mirror of
https://github.com/DeBrosOfficial/network.git
synced 2025-12-11 07:58:50 +00:00
5c7767b7c8
- Added a new CertificateManager for managing self-signed certificates, ensuring secure communication within the network. - Updated the configuration to support self-signed certificates and Let's Encrypt integration for HTTPS. - Enhanced the installer to generate and manage certificates automatically, improving the setup experience. - Introduced a centralized TLS configuration for HTTP clients, ensuring consistent security practices across the application. - Updated documentation to reflect new port requirements and HTTPS setup instructions.
216 lines
6.2 KiB
Go
216 lines
6.2 KiB
Go
package development
|
|
|
|
import (
|
|
"context"
|
|
"encoding/json"
|
|
"fmt"
|
|
"io"
|
|
"net/http"
|
|
"os/exec"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/DeBrosOfficial/network/pkg/tlsutil"
|
|
)
|
|
|
|
// HealthCheckResult represents the result of a health check
|
|
type HealthCheckResult struct {
|
|
Name string
|
|
Healthy bool
|
|
Details string
|
|
}
|
|
|
|
// IPFSHealthCheck verifies IPFS peer connectivity
|
|
func (pm *ProcessManager) IPFSHealthCheck(ctx context.Context, nodes []ipfsNodeInfo) HealthCheckResult {
|
|
result := HealthCheckResult{Name: "IPFS Peers"}
|
|
|
|
healthyCount := 0
|
|
for _, node := range nodes {
|
|
cmd := exec.CommandContext(ctx, "ipfs", "swarm", "peers", "--repo-dir="+node.ipfsPath)
|
|
output, err := cmd.CombinedOutput()
|
|
if err != nil {
|
|
result.Details += fmt.Sprintf("%s: error getting peers (%v); ", node.name, err)
|
|
continue
|
|
}
|
|
|
|
// Split by newlines and filter empty lines
|
|
peerLines := strings.Split(strings.TrimSpace(string(output)), "\n")
|
|
peerCount := 0
|
|
for _, line := range peerLines {
|
|
if strings.TrimSpace(line) != "" {
|
|
peerCount++
|
|
}
|
|
}
|
|
|
|
// With 5 nodes, expect each node to see at least 3 other peers
|
|
if peerCount < 3 {
|
|
result.Details += fmt.Sprintf("%s: only %d peers (want 3+); ", node.name, peerCount)
|
|
} else {
|
|
result.Details += fmt.Sprintf("%s: %d peers; ", node.name, peerCount)
|
|
healthyCount++
|
|
}
|
|
}
|
|
|
|
// Require all 5 nodes to have healthy peer counts
|
|
result.Healthy = healthyCount == len(nodes)
|
|
return result
|
|
}
|
|
|
|
// RQLiteHealthCheck verifies RQLite cluster formation
|
|
func (pm *ProcessManager) RQLiteHealthCheck(ctx context.Context) HealthCheckResult {
|
|
result := HealthCheckResult{Name: "RQLite Cluster"}
|
|
|
|
topology := DefaultTopology()
|
|
healthyCount := 0
|
|
|
|
for _, nodeSpec := range topology.Nodes {
|
|
status := pm.checkRQLiteNode(ctx, nodeSpec.Name, nodeSpec.RQLiteHTTPPort)
|
|
if status.Healthy {
|
|
healthyCount++
|
|
}
|
|
result.Details += fmt.Sprintf("%s: %s; ", nodeSpec.Name, status.Details)
|
|
}
|
|
|
|
// Require at least 3 out of 5 nodes to be healthy for quorum
|
|
result.Healthy = healthyCount >= 3
|
|
return result
|
|
}
|
|
|
|
// checkRQLiteNode queries a single RQLite node's status
|
|
func (pm *ProcessManager) checkRQLiteNode(ctx context.Context, name string, httpPort int) HealthCheckResult {
|
|
result := HealthCheckResult{Name: fmt.Sprintf("RQLite-%s", name)}
|
|
|
|
urlStr := fmt.Sprintf("http://localhost:%d/status", httpPort)
|
|
client := tlsutil.NewHTTPClient(2 * time.Second)
|
|
resp, err := client.Get(urlStr)
|
|
if err != nil {
|
|
result.Details = fmt.Sprintf("connection failed: %v", err)
|
|
return result
|
|
}
|
|
defer resp.Body.Close()
|
|
|
|
if resp.StatusCode != http.StatusOK {
|
|
result.Details = fmt.Sprintf("HTTP %d", resp.StatusCode)
|
|
return result
|
|
}
|
|
|
|
var status map[string]interface{}
|
|
if err := json.NewDecoder(resp.Body).Decode(&status); err != nil {
|
|
result.Details = fmt.Sprintf("decode error: %v", err)
|
|
return result
|
|
}
|
|
|
|
// Check the store.raft structure (RQLite 8 format)
|
|
store, ok := status["store"].(map[string]interface{})
|
|
if !ok {
|
|
result.Details = "store data not found"
|
|
return result
|
|
}
|
|
|
|
raft, ok := store["raft"].(map[string]interface{})
|
|
if !ok {
|
|
result.Details = "raft data not found"
|
|
return result
|
|
}
|
|
|
|
// Check if we have a leader
|
|
leader, hasLeader := raft["leader"].(string)
|
|
if hasLeader && leader != "" {
|
|
result.Healthy = true
|
|
result.Details = "cluster member with leader elected"
|
|
return result
|
|
}
|
|
|
|
// Check node state - accept both Leader and Follower
|
|
if state, ok := raft["state"].(string); ok {
|
|
if state == "Leader" {
|
|
result.Healthy = true
|
|
result.Details = "this node is leader"
|
|
return result
|
|
}
|
|
if state == "Follower" {
|
|
result.Healthy = true
|
|
result.Details = "this node is follower in cluster"
|
|
return result
|
|
}
|
|
result.Details = fmt.Sprintf("state: %s", state)
|
|
return result
|
|
}
|
|
|
|
result.Details = "not yet connected"
|
|
return result
|
|
}
|
|
|
|
// LibP2PHealthCheck verifies that network nodes have peer connections
|
|
func (pm *ProcessManager) LibP2PHealthCheck(ctx context.Context) HealthCheckResult {
|
|
result := HealthCheckResult{Name: "LibP2P/Node Peers"}
|
|
|
|
// Check that nodes are part of the RQLite cluster and can communicate via LibP2P
|
|
topology := DefaultTopology()
|
|
healthyNodes := 0
|
|
|
|
for _, nodeSpec := range topology.Nodes {
|
|
status := pm.checkRQLiteNode(ctx, nodeSpec.Name, nodeSpec.RQLiteHTTPPort)
|
|
if status.Healthy {
|
|
healthyNodes++
|
|
result.Details += fmt.Sprintf("%s: connected; ", nodeSpec.Name)
|
|
} else {
|
|
result.Details += fmt.Sprintf("%s: %s; ", nodeSpec.Name, status.Details)
|
|
}
|
|
}
|
|
|
|
// Healthy if at least 3 nodes report connectivity
|
|
result.Healthy = healthyNodes >= 3
|
|
return result
|
|
}
|
|
|
|
// HealthCheckWithRetry performs a health check with retry logic
|
|
func (pm *ProcessManager) HealthCheckWithRetry(ctx context.Context, nodes []ipfsNodeInfo, retries int, retryInterval time.Duration, timeout time.Duration) bool {
|
|
fmt.Fprintf(pm.logWriter, "⚕️ Validating cluster health...")
|
|
|
|
deadlineCtx, cancel := context.WithTimeout(ctx, timeout)
|
|
defer cancel()
|
|
|
|
spinnerFrames := []string{"⠋", "⠙", "⠹", "⠸", "⠼", "⠴", "⠦", "⠧", "⠇", "⠏"}
|
|
spinnerIndex := 0
|
|
|
|
for attempt := 1; attempt <= retries; attempt++ {
|
|
// Perform all checks
|
|
ipfsResult := pm.IPFSHealthCheck(deadlineCtx, nodes)
|
|
rqliteResult := pm.RQLiteHealthCheck(deadlineCtx)
|
|
libp2pResult := pm.LibP2PHealthCheck(deadlineCtx)
|
|
|
|
// All checks must pass
|
|
if ipfsResult.Healthy && rqliteResult.Healthy && libp2pResult.Healthy {
|
|
fmt.Fprintf(pm.logWriter, "\r✓ Cluster health validated\n")
|
|
return true
|
|
}
|
|
|
|
// Show spinner progress
|
|
fmt.Fprintf(pm.logWriter, "\r%s Validating cluster health... (%d/%d)", spinnerFrames[spinnerIndex%len(spinnerFrames)], attempt, retries)
|
|
spinnerIndex++
|
|
|
|
if attempt < retries {
|
|
select {
|
|
case <-time.After(retryInterval):
|
|
continue
|
|
case <-deadlineCtx.Done():
|
|
fmt.Fprintf(pm.logWriter, "\r❌ Health check timeout reached\n")
|
|
return false
|
|
}
|
|
}
|
|
}
|
|
|
|
fmt.Fprintf(pm.logWriter, "\r❌ Health checks failed - services not ready\n")
|
|
return false
|
|
}
|
|
|
|
// logHealthCheckResult logs a single health check result
|
|
func (pm *ProcessManager) logHealthCheckResult(w io.Writer, indent string, result HealthCheckResult) {
|
|
status := "❌"
|
|
if result.Healthy {
|
|
status = "✓"
|
|
}
|
|
fmt.Fprintf(w, "%s%s %s: %s\n", indent, status, result.Name, result.Details)
|
|
}
|