Merge pull request #32 from fosrl/dev

0.8.0

Author: miloschwartz

config/config.go

@@ -27,19 +27,21 @@ const (
 // Config represents the per-user application configuration stored under
 // %LOCALAPPDATA%\Pangolin\pangolin.json (or %APPDATA% as a fallback).
 type Config struct {
-	DNSOverride          *bool   `json:"dnsOverride,omitempty"`
-	DNSTunnel            *bool   `json:"dnsTunnel,omitempty"`
-	PrimaryDNS           *string `json:"primaryDNS,omitempty"`
-	SecondaryDNS         *string `json:"secondaryDNS,omitempty"`
-	DefaultServerURL     *string `json:"defaultServerURL,omitempty"`
-	UserSettingsDisabled *bool   `json:"userSettingsDisabled,omitempty"`
-	AuthPath             *string `json:"authPath,omitempty"`
+	DNSOverride            *bool   `json:"dnsOverride,omitempty"`
+	DNSTunnel              *bool   `json:"dnsTunnel,omitempty"`
+	PrimaryDNS             *string `json:"primaryDNS,omitempty"`
+	SecondaryDNS           *string `json:"secondaryDNS,omitempty"`
+	DefaultServerURL       *string `json:"defaultServerURL,omitempty"`
+	UserSettingsDisabled   *bool   `json:"userSettingsDisabled,omitempty"`
+	AuthPath               *string `json:"authPath,omitempty"`
+	OpenStatusTabOnConnect *bool   `json:"openStatusTabOnConnect,omitempty"`
 }
 
 // SystemConfig represents machine-wide configuration stored under
-// %ProgramData%\Pangolin\pangolin.json. This is used by background
-// services (manager, tunnel, etc.) and for global settings like log level.
+// %ProgramData%\Pangolin\pangolin.json. It supports the same settings as
+// per-user config plus system-only fields like log level.
 type SystemConfig struct {
+	Config
 	LogLevel *string `json:"logLevel,omitempty"`
 }
 
@@ -92,26 +94,15 @@ func (cm *ConfigManager) GetConfigCopy() *Config {
 // load loads the configuration from the file
 // Returns a default config if the file doesn't exist or can't be read
 func (cm *ConfigManager) load() *Config {
-	// Check if file exists
-	if _, err := os.Stat(cm.configPath); os.IsNotExist(err) {
-		return &Config{}
-	}
+	// Load machine-wide defaults first, then overlay user-specific values.
+	merged := configFromSystemConfig(LoadSystemConfig())
 
-	// Read file
-	data, err := os.ReadFile(cm.configPath)
-	if err != nil {
-		logger.Error("Error loading config: %v", err)
-		return &Config{}
+	userCfg, ok := cm.loadUserConfig()
+	if !ok {
+		return merged
 	}
 
-	// Parse JSON
-	var config Config
-	if err := json.Unmarshal(data, &config); err != nil {
-		logger.Error("Error parsing config: %v", err)
-		return &Config{}
-	}
-
-	return &config
+	return mergeConfig(merged, userCfg)
 }
 
 // Load loads the configuration from the file
@@ -266,6 +257,18 @@ func (cm *ConfigManager) GetAuthPath() string {
 	return ""
 }
 
+// GetOpenStatusTabOnConnect returns whether the tray Connect action should
+// open the preferences window directly on the Status tab after a successful connect.
+func (cm *ConfigManager) GetOpenStatusTabOnConnect() bool {
+	cm.mu.RLock()
+	defer cm.mu.RUnlock()
+
+	if cm.config != nil && cm.config.OpenStatusTabOnConnect != nil {
+		return *cm.config.OpenStatusTabOnConnect
+	}
+	return false
+}
+
 // SetAuthPath sets the auth path and saves to config
 func (cm *ConfigManager) SetAuthPath(value string) bool {
 	cm.mu.Lock()
@@ -360,40 +363,120 @@ func GetSystemLogLevel() string {
 // getConfigCopy creates a deep copy of the current config
 // Caller must hold the lock
 func (cm *ConfigManager) getConfigCopy() *Config {
-	if cm.config == nil {
+	return copyConfig(cm.config)
+}
+
+// loadUserConfig loads the per-user config from disk.
+func (cm *ConfigManager) loadUserConfig() (*Config, bool) {
+	if _, err := os.Stat(cm.configPath); os.IsNotExist(err) {
+		return nil, false
+	}
+
+	data, err := os.ReadFile(cm.configPath)
+	if err != nil {
+		logger.Error("Error loading config: %v", err)
+		return nil, false
+	}
+
+	var cfg Config
+	if err := json.Unmarshal(data, &cfg); err != nil {
+		logger.Error("Error parsing config: %v", err)
+		return nil, false
+	}
+
+	return &cfg, true
+}
+
+// configFromSystemConfig extracts shared config fields from system config.
+func configFromSystemConfig(sys *SystemConfig) *Config {
+	if sys == nil {
+		return &Config{}
+	}
+	return copyConfig(&sys.Config)
+}
+
+// mergeConfig overlays override values onto base values.
+func mergeConfig(base, override *Config) *Config {
+	merged := copyConfig(base)
+	if override == nil {
+		return merged
+	}
+
+	if override.DNSOverride != nil {
+		v := *override.DNSOverride
+		merged.DNSOverride = &v
+	}
+	if override.DNSTunnel != nil {
+		v := *override.DNSTunnel
+		merged.DNSTunnel = &v
+	}
+	if override.PrimaryDNS != nil {
+		v := *override.PrimaryDNS
+		merged.PrimaryDNS = &v
+	}
+	if override.SecondaryDNS != nil {
+		v := *override.SecondaryDNS
+		merged.SecondaryDNS = &v
+	}
+	if override.DefaultServerURL != nil {
+		v := *override.DefaultServerURL
+		merged.DefaultServerURL = &v
+	}
+	if override.UserSettingsDisabled != nil {
+		v := *override.UserSettingsDisabled
+		merged.UserSettingsDisabled = &v
+	}
+	if override.AuthPath != nil {
+		v := *override.AuthPath
+		merged.AuthPath = &v
+	}
+	if override.OpenStatusTabOnConnect != nil {
+		v := *override.OpenStatusTabOnConnect
+		merged.OpenStatusTabOnConnect = &v
+	}
+
+	return merged
+}
+
+// copyConfig creates a deep copy of all pointer fields.
+func copyConfig(src *Config) *Config {
+	if src == nil {
 		return &Config{}
 	}
 
-	// Create a new config and copy all pointer fields
 	cfg := &Config{}
-	if cm.config.DNSOverride != nil {
-		dnsOverride := *cm.config.DNSOverride
+	if src.DNSOverride != nil {
+		dnsOverride := *src.DNSOverride
 		cfg.DNSOverride = &dnsOverride
 	}
-	if cm.config.DNSTunnel != nil {
-		dnsTunnel := *cm.config.DNSTunnel
+	if src.DNSTunnel != nil {
+		dnsTunnel := *src.DNSTunnel
 		cfg.DNSTunnel = &dnsTunnel
 	}
-	if cm.config.PrimaryDNS != nil {
-		primaryDNS := *cm.config.PrimaryDNS
+	if src.PrimaryDNS != nil {
+		primaryDNS := *src.PrimaryDNS
 		cfg.PrimaryDNS = &primaryDNS
 	}
-	if cm.config.SecondaryDNS != nil {
-		secondaryDNS := *cm.config.SecondaryDNS
+	if src.SecondaryDNS != nil {
+		secondaryDNS := *src.SecondaryDNS
 		cfg.SecondaryDNS = &secondaryDNS
 	}
-	if cm.config.DefaultServerURL != nil {
-		defaultServerURL := *cm.config.DefaultServerURL
+	if src.DefaultServerURL != nil {
+		defaultServerURL := *src.DefaultServerURL
 		cfg.DefaultServerURL = &defaultServerURL
 	}
-	if cm.config.UserSettingsDisabled != nil {
-		userSettingsDisabled := *cm.config.UserSettingsDisabled
+	if src.UserSettingsDisabled != nil {
+		userSettingsDisabled := *src.UserSettingsDisabled
 		cfg.UserSettingsDisabled = &userSettingsDisabled
 	}
-	if cm.config.AuthPath != nil {
-		authPath := *cm.config.AuthPath
+	if src.AuthPath != nil {
+		authPath := *src.AuthPath
 		cfg.AuthPath = &authPath
 	}
+	if src.OpenStatusTabOnConnect != nil {
+		openStatusTabOnConnect := *src.OpenStatusTabOnConnect
+		cfg.OpenStatusTabOnConnect = &openStatusTabOnConnect
+	}
 	return cfg
 }
 

fingerprint/fingerprint.go

@@ -53,11 +53,26 @@ func GatherFingerprintInfo() *Fingerprint {
 		username = u.Username
 	}
 
-	hostname, _ := os.Hostname()
+	var hostname string
+	var osVersion string
+	var kernelVersion string
+	var deviceModel string
+	var serialNumber string
+	var wg sync.WaitGroup
+
+	wg.Go(func() {
+		hostname, _ = os.Hostname()
+	})
+
+	wg.Go(func() {
+		osVersion, kernelVersion = getWindowsVersion()
+	})
 
-	osVersion, kernelVersion := getWindowsVersion()
+	wg.Go(func() {
+		deviceModel, serialNumber = getWindowsModelAndSerial()
+	})
 
-	deviceModel, serialNumber := getWindowsModelAndSerial()
+	wg.Wait()
 
 	return &Fingerprint{
 		Username:            username,

go.mod

@@ -1,17 +1,17 @@
 module github.com/fosrl/windows
 
-go 1.25
+go 1.25.0
 
 require (
 	github.com/Microsoft/go-winio v0.6.2
-	github.com/fosrl/newt v1.10.1
-	github.com/fosrl/olm v1.4.3
+	github.com/fosrl/newt v1.10.3
+	github.com/fosrl/olm v1.4.4
 	github.com/pkg/browser v0.0.0-20240102092130-5ac0b6a4141c
 	github.com/tailscale/walk v0.0.0-20251016200523-963e260a8227
 	github.com/tailscale/win v0.0.0-20250213223159-5992cb43ca35
 	github.com/zalando/go-keyring v0.2.6
-	golang.org/x/crypto v0.46.0
-	golang.org/x/sys v0.40.0
+	golang.org/x/crypto v0.48.0
+	golang.org/x/sys v0.41.0
 )
 
 require (
@@ -25,11 +25,11 @@ require (
 	github.com/vishvananda/netlink v1.3.1 // indirect
 	github.com/vishvananda/netns v0.0.5 // indirect
 	golang.org/x/exp v0.0.0-20251113190631-e25ba8c21ef6 // indirect
-	golang.org/x/mod v0.31.0 // indirect
-	golang.org/x/net v0.48.0 // indirect
+	golang.org/x/mod v0.32.0 // indirect
+	golang.org/x/net v0.51.0 // indirect
 	golang.org/x/sync v0.19.0 // indirect
 	golang.org/x/time v0.12.0 // indirect
-	golang.org/x/tools v0.40.0 // indirect
+	golang.org/x/tools v0.41.0 // indirect
 	golang.zx2c4.com/wintun v0.0.0-20230126152724-0fa3db229ce2 // indirect
 	golang.zx2c4.com/wireguard v0.0.0-20250521234502-f333402bd9cb // indirect
 	golang.zx2c4.com/wireguard/wgctrl v0.0.0-20241231184526-a9ab2273dd10 // indirect

go.sum

@@ -8,10 +8,10 @@ github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/dblohm7/wingoes v0.0.0-20231019175336-f6e33aa7cc34 h1:FBMro26TLQwBk+n4fbTSmSf3QUKb09pvW4fz49lxpl0=
 github.com/dblohm7/wingoes v0.0.0-20231019175336-f6e33aa7cc34/go.mod h1:6NCrWM5jRefaG7iN0iMShPalLsljHWBh9v1zxM2f8Xs=
-github.com/fosrl/newt v1.10.1 h1:3RZqYhJDDBWZHViVeDl4hWwWVJFtvFJB+wL+AF99neA=
-github.com/fosrl/newt v1.10.1/go.mod h1:d1+yYMnKqg4oLqAM9zdbjthjj2FQEVouiACjqU468ck=
-github.com/fosrl/olm v1.4.3 h1:hmAWfrJzpiwtvzw/B6xmCmeqK1OW0BJ2FUbEa7ztlmU=
-github.com/fosrl/olm v1.4.3/go.mod h1:aC1oieI0tadd66zY7RDjXT3PPsR54mYS0FYMsHqFqs8=
+github.com/fosrl/newt v1.10.3 h1:JO9gFK9LP/w2EeDIn4wU+jKggAFPo06hX5hxFSETqcw=
+github.com/fosrl/newt v1.10.3/go.mod h1:iYuuCAG7iabheiogMOX87r61uQN31S39nKxMKRuLS+s=
+github.com/fosrl/olm v1.4.4 h1:MoHQO9okqN7NKNtxgAdKsnV70bRzbm4hec6nBHpNic8=
+github.com/fosrl/olm v1.4.4/go.mod h1:SxeQNFngDMgwrXpTWjt1gheyoZo2TltmNrQ2vXX7YT4=
 github.com/godbus/dbus/v5 v5.2.2 h1:TUR3TgtSVDmjiXOgAAyaZbYmIeP3DPkld3jgKGV8mXQ=
 github.com/godbus/dbus/v5 v5.2.2/go.mod h1:3AAv2+hPq5rdnr5txxxRwiGjPXamgoIHgz9FPBfOp3c=
 github.com/google/btree v1.1.3 h1:CVpQJjYgC4VbzxeGVHfvZrv1ctoYCAI8vbl07Fcxlyg=
@@ -42,25 +42,25 @@ github.com/vishvananda/netns v0.0.5 h1:DfiHV+j8bA32MFM7bfEunvT8IAqQ/NzSJHtcmW5zd
 github.com/vishvananda/netns v0.0.5/go.mod h1:SpkAiCQRtJ6TvvxPnOSyH3BMl6unz3xZlaprSwhNNJM=
 github.com/zalando/go-keyring v0.2.6 h1:r7Yc3+H+Ux0+M72zacZoItR3UDxeWfKTcabvkI8ua9s=
 github.com/zalando/go-keyring v0.2.6/go.mod h1:2TCrxYrbUNYfNS/Kgy/LSrkSQzZ5UPVH85RwfczwvcI=
-golang.org/x/crypto v0.46.0 h1:cKRW/pmt1pKAfetfu+RCEvjvZkA9RimPbh7bhFjGVBU=
-golang.org/x/crypto v0.46.0/go.mod h1:Evb/oLKmMraqjZ2iQTwDwvCtJkczlDuTmdJXoZVzqU0=
+golang.org/x/crypto v0.48.0 h1:/VRzVqiRSggnhY7gNRxPauEQ5Drw9haKdM0jqfcCFts=
+golang.org/x/crypto v0.48.0/go.mod h1:r0kV5h3qnFPlQnBSrULhlsRfryS2pmewsg+XfMgkVos=
 golang.org/x/exp v0.0.0-20251113190631-e25ba8c21ef6 h1:zfMcR1Cs4KNuomFFgGefv5N0czO2XZpUbxGUy8i8ug0=
 golang.org/x/exp v0.0.0-20251113190631-e25ba8c21ef6/go.mod h1:46edojNIoXTNOhySWIWdix628clX9ODXwPsQuG6hsK0=
-golang.org/x/mod v0.31.0 h1:HaW9xtz0+kOcWKwli0ZXy79Ix+UW/vOfmWI5QVd2tgI=
-golang.org/x/mod v0.31.0/go.mod h1:43JraMp9cGx1Rx3AqioxrbrhNsLl2l/iNAvuBkrezpg=
-golang.org/x/net v0.48.0 h1:zyQRTTrjc33Lhh0fBgT/H3oZq9WuvRR5gPC70xpDiQU=
-golang.org/x/net v0.48.0/go.mod h1:+ndRgGjkh8FGtu1w1FGbEC31if4VrNVMuKTgcAAnQRY=
+golang.org/x/mod v0.32.0 h1:9F4d3PHLljb6x//jOyokMv3eX+YDeepZSEo3mFJy93c=
+golang.org/x/mod v0.32.0/go.mod h1:SgipZ/3h2Ci89DlEtEXWUk/HteuRin+HHhN+WbNhguU=
+golang.org/x/net v0.51.0 h1:94R/GTO7mt3/4wIKpcR5gkGmRLOuE/2hNGeWq/GBIFo=
+golang.org/x/net v0.51.0/go.mod h1:aamm+2QF5ogm02fjy5Bb7CQ0WMt1/WVM7FtyaTLlA9Y=
 golang.org/x/sync v0.19.0 h1:vV+1eWNmZ5geRlYjzm2adRgW2/mcpevXNg50YZtPCE4=
 golang.org/x/sync v0.19.0/go.mod h1:9KTHXmSnoGruLpwFjVSX0lNNA75CykiMECbovNTZqGI=
 golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.2.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.10.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.40.0 h1:DBZZqJ2Rkml6QMQsZywtnjnnGvHza6BTfYFWY9kjEWQ=
-golang.org/x/sys v0.40.0/go.mod h1:OgkHotnGiDImocRcuBABYBEXf8A9a87e/uXjp9XT3ks=
+golang.org/x/sys v0.41.0 h1:Ivj+2Cp/ylzLiEU89QhWblYnOE9zerudt9Ftecq2C6k=
+golang.org/x/sys v0.41.0/go.mod h1:OgkHotnGiDImocRcuBABYBEXf8A9a87e/uXjp9XT3ks=
 golang.org/x/time v0.12.0 h1:ScB/8o8olJvc+CQPWrK3fPZNfh7qgwCrY0zJmoEQLSE=
 golang.org/x/time v0.12.0/go.mod h1:CDIdPxbZBQxdj6cxyCIdrNogrJKMJ7pr37NYpMcMDSg=
-golang.org/x/tools v0.40.0 h1:yLkxfA+Qnul4cs9QA3KnlFu0lVmd8JJfoq+E41uSutA=
-golang.org/x/tools v0.40.0/go.mod h1:Ik/tzLRlbscWpqqMRjyWYDisX8bG13FrdXp3o4Sr9lc=
+golang.org/x/tools v0.41.0 h1:a9b8iMweWG+S0OBnlU36rzLp20z1Rp10w+IY2czHTQc=
+golang.org/x/tools v0.41.0/go.mod h1:XSY6eDqxVNiYgezAVqqCeihT4j1U2CCsqvH3WhQpnlg=
 golang.zx2c4.com/wintun v0.0.0-20230126152724-0fa3db229ce2 h1:B82qJJgjvYKsXS9jeunTOisW56dUokqW/FOteYJJ/yg=
 golang.zx2c4.com/wintun v0.0.0-20230126152724-0fa3db229ce2/go.mod h1:deeaetjYA+DHMHg+sMSMI58GrEteJUUzzw7en6TJQcI=
 golang.zx2c4.com/wireguard v0.0.0-20250521234502-f333402bd9cb h1:whnFRlWMcXI9d+ZbWg+4sHnLp52d5yiIPUxMBSt4X9A=

pangolin.wxs

@@ -2,7 +2,7 @@
 <Wix xmlns="http://wixtoolset.org/schemas/v4/wxs">
   <Package Name="Pangolin" 
            Language="1033" 
-           Version="0.7.1" 
+           Version="0.8.0" 
            Manufacturer="Fossorial" 
            UpgradeCode="165F13D3-9A2F-4AF7-9C68-474A8256B274"
            Compressed="yes">

tunnel/build.go

@@ -4,6 +4,7 @@ package tunnel
 
 import (
 	"context"
+	"sync"
 	"time"
 
 	"github.com/fosrl/newt/logger"
@@ -46,8 +47,19 @@ func (s *tunnelService) buildTunnel(config Config) error {
 		return err
 	}
 
-	fp := fingerprint.GatherFingerprintInfo().ToMap()
-	postures := fingerprint.GatherPostureChecks().ToMap()
+	var fp map[string]any
+	var postures map[string]any
+	var gatherWg sync.WaitGroup
+	gatherWg.Add(2)
+	go func() {
+		defer gatherWg.Done()
+		fp = fingerprint.GatherFingerprintInfo().ToMap()
+	}()
+	go func() {
+		defer gatherWg.Done()
+		postures = fingerprint.GatherPostureChecks().ToMap()
+	}()
+	gatherWg.Wait()
 
 	olmConfig := olmpkg.TunnelConfig{
 		Endpoint:             config.Endpoint,