in_windows_expoeter_metrics: Support connection_state metrics in tcp metrics

Signed-off-by: Hiroshi Hatake <[email protected]>

Author: cosmo0920

plugins/in_windows_exporter_metrics/CMakeLists.txt

@@ -25,6 +25,7 @@ set(src
 set(libs
   wbemuuid
   netapi32
+  iphlpapi
 )
 
 FLB_PLUGIN(in_windows_exporter_metrics "${src}" "${libs}")

plugins/in_windows_exporter_metrics/we.h

@@ -236,6 +236,7 @@ struct we_wmi_tcp_counters {
     struct wmi_query_spec       *v4_info;
     struct wmi_query_spec       *v6_info;
 
+    struct cmt_gauge            *connections_state;
     struct cmt_counter          *connection_failures;
     struct cmt_gauge            *connections_active;
     struct cmt_counter          *connections_established;

plugins/in_windows_exporter_metrics/we_wmi_tcp.c

@@ -29,6 +29,97 @@
 #include "we_util.h"
 #include "we_metric.h"
 
+#include <iphlpapi.h>
+
+const char* TCP_STATE_STRINGS[] = {
+    "ESTABLISHED", "SYN_SENT", "SYN_RECV", "FIN_WAIT1", "FIN_WAIT2", "TIME_WAIT",
+    "CLOSE", "CLOSE_WAIT", "LAST_ACK", "LISTEN", "CLOSING", "DELETE_TCB", "UNKNOWN"
+};
+
+static inline int windows_state_to_index(int state)
+{
+    switch(state) {
+        case MIB_TCP_STATE_ESTAB:
+            return 0;
+        case MIB_TCP_STATE_SYN_SENT:
+            return 1;
+        case MIB_TCP_STATE_SYN_RCVD:
+            return 2;
+        case MIB_TCP_STATE_FIN_WAIT1:
+            return 3;
+        case MIB_TCP_STATE_FIN_WAIT2:
+            return 4;
+        case MIB_TCP_STATE_TIME_WAIT:
+            return 5;
+        /* MIB_TCP_STATE_CLOSED is 1 */
+        case MIB_TCP_STATE_CLOSE_WAIT:
+            return 7;
+        case MIB_TCP_STATE_LAST_ACK:
+            return 8;
+        case MIB_TCP_STATE_LISTEN:
+            return 9;
+        case MIB_TCP_STATE_CLOSING:
+            return 10;
+        case MIB_TCP_STATE_DELETE_TCB:
+            return 11;
+        default:                      
+            return 12;
+    }
+}
+
+static int we_tcp_get_state_metrics(struct flb_we *ctx, const char *af_label)
+{
+    PMIB_TCPTABLE2 tcp_table = NULL;
+    ULONG buffer_size = 0;
+    DWORD result;
+    DWORD idx = 0;
+    int state_index;
+    int i = 0;
+    const char *state_label;
+    uint64_t timestamp = cfl_time_now();
+    int af_family = (strcmp(af_label, "ipv4") == 0) ? AF_INET : AF_INET6;
+    unsigned int state_counts[13] = {0};
+    const char *labels[2];
+
+    result = GetExtendedTcpTable(NULL, &buffer_size, FALSE, af_family, TCP_TABLE_OWNER_PID_ALL, 0);
+    if (result != ERROR_INSUFFICIENT_BUFFER) {
+        flb_plg_error(ctx->ins, "TCP state metrics: error getting buffer size: %lu", result);
+        return -1;
+    }
+
+    tcp_table = (PMIB_TCPTABLE2)flb_malloc(buffer_size);
+    if (tcp_table == NULL) {
+        flb_plg_error(ctx->ins, "TCP state metrics: could not allocate buffer");
+        return -1;
+    }
+
+    result = GetExtendedTcpTable(tcp_table, &buffer_size, FALSE, af_family, TCP_TABLE_OWNER_PID_ALL, 0);
+    if (result != NO_ERROR) {
+        flb_plg_error(ctx->ins, "TCP state metrics: error getting table: %lu", result);
+        flb_free(tcp_table);
+        return -1;
+    }
+
+    for (idx = 0; idx < tcp_table->dwNumEntries; idx++) {
+        state_index = windows_state_to_index(tcp_table->table[idx].dwState);
+        state_counts[state_index]++;
+    }
+
+    flb_free(tcp_table);
+
+    for (i = 0; i < 13; i++) {
+        if (state_counts[i] > 0) {
+            state_label = TCP_STATE_STRINGS[i];
+            labels[0] = af_label;
+            labels[1] = state_label;
+            cmt_gauge_set(ctx->wmi_tcp->connections_state, timestamp,
+                          (double)state_counts[i], 2, (char **)labels);
+        }
+    }
+
+    return 0;
+}
+
 int we_wmi_tcp_init(struct flb_we *ctx)
 {
     ctx->wmi_tcp = flb_calloc(1, sizeof(struct we_wmi_tcp_counters));
@@ -40,12 +131,22 @@ int we_wmi_tcp_init(struct flb_we *ctx)
 
     struct cmt_gauge *g;
     struct cmt_counter *c;
-    char *label = "af";
+    char *wmi_label[] = {"af"};
+    char *state_labels[] = {"af", "state"};
+
+    g = cmt_gauge_create(ctx->cmt, "windows", "tcp",
+                         "connections_state",
+                         "Number of connections in a given state.",
+                         2, state_labels);
+    if (!g) {
+        return -1;
+    }
+    ctx->wmi_tcp->connections_state = g;
 
     c = cmt_counter_create(ctx->cmt, "windows", "tcp", 
                            "connection_failures_total",
                            "Total number of connection failures.",
-                           1, &label);
+                           1, wmi_label);
     if (!c) { 
         return -1; 
     }
@@ -54,7 +155,7 @@ int we_wmi_tcp_init(struct flb_we *ctx)
     g = cmt_gauge_create(ctx->cmt, "windows", "tcp", 
                          "connections_active",
                          "Number of active TCP connections.",
-                         1, &label);
+                         1, wmi_label);
     if (!g) { 
         return -1; 
     }
@@ -63,7 +164,7 @@ int we_wmi_tcp_init(struct flb_we *ctx)
     c = cmt_counter_create(ctx->cmt, "windows", "tcp", 
                            "connections_established_total",
                            "Total number of TCP connections established.",
-                           1, &label);
+                           1, wmi_label);
     if (!c) { 
         return -1; 
     }
@@ -72,7 +173,7 @@ int we_wmi_tcp_init(struct flb_we *ctx)
     c = cmt_counter_create(ctx->cmt, "windows", "tcp",
                            "connections_passive_total",
                            "Total number of passive TCP connections.",
-                           1, &label);
+                           1, wmi_label);
     if (!c) { 
         return -1; 
     }
@@ -81,7 +182,7 @@ int we_wmi_tcp_init(struct flb_we *ctx)
     c = cmt_counter_create(ctx->cmt, "windows", "tcp",
                            "connections_reset_total",
                            "Total number of reset TCP connections.",
-                           1, &label);
+                           1, wmi_label);
     if (!c) { 
         return -1; 
     }
@@ -90,7 +191,7 @@ int we_wmi_tcp_init(struct flb_we *ctx)
     g = cmt_gauge_create(ctx->cmt, "windows", "tcp",
                          "segments_total",
                          "Total TCP segments sent or received per second.",
-                         1, &label);
+                         1, wmi_label);
     if (!g) { 
         return -1; 
     }
@@ -99,7 +200,7 @@ int we_wmi_tcp_init(struct flb_we *ctx)
     g = cmt_gauge_create(ctx->cmt, "windows", "tcp",
                          "segments_total",
                          "TCP segments received per second.",
-                         1, &label);
+                         1, wmi_label);
     if (!g) { 
         return -1; 
     }
@@ -108,7 +209,7 @@ int we_wmi_tcp_init(struct flb_we *ctx)
     g = cmt_gauge_create(ctx->cmt, "windows", "tcp",
                          "segments_retransmitted_total",
                          "TCP segments retransmitted per second.",
-                         1, &label);
+                         1, wmi_label);
     if (!g) { 
         return -1; 
     }
@@ -117,7 +218,7 @@ int we_wmi_tcp_init(struct flb_we *ctx)
     g = cmt_gauge_create(ctx->cmt, "windows", "tcp",
                          "segments_sent_total",
                          "TCP segments sent per second.",
-                         1, &label);
+                         1, wmi_label);
     if (!g) { 
         return -1; 
     }
@@ -175,6 +276,10 @@ int we_wmi_tcp_update(struct flb_we *ctx)
         return -1;
     }
 
+    /* Collect the new state-based metrics first. This does not require WMI coinitialization. */
+    we_tcp_get_state_metrics(ctx, ipv4_label);
+    we_tcp_get_state_metrics(ctx, ipv6_label);
+
     if (FAILED(we_wmi_coinitialize(ctx))) {
         return -1;
     }