cleanup = &cobra.Command{
 		_ = IPTablesClient.ClearChain("nat", NatPostroutingChainName)
 		_ = IPTablesClient.ClearChain("nat", NatInputChainName)
 		_ = IPTablesClient.ClearChain("nat", NatOutputChainName)
+		// Disable haproxy and data plane api
+		disableHAProxy()
+		cmd.Println("Haproxy and data plane api disabled")
 		// Backup and remove the database file
 		moveDBFilesToBackup()
 		// Done
diff --git a/agent/config.go b/agent/config.go
@@ -15,9 +15,11 @@ const (
 type AgentConfig struct {
 	ID                      uint                    `gorm:"primaryKey"`
 	NodeType                NodeType                `json:"node_type" gorm:"column:node_type"`
+	SwiftwaveServiceAddress string                  `json:"swiftwave_service_address" gorm:"column:swiftwave_service_address"`
 	WireguardConfig         WireguardConfig         `json:"wireguard_config" gorm:"embedded;embeddedPrefix:wireguard_"`
 	MasterNodeConnectConfig MasterNodeConnectConfig `json:"master_node_connect_config" gorm:"embedded;embeddedPrefix:master_node_connect_config_"`
 	DockerNetwork           DockerNetworkConfig     `json:"docker_network" gorm:"embedded;embeddedPrefix:docker_network_"`
+	HaproxyConfig           HAProxyConfig           `json:"haproxy_config" gorm:"embedded;embeddedPrefix:haproxy_"`
 }
 
 type WireguardConfig struct {
@@ -37,6 +39,12 @@ type DockerNetworkConfig struct {
 	Subnet         string `json:"subnet" gorm:"column:subnet"`
 }
 
+type HAProxyConfig struct {
+	Enabled  bool   `json:"enabled" gorm:"column:enabled"`
+	Username string `json:"username" gorm:"column:username"`
+	Password string `json:"password" gorm:"column:password"`
+}
+
 func GetConfig() (*AgentConfig, error) {
 	var config AgentConfig
 	if err := rDB.First(&config).Error; err != nil {
diff --git a/agent/go.mod b/agent/go.mod
@@ -30,12 +30,13 @@ require (
 	go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp v1.34.0 // indirect
 	go.opentelemetry.io/otel/sdk v1.34.0 // indirect
 	golang.org/x/crypto v0.32.0 // indirect
-	golang.org/x/mod v0.18.0 // indirect
+	golang.org/x/exp v0.0.0-20250207012021-f9890c6ad9f3 // indirect
+	golang.org/x/mod v0.22.0 // indirect
 	golang.org/x/net v0.34.0 // indirect
 	golang.org/x/sync v0.10.0 // indirect
 	golang.org/x/text v0.21.0 // indirect
 	golang.org/x/time v0.8.0 // indirect
-	golang.org/x/tools v0.22.0 // indirect
+	golang.org/x/tools v0.29.0 // indirect
 	golang.zx2c4.com/wireguard v0.0.0-20231211153847-12269c276173 // indirect
 	gotest.tools/v3 v3.5.1 // indirect
 )
@@ -58,6 +59,7 @@ require (
 	github.com/opencontainers/image-spec v1.1.0 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/cobra v1.8.1
+	github.com/tredoe/osutil v1.5.0
 	github.com/vishvananda/netlink v1.3.0
 	github.com/vishvananda/netns v0.0.4 // indirect
 	go.opentelemetry.io/auto/sdk v1.1.0 // indirect
diff --git a/agent/go.sum b/agent/go.sum
@@ -116,6 +116,8 @@ github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/
 github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/stretchr/testify v1.10.0 h1:Xv5erBjTwe/5IxqUQTdXv5kgmIvbHo3QQyRwhJsOfJA=
 github.com/stretchr/testify v1.10.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
+github.com/tredoe/osutil v1.5.0 h1:UGVxbbHRoZi8xXVmbNZ2vgG6XoJ15ndE4LniiQ3rJKg=
+github.com/tredoe/osutil v1.5.0/go.mod h1:TEzphzUUunysbdDRfdOgqkg10POQbnfIPV50ynqOfIg=
 github.com/valyala/bytebufferpool v1.0.0 h1:GqA5TC/0021Y/b9FG4Oi9Mr3q7XYx6KllzawFIhcdPw=
 github.com/valyala/bytebufferpool v1.0.0/go.mod h1:6bBcMArwyJ5K/AmCkWv1jt77kVWyCJ6HpOuEn7z0Csc=
 github.com/valyala/fasttemplate v1.2.2 h1:lxLXG0uE3Qnshl9QyaK6XJxMXlQZELvChBOCmQD0Loo=
@@ -149,10 +151,13 @@ golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.32.0 h1:euUpcYgM8WcP71gNpTqQCn6rC2t6ULUPiOzfWaXVVfc=
 golang.org/x/crypto v0.32.0/go.mod h1:ZnnJkOaASj8g0AjIduWNlq2NRxL0PlBrbKVyZ6V/Ugc=
+golang.org/x/exp v0.0.0-20250207012021-f9890c6ad9f3 h1:qNgPs5exUA+G0C96DrPwNrvLSj7GT/9D+3WMWUcUg34=
+golang.org/x/exp v0.0.0-20250207012021-f9890c6ad9f3/go.mod h1:tujkw807nyEEAamNbDrEGzRav+ilXA7PCRAd6xsmwiU=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.18.0 h1:5+9lSbEzPSdWkH32vYPBwEpX8KwDbM52Ud9xBUvNlb0=
 golang.org/x/mod v0.18.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
+golang.org/x/mod v0.22.0/go.mod h1:6SkKJ3Xj0I0BrPOZoBy3bdMptDDU9oJrpohJ3eWZ1fY=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
@@ -188,6 +193,7 @@ golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roY
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.22.0 h1:gqSGLZqv+AI9lIQzniJ0nZDRG5GBPsSi+DRNHWNz6yA=
 golang.org/x/tools v0.22.0/go.mod h1:aCwcsjqvq7Yqt6TNyX7QMU2enbQ/Gt0bo6krSeEri+c=
+golang.org/x/tools v0.29.0/go.mod h1:KMQVMRsVxU6nHCFXrBPhDB8XncLNLM0lIy/F14RP588=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
diff --git a/agent/haproxy_api.go b/agent/haproxy_api.go
@@ -0,0 +1,60 @@
+package main
+
+import (
+	"net/http"
+	"net/http/httputil"
+	"net/url"
+	"strings"
+
+	"github.com/labstack/echo/v4"
+)
+
+func sendRequestToHAProxy(c echo.Context) error {
+	config, err := GetConfig()
+	if err != nil {
+		return c.String(http.StatusNotFound, "Failed to fetch config")
+	}
+	if !config.HaproxyConfig.Enabled {
+		return c.String(http.StatusNotFound, "Haproxy is not enabled")
+	}
+	// // Get the original request path and strip "/haproxy"
+	// newPath := strings.TrimPrefix(c.Request().URL.Path, "/haproxy")
+
+	// Define the target URL
+	targetURL, _ := url.Parse(DataplaneAPIBaseAddress)
+
+	// Create a reverse proxy
+	proxy := httputil.NewSingleHostReverseProxy(targetURL)
+	// Modify request before forwarding
+	proxy.Director = func(req *http.Request) {
+		req.URL.Scheme = targetURL.Scheme
+		req.URL.Host = targetURL.Host
+		req.URL.Path = strings.TrimPrefix(req.URL.Path, "/haproxy")
+		req.Host = targetURL.Host
+
+		// Set Basic Auth Header
+		req.SetBasicAuth(config.HaproxyConfig.Username, config.HaproxyConfig.Password)
+	}
+
+	// Serve the request
+	proxy.ServeHTTP(c.Response(), c.Request())
+	return nil
+}
+
+func getHAProxyStatus(c echo.Context) error {
+	config, err := GetConfig()
+	if err != nil {
+		return c.JSON(http.StatusInternalServerError, Response{
+			Message: "Failed to fetch config",
+			Error:   err.Error(),
+		})
+	}
+	return c.JSON(http.StatusOK, Response{
+		Message: "Successfully fetched status",
+		Data: map[string]interface{}{
+			"enabled":                     config.HaproxyConfig.Enabled,
+			"haproxy_service_active":      GetServiceStatus("haproxy"),
+			"dataplaneapi_service_active": GetServiceStatus("dataplaneapi"),
+		},
+	})
+}
diff --git a/agent/haproxy_utils.go b/agent/haproxy_utils.go
diff --git a/agent/helpers.go b/agent/helpers.go
