ipn/ipnlocal: move handling of expired nodes to LocalBackend

In order to be able to synthesize a new NetMap when a node expires, have LocalBackend start a timer when receiving a new NetMap that fires slightly after the next node expires. Additionally, move the logic that updates expired nodes into LocalBackend so it runs on every netmap (whether received from controlclient or self-triggered). Updates #6932 Signed-off-by: Andrew Dunham <andrew@du.nham.ca> Change-Id: I833390e16ad188983eac29eb34cc7574f555f2f3
2025-08-11 21:27:31 +00:00 · 2023-01-11 15:59:08 -05:00
parent 6d85a94767
commit 3a018e51bb
6 changed files with 348 additions and 199 deletions
--- a/control/controlclient/map_test.go
+++ b/control/controlclient/map_test.go
@@ -308,112 +308,6 @@ func TestUndeltaPeers(t *testing.T) {
 	}
 }

-func TestFlagExpiredPeers(t *testing.T) {
-	n := func(id tailcfg.NodeID, name string, expiry time.Time, mod ...func(*tailcfg.Node)) *tailcfg.Node {
-		n := &tailcfg.Node{ID: id, Name: name, KeyExpiry: expiry}
-		for _, f := range mod {
-			f(n)
-		}
-		return n
-	}
-
-	now := time.Unix(1673373129, 0)
-
-	oldClockNow := clockNow
-	clockNow = func() time.Time { return now }
-	t.Cleanup(func() { clockNow = oldClockNow })
-
-	timeInPast := now.Add(-1 * time.Hour)
-	timeInFuture := now.Add(1 * time.Hour)
-
-	timeBeforeEpoch := flagExpiredPeersEpoch.Add(-1 * time.Second)
-	if now.Before(timeBeforeEpoch) {
-		panic("current time in test cannot be before epoch")
-	}
-
-	var expiredKey key.NodePublic
-	if err := expiredKey.UnmarshalText([]byte("nodekey:6da774d5d7740000000000000000000000000000000000000000000000000000")); err != nil {
-		panic(err)
-	}
-
-	tests := []struct {
-		name   string
-		mapRes *tailcfg.MapResponse
-		want   []*tailcfg.Node
-	}{
-		{
-			name: "no_expiry",
-			mapRes: &tailcfg.MapResponse{
-				ControlTime: &now,
-				Peers: []*tailcfg.Node{
-					n(1, "foo", timeInFuture),
-					n(2, "bar", timeInFuture),
-				},
-			},
-			want: []*tailcfg.Node{
-				n(1, "foo", timeInFuture),
-				n(2, "bar", timeInFuture),
-			},
-		},
-		{
-			name: "expiry",
-			mapRes: &tailcfg.MapResponse{
-				ControlTime: &now,
-				Peers: []*tailcfg.Node{
-					n(1, "foo", timeInFuture),
-					n(2, "bar", timeInPast),
-				},
-			},
-			want: []*tailcfg.Node{
-				n(1, "foo", timeInFuture),
-				n(2, "bar", timeInPast, func(n *tailcfg.Node) {
-					n.Expired = true
-					n.Key = expiredKey
-				}),
-			},
-		},
-		{
-			name: "bad_ControlTime",
-			mapRes: &tailcfg.MapResponse{
-				// ControlTime here is intentionally before our hardcoded epoch
-				ControlTime: &timeBeforeEpoch,
-
-				Peers: []*tailcfg.Node{
-					n(1, "foo", timeInFuture),
-					n(2, "bar", timeBeforeEpoch.Add(-1*time.Hour)), // before ControlTime
-				},
-			},
-			want: []*tailcfg.Node{
-				n(1, "foo", timeInFuture),
-				n(2, "bar", timeBeforeEpoch.Add(-1*time.Hour)), // should have expired, but ControlTime is before epoch
-			},
-		},
-		{
-			name: "tagged_node",
-			mapRes: &tailcfg.MapResponse{
-				ControlTime: &now,
-				Peers: []*tailcfg.Node{
-					n(1, "foo", timeInFuture),
-					n(2, "bar", time.Time{}), // tagged node; zero expiry
-				},
-			},
-			want: []*tailcfg.Node{
-				n(1, "foo", timeInFuture),
-				n(2, "bar", time.Time{}), // not expired
-			},
-		},
-	}
-	for _, tt := range tests {
-		t.Run(tt.name, func(t *testing.T) {
-			ms := newTestMapSession(t)
-			ms.flagExpiredPeers(tt.mapRes)
-			if !reflect.DeepEqual(tt.mapRes.Peers, tt.want) {
-				t.Errorf("wrong results\n got: %s\nwant: %s", formatNodes(tt.mapRes.Peers), formatNodes(tt.want))
-			}
-		})
-	}
-}
-
 func formatNodes(nodes []*tailcfg.Node) string {
 	var sb strings.Builder
 	for i, n := range nodes {