anti/DECNET
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
5f4005c47aa3f9d3003c3a9d7e16eb75ea37e8ff
DECNET/decnet/web/db/sqlmodel_repo/tarpit.py
anti 5f4005c47a feat(tarpit): port-selective tc netem tarpit mode with live log events 
- GET/POST/DELETE /api/v1/deckies/{name}/tarpit (admin write, viewer GET)
- get_container_veth() + get_container_pid() in network.py via iflink/ip-link
- TarpitRule SQLModel table + TarpitMixin repo (upsert/get/delete/list)
- Background tarpit_watcher_worker: polls /proc/{pid}/net/tcp every 15s,
  emits tarpit_enter/tarpit_exit log events (edge-triggered, with duration)
- tarpit_enabled/tarpit_disabled logs on operator POST/DELETE actions
2026-04-29 18:49:42 -04:00

71 lines
2.4 KiB
Python
Raw Blame History

"""Tarpit rule CRUD."""
from __future__ import annotations
import json
import uuid
from datetime import datetime, timezone
from typing import Any, Optional
from sqlalchemy import select
from decnet.web.db.models import TarpitRule
class TarpitMixin:
"""Mixin: composed onto ``SQLModelRepository``."""
async def set_tarpit_rule(self, data: dict[str, Any]) -> None:
"""Upsert a tarpit rule keyed on ``decky_name`` (one rule per decky)."""
async with self._session() as session:
result = await session.execute(
select(TarpitRule).where(TarpitRule.decky_name == data["decky_name"])
)
existing = result.scalar_one_or_none()
if existing:
for k, v in data.items():
setattr(existing, k, v)
session.add(existing)
else:
payload = {
"id": str(uuid.uuid4()),
"created_at": datetime.now(timezone.utc),
**data,
}
session.add(TarpitRule(**payload))
await session.commit()
async def get_tarpit_rule(self, decky_name: str) -> Optional[dict[str, Any]]:
async with self._session() as session:
result = await session.execute(
select(TarpitRule).where(TarpitRule.decky_name == decky_name)
)
row = result.scalar_one_or_none()
if row is None:
return None
d = row.model_dump(mode="json")
d["ports"] = json.loads(d["ports"])
return d
async def delete_tarpit_rule(self, decky_name: str) -> bool:
async with self._session() as session:
result = await session.execute(
select(TarpitRule).where(TarpitRule.decky_name == decky_name)
)
row = result.scalar_one_or_none()
if row is None:
return False
await session.delete(row)
await session.commit()
return True
async def list_tarpit_rules(self) -> list[dict[str, Any]]:
async with self._session() as session:
result = await session.execute(select(TarpitRule))
rows = result.scalars().all()
out = []
for row in rows:
d = row.model_dump(mode="json")
d["ports"] = json.loads(d["ports"])
out.append(d)
return out
Reference in New Issue View Git Blame Copy Permalink