anti/DECNET
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
b3a96a045f29cd3bc8cf67a8d08e5477b7dca6ae
DECNET/decnet/web/db/models/tarpit.py
anti 5f4005c47a feat(tarpit): port-selective tc netem tarpit mode with live log events 
- GET/POST/DELETE /api/v1/deckies/{name}/tarpit (admin write, viewer GET)
- get_container_veth() + get_container_pid() in network.py via iflink/ip-link
- TarpitRule SQLModel table + TarpitMixin repo (upsert/get/delete/list)
- Background tarpit_watcher_worker: polls /proc/{pid}/net/tcp every 15s,
  emits tarpit_enter/tarpit_exit log events (edge-triggered, with duration)
- tarpit_enabled/tarpit_disabled logs on operator POST/DELETE actions
2026-04-29 18:49:42 -04:00

45 lines
1.2 KiB
Python
Raw Blame History

"""Tarpit rule table + HTTP request/response shapes."""
from datetime import datetime, timezone
from typing import Any
from pydantic import BaseModel, Field as PydanticField
from sqlmodel import Field, SQLModel
class TarpitRule(SQLModel, table=True):
"""One active tarpit rule — one per decky at a time.
``ports`` is JSON-encoded (e.g. ``"[22, 80]"``). One row per decky;
``set_tarpit_rule`` upserts on ``decky_name`` so re-enabling with
different parameters replaces the old rule.
"""
__tablename__ = "tarpit_rules"
id: str = Field(primary_key=True)
decky_name: str = Field(index=True, unique=True)
ports: str # JSON list[int]
delay_ms: int
created_at: datetime = Field(
default_factory=lambda: datetime.now(timezone.utc)
)
created_by: str # operator UUID from JWT
class TarpitEnableRequest(BaseModel):
ports: list[int] = PydanticField(..., min_length=1)
delay_ms: int = PydanticField(..., ge=100, le=300_000)
class TarpitRuleResponse(BaseModel):
id: str
decky_name: str
ports: list[int]
delay_ms: int
created_at: datetime
created_by: str
class TarpitStatusResponse(BaseModel):
rule: TarpitRuleResponse
active_connections: list[dict[str, Any]]
Reference in New Issue View Git Blame Copy Permalink