baseline: api+gui traffic mode + candidates picker

Snapshot before app-launcher (cgroup/mark) work; ignore binaries/backups.
2026-02-14 15:32:25 +03:00
parent 50e2999cad
commit 10a10f44a8
55 changed files with 16488 additions and 0 deletions
--- a/selective-vpn-api/app/types.go
+++ b/selective-vpn-api/app/types.go
@@ -0,0 +1,250 @@
+package app
+
+// ---------------------------------------------------------------------
+// структуры
+// ---------------------------------------------------------------------
+
+// EN: Shared DTO/model definitions exchanged between HTTP handlers, workers,
+// EN: SSE stream, and internal orchestration logic.
+// RU: Общие DTO/модели, которыми обмениваются HTTP-обработчики, воркеры,
+// RU: SSE-поток и внутренняя оркестрация.
+
+type Status struct {
+	Timestamp   string `json:"timestamp"`
+	IPCount     int    `json:"ip_count"`
+	DomainCount int    `json:"domain_count"`
+	Iface       string `json:"iface"`
+	Table       string `json:"table"`
+	Mark        string `json:"mark"`
+
+	PolicyRouteOK *bool `json:"policy_route_ok,omitempty"`
+	RouteOK       *bool `json:"route_ok,omitempty"`
+}
+
+type cmdResult struct {
+	OK       bool   `json:"ok"`
+	Message  string `json:"message,omitempty"`
+	ExitCode int    `json:"exitCode,omitempty"`
+	Stdout   string `json:"stdout,omitempty"`
+	Stderr   string `json:"stderr,omitempty"`
+}
+
+type VPNLoginState struct {
+	State string `json:"state"`
+	Email string `json:"email,omitempty"`
+	Msg   string `json:"msg,omitempty"`
+
+	// для GUI
+	Text  string `json:"text,omitempty"`
+	Color string `json:"color,omitempty"`
+}
+
+type DNSUpstreams struct {
+	Default1 string `json:"default1"`
+	Default2 string `json:"default2"`
+	Meta1    string `json:"meta1"`
+	Meta2    string `json:"meta2"`
+}
+
+type DNSResolverMode string
+
+const (
+	DNSModeDirect         DNSResolverMode = "direct"
+	DNSModeSmartDNS       DNSResolverMode = "smartdns"
+	DNSModeHybridWildcard DNSResolverMode = "hybrid_wildcard"
+)
+
+type DNSMode struct {
+	ViaSmartDNS  bool            `json:"via_smartdns"`
+	SmartDNSAddr string          `json:"smartdns_addr"`
+	Mode         DNSResolverMode `json:"mode"`
+}
+
+type DNSStatusResponse struct {
+	ViaSmartDNS     bool            `json:"via_smartdns"`
+	SmartDNSAddr    string          `json:"smartdns_addr"`
+	Mode            DNSResolverMode `json:"mode"`
+	UnitState       string          `json:"unit_state"`
+	RuntimeNftset   bool            `json:"runtime_nftset"`
+	WildcardSource  string          `json:"wildcard_source"`
+	RuntimeCfgPath  string          `json:"runtime_config_path,omitempty"`
+	RuntimeCfgError string          `json:"runtime_config_error,omitempty"`
+}
+
+type DNSModeRequest struct {
+	ViaSmartDNS  bool            `json:"via_smartdns"`
+	SmartDNSAddr string          `json:"smartdns_addr"`
+	Mode         DNSResolverMode `json:"mode"`
+}
+
+type SmartDNSRuntimeStatusResponse struct {
+	Enabled        bool   `json:"enabled"`
+	AppliedEnable  bool   `json:"applied_enabled"`
+	WildcardSource string `json:"wildcard_source"`
+	UnitState      string `json:"unit_state"`
+	ConfigPath     string `json:"config_path"`
+	Changed        bool   `json:"changed,omitempty"`
+	Restarted      bool   `json:"restarted,omitempty"`
+	Message        string `json:"message,omitempty"`
+}
+
+type SmartDNSRuntimeRequest struct {
+	Enabled *bool `json:"enabled"`
+	Restart *bool `json:"restart,omitempty"`
+}
+
+type TrafficMode string
+
+const (
+	TrafficModeSelective  TrafficMode = "selective"
+	TrafficModeFullTunnel TrafficMode = "full_tunnel"
+	TrafficModeDirect     TrafficMode = "direct"
+)
+
+type TrafficModeState struct {
+	Mode               TrafficMode `json:"mode"`
+	PreferredIface     string      `json:"preferred_iface,omitempty"`
+	AutoLocalBypass    bool        `json:"auto_local_bypass"`
+	ForceVPNSubnets    []string    `json:"force_vpn_subnets,omitempty"`
+	ForceVPNUIDs       []string    `json:"force_vpn_uids,omitempty"`
+	ForceVPNCGroups    []string    `json:"force_vpn_cgroups,omitempty"`
+	ForceDirectSubnets []string    `json:"force_direct_subnets,omitempty"`
+	ForceDirectUIDs    []string    `json:"force_direct_uids,omitempty"`
+	ForceDirectCGroups []string    `json:"force_direct_cgroups,omitempty"`
+	UpdatedAt          string      `json:"updated_at,omitempty"`
+}
+
+type TrafficModeRequest struct {
+	Mode               TrafficMode `json:"mode"`
+	PreferredIface     *string     `json:"preferred_iface,omitempty"`
+	AutoLocalBypass    *bool       `json:"auto_local_bypass,omitempty"`
+	ForceVPNSubnets    *[]string   `json:"force_vpn_subnets,omitempty"`
+	ForceVPNUIDs       *[]string   `json:"force_vpn_uids,omitempty"`
+	ForceVPNCGroups    *[]string   `json:"force_vpn_cgroups,omitempty"`
+	ForceDirectSubnets *[]string   `json:"force_direct_subnets,omitempty"`
+	ForceDirectUIDs    *[]string   `json:"force_direct_uids,omitempty"`
+	ForceDirectCGroups *[]string   `json:"force_direct_cgroups,omitempty"`
+}
+
+type TrafficModeStatusResponse struct {
+	Mode               TrafficMode `json:"mode"`
+	DesiredMode        TrafficMode `json:"desired_mode"`
+	AppliedMode        TrafficMode `json:"applied_mode"`
+	PreferredIface     string      `json:"preferred_iface,omitempty"`
+	AutoLocalBypass    bool        `json:"auto_local_bypass"`
+	BypassCandidates   int         `json:"bypass_candidates"`
+	ForceVPNSubnets    []string    `json:"force_vpn_subnets,omitempty"`
+	ForceVPNUIDs       []string    `json:"force_vpn_uids,omitempty"`
+	ForceVPNCGroups    []string    `json:"force_vpn_cgroups,omitempty"`
+	ForceDirectSubnets []string    `json:"force_direct_subnets,omitempty"`
+	ForceDirectUIDs    []string    `json:"force_direct_uids,omitempty"`
+	ForceDirectCGroups []string    `json:"force_direct_cgroups,omitempty"`
+	OverridesApplied   int         `json:"overrides_applied"`
+	CgroupResolvedUIDs int         `json:"cgroup_resolved_uids"`
+	CgroupWarning      string      `json:"cgroup_warning,omitempty"`
+	ActiveIface        string      `json:"active_iface,omitempty"`
+	IfaceReason        string      `json:"iface_reason,omitempty"`
+	RuleMark           bool        `json:"rule_mark"`
+	RuleFull           bool        `json:"rule_full"`
+	TableDefault       bool        `json:"table_default"`
+	ProbeOK            bool        `json:"probe_ok"`
+	ProbeMessage       string      `json:"probe_message,omitempty"`
+	Healthy            bool        `json:"healthy"`
+	Message            string      `json:"message,omitempty"`
+}
+
+type TrafficCandidateSubnet struct {
+	CIDR     string `json:"cidr"`
+	Dev      string `json:"dev,omitempty"`
+	Kind     string `json:"kind,omitempty"` // lan|docker|link
+	LinkDown bool   `json:"linkdown,omitempty"`
+}
+
+type TrafficCandidateUnit struct {
+	Unit        string `json:"unit"`
+	Description string `json:"description,omitempty"`
+	Cgroup      string `json:"cgroup,omitempty"`
+}
+
+type TrafficCandidateUID struct {
+	UID      int      `json:"uid"`
+	User     string   `json:"user,omitempty"`
+	Examples []string `json:"examples,omitempty"`
+}
+
+type TrafficCandidatesResponse struct {
+	GeneratedAt string                   `json:"generated_at"`
+	Subnets     []TrafficCandidateSubnet `json:"subnets,omitempty"`
+	Units       []TrafficCandidateUnit   `json:"units,omitempty"`
+	UIDs        []TrafficCandidateUID    `json:"uids,omitempty"`
+}
+type TrafficInterfacesResponse struct {
+	Interfaces     []string `json:"interfaces"`
+	PreferredIface string   `json:"preferred_iface,omitempty"`
+	ActiveIface    string   `json:"active_iface,omitempty"`
+	IfaceReason    string   `json:"iface_reason,omitempty"`
+}
+
+type SystemdState struct {
+	State string `json:"state"`
+}
+
+// ---------------------------------------------------------------------
+// события / SSE
+// ---------------------------------------------------------------------
+
+type Event struct {
+	ID   int64       `json:"id"`
+	Kind string      `json:"kind"`
+	Ts   string      `json:"ts"`
+	Data interface{} `json:"data,omitempty"`
+}
+
+// EN: Callback for streaming user-visible progress from long-running nft updates.
+// RU: Колбэк для отправки прогресса длительных nft-операций в пользовательский интерфейс.
+type ProgressCallback func(percent int, message string)
+
+// ---------------------------------------------------------------------
+// resolver модели
+// ---------------------------------------------------------------------
+
+// EN: Input contract for the Go-based domain resolver job.
+// RU: Контракт входных параметров для Go-резолвера доменов.
+type ResolverOpts struct {
+	DomainsPath   string
+	MetaPath      string
+	StaticPath    string
+	CachePath     string
+	PtrCachePath  string
+	TraceLog      string
+	TTL           int
+	Workers       int
+	DNSConfigPath string
+
+	ViaSmartDNS       bool
+	Mode              DNSResolverMode
+	SmartDNSAddr      string
+	SmartDNSWildcards []string
+}
+
+// EN: Aggregated resolver outputs consumed by routes update pipeline.
+// RU: Агрегированные результаты резолвера, используемые пайплайном обновления маршрутов.
+type resolverResult struct {
+	IPs           []string
+	IPMap         [][2]string
+	DirectIPs     []string
+	DirectIPMap   [][2]string
+	WildcardIPs   []string
+	WildcardIPMap [][2]string
+	DomainCache   map[string]any
+	PtrCache      map[string]any
+}
+
+// EN: Runtime DNS upstream pools for standard and meta-special lookups.
+// RU: Наборы DNS-апстримов для обычных и meta-special резолвов.
+type dnsConfig struct {
+	Default  []string
+	Meta     []string
+	SmartDNS string
+	Mode     DNSResolverMode
+}