Provide prometheus endpoint #50
Comments
|
👍 In addition the http endpoint could serve the json. |
|
I understand this is important, but I'm not going to be able to squeeze it in my schedule in the near future. Will report again in one month or earlier. |
|
Closest effort is a fork that I've done a months ago, precisely using a customized C library based on that offered by DigitalOcean. Due to l a lack of time, I still can't finish it, but any help is really appreciated :) The fork is at https://github.com/pcarana/FORT-validator, still needs some checks and also to define what data will be reported. |
|
@pcarana Ok, thank you. |
|
This is still far from feasible. Will report again in September or earlier. |
|
I too would greatly appreciate this feature, it's currently holding us back from retiring octorpki in favor of fort. |
|
Me too! :-) |
|
Question: Why do you need this? I have a prototype, but it only tracks a small amount of statistics. I'm going to have to release 1.5.2 soon, so I'm debating whether I should include the prototype or not. |
Requested by Ties de Kock: > Since some RPs now includes an upper limit on object size (some use > 2MB if I recall correctly) I would appreciate a warning if an object > goes over "a large fraction" of this limit (and a sample of the > warning in the changelog and metrics if possible) - so people know > what they need to alert on. In this situation operators can monitor > for "natural growth" of an object and intervene, while the case that > this check prevents (maliciously large objects) is still covered. > > The largest object I could find in the wild is 1.2MB (APNIC AS0 ROA). > The RIPE NCC's largest object is smaller at the moment (but the CRL > grows quickly if we do member CA keyrolls - since it adds all object > on it). > > In summary: > > - I would recommend a warning (and preferably a metric) when an object > of 50% of the object size limit is encountered. > - I would like it if the hard limit is "safe" - especially CRLs can > grow in some cases. The metric will be added later, as part of #50. The warning is eg. File size exceeds 50% of the configured limit (10/20 bytes). 50% is hardcoded at the moment. Notice that this is an HTTP-only patch. rsync does not warn.
Hello,
currently there is no way to get validation statistics out of FORT. It would be nice if you could provide a prometheus HTTP endpoint for it.
The format is described here:
https://prometheus.io/docs/instrumenting/exposition_formats/
Also there seems to be a C library for it:
https://github.com/digitalocean/prometheus-client-c
Maybe you could also take a look a the metrics that Routinator exports so that there is similarity between the endpoints:
https://routinator.docs.nlnetlabs.nl/en/stable/monitoring.html
The text was updated successfully, but these errors were encountered: