Merge branch 'dev' of github.com:fosrl/olm into dev

Former-commit-id: 1c21071ee1
2026-02-15 01:16:41 +00:00 · 2026-01-15 16:37:09 -08:00
parent 2ab9790588 4b6999e06a
commit ea4a63c9b3
4 changed files with 100 additions and 39 deletions
--- a/olm/olm.go
+++ b/olm/olm.go
@@ -7,6 +7,7 @@ import (
 	"net/http"
 	_ "net/http/pprof"
 	"os"
+	"sync"
 	"time"

 	"github.com/fosrl/newt/bind"
@@ -51,6 +52,11 @@ type Olm struct {
 	olmConfig    OlmConfig
 	tunnelConfig TunnelConfig

+	// Metadata to send alongside pings
+	fingerprint map[string]any
+	postures    map[string]any
+	metaMu      sync.Mutex
+
 	stopRegister   func()
 	stopPeerSend   func()
 	updateRegister func(newData any)
@@ -229,6 +235,20 @@ func (o *Olm) registerAPICallbacks() {
 			logger.Info("Received switch organization request via HTTP: orgID=%s", req.OrgID)
 			return o.SwitchOrg(req.OrgID)
 		},
+		// onMetadataChange
+		func(req api.MetadataChangeRequest) error {
+			logger.Info("Received change metadata request via API")
+
+			if req.Fingerprint != nil {
+				o.SetFingerprint(req.Fingerprint)
+			}
+
+			if req.Postures != nil {
+				o.SetPostures(req.Postures)
+			}
+
+			return nil
+		},
 		// onDisconnect
 		func() error {
 			logger.Info("Processing disconnect request via API")
@@ -336,12 +356,14 @@ func (o *Olm) StartTunnel(config TunnelConfig) {
 		if o.stopRegister == nil {
 			logger.Debug("Sending registration message to server with public key: %s and relay: %v", publicKey, !config.Holepunch)
 			o.stopRegister, o.updateRegister = olmClient.SendMessageInterval("olm/wg/register", map[string]any{
-				"publicKey":  publicKey.String(),
-				"relay":      !config.Holepunch,
-				"olmVersion": o.olmConfig.Version,
-				"olmAgent":   o.olmConfig.Agent,
-				"orgId":      config.OrgID,
-				"userToken":  userToken,
+				"publicKey":   publicKey.String(),
+				"relay":       !config.Holepunch,
+				"olmVersion":  o.olmConfig.Version,
+				"olmAgent":    o.olmConfig.Agent,
+				"orgId":       config.OrgID,
+				"userToken":   userToken,
+				"fingerprint": o.fingerprint,
+				"postures":    o.postures,
 			}, 1*time.Second)

 			// Invoke onRegistered callback if configured
@@ -404,6 +426,19 @@ func (o *Olm) StartTunnel(config TunnelConfig) {
 		}
 	})

+	fingerprint := config.InitialFingerprint
+	if fingerprint == nil {
+		fingerprint = make(map[string]any)
+	}
+
+	postures := config.InitialPostures
+	if postures == nil {
+		postures = make(map[string]any)
+	}
+
+	o.SetFingerprint(fingerprint)
+	o.SetPostures(postures)
+
 	// Connect to the WebSocket server
 	if err := olmClient.Connect(); err != nil {
 		logger.Error("Failed to connect to server: %v", err)
@@ -577,28 +612,16 @@ func (o *Olm) SwitchOrg(orgID string) error {
 	return nil
 }

-func (o *Olm) AddDevice(fd uint32) error {
-	if o.middleDev == nil {
-		return fmt.Errorf("middle device is not initialized")
-	}
+func (o *Olm) SetFingerprint(data map[string]any) {
+	o.metaMu.Lock()
+	defer o.metaMu.Unlock()

-	if o.tunnelConfig.MTU == 0 {
-		return fmt.Errorf("tunnel MTU is not set")
-	}
-
-	tdev, err := olmDevice.CreateTUNFromFD(fd, o.tunnelConfig.MTU)
-	if err != nil {
-		return fmt.Errorf("failed to create TUN device from fd: %v", err)
-	}
-
-	// Update interface name if available
-	if realInterfaceName, err2 := tdev.Name(); err2 == nil {
-		o.tunnelConfig.InterfaceName = realInterfaceName
-	}
-
-	// Replace the existing TUN device in the middle device with the new one
-	o.middleDev.AddDevice(tdev)
-
-	logger.Info("Added device from file descriptor %d", fd)
-	return nil
+	o.fingerprint = data
+}
+
+func (o *Olm) SetPostures(data map[string]any) {
+	o.metaMu.Lock()
+	defer o.metaMu.Unlock()
+
+	o.postures = data
 }
--- a/olm/ping.go
+++ b/olm/ping.go
@@ -8,11 +8,12 @@ import (
 	"github.com/fosrl/olm/websocket"
 )

-func sendPing(olm *websocket.Client) error {
-	logger.Debug("Sending ping message")
+func (o *Olm) sendPing(olm *websocket.Client) error {
 	err := olm.SendMessage("olm/ping", map[string]any{
-		"timestamp": time.Now().Unix(),
-		"userToken": olm.GetConfig().UserToken,
+		"timestamp":   time.Now().Unix(),
+		"userToken":   olm.GetConfig().UserToken,
+		"fingerprint": o.fingerprint,
+		"postures":    o.postures,
 	})
 	if err != nil {
 		logger.Error("Failed to send ping message: %v", err)
@@ -24,7 +25,7 @@ func sendPing(olm *websocket.Client) error {

 func (o *Olm) keepSendingPing(olm *websocket.Client) {
 	// Send ping immediately on startup
-	if err := sendPing(olm); err != nil {
+	if err := o.sendPing(olm); err != nil {
 		logger.Error("Failed to send initial ping: %v", err)
 	} else {
 		logger.Info("Sent initial ping message")
@@ -40,7 +41,7 @@ func (o *Olm) keepSendingPing(olm *websocket.Client) {
 			logger.Info("Stopping ping messages")
 			return
 		case <-ticker.C:
-			if err := sendPing(olm); err != nil {
+			if err := o.sendPing(olm); err != nil {
 				logger.Error("Failed to send periodic ping: %v", err)
 			}
 		}
--- a/olm/types.go
+++ b/olm/types.go
@@ -67,5 +67,8 @@ type TunnelConfig struct {
 	OverrideDNS bool
 	TunnelDNS   bool

+	InitialFingerprint map[string]any
+	InitialPostures    map[string]any
+
 	DisableRelay bool
 }