Migrate coordinator to use net.conn

kylecarbs · kylecarbs · commit d03849ee679d · 2022-08-21T02:48:41.000Z
diff --git a/agent/agent.go b/agent/agent.go
@@ -28,7 +28,6 @@ import (
 	"go.uber.org/atomic"
 	gossh "golang.org/x/crypto/ssh"
 	"golang.org/x/xerrors"
-	"nhooyr.io/websocket"
 	"tailscale.com/tailcfg"
 
 	"cdr.dev/slog"
@@ -82,7 +81,7 @@ type WebRTCDialer func(ctx context.Context, logger slog.Logger) (*peerbroker.Lis
 
 // CoordinatorDialer is a function that constructs a new broker.
 // A dialer must be passed in to allow for reconnects.
-type CoordinatorDialer func(ctx context.Context) (*websocket.Conn, error)
+type CoordinatorDialer func(ctx context.Context) (net.Conn, error)
 
 // FetchMetadata is a function to obtain metadata for the agent.
 type FetchMetadata func(ctx context.Context) (Metadata, error)
@@ -220,7 +219,7 @@ func (a *agent) runTailnet(ctx context.Context, derpMap *tailcfg.DERPMap) {
 
 // runCoordinator listens for nodes and updates the self-node as it changes.
 func (a *agent) runCoordinator(ctx context.Context) {
-	var coordinator *websocket.Conn
+	var coordinator net.Conn
 	var err error
 	// An exponential back-off occurs when the connection is failing to dial.
 	// This is to prevent server spam in case of a coderd outage.
@@ -239,7 +238,7 @@ func (a *agent) runCoordinator(ctx context.Context) {
 		a.logger.Info(context.Background(), "connected to coordination server")
 		break
 	}
-	sendNodes, errChan := tailnet.ServeCoordinator(ctx, coordinator, a.network.UpdateNodes)
+	sendNodes, errChan := tailnet.ServeCoordinator(coordinator, a.network.UpdateNodes)
 	a.network.SetNodeCallback(sendNodes)
 	select {
 	case <-ctx.Done():
@@ -885,9 +884,7 @@ func (a *agent) Close() error {
 	}
 	close(a.closed)
 	a.closeCancel()
-	fmt.Printf("CLOSING NETWORK!!!!\n")
 	if a.network != nil {
-		fmt.Printf("ACTUALLY CLOSING NETWORK!!!!\n")
 		_ = a.network.Close()
 	}
 	_ = a.sshServer.Close()
diff --git a/agent/agent_test.go b/agent/agent_test.go
@@ -3,10 +3,14 @@ package agent_test
 import (
 	"bufio"
 	"context"
+	"crypto/tls"
 	"encoding/json"
 	"fmt"
 	"io"
 	"net"
+	"net/http"
+	"net/http/httptest"
+	"net/netip"
 	"os"
 	"os/exec"
 	"path/filepath"
@@ -17,6 +21,11 @@ import (
 	"time"
 
 	"golang.org/x/xerrors"
+	"tailscale.com/derp"
+	"tailscale.com/derp/derphttp"
+	"tailscale.com/tailcfg"
+	"tailscale.com/types/key"
+	tslogger "tailscale.com/types/logger"
 
 	scp "github.com/bramvdbogaerde/go-scp"
 	"github.com/google/uuid"
@@ -38,6 +47,7 @@ import (
 	"github.com/coder/coder/peerbroker/proto"
 	"github.com/coder/coder/provisionersdk"
 	"github.com/coder/coder/pty/ptytest"
+	"github.com/coder/coder/tailnet"
 	"github.com/coder/coder/testutil"
 )
 
@@ -423,7 +433,14 @@ func TestAgent(t *testing.T) {
 
 	t.Run("Tailscale", func(t *testing.T) {
 		t.Parallel()
-
+		derpMap := runDERPAndStun(t, tailnet.Logger(slogtest.Make(t, nil)))
+		conn := setupSSHSession(t, agent.Metadata{
+			DERPMap: derpMap,
+		})
+		defer conn.Close()
+		output, err := conn.CombinedOutput("echo test")
+		require.NoError(t, err)
+		t.Log(string(output))
 	})
 }
 
@@ -469,6 +486,9 @@ func setupSSHSession(t *testing.T, options agent.Metadata) *ssh.Session {
 
 func setupAgent(t *testing.T, metadata agent.Metadata, ptyTimeout time.Duration) agent.Conn {
 	client, server := provisionersdk.TransportPipe()
+	tailscale := metadata.DERPMap != nil
+	coordinator := tailnet.NewCoordinator()
+	agentID := uuid.New()
 	closer := agent.New(agent.Options{
 		FetchMetadata: func(ctx context.Context) (agent.Metadata, error) {
 			return metadata, nil
@@ -477,6 +497,12 @@ func setupAgent(t *testing.T, metadata agent.Metadata, ptyTimeout time.Duration)
 			listener, err := peerbroker.Listen(server, nil)
 			return listener, err
 		},
+		CoordinatorDialer: func(ctx context.Context) (net.Conn, error) {
+			clientConn, serverConn := net.Pipe()
+			go coordinator.ServeAgent(serverConn, agentID)
+			return clientConn, nil
+		},
+		EnableTailnet:          tailscale,
 		Logger:                 slogtest.Make(t, nil).Leveled(slog.LevelDebug),
 		ReconnectingPTYTimeout: ptyTimeout,
 	})
@@ -488,6 +514,24 @@ func setupAgent(t *testing.T, metadata agent.Metadata, ptyTimeout time.Duration)
 	api := proto.NewDRPCPeerBrokerClient(provisionersdk.Conn(client))
 	stream, err := api.NegotiateConnection(context.Background())
 	assert.NoError(t, err)
+	if tailscale {
+		conn, err := tailnet.NewConn(&tailnet.Options{
+			Addresses: []netip.Prefix{netip.PrefixFrom(tailnet.IP(), 128)},
+			DERPMap:   metadata.DERPMap,
+			Logger:    slogtest.Make(t, nil).Named("tailnet"),
+		})
+		require.NoError(t, err)
+
+		clientConn, serverConn := net.Pipe()
+		go coordinator.ServeClient(serverConn, uuid.New(), agentID)
+		sendNode, _ := tailnet.ServeCoordinator(clientConn, func(node []*tailnet.Node) error {
+			return conn.UpdateNodes(node)
+		})
+		conn.SetNodeCallback(sendNode)
+		return &agent.TailnetConn{
+			Conn: conn,
+		}
+	}
 	conn, err := peerbroker.Dial(stream, []webrtc.ICEServer{}, &peer.ConnOptions{
 		Logger: slogtest.Make(t, nil),
 	})
@@ -532,3 +576,53 @@ func assertWritePayload(t *testing.T, w io.Writer, payload []byte) {
 	assert.NoError(t, err, "write payload")
 	assert.Equal(t, len(payload), n, "payload length does not match")
 }
+
+func runDERPAndStun(t *testing.T, logf tslogger.Logf) (derpMap *tailcfg.DERPMap) {
+	d := derp.NewServer(key.NewNode(), logf)
+	server := httptest.NewUnstartedServer(derphttp.Handler(d))
+	server.Config.ErrorLog = tslogger.StdLogger(logf)
+	server.Config.TLSNextProto = make(map[string]func(*http.Server, *tls.Conn, http.Handler))
+	server.StartTLS()
+
+	// stunAddr, stunCleanup := stuntest.ServeWithPacketListener(t, nettype.Std{})
+	t.Cleanup(func() {
+		server.CloseClientConnections()
+		server.Close()
+		d.Close()
+		// stunCleanup()
+	})
+
+	tcpAddr, ok := server.Listener.Addr().(*net.TCPAddr)
+	if !ok {
+		t.FailNow()
+	}
+
+	return &tailcfg.DERPMap{
+		Regions: map[int]*tailcfg.DERPRegion{
+			1: {
+				RegionID:   1,
+				RegionCode: "test",
+				RegionName: "Testlandia",
+				Nodes: []*tailcfg.DERPNode{
+					{
+						Name:     "t1",
+						RegionID: 1,
+						HostName: "stun.l.google.com",
+						DERPPort: -1,
+						STUNPort: 19302,
+						STUNOnly: true,
+					},
+					{
+						Name:             "t2",
+						RegionID:         1,
+						IPv4:             "127.0.0.1",
+						IPv6:             "none",
+						STUNPort:         -1,
+						DERPPort:         tcpAddr.Port,
+						InsecureForTests: true,
+					},
+				},
+			},
+		},
+	}
+}
diff --git a/cli/ssh.go b/cli/ssh.go
@@ -21,7 +21,6 @@ import (
 	"golang.org/x/xerrors"
 
 	"cdr.dev/slog"
-	"cdr.dev/slog/sloggers/sloghuman"
 
 	"github.com/coder/coder/agent"
 	"github.com/coder/coder/cli/cliflag"
@@ -91,7 +90,7 @@ func ssh() *cobra.Command {
 			if !wireguard {
 				conn, err = client.DialWorkspaceAgent(ctx, workspaceAgent.ID, nil)
 			} else {
-				conn, err = client.DialWorkspaceAgentTailnet(ctx, slog.Make(sloghuman.Sink(cmd.ErrOrStderr())).Leveled(slog.LevelDebug), workspaceAgent.ID)
+				conn, err = client.DialWorkspaceAgentTailnet(ctx, slog.Logger{}, workspaceAgent.ID)
 			}
 			if err != nil {
 				return err
diff --git a/coderd/workspaceagents.go b/coderd/workspaceagents.go
@@ -530,7 +530,7 @@ func (api *API) workspaceAgentCoordinate(rw http.ResponseWriter, r *http.Request
 		return
 	}
 	defer conn.Close(websocket.StatusNormalClosure, "")
-	err = api.ConnCoordinator.ServeAgent(r.Context(), conn, workspaceAgent.ID)
+	err = api.ConnCoordinator.ServeAgent(websocket.NetConn(r.Context(), conn, websocket.MessageBinary), workspaceAgent.ID)
 	if err != nil {
 		_ = conn.Close(websocket.StatusInternalError, err.Error())
 		return
@@ -556,7 +556,7 @@ func (api *API) workspaceAgentClientCoordinate(rw http.ResponseWriter, r *http.R
 		return
 	}
 	defer conn.Close(websocket.StatusNormalClosure, "")
-	err = api.ConnCoordinator.ServeClient(r.Context(), conn, uuid.New(), workspaceAgent.ID)
+	err = api.ConnCoordinator.ServeClient(websocket.NetConn(r.Context(), conn, websocket.MessageBinary), uuid.New(), workspaceAgent.ID)
 	if err != nil {
 		_ = conn.Close(websocket.StatusInternalError, err.Error())
 		return
diff --git a/codersdk/workspaceagents.go b/codersdk/workspaceagents.go
@@ -281,7 +281,7 @@ func (c *Client) UpdateWorkspaceAgentNode(ctx context.Context, agentID uuid.UUID
 	return nil
 }
 
-func (c *Client) ListenWorkspaceAgentTailnet(ctx context.Context) (*websocket.Conn, error) {
+func (c *Client) ListenWorkspaceAgentTailnet(ctx context.Context) (net.Conn, error) {
 	coordinateURL, err := c.URL.Parse("/api/v2/workspaceagents/me/coordinate")
 	if err != nil {
 		return nil, xerrors.Errorf("parse url: %w", err)
@@ -300,7 +300,10 @@ func (c *Client) ListenWorkspaceAgentTailnet(ctx context.Context) (*websocket.Co
 	conn, _, err := websocket.Dial(ctx, coordinateURL.String(), &websocket.DialOptions{
 		HTTPClient: httpClient,
 	})
-	return conn, err
+	if err != nil {
+		return nil, err
+	}
+	return websocket.NetConn(ctx, conn, websocket.MessageBinary), nil
 }
 
 func (c *Client) DialWorkspaceAgentTailnet(ctx context.Context, logger slog.Logger, agentID uuid.UUID) (agent.Conn, error) {
@@ -370,7 +373,7 @@ func (c *Client) DialWorkspaceAgentTailnet(ctx context.Context, logger slog.Logg
 				logger.Debug(ctx, "failed to dial", slog.Error(err))
 				continue
 			}
-			sendNode, errChan := tailnet.ServeCoordinator(ctx, ws, func(node []*tailnet.Node) error {
+			sendNode, errChan := tailnet.ServeCoordinator(websocket.NetConn(ctx, ws, websocket.MessageBinary), func(node []*tailnet.Node) error {
 				return conn.UpdateNodes(node)
 			})
 			conn.SetNodeCallback(sendNode)
diff --git a/tailnet/coordinator.go b/tailnet/coordinator.go
diff --git a/tailnet/coordinator_test.go b/tailnet/coordinator_test.go
