plugin v2 preview #10

eternal-flame-AD · 2025-08-10T17:47:50Z

very much WIP, expect big changes as I go.

Just sharing to get some early opinions.

TODO:

Finalize the architecture
A shim that takes a V1 plugin and returns a V2 plugin
A test server and test client
Scout existing issues to add missing features

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

v2/protobuf/config.proto

v2/transport_auth.go

v2/pipe_net.go

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

eternal-flame-AD · 2025-08-25T01:52:15Z

@jmattheis Can you take a look when you have time before I do the server side integration? I think basic functionality and consistency tests should be all there.

.github/workflows/test.yml

v2/cli_flags.go

v2/transport/pipe_tcp.go

v2/examples_v1/echo/echo_test.go

v2/examples_v1/minimal/minimal.go

v2/shim_v1.go

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

eternal-flame-AD · 2025-09-02T16:48:41Z

I will leave the V1 plugin compatibility shim testing part suggestion to the next round in case there are disagreements about architecture, etc.

jmattheis · 2025-09-02T17:41:16Z

There are still some open discussions and I've unresolved one discussion which doesn't seem fixed yet, but this is only minor stuff, so from the architecture side this looks good.

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

eternal-flame-AD · 2025-09-02T17:52:53Z

I am starting to think about implementing auth plugins by allowing plugins to create and revoke user sessions, this can close some tickets about pluggable authentications. wdyt?

A broad idea would be just give the plugin a session signing key and expose a public API like /auth/exchange-code (or even just a temporary password) that exchanges a plugin endorsement with a real token.

jmattheis · 2025-09-02T18:25:08Z

I think oidc will cover most of the cases and there are already many services that proxy to oidc if you f.ex have a ldap server. I'm not sure if it's worth to implement the api for this, as we have to support this in android and this could be pretty difficult if it's generic.

Either way, this should be done separately from this migration.

eternal-flame-AD · 2025-09-02T18:27:23Z

Okay, I will open a concurrent PR on notify/website for plugin writing then and then the server side integration

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

preview

21ac3bc

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

eternal-flame-AD mentioned this pull request Aug 10, 2025

[RFC] A plugin system that does not rely on Go plugin/dynamic linker gotify/server#825

Open

eternal-flame-AD added 3 commits August 12, 2025 08:31

plugin connection auth/security

5abcf5d

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

temp

8a89a6b

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

move ServerMux to server repo

e6fc00f

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

eternal-flame-AD force-pushed the v2-dev branch from ec70e6e to e6fc00f Compare August 15, 2025 17:29

jmattheis reviewed Aug 15, 2025

View reviewed changes

v2/protobuf/config.proto Show resolved Hide resolved

v2/transport_auth.go Outdated Show resolved Hide resolved

v2/pipe_net.go Outdated Show resolved Hide resolved

eternal-flame-AD added 16 commits August 16, 2025 16:37

wip: swap to single connection model

93c24e8

shim impl

b5e9886

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

userid overflow checks

f59c2eb

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

use SNI to mux webhooker

1d055c1

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

fixup! use SNI to mux webhooker

9863b12

fixup! fixup! use SNI to mux webhooker

4493373

v1 shim

bd59ee3

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

fixup userid conversion

f237b5a

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

rearrange code order

ee70ba4

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

protobuf comments

4cf2383

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

go mod tidy

d6c86da

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

more protobuf docs

4e13724

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

example tests

1a69730

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

always test TCP implementation

b922133

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

create transport package

c55cc24

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

add basic pipe test

5555f78

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

eternal-flame-AD requested a review from jmattheis August 25, 2025 01:52

jmattheis reviewed Aug 31, 2025

View reviewed changes

eternal-flame-AD added 4 commits September 2, 2025 11:10

check stream errors in shim

caadabd

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

change test workflow branch

582f2a1

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

suggestions in shim_v1.go

8b7a780

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

Upgrade to yaml.v3

c09e0d3

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

eternal-flame-AD added 5 commits September 2, 2025 11:20

test typo correction

12f5aeb

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

hoist PEM reading function

eabaf46

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

cli_flags suggestions

60a3ba0

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

try to fix pipe_test on windows

bdd4117

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

Try to fix pipe_test on windows

4fee597

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

eternal-flame-AD requested a review from jmattheis September 2, 2025 16:48

eternal-flame-AD added 3 commits September 2, 2025 12:46

remove unused certificates and TLS configs

b493e1c

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

use IPv4 loopback address

cd7743e

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

rename ServerVersionInfo -> ServerInfo

35d54d4

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

eternal-flame-AD added 5 commits September 3, 2025 01:52

allow passing kex file descriptors through environment variables

7822885

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

remove SetEnable RPC

11e6d50

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

compute ping rate

dd63957

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

hoise kex logic to cli

abf55e8

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

check for nil rootCAs

bfe8e52

Signed-off-by: eternal-flame-AD <yume@yumechi.jp>

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

plugin v2 preview #10

plugin v2 preview #10

Uh oh!

eternal-flame-AD commented Aug 10, 2025 •

edited

Loading

Uh oh!

Uh oh!

Uh oh!

Uh oh!

eternal-flame-AD commented Aug 25, 2025

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

eternal-flame-AD commented Sep 2, 2025 •

edited

Loading

Uh oh!

jmattheis commented Sep 2, 2025

Uh oh!

eternal-flame-AD commented Sep 2, 2025

Uh oh!

jmattheis commented Sep 2, 2025

Uh oh!

eternal-flame-AD commented Sep 2, 2025

Uh oh!

Uh oh!

plugin v2 preview #10

Are you sure you want to change the base?

plugin v2 preview #10

Uh oh!

Conversation

eternal-flame-AD commented Aug 10, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

eternal-flame-AD commented Aug 25, 2025

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

eternal-flame-AD commented Sep 2, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

jmattheis commented Sep 2, 2025

Uh oh!

eternal-flame-AD commented Sep 2, 2025

Uh oh!

jmattheis commented Sep 2, 2025

Uh oh!

eternal-flame-AD commented Sep 2, 2025

Uh oh!

Uh oh!

eternal-flame-AD commented Aug 10, 2025 •

edited

Loading

eternal-flame-AD commented Sep 2, 2025 •

edited

Loading