sarman/tftsr-devops_investigation
1
1
Fork 0
Code Issues 4 Pull Requests Actions 34 Packages Projects 3 Releases 6 Wiki Activity
85b13d1b70
tftsr-devops_investigation/src-tauri/src/commands/metrics.rs

133 lines
4.3 KiB
Rust
Raw Normal View History

feat(metrics): add frontend metrics integration with Chart.js - Add metrics command bindings to tauriCommands - Install chart.js and react-chartjs-2 - Create MetricsChart component for visualization - Create useMetrics hook with 10-second refresh - Add CPU/Memory columns to PodList with live metrics - Metrics update automatically every 10 seconds
2026-06-09 22:05:24 +00:00
use crate::metrics::{NodeMetrics, PodMetrics};
use crate::state::AppState;
use tauri::State;
fix(security): address automated code review findings BLOCKER fixes: - Implement create_azuredevops_workitem instead of returning a stub error, reusing the existing create_work_item integration helper and writing an audit-log entry on success. - Log kill failures in PtySession::Drop so leaked child processes surface in tracing rather than being silently swallowed. - Add explicit PTY cleanup on every exit path of run_session_io (process exit, read error, write error, resize error, terminate command). - Treat PTY resize failures as fatal: emit terminal-error to the frontend and break the session loop instead of just warning. WARNING fixes: - Remove the dead extract_json_path_value helper from commands/kube.rs. - Wrap temp kubeconfig files in commands/metrics.rs in an RAII guard (TempKubeconfig) so they're removed on early-return / panic paths. - Wrap temp kubeconfig files in commands/shell.rs PTY-session starters in a disarmable RAII guard (KubeconfigGuard); if kubectl resolution fails we no longer leak the file. - Drop the `clear;` prefix from the kubectl-exec shell fallback so containers without `clear`/`tput` don't print a confusing error. SUGGESTION fixes: - Document why node CPU/memory percentages are 0.0 in metrics::client and link the gap to future work fetching node capacity. - Add a module-level doc comment to AppState describing the synchronization expectations (std vs tokio Mutex) for each public field, and warn against holding std::sync MutexGuards across .await. Verified: cargo fmt --check, cargo clippy -- -D warnings, and cargo test (377 passed, 6 ignored) all pass.
2026-06-09 23:08:58 +00:00
/// RAII guard that removes a temp kubeconfig file when dropped.
///
/// Using a Drop-based guard guarantees the sensitive kubeconfig is removed
/// even on panic or early `?` return — manual `remove_file` calls only run
/// on the happy path and were silently leaking the file on errors.
struct TempKubeconfig(std::path::PathBuf);
impl TempKubeconfig {
fn path(&self) -> &std::path::Path {
&self.0
}
}
impl Drop for TempKubeconfig {
fn drop(&mut self) {
if let Err(e) = std::fs::remove_file(&self.0) {
// Only log when the file actually existed; NotFound is expected on
// Windows when the path was never written.
if e.kind() != std::io::ErrorKind::NotFound {
tracing::warn!(
"Failed to remove temp kubeconfig {}: {}",
self.0.display(),
e
);
}
}
}
}
/// Write the kubeconfig content to a unique temp file with 0600 permissions
/// and return an RAII guard that cleans up on drop.
fn write_temp_kubeconfig(content: &str) -> Result<TempKubeconfig, String> {
let path =
std::env::temp_dir().join(format!("kubeconfig-metrics-{}.yaml", uuid::Uuid::now_v7()));
let guard = TempKubeconfig(path);
std::fs::write(guard.path(), content.as_bytes())
.map_err(|e| format!("Failed to write kubeconfig: {e}"))?;
// Ensure owner-only permissions (0600 on Unix)
#[cfg(unix)]
{
use std::os::unix::fs::PermissionsExt;
std::fs::set_permissions(guard.path(), std::fs::Permissions::from_mode(0o600))
.map_err(|e| format!("Failed to set kubeconfig permissions: {e}"))?;
}
Ok(guard)
}
feat(metrics): add frontend metrics integration with Chart.js - Add metrics command bindings to tauriCommands - Install chart.js and react-chartjs-2 - Create MetricsChart component for visualization - Create useMetrics hook with 10-second refresh - Add CPU/Memory columns to PodList with live metrics - Metrics update automatically every 10 seconds
2026-06-09 22:05:24 +00:00
/// Get pod metrics from kubectl top pods
#[tauri::command]
pub async fn get_pod_metrics(
cluster_id: String,
namespace: String,
state: State<'_, AppState>,
) -> Result<Vec<PodMetrics>, String> {
let clusters = state.clusters.lock().await;
let cluster = clusters
.get(&cluster_id)
.ok_or_else(|| "Cluster not found".to_string())?;
fix(security): address automated code review findings BLOCKER fixes: - Implement create_azuredevops_workitem instead of returning a stub error, reusing the existing create_work_item integration helper and writing an audit-log entry on success. - Log kill failures in PtySession::Drop so leaked child processes surface in tracing rather than being silently swallowed. - Add explicit PTY cleanup on every exit path of run_session_io (process exit, read error, write error, resize error, terminate command). - Treat PTY resize failures as fatal: emit terminal-error to the frontend and break the session loop instead of just warning. WARNING fixes: - Remove the dead extract_json_path_value helper from commands/kube.rs. - Wrap temp kubeconfig files in commands/metrics.rs in an RAII guard (TempKubeconfig) so they're removed on early-return / panic paths. - Wrap temp kubeconfig files in commands/shell.rs PTY-session starters in a disarmable RAII guard (KubeconfigGuard); if kubectl resolution fails we no longer leak the file. - Drop the `clear;` prefix from the kubectl-exec shell fallback so containers without `clear`/`tput` don't print a confusing error. SUGGESTION fixes: - Document why node CPU/memory percentages are 0.0 in metrics::client and link the gap to future work fetching node capacity. - Add a module-level doc comment to AppState describing the synchronization expectations (std vs tokio Mutex) for each public field, and warn against holding std::sync MutexGuards across .await. Verified: cargo fmt --check, cargo clippy -- -D warnings, and cargo test (377 passed, 6 ignored) all pass.
2026-06-09 23:08:58 +00:00
// Write temp kubeconfig (auto-removed on drop)
feat(metrics): add frontend metrics integration with Chart.js - Add metrics command bindings to tauriCommands - Install chart.js and react-chartjs-2 - Create MetricsChart component for visualization - Create useMetrics hook with 10-second refresh - Add CPU/Memory columns to PodList with live metrics - Metrics update automatically every 10 seconds
2026-06-09 22:05:24 +00:00
let kubeconfig_content = cluster.kubeconfig_content.as_ref();
fix(security): address automated code review findings BLOCKER fixes: - Implement create_azuredevops_workitem instead of returning a stub error, reusing the existing create_work_item integration helper and writing an audit-log entry on success. - Log kill failures in PtySession::Drop so leaked child processes surface in tracing rather than being silently swallowed. - Add explicit PTY cleanup on every exit path of run_session_io (process exit, read error, write error, resize error, terminate command). - Treat PTY resize failures as fatal: emit terminal-error to the frontend and break the session loop instead of just warning. WARNING fixes: - Remove the dead extract_json_path_value helper from commands/kube.rs. - Wrap temp kubeconfig files in commands/metrics.rs in an RAII guard (TempKubeconfig) so they're removed on early-return / panic paths. - Wrap temp kubeconfig files in commands/shell.rs PTY-session starters in a disarmable RAII guard (KubeconfigGuard); if kubectl resolution fails we no longer leak the file. - Drop the `clear;` prefix from the kubectl-exec shell fallback so containers without `clear`/`tput` don't print a confusing error. SUGGESTION fixes: - Document why node CPU/memory percentages are 0.0 in metrics::client and link the gap to future work fetching node capacity. - Add a module-level doc comment to AppState describing the synchronization expectations (std vs tokio Mutex) for each public field, and warn against holding std::sync MutexGuards across .await. Verified: cargo fmt --check, cargo clippy -- -D warnings, and cargo test (377 passed, 6 ignored) all pass.
2026-06-09 23:08:58 +00:00
let kubeconfig = write_temp_kubeconfig(kubeconfig_content)?;
feat(metrics): add frontend metrics integration with Chart.js - Add metrics command bindings to tauriCommands - Install chart.js and react-chartjs-2 - Create MetricsChart component for visualization - Create useMetrics hook with 10-second refresh - Add CPU/Memory columns to PodList with live metrics - Metrics update automatically every 10 seconds
2026-06-09 22:05:24 +00:00
// Run kubectl top pods with JSON output
let args = vec![
"top".to_string(),
"pods".to_string(),
"-n".to_string(),
namespace,
"--no-headers=false".to_string(),
"-o".to_string(),
"json".to_string(),
"--kubeconfig".to_string(),
fix(security): address automated code review findings BLOCKER fixes: - Implement create_azuredevops_workitem instead of returning a stub error, reusing the existing create_work_item integration helper and writing an audit-log entry on success. - Log kill failures in PtySession::Drop so leaked child processes surface in tracing rather than being silently swallowed. - Add explicit PTY cleanup on every exit path of run_session_io (process exit, read error, write error, resize error, terminate command). - Treat PTY resize failures as fatal: emit terminal-error to the frontend and break the session loop instead of just warning. WARNING fixes: - Remove the dead extract_json_path_value helper from commands/kube.rs. - Wrap temp kubeconfig files in commands/metrics.rs in an RAII guard (TempKubeconfig) so they're removed on early-return / panic paths. - Wrap temp kubeconfig files in commands/shell.rs PTY-session starters in a disarmable RAII guard (KubeconfigGuard); if kubectl resolution fails we no longer leak the file. - Drop the `clear;` prefix from the kubectl-exec shell fallback so containers without `clear`/`tput` don't print a confusing error. SUGGESTION fixes: - Document why node CPU/memory percentages are 0.0 in metrics::client and link the gap to future work fetching node capacity. - Add a module-level doc comment to AppState describing the synchronization expectations (std vs tokio Mutex) for each public field, and warn against holding std::sync MutexGuards across .await. Verified: cargo fmt --check, cargo clippy -- -D warnings, and cargo test (377 passed, 6 ignored) all pass.
2026-06-09 23:08:58 +00:00
kubeconfig.path().to_string_lossy().to_string(),
feat(metrics): add frontend metrics integration with Chart.js - Add metrics command bindings to tauriCommands - Install chart.js and react-chartjs-2 - Create MetricsChart component for visualization - Create useMetrics hook with 10-second refresh - Add CPU/Memory columns to PodList with live metrics - Metrics update automatically every 10 seconds
2026-06-09 22:05:24 +00:00
];
let output = crate::shell::kubectl::execute_kubectl(&args, None, None).await?;
if output.exit_code != 0 {
return Err(format!("kubectl top pods failed: {}", output.stderr));
}
let json_output = &output.stdout;
feat(metrics): implement kubectl top metrics backend - Add metrics module with CPU/memory parsing - Create get_pod_metrics and get_node_metrics commands - Parse kubectl top pods/nodes JSON output - Format CPU (nanocores) and memory (KB) to human-readable - Add unit tests for parsing functions - Register metrics commands in Tauri Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
2026-06-09 22:06:49 +00:00
crate::metrics::client::parse_pod_metrics(json_output)
feat(metrics): add frontend metrics integration with Chart.js - Add metrics command bindings to tauriCommands - Install chart.js and react-chartjs-2 - Create MetricsChart component for visualization - Create useMetrics hook with 10-second refresh - Add CPU/Memory columns to PodList with live metrics - Metrics update automatically every 10 seconds
2026-06-09 22:05:24 +00:00
.map_err(|e| format!("Failed to parse pod metrics: {e}"))
fix(security): address automated code review findings BLOCKER fixes: - Implement create_azuredevops_workitem instead of returning a stub error, reusing the existing create_work_item integration helper and writing an audit-log entry on success. - Log kill failures in PtySession::Drop so leaked child processes surface in tracing rather than being silently swallowed. - Add explicit PTY cleanup on every exit path of run_session_io (process exit, read error, write error, resize error, terminate command). - Treat PTY resize failures as fatal: emit terminal-error to the frontend and break the session loop instead of just warning. WARNING fixes: - Remove the dead extract_json_path_value helper from commands/kube.rs. - Wrap temp kubeconfig files in commands/metrics.rs in an RAII guard (TempKubeconfig) so they're removed on early-return / panic paths. - Wrap temp kubeconfig files in commands/shell.rs PTY-session starters in a disarmable RAII guard (KubeconfigGuard); if kubectl resolution fails we no longer leak the file. - Drop the `clear;` prefix from the kubectl-exec shell fallback so containers without `clear`/`tput` don't print a confusing error. SUGGESTION fixes: - Document why node CPU/memory percentages are 0.0 in metrics::client and link the gap to future work fetching node capacity. - Add a module-level doc comment to AppState describing the synchronization expectations (std vs tokio Mutex) for each public field, and warn against holding std::sync MutexGuards across .await. Verified: cargo fmt --check, cargo clippy -- -D warnings, and cargo test (377 passed, 6 ignored) all pass.
2026-06-09 23:08:58 +00:00
// kubeconfig dropped here, file removed
feat(metrics): add frontend metrics integration with Chart.js - Add metrics command bindings to tauriCommands - Install chart.js and react-chartjs-2 - Create MetricsChart component for visualization - Create useMetrics hook with 10-second refresh - Add CPU/Memory columns to PodList with live metrics - Metrics update automatically every 10 seconds
2026-06-09 22:05:24 +00:00
}
/// Get node metrics from kubectl top nodes
#[tauri::command]
pub async fn get_node_metrics(
cluster_id: String,
state: State<'_, AppState>,
) -> Result<Vec<NodeMetrics>, String> {
let clusters = state.clusters.lock().await;
let cluster = clusters
.get(&cluster_id)
.ok_or_else(|| "Cluster not found".to_string())?;
fix(security): address automated code review findings BLOCKER fixes: - Implement create_azuredevops_workitem instead of returning a stub error, reusing the existing create_work_item integration helper and writing an audit-log entry on success. - Log kill failures in PtySession::Drop so leaked child processes surface in tracing rather than being silently swallowed. - Add explicit PTY cleanup on every exit path of run_session_io (process exit, read error, write error, resize error, terminate command). - Treat PTY resize failures as fatal: emit terminal-error to the frontend and break the session loop instead of just warning. WARNING fixes: - Remove the dead extract_json_path_value helper from commands/kube.rs. - Wrap temp kubeconfig files in commands/metrics.rs in an RAII guard (TempKubeconfig) so they're removed on early-return / panic paths. - Wrap temp kubeconfig files in commands/shell.rs PTY-session starters in a disarmable RAII guard (KubeconfigGuard); if kubectl resolution fails we no longer leak the file. - Drop the `clear;` prefix from the kubectl-exec shell fallback so containers without `clear`/`tput` don't print a confusing error. SUGGESTION fixes: - Document why node CPU/memory percentages are 0.0 in metrics::client and link the gap to future work fetching node capacity. - Add a module-level doc comment to AppState describing the synchronization expectations (std vs tokio Mutex) for each public field, and warn against holding std::sync MutexGuards across .await. Verified: cargo fmt --check, cargo clippy -- -D warnings, and cargo test (377 passed, 6 ignored) all pass.
2026-06-09 23:08:58 +00:00
// Write temp kubeconfig (auto-removed on drop)
feat(metrics): add frontend metrics integration with Chart.js - Add metrics command bindings to tauriCommands - Install chart.js and react-chartjs-2 - Create MetricsChart component for visualization - Create useMetrics hook with 10-second refresh - Add CPU/Memory columns to PodList with live metrics - Metrics update automatically every 10 seconds
2026-06-09 22:05:24 +00:00
let kubeconfig_content = cluster.kubeconfig_content.as_ref();
fix(security): address automated code review findings BLOCKER fixes: - Implement create_azuredevops_workitem instead of returning a stub error, reusing the existing create_work_item integration helper and writing an audit-log entry on success. - Log kill failures in PtySession::Drop so leaked child processes surface in tracing rather than being silently swallowed. - Add explicit PTY cleanup on every exit path of run_session_io (process exit, read error, write error, resize error, terminate command). - Treat PTY resize failures as fatal: emit terminal-error to the frontend and break the session loop instead of just warning. WARNING fixes: - Remove the dead extract_json_path_value helper from commands/kube.rs. - Wrap temp kubeconfig files in commands/metrics.rs in an RAII guard (TempKubeconfig) so they're removed on early-return / panic paths. - Wrap temp kubeconfig files in commands/shell.rs PTY-session starters in a disarmable RAII guard (KubeconfigGuard); if kubectl resolution fails we no longer leak the file. - Drop the `clear;` prefix from the kubectl-exec shell fallback so containers without `clear`/`tput` don't print a confusing error. SUGGESTION fixes: - Document why node CPU/memory percentages are 0.0 in metrics::client and link the gap to future work fetching node capacity. - Add a module-level doc comment to AppState describing the synchronization expectations (std vs tokio Mutex) for each public field, and warn against holding std::sync MutexGuards across .await. Verified: cargo fmt --check, cargo clippy -- -D warnings, and cargo test (377 passed, 6 ignored) all pass.
2026-06-09 23:08:58 +00:00
let kubeconfig = write_temp_kubeconfig(kubeconfig_content)?;
feat(metrics): add frontend metrics integration with Chart.js - Add metrics command bindings to tauriCommands - Install chart.js and react-chartjs-2 - Create MetricsChart component for visualization - Create useMetrics hook with 10-second refresh - Add CPU/Memory columns to PodList with live metrics - Metrics update automatically every 10 seconds
2026-06-09 22:05:24 +00:00
// Run kubectl top nodes with JSON output
let args = vec![
"top".to_string(),
"nodes".to_string(),
"--no-headers=false".to_string(),
"-o".to_string(),
"json".to_string(),
"--kubeconfig".to_string(),
fix(security): address automated code review findings BLOCKER fixes: - Implement create_azuredevops_workitem instead of returning a stub error, reusing the existing create_work_item integration helper and writing an audit-log entry on success. - Log kill failures in PtySession::Drop so leaked child processes surface in tracing rather than being silently swallowed. - Add explicit PTY cleanup on every exit path of run_session_io (process exit, read error, write error, resize error, terminate command). - Treat PTY resize failures as fatal: emit terminal-error to the frontend and break the session loop instead of just warning. WARNING fixes: - Remove the dead extract_json_path_value helper from commands/kube.rs. - Wrap temp kubeconfig files in commands/metrics.rs in an RAII guard (TempKubeconfig) so they're removed on early-return / panic paths. - Wrap temp kubeconfig files in commands/shell.rs PTY-session starters in a disarmable RAII guard (KubeconfigGuard); if kubectl resolution fails we no longer leak the file. - Drop the `clear;` prefix from the kubectl-exec shell fallback so containers without `clear`/`tput` don't print a confusing error. SUGGESTION fixes: - Document why node CPU/memory percentages are 0.0 in metrics::client and link the gap to future work fetching node capacity. - Add a module-level doc comment to AppState describing the synchronization expectations (std vs tokio Mutex) for each public field, and warn against holding std::sync MutexGuards across .await. Verified: cargo fmt --check, cargo clippy -- -D warnings, and cargo test (377 passed, 6 ignored) all pass.
2026-06-09 23:08:58 +00:00
kubeconfig.path().to_string_lossy().to_string(),
feat(metrics): add frontend metrics integration with Chart.js - Add metrics command bindings to tauriCommands - Install chart.js and react-chartjs-2 - Create MetricsChart component for visualization - Create useMetrics hook with 10-second refresh - Add CPU/Memory columns to PodList with live metrics - Metrics update automatically every 10 seconds
2026-06-09 22:05:24 +00:00
];
let output = crate::shell::kubectl::execute_kubectl(&args, None, None).await?;
if output.exit_code != 0 {
return Err(format!("kubectl top nodes failed: {}", output.stderr));
}
let json_output = &output.stdout;
feat(metrics): implement kubectl top metrics backend - Add metrics module with CPU/memory parsing - Create get_pod_metrics and get_node_metrics commands - Parse kubectl top pods/nodes JSON output - Format CPU (nanocores) and memory (KB) to human-readable - Add unit tests for parsing functions - Register metrics commands in Tauri Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
2026-06-09 22:06:49 +00:00
crate::metrics::client::parse_node_metrics(json_output)
feat(metrics): add frontend metrics integration with Chart.js - Add metrics command bindings to tauriCommands - Install chart.js and react-chartjs-2 - Create MetricsChart component for visualization - Create useMetrics hook with 10-second refresh - Add CPU/Memory columns to PodList with live metrics - Metrics update automatically every 10 seconds
2026-06-09 22:05:24 +00:00
.map_err(|e| format!("Failed to parse node metrics: {e}"))
fix(security): address automated code review findings BLOCKER fixes: - Implement create_azuredevops_workitem instead of returning a stub error, reusing the existing create_work_item integration helper and writing an audit-log entry on success. - Log kill failures in PtySession::Drop so leaked child processes surface in tracing rather than being silently swallowed. - Add explicit PTY cleanup on every exit path of run_session_io (process exit, read error, write error, resize error, terminate command). - Treat PTY resize failures as fatal: emit terminal-error to the frontend and break the session loop instead of just warning. WARNING fixes: - Remove the dead extract_json_path_value helper from commands/kube.rs. - Wrap temp kubeconfig files in commands/metrics.rs in an RAII guard (TempKubeconfig) so they're removed on early-return / panic paths. - Wrap temp kubeconfig files in commands/shell.rs PTY-session starters in a disarmable RAII guard (KubeconfigGuard); if kubectl resolution fails we no longer leak the file. - Drop the `clear;` prefix from the kubectl-exec shell fallback so containers without `clear`/`tput` don't print a confusing error. SUGGESTION fixes: - Document why node CPU/memory percentages are 0.0 in metrics::client and link the gap to future work fetching node capacity. - Add a module-level doc comment to AppState describing the synchronization expectations (std vs tokio Mutex) for each public field, and warn against holding std::sync MutexGuards across .await. Verified: cargo fmt --check, cargo clippy -- -D warnings, and cargo test (377 passed, 6 ignored) all pass.
2026-06-09 23:08:58 +00:00
// kubeconfig dropped here, file removed
feat(metrics): add frontend metrics integration with Chart.js - Add metrics command bindings to tauriCommands - Install chart.js and react-chartjs-2 - Create MetricsChart component for visualization - Create useMetrics hook with 10-second refresh - Add CPU/Memory columns to PodList with live metrics - Metrics update automatically every 10 seconds
2026-06-09 22:05:24 +00:00
}
Reference in New Issue Copy Permalink