feat: add sandbox network out configuration #1447
Conversation
dobrac
force-pushed
the
add-allow-deny-ip-egress-limit-suport
branch
3 times, most recently
from
a0928bb to
1c34d0d
Compare
dobrac
force-pushed
the
add-allow-deny-ip-egress-limit-suport
branch
from
1c34d0d to
09d9394
Compare
dobrac
force-pushed
the
add-allow-deny-ip-egress-limit-suport
branch
2 times, most recently
from
8d392ab to
5c95692
Compare
dobrac
force-pushed
the
add-allow-deny-ip-egress-limit-suport
branch
3 times, most recently
from
007f4f8 to
35fdb12
Compare
dobrac
force-pushed
the
add-allow-deny-ip-egress-limit-suport
branch
from
35fdb12 to
33c5a57
Compare
dobrac
changed the title
dobrac
force-pushed
the
add-allow-deny-ip-egress-limit-suport
branch
5 times, most recently
from
4559b70 to
b74976f
Compare
dobrac
force-pushed
the
add-allow-deny-ip-egress-limit-suport
branch
from
b74976f to
1c4264b
Compare
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
![chatgpt-codex-connector[bot]](https://avatars.githubusercontent.com/in/1144995?s=60&v=4){kind=small}
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
dobrac
force-pushed
the
add-allow-deny-ip-egress-limit-suport
branch
2 times, most recently
from
4404e80 to
abb52a3
Compare
dobrac
force-pushed
the
add-allow-deny-ip-egress-limit-suport
branch
2 times, most recently
from
4c45801 to
e62ca88
Compare
dobrac
force-pushed
the
add-allow-deny-ip-egress-limit-suport
branch
from
e62ca88 to
d9e12b3
Compare
dobrac
force-pushed
the
add-allow-deny-ip-egress-limit-suport
branch
from
0468847 to
01a4356
Compare
|
|
||
| // Handle the case where internet access is explicitly disabled | ||
| // This should be applied after copying the network config to preserve allowed addresses | ||
| if allowInternetAccess != nil && !*allowInternetAccess { |
There was a problem hiding this comment.
I think we should return error when both network egress allow/block lists and allow internet are provided. It can bring unexpected behavior for users.
There was a problem hiding this comment.
The allowOut takes precedence over blockOut
also, internet is defined by default, allowInternetAccess false does the same as blockOut=[0.0.0.0/0]
|
|
||
| network := &types.SandboxNetworkConfig{ | ||
| Egress: &types.SandboxNetworkEgressConfig{ | ||
| AllowedAddresses: config.GetNetwork().GetEgress().GetAllowedAddresses(), |
There was a problem hiding this comment.
Are we sure this call chain will work correctly when communicating with orchestrators that are not yet supporting network configuration?
There was a problem hiding this comment.
There was a problem hiding this comment.
Thing was if we will not receive nil. It not, that is okay.
There was a problem hiding this comment.
we'll receive nil for the list, but nil is a valid empty list
|
|
||
| // AddBlockedIP adds a single CIDR to the block set at runtime. | ||
| func (fw *Firewall) AddBlockedIP(cidr string) error { | ||
| func (fw *Firewall) AddBlockedIP(address string) error { |
There was a problem hiding this comment.
We switched to inserting blocked IPs and not using CIDRs, which seems cleaner to me.
There was a problem hiding this comment.
Function comment still refers to CIDRs
There was a problem hiding this comment.
you can insert:
- One IP
- Cidr
- IP range (1.1.1.0-1.1.1.1)
There was a problem hiding this comment.
Can we make it cidr only to simplify thinking around? I think api should move all three types (i dont like IP range tho) to CIDR format.
There was a problem hiding this comment.
removed support for IP ranges, passing now addresses only as CIDR blocks to the orchestrator. In the DB, they're saved as user provided
|
Btw @dobrac can we check with deny all hyperloop server is still working? |
dobrac
force-pushed
the
add-allow-deny-ip-egress-limit-suport
branch
from
5857131 to
a0f052f
Compare
dobrac
force-pushed
the
add-allow-deny-ip-egress-limit-suport
branch
from
a0f052f to
61047a4
Compare
| network.Egress = &orchestrator.SandboxNetworkEgressConfig{} | ||
| } | ||
| network.Egress.DeniedCidrs = []string{internetBlockCIDR} | ||
| } |
There was a problem hiding this comment.
Bug: Global Config Overwrites User Network Access
Global config AllowSandboxInternet can override user-provided network configuration when AllowInternetAccess is not explicitly set in the request. If a user provides custom network.denyOut addresses without setting allowInternetAccess, and the global config is false, the orchestrator overwrites DeniedCidrs with ["0.0.0.0/0"], discarding the user's explicit configuration. This logic duplicates what the API layer already does and contradicts the TODO comment indicating it should be removed now that network config is passed from the API.
There was a problem hiding this comment.
I think here we should fallback to s.config.AllowSandboxInternet only when customers configuration is not provided at all (both allow internet access flag and egress internet config).
cc @dobrac
|
Looks like hyperloop server is not accessible with the internet disabled. |
Add sandbox network out traffic configuration. The usage would look then something like this:
Note
Adds configurable egress allow/deny for sandboxes, wires it through API → orchestrator, enforces via firewall, and persists in snapshots; updates proto/spec and tests.
SandboxNetworkConfig(allowOut,denyOut) to spec and generated types; includenetworkinNewSandbox. Clarifyallow_internet_accesssemantics (equivalent todenyOut: ["0.0.0.0/0"]when false).networkto orchestrator on create/resume/connect.allowInternetAccessis false, setdeny 0.0.0.0/0.SandboxNetworkConfigand egress fields.snapshots.config(JSONB) via migration; definePausedSandboxConfigandSandboxNetworkConfigtypes; store network config on pause; update queries/models.Written by Cursor Bugbot for commit 738177c. This will update automatically on new commits. Configure here.