Support tailscale configuration via Caddy configuration #30
Conversation
clly
force-pushed
the
clly/caddy-config
branch
from
5745e44 to
ddc9b3d
Compare
|
I haven't had a chance to scrutinize it, but at a glance this looks like a good start 👍 |
|
Hey @willnorris @mholt, just curious if you had, had a chance to look at this PR yet. If preferred, I could start stacking new PR's against this one and incorporate feedback into them as necessary. |
|
I did start reviewing this back when you initially sent it, but never got to the point that I sent the comments 😞 I recall that some of my initial thoughts were whether we needed to use a UsagePool for app (since I think it's always a singleton, right?). I'm also a little worried about the complexity of configuring options at two different levels... the default values and then the per-server values. Even though it would be a little more verbose to always require config at the server level, I wonder if that would be easier to reason about what exactly is happening? (I'm sure I had some other thoughts as well, but these are the ones that come to mind) And thank you by the way for doing this... I absolutely love this approach, and am honestly really excited to have this in, even if my lack of attention says otherwise! |
|
Oof, sorry, it's still in my notifications inbox and I promise I'll get around to it but I've been hustling for a new Caddy release -- and I'm traveling this week 😬 I'll try to get to this soon! 😃 I am also excited about it. Leaving it unread in my inbox so I don't forget. |
|
@willnorris from what I remember I thought the Assuming caddy does partial tear down and setup where a server doesn't get torn down and re-setup on reload, we wouldn't want to tear down a listener if it's used in multiple HTTP servers. The It's not implemented as part of this PR in an effort to keep it small, but I think we'd wrap the
Potentially. Personally, I prefer more flexible configuration, less typing in configuration, but I'm not against making it all explicit. The environment variables are still supported in this PR which already has the two tier configuration functionality. My suggestion would be to remove the environment variable support and bump to the next major version to indicate the breaking change. How would you like to proceed? |
module.go
Outdated
| @@ -136,6 +132,26 @@ func getServer(_, addr string) (*tsnetServerDestructor, error) { | |||
| return s.(*tsnetServerDestructor), nil | |||
| } | |||
|
|
|||
| func getAuthKey(host string) string { | |||
| hostAuthKey, loaded := app.LoadOrStore(host, "") | |||
There was a problem hiding this comment.
Any reason you wouldn't just pass the auth key in here? You have 2 LordOrStore operations which my intuition tells me breaks the atomicity...
There was a problem hiding this comment.
Since the global key is semi-static I should be able to fetch it outside this function and use it if the host specific key doesn't exist.
My assumption was the Caddy App setup happens semi-serially and that these would all be already loaded which would mean we should still get back the same values? Or am I misunderstanding the atomicity issue
There was a problem hiding this comment.
Oh, I see, so the storedAuthKey and hostAuthKey are different values? In that case, it's probably fine. Just make sure to call Delete() in your module's Cleanup() method so that it can free up unused memory.
@willnorris looking at this some more you're right. The apps themselves have no state, just the actual tailscale servers so this should switch to a singleton of some kind. I'm not a fan but it's probably for the best. |
Register a parseGlobal function to parse the caddy configuration file. The parse function creates a new TSApp which will hold our configuration and create the CaddyModule. Signed-off-by: Connor Kelly <connor.r.kelly@gmail.com>
Signed-off-by: Connor Kelly <connor.r.kelly@gmail.com>
Signed-off-by: Connor Kelly <connor.r.kelly@gmail.com>
Signed-off-by: Connor Kelly <connor.r.kelly@gmail.com>
Initially see if the provisioned server or global key exist in the app usage pool. If not then fallback to the already existing environment variables Signed-off-by: Connor Kelly <connor.r.kelly@gmail.com>
Signed-off-by: Connor Kelly <connor.r.kelly@gmail.com>
Signed-off-by: Connor Kelly <connor.r.kelly@gmail.com>
Everytime we get a listener we increment the refernce on a caddy UsagePool. With this change, wrap the listener in a custom type that will decrement the UsagePool when we close the listener. When all listeners are closed we will call Destruct on the tsnet Server which will Close the server and should cleanup potential references in the tailscale control plane Signed-off-by: Connor Kelly <connor.r.kelly@gmail.com>
|
@mholt @willnorris I've switched from a UsagePool to just a global which made the references much simpler. I've also wrapped the Listener's with a small type to ensure we call I'm happy with the state of this PR and think it's a good jumping off point for more changes in the future. Let me know if you have strong opinions and I'm happy to make them. @willnorris I know that you thought that more verbose but explicit config would be better and if it would make you more comfortable with this change I'm happy to take care of it. Thanks! |
module.go
Outdated
| } | ||
|
|
||
| func (t *tsnetServerListener) Close() error { | ||
| fmt.Println("Delete", t.hostname) |
There was a problem hiding this comment.
Drop this and close the actual listener as well
There was a problem hiding this comment.
Hey, thanks so much for hanging in there for so long! I've got a few minor comments below, but I've already made them in my local client, so I'll just push them to your branch, then squash and merge. I agree, this is a great new foundation that we can keep building on.
app.go
Outdated
|
|
||
| func (t *TSApp) Validate() error { | ||
| if t.DefaultAuthKey == "" { | ||
| return errors.New("auth_key must be set") |
There was a problem hiding this comment.
I don't think we want to require that a default auth key is set. A user could instead choose to specify only per-server key. That was actually how I initially tested this, and was surprised by the error.
| } | ||
|
|
||
| type TSServer struct { | ||
| AuthKey string `json:"auth_key,omitempty" caddy:"namespace=auth_key"` |
There was a problem hiding this comment.
I've honestly never used these caddy struct tags before. I guess they're used in doc generation? This seems to be the only one that doesn't have "tailscale." in the namespace. Is that intentional?
There was a problem hiding this comment.
It was, I think this is the translation for marshaling the caddy file format or going to/from JSON. It was modeled on the dynamicdns caddy app.
| return err | ||
| } | ||
|
|
||
| _, err := servers.Delete(t.hostname) |
There was a problem hiding this comment.
This definitely confused me at first. It looks like it will destruct the server on the first listener to close. I didn't realize this is really just a counter decrement on the usage pool. Maybe add a comment here that this decrements the usage pool for the server, and will close it only when it reaches zero?
app.go
Outdated
| } | ||
| } | ||
|
|
||
| app = t |
There was a problem hiding this comment.
the global app value shouldn't be overwritten as part of Provisioning, since the new apps are provisioned and started before the old one is stopped. So this should probably be inside of Start(). We should probaby also make app an atomic.Pointer since we'll have multiple TSApps potentially trying to write to it.
There was a problem hiding this comment.
Good point. I didn't realize these apps were started and stopped at the same time.
app.go
Outdated
| } | ||
|
|
||
| func (t *TSApp) Stop() error { | ||
| app = nil |
There was a problem hiding this comment.
If we make app an atomic.Pointer, then this should probably be app.CompareAndSwap(t, nil) so that it only gets set to nil if it is still pointing to the current t.
There was a problem hiding this comment.
If the apps are started and stopped at the same time would we do this at all?
Could we have a race condition where stop on an old app is called after start on a new one?
There was a problem hiding this comment.
I had the same thought. For updating configs this isn't really necessary because the new TSApp's Start will overwrite the value before Stop is called. But if the new config removes the Tailscale configuration, we still want to clean this up. The use of atomic and CompareAndSwap handle race conditions.
There was a problem hiding this comment.
Correct me if I'm wrong but atomic will solve concurrent access but not an ordering error where the calls are not guaranteed to always be in the same order?
There was a problem hiding this comment.
Yes, you're absolutely right that atomic is focused on handling concurrent access. It's the CompareAndSwap that helps us here. On Start, we always update the value of our singleton to the new value. But on Stop, we only set it to nil if the value is still the old value. So depending on the order they run...
old.Stop() // this will update tsapp to nil
new.Start() // this will update tsapp to new
new.Start() // this will update tsapp to new
old.Stop() // this won't do anything because tsapp no longer points to old, which is what CompareAndSwap checks forIn the case of the new caddy config not having a tailscale config at all, then only old.Stop() gets called, which will set tsapp to nil and free up the memory.
There was a problem hiding this comment.
Got it. Thanks for the explanation!
app.go
Outdated
| } | ||
|
|
||
| func (t *TSApp) Provision(ctx caddy.Context) error { | ||
| for _, svr := range t.Servers { |
There was a problem hiding this comment.
I don't think this is doing anything. Ranging over the t.Servers map is returning copies of the servers, so the changes aren't being stored back. You would need to assign the updated svr value back to the t.Servers map. But you don't really need this at all, since you check the default values in the getAuthKey and getEphemeral funcs.
So I think you can just remove the for loop entirely.
There was a problem hiding this comment.
I had this to try to make the usage pool for the app easier before I threw it out and never came back to update this here
Thanks!
Signed-off-by: Will Norris <will@tailscale.com>
|
Thanks for your review help @mholt ! |
|
I feel like I dropped the ball on this one, been very busy with the 2.8 release and such. But you both did a great job! |
|
I'm late to the party but I guess now we can more easily add the functionality requested in #22 and #18? Giving the ability to use a hosted login server for tailscale |
Yes, that was exactly my thought as well! We now have an obvious place to set these things. We won't add support for any new Tailscale-specific environment variables, since you can just use caddy's built-in support for env vars. |
Interesting. How does it works? I didn't really understood how to do that. I can help to improve the documentation if you can direct me into the right direction :) |
|
Like placeholders? |
As described in #24, this PR creates a new Caddy module registering a global configuration
option and a module fulfilling the required interface. This is an initial implementation using a
global
caddy.UsagePoolto share the configuration between the application parsed from thecaddyfile and the standalone listener functions. This will also fallback to the environment if the
configuration wasn't parsed from the Caddyfile.
In the future this can support ephemeral servers by marking the servers as ephemeral based
on the Caddy config and then stopping them in the
Stopfunction.