99"net"
1010"net/url"
1111"sync"
12+ "sync/atomic"
1213"time"
1314
1415"github.com/hashicorp/yamux"
@@ -61,6 +62,8 @@ func Listen(ctx context.Context, log slog.Logger, broker string, turnProxyAuthTo
6162for {
6263err := <- ch
6364if errors .Is (err ,io .EOF )|| errors .Is (err ,yamux .ErrKeepAliveTimeout ) {
65+ l .log .Warn (ctx ,"disconnected from broker" ,slog .Error (err ))
66+
6467// If we hit an EOF, then the connection to the broker
6568// was interrupted. We'll take a short break then dial
6669// again.
@@ -97,12 +100,16 @@ type listener struct {
97100ws * websocket.Conn
98101connClosers []io.Closer
99102connClosersMut sync.Mutex
103+
104+ nextConnNumber int64
100105}
101106
102107func (l * listener )dial (ctx context.Context ) (<- chan error ,error ) {
108+ l .log .Info (ctx ,"connecting to broker" ,slog .F ("broker_url" ,l .broker ))
103109if l .ws != nil {
104110_ = l .ws .Close (websocket .StatusNormalClosure ,"new connection inbound" )
105111}
112+
106113conn ,resp ,err := websocket .Dial (ctx ,l .broker ,nil )
107114if err != nil {
108115if resp != nil {
@@ -111,13 +118,16 @@ func (l *listener) dial(ctx context.Context) (<-chan error, error) {
111118return nil ,err
112119}
113120l .ws = conn
121+
114122nconn := websocket .NetConn (ctx ,conn ,websocket .MessageBinary )
115123config := yamux .DefaultConfig ()
116124config .LogOutput = io .Discard
117125session ,err := yamux .Server (nconn ,config )
118126if err != nil {
119127return nil ,fmt .Errorf ("create multiplex: %w" ,err )
120128}
129+
130+ l .log .Info (ctx ,"broker connection established" )
121131errCh := make (chan error )
122132go func () {
123133defer close (errCh )
@@ -127,19 +137,21 @@ func (l *listener) dial(ctx context.Context) (<-chan error, error) {
127137errCh <- err
128138break
129139}
130- go l .negotiate (conn )
140+ go l .negotiate (ctx , conn )
131141}
132142}()
143+
133144return errCh ,nil
134145}
135146
136147// Negotiates the handshake protocol over the connection provided.
137148// This functions control-flow is important to readability,
138149// so the cognitive overload linter has been disabled.
139150// nolint:gocognit,nestif
140- func (l * listener )negotiate (conn net.Conn ) {
151+ func (l * listener )negotiate (ctx context. Context , conn net.Conn ) {
141152var (
142153err error
154+ id = atomic .AddInt64 (& l .nextConnNumber ,1 )
143155decoder = json .NewDecoder (conn )
144156rtc * webrtc.PeerConnection
145157// If candidates are sent before an offer, we place them here.
@@ -149,6 +161,8 @@ func (l *listener) negotiate(conn net.Conn) {
149161// Sends the error provided then closes the connection.
150162// If RTC isn't connected, we'll close it.
151163closeError = func (err error ) {
164+ l .log .Warn (ctx ,"negotiation error, closing connection" ,slog .Error (err ))
165+
152166d ,_ := json .Marshal (& BrokerMessage {
153167Error :err .Error (),
154168})
@@ -163,13 +177,17 @@ func (l *listener) negotiate(conn net.Conn) {
163177}
164178)
165179
180+ ctx = slog .With (ctx ,slog .F ("conn_id" ,id ))
181+ l .log .Info (ctx ,"accepted new session from broker connection, negotiating" )
182+
166183for {
167184var msg BrokerMessage
168185err = decoder .Decode (& msg )
169186if err != nil {
170187closeError (err )
171188return
172189}
190+ l .log .Debug (ctx ,"received broker message" ,slog .F ("msg" ,msg ))
173191
174192if msg .Candidate != "" {
175193c := webrtc.ICECandidateInit {
@@ -181,6 +199,7 @@ func (l *listener) negotiate(conn net.Conn) {
181199continue
182200}
183201
202+ l .log .Debug (ctx ,"adding ICE candidate" ,slog .F ("c" ,c ))
184203err = rtc .AddICECandidate (c )
185204if err != nil {
186205closeError (fmt .Errorf ("accept ice candidate: %w" ,err ))
@@ -199,12 +218,15 @@ func (l *listener) negotiate(conn net.Conn) {
199218// so it will not validate.
200219continue
201220}
221+
222+ l .log .Debug (ctx ,"validating ICE server" ,slog .F ("s" ,server ))
202223err = DialICE (server ,nil )
203224if err != nil {
204225closeError (fmt .Errorf ("dial server %+v: %w" ,server .URLs ,err ))
205226return
206227}
207228}
229+
208230var turnProxy proxy.Dialer
209231if msg .TURNProxyURL != "" {
210232u ,err := url .Parse (msg .TURNProxyURL )
@@ -223,47 +245,58 @@ func (l *listener) negotiate(conn net.Conn) {
223245return
224246}
225247rtc .OnConnectionStateChange (func (pcs webrtc.PeerConnectionState ) {
248+ l .log .Debug (ctx ,"connection state change" ,slog .F ("state" ,pcs .String ()))
226249if pcs == webrtc .PeerConnectionStateConnecting {
227250return
228251}
229252_ = conn .Close ()
230253})
254+
231255flushCandidates := proxyICECandidates (rtc ,conn )
232256l .connClosersMut .Lock ()
233257l .connClosers = append (l .connClosers ,rtc )
234258l .connClosersMut .Unlock ()
235- rtc .OnDataChannel (l .handle (msg ))
259+ rtc .OnDataChannel (l .handle (ctx ,msg ))
260+
261+ l .log .Debug (ctx ,"set remote description" ,slog .F ("offer" ,* msg .Offer ))
236262err = rtc .SetRemoteDescription (* msg .Offer )
237263if err != nil {
238264closeError (fmt .Errorf ("apply offer: %w" ,err ))
239265return
240266}
267+
241268answer ,err := rtc .CreateAnswer (nil )
242269if err != nil {
243270closeError (fmt .Errorf ("create answer: %w" ,err ))
244271return
245272}
273+
274+ l .log .Debug (ctx ,"set local description" ,slog .F ("answer" ,answer ))
246275err = rtc .SetLocalDescription (answer )
247276if err != nil {
248277closeError (fmt .Errorf ("set local answer: %w" ,err ))
249278return
250279}
251280flushCandidates ()
252281
253- data , err := json . Marshal ( & BrokerMessage {
282+ bmsg := & BrokerMessage {
254283Answer :rtc .LocalDescription (),
255- })
284+ }
285+ data ,err := json .Marshal (bmsg )
256286if err != nil {
257287closeError (fmt .Errorf ("marshal: %w" ,err ))
258288return
259289}
290+
291+ l .log .Debug (ctx ,"writing message" ,slog .F ("msg" ,bmsg ))
260292_ ,err = conn .Write (data )
261293if err != nil {
262294closeError (fmt .Errorf ("write: %w" ,err ))
263295return
264296}
265297
266298for _ ,candidate := range pendingCandidates {
299+ l .log .Debug (ctx ,"adding pending ICE candidate" ,slog .F ("c" ,candidate ))
267300err = rtc .AddICECandidate (candidate )
268301if err != nil {
269302closeError (fmt .Errorf ("add pending candidate: %w" ,err ))
@@ -275,19 +308,25 @@ func (l *listener) negotiate(conn net.Conn) {
275308}
276309}
277310
278- func (l * listener )handle (msg BrokerMessage )func (dc * webrtc.DataChannel ) {
311+ // nolint:gocognit
312+ func (l * listener )handle (ctx context.Context ,msg BrokerMessage )func (dc * webrtc.DataChannel ) {
279313return func (dc * webrtc.DataChannel ) {
280314if dc .Protocol ()== controlChannel {
281315// The control channel handles pings.
282316dc .OnOpen (func () {
317+ l .log .Debug (ctx ,"control channel open" )
283318rw ,err := dc .Detach ()
284319if err != nil {
285320return
286321}
287322// We'll read and write back a single byte for ping/pongin'.
288323d := make ([]byte ,1 )
289324for {
325+ l .log .Debug (ctx ,"sending ping" )
290326_ ,err = rw .Read (d )
327+ if err != nil {
328+ l .log .Debug (ctx ,"reading ping response failed" ,slog .Error (err ))
329+ }
291330if errors .Is (err ,io .EOF ) {
292331return
293332}
@@ -300,25 +339,36 @@ func (l *listener) handle(msg BrokerMessage) func(dc *webrtc.DataChannel) {
300339return
301340}
302341
342+ ctx = slog .With (ctx ,
343+ slog .F ("dc_id" ,dc .ID ()),
344+ slog .F ("dc_label" ,dc .Label ()),
345+ slog .F ("dc_proto" ,dc .Protocol ()),
346+ )
347+
303348dc .OnOpen (func () {
349+ l .log .Info (ctx ,"data channel opened" )
304350rw ,err := dc .Detach ()
305351if err != nil {
306352return
307353}
308354
309355var init DialChannelResponse
310356sendInitMessage := func () {
357+ l .log .Debug (ctx ,"sending dc init message" ,slog .F ("msg" ,init ))
311358initData ,err := json .Marshal (& init )
312359if err != nil {
360+ l .log .Debug (ctx ,"failed to marshal dc init message" ,slog .Error (err ))
313361rw .Close ()
314362return
315363}
316364_ ,err = rw .Write (initData )
317365if err != nil {
366+ l .log .Debug (ctx ,"failed to write dc init message" ,slog .Error (err ))
318367return
319368}
320369if init .Err != "" {
321370// If an error occurred, we're safe to close the connection.
371+ l .log .Debug (ctx ,"closing data channel due to error" ,slog .F ("msg" ,init .Err ))
322372dc .Close ()
323373return
324374}
@@ -336,8 +386,10 @@ func (l *listener) handle(msg BrokerMessage) func(dc *webrtc.DataChannel) {
336386return
337387}
338388
389+ l .log .Debug (ctx ,"dialing remote address" ,slog .F ("network" ,network ),slog .F ("addr" ,addr ))
339390nc ,err := net .Dial (network ,addr )
340391if err != nil {
392+ l .log .Debug (ctx ,"failed to dial remote address" )
341393init .Code = CodeDialErr
342394init .Err = err .Error ()
343395if op ,ok := err .(* net.OpError );ok {
@@ -349,8 +401,10 @@ func (l *listener) handle(msg BrokerMessage) func(dc *webrtc.DataChannel) {
349401if init .Err != "" {
350402return
351403}
404+
352405// Must wrap the data channel inside this connection
353406// for buffering from the dialed endpoint to the client.
407+ l .log .Debug (ctx ,"data channel initialized, tunnelling" )
354408co := & dataChannelConn {
355409addr :nil ,
356410dc :dc ,
@@ -370,6 +424,8 @@ func (l *listener) handle(msg BrokerMessage) func(dc *webrtc.DataChannel) {
370424
371425// Close closes the broker socket and all created RTC connections.
372426func (l * listener )Close ()error {
427+ l .log .Info (context .Background (),"listener closed" )
428+
373429l .connClosersMut .Lock ()
374430for _ ,connCloser := range l .connClosers {
375431// We can ignore the error here... it doesn't