[client,signal,management] Add browser client support (#4415)

2026-04-18 08:16:39 +00:00 · 2025-10-01 20:10:11 +02:00
parent 5e1a40c33f
commit b5daec3b51
107 changed files with 3591 additions and 284 deletions
--- a/client/iface/wgproxy/bind/proxy.go
+++ b/client/iface/wgproxy/bind/proxy.go
@@ -16,15 +16,14 @@ import (
 	"github.com/netbirdio/netbird/client/iface/wgproxy/listener"
 )

-type IceBind interface {
-	SetEndpoint(fakeIP netip.Addr, conn net.Conn)
-	RemoveEndpoint(fakeIP netip.Addr)
-	Recv(ctx context.Context, msg bind.RecvMessage)
-	MTU() uint16
+type Bind interface {
+	SetEndpoint(addr netip.Addr, conn net.Conn)
+	RemoveEndpoint(addr netip.Addr)
+	ReceiveFromEndpoint(ctx context.Context, ep *bind.Endpoint, buf []byte)
 }

 type ProxyBind struct {
-	bind IceBind
+	bind Bind

 	// wgRelayedEndpoint is a fake address that generated by the Bind.SetEndpoint based on the remote NetBird peer address
 	wgRelayedEndpoint *bind.Endpoint
@@ -40,13 +39,15 @@ type ProxyBind struct {
 	isStarted  bool

 	closeListener *listener.CloseListener
+	mtu           uint16
 }

-func NewProxyBind(bind IceBind) *ProxyBind {
+func NewProxyBind(bind Bind, mtu uint16) *ProxyBind {
 	p := &ProxyBind{
 		bind:          bind,
 		closeListener: listener.NewCloseListener(),
 		pausedCond:    sync.NewCond(&sync.Mutex{}),
+		mtu:           mtu + bufsize.WGBufferOverhead,
 	}

 	return p
@@ -174,7 +175,7 @@ func (p *ProxyBind) proxyToLocal(ctx context.Context) {
 	}()

 	for {
-		buf := make([]byte, p.bind.MTU()+bufsize.WGBufferOverhead)
+		buf := make([]byte, p.mtu)
 		n, err := p.remoteConn.Read(buf)
 		if err != nil {
 			if ctx.Err() != nil {
@@ -190,11 +191,7 @@ func (p *ProxyBind) proxyToLocal(ctx context.Context) {
 			p.pausedCond.Wait()
 		}

-		msg := bind.RecvMessage{
-			Endpoint: p.wgCurrentUsed,
-			Buffer:   buf[:n],
-		}
-		p.bind.Recv(ctx, msg)
+		p.bind.ReceiveFromEndpoint(ctx, p.wgCurrentUsed, buf[:n])
 		p.pausedCond.L.Unlock()
 	}
 }
--- a/client/iface/wgproxy/factory_usp.go
+++ b/client/iface/wgproxy/factory_usp.go
@@ -3,24 +3,25 @@ package wgproxy
 import (
 	log "github.com/sirupsen/logrus"

-	"github.com/netbirdio/netbird/client/iface/bind"
 	proxyBind "github.com/netbirdio/netbird/client/iface/wgproxy/bind"
 )

 type USPFactory struct {
-	bind *bind.ICEBind
+	bind proxyBind.Bind
+	mtu  uint16
 }

-func NewUSPFactory(iceBind *bind.ICEBind) *USPFactory {
+func NewUSPFactory(bind proxyBind.Bind, mtu uint16) *USPFactory {
 	log.Infof("WireGuard Proxy Factory will produce bind proxy")
 	f := &USPFactory{
-		bind: iceBind,
+		bind: bind,
+		mtu:  mtu,
 	}
 	return f
 }

 func (w *USPFactory) GetProxy() Proxy {
-	return proxyBind.NewProxyBind(w.bind)
+	return proxyBind.NewProxyBind(w.bind, w.mtu)
 }

 func (w *USPFactory) Free() error {
--- a/client/iface/wgproxy/proxy_linux_test.go
+++ b/client/iface/wgproxy/proxy_linux_test.go
@@ -74,7 +74,7 @@ func seedProxyForProxyCloseByRemoteConn() ([]proxyInstance, error) {

 	pBind := proxyInstance{
 		name:         "bind proxy",
-		proxy:        bindproxy.NewProxyBind(iceBind),
+		proxy:        bindproxy.NewProxyBind(iceBind, 0),
 		endpointAddr: endpointAddress,
 		closeFn:      func() error { return nil },
 	}
--- a/client/iface/wgproxy/proxy_seed_test.go
+++ b/client/iface/wgproxy/proxy_seed_test.go
@@ -30,7 +30,7 @@ func seedProxyForProxyCloseByRemoteConn() ([]proxyInstance, error) {

 	pBind := proxyInstance{
 		name:         "bind proxy",
-		proxy:        bindproxy.NewProxyBind(iceBind),
+		proxy:        bindproxy.NewProxyBind(iceBind, 0),
 		endpointAddr: endpointAddress,
 		closeFn:      func() error { return nil },
 	}