Details

Reviewers

ashoat
• jon
bartek
michal

Commits

rCOMM8f42e5423993: [Keyserver] Open websocket connection with tunnelbroker

Summary

Attempt to connect to tunnelbroker if available.
This is meant to be a "hello world" for establishing
a tunnelbroker connection.

https://linear.app/comm/issue/ENG-3766

Depends on D8476

Test Plan

(cd services/tunnelbroker && cargo run &)
# should see message about db migration, then tunnelbroker message
(cd keyserver && yarn dev)

Diff Detail

Repository

rCOMM Comm

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

There are a very large number of changes, so older changes are hidden. Show Older Changes

• jon added a parent revision: D8476: [Keyserver] Publish prekeys to identity service for cron job.Jul 24 2023, 6:39 AM

• jon removed a child revision: D7702: [Keyserver] Introduce tunnelbroker types.

Harbormaster failed remote builds in B21147: Diff 28969!Jul 24 2023, 6:43 AM

• jon added a child revision: D8605: [Protos] Move GetKeyserverInfo to authtenticated service.Jul 24 2023, 6:50 AM

Correct rebase

• jon planned changes to this revision.Jul 24 2023, 5:10 PM

Harbormaster completed remote builds in B21159: Diff 28981.Jul 24 2023, 5:27 PM

Address feedback

keyserver/src/socket/tunnelbroker.js
41–43 ↗	(On Diff #28758)	It was useful, but I'll remove it now.
49 ↗	(On Diff #28758)	Yea, testing this code path locally will cause it to dump just a massive amount of output in a short amount of time. The sleep is just there to make it manage-able. We should probably have some type of exponential back-off. But 1s seems fine for now.

Harbormaster completed remote builds in B21160: Diff 28982.Jul 24 2023, 6:09 PM

ashoat requested changes to this revision.Jul 27 2023, 11:28 AM

ashoat added inline comments.

keyserver/src/keyserver.js
67–68 ↗	(On Diff #28982)	It's a little weird to see this pattern, where we `await` one `Promise` and but then don't `await` the subsequent one. It would be good to add a code comment explaining why we're doing this: `verifyUserLoggedIn` needs to be `await`ed because: Currently, the code for getting one-time keys to initiate the notif ratchet could have a race with the `verifyUserLoggedIn` code, leading to one-time keys getting erroneously marked as published. This will no longer be true after we update that code to source one-time keys from identity service, but... In the future, we expect that having a `commServicesAccessToken` will be required for normal keyserver functioning On the other hand, `createAndMaintainTunnelbrokerWebsocket` doesn't need to be `await`ed because: The connection to Tunnelbroker isn't strictly necessary for normal keyserver functioning at this time The call to `createAndMaintainTunnelbrokerWebsocket` doesn't return anything that we need ahead of forking the Express server threads
keyserver/src/socket/tunnelbroker.js
15 ↗	(On Diff #28982)	Please apply this feedback to every place in the diff that it applies to
17 ↗	(On Diff #28982)	You should not be `await`ing something that doesn't return a promise
42 ↗	(On Diff #28982)
46 ↗	(On Diff #28982)
48 ↗	(On Diff #28982)	Please apply this feedback everywhere
53 ↗	(On Diff #28982)
55 ↗	(On Diff #28982)	If we're not doing anything with `err`, we can omit it

This revision now requires changes to proceed.Jul 27 2023, 11:28 AM

• jon removed a child revision: D8605: [Protos] Move GetKeyserverInfo to authtenticated service.Aug 8 2023, 8:53 AM

• jon added a child revision: D8750: [Keyserver/rust] Implement upload_one_time_keys to identity service.

Address feedback

Add comments in keyserver.js

Capitalize Keyserver and Tunnelbroker in comments

Harbormaster completed remote builds in B21840: Diff 30012.Aug 17 2023, 8:24 AM

Harbormaster completed remote builds in B21839: Diff 30011.

Harbormaster completed remote builds in B21841: Diff 30013.Aug 17 2023, 8:27 AM

I got 15 lines into the file, and then gave up on the review due to frustration. You completely ignored a comment from my previous review.

Please fix the issue, and then review all previous diff feedback carefully and thoroughly to make sure it has been addressed before putting this back on my diff queue.

keyserver/src/keyserver.js
67–73 ↗	(On Diff #30013)	Minor changes
keyserver/src/socket/tunnelbroker.js
15 ↗	(On Diff #30013)	My feedback from the last review appears to have been ignored: {F695889} Remember – a reviewer should never have to repeat feedback. This is a common issue for you... please review feedback carefully before updating a diff. Go line by line for each comment you received, and make sure you addressed it 100%. It shouldn't ever be necessary for me to repeat feedback to you.

This revision now requires changes to proceed.Aug 18 2023, 3:19 PM

• jon marked 2 inline comments as done.Aug 21 2023, 12:15 AM

• jon added inline comments.

keyserver/src/socket/tunnelbroker.js
15 ↗	(On Diff #30013)	missed this one.

You seem to have accidentally addressed my 2 comments from the previous review in D8752. Can you make sure you update this diff as well?

• jon mentioned this in D8816: [Native] Encode platform type in native_rust_library.Aug 23 2023, 10:24 AM

kamil commandeered this revision.Sep 8 2023, 5:47 AM

kamil added a reviewer: • jon.

kamil removed a reviewer: • jon.

Herald added a reviewer: • jon. · View Herald TranscriptSep 8 2023, 5:48 AM

kamil removed a reviewer: • jon.Sep 8 2023, 5:49 AM

Herald added a reviewer: • jon. · View Herald TranscriptSep 8 2023, 5:49 AM

update comment
deviceId -> deviceID

kamil added inline comments.Sep 8 2023, 7:13 AM

keyserver/src/socket/tunnelbroker.js
47–49 ↗	(On Diff #30865)	I think we should remove this code until the staging is ready, otherwise, keyserver console will be spammed if someone will not run the local tunnelbroker. Thoughts?
lib/types/tunnelbroker-messages.js
8 ↗	(On Diff #30865)	To update this to `userID` we need to make some changes in Rust struct definition, Created a task ENG-4880