From 3b55dacda108da89011910d47bd913135683214c Mon Sep 17 00:00:00 2001
From: Kristoffer Dalby <kristoffer@dalby.cc>
Date: Fri, 7 Feb 2025 10:22:23 +0100
Subject: [PATCH] hscontrol/db: add migration setting non existing pak on nodes
 to null (#2412)

Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
---
 hscontrol/db/db.go                            |  32 +++++++++++++++---
 hscontrol/db/db_test.go                       |  20 +++++++++++
 .../failing-node-preauth-constraint.sqlite    | Bin 0 -> 65536 bytes
 3 files changed, 47 insertions(+), 5 deletions(-)
 create mode 100644 hscontrol/db/testdata/failing-node-preauth-constraint.sqlite

diff --git a/hscontrol/db/db.go b/hscontrol/db/db.go
index 0b6329be..59adb1e9 100644
--- a/hscontrol/db/db.go
+++ b/hscontrol/db/db.go
@@ -512,7 +512,7 @@ COMMIT;
 
 					err := tx.AutoMigrate(&types.User{})
 					if err != nil {
-						return err
+						return fmt.Errorf("automigrating types.User: %w", err)
 					}
 
 					return nil
@@ -527,7 +527,7 @@ COMMIT;
 				Migrate: func(tx *gorm.DB) error {
 					err := tx.AutoMigrate(&types.User{})
 					if err != nil {
-						return err
+						return fmt.Errorf("automigrating types.User: %w", err)
 					}
 
 					// Set up indexes and unique constraints outside of GORM, it does not support
@@ -575,7 +575,7 @@ COMMIT;
 
 					err := tx.AutoMigrate(&types.Route{})
 					if err != nil {
-						return err
+						return fmt.Errorf("automigrating types.Route: %w", err)
 					}
 
 					return nil
@@ -589,11 +589,33 @@ COMMIT;
 				Migrate: func(tx *gorm.DB) error {
 					err := tx.AutoMigrate(&types.PreAuthKey{})
 					if err != nil {
-						return err
+						return fmt.Errorf("automigrating types.PreAuthKey: %w", err)
 					}
 					err = tx.AutoMigrate(&types.Node{})
 					if err != nil {
-						return err
+						return fmt.Errorf("automigrating types.Node: %w", err)
+					}
+
+					return nil
+				},
+				Rollback: func(db *gorm.DB) error { return nil },
+			},
+			// Ensure there are no nodes refering to a deleted preauthkey.
+			{
+				ID: "202502070949",
+				Migrate: func(tx *gorm.DB) error {
+					if tx.Migrator().HasTable(&types.PreAuthKey{}) {
+						err := tx.Exec(`
+UPDATE nodes
+SET auth_key_id = NULL
+WHERE auth_key_id IS NOT NULL
+AND auth_key_id NOT IN (
+    SELECT id FROM pre_auth_keys
+);
+							`).Error
+						if err != nil {
+							return fmt.Errorf("setting auth_key to null on nodes with non-existing keys: %w", err)
+						}
 					}
 
 					return nil
diff --git a/hscontrol/db/db_test.go b/hscontrol/db/db_test.go
index 0672c252..2a828b60 100644
--- a/hscontrol/db/db_test.go
+++ b/hscontrol/db/db_test.go
@@ -201,6 +201,26 @@ func TestMigrationsSQLite(t *testing.T) {
 				}
 			},
 		},
+		{
+			dbPath: "testdata/failing-node-preauth-constraint.sqlite",
+			wantFunc: func(t *testing.T, h *HSDatabase) {
+				nodes, err := Read(h.DB, func(rx *gorm.DB) (types.Nodes, error) {
+					return ListNodes(rx)
+				})
+				require.NoError(t, err)
+
+				for _, node := range nodes {
+					assert.Falsef(t, node.MachineKey.IsZero(), "expected non zero machinekey")
+					assert.Contains(t, node.MachineKey.String(), "mkey:")
+					assert.Falsef(t, node.NodeKey.IsZero(), "expected non zero nodekey")
+					assert.Contains(t, node.NodeKey.String(), "nodekey:")
+					assert.Falsef(t, node.DiscoKey.IsZero(), "expected non zero discokey")
+					assert.Contains(t, node.DiscoKey.String(), "discokey:")
+					assert.Nil(t, node.AuthKey)
+					assert.Nil(t, node.AuthKeyID)
+				}
+			},
+		},
 	}
 
 	for _, tt := range tests {
diff --git a/hscontrol/db/testdata/failing-node-preauth-constraint.sqlite b/hscontrol/db/testdata/failing-node-preauth-constraint.sqlite
new file mode 100644
index 0000000000000000000000000000000000000000..911c243461e93af35070ac5fb8c0208891a175ee
GIT binary patch
literal 65536
zcmeI5%WoXXeaCx9@uiifwXlJ~1`#sU?m`+YIa}|?B!SJPMjJ(3YDH3B$%Zjg)m2UQ
z?mW0NLp_`<0!s10r`&VN#g`xl{{sPX^vw=@@i77RAFzG$!H1xGrspLpQDE5%bAKO5
zWLI@{RrT-t`&CW#%&_+F?IZ(Vj=R0K8I);oB`6evZ<otK5L_Ak&$%1~!G$~#1VLfy
z_+?xPsz3Pra`@XIT<QnmrSPZ4FN(js{PW9STv}fH*VWyXKU;l!`6tWYTKeTu|7BGG
z005jDY`9Y5rNZe_(sBMt;+`~4`o7n1IN$OE?;2*1rLS!7)wd4n<=eYA>krD!v&uEg
zcX!LptaS56b8>yN5*JrW@~y(@+PIBg_hjIw8yRMVFShbR$ze0Y?74P2msd)Ed9`r*
z=D3~XZYznBnU?ab;)`wNr>1Ux*jj#KuD#^aN{L=AoQC7}%yH8A%s=fnj(a{%p5)2P
zqqgqv-oAH##)x@|(FMci^33Lq=CGb-<=OJZl~Soxc>dYI*p|<%oc(xXRQ18u2Rrrh
zwJh&ixqPFUxMn%&4E&+*Z8W2vH$yd>WoHI{khJ|q^W-=^PBos+ol<V9Y{#^Hvpn!m
z2BW*!Xu70-+%iualT#Z_-!@5WSZ<?v-0MC{obNRf=R1QWPJD0v)Kof7TE20dM2(YP
zUc<+Gw?Eq2dsx0xe>l9ON~Q9~a_O&2g&;F||MONd@C|b^=w|7W@8Zk~m!3UXTPeNu
zR^f+lWHuYR%<$*MS*r~*{~%`TI^UR*qP%<epuBs3XD78z>LR%TjC<sJgQV|Wv)nmp
z`(6@lG<_!(dpajcJtb+I-qT637p=6heRp^NU~lX8?m@X3f7VEQ(I16UvwZ9BUj6om
zyCbXSJ*<@X>bL59_1*3IemToc{V#FNN*dQU>pS&>dU<<me|zg@z4DLWUCrF_N8iXy
zo7JEFSerF$miMAv+a@|nIzA1R{Qk3UOr>4YkGj(tN8SEl+S3k`N4_)iy+@`O9hu$@
zK`R^C2sCZ-jb_guCjEi$HQIh~)OC52akm$F*BF??ex7Ac21jY5v)8vwf6(ZA-<b{w
z|KvDHRhWcR+QUZDiMx4izT=L&NoO#w{`U{V<oFTGt51#}iP7<^x<DEj^A3>arT07Q
z09gpV)B(<Ru-tm{E#&zxwsPFdqBpa7-dg3^U}dFr{d(bt*E8puDKnE;oprXEb1ypG
zlyl{`JQ*N+{-mGA+9ax){`knZeb2PUdF7k+TU+;c4$84<_0#clI$GyXo~?D}HD-`>
zXMAbO1^;g)XKwTNS9HHV9FQs>FE5wgd#~^?Gx}&`?fcJ9d?%VuuFM#IuI!C8N;mrc
z^UCRaODm<TR}0T7Lm@|#asGRGrk2ShJ3D!mr!BH||KRTJ-R-^lNA=x<*D<X*Gcdy#
zsytX+F0HQ@zR3F8P7a4M^(RLcX8Suik@q;A9nTQ3LN6?rK3sp<oHePZfhWgHr>ZbC
z-gefZ{53)Tdts(C*YfOZv&Ng9WyUl2k?9{b%eK|EFSFs<etOnGI4#d`zNoyvuw2@{
z`m+1YyV}6{(P9t;tLZE1bWy)h{6!EZ#b2D8SJ(gm000000002M*MQS+F02OYrx*73
z1EoH($>7AA!*_^z2cvhoPszvaefcq^clyf6&g1&_UEvRRA9wCOdMNK449KVGD0y(R
z)w-Xw_|ZN6H|UWkh_Fp0H;F0}T;sY%RaGjXsgO#)hfocntO!P%L`)SS3@gpF8WuVI
zW+Cs^(XBht-lscH<Hw_JRgdof?V+aC_yI+RxKDaQ-nv^gw?5bz^g8tqKHO;yoP79$
z5BB#z>Wastt#8I38G;DiL~Il3G9fj}YD859VT2>f#JF2D?Kx7DBAjcXFp;C4Urg8k
z;g>=9>+s93fpY)=0000000000z<K5J;`-X;kwbBDy)bz$vXH+2e=%$X;jhB~4*xU!
zkMJkqzl8r3{zKRe8|T#^0000000000008isDPCN7mmtCsrWgw@i)(qB5UhwSu4ZY5
z6jqo}UR)WaCDvFFSzI2aHIbMhR9qUR1tM5b6kb@ko__cMF^mb8j1(6~1qkMtGFe>6
z(i9VnFr%ngm`-DnzW;wQ{7$<5|F7_8;lGFf7XEYiqwq<17=Gt9+X4Up0000000000
z&KXx0-z`ip`!7y1hU@;dQ3lHw_RHgp(UXAHamMITz{)sdwDw<mbMboG%4G3>VO(Ui
z`d=JnjF<ll;o`e%={E<4&jYYX-~Z44(jNc-00000000000OuB1{{sL3000000002M
z`3Khj00000000000040QN!S0&OFs^Ze|72k#h<VJ`O1T(AD{ob1^@u~)8IK?E(NEh
z)2pX{vHtejH{M>||JIvt?(YZd@3%kmPix)@ra7XLGEcELv2ik1ikV1xPlYu|6B2P5
zIisx5OhlGZZE<=X7gD7AfT#5kgqUJp2+JtK#79P9A1TF=XO=tcoQe&n%EjI~V<L%F
zOc042iE*qs&-M>bD-s9^j=dv{ipX=rw3paYtx&8flE^8gyl{d$fs_%<dZJ_Jz0<L@
zPS||k@rIb}I4+`A^1W*Vb6D&5kFI@xxcQAtH^0H6#zhUQs*-|f%oQDOeuEIgo7ul|
zwntA5q2Y<Y`{H|}>-i><WsGVR)i|qif`q_SPBzbB>Ha!cmNBnUT_d!L6%kBHf`>I>
zgsOs7QB}lFni|GDsu}E2ttOstElq2-J*OFVh*{5+!ipFnA}3wUxE3bj+At(A^(GQb
za6>6Ju{M#2G`3bE$(bQM*GyZ1WlX))44X(ID@BYvLlNhkQ7oxPj1tF;wpQ85DoeQ2
z)Cy#{GsurMOYO!um+3uNrL<R65HDjA8IPmbNiUU`oJCerjG{OemPg!jM-h>p^08)o
zq8XpoENUgbGq|=fuOZtcI5jYm*}h6z5UfzXJJBm>IJ}<Lu&7~O#Z09g=X|^Y(wv64
zN~z|lj`JGwc@6n<bYWV<QQY0j<BkgM3F4e7?!3}oa4%?tsb@r3>?7{DK!OtK1l62d
zs;tM3#wxNl)pM+&7FH|FJVQL@lEe|BRK*%w6mc3;Lyb1vV&jn`iV26M#+pm197h`I
zv4-AB5?Ri;Wx`TVyhD_dSVxvQ88a^>^Cs2VlgJtuF&b$bOO2I}(`}>18nTIoY+A!C
z?)WAmn~0}z$5aiWDicT`Nzf>6UO_XuNi)qku5nStOiRje9#rY~X3uCs6GBIOR*l1s
z%}d6f<Ha*18xNJp#GDF&WA9>)88tEWMrzNs&_q#0JjaoaBON1ew0Afr)=I~jl*%gP
zbIFwRu~S5n*b&9CKp1mn31cjdl*7hiVg*(*bpneyv(hMPt>l(OUUM>*%o^=*9GeJh
zElp&daztUPB*sE(XN;8IX)H9Bk_bh;wXriMHiTnkI2lVuCz8=uluR)B>O&>nq^L}2
zjfxs#RZWp%OtDFroh6x&T8Vkh=)7k1xmcLi?EP%0yf@Y?7SuT-ndZ(4g``9ZQNgTX
z80nZP=e;ysQ;e+kj%lH+w+uN%mA8VBv1V8ag(amDG3}8iUU-xKX*P*8cFJp^geJ@}
zVI1<38I7n!K0+ANh%q$Qj3`4~EWM;wVJ#w|xQ;ZVL^DPWQLz??TVfUE3|paigq;;a
zSf?nLaxzqsiDqP4v(ZqQPEy&%a}<@atWjAbtV%>WyHY)}{Hq09rW`>vgsX@XL?mL<
z<D-0`1w|Ad`NlZd$h>gm`Bq_CxcNEGAY-LuTu_1(p_*~y5v5oW>S=@=$09afbH%M=
zL}=w=gH1%86jFOZbKzv97#7l4p<<?)X2f~SoKFp`Wb72fic#l@H4#SKib%-xrA&lH
zIy%Q=;W$N-TN;VTIBEqk#1I`BZv?j9TTNpjtcqkh18Qd?CODzOaBJgKH$4tEJP{6`
zA>8a7Hys(GhG|u&-`}T<jwYc0hlE(wu&fG9BtsgJv4&?hp%_B*8sd2kF}(i|00000
z00000008Hobp2llp9SHw^M9`Z00000000000PxlE_k}lt^b<-I8U(@cbB+0jZIDVo
zmxwvWh;XUK@AuQq|Gmgb-}gGE?Hkx7{o|H-+8CyM+a#?9{<eQ&+Q%(ljk@i0|Gz@`
zn;`tnS7!kL0000000000003S$mlxO9CJzYG_5VWnWf1;4{PK0T1ONa4000000002M
zAB}Xue{}0kwD;-G)A(_5alN3_CpH<JSaZ0LuK$B8f3&^;0000000000008h60PBAM
r0000000000066~)zyJTcApG6=zgGYN0000000000_&Tz<7_9vdrVm1V

literal 0
HcmV?d00001