feat: Add config-ssh and tests for resiliency

kylecarbs · kylecarbs · commit 0bda97494c93 · 2022-03-27T00:15:55.000Z
diff --git a/agent/agent_test.go b/agent/agent_test.go
@@ -39,7 +39,10 @@ func TestAgent(t *testing.T) {
 		t.Cleanup(func() {
 			_ = conn.Close()
 		})
-		client := agent.Conn{conn}
+		client := agent.Conn{
+			Negotiator: api,
+			Conn:       conn,
+		}
 		sshClient, err := client.SSHClient()
 		require.NoError(t, err)
 		session, err := sshClient.NewSession()
@@ -65,7 +68,10 @@ func TestAgent(t *testing.T) {
 		t.Cleanup(func() {
 			_ = conn.Close()
 		})
-		client := &agent.Conn{conn}
+		client := &agent.Conn{
+			Negotiator: api,
+			Conn:       conn,
+		}
 		sshClient, err := client.SSHClient()
 		require.NoError(t, err)
 		session, err := sshClient.NewSession()
diff --git a/agent/conn.go b/agent/conn.go
@@ -8,11 +8,15 @@ import (
 	"golang.org/x/xerrors"
 
 	"github.com/coder/coder/peer"
+	"github.com/coder/coder/peerbroker/proto"
 )
 
 // Conn wraps a peer connection with helper functions to
 // communicate with the agent.
 type Conn struct {
+	// Negotiator is responsible for exchanging messages.
+	Negotiator proto.DRPCPeerBrokerClient
+
 	*peer.Conn
 }
 
@@ -48,3 +52,8 @@ func (c *Conn) SSHClient() (*ssh.Client, error) {
 	}
 	return ssh.NewClient(sshConn, channels, requests), nil
 }
+
+func (c *Conn) Close() error {
+	_ = c.Negotiator.DRPCConn().Close()
+	return c.Conn.Close()
+}
diff --git a/cli/root.go b/cli/root.go
@@ -64,7 +64,7 @@ func Root() *cobra.Command {
 		projects(),
 		users(),
 		workspaces(),
-		workspaceSSH(),
+		ssh(),
 		workspaceTunnel(),
 	)
 
diff --git a/cli/ssh.go b/cli/ssh.go
@@ -1,18 +1,15 @@
 package cli
 
 import (
-	"os"
-
 	"github.com/spf13/cobra"
-	"golang.org/x/crypto/ssh"
-	"golang.org/x/term"
+	gossh "golang.org/x/crypto/ssh"
 	"golang.org/x/xerrors"
 
 	"github.com/coder/coder/coderd/database"
 	"github.com/coder/coder/codersdk"
 )
 
-func workspaceSSH() *cobra.Command {
+func ssh() *cobra.Command {
 	cmd := &cobra.Command{
 		Use: "ssh <workspace> [resource]",
 		RunE: func(cmd *cobra.Command, args []string) error {
@@ -68,6 +65,7 @@ func workspaceSSH() *cobra.Command {
 			if err != nil {
 				return err
 			}
+			defer conn.Close()
 			sshClient, err := conn.SSHClient()
 			if err != nil {
 				return err
@@ -77,16 +75,16 @@ func workspaceSSH() *cobra.Command {
 			if err != nil {
 				return err
 			}
-			_, _ = term.MakeRaw(int(os.Stdin.Fd()))
-			err = sshSession.RequestPty("xterm-256color", 128, 128, ssh.TerminalModes{
-				ssh.OCRNL: 1,
+
+			err = sshSession.RequestPty("xterm-256color", 128, 128, gossh.TerminalModes{
+				gossh.OCRNL: 1,
 			})
 			if err != nil {
 				return err
 			}
-			sshSession.Stdin = os.Stdin
-			sshSession.Stdout = os.Stdout
-			sshSession.Stderr = os.Stderr
+			sshSession.Stdin = cmd.InOrStdin()
+			sshSession.Stdout = cmd.OutOrStdout()
+			sshSession.Stderr = cmd.OutOrStdout()
 			err = sshSession.Shell()
 			if err != nil {
 				return err
diff --git a/cli/ssh_test.go b/cli/ssh_test.go
@@ -0,0 +1,78 @@
+package cli_test
+
+import (
+	"testing"
+
+	"github.com/google/uuid"
+	"github.com/stretchr/testify/require"
+
+	"cdr.dev/slog"
+	"cdr.dev/slog/sloggers/slogtest"
+	"github.com/coder/coder/agent"
+	"github.com/coder/coder/cli/clitest"
+	"github.com/coder/coder/coderd/coderdtest"
+	"github.com/coder/coder/codersdk"
+	"github.com/coder/coder/peer"
+	"github.com/coder/coder/provisioner/echo"
+	"github.com/coder/coder/provisionersdk/proto"
+	"github.com/coder/coder/pty/ptytest"
+)
+
+func TestSSH(t *testing.T) {
+	t.Parallel()
+	t.Run("Echo", func(t *testing.T) {
+		t.Parallel()
+		client := coderdtest.New(t, nil)
+		user := coderdtest.CreateFirstUser(t, client)
+		daemonCloser := coderdtest.NewProvisionerDaemon(t, client)
+		agentToken := uuid.NewString()
+		version := coderdtest.CreateProjectVersion(t, client, user.OrganizationID, &echo.Responses{
+			Parse:           echo.ParseComplete,
+			ProvisionDryRun: echo.ProvisionComplete,
+			Provision: []*proto.Provision_Response{{
+				Type: &proto.Provision_Response_Complete{
+					Complete: &proto.Provision_Complete{
+						Resources: []*proto.Resource{{
+							Name: "dev",
+							Type: "google_compute_instance",
+							Agent: &proto.Agent{
+								Id: uuid.NewString(),
+								Auth: &proto.Agent_Token{
+									Token: agentToken,
+								},
+							},
+						}},
+					},
+				},
+			}},
+		})
+		coderdtest.AwaitProjectVersionJob(t, client, version.ID)
+		project := coderdtest.CreateProject(t, client, user.OrganizationID, version.ID)
+		workspace := coderdtest.CreateWorkspace(t, client, "", project.ID)
+		coderdtest.AwaitWorkspaceBuildJob(t, client, workspace.LatestBuild.ID)
+		daemonCloser.Close()
+		agentClient := codersdk.New(client.URL)
+		agentClient.SessionToken = agentToken
+		agentCloser := agent.New(agentClient.ListenWorkspaceAgent, &peer.ConnOptions{
+			Logger: slogtest.Make(t, nil).Leveled(slog.LevelDebug),
+		})
+		defer agentCloser.Close()
+		coderdtest.AwaitWorkspaceAgents(t, client, workspace.LatestBuild.ID)
+
+		cmd, root := clitest.New(t, "ssh", workspace.Name)
+		clitest.SetupConfig(t, client, root)
+		doneChan := make(chan struct{})
+		pty := ptytest.New(t)
+		cmd.SetIn(pty.Input())
+		cmd.SetOut(pty.Output())
+		go func() {
+			defer close(doneChan)
+			err := cmd.Execute()
+			require.NoError(t, err)
+		}()
+		// Shells on Mac, Windows, and Linux all exit shells with the "exit" command.
+		pty.ExpectMatch("ish")
+		pty.WriteLine("exit")
+		<-doneChan
+	})
+}
diff --git a/cli/workspaces.go b/cli/workspaces.go
@@ -18,7 +18,7 @@ func workspaces() *cobra.Command {
 	cmd.AddCommand(workspaceShow())
 	cmd.AddCommand(workspaceStop())
 	cmd.AddCommand(workspaceStart())
-	cmd.AddCommand(workspaceSSH())
+	cmd.AddCommand(ssh())
 	cmd.AddCommand(workspaceUpdate())
 
 	return cmd
diff --git a/coderd/coderdtest/coderdtest.go b/coderd/coderdtest/coderdtest.go
@@ -251,6 +251,7 @@ func AwaitWorkspaceAgents(t *testing.T, client *codersdk.Client, build uuid.UUID
 			if resource.Agent == nil {
 				continue
 			}
+			// fmt.Printf("resources: %+v\n", resource.Agent)
 			if resource.Agent.FirstConnectedAt == nil {
 				return false
 			}
diff --git a/codersdk/workspaceresources.go b/codersdk/workspaceresources.go
@@ -133,15 +133,9 @@ func (c *Client) DialWorkspaceAgent(ctx context.Context, resource uuid.UUID, ice
 	if err != nil {
 		return nil, xerrors.Errorf("dial peer: %w", err)
 	}
-	go func() {
-		// The stream is kept alive to renegotiate the RTC connection
-		// if need-be. The calling context can be canceled to end
-		// the negotiation stream, but not the peer connection.
-		<-peerConn.Closed()
-		_ = conn.Close(websocket.StatusNormalClosure, "")
-	}()
 	return &agent.Conn{
-		Conn: peerConn,
+		Negotiator: client,
+		Conn:       peerConn,
 	}, nil
 }
 
diff --git a/peerbroker/dial.go b/peerbroker/dial.go
@@ -1,6 +1,9 @@
 package peerbroker
 
 import (
+	"context"
+	"errors"
+	"io"
 	"reflect"
 
 	"github.com/pion/webrtc/v3"
@@ -54,6 +57,11 @@ func Dial(stream proto.DRPCPeerBroker_NegotiateConnectionClient, iceServers []we
 		for {
 			serverToClientMessage, err := stream.Recv()
 			if err != nil {
+				// p2p connections should never die if this stream does due
+				// to proper closure or context cancellation!
+				if errors.Is(err, io.EOF) || errors.Is(err, context.Canceled) {
+					return
+				}
 				_ = peerConn.CloseWithError(xerrors.Errorf("recv: %w", err))
 				return
 			}
diff --git a/peerbroker/listen.go b/peerbroker/listen.go
@@ -166,8 +166,10 @@ func (b *peerBrokerService) NegotiateConnection(stream proto.DRPCPeerBroker_Nego
 	for {
 		clientToServerMessage, err := stream.Recv()
 		if err != nil {
-			if errors.Is(err, io.EOF) {
-				break
+			// p2p connections should never die if this stream does due
+			// to proper closure or context cancellation!
+			if errors.Is(err, io.EOF) || errors.Is(err, context.Canceled) {
+				return nil
 			}
 			return peerConn.CloseWithError(xerrors.Errorf("recv: %w", err))
 		}
@@ -186,6 +188,4 @@ func (b *peerBrokerService) NegotiateConnection(stream proto.DRPCPeerBroker_Nego
 			return peerConn.CloseWithError(xerrors.Errorf("unhandled message: %s", reflect.TypeOf(clientToServerMessage).String()))
 		}
 	}
-
-	return nil
 }

Original file line number	Diff line number	Diff line change
`@@ -8,11 +8,15 @@ import (`
`8`	`8`	`"golang.org/x/xerrors"`
`9`	`9`
`10`	`10`	`"github.com/coder/coder/peer"`
	`11`	`+ "github.com/coder/coder/peerbroker/proto"`
`11`	`12`	`)`
`12`	`13`
`13`	`14`	`// Conn wraps a peer connection with helper functions to`
`14`	`15`	`// communicate with the agent.`
`15`	`16`	`type Conn struct {`
	`17`	`+ // Negotiator is responsible for exchanging messages.`
	`18`	`+ Negotiator proto.DRPCPeerBrokerClient`
	`19`	`+`
`16`	`20`	`*peer.Conn`
`17`	`21`	`}`
`18`	`22`
`@@ -48,3 +52,8 @@ func (c Conn) SSHClient() (ssh.Client, error) {`
`48`	`52`	`}`
`49`	`53`	`return ssh.NewClient(sshConn, channels, requests), nil`
`50`	`54`	`}`
	`55`	`+`
	`56`	`+func (c *Conn) Close() error {`
	`57`	`+ _ = c.Negotiator.DRPCConn().Close()`
	`58`	`+ return c.Conn.Close()`
	`59`	`+}`
Original file line number	Diff line number	Diff line change
`@@ -64,7 +64,7 @@ func Root() *cobra.Command {`
`64`	`64`	`projects(),`
`65`	`65`	`users(),`
`66`	`66`	`workspaces(),`
`67`		`- workspaceSSH(),`
	`67`	`+ ssh(),`
`68`	`68`	`workspaceTunnel(),`
`69`	`69`	`)`
`70`	`70`
Original file line number	Diff line number	Diff line change
`@@ -251,6 +251,7 @@ func AwaitWorkspaceAgents(t testing.T, client codersdk.Client, build uuid.UUID`
`251`	`251`	`if resource.Agent == nil {`
`252`	`252`	`continue`
`253`	`253`	`}`
	`254`	`+ // fmt.Printf("resources: %+v\n", resource.Agent)`
`254`	`255`	`if resource.Agent.FirstConnectedAt == nil {`
`255`	`256`	`return false`
`256`	`257`	`}`
Original file line number	Diff line number	Diff line change
`@@ -166,8 +166,10 @@ func (b *peerBrokerService) NegotiateConnection(stream proto.DRPCPeerBroker_Nego`
`166`	`166`	`for {`
`167`	`167`	`clientToServerMessage, err := stream.Recv()`
`168`	`168`	`if err != nil {`
`169`		`- if errors.Is(err, io.EOF) {`
`170`		`- break`
	`169`	`+ // p2p connections should never die if this stream does due`
	`170`	`+ // to proper closure or context cancellation!`
	`171`	`+ if errors.Is(err, io.EOF) \|\| errors.Is(err, context.Canceled) {`
	`172`	`+ return nil`
`171`	`173`	`}`
`172`	`174`	`return peerConn.CloseWithError(xerrors.Errorf("recv: %w", err))`
`173`	`175`	`}`
`@@ -186,6 +188,4 @@ func (b *peerBrokerService) NegotiateConnection(stream proto.DRPCPeerBroker_Nego`
`186`	`188`	`return peerConn.CloseWithError(xerrors.Errorf("unhandled message: %s", reflect.TypeOf(clientToServerMessage).String()))`
`187`	`189`	`}`
`188`	`190`	`}`
`189`		`-`
`190`		`- return nil`
`191`	`191`	`}`