shishantbiswas/coder
1
0
Fork 0
mirror of https://github.com/coder/coder.git synced 2026-06-02 20:48:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
bddb808b25f9c2ae2a9beb83d1a6574e1828af94
coder/agent/boundarylogproxy/proxy.go
T
Spike Curtis bddb808b25 chore: arrange imports in a standard way (#21452) 
Fixes all our Go file imports to match the preferred spec that we've _mostly_ been using. For example:

```
import (
	"context"
	"time"

	"github.com/prometheus/client_golang/prometheus"
	"golang.org/x/xerrors"
	"gopkg.in/natefinch/lumberjack.v2"

	"cdr.dev/slog/v3"
	"github.com/coder/coder/v2/codersdk/agentsdk"
	"github.com/coder/serpent"
)
```

3 groups: standard library, 3rd partly libs, Coder libs.

This PR makes the change across the codebase. The PR in the stack above modifies our formatting to maintain this state of affairs, and is a separate PR so it's possible to review that one in detail.
2026-01-08 15:24:11 +04:00

206 lines
5.1 KiB
Go
Raw Blame History

// Package boundarylogproxy provides a Unix socket server that receives boundary
// audit logs and forwards them to coderd via the agent API.
package boundarylogproxy
import (
"context"
"errors"
"io"
"net"
"os"
"path/filepath"
"sync"
"golang.org/x/xerrors"
"google.golang.org/protobuf/proto"
"cdr.dev/slog/v3"
"github.com/coder/coder/v2/agent/boundarylogproxy/codec"
agentproto "github.com/coder/coder/v2/agent/proto"
)
const (
// logBufferSize is the size of the channel buffer for incoming log requests
// from workspaces. This buffer size is intended to handle short bursts of workspaces
// forwarding batches of logs in parallel.
logBufferSize = 100
)
// DefaultSocketPath returns the default path for the boundary audit log socket.
func DefaultSocketPath() string {
return filepath.Join(os.TempDir(), "boundary-audit.sock")
}
// Reporter reports boundary logs from workspaces.
type Reporter interface {
ReportBoundaryLogs(ctx context.Context, req *agentproto.ReportBoundaryLogsRequest) (*agentproto.ReportBoundaryLogsResponse, error)
}
// Server listens on a Unix socket for boundary log messages and buffers them
// for forwarding to coderd. The socket server and the forwarder are decoupled:
// - Start() creates the socket and accepts a connection from boundary
// - RunForwarder() drains the buffer and sends logs to coderd via AgentAPI
type Server struct {
logger slog.Logger
socketPath string
listener net.Listener
cancel context.CancelFunc
wg sync.WaitGroup
// logs buffers incoming log requests for the forwarder to drain.
logs chan *agentproto.ReportBoundaryLogsRequest
}
// NewServer creates a new boundary log proxy server.
func NewServer(logger slog.Logger, socketPath string) *Server {
return &Server{
logger: logger.Named("boundary-log-proxy"),
socketPath: socketPath,
logs: make(chan *agentproto.ReportBoundaryLogsRequest, logBufferSize),
}
}
// Start begins listening for connections on the Unix socket, and handles new
// connections in a separate goroutine. Incoming logs from connections are
// buffered until RunForwarder drains them.
func (s *Server) Start() error {
if err := os.Remove(s.socketPath); err != nil && !os.IsNotExist(err) {
return xerrors.Errorf("remove existing socket: %w", err)
}
listener, err := net.Listen("unix", s.socketPath)
if err != nil {
return xerrors.Errorf("listen on socket: %w", err)
}
s.listener = listener
ctx, cancel := context.WithCancel(context.Background())
s.cancel = cancel
s.wg.Add(1)
go s.acceptLoop(ctx)
s.logger.Info(ctx, "boundary log proxy started", slog.F("socket_path", s.socketPath))
return nil
}
// RunForwarder drains the log buffer and forwards logs to coderd.
// It blocks until ctx is canceled.
func (s *Server) RunForwarder(ctx context.Context, sender Reporter) error {
s.logger.Debug(ctx, "boundary log forwarder started")
for {
select {
case <-ctx.Done():
return ctx.Err()
case req := <-s.logs:
_, err := sender.ReportBoundaryLogs(ctx, req)
if err != nil {
s.logger.Warn(ctx, "failed to forward boundary logs",
slog.Error(err),
slog.F("log_count", len(req.Logs)))
// Continue forwarding other logs. The current batch is lost,
// but the socket stays alive.
}
}
}
}
func (s *Server) acceptLoop(ctx context.Context) {
defer s.wg.Done()
for {
conn, err := s.listener.Accept()
if err != nil {
if ctx.Err() != nil {
s.logger.Warn(ctx, "accept loop terminated", slog.Error(ctx.Err()))
return
}
s.logger.Warn(ctx, "socket accept error", slog.Error(err))
continue
}
s.wg.Add(1)
go s.handleConnection(ctx, conn)
}
}
func (s *Server) handleConnection(ctx context.Context, conn net.Conn) {
defer s.wg.Done()
ctx, cancel := context.WithCancel(ctx)
defer cancel()
s.wg.Add(1)
go func() {
defer s.wg.Done()
<-ctx.Done()
_ = conn.Close()
}()
// This is intended to be a sane starting point for the read buffer size. It may be
// grown by codec.ReadFrame if necessary.
const initBufSize = 1 << 10
buf := make([]byte, initBufSize)
for {
select {
case <-ctx.Done():
return
default:
}
var (
tag codec.Tag
err error
)
tag, buf, err = codec.ReadFrame(conn, buf)
switch {
case errors.Is(err, io.EOF) || errors.Is(err, net.ErrClosed):
return
case err != nil:
s.logger.Warn(ctx, "read frame error", slog.Error(err))
return
}
if tag != codec.TagV1 {
s.logger.Warn(ctx, "invalid tag value", slog.F("tag", tag))
return
}
var req agentproto.ReportBoundaryLogsRequest
if err := proto.Unmarshal(buf, &req); err != nil {
s.logger.Warn(ctx, "proto unmarshal error", slog.Error(err))
continue
}
select {
case s.logs <- &req:
default:
s.logger.Warn(ctx, "dropping boundary logs, buffer full",
slog.F("log_count", len(req.Logs)))
}
}
}
// Close stops the server and blocks until resources have been cleaned up.
// It must be called after Start.
func (s *Server) Close() error {
if s.cancel != nil {
s.cancel()
}
if s.listener != nil {
_ = s.listener.Close()
}
s.wg.Wait()
err := os.Remove(s.socketPath)
if err != nil && !errors.Is(err, os.ErrNotExist) {
return err
}
return nil
}
Reference in New Issue View Git Blame Copy Permalink