ste87/patches
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

添加 NetworkService.php

Browse Source
This commit is contained in:
ste87 2026-03-13 21:20:29 +08:00
parent 4b8d511a98
commit f079ed5c0e
1 changed files with 260 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

260
NetworkService.php Normal file
View File

@ -0,0 +1,260 @@
<?php
namespace Convoy\Services\Servers;
use Convoy\Data\Server\Deployments\CloudinitAddressConfigData;
use Convoy\Data\Server\Eloquent\ServerAddressesData;
use Convoy\Data\Server\MacAddressData;
use Convoy\Enums\Network\AddressType;
use Convoy\Models\Address;
use Convoy\Models\Server;
use Convoy\Repositories\Eloquent\AddressRepository;
use Convoy\Repositories\Proxmox\Server\ProxmoxCloudinitRepository;
use Convoy\Repositories\Proxmox\Server\ProxmoxConfigRepository;
use Convoy\Repositories\Proxmox\Server\ProxmoxFirewallRepository;
use Illuminate\Support\Arr;
use function collect;
use function is_null;
class NetworkService
{
public function __construct(
private AddressRepository $repository,
private ProxmoxFirewallRepository $firewallRepository,
private CloudinitService $cloudinitService,
private ProxmoxCloudinitRepository $cloudinitRepository,
private ProxmoxConfigRepository $allocationRepository,
) {
}
public function deleteIpset(Server $server, string $name)
{
$this->firewallRepository->setServer($server);
$addresses = array_column($this->firewallRepository->getLockedIps($name), 'cidr');
foreach ($addresses as $address) {
$this->firewallRepository->unlockIp($name, $address);
}
return $this->firewallRepository->deleteIpset($name);
}
public function clearIpsets(Server $server): void
{
$this->firewallRepository->setServer($server);
$ipSets = array_column($this->firewallRepository->getIpsets(), 'name');
foreach ($ipSets as $ipSet) {
$this->deleteIpset($server, $ipSet);
}
}
public function lockIps(Server $server, array $addresses, string $ipsetName): void
{
$this->firewallRepository->setServer($server);
$this->firewallRepository->createIpset($ipsetName);
foreach ($addresses as $address) {
$this->firewallRepository->lockIp($ipsetName, $address);
}
}
public function getMacAddresses(Server $server, bool $eloquent = true, bool $proxmox = false): MacAddressData
{
if ($eloquent) {
$addresses = $this->getAddresses($server);
$eloquentMacAddress = $addresses->ipv4->first(
)?->mac_address ?? $addresses->ipv6->first()?->mac_address;
}
if ($proxmox) {
$config = $this->cloudinitRepository->setServer($server)->getConfig();
$proxmoxMacAddress = null;
if (preg_match(
"/\b[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}\b/su",
Arr::get($config, 'net0', ''),
$matches,
)) {
$proxmoxMacAddress = $matches[0];
}
}
return MacAddressData::from([
'eloquent' => $eloquentMacAddress ?? null,
'proxmox' => $proxmoxMacAddress ?? null,
]);
}
public function getAddresses(Server $server): ServerAddressesData
{
return ServerAddressesData::from([
'ipv4' => array_values(
$server->addresses->where('type', AddressType::IPV4->value)->toArray(),
),
'ipv6' => array_values(
$server->addresses->where('type', AddressType::IPV6->value)->toArray(),
),
]);
}
public function syncSettings(Server $server): void
{
$macAddresses = $this->getMacAddresses($server, true, true);
$addresses = $this->getAddresses($server);
$this->clearIpsets($server);
$this->cloudinitService->updateIpConfig($server, CloudinitAddressConfigData::from([
'ipv4' => $addresses->ipv4->first()?->toArray(),
'ipv6' => $addresses->ipv6->first()?->toArray(),
]));
$this->lockIps(
$server,
array_unique(Arr::flatten($server->addresses()->get(['address'])->toArray())),
'ipfilter-net0',
);
$this->firewallRepository->setServer($server)->updateOptions([
'enable' => true,
'ipfilter' => true,
'policy_in' => 'ACCEPT',
'policy_out' => 'ACCEPT',
]);
$macAddress = $macAddresses->eloquent ?? $macAddresses->proxmox;
$this->allocationRepository->setServer($server)->update(
['net0' => "virtio={$macAddress},bridge={$server->node->network},firewall=1"],
);
}
public function updateRateLimit(Server $server, ?int $mebibytes = null): void
{
$macAddresses = $this->getMacAddresses($server, true, true);
$macAddress = $macAddresses->eloquent ?? $macAddresses->proxmox;
$rawConfig = $this->allocationRepository->setServer($server)->getConfig();
$networkConfig = collect($rawConfig)->where('key', '=', 'net0')->first();
if (is_null($networkConfig)) {
return;
}
$parsedConfig = $this->parseConfig($networkConfig['value']);
// List of possible models
$models = ['e1000', 'e1000-82540em', 'e1000-82544gc', 'e1000-82545em', 'e1000e', 'i82551', 'i82557b', 'i82559er', 'ne2k_isa', 'ne2k_pci', 'pcnet', 'rtl8139', 'virtio', 'vmxnet3'];
// Update the model with the new MAC address
$modelFound = false;
foreach ($parsedConfig as $item) {
if (in_array($item->key, $models)) {
$item->value = $macAddress;
$modelFound = true;
break;
}
}
// If no model key exists, add the default model with the MAC address
if (!$modelFound) {
$parsedConfig[] = (object) ['key' => 'virtio', 'value' => $macAddress];
}
// Update or create the bridge value
$bridgeFound = false;
foreach ($parsedConfig as $item) {
if ($item->key === 'bridge') {
$item->value = $server->node->network;
$bridgeFound = true;
break;
}
}
if (!$bridgeFound) {
$parsedConfig[] = (object) ['key' => 'bridge', 'value' => $server->node->network];
}
// Update or create the firewall key
$firewallFound = false;
foreach ($parsedConfig as $item) {
if ($item->key === 'firewall') {
$item->value = 1;
$firewallFound = true;
break;
}
}
if (!$firewallFound) {
$parsedConfig[] = (object) ['key' => 'firewall', 'value' => 1];
}
// Handle the rate limit
if (is_null($mebibytes)) {
// Remove the 'rate' key if $mebibytes is null
$parsedConfig = array_filter($parsedConfig, fn ($item) => $item->key !== 'rate');
} else {
// Add or update the 'rate' key
$rateUpdated = false;
foreach ($parsedConfig as $item) {
if ($item->key === 'rate') {
$item->value = $mebibytes;
$rateUpdated = true;
break;
}
}
if (!$rateUpdated) {
$parsedConfig[] = (object) ['key' => 'rate', 'value' => $mebibytes];
}
}
// Rebuild the configuration string
$newConfig = implode(',', array_map(fn ($item) => "{$item->key}={$item->value}", $parsedConfig));
// Update the Proxmox configuration
$this->allocationRepository->setServer($server)->update(['net0' => $newConfig]);
}
private function parseConfig(string $config): array
{
// Split components by commas
$components = explode(',', $config);
// Array to hold the parsed objects
$parsedObjects = [];
foreach ($components as $component) {
// Split each component into key and value
[$key, $value] = explode('=', $component);
// Create an associative array (or object) for key-value pairs
$parsedObjects[] = (object) ['key' => $key, 'value' => $value];
}
return $parsedObjects;
}
public function updateAddresses(Server $server, array $addressIds): void
{
$currentAddresses = $server->addresses()->get()->pluck('id')->toArray();
$addressesToAdd = array_diff($addressIds, $currentAddresses);
$addressesToRemove = array_filter(
$currentAddresses,
fn ($id) => !in_array($id, $addressIds),
);
if (!empty($addressesToAdd)) {
$this->repository->attachAddresses($server, $addressesToAdd);
}
if (!empty($addressesToRemove)) {
Address::query()
->where('server_id', $server->id)
->whereIn('id', $addressesToRemove)
->update(['server_id' => null]);
}
}
}