package headscale import ( "encoding/json" "fmt" "log" "sort" "strconv" "time" "github.com/jinzhu/gorm/dialects/postgres" "inet.af/netaddr" "tailscale.com/tailcfg" "tailscale.com/wgengine/wgcfg" ) // Machine is a Headscale client type Machine struct { ID uint64 `gorm:"primary_key"` MachineKey string `gorm:"type:varchar(64);unique_index"` NodeKey string DiscoKey string IPAddress string Name string Registered bool // temp LastSeen *time.Time Expiry *time.Time HostInfo postgres.Jsonb Endpoints postgres.Jsonb CreatedAt time.Time UpdatedAt time.Time DeletedAt *time.Time } // For the time being this method is rather naive func (m Machine) isAlreadyRegistered() bool { return m.Registered } func (m Machine) toNode() (*tailcfg.Node, error) { nKey, err := wgcfg.ParseHexKey(m.NodeKey) if err != nil { return nil, err } mKey, err := wgcfg.ParseHexKey(m.MachineKey) if err != nil { return nil, err } var discoKey tailcfg.DiscoKey if m.DiscoKey != "" { dKey, err := wgcfg.ParseHexKey(m.DiscoKey) if err != nil { return nil, err } discoKey = tailcfg.DiscoKey(dKey) } else { discoKey = tailcfg.DiscoKey{} } addrs := []netaddr.IPPrefix{} allowedIPs := []netaddr.IPPrefix{} ip, err := netaddr.ParseIPPrefix(fmt.Sprintf("%s/32", m.IPAddress)) if err != nil { return nil, err } addrs = append(addrs, ip) // missing the ipv6 ? allowedIPs = append(allowedIPs, ip) // looks like the client expect this endpoints := []string{} if len(m.Endpoints.RawMessage) != 0 { be, err := m.Endpoints.MarshalJSON() if err != nil { return nil, err } err = json.Unmarshal(be, &endpoints) if err != nil { return nil, err } } hostinfo := tailcfg.Hostinfo{} if len(m.HostInfo.RawMessage) != 0 { hi, err := m.HostInfo.MarshalJSON() if err != nil { return nil, err } err = json.Unmarshal(hi, &hostinfo) if err != nil { return nil, err } } n := tailcfg.Node{ ID: tailcfg.NodeID(m.ID), // this is the actual ID StableID: tailcfg.StableNodeID(strconv.FormatUint(m.ID, 10)), // in headscale, unlike tailcontrol server, IDs are permantent Name: hostinfo.Hostname, User: 1, Key: tailcfg.NodeKey(nKey), KeyExpiry: *m.Expiry, Machine: tailcfg.MachineKey(mKey), DiscoKey: discoKey, Addresses: addrs, AllowedIPs: allowedIPs, Endpoints: endpoints, // DERP: "127.3.3.40:4", // wtf? Hostinfo: hostinfo, Created: m.CreatedAt, LastSeen: m.LastSeen, KeepAlive: true, MachineAuthorized: m.Registered, } // n.Key.MarshalText() return &n, nil } func (h *Headscale) getPeers(m Machine) (*[]*tailcfg.Node, error) { db, err := h.db() if err != nil { log.Printf("Cannot open DB: %s", err) return nil, err } defer db.Close() // Add user management here machines := []Machine{} if err = db.Where("machine_key <> ? AND registered", m.MachineKey).Find(&machines).Error; err != nil { log.Printf("Error accessing db: %s", err) return nil, err } peers := []*tailcfg.Node{} for _, mn := range machines { peer, err := mn.toNode() if err != nil { return nil, err } peers = append(peers, peer) } sort.Slice(peers, func(i, j int) bool { return peers[i].ID < peers[j].ID }) return &peers, nil }