Commit15f2bcc

coadler

and

ethanndickson

authored

feat: add XPC communication to Network Extension (#29)

Co-authored-by: Ethan Dickson <ethan@coder.com>

1 parentf3123f1 commit15f2bccCopy full SHA for 15f2bcc

File tree

12 files changed

+350

-65

lines changed

Coder Desktop
- Coder Desktop
- VPN
- VPNXPC
  - Protocol.swift
  - VPNXPC.h
- project.yml

12 files changed

+350

-65

lines changed

`‎Coder Desktop/Coder Desktop/Coder_Desktop.entitlements`

Lines changed: 4 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -10,6 +10,10 @@`
`10`	`10`	`<true/>`
`11`	`11`	`<key>com.apple.security.app-sandbox</key>`
`12`	`12`	`<true/>`
	`13`	`+<key>com.apple.security.application-groups</key>`
	`14`	`+<array>`
	`15`	`+<string>$(TeamIdentifierPrefix)com.coder.Coder-Desktop</string>`
	`16`	`+</array>`
`13`	`17`	`<key>com.apple.security.files.user-selected.read-only</key>`
`14`	`18`	`<true/>`
`15`	`19`	`<key>com.apple.security.network.client</key>`

`‎Coder Desktop/Coder Desktop/Coder_DesktopApp.swift`

Lines changed: 1 addition & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -49,8 +49,7 @@ class AppDelegate: NSObject, NSApplicationDelegate {`
`49`	`49`
`50`	`50`	`func applicationShouldTerminate(_:NSApplication)->NSApplication.TerminateReply{`
`51`	`51`	`Task{`
`52`		`-await vpn.stop()`
`53`		`-NSApp.reply(toApplicationShouldTerminate:true)`
	`52`	`+await vpn.quit()`
`54`	`53`	`}`
`55`	`54`	`return.terminateLater`
`56`	`55`	`}`

`‎Coder Desktop/Coder Desktop/Info.plist`

Lines changed: 11 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,11 @@`
	`1`	`+<?xml version="1.0" encoding="UTF-8"?>`
	`2`	`+<!DOCTYPEplist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">`
	`3`	`+<plistversion="1.0">`
	`4`	`+<dict>`
	`5`	`+<key>NetworkExtension</key>`
	`6`	`+<dict>`
	`7`	`+<key>NEMachServiceName</key>`
	`8`	`+<string>$(TeamIdentifierPrefix)com.coder.Coder-Desktop.VPN</string>`
	`9`	`+</dict>`
	`10`	`+</dict>`
	`11`	`+</plist>`

`‎Coder Desktop/Coder Desktop/VPNService.swift`

Lines changed: 61 additions & 28 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,8 @@`
`1`	`1`	`import NetworkExtension`
`2`	`2`	`import os`
`3`	`3`	`import SwiftUI`
	`4`	`+import VPNLib`
	`5`	`+import VPNXPC`
`4`	`6`
`5`	`7`	`@MainActor`
`6`	`8`	`protocolVPNService:ObservableObject{`
`@@ -43,6 +45,9 @@ enum VPNServiceError: Error, Equatable {`
`43`	`45`	`@MainActor`
`44`	`46`	`finalclassCoderVPNService:NSObject,VPNService{`
`45`	`47`	`varlogger=Logger(subsystem:Bundle.main.bundleIdentifier!, category:"vpn")`
	`48`	`+ lazyvarxpc:VPNXPCInterface=.init(vpn:self)`
	`49`	`+varterminating=false`
	`50`	`+`
`46`	`51`	`@PublishedvartunnelState:VPNServiceState=.disabled`
`47`	`52`	`@PublishedvarsysExtnState:SystemExtensionState=.uninstalled`
`48`	`53`	`@PublishedvarneState:NetworkExtensionState=.unconfigured`
`@@ -71,46 +76,45 @@ final class CoderVPNService: NSObject, VPNService {`
`71`	`76`	`}`
`72`	`77`	`}`
`73`	`78`
`74`		`-varstartTask:Task<Void,Never>?`
`75`	`79`	`func start()async{`
`76`		`- ifawait startTask?.value!=nil{`
	`80`	`+switch tunnelState{`
	`81`	`+case.disabled,.failed:`
	`82`	`+break`
	`83`	`+default:`
`77`	`84`	`return`
`78`	`85`	`}`
`79`		`- startTask=Task{`
`80`		`- tunnelState=.connecting`
`81`		`-awaitenableNetworkExtension()`
`82`	`86`
`83`		`- // TODO: enable communication with the NetworkExtension to track state and agents. For`
`84`		`- // now, just pretend it worked...`
`85`		`- tunnelState=.connected`
`86`		`-}`
`87`		`- defer{ startTask=nil}`
`88`		`- await startTask?.value`
	`87`	`+ // this ping is somewhat load bearing since it causes xpc to init`
	`88`	`+ xpc.ping()`
	`89`	`+ tunnelState=.connecting`
	`90`	`+awaitenableNetworkExtension()`
	`91`	`+ logger.debug("network extension enabled")`
`89`	`92`	`}`
`90`	`93`
`91`		`-var stopTask: Task<Void, Never>?`
`92`	`94`	`func stop()async{`
`93`		`- // Wait for a start operation to finish first`
`94`		`-await startTask?.value`
`95`		`-guard state==.connectedelse{return}`
`96`		`- ifawait stopTask?.value!=nil{`
`97`		`-return`
`98`		`-}`
`99`		`- stopTask=Task{`
`100`		`- tunnelState=.disconnecting`
`101`		`-awaitdisableNetworkExtension()`
	`95`	`+guard tunnelState==.connectedelse{return}`
	`96`	`+ tunnelState=.disconnecting`
	`97`	`+awaitdisableNetworkExtension()`
	`98`	`+ logger.info("network extension stopped")`
	`99`	`+}`
`102`	`100`
`103`		`- // TODO: determine when the NetworkExtension is completely disconnected`
`104`		`- tunnelState=.disabled`
	`101`	`+ // Instructs the service to stop the VPN and then quit once the stop event`
	`102`	`+ // is read over XPC.`
	`103`	+ // MUST only be called from `NSApplicationDelegate.applicationShouldTerminate`
	`104`	+ // MUST eventually call `NSApp.reply(toApplicationShouldTerminate: true)`
	`105`	`+func quit()async{`
	`106`	`+guard tunnelState==.connectedelse{`
	`107`	`+NSApp.reply(toApplicationShouldTerminate:true)`
	`108`	`+return`
`105`	`109`	`}`
`106`		`-defer{ stopTask=nil}`
`107`		`- awaitstopTask?.value`
	`110`	`+terminating=true`
	`111`	`+awaitstop()`
`108`	`112`	`}`
`109`	`113`
`110`	`114`	`func configureTunnelProviderProtocol(proto:NETunnelProviderProtocol?){`
`111`	`115`	`Task{`
`112`		`-ifproto!=nil{`
`113`		`-awaitconfigureNetworkExtension(proto: proto!)`
	`116`	`+iflet proto{`
	`117`	`+awaitconfigureNetworkExtension(proto: proto)`
`114`	`118`	`// this just configures the VPN, it doesn't enable it`
`115`	`119`	`tunnelState=.disabled`
`116`	`120`	`}else{`
`@@ -119,10 +123,39 @@ final class CoderVPNService: NSObject, VPNService {`
`119`	`123`	`neState=.unconfigured`
`120`	`124`	`tunnelState=.disabled`
`121`	`125`	`}catch{`
`122`		`- logger.error("failed toremoing network extension:\(error)")`
	`126`	`+ logger.error("failed toremove network extension:\(error)")`
`123`	`127`	`neState=.failed(error.localizedDescription)`
`124`	`128`	`}`
`125`	`129`	`}`
`126`	`130`	`}`
`127`	`131`	`}`
	`132`	`+`
	`133`	`+func onExtensionPeerUpdate(_ data:Data){`
	`134`	`+ // TODO: handle peer update`
	`135`	`+ logger.info("network extension peer update")`
	`136`	`+do{`
	`137`	`+letmsg=tryVpn_TunnelMessage(serializedBytes: data)`
	`138`	`+debugPrint(msg)`
	`139`	`+}catch{`
	`140`	`+ logger.error("failed to decode peer update\(error)")`
	`141`	`+}`
	`142`	`+}`
	`143`	`+`
	`144`	`+func onExtensionStart(){`
	`145`	`+ logger.info("network extension reported started")`
	`146`	`+ tunnelState=.connected`
	`147`	`+}`
	`148`	`+`
	`149`	`+func onExtensionStop(){`
	`150`	`+ logger.info("network extension reported stopped")`
	`151`	`+ tunnelState=.disabled`
	`152`	`+if terminating{`
	`153`	`+NSApp.reply(toApplicationShouldTerminate:true)`
	`154`	`+}`
	`155`	`+}`
	`156`	`+`
	`157`	`+func onExtensionError(_ error:NSError){`
	`158`	`+ logger.error("network extension reported error:\(error)")`
	`159`	`+ tunnelState=.failed(.internalError(error.localizedDescription))`
	`160`	`+}`
`128`	`161`	`}`

`‎Coder Desktop/Coder Desktop/XPCInterface.swift`

Lines changed: 70 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,70 @@`
	`1`	`+import Foundation`
	`2`	`+import os`
	`3`	`+import VPNXPC`
	`4`	`+`
	`5`	`+@objcfinalclassVPNXPCInterface:NSObject,VPNXPCClientCallbackProtocol,@uncheckedSendable{`
	`6`	`+privatevarsvc:CoderVPNService`
	`7`	`+privateletlogger=Logger(subsystem:Bundle.main.bundleIdentifier!, category:"VPNXPCInterface")`
	`8`	`+privateletxpc:VPNXPCProtocol`
	`9`	`+`
	`10`	`+init(vpn:CoderVPNService){`
	`11`	`+ svc= vpn`
	`12`	`+`
	`13`	`+letnetworkExtDict=Bundle.main.object(forInfoDictionaryKey:"NetworkExtension")as?[String:Any]`
	`14`	`+letmachServiceName=networkExtDict?["NEMachServiceName"]as?String`
	`15`	`+letxpcConn=NSXPCConnection(machServiceName: machServiceName!)`
	`16`	`+ xpcConn.remoteObjectInterface=NSXPCInterface(with:VPNXPCProtocol.self)`
	`17`	`+ xpcConn.exportedInterface=NSXPCInterface(with:VPNXPCClientCallbackProtocol.self)`
	`18`	`+guardlet proxy= xpcConn.remoteObjectProxyas?VPNXPCProtocolelse{`
	`19`	`+fatalError("invalid xpc cast")`
	`20`	`+}`
	`21`	`+ xpc= proxy`
	`22`	`+`
	`23`	`+ super.init()`
	`24`	`+`
	`25`	`+ xpcConn.exportedObject=self`
	`26`	`+ xpcConn.invalidationHandler={[logger]in`
	`27`	`+Task{@MainActorin`
	`28`	`+ logger.error("XPC connection invalidated.")`
	`29`	`+}`
	`30`	`+}`
	`31`	`+ xpcConn.interruptionHandler={[logger]in`
	`32`	`+Task{@MainActorin`
	`33`	`+ logger.error("XPC connection interrupted.")`
	`34`	`+}`
	`35`	`+}`
	`36`	`+ xpcConn.resume()`
	`37`	`+}`
	`38`	`+`
	`39`	`+func ping(){`
	`40`	`+ xpc.ping{`
	`41`	`+Task{@MainActorin`
	`42`	`+self.logger.info("Connected to NE over XPC")`
	`43`	`+}`
	`44`	`+}`
	`45`	`+}`
	`46`	`+`
	`47`	`+func onPeerUpdate(_ data:Data){`
	`48`	`+Task{@MainActorin`
	`49`	`+ svc.onExtensionPeerUpdate(data)`
	`50`	`+}`
	`51`	`+}`
	`52`	`+`
	`53`	`+func onStart(){`
	`54`	`+Task{@MainActorin`
	`55`	`+ svc.onExtensionStart()`
	`56`	`+}`
	`57`	`+}`
	`58`	`+`
	`59`	`+func onStop(){`
	`60`	`+Task{@MainActorin`
	`61`	`+ svc.onExtensionStop()`
	`62`	`+}`
	`63`	`+}`
	`64`	`+`
	`65`	`+func onError(_ err:NSError){`
	`66`	`+Task{@MainActorin`
	`67`	`+ svc.onExtensionError(err)`
	`68`	`+}`
	`69`	`+}`
	`70`	`+}`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit15f2bcc

File tree

12 files changed

12 files changed

`‎Coder Desktop/Coder Desktop/Coder_Desktop.entitlements`

`‎Coder Desktop/Coder Desktop/Coder_DesktopApp.swift`

`‎Coder Desktop/Coder Desktop/Info.plist`

`‎Coder Desktop/Coder Desktop/VPNService.swift`

`‎Coder Desktop/Coder Desktop/XPCInterface.swift`

0 commit comments