You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Headscale doesn't look at the Enabled flag for any route failover candidates which can lead to setting the IsPrimary value to true on an otherwise disabled route, possibly breaking routing.
Environment
OS: Mac / Linux
Headscale version: v0.23.0-alpha3
Tailscale version: 1.58.2
Headscale is behind a (reverse) proxy
Headscale runs in a container
To Reproduce
Bring up two tailscale nodes (A and B) advertising the same route (eg 10.0.0.0/24). Enable A's advertised route in your headscale server. A will be primary. Test routing - it should be working fine at this point. B's route should be disabled and not primary.
Reboot / power down the tailscale node A with the Enabled & Primary route.
Check output of headscale routes ls - you should see B's disabled route get set to primary
Once you bring A back, test routing - it should fail at this point. B's route is still primary but disabled, A's route is enabled but not primary
I would expect that headscale doesn't consider disabled routes for new primary role/failover. Unfortunately i don't know how the official tailscale server handles this case.
The text was updated successfully, but these errors were encountered:
* fix#1706 - failover should disregard disabled routes during failover
* fixe tests for failover; all current tests assume routes to be enabled
* add testcase for #1706 - failover to disabled route
Bug description
Headscale doesn't look at the
Enabled
flag for any route failover candidates which can lead to setting theIsPrimary
value to true on an otherwise disabled route, possibly breaking routing.Environment
OS: Mac / Linux
Headscale version: v0.23.0-alpha3
Tailscale version: 1.58.2
Headscale is behind a (reverse) proxy
Headscale runs in a container
To Reproduce
headscale routes ls
- you should see B's disabled route get set to primaryI would expect that headscale doesn't consider disabled routes for new primary role/failover. Unfortunately i don't know how the official tailscale server handles this case.
The text was updated successfully, but these errors were encountered: