review p1

ethanndickson · ethanndickson · commit 71a6e598db37 · 2024-11-22T08:12:58.000Z
diff --git a/tailnet/controllers.go b/tailnet/controllers.go
@@ -867,7 +867,7 @@ type TunnelAllWorkspaceUpdatesController struct {
 	ownerUsername string
 	logger        slog.Logger
 
-	sync.Mutex
+	mu      sync.Mutex
 	updater *tunnelUpdater
 }
 
@@ -911,8 +911,8 @@ type agent struct {
 }
 
 func (t *TunnelAllWorkspaceUpdatesController) New(client WorkspaceUpdatesClient) CloserWaiter {
-	t.Lock()
-	defer t.Unlock()
+	t.mu.Lock()
+	defer t.mu.Unlock()
 	updater := &tunnelUpdater{
 		client:         client,
 		errChan:        make(chan error, 1),
@@ -930,8 +930,8 @@ func (t *TunnelAllWorkspaceUpdatesController) New(client WorkspaceUpdatesClient)
 }
 
 func (t *TunnelAllWorkspaceUpdatesController) CurrentState() *proto.WorkspaceUpdate {
-	t.Lock()
-	defer t.Unlock()
+	t.mu.Lock()
+	defer t.mu.Unlock()
 	if t.updater == nil {
 		return nil
 	}
diff --git a/vpn/client.go b/vpn/client.go
@@ -34,11 +34,11 @@ type vpnConn struct {
 	updatesCtrl *tailnet.TunnelAllWorkspaceUpdatesController
 }
 
-func (c vpnConn) CurrentWorkspaceState() *proto.WorkspaceUpdate {
+func (c *vpnConn) CurrentWorkspaceState() *proto.WorkspaceUpdate {
 	return c.updatesCtrl.CurrentState()
 }
 
-func (c vpnConn) Close() error {
+func (c *vpnConn) Close() error {
 	c.cancelFn()
 	<-c.controller.Closed()
 	return c.Conn.Close()
@@ -89,8 +89,8 @@ func (*client) NewConn(initCtx context.Context, serverURL *url.URL, token string
 		Header:    headers,
 	}
 
-	// New context, separate from dialCtx. We don't want to cancel the
-	// connection if dialCtx is canceled.
+	// New context, separate from initCtx. We don't want to cancel the
+	// connection if initCtx is canceled.
 	ctx, cancel := context.WithCancel(context.Background())
 	defer func() {
 		if err != nil {
@@ -171,7 +171,7 @@ func (*client) NewConn(initCtx context.Context, serverURL *url.URL, token string
 		options.Logger.Debug(ctx, "connected to tailnet v2+ API")
 	}
 
-	return vpnConn{
+	return &vpnConn{
 		Conn:        conn,
 		cancelFn:    cancel,
 		controller:  controller,
diff --git a/vpn/dylib/lib.go b/vpn/dylib/lib.go
@@ -22,7 +22,7 @@ const (
 )
 
 // OpenTunnel creates a new VPN tunnel by `dup`ing the provided 'PIPE'
-// file descriptors for reading, writing, and logging.
+// file descriptors for reading and writing.
 //
 //export OpenTunnel
 func OpenTunnel(cReadFD, cWriteFD int32) int32 {
@@ -46,8 +46,10 @@ func OpenTunnel(cReadFD, cWriteFD int32) int32 {
 		return ErrOpenPipe
 	}
 
-	// Logs will be sent over the protocol
-	_, err = vpn.NewTunnel(ctx, slog.Make(), conn, vpn.NewClient())
+	_, err = vpn.NewTunnel(ctx, slog.Make(), conn, vpn.NewClient(),
+		vpn.UseAsDNSConfig(),
+		vpn.UseAsRouter(),
+	)
 	if err != nil {
 		unix.Close(readFD)
 		unix.Close(writeFD)
diff --git a/vpn/tunnel.go b/vpn/tunnel.go
@@ -14,31 +14,38 @@ import (
 	"unicode"
 
 	"golang.org/x/xerrors"
+	"tailscale.com/net/dns"
+	"tailscale.com/wgengine/router"
 
+	"cdr.dev/slog"
 	"github.com/coder/coder/v2/coderd/util/ptr"
 	"github.com/coder/coder/v2/tailnet/proto"
-
-	"cdr.dev/slog"
 )
 
 type Tunnel struct {
 	speaker[*TunnelMessage, *ManagerMessage, ManagerMessage]
 	ctx             context.Context
-	logger          slog.Logger
 	requestLoopDone chan struct{}
 
+	logger          slog.Logger
+	router          router.Router
+	dnsConfigurator dns.OSConfigurator
+
 	logMu sync.Mutex
 	logs  []*TunnelMessage
 
 	client Client
 	conn   Conn
 }
 
+type TunnelOption func(t *Tunnel)
+
 func NewTunnel(
 	ctx context.Context,
 	logger slog.Logger,
 	mgrConn io.ReadWriteCloser,
 	client Client,
+	opts ...TunnelOption,
 ) (*Tunnel, error) {
 	logger = logger.Named("vpn")
 	s, err := newSpeaker[*TunnelMessage, *ManagerMessage](
@@ -54,6 +61,10 @@ func NewTunnel(
 		requestLoopDone: make(chan struct{}),
 		client:          client,
 	}
+
+	for _, opt := range opts {
+		opt(t)
+	}
 	t.speaker.start()
 	go t.requestLoop()
 	return t, nil
@@ -106,7 +117,8 @@ func (t *Tunnel) handleRPC(req *ManagerMessage, msgID uint64) *TunnelMessage {
 		}
 		resp.Msg = &TunnelMessage_Start{
 			Start: &StartResponse{
-				Success: err == nil,
+				Success:      err == nil,
+				ErrorMessage: err.Error(),
 			},
 		}
 		return resp
@@ -120,7 +132,8 @@ func (t *Tunnel) handleRPC(req *ManagerMessage, msgID uint64) *TunnelMessage {
 		}
 		resp.Msg = &TunnelMessage_Stop{
 			Stop: &StopResponse{
-				Success: err == nil,
+				Success:      err == nil,
+				ErrorMessage: err.Error(),
 			},
 		}
 		return resp
@@ -130,6 +143,24 @@ func (t *Tunnel) handleRPC(req *ManagerMessage, msgID uint64) *TunnelMessage {
 	}
 }
 
+func UseAsRouter() TunnelOption {
+	return func(t *Tunnel) {
+		t.router = NewRouter(t)
+	}
+}
+
+func UseAsLogger() TunnelOption {
+	return func(t *Tunnel) {
+		t.logger = t.logger.AppendSinks(t)
+	}
+}
+
+func UseAsDNSConfig() TunnelOption {
+	return func(t *Tunnel) {
+		t.dnsConfigurator = NewDNSConfigurator(t)
+	}
+}
+
 // ApplyNetworkSettings sends a request to the manager to apply the given network settings
 func (t *Tunnel) ApplyNetworkSettings(ctx context.Context, ns *NetworkSettingsRequest) error {
 	msg, err := t.speaker.unaryRPC(ctx, &TunnelMessage{
@@ -168,7 +199,7 @@ func (t *Tunnel) start(req *StartRequest) error {
 	}
 	svrURL, err := url.Parse(rawURL)
 	if err != nil {
-		return xerrors.Errorf("parse url: %w", err)
+		return xerrors.Errorf("parse url %q: %w", rawURL, err)
 	}
 	apiToken := req.GetApiToken()
 	if apiToken == "" {
@@ -179,19 +210,23 @@ func (t *Tunnel) start(req *StartRequest) error {
 		header.Add(h.GetName(), h.GetValue())
 	}
 
-	t.conn, err = t.client.NewConn(
-		t.ctx,
-		svrURL,
-		apiToken,
-		&Options{
-			Headers:           header,
-			Logger:            t.logger,
-			DNSConfigurator:   NewDNSConfigurator(t),
-			Router:            NewRouter(t),
-			TUNFileDescriptor: ptr.Ref(int(req.GetTunnelFileDescriptor())),
-			UpdateHandler:     t,
-		},
-	)
+	if t.conn == nil {
+		t.conn, err = t.client.NewConn(
+			t.ctx,
+			svrURL,
+			apiToken,
+			&Options{
+				Headers:           header,
+				Logger:            t.logger,
+				DNSConfigurator:   t.dnsConfigurator,
+				Router:            t.router,
+				TUNFileDescriptor: ptr.Ref(int(req.GetTunnelFileDescriptor())),
+				UpdateHandler:     t,
+			},
+		)
+	} else {
+		t.logger.Warn(t.ctx, "asked to start tunnel, but tunnel is already running")
+	}
 	return err
 }
 
@@ -252,26 +287,32 @@ func convertWorkspaceUpdate(update *proto.WorkspaceUpdate) *PeerUpdate {
 	}
 	for i, ws := range update.UpsertedWorkspaces {
 		out.UpsertedWorkspaces[i] = &Workspace{
-			Id:   ws.Id,
-			Name: ws.Name,
+			Id:     ws.Id,
+			Name:   ws.Name,
+			Status: Workspace_Status(ws.Status),
 		}
 	}
 	for i, agent := range update.UpsertedAgents {
 		out.UpsertedAgents[i] = &Agent{
-			Id:   agent.Id,
-			Name: agent.Name,
+			Id:          agent.Id,
+			Name:        agent.Name,
+			WorkspaceId: agent.WorkspaceId,
+			Fqdn:        "",
 		}
 	}
 	for i, ws := range update.DeletedWorkspaces {
 		out.DeletedWorkspaces[i] = &Workspace{
-			Id:   ws.Id,
-			Name: ws.Name,
+			Id:     ws.Id,
+			Name:   ws.Name,
+			Status: Workspace_Status(ws.Status),
 		}
 	}
 	for i, agent := range update.DeletedAgents {
 		out.DeletedAgents[i] = &Agent{
-			Id:   agent.Id,
-			Name: agent.Name,
+			Id:          agent.Id,
+			Name:        agent.Name,
+			WorkspaceId: []byte{},
+			Fqdn:        "",
 		}
 	}
 	return out
diff --git a/vpn/tunnel_internal_test.go b/vpn/tunnel_internal_test.go
@@ -4,6 +4,7 @@ import (
 	"context"
 	"net"
 	"net/url"
+	"sync"
 	"testing"
 
 	"github.com/stretchr/testify/require"
@@ -29,7 +30,12 @@ type fakeClient struct {
 var _ Client = (*fakeClient)(nil)
 
 func (f *fakeClient) NewConn(context.Context, *url.URL, string, *Options) (Conn, error) {
-	return testutil.RequireRecvCtx(f.ctx, f.t, f.ch), nil
+	select {
+	case <-f.ctx.Done():
+		return nil, f.ctx.Err()
+	case conn := <-f.ch:
+		return conn, nil
+	}
 }
 
 func newFakeConn(state *proto.WorkspaceUpdate) *fakeConn {
@@ -40,8 +46,9 @@ func newFakeConn(state *proto.WorkspaceUpdate) *fakeConn {
 }
 
 type fakeConn struct {
-	state  *proto.WorkspaceUpdate
-	closed chan struct{}
+	state   *proto.WorkspaceUpdate
+	closed  chan struct{}
+	doClose sync.Once
 }
 
 var _ Conn = (*fakeConn)(nil)
@@ -51,7 +58,9 @@ func (f *fakeConn) CurrentWorkspaceState() *proto.WorkspaceUpdate {
 }
 
 func (f *fakeConn) Close() error {
-	close(f.closed)
+	f.doClose.Do(func() {
+		close(f.closed)
+	})
 	return nil
 }
 
