Gateways, domains, and new service interface (#3001)

* add support for inbound proxies

* backend changes

* fix file type

* proxy -> tunnel, implement backend apis

* wip start-tunneld

* add domains and gateways, remove routers, fix docs links

* dont show hidden actions

* show and test dns

* edit instead of chnage acme and change gateway

* refactor: domains page

* refactor: gateways page

* domains and acme refactor

* certificate authorities

* refactor public/private gateways

* fix fe types

* domains mostly finished

* refactor: add file control to form service

* add ip util to sdk

* domains api + migration

* start service interface page, WIP

* different options for clearnet domains

* refactor: styles for interfaces page

* minor

* better placeholder for no addresses

* start sorting addresses

* best address logic

* comments

* fix unnecessary export

* MVP of service interface page

* domains preferred

* fix: address comments

* only translations left

* wip: start-tunnel & fix build

* forms for adding domain, rework things based on new ideas

* fix: dns testing

* public domain, max width, descriptions for dns

* nix StartOS domains, implement public and private domains at interface scope

* restart tor instead of reset

* better icon for restart tor

* dns

* fix sort functions for public and private domains

* with todos

* update types

* clean up tech debt, bump dependencies

* revert to ts-rs v9

* fix all types

* fix dns form

* add missing translations

* it builds

* fix: comments (#3009)

* fix: comments

* undo default

---------

Co-authored-by: Matt Hill <mattnine@protonmail.com>

* fix: refactor legacy components (#3010)

* fix: comments

* fix: refactor legacy components

* remove default again

---------

Co-authored-by: Matt Hill <mattnine@protonmail.com>

* more translations

* wip

* fix deadlock

* coukd work

* simple renaming

* placeholder for empty service interfaces table

* honor hidden form values

* remove logs

* reason instead of description

* fix dns

* misc fixes

* implement toggling gateways for service interface

* fix showing dns records

* move status column in service list

* remove unnecessary truthy check

* refactor: refactor forms components and remove legacy Taiga UI package (#3012)

* handle wh file uploads

* wip: debugging tor

* socks5 proxy working

* refactor: fix multiple comments (#3013)

* refactor: fix multiple comments

* styling changes, add documentation to sidebar

* translations for dns page

* refactor: subtle colors

* rearrange service page

---------

Co-authored-by: Matt Hill <mattnine@protonmail.com>

* fix file_stream and remove non-terminating test

* clean  up logs

* support for sccache

* fix gha sccache

* more marketplace translations

* install wizard clarity

* stub hostnameInfo in migration

* fix address info after setup, fix styling on SI page, new 040 release notes

* remove tor logs from os

* misc fixes

* reset tor still not functioning...

* update ts

* minor styling and wording

* chore: some fixes (#3015)

* fix gateway renames

* different handling for public domains

* styling fixes

* whole navbar should not be clickable on service show page

* timeout getState request

* remove links from changelog

* misc fixes from pairing

* use custom name for gateway in more places

* fix dns parsing

* closes #3003

* closes #2999

* chore: some fixes (#3017)

* small copy change

* revert hardcoded error for testing

* dont require port forward if gateway is public

* use old wan ip when not available

* fix .const hanging on undefined

* fix test

* fix doc test

* fix renames

* update deps

* allow specifying dependency metadata directly

* temporarily make dependencies not cliackable in marketplace listings

* fix socks bind

* fix test

---------

Co-authored-by: Aiden McClelland <me@drbonez.dev>
Co-authored-by: waterplea <alexander@inkin.ru>

core/startos/src/net/web_server.rs

@@ -1,8 +1,7 @@
 use std::future::Future;
 use std::net::SocketAddr;
 use std::ops::Deref;
-use std::sync::atomic::AtomicBool;
-use std::sync::{Arc, RwLock};
+use std::sync::Arc;
 use std::task::Poll;
 use std::time::Duration;
 
@@ -15,8 +14,8 @@ use tokio::net::{TcpListener, TcpStream};
 use tokio::sync::oneshot;
 
 use crate::context::{DiagnosticContext, InitContext, InstallContext, RpcContext, SetupContext};
-use crate::net::network_interface::{
-    NetworkInterfaceListener, SelfContainedNetworkInterfaceListener,
+use crate::net::gateway::{
+    lookup_info_by_addr, NetworkInterfaceListener, SelfContainedNetworkInterfaceListener,
 };
 use crate::net::static_server::{
     diagnostic_ui_router, init_ui_router, install_ui_router, main_ui_router, redirecter, refresher,
@@ -24,7 +23,7 @@ use crate::net::static_server::{
 };
 use crate::prelude::*;
 use crate::util::actor::background::BackgroundJobQueue;
-use crate::util::sync::{SyncMutex, Watch};
+use crate::util::sync::{SyncRwLock, Watch};
 
 pub struct Accepted {
     pub https_redirect: bool,
@@ -50,10 +49,15 @@ impl Accept for Vec<TcpListener> {
 }
 impl Accept for NetworkInterfaceListener {
     fn poll_accept(&mut self, cx: &mut std::task::Context<'_>) -> Poll<Result<Accepted, Error>> {
-        NetworkInterfaceListener::poll_accept(self, cx, true).map(|res| {
-            res.map(|a| Accepted {
-                https_redirect: a.is_public,
-                stream: a.stream,
+        NetworkInterfaceListener::poll_accept(self, cx, &true).map(|res| {
+            res.map(|a| {
+                let public = self
+                    .ip_info
+                    .peek(|i| lookup_info_by_addr(i, a.bind).map_or(true, |(_, i)| i.public()));
+                Accepted {
+                    https_redirect: public,
+                    stream: a.stream,
+                }
             })
         })
     }
@@ -166,7 +170,7 @@ impl<A: Accept + Send + Sync + 'static> WebServer<A> {
         let thread = NonDetachingJoinHandle::from(tokio::spawn(async move {
             #[derive(Clone)]
             struct QueueRunner {
-                queue: Arc<SyncMutex<Option<BackgroundJobQueue>>>,
+                queue: Arc<SyncRwLock<Option<BackgroundJobQueue>>>,
             }
             impl<Fut> hyper::rt::Executor<Fut> for QueueRunner
             where
@@ -211,7 +215,7 @@ impl<A: Accept + Send + Sync + 'static> WebServer<A> {
                 }
             }
 
-            let queue_cell = Arc::new(SyncMutex::new(None));
+            let queue_cell = Arc::new(SyncRwLock::new(None));
             let graceful = hyper_util::server::graceful::GracefulShutdown::new();
             let mut server = hyper_util::server::conn::auto::Builder::new(QueueRunner {
                 queue: queue_cell.clone(),
@@ -227,27 +231,39 @@ impl<A: Accept + Send + Sync + 'static> WebServer<A> {
                 .keep_alive_interval(Duration::from_secs(60))
                 .keep_alive_timeout(Duration::from_secs(300));
             let (queue, mut runner) = BackgroundJobQueue::new();
-            queue_cell.mutate(|q| *q = Some(queue.clone()));
+            queue_cell.replace(Some(queue.clone()));
 
             let handler = async {
                 loop {
-                    if let Err(e) = async {
-                        let accepted = acceptor.accept().await?;
-                        queue.add_job(
-                            graceful.watch(
-                                server
-                                    .serve_connection_with_upgrades(
-                                        TokioIo::new(accepted.stream),
-                                        SwappableRouter(service.clone(), accepted.https_redirect),
-                                    )
-                                    .into_owned(),
-                            ),
-                        );
+                    let mut err = None;
+                    for _ in 0..5 {
+                        if let Err(e) = async {
+                            let accepted = acceptor.accept().await?;
+                            queue.add_job(
+                                graceful.watch(
+                                    server
+                                        .serve_connection_with_upgrades(
+                                            TokioIo::new(accepted.stream),
+                                            SwappableRouter(
+                                                service.clone(),
+                                                accepted.https_redirect,
+                                            ),
+                                        )
+                                        .into_owned(),
+                                ),
+                            );
 
-                        Ok::<_, Error>(())
+                            Ok::<_, Error>(())
+                        }
+                        .await
+                        {
+                            err = Some(e);
+                            tokio::time::sleep(Duration::from_millis(100)).await;
+                        } else {
+                            break;
+                        }
                     }
-                    .await
-                    {
+                    if let Some(e) = err {
                         tracing::error!("Error accepting HTTP connection: {e}");
                         tracing::debug!("{e:?}");
                     }
@@ -262,7 +278,7 @@ impl<A: Accept + Send + Sync + 'static> WebServer<A> {
             }
 
             drop(queue);
-            drop(queue_cell.mutate(|q| q.take()));
+            drop(queue_cell.replace(None));
 
             if !runner.is_empty() {
                 tokio::time::timeout(Duration::from_secs(60), runner)