feat: add cleanup of lost tailnet peers and tunnels to PGCoordinator

spikecurtis · spikecurtis · commit ba1b5f077f98 · 2023-11-29T15:24:52.000+04:00
diff --git a/enterprise/tailnet/pgcoord.go b/enterprise/tailnet/pgcoord.go
@@ -837,11 +837,14 @@ func (m *mapper) bestMappings(mappings []mapping) map[uuid.UUID]mapping {
 		case !ok:
 			// no current best
 			best[mpng.peer] = mpng
+
+		// NODE always beats LOST mapping, since the LOST could be from a coordinator that's
+		// slow updating the DB, and the peer has reconnected to a different coordinator and
+		// given a NODE mapping.
+		case bestM.kind == proto.CoordinateResponse_PeerUpdate_LOST && mpng.kind == proto.CoordinateResponse_PeerUpdate_NODE:
+			best[mpng.peer] = mpng
 		case mpng.updatedAt.After(bestM.updatedAt) && mpng.kind == proto.CoordinateResponse_PeerUpdate_NODE:
-			// newer, and it's a NODE update. If it's a LOST mapping, we only prefer it if we don't
-			// have anything else, since we don't want LOST mappings to overwrite NODE mappings, since
-			// they could be from a coordinator that's slow updating the DB, and the peer has reconnected
-			// to a different coordinator and given a NODE mapping.
+			// newer, and it's a NODE update.
 			best[mpng.peer] = mpng
 		}
 	}
@@ -1720,15 +1723,22 @@ func (h *heartbeats) cleanupLoop() {
 	}
 }
 
-// cleanup issues a DB command to clean out any old expired coordinators state.  The cleanup is idempotent, so no need
-// to synchronize with other coordinators.
+// cleanup issues a DB command to clean out any old expired coordinators or lost peer state.  The
+// cleanup is idempotent, so no need to synchronize with other coordinators.
 func (h *heartbeats) cleanup() {
+	// the records we are attempting to clean up do no serious harm other than
+	// accumulating in the tables, so we don't bother retrying if it fails.
 	err := h.store.CleanTailnetCoordinators(h.ctx)
 	if err != nil {
-		// the records we are attempting to clean up do no serious harm other than
-		// accumulating in the tables, so we don't bother retrying if it fails.
 		h.logger.Error(h.ctx, "failed to cleanup old coordinators", slog.Error(err))
-		return
 	}
-	h.logger.Debug(h.ctx, "cleaned up old coordinators")
+	err = h.store.CleanTailnetLostPeers(h.ctx)
+	if err != nil {
+		h.logger.Error(h.ctx, "failed to cleanup lost peers", slog.Error(err))
+	}
+	err = h.store.CleanTailnetTunnels(h.ctx)
+	if err != nil {
+		h.logger.Error(h.ctx, "failed to cleanup abandoned tunnels", slog.Error(err))
+	}
+	h.logger.Debug(h.ctx, "completed cleanup")
 }
diff --git a/enterprise/tailnet/pgcoord_internal_test.go b/enterprise/tailnet/pgcoord_internal_test.go
@@ -47,6 +47,14 @@ func TestHeartbeat_Cleanup(t *testing.T) {
 		<-waitForCleanup
 		return nil
 	})
+	mStore.EXPECT().CleanTailnetLostPeers(gomock.Any()).MinTimes(2).DoAndReturn(func(_ context.Context) error {
+		<-waitForCleanup
+		return nil
+	})
+	mStore.EXPECT().CleanTailnetTunnels(gomock.Any()).MinTimes(2).DoAndReturn(func(_ context.Context) error {
+		<-waitForCleanup
+		return nil
+	})
 
 	uut := &heartbeats{
 		ctx:           ctx,
@@ -56,7 +64,7 @@ func TestHeartbeat_Cleanup(t *testing.T) {
 	}
 	go uut.cleanupLoop()
 
-	for i := 0; i < 2; i++ {
+	for i := 0; i < 6; i++ {
 		select {
 		case <-ctx.Done():
 			t.Fatal("timeout")
@@ -67,6 +75,104 @@ func TestHeartbeat_Cleanup(t *testing.T) {
 	close(waitForCleanup)
 }
 
+// TestLostPeerCleanupQueries tests that our SQL queries to clean up lost peers do what we expect,
+// that is, clean up peers and associated tunnels that have been lost for over 24 hours.
+func TestLostPeerCleanupQueries(t *testing.T) {
+	t.Parallel()
+	if !dbtestutil.WillUsePostgres() {
+		t.Skip("test only with postgres")
+	}
+	store, _, sqlDB := dbtestutil.NewDBWithSQLDB(t, dbtestutil.WithDumpOnFailure())
+	ctx, cancel := context.WithTimeout(context.Background(), testutil.WaitShort)
+	defer cancel()
+
+	coordID := uuid.New()
+	_, err := store.UpsertTailnetCoordinator(ctx, coordID)
+	require.NoError(t, err)
+
+	peerID := uuid.New()
+	_, err = store.UpsertTailnetPeer(ctx, database.UpsertTailnetPeerParams{
+		ID:            peerID,
+		CoordinatorID: coordID,
+		Node:          []byte("test"),
+		Status:        database.TailnetStatusLost,
+	})
+	require.NoError(t, err)
+
+	otherID := uuid.New()
+	_, err = store.UpsertTailnetTunnel(ctx, database.UpsertTailnetTunnelParams{
+		CoordinatorID: coordID,
+		SrcID:         peerID,
+		DstID:         otherID,
+	})
+	require.NoError(t, err)
+
+	peers, err := store.GetAllTailnetPeers(ctx)
+	require.NoError(t, err)
+	require.Len(t, peers, 1)
+	require.Equal(t, peerID, peers[0].ID)
+
+	tunnels, err := store.GetAllTailnetTunnels(ctx)
+	require.NoError(t, err)
+	require.Len(t, tunnels, 1)
+	require.Equal(t, peerID, tunnels[0].SrcID)
+	require.Equal(t, otherID, tunnels[0].DstID)
+
+	// this clean is a noop since the peer and tunnel are less than 24h old
+	err = store.CleanTailnetLostPeers(ctx)
+	require.NoError(t, err)
+	err = store.CleanTailnetTunnels(ctx)
+	require.NoError(t, err)
+
+	peers, err = store.GetAllTailnetPeers(ctx)
+	require.NoError(t, err)
+	require.Len(t, peers, 1)
+	require.Equal(t, peerID, peers[0].ID)
+
+	tunnels, err = store.GetAllTailnetTunnels(ctx)
+	require.NoError(t, err)
+	require.Len(t, tunnels, 1)
+	require.Equal(t, peerID, tunnels[0].SrcID)
+	require.Equal(t, otherID, tunnels[0].DstID)
+
+	// set the age of the tunnel to >24h
+	sqlDB.Exec("UPDATE tailnet_tunnels SET updated_at = $1", time.Now().Add(-25*time.Hour))
+
+	// this clean is still a noop since the peer hasn't been lost for 24 hours
+	err = store.CleanTailnetLostPeers(ctx)
+	require.NoError(t, err)
+	err = store.CleanTailnetTunnels(ctx)
+	require.NoError(t, err)
+
+	peers, err = store.GetAllTailnetPeers(ctx)
+	require.NoError(t, err)
+	require.Len(t, peers, 1)
+	require.Equal(t, peerID, peers[0].ID)
+
+	tunnels, err = store.GetAllTailnetTunnels(ctx)
+	require.NoError(t, err)
+	require.Len(t, tunnels, 1)
+	require.Equal(t, peerID, tunnels[0].SrcID)
+	require.Equal(t, otherID, tunnels[0].DstID)
+
+	// set the age of the tunnel to >24h
+	sqlDB.Exec("UPDATE tailnet_peers SET updated_at = $1", time.Now().Add(-25*time.Hour))
+
+	// this clean removes the peer and the associated tunnel
+	err = store.CleanTailnetLostPeers(ctx)
+	require.NoError(t, err)
+	err = store.CleanTailnetTunnels(ctx)
+	require.NoError(t, err)
+
+	peers, err = store.GetAllTailnetPeers(ctx)
+	require.NoError(t, err)
+	require.Len(t, peers, 0)
+
+	tunnels, err = store.GetAllTailnetTunnels(ctx)
+	require.NoError(t, err)
+	require.Len(t, tunnels, 0)
+}
+
 func TestDebugTemplate(t *testing.T) {
 	t.Parallel()
 	if runtime.GOOS == "windows" {
diff --git a/enterprise/tailnet/pgcoord_test.go b/enterprise/tailnet/pgcoord_test.go
@@ -545,6 +545,8 @@ func TestPGCoordinator_Unhealthy(t *testing.T) {
 		Return(database.TailnetCoordinator{}, nil)
 	// extra calls we don't particularly care about for this test
 	mStore.EXPECT().CleanTailnetCoordinators(gomock.Any()).AnyTimes().Return(nil)
+	mStore.EXPECT().CleanTailnetLostPeers(gomock.Any()).AnyTimes().Return(nil)
+	mStore.EXPECT().CleanTailnetTunnels(gomock.Any()).AnyTimes().Return(nil)
 	mStore.EXPECT().GetTailnetTunnelPeerIDs(gomock.Any(), gomock.Any()).AnyTimes().Return(nil, nil)
 	mStore.EXPECT().GetTailnetTunnelPeerBindings(gomock.Any(), gomock.Any()).
 		AnyTimes().Return(nil, nil)
