policy: remove v1 code (#2600)

* policy: remove v1 code Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * db: update test with v1 removal Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * integration: start moving to v2 policy Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * policy: add ssh unmarshal tests Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * changelog: add entry Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * policy: remove v1 comment Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * integration: remove comment out case Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * cleanup skipv1 Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * policy: remove v1 prefix workaround Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> * policy: add all node ips if prefix/host is ts ip Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com> --------- Signed-off-by: Kristoffer Dalby <kristoffer@tailscale.com>
2025-05-20 13:57:26 +02:00 · 2025-05-20 13:57:26 +02:00 · a52f1df180
commit a52f1df180
parent 1605e2a7a9
21 changed files with 1258 additions and 4837 deletions
--- a/hscontrol/policy/route_approval_test.go
+++ b/hscontrol/policy/route_approval_test.go
@ -60,7 +60,6 @@ func TestNodeCanApproveRoute(t *testing.T) {
 		route      netip.Prefix
 		policy     string
 		canApprove bool
-		skipV1     bool
 	}{
 		{
 			name:  "allow-all-routes-for-admin-user",
@ -766,10 +765,10 @@ func TestNodeCanApproveRoute(t *testing.T) {
 			canApprove: false,
 		},
 		{
-			name:  "empty-policy",
-			node:  normalNode,
-			route: p("192.168.1.0/24"),
-			policy: `{"acls":[{"action":"accept","src":["*"],"dst":["*:*"]}]}`,
+			name:       "empty-policy",
+			node:       normalNode,
+			route:      p("192.168.1.0/24"),
+			policy:     `{"acls":[{"action":"accept","src":["*"],"dst":["*:*"]}]}`,
 			canApprove: false,
 		},
 	}
@ -789,13 +788,7 @@ func TestNodeCanApproveRoute(t *testing.T) {
 			}

 			for i, pm := range policyManagers {
-				versionNum := i + 1
-				if versionNum == 1 && tt.skipV1 {
-					// Skip V1 policy manager for specific tests
-					continue
-				}
-
-				t.Run(fmt.Sprintf("PolicyV%d", versionNum), func(t *testing.T) {
+				t.Run(fmt.Sprintf("policy-index%d", i), func(t *testing.T) {
 					result := pm.NodeCanApproveRoute(&tt.node, tt.route)

 					if diff := cmp.Diff(tt.canApprove, result); diff != "" {