policy: remove v1 code (#2600)

* policy: remove v1 code Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * db: update test with v1 removal Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * integration: start moving to v2 policy Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * policy: add ssh unmarshal tests Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * changelog: add entry Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * policy: remove v1 comment Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * integration: remove comment out case Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * cleanup skipv1 Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * policy: remove v1 prefix workaround Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * policy: add all node ips if prefix/host is ts ip Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> --------- Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2025-05-20 13:57:26 +02:00 · 2025-05-20 13:57:26 +02:00 · a52f1df180
commit a52f1df180
parent 1605e2a7a9
21 changed files with 1258 additions and 4837 deletions
--- a/hscontrol/policy/pm.go
+++ b/hscontrol/policy/pm.go
@ -5,17 +5,11 @@ import (

 	"github.com/juanfont/headscale/hscontrol/policy/matcher"

-	policyv1 "github.com/juanfont/headscale/hscontrol/policy/v1"
 	policyv2 "github.com/juanfont/headscale/hscontrol/policy/v2"
 	"github.com/juanfont/headscale/hscontrol/types"
-	"tailscale.com/envknob"
 	"tailscale.com/tailcfg"
 )

-var (
-	polv1 = envknob.Bool("HEADSCALE_POLICY_V1")
-)
-
 type PolicyManager interface {
 	// Filter returns the current filter rules for the entire tailnet and the associated matchers.
 	Filter() ([]tailcfg.FilterRule, []matcher.Match)
@ -33,21 +27,13 @@ type PolicyManager interface {
 	DebugString() string
 }

-// NewPolicyManager returns a new policy manager, the version is determined by
-// the environment flag "HEADSCALE_POLICY_V1".
+// NewPolicyManager returns a new policy manager.
 func NewPolicyManager(pol []byte, users []types.User, nodes types.Nodes) (PolicyManager, error) {
 	var polMan PolicyManager
 	var err error
-	if polv1 {
-		polMan, err = policyv1.NewPolicyManager(pol, users, nodes)
-		if err != nil {
-			return nil, err
-		}
-	} else {
-		polMan, err = policyv2.NewPolicyManager(pol, users, nodes)
-		if err != nil {
-			return nil, err
-		}
+	polMan, err = policyv2.NewPolicyManager(pol, users, nodes)
+	if err != nil {
+		return nil, err
 	}

 	return polMan, err
@ -73,9 +59,6 @@ func PolicyManagersForTest(pol []byte, users []types.User, nodes types.Nodes) ([
 func PolicyManagerFuncsForTest(pol []byte) []func([]types.User, types.Nodes) (PolicyManager, error) {
 	var polmanFuncs []func([]types.User, types.Nodes) (PolicyManager, error)

-	polmanFuncs = append(polmanFuncs, func(u []types.User, n types.Nodes) (PolicyManager, error) {
-		return policyv1.NewPolicyManager(pol, u, n)
-	})
 	polmanFuncs = append(polmanFuncs, func(u []types.User, n types.Nodes) (PolicyManager, error) {
 		return policyv2.NewPolicyManager(pol, u, n)
 	})