Add server account peer update functions and tests

2026-05-06 17:08:53 +00:00 · 2024-06-27 00:55:48 +03:00
parent 7a0dc10ccc
commit b4dddc8d0f
2 changed files with 326 additions and 0 deletions
--- a/management/server/hash.go
+++ b/management/server/hash.go
@@ -0,0 +1,81 @@
+package server
+
+import (
+	"github.com/mitchellh/hashstructure/v2"
+	log "github.com/sirupsen/logrus"
+)
+
+func updateAccountPeers(account *Account) {
+	//start := time.Now()
+	//defer func() {
+	//	duration := time.Since(start)
+	//	log.Printf("Finished execution of updateAccountPeers, took %v\n", duration)
+	//}()
+
+	peers := account.GetPeers()
+
+	approvedPeersMap := make(map[string]struct{}, len(peers))
+	for _, peer := range peers {
+		approvedPeersMap[peer.ID] = struct{}{}
+	}
+
+	for _, peer := range peers {
+		//if !am.peersUpdateManager.HasChannel(peer.ID) {
+		//	log.Tracef("peer %s doesn't have a channel, skipping network map update", peer.ID)
+		//	continue
+		//}
+
+		_ = account.GetPeerNetworkMap(peer.ID, "netbird.io", approvedPeersMap)
+
+		//remotePeerNetworkMap := account.GetPeerNetworkMap(peer.ID, am.dnsDomain, approvedPeersMap)
+		//postureChecks := am.getPeerPostureChecks(account, peer)
+		//update := toSyncResponse(nil, peer, nil, remotePeerNetworkMap, am.GetDNSDomain(), postureChecks)
+		//am.peersUpdateManager.SendUpdate(peer.ID, &UpdateMessage{Update: update})
+	}
+}
+
+func updateAccountPeersWithHash(account *Account) {
+	//start := time.Now()
+	var skipUpdate int
+	defer func() {
+		//duration := time.Since(start)
+		//log.Printf("Finished execution of updateAccountPeers, took %v\n", duration.Nanoseconds())
+		//log.Println("not updated peers: ", skipUpdate)
+	}()
+
+	peers := account.GetPeers()
+	approvedPeersMap := make(map[string]struct{}, len(peers))
+	for _, peer := range peers {
+		approvedPeersMap[peer.ID] = struct{}{}
+	}
+
+	for _, peer := range peers {
+		//if !am.peersUpdateManager.HasChannel(peer.ID) {
+		//	log.Tracef("peer %s doesn't have a channel, skipping network map update", peer.ID)
+		//	continue
+		//}
+
+		remotePeerNetworkMap := account.GetPeerNetworkMap(peer.ID, "netbird.io", approvedPeersMap)
+		//log.Println("firewall rules: ", len(remotePeerNetworkMap.FirewallRules))
+		hashStr, err := hashstructure.Hash(remotePeerNetworkMap, hashstructure.FormatV2, &hashstructure.HashOptions{
+			ZeroNil:         true,
+			IgnoreZeroValue: true,
+			SlicesAsSets:    true,
+			UseStringer:     true,
+		})
+		if err != nil {
+			log.Errorf("failed to generate network map hash: %v", err)
+		} else {
+			if peer.NetworkMapHash == hashStr {
+				//log.Debugf("not sending network map update to peer: %s as there is nothing new", peer.ID)
+				skipUpdate++
+				continue
+			}
+			peer.NetworkMapHash = hashStr
+		}
+
+		//postureChecks := am.getPeerPostureChecks(account, peer)
+		//update := toSyncResponse(nil, peer, nil, remotePeerNetworkMap, am.GetDNSDomain(), postureChecks)
+		//am.peersUpdateManager.SendUpdate(peer.ID, &UpdateMessage{Update: update})update
+	}
+}
--- a/management/server/hash_test.go
+++ b/management/server/hash_test.go
@@ -0,0 +1,245 @@
+package server
+
+import (
+	"fmt"
+	"net/netip"
+	"testing"
+	"time"
+
+	nbdns "github.com/netbirdio/netbird/dns"
+	nbgroup "github.com/netbirdio/netbird/management/server/group"
+	nbpeer "github.com/netbirdio/netbird/management/server/peer"
+	route2 "github.com/netbirdio/netbird/route"
+	log "github.com/sirupsen/logrus"
+)
+
+func initTestAccount(b *testing.B, numPerAccount int) *Account {
+	b.Helper()
+
+	account := newAccountWithId("account_id", "testuser", "")
+	groupALL, err := account.GetGroupAll()
+	if err != nil {
+		b.Fatal(err)
+	}
+	setupKey := GenerateDefaultSetupKey()
+	account.SetupKeys[setupKey.Key] = setupKey
+	for n := 0; n < numPerAccount; n++ {
+		netIP := randomIPv4()
+		peerID := fmt.Sprintf("%s-peer-%d", account.Id, n)
+
+		peer := &nbpeer.Peer{
+			ID:         peerID,
+			Key:        peerID,
+			SetupKey:   "",
+			IP:         netIP,
+			Name:       peerID,
+			DNSLabel:   peerID,
+			UserID:     userID,
+			Status:     &nbpeer.PeerStatus{Connected: false, LastSeen: time.Now()},
+			SSHEnabled: false,
+		}
+		account.Peers[peerID] = peer
+		group, _ := account.GetGroupAll()
+		group.Peers = append(group.Peers, peerID)
+		user := &User{
+			Id:        fmt.Sprintf("%s-user-%d", account.Id, n),
+			AccountID: account.Id,
+		}
+		account.Users[user.Id] = user
+		route := &route2.Route{
+			ID:          route2.ID(fmt.Sprintf("network-id-%d", n)),
+			Description: "base route",
+			NetID:       route2.NetID(fmt.Sprintf("network-id-%d", n)),
+			Network:     netip.MustParsePrefix(netIP.String() + "/24"),
+			NetworkType: route2.IPv4Network,
+			Metric:      9999,
+			Masquerade:  false,
+			Enabled:     true,
+			Groups:      []string{groupALL.ID},
+		}
+		account.Routes[route.ID] = route
+
+		group = &nbgroup.Group{
+			ID:        fmt.Sprintf("group-id-%d", n),
+			AccountID: account.Id,
+			Name:      fmt.Sprintf("group-id-%d", n),
+			Issued:    "api",
+			Peers:     nil,
+		}
+		account.Groups[group.ID] = group
+
+		nameserver := &nbdns.NameServerGroup{
+			ID:                   fmt.Sprintf("nameserver-id-%d", n),
+			AccountID:            account.Id,
+			Name:                 fmt.Sprintf("nameserver-id-%d", n),
+			Description:          "",
+			NameServers:          []nbdns.NameServer{{IP: netip.MustParseAddr(netIP.String()), NSType: nbdns.UDPNameServerType}},
+			Groups:               []string{group.ID},
+			Primary:              false,
+			Domains:              nil,
+			Enabled:              false,
+			SearchDomainsEnabled: false,
+		}
+		account.NameServerGroups[nameserver.ID] = nameserver
+
+		setupKey := GenerateDefaultSetupKey()
+		account.SetupKeys[setupKey.Key] = setupKey
+	}
+
+	group := &nbgroup.Group{
+		ID:        "randomID",
+		AccountID: account.Id,
+		Name:      "randomName",
+		Issued:    "api",
+		Peers:     groupALL.Peers[:numPerAccount-1],
+	}
+	account.Groups[group.ID] = group
+
+	account.Policies = []*Policy{
+		{
+			ID:          "RuleDefault",
+			Name:        "Default",
+			Description: "This is a default rule that allows connections between all the resources",
+			Enabled:     true,
+			Rules: []*PolicyRule{
+				{
+					ID:            "RuleDefault",
+					Name:          "Default",
+					Description:   "This is a default rule that allows connections between all the resources",
+					Bidirectional: true,
+					Enabled:       true,
+					Protocol:      PolicyRuleProtocolTCP,
+					Action:        PolicyTrafficActionAccept,
+					Sources: []string{
+						group.ID,
+					},
+					Destinations: []string{
+						group.ID,
+					},
+				},
+				{
+					ID:            "RuleDefault2",
+					Name:          "Default",
+					Description:   "This is a default rule that allows connections between all the resources",
+					Bidirectional: true,
+					Enabled:       true,
+					Protocol:      PolicyRuleProtocolUDP,
+					Action:        PolicyTrafficActionAccept,
+					Sources: []string{
+						groupALL.ID,
+					},
+					Destinations: []string{
+						groupALL.ID,
+					},
+				},
+			},
+		},
+	}
+	return account
+}
+
+// 1000 - 6717416375 ns/op
+// 500 -  1732888875 ns/op
+func BenchmarkTest_updateAccountPeers100(b *testing.B) {
+	account := initTestAccount(b, 100)
+	for i := 0; i < b.N; i++ {
+		updateAccountPeers(account)
+	}
+}
+
+// 1000 - 28943404000 ns/op
+// 500 -   7365024500 ns/op
+func BenchmarkTest_updateAccountPeersWithHash100(b *testing.B) {
+	account := initTestAccount(b, 100)
+	for i := 0; i < b.N; i++ {
+		log.Debug(i)
+		updateAccountPeersWithHash(account)
+	}
+}
+
+// 1000 - 6717416375 ns/op
+// 500 -  1732888875 ns/op
+func BenchmarkTest_updateAccountPeers200(b *testing.B) {
+	account := initTestAccount(b, 200)
+	for i := 0; i < b.N; i++ {
+		updateAccountPeers(account)
+	}
+}
+
+// 1000 - 28943404000 ns/op
+// 500 -   7365024500 ns/op
+func BenchmarkTest_updateAccountPeersWithHash200(b *testing.B) {
+	account := initTestAccount(b, 200)
+	for i := 0; i < b.N; i++ {
+		log.Debug(i)
+		updateAccountPeersWithHash(account)
+	}
+}
+
+func BenchmarkTest_updateAccountPeers500(b *testing.B) {
+	account := initTestAccount(b, 500)
+	for i := 0; i < b.N; i++ {
+		updateAccountPeers(account)
+	}
+}
+
+// 1000 - 28943404000 ns/op
+// 500 -   7365024500 ns/op
+func BenchmarkTest_updateAccountPeersWithHash500(b *testing.B) {
+	account := initTestAccount(b, 500)
+	for i := 0; i < b.N; i++ {
+		log.Debug(i)
+		updateAccountPeersWithHash(account)
+	}
+}
+
+func BenchmarkTest_updateAccountPeers1000(b *testing.B) {
+	account := initTestAccount(b, 1000)
+	for i := 0; i < b.N; i++ {
+		updateAccountPeers(account)
+	}
+}
+
+// 1000 - 28943404000 ns/op
+// 500 -   7365024500 ns/op
+func BenchmarkTest_updateAccountPeersWithHash1000(b *testing.B) {
+	account := initTestAccount(b, 1000)
+	for i := 0; i < b.N; i++ {
+		log.Debug(i)
+		updateAccountPeersWithHash(account)
+	}
+}
+
+func BenchmarkTest_updateAccountPeers1500(b *testing.B) {
+	account := initTestAccount(b, 1500)
+	for i := 0; i < b.N; i++ {
+		updateAccountPeers(account)
+	}
+}
+
+// 1000 - 28943404000 ns/op
+// 500 -   7365024500 ns/op
+func BenchmarkTest_updateAccountPeersWithHash1500(b *testing.B) {
+	account := initTestAccount(b, 1500)
+	for i := 0; i < b.N; i++ {
+		log.Debug(i)
+		updateAccountPeersWithHash(account)
+	}
+}
+
+func BenchmarkTest_updateAccountPeers2000(b *testing.B) {
+	account := initTestAccount(b, 2000)
+	for i := 0; i < b.N; i++ {
+		updateAccountPeers(account)
+	}
+}
+
+// 1000 - 28943404000 ns/op
+// 500 -   7365024500 ns/op
+func BenchmarkTest_updateAccountPeersWithHash2000(b *testing.B) {
+	account := initTestAccount(b, 2000)
+	for i := 0; i < b.N; i++ {
+		log.Debug(i)
+		updateAccountPeersWithHash(account)
+	}
+}