snmp.go

package tendrils

import (
	"context"
	"fmt"
	"log"
	"net"
	"regexp"
	"strings"
	"time"

	"github.com/gosnmp/gosnmp"
)

var (
	addToParentRules = []*regexp.Regexp{
		regexp.MustCompile(`CPU Interface`),
	}

	portNameRewrites = []struct {
		regex       *regexp.Regexp
		replacement string
	}{
		{regexp.MustCompile(`Slot: (\d+) Port: (\d+) .+`), "$1/$2"},
	}
)

type snmpConfig struct {
	username  string
	authKey   string
	privKey   string
	authProto gosnmp.SnmpV3AuthProtocol
	privProto gosnmp.SnmpV3PrivProtocol
	secLevel  gosnmp.SnmpV3MsgFlags
	timeout   time.Duration
	retries   int
}

func defaultSNMPConfig() *snmpConfig {
	return &snmpConfig{
		username:  "tendrils",
		authKey:   "tendrils",
		privKey:   "tendrils",
		authProto: gosnmp.SHA512,
		privProto: gosnmp.AES,
		secLevel:  gosnmp.AuthPriv,
		timeout:   5 * time.Second,
		retries:   1,
	}
}

func (t *Tendrils) connectSNMP(ip net.IP) (*gosnmp.GoSNMP, error) {
	cfg := defaultSNMPConfig()

	snmp := &gosnmp.GoSNMP{
		Target:        ip.String(),
		Port:          161,
		Version:       gosnmp.Version3,
		Timeout:       cfg.timeout,
		Retries:       cfg.retries,
		SecurityModel: gosnmp.UserSecurityModel,
		MsgFlags:      cfg.secLevel,
		SecurityParameters: &gosnmp.UsmSecurityParameters{
			UserName:                 cfg.username,
			AuthenticationProtocol:   cfg.authProto,
			AuthenticationPassphrase: cfg.authKey,
			PrivacyProtocol:          cfg.privProto,
			PrivacyPassphrase:        cfg.privKey,
		},
	}

	err := snmp.Connect()
	if err != nil {
		return nil, err
	}

	return snmp, nil
}

func (t *Tendrils) pollSNMP(ctx context.Context) {
	ticker := time.NewTicker(10 * time.Second)
	defer ticker.Stop()

	t.querySwitches()

	for {
		select {
		case <-ctx.Done():
			return
		case <-ticker.C:
			t.querySwitches()
		}
	}
}

func (t *Tendrils) querySwitches() {
	nodes := t.nodes.All()

	for _, node := range nodes {
		for _, ip := range node.IPs {
			if ip.To4() == nil {
				continue
			}

			go t.querySNMPDevice(ip)
		}
	}
}

func (t *Tendrils) querySNMPDevice(ip net.IP) {
	snmp, err := t.connectSNMP(ip)
	if err != nil {
		if t.DebugSNMP {
			log.Printf("[snmp] %s: connect failed: %v", ip, err)
		}
		return
	}
	defer snmp.Conn.Close()

	if t.DebugSNMP {
		log.Printf("[snmp] %s: connected", ip)
	}

	t.querySysName(snmp, ip)
	t.queryBridgeMIB(snmp, ip)
}

func (t *Tendrils) querySysName(snmp *gosnmp.GoSNMP, deviceIP net.IP) {
	oid := "1.3.6.1.2.1.1.5.0"

	result, err := snmp.Get([]string{oid})
	if err != nil {
		return
	}

	if len(result.Variables) > 0 {
		variable := result.Variables[0]
		if variable.Type == gosnmp.OctetString {
			sysName := string(variable.Value.([]byte))
			if sysName != "" {
				t.nodes.mu.RLock()
				if id, exists := t.nodes.ipIndex[deviceIP.String()]; exists {
					t.nodes.mu.RUnlock()
					t.nodes.mu.Lock()
					node := t.nodes.nodes[id]
					if node.Name == "" {
						node.Name = sysName
					}
					t.nodes.mu.Unlock()
					return
				}
				t.nodes.mu.RUnlock()
			}
		}
	}
}

func (t *Tendrils) queryBridgeMIB(snmp *gosnmp.GoSNMP, deviceIP net.IP) {
	portOID := "1.3.6.1.2.1.17.7.1.2.2.1.2"

	portResults, err := snmp.BulkWalkAll(portOID)
	if err != nil {
		return
	}

	type macPortEntry struct {
		mac        net.HardwareAddr
		bridgePort int
	}
	var macPorts []macPortEntry

	for _, result := range portResults {
		if result.Type == gosnmp.Integer {
			oidSuffix := strings.TrimPrefix(result.Name[len(portOID):], ".")
			parts := strings.Split(oidSuffix, ".")

			if len(parts) >= 8 {
				var macBytes []byte
				for j := 2; j <= 7; j++ {
					var b int
					fmt.Sscanf(parts[j], "%d", &b)
					macBytes = append(macBytes, byte(b))
				}

				if len(macBytes) == 6 {
					mac := net.HardwareAddr(macBytes)
					bridgePort := result.Value.(int)
					macPorts = append(macPorts, macPortEntry{mac: mac, bridgePort: bridgePort})
				}
			}
		}
	}

	bridgePortToIfIndex := t.getBridgePortMapping(snmp)
	ifNames := t.getInterfaceNames(snmp)

	for _, entry := range macPorts {
		mac := entry.mac
		bridgePort := entry.bridgePort

		if isBroadcastOrZero(mac) {
			continue
		}

		ifIndex, exists := bridgePortToIfIndex[bridgePort]
		if !exists {
			ifIndex = bridgePort
		}

		ifName := ifNames[ifIndex]
		if ifName == "" {
			ifName = "??"
		}

		addToParent := false
		for _, rule := range addToParentRules {
			if rule.MatchString(ifName) {
				addToParent = true
				break
			}
		}

		for _, rewrite := range portNameRewrites {
			if rewrite.regex.MatchString(ifName) {
				ifName = rewrite.regex.ReplaceAllString(ifName, rewrite.replacement)
				break
			}
		}

		if t.DebugSNMP {
			log.Printf("[snmp] %s: mac=%s port=%s", deviceIP, mac, ifName)
		}

		if addToParent {
			t.nodes.Update([]net.IP{deviceIP}, []net.HardwareAddr{mac}, "", "", "snmp")
		} else {
			t.nodes.mu.RLock()
			deviceNodeID := -1
			if id, exists := t.nodes.ipIndex[deviceIP.String()]; exists {
				deviceNodeID = id
			}
			macNodeID := -1
			if id, exists := t.nodes.macIndex[mac.String()]; exists {
				macNodeID = id
			}

			if deviceNodeID != -1 && macNodeID != -1 {
				deviceNode := t.nodes.nodes[deviceNodeID]
				if deviceNode.ParentID == macNodeID {
					t.nodes.mu.RUnlock()
					t.nodes.mu.Lock()
					if deviceNode.LocalPort == "" {
						deviceNode.LocalPort = ifName
					}
					t.nodes.mu.Unlock()
					continue
				}
			}
			t.nodes.mu.RUnlock()

			t.nodes.UpdateWithParent(deviceIP, nil, []net.HardwareAddr{mac}, ifName, "", "snmp")
		}
	}
}

func (t *Tendrils) getBridgePortMapping(snmp *gosnmp.GoSNMP) map[int]int {
	oid := "1.3.6.1.2.1.17.1.4.1.2"

	results, err := snmp.BulkWalkAll(oid)
	if err != nil {
		return nil
	}

	mapping := make(map[int]int)
	for _, result := range results {
		if result.Type == gosnmp.Integer {
			oidParts := strings.TrimPrefix(strings.TrimPrefix(result.Name, "."+oid), ".")
			var bridgePort int
			_, err := fmt.Sscanf(oidParts, "%d", &bridgePort)
			if err != nil {
				continue
			}
			ifIndex := result.Value.(int)
			mapping[bridgePort] = ifIndex
		}
	}

	return mapping
}

func (t *Tendrils) getInterfaceNames(snmp *gosnmp.GoSNMP) map[int]string {
	oid := "1.3.6.1.2.1.2.2.1.2"

	results, err := snmp.BulkWalkAll(oid)
	if err != nil {
		return nil
	}

	names := make(map[int]string)
	for _, result := range results {
		if result.Type == gosnmp.OctetString {
			oidParts := strings.TrimPrefix(strings.TrimPrefix(result.Name, "."+oid), ".")
			var ifIndex int
			_, err := fmt.Sscanf(oidParts, "%d", &ifIndex)
			if err != nil {
				continue
			}
			name := string(result.Value.([]byte))
			names[ifIndex] = name
		}
	}

	return names
}
add snmpv3 support 2025-11-29 21:16:58 -08:00			`package tendrils`

			`import (`
			`"context"`
			`"fmt"`
add debug flags for arp, lldp, and snmp discovery 2026-01-17 21:12:21 -08:00			`"log"`
add snmpv3 support 2025-11-29 21:16:58 -08:00			`"net"`
add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`"regexp"`
			`"strings"`
add snmpv3 support 2025-11-29 21:16:58 -08:00			`"time"`

			`"github.com/gosnmp/gosnmp"`
			`)`

add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`var (`
			`addToParentRules = []*regexp.Regexp{`
			regexp.MustCompile(`CPU Interface`),
			`}`

			`portNameRewrites = []struct {`
			`regex *regexp.Regexp`
			`replacement string`
			`}{`
			{regexp.MustCompile(`Slot: (\d+) Port: (\d+) .+`), "$1/$2"},
			`}`
			`)`

add snmpv3 support 2025-11-29 21:16:58 -08:00			`type snmpConfig struct {`
add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`username string`
			`authKey string`
			`privKey string`
			`authProto gosnmp.SnmpV3AuthProtocol`
			`privProto gosnmp.SnmpV3PrivProtocol`
			`secLevel gosnmp.SnmpV3MsgFlags`
			`timeout time.Duration`
			`retries int`
add snmpv3 support 2025-11-29 21:16:58 -08:00			`}`

			`func defaultSNMPConfig() *snmpConfig {`
			`return &snmpConfig{`
			`username: "tendrils",`
			`authKey: "tendrils",`
			`privKey: "tendrils",`
			`authProto: gosnmp.SHA512,`
			`privProto: gosnmp.AES,`
			`secLevel: gosnmp.AuthPriv,`
			`timeout: 5 * time.Second,`
			`retries: 1,`
			`}`
			`}`

			`func (t Tendrils) connectSNMP(ip net.IP) (gosnmp.GoSNMP, error) {`
			`cfg := defaultSNMPConfig()`

			`snmp := &gosnmp.GoSNMP{`
			`Target: ip.String(),`
			`Port: 161,`
			`Version: gosnmp.Version3,`
			`Timeout: cfg.timeout,`
			`Retries: cfg.retries,`
			`SecurityModel: gosnmp.UserSecurityModel,`
			`MsgFlags: cfg.secLevel,`
			`SecurityParameters: &gosnmp.UsmSecurityParameters{`
			`UserName: cfg.username,`
			`AuthenticationProtocol: cfg.authProto,`
			`AuthenticationPassphrase: cfg.authKey,`
			`PrivacyProtocol: cfg.privProto,`
			`PrivacyPassphrase: cfg.privKey,`
			`},`
			`}`

			`err := snmp.Connect()`
			`if err != nil {`
			`return nil, err`
			`}`

			`return snmp, nil`
			`}`

			`func (t *Tendrils) pollSNMP(ctx context.Context) {`
add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`ticker := time.NewTicker(10 * time.Second)`
add snmpv3 support 2025-11-29 21:16:58 -08:00			`defer ticker.Stop()`

			`t.querySwitches()`

			`for {`
			`select {`
			`case <-ctx.Done():`
			`return`
			`case <-ticker.C:`
			`t.querySwitches()`
			`}`
			`}`
			`}`

			`func (t *Tendrils) querySwitches() {`
			`nodes := t.nodes.All()`

			`for _, node := range nodes {`
			`for _, ip := range node.IPs {`
			`if ip.To4() == nil {`
			`continue`
			`}`

			`go t.querySNMPDevice(ip)`
			`}`
			`}`
			`}`

			`func (t *Tendrils) querySNMPDevice(ip net.IP) {`
			`snmp, err := t.connectSNMP(ip)`
			`if err != nil {`
add debug flags for arp, lldp, and snmp discovery 2026-01-17 21:12:21 -08:00			`if t.DebugSNMP {`
			`log.Printf("[snmp] %s: connect failed: %v", ip, err)`
			`}`
add snmpv3 support 2025-11-29 21:16:58 -08:00			`return`
			`}`
			`defer snmp.Conn.Close()`

add debug flags for arp, lldp, and snmp discovery 2026-01-17 21:12:21 -08:00			`if t.DebugSNMP {`
			`log.Printf("[snmp] %s: connected", ip)`
			`}`

add node names from hostname, lldp, and snmp populate local node name from hostname. extract system name from lldp packets and snmp sysname oid. call logtree after node merges. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> 2025-11-29 22:27:31 -08:00			`t.querySysName(snmp, ip)`
add snmpv3 support 2025-11-29 21:16:58 -08:00			`t.queryBridgeMIB(snmp, ip)`
			`}`

add node names from hostname, lldp, and snmp populate local node name from hostname. extract system name from lldp packets and snmp sysname oid. call logtree after node merges. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> 2025-11-29 22:27:31 -08:00			`func (t Tendrils) querySysName(snmp gosnmp.GoSNMP, deviceIP net.IP) {`
			`oid := "1.3.6.1.2.1.1.5.0"`

			`result, err := snmp.Get([]string{oid})`
			`if err != nil {`
			`return`
			`}`

			`if len(result.Variables) > 0 {`
			`variable := result.Variables[0]`
			`if variable.Type == gosnmp.OctetString {`
			`sysName := string(variable.Value.([]byte))`
			`if sysName != "" {`
			`t.nodes.mu.RLock()`
			`if id, exists := t.nodes.ipIndex[deviceIP.String()]; exists {`
			`t.nodes.mu.RUnlock()`
			`t.nodes.mu.Lock()`
			`node := t.nodes.nodes[id]`
			`if node.Name == "" {`
			`node.Name = sysName`
			`}`
			`t.nodes.mu.Unlock()`
			`return`
			`}`
			`t.nodes.mu.RUnlock()`
			`}`
			`}`
			`}`
			`}`

add snmpv3 support 2025-11-29 21:16:58 -08:00			`func (t Tendrils) queryBridgeMIB(snmp gosnmp.GoSNMP, deviceIP net.IP) {`
remove unused snmp queries remove queryARPTable (returns no data) and switch directly to q-bridge-mib (bridge-mib returns no data). 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> 2025-11-29 22:19:05 -08:00			`portOID := "1.3.6.1.2.1.17.7.1.2.2.1.2"`
add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00
add snmpv3 support 2025-11-29 21:16:58 -08:00			`portResults, err := snmp.BulkWalkAll(portOID)`
			`if err != nil {`
			`return`
			`}`

add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`type macPortEntry struct {`
			`mac net.HardwareAddr`
			`bridgePort int`
			`}`
			`var macPorts []macPortEntry`

add snmpv3 support 2025-11-29 21:16:58 -08:00			`for _, result := range portResults {`
			`if result.Type == gosnmp.Integer {`
add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`oidSuffix := strings.TrimPrefix(result.Name[len(portOID):], ".")`
			`parts := strings.Split(oidSuffix, ".")`

			`if len(parts) >= 8 {`
			`var macBytes []byte`
			`for j := 2; j <= 7; j++ {`
			`var b int`
			`fmt.Sscanf(parts[j], "%d", &b)`
			`macBytes = append(macBytes, byte(b))`
			`}`

			`if len(macBytes) == 6 {`
			`mac := net.HardwareAddr(macBytes)`
			`bridgePort := result.Value.(int)`
			`macPorts = append(macPorts, macPortEntry{mac: mac, bridgePort: bridgePort})`
			`}`
			`}`
add snmpv3 support 2025-11-29 21:16:58 -08:00			`}`
			`}`

			`bridgePortToIfIndex := t.getBridgePortMapping(snmp)`
			`ifNames := t.getInterfaceNames(snmp)`

add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`for _, entry := range macPorts {`
			`mac := entry.mac`
			`bridgePort := entry.bridgePort`
add snmpv3 support 2025-11-29 21:16:58 -08:00
add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`if isBroadcastOrZero(mac) {`
			`continue`
			`}`
add snmpv3 support 2025-11-29 21:16:58 -08:00
add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`ifIndex, exists := bridgePortToIfIndex[bridgePort]`
			`if !exists {`
			`ifIndex = bridgePort`
			`}`
add snmpv3 support 2025-11-29 21:16:58 -08:00
add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`ifName := ifNames[ifIndex]`
			`if ifName == "" {`
			`ifName = "??"`
			`}`

			`addToParent := false`
			`for _, rule := range addToParentRules {`
			`if rule.MatchString(ifName) {`
			`addToParent = true`
			`break`
add snmpv3 support 2025-11-29 21:16:58 -08:00			`}`
add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`}`
add snmpv3 support 2025-11-29 21:16:58 -08:00
add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`for _, rewrite := range portNameRewrites {`
			`if rewrite.regex.MatchString(ifName) {`
			`ifName = rewrite.regex.ReplaceAllString(ifName, rewrite.replacement)`
			`break`
add snmpv3 support 2025-11-29 21:16:58 -08:00			`}`
add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`}`
add snmpv3 support 2025-11-29 21:16:58 -08:00
add debug flags for arp, lldp, and snmp discovery 2026-01-17 21:12:21 -08:00			`if t.DebugSNMP {`
			`log.Printf("[snmp] %s: mac=%s port=%s", deviceIP, mac, ifName)`
			`}`

add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`if addToParent {`
			`t.nodes.Update([]net.IP{deviceIP}, []net.HardwareAddr{mac}, "", "", "snmp")`
			`} else {`
fix local address population and snmp reverse port discovery populate root node with local macs/ips at startup, excluding loopback addresses and permanent arp entries. detect when snmp finds parent node mac in child forwarding table and set child localport. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> 2025-11-29 22:13:25 -08:00			`t.nodes.mu.RLock()`
			`deviceNodeID := -1`
			`if id, exists := t.nodes.ipIndex[deviceIP.String()]; exists {`
			`deviceNodeID = id`
			`}`
			`macNodeID := -1`
			`if id, exists := t.nodes.macIndex[mac.String()]; exists {`
			`macNodeID = id`
			`}`

			`if deviceNodeID != -1 && macNodeID != -1 {`
			`deviceNode := t.nodes.nodes[deviceNodeID]`
			`if deviceNode.ParentID == macNodeID {`
			`t.nodes.mu.RUnlock()`
			`t.nodes.mu.Lock()`
			`if deviceNode.LocalPort == "" {`
			`deviceNode.LocalPort = ifName`
			`}`
			`t.nodes.mu.Unlock()`
			`continue`
			`}`
			`}`
			`t.nodes.mu.RUnlock()`

add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`t.nodes.UpdateWithParent(deviceIP, nil, []net.HardwareAddr{mac}, ifName, "", "snmp")`
add snmpv3 support 2025-11-29 21:16:58 -08:00			`}`
			`}`
			`}`

			`func (t Tendrils) getBridgePortMapping(snmp gosnmp.GoSNMP) map[int]int {`
			`oid := "1.3.6.1.2.1.17.1.4.1.2"`

			`results, err := snmp.BulkWalkAll(oid)`
			`if err != nil {`
			`return nil`
			`}`

			`mapping := make(map[int]int)`
			`for _, result := range results {`
			`if result.Type == gosnmp.Integer {`
add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`oidParts := strings.TrimPrefix(strings.TrimPrefix(result.Name, "."+oid), ".")`
add snmpv3 support 2025-11-29 21:16:58 -08:00			`var bridgePort int`
			`_, err := fmt.Sscanf(oidParts, "%d", &bridgePort)`
			`if err != nil {`
			`continue`
			`}`
			`ifIndex := result.Value.(int)`
			`mapping[bridgePort] = ifIndex`
			`}`
			`}`

			`return mapping`
			`}`

			`func (t Tendrils) getInterfaceNames(snmp gosnmp.GoSNMP) map[int]string {`
			`oid := "1.3.6.1.2.1.2.2.1.2"`

			`results, err := snmp.BulkWalkAll(oid)`
			`if err != nil {`
			`return nil`
			`}`

			`names := make(map[int]string)`
			`for _, result := range results {`
			`if result.Type == gosnmp.OctetString {`
add snmpv3 topology discovery with q-bridge support 2025-11-29 21:56:45 -08:00			`oidParts := strings.TrimPrefix(strings.TrimPrefix(result.Name, "."+oid), ".")`
add snmpv3 support 2025-11-29 21:16:58 -08:00			`var ifIndex int`
			`_, err := fmt.Sscanf(oidParts, "%d", &ifIndex)`
			`if err != nil {`
			`continue`
			`}`
			`name := string(result.Value.([]byte))`
			`names[ifIndex] = name`
			`}`
			`}`

			`return names`
			`}`