src/proc_net_stat_conntrack.c

   1 #include <inttypes.h>
   2 #include <stdio.h>
   3 #include <stdlib.h>
   4 #include <string.h>
   5
   6 #include "log.h"
   7 #include "config.h"
   8 #include "procfile.h"
   9 #include "rrd.h"
  10 #include "plugin_proc.h"
  11
  12 #define RRD_TYPE_NET_STAT_CONNTRACK     "netfilter"
  13 #define RRD_TYPE_NET_STAT_CONNTRACK_LEN strlen(RRD_TYPE_NET_STAT_CONNTRACK)
  14
  15 int do_proc_net_stat_conntrack(int update_every, unsigned long long dt) {
  16         static procfile *ff = NULL;
  17         static int do_sockets = -1, do_new = -1, do_changes = -1, do_expect = -1, do_search = -1, do_errors = -1;
  18
  19         if(do_sockets == -1)    do_sockets = config_get_boolean("plugin:proc:/proc/net/stat/nf_conntrack", "netfilter connections", 1);
  20         if(do_new == -1)                do_new = config_get_boolean("plugin:proc:/proc/net/stat/nf_conntrack", "netfilter new connections", 1);
  21         if(do_changes == -1)    do_changes = config_get_boolean("plugin:proc:/proc/net/stat/nf_conntrack", "netfilter connection changes", 1);
  22         if(do_expect == -1)             do_expect = config_get_boolean("plugin:proc:/proc/net/stat/nf_conntrack", "netfilter connection expectations", 1);
  23         if(do_search == -1)             do_search = config_get_boolean("plugin:proc:/proc/net/stat/nf_conntrack", "netfilter connection searches", 1);
  24         if(do_errors == -1)             do_errors = config_get_boolean("plugin:proc:/proc/net/stat/nf_conntrack", "netfilter errors", 1);
  25
  26         if(dt) {};
  27
  28         if(!ff) ff = procfile_open("/proc/net/stat/nf_conntrack", " \t:", PROCFILE_FLAG_DEFAULT);
  29         if(!ff) return 1;
  30
  31         ff = procfile_readall(ff);
  32         if(!ff) return 0; // we return 0, so that we will retry to open it next time
  33
  34         uint32_t lines = procfile_lines(ff), l;
  35         uint32_t words;
  36
  37         unsigned long long aentries = 0, asearched = 0, afound = 0, anew = 0, ainvalid = 0, aignore = 0, adelete = 0, adelete_list = 0,
  38                 ainsert = 0, ainsert_failed = 0, adrop = 0, aearly_drop = 0, aicmp_error = 0, aexpect_new = 0, aexpect_create = 0, aexpect_delete = 0, asearch_restart = 0;
  39
  40         for(l = 1; l < lines ;l++) {
  41                 words = procfile_linewords(ff, l);
  42                 if(words < 17) {
  43                         if(words) error("Cannot read /proc/net/stat/nf_conntrack line. Expected 17 params, read %d.", words);
  44                         continue;
  45                 }
  46
  47                 unsigned long long tentries = 0, tsearched = 0, tfound = 0, tnew = 0, tinvalid = 0, tignore = 0, tdelete = 0, tdelete_list = 0, tinsert = 0, tinsert_failed = 0, tdrop = 0, tearly_drop = 0, ticmp_error = 0, texpect_new = 0, texpect_create = 0, texpect_delete = 0, tsearch_restart = 0;
  48
  49                 tentries                = strtoull(procfile_lineword(ff, l, 0), NULL, 16);
  50                 tsearched               = strtoull(procfile_lineword(ff, l, 1), NULL, 16);
  51                 tfound                  = strtoull(procfile_lineword(ff, l, 2), NULL, 16);
  52                 tnew                    = strtoull(procfile_lineword(ff, l, 3), NULL, 16);
  53                 tinvalid                = strtoull(procfile_lineword(ff, l, 4), NULL, 16);
  54                 tignore                 = strtoull(procfile_lineword(ff, l, 5), NULL, 16);
  55                 tdelete                 = strtoull(procfile_lineword(ff, l, 6), NULL, 16);
  56                 tdelete_list    = strtoull(procfile_lineword(ff, l, 7), NULL, 16);
  57                 tinsert                 = strtoull(procfile_lineword(ff, l, 8), NULL, 16);
  58                 tinsert_failed  = strtoull(procfile_lineword(ff, l, 9), NULL, 16);
  59                 tdrop                   = strtoull(procfile_lineword(ff, l, 10), NULL, 16);
  60                 tearly_drop             = strtoull(procfile_lineword(ff, l, 11), NULL, 16);
  61                 ticmp_error             = strtoull(procfile_lineword(ff, l, 12), NULL, 16);
  62                 texpect_new             = strtoull(procfile_lineword(ff, l, 13), NULL, 16);
  63                 texpect_create  = strtoull(procfile_lineword(ff, l, 14), NULL, 16);
  64                 texpect_delete  = strtoull(procfile_lineword(ff, l, 15), NULL, 16);
  65                 tsearch_restart = strtoull(procfile_lineword(ff, l, 16), NULL, 16);
  66
  67                 if(!aentries) aentries =  tentries;
  68
  69                 // sum all the cpus together
  70                 asearched                       += tsearched;           // conntrack.search
  71                 afound                          += tfound;                      // conntrack.search
  72                 anew                            += tnew;                        // conntrack.new
  73                 ainvalid                        += tinvalid;            // conntrack.new
  74                 aignore                         += tignore;                     // conntrack.new
  75                 adelete                         += tdelete;                     // conntrack.changes
  76                 adelete_list            += tdelete_list;        // conntrack.changes
  77                 ainsert                         += tinsert;                     // conntrack.changes
  78                 ainsert_failed          += tinsert_failed;      // conntrack.errors
  79                 adrop                           += tdrop;                       // conntrack.errors
  80                 aearly_drop             += tearly_drop;         // conntrack.errors
  81                 aicmp_error             += ticmp_error;         // conntrack.errors
  82                 aexpect_new             += texpect_new;         // conntrack.expect
  83                 aexpect_create          += texpect_create;      // conntrack.expect
  84                 aexpect_delete          += texpect_delete;      // conntrack.expect
  85                 asearch_restart         += tsearch_restart;     // conntrack.search
  86         }
  87
  88         RRDSET *st;
  89
  90         // --------------------------------------------------------------------
  91
  92         if(do_sockets) {
  93                 st = rrdset_find(RRD_TYPE_NET_STAT_CONNTRACK ".sockets");
  94                 if(!st) {
  95                         st = rrdset_create(RRD_TYPE_NET_STAT_CONNTRACK, "sockets", NULL, RRD_TYPE_NET_STAT_CONNTRACK, "Netfilter Connections", "active connections", 1000, update_every, RRDSET_TYPE_LINE);
  96
  97                         rrddim_add(st, "connections", NULL, 1, 1, RRDDIM_ABSOLUTE);
  98                 }
  99                 else rrdset_next(st);
 100
 101                 rrddim_set(st, "connections", aentries);
 102                 rrdset_done(st);
 103         }
 104
 105         // --------------------------------------------------------------------
 106
 107         if(do_new) {
 108                 st = rrdset_find(RRD_TYPE_NET_STAT_CONNTRACK ".new");
 109                 if(!st) {
 110                         st = rrdset_create(RRD_TYPE_NET_STAT_CONNTRACK, "new", NULL, RRD_TYPE_NET_STAT_CONNTRACK, "Netfilter New Connections", "connections/s", 1001, update_every, RRDSET_TYPE_LINE);
 111
 112                         rrddim_add(st, "new", NULL, 1, 1 * update_every, RRDDIM_INCREMENTAL);
 113                         rrddim_add(st, "ignore", NULL, -1, 1 * update_every, RRDDIM_INCREMENTAL);
 114                         rrddim_add(st, "invalid", NULL, -1, 1 * update_every, RRDDIM_INCREMENTAL);
 115                 }
 116                 else rrdset_next(st);
 117
 118                 rrddim_set(st, "new", anew);
 119                 rrddim_set(st, "ignore", aignore);
 120                 rrddim_set(st, "invalid", ainvalid);
 121                 rrdset_done(st);
 122         }
 123
 124         // --------------------------------------------------------------------
 125
 126         if(do_changes) {
 127                 st = rrdset_find(RRD_TYPE_NET_STAT_CONNTRACK ".changes");
 128                 if(!st) {
 129                         st = rrdset_create(RRD_TYPE_NET_STAT_CONNTRACK, "changes", NULL, RRD_TYPE_NET_STAT_CONNTRACK, "Netfilter Connection Changes", "changes/s", 1002, update_every, RRDSET_TYPE_LINE);
 130                         st->isdetail = 1;
 131
 132                         rrddim_add(st, "inserted", NULL, 1, 1 * update_every, RRDDIM_INCREMENTAL);
 133                         rrddim_add(st, "deleted", NULL, -1, 1 * update_every, RRDDIM_INCREMENTAL);
 134                         rrddim_add(st, "delete_list", NULL, -1, 1 * update_every, RRDDIM_INCREMENTAL);
 135                 }
 136                 else rrdset_next(st);
 137
 138                 rrddim_set(st, "inserted", ainsert);
 139                 rrddim_set(st, "deleted", adelete);
 140                 rrddim_set(st, "delete_list", adelete_list);
 141                 rrdset_done(st);
 142         }
 143
 144         // --------------------------------------------------------------------
 145
 146         if(do_expect) {
 147                 st = rrdset_find(RRD_TYPE_NET_STAT_CONNTRACK ".expect");
 148                 if(!st) {
 149                         st = rrdset_create(RRD_TYPE_NET_STAT_CONNTRACK, "expect", NULL, RRD_TYPE_NET_STAT_CONNTRACK, "Netfilter Connection Expectations", "expectations/s", 1003, update_every, RRDSET_TYPE_LINE);
 150                         st->isdetail = 1;
 151
 152                         rrddim_add(st, "created", NULL, 1, 1 * update_every, RRDDIM_INCREMENTAL);
 153                         rrddim_add(st, "deleted", NULL, -1, 1 * update_every, RRDDIM_INCREMENTAL);
 154                         rrddim_add(st, "new", NULL, 1, 1 * update_every, RRDDIM_INCREMENTAL);
 155                 }
 156                 else rrdset_next(st);
 157
 158                 rrddim_set(st, "created", aexpect_create);
 159                 rrddim_set(st, "deleted", aexpect_delete);
 160                 rrddim_set(st, "new", aexpect_new);
 161                 rrdset_done(st);
 162         }
 163
 164         // --------------------------------------------------------------------
 165
 166         if(do_search) {
 167                 st = rrdset_find(RRD_TYPE_NET_STAT_CONNTRACK ".search");
 168                 if(!st) {
 169                         st = rrdset_create(RRD_TYPE_NET_STAT_CONNTRACK, "search", NULL, RRD_TYPE_NET_STAT_CONNTRACK, "Netfilter Connection Searches", "searches/s", 1010, update_every, RRDSET_TYPE_LINE);
 170                         st->isdetail = 1;
 171
 172                         rrddim_add(st, "searched", NULL, 1, 1 * update_every, RRDDIM_INCREMENTAL);
 173                         rrddim_add(st, "restarted", NULL, -1, 1 * update_every, RRDDIM_INCREMENTAL);
 174                         rrddim_add(st, "found", NULL, 1, 1 * update_every, RRDDIM_INCREMENTAL);
 175                 }
 176                 else rrdset_next(st);
 177
 178                 rrddim_set(st, "searched", asearched);
 179                 rrddim_set(st, "restarted", asearch_restart);
 180                 rrddim_set(st, "found", afound);
 181                 rrdset_done(st);
 182         }
 183
 184         // --------------------------------------------------------------------
 185
 186         if(do_errors) {
 187                 st = rrdset_find(RRD_TYPE_NET_STAT_CONNTRACK ".errors");
 188                 if(!st) {
 189                         st = rrdset_create(RRD_TYPE_NET_STAT_CONNTRACK, "errors", NULL, RRD_TYPE_NET_STAT_CONNTRACK, "Netfilter Errors", "events/s", 1005, update_every, RRDSET_TYPE_LINE);
 190                         st->isdetail = 1;
 191
 192                         rrddim_add(st, "icmp_error", NULL, 1, 1 * update_every, RRDDIM_INCREMENTAL);
 193                         rrddim_add(st, "insert_failed", NULL, -1, 1 * update_every, RRDDIM_INCREMENTAL);
 194                         rrddim_add(st, "drop", NULL, -1, 1 * update_every, RRDDIM_INCREMENTAL);
 195                         rrddim_add(st, "early_drop", NULL, -1, 1 * update_every, RRDDIM_INCREMENTAL);
 196                 }
 197                 else rrdset_next(st);
 198
 199                 rrddim_set(st, "icmp_error", aicmp_error);
 200                 rrddim_set(st, "insert_failed", ainsert_failed);
 201                 rrddim_set(st, "drop", adrop);
 202                 rrddim_set(st, "early_drop", aearly_drop);
 203                 rrdset_done(st);
 204         }
 205
 206         return 0;
 207 }