2023-05-21 19:37:59 +03:00
|
|
|
package db
|
2020-06-21 12:32:08 +02:00
|
|
|
|
|
|
|
import (
|
2022-07-06 13:39:10 +02:00
|
|
|
"context"
|
2020-06-21 12:32:08 +02:00
|
|
|
"errors"
|
2022-03-01 16:31:25 +00:00
|
|
|
"fmt"
|
2022-09-02 09:13:50 +02:00
|
|
|
"net/netip"
|
2023-05-11 09:09:18 +02:00
|
|
|
"sync"
|
2022-02-23 16:15:20 +00:00
|
|
|
"time"
|
2020-06-21 12:32:08 +02:00
|
|
|
|
2022-02-22 16:18:25 +00:00
|
|
|
"github.com/glebarez/sqlite"
|
2023-05-21 19:37:59 +03:00
|
|
|
"github.com/juanfont/headscale/hscontrol/types"
|
|
|
|
"github.com/juanfont/headscale/hscontrol/util"
|
2022-02-28 18:05:03 +00:00
|
|
|
"github.com/rs/zerolog/log"
|
2021-06-24 15:44:19 +02:00
|
|
|
"gorm.io/driver/postgres"
|
|
|
|
"gorm.io/gorm"
|
2021-07-11 13:13:36 +02:00
|
|
|
"gorm.io/gorm/logger"
|
2020-06-21 12:32:08 +02:00
|
|
|
)
|
|
|
|
|
2021-11-15 19:18:14 +00:00
|
|
|
const (
|
2022-11-23 18:50:30 +00:00
|
|
|
dbVersion = "1"
|
2023-05-11 09:09:18 +02:00
|
|
|
Postgres = "postgres"
|
|
|
|
Sqlite = "sqlite3"
|
|
|
|
)
|
2022-11-23 18:50:30 +00:00
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
var (
|
|
|
|
errValueNotFound = errors.New("not found")
|
|
|
|
errDatabaseNotSupported = errors.New("database type not supported")
|
2021-11-15 19:18:14 +00:00
|
|
|
)
|
2020-06-21 12:32:08 +02:00
|
|
|
|
2021-02-23 20:11:30 +01:00
|
|
|
// KV is a key-value store in a psql table. For future use...
|
2023-05-11 09:09:18 +02:00
|
|
|
// TODO(kradalby): Is this used for anything?
|
2020-06-21 12:32:08 +02:00
|
|
|
type KV struct {
|
|
|
|
Key string
|
|
|
|
Value string
|
|
|
|
}
|
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
type HSDatabase struct {
|
2023-05-31 18:45:04 +02:00
|
|
|
db *gorm.DB
|
|
|
|
notifyStateChan chan<- struct{}
|
2023-05-11 09:09:18 +02:00
|
|
|
|
|
|
|
ipAllocationMutex sync.Mutex
|
|
|
|
|
|
|
|
ipPrefixes []netip.Prefix
|
|
|
|
baseDomain string
|
|
|
|
stripEmailDomain bool
|
|
|
|
}
|
|
|
|
|
|
|
|
// TODO(kradalby): assemble this struct from toptions or something typed
|
|
|
|
// rather than arguments.
|
|
|
|
func NewHeadscaleDatabase(
|
|
|
|
dbType, connectionAddr string,
|
|
|
|
stripEmailDomain, debug bool,
|
|
|
|
notifyStateChan chan<- struct{},
|
|
|
|
ipPrefixes []netip.Prefix,
|
|
|
|
baseDomain string,
|
|
|
|
) (*HSDatabase, error) {
|
|
|
|
dbConn, err := openDB(dbType, connectionAddr, debug)
|
2020-06-21 12:32:08 +02:00
|
|
|
if err != nil {
|
2023-05-11 09:09:18 +02:00
|
|
|
return nil, err
|
2020-06-21 12:32:08 +02:00
|
|
|
}
|
2021-07-04 21:40:46 +02:00
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
db := HSDatabase{
|
2023-05-31 18:45:04 +02:00
|
|
|
db: dbConn,
|
|
|
|
notifyStateChan: notifyStateChan,
|
2023-05-11 09:09:18 +02:00
|
|
|
|
|
|
|
ipPrefixes: ipPrefixes,
|
|
|
|
baseDomain: baseDomain,
|
|
|
|
stripEmailDomain: stripEmailDomain,
|
2021-05-02 14:47:36 -04:00
|
|
|
}
|
2022-01-30 13:06:49 +00:00
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
log.Debug().Msgf("database %#v", dbConn)
|
2023-01-18 17:23:37 +01:00
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
if dbType == Postgres {
|
|
|
|
dbConn.Exec(`create extension if not exists "uuid-ossp";`)
|
|
|
|
}
|
|
|
|
|
|
|
|
_ = dbConn.Migrator().RenameTable("namespaces", "users")
|
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
err = dbConn.AutoMigrate(types.User{})
|
2023-01-18 17:23:37 +01:00
|
|
|
if err != nil {
|
2023-05-11 09:09:18 +02:00
|
|
|
return nil, err
|
2023-01-18 17:23:37 +01:00
|
|
|
}
|
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
_ = dbConn.Migrator().RenameColumn(&types.Machine{}, "namespace_id", "user_id")
|
|
|
|
_ = dbConn.Migrator().RenameColumn(&types.PreAuthKey{}, "namespace_id", "user_id")
|
2023-01-26 08:49:20 +01:00
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
_ = dbConn.Migrator().RenameColumn(&types.Machine{}, "ip_address", "ip_addresses")
|
|
|
|
_ = dbConn.Migrator().RenameColumn(&types.Machine{}, "name", "hostname")
|
2022-04-24 20:56:42 +01:00
|
|
|
|
|
|
|
// GivenName is used as the primary source of DNS names, make sure
|
|
|
|
// the field is populated and normalized if it was not when the
|
|
|
|
// machine was registered.
|
2023-05-21 19:37:59 +03:00
|
|
|
_ = dbConn.Migrator().RenameColumn(&types.Machine{}, "nickname", "given_name")
|
2022-01-30 13:06:49 +00:00
|
|
|
|
2022-02-28 18:05:03 +00:00
|
|
|
// If the Machine table has a column for registered,
|
|
|
|
// find all occourences of "false" and drop them. Then
|
|
|
|
// remove the column.
|
2023-05-21 19:37:59 +03:00
|
|
|
if dbConn.Migrator().HasColumn(&types.Machine{}, "registered") {
|
2022-02-28 18:05:03 +00:00
|
|
|
log.Info().
|
|
|
|
Msg(`Database has legacy "registered" column in machine, removing...`)
|
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
machines := types.Machines{}
|
2023-05-11 09:09:18 +02:00
|
|
|
if err := dbConn.Not("registered").Find(&machines).Error; err != nil {
|
2022-02-28 18:05:03 +00:00
|
|
|
log.Error().Err(err).Msg("Error accessing db")
|
|
|
|
}
|
|
|
|
|
|
|
|
for _, machine := range machines {
|
|
|
|
log.Info().
|
2022-04-24 20:56:42 +01:00
|
|
|
Str("machine", machine.Hostname).
|
2022-02-28 18:05:03 +00:00
|
|
|
Str("machine_key", machine.MachineKey).
|
|
|
|
Msg("Deleting unregistered machine")
|
2023-05-21 19:37:59 +03:00
|
|
|
if err := dbConn.Delete(&types.Machine{}, machine.ID).Error; err != nil {
|
2022-02-28 18:05:03 +00:00
|
|
|
log.Error().
|
|
|
|
Err(err).
|
2022-04-24 20:56:42 +01:00
|
|
|
Str("machine", machine.Hostname).
|
2022-02-28 18:05:03 +00:00
|
|
|
Str("machine_key", machine.MachineKey).
|
|
|
|
Msg("Error deleting unregistered machine")
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
err := dbConn.Migrator().DropColumn(&types.Machine{}, "registered")
|
2022-02-28 18:05:03 +00:00
|
|
|
if err != nil {
|
|
|
|
log.Error().Err(err).Msg("Error dropping registered column")
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
err = dbConn.AutoMigrate(&types.Route{})
|
2022-11-23 18:50:30 +00:00
|
|
|
if err != nil {
|
2023-05-11 09:09:18 +02:00
|
|
|
return nil, err
|
2022-11-23 18:50:30 +00:00
|
|
|
}
|
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
if dbConn.Migrator().HasColumn(&types.Machine{}, "enabled_routes") {
|
2022-11-23 18:50:30 +00:00
|
|
|
log.Info().Msgf("Database has legacy enabled_routes column in machine, migrating...")
|
|
|
|
|
|
|
|
type MachineAux struct {
|
|
|
|
ID uint64
|
2023-05-21 19:37:59 +03:00
|
|
|
EnabledRoutes types.IPPrefixes
|
2022-11-23 18:50:30 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
machinesAux := []MachineAux{}
|
2023-05-11 09:09:18 +02:00
|
|
|
err := dbConn.Table("machines").Select("id, enabled_routes").Scan(&machinesAux).Error
|
2022-11-23 18:50:30 +00:00
|
|
|
if err != nil {
|
|
|
|
log.Fatal().Err(err).Msg("Error accessing db")
|
|
|
|
}
|
|
|
|
for _, machine := range machinesAux {
|
|
|
|
for _, prefix := range machine.EnabledRoutes {
|
|
|
|
if err != nil {
|
|
|
|
log.Error().
|
|
|
|
Err(err).
|
|
|
|
Str("enabled_route", prefix.String()).
|
|
|
|
Msg("Error parsing enabled_route")
|
2022-11-25 15:29:45 +00:00
|
|
|
|
2022-11-23 18:50:30 +00:00
|
|
|
continue
|
|
|
|
}
|
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
err = dbConn.Preload("Machine").
|
2023-05-21 19:37:59 +03:00
|
|
|
Where("machine_id = ? AND prefix = ?", machine.ID, types.IPPrefix(prefix)).
|
|
|
|
First(&types.Route{}).
|
2023-01-17 17:55:59 +01:00
|
|
|
Error
|
2022-11-23 18:50:30 +00:00
|
|
|
if err == nil {
|
|
|
|
log.Info().
|
|
|
|
Str("enabled_route", prefix.String()).
|
|
|
|
Msg("Route already migrated to new table, skipping")
|
2022-11-25 15:29:45 +00:00
|
|
|
|
2022-11-23 18:50:30 +00:00
|
|
|
continue
|
|
|
|
}
|
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
route := types.Route{
|
2022-11-23 18:50:30 +00:00
|
|
|
MachineID: machine.ID,
|
|
|
|
Advertised: true,
|
|
|
|
Enabled: true,
|
2023-05-21 19:37:59 +03:00
|
|
|
Prefix: types.IPPrefix(prefix),
|
2022-11-23 18:50:30 +00:00
|
|
|
}
|
2023-05-11 09:09:18 +02:00
|
|
|
if err := dbConn.Create(&route).Error; err != nil {
|
2022-11-23 18:50:30 +00:00
|
|
|
log.Error().Err(err).Msg("Error creating route")
|
|
|
|
} else {
|
|
|
|
log.Info().
|
|
|
|
Uint64("machine_id", route.MachineID).
|
|
|
|
Str("prefix", prefix.String()).
|
|
|
|
Msg("Route migrated")
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
err = dbConn.Migrator().DropColumn(&types.Machine{}, "enabled_routes")
|
2022-11-23 18:50:30 +00:00
|
|
|
if err != nil {
|
|
|
|
log.Error().Err(err).Msg("Error dropping enabled_routes column")
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
err = dbConn.AutoMigrate(&types.Machine{})
|
2021-06-24 15:44:19 +02:00
|
|
|
if err != nil {
|
2023-05-11 09:09:18 +02:00
|
|
|
return nil, err
|
2021-06-24 15:44:19 +02:00
|
|
|
}
|
2022-01-30 13:06:49 +00:00
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
if dbConn.Migrator().HasColumn(&types.Machine{}, "given_name") {
|
|
|
|
machines := types.Machines{}
|
2023-05-11 09:09:18 +02:00
|
|
|
if err := dbConn.Find(&machines).Error; err != nil {
|
2022-05-23 17:33:07 +01:00
|
|
|
log.Error().Err(err).Msg("Error accessing db")
|
|
|
|
}
|
|
|
|
|
2022-06-26 12:35:18 +02:00
|
|
|
for item, machine := range machines {
|
2022-05-23 17:33:07 +01:00
|
|
|
if machine.GivenName == "" {
|
2023-05-21 19:37:59 +03:00
|
|
|
normalizedHostname, err := util.NormalizeToFQDNRules(
|
2022-05-23 17:33:07 +01:00
|
|
|
machine.Hostname,
|
2023-05-11 09:09:18 +02:00
|
|
|
stripEmailDomain,
|
2022-05-23 17:33:07 +01:00
|
|
|
)
|
|
|
|
if err != nil {
|
|
|
|
log.Error().
|
|
|
|
Caller().
|
|
|
|
Str("hostname", machine.Hostname).
|
|
|
|
Err(err).
|
|
|
|
Msg("Failed to normalize machine hostname in DB migration")
|
|
|
|
}
|
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
err = db.RenameMachine(&machines[item], normalizedHostname)
|
2022-05-23 17:33:07 +01:00
|
|
|
if err != nil {
|
|
|
|
log.Error().
|
|
|
|
Caller().
|
|
|
|
Str("hostname", machine.Hostname).
|
|
|
|
Err(err).
|
|
|
|
Msg("Failed to save normalized machine name in DB migration")
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
err = dbConn.AutoMigrate(&KV{})
|
2021-06-24 15:44:19 +02:00
|
|
|
if err != nil {
|
2023-05-11 09:09:18 +02:00
|
|
|
return nil, err
|
2021-06-24 15:44:19 +02:00
|
|
|
}
|
2022-01-30 13:06:49 +00:00
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
err = dbConn.AutoMigrate(&types.PreAuthKey{})
|
2021-06-24 15:44:19 +02:00
|
|
|
if err != nil {
|
2023-05-11 09:09:18 +02:00
|
|
|
return nil, err
|
2021-06-24 15:44:19 +02:00
|
|
|
}
|
2020-06-21 12:32:08 +02:00
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
err = dbConn.AutoMigrate(&types.PreAuthKeyACLTag{})
|
2022-08-25 20:03:38 +10:00
|
|
|
if err != nil {
|
2023-05-11 09:09:18 +02:00
|
|
|
return nil, err
|
2022-08-25 20:03:38 +10:00
|
|
|
}
|
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
_ = dbConn.Migrator().DropTable("shared_machines")
|
2021-09-02 16:57:26 +02:00
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
err = dbConn.AutoMigrate(&types.APIKey{})
|
2022-01-25 22:11:05 +00:00
|
|
|
if err != nil {
|
2023-05-11 09:09:18 +02:00
|
|
|
return nil, err
|
2022-01-25 22:11:05 +00:00
|
|
|
}
|
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
// TODO(kradalby): is this needed?
|
|
|
|
err = db.setValue("db_version", dbVersion)
|
2021-11-14 16:46:09 +01:00
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
return &db, err
|
2020-06-21 12:32:08 +02:00
|
|
|
}
|
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
func openDB(dbType, connectionAddr string, debug bool) (*gorm.DB, error) {
|
|
|
|
log.Debug().Str("type", dbType).Str("connection", connectionAddr).Msg("opening database")
|
2021-07-11 13:13:36 +02:00
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
var dbLogger logger.Interface
|
|
|
|
if debug {
|
|
|
|
dbLogger = logger.Default
|
2021-07-11 13:13:36 +02:00
|
|
|
} else {
|
2023-05-11 09:09:18 +02:00
|
|
|
dbLogger = logger.Default.LogMode(logger.Silent)
|
2021-07-11 13:13:36 +02:00
|
|
|
}
|
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
switch dbType {
|
2021-11-15 17:24:24 +00:00
|
|
|
case Sqlite:
|
2023-05-11 09:09:18 +02:00
|
|
|
db, err := gorm.Open(
|
|
|
|
sqlite.Open(connectionAddr+"?_synchronous=1&_journal_mode=WAL"),
|
2022-02-23 16:15:20 +00:00
|
|
|
&gorm.Config{
|
|
|
|
DisableForeignKeyConstraintWhenMigrating: true,
|
2023-05-11 09:09:18 +02:00
|
|
|
Logger: dbLogger,
|
2022-02-23 16:15:20 +00:00
|
|
|
},
|
|
|
|
)
|
|
|
|
|
|
|
|
db.Exec("PRAGMA foreign_keys=ON")
|
|
|
|
|
|
|
|
// The pure Go SQLite library does not handle locking in
|
|
|
|
// the same way as the C based one and we cant use the gorm
|
|
|
|
// connection pool as of 2022/02/23.
|
2022-02-22 19:04:52 +00:00
|
|
|
sqlDB, _ := db.DB()
|
2022-02-23 16:15:20 +00:00
|
|
|
sqlDB.SetMaxIdleConns(1)
|
2022-02-22 19:04:52 +00:00
|
|
|
sqlDB.SetMaxOpenConns(1)
|
2022-02-23 16:15:20 +00:00
|
|
|
sqlDB.SetConnMaxIdleTime(time.Hour)
|
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
return db, err
|
|
|
|
|
2021-11-15 17:24:24 +00:00
|
|
|
case Postgres:
|
2023-05-11 09:09:18 +02:00
|
|
|
return gorm.Open(postgres.Open(connectionAddr), &gorm.Config{
|
2021-06-24 23:05:26 +02:00
|
|
|
DisableForeignKeyConstraintWhenMigrating: true,
|
2023-05-11 09:09:18 +02:00
|
|
|
Logger: dbLogger,
|
2021-06-24 23:05:26 +02:00
|
|
|
})
|
2021-06-24 15:44:19 +02:00
|
|
|
}
|
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
return nil, fmt.Errorf(
|
|
|
|
"database of type %s is not supported: %w",
|
|
|
|
dbType,
|
|
|
|
errDatabaseNotSupported,
|
|
|
|
)
|
|
|
|
}
|
2021-07-11 13:13:36 +02:00
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
func (hsdb *HSDatabase) notifyStateChange() {
|
|
|
|
hsdb.notifyStateChan <- struct{}{}
|
2020-06-21 12:32:08 +02:00
|
|
|
}
|
|
|
|
|
2021-11-13 08:39:04 +00:00
|
|
|
// getValue returns the value for the given key in KV.
|
2023-05-11 09:09:18 +02:00
|
|
|
func (hsdb *HSDatabase) getValue(key string) (string, error) {
|
2020-06-21 12:32:08 +02:00
|
|
|
var row KV
|
2023-05-11 09:09:18 +02:00
|
|
|
if result := hsdb.db.First(&row, "key = ?", key); errors.Is(
|
2021-11-13 08:36:45 +00:00
|
|
|
result.Error,
|
|
|
|
gorm.ErrRecordNotFound,
|
|
|
|
) {
|
2021-11-15 19:18:14 +00:00
|
|
|
return "", errValueNotFound
|
2020-06-21 12:32:08 +02:00
|
|
|
}
|
2021-11-14 16:46:09 +01:00
|
|
|
|
2020-06-21 12:32:08 +02:00
|
|
|
return row.Value, nil
|
|
|
|
}
|
|
|
|
|
2021-11-13 08:39:04 +00:00
|
|
|
// setValue sets value for the given key in KV.
|
2023-05-11 09:09:18 +02:00
|
|
|
func (hsdb *HSDatabase) setValue(key string, value string) error {
|
2021-11-15 16:15:50 +00:00
|
|
|
keyValue := KV{
|
2020-06-21 12:32:08 +02:00
|
|
|
Key: key,
|
|
|
|
Value: value,
|
|
|
|
}
|
2021-07-04 21:40:46 +02:00
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
if _, err := hsdb.getValue(key); err == nil {
|
|
|
|
hsdb.db.Model(&keyValue).Where("key = ?", key).Update("value", value)
|
2021-11-14 16:46:09 +01:00
|
|
|
|
2020-06-21 12:32:08 +02:00
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
if err := hsdb.db.Create(keyValue).Error; err != nil {
|
2022-05-30 15:39:24 +02:00
|
|
|
return fmt.Errorf("failed to create key value pair in the database: %w", err)
|
|
|
|
}
|
2021-11-14 16:46:09 +01:00
|
|
|
|
2020-06-21 12:32:08 +02:00
|
|
|
return nil
|
|
|
|
}
|
2022-03-01 16:31:25 +00:00
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
func (hsdb *HSDatabase) PingDB(ctx context.Context) error {
|
2022-09-04 11:43:09 +02:00
|
|
|
ctx, cancel := context.WithTimeout(ctx, time.Second)
|
2022-07-06 13:39:10 +02:00
|
|
|
defer cancel()
|
2023-05-11 09:09:18 +02:00
|
|
|
sqlDB, err := hsdb.db.DB()
|
2022-07-06 13:39:10 +02:00
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
2023-05-11 09:09:18 +02:00
|
|
|
return sqlDB.PingContext(ctx)
|
2022-07-06 13:39:10 +02:00
|
|
|
}
|
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
func (hsdb *HSDatabase) Close() error {
|
|
|
|
db, err := hsdb.db.DB()
|
|
|
|
if err != nil {
|
|
|
|
return err
|
2022-03-01 16:31:25 +00:00
|
|
|
}
|
|
|
|
|
2023-05-21 19:37:59 +03:00
|
|
|
return db.Close()
|
2022-03-01 16:31:25 +00:00
|
|
|
}
|