Ensure stateOK is reported only when all components have sent updates

[vitorenesduarte]

Fixes #11065.

This PR:

• ensures that TeleportReadyEvent is only produced when all components that send heartbeats (i.e. call process.onHeartbeat) are ready
• changes TeleportProcess.registerTeleportReadyEvent so that it returns a count of these components (let's call it componentCount)
• uses componentCount to also ensure that stateOK is only reported when all the components have sent their heartbeat, thus fixing stateOK reported in processState.getState() before all components have sent updates #11065

Since it seems difficult to know when TeleportProcess.registerTeleportReadyEvent should be updated, with the goal of quickly detecting a bug when it's introduced we have that:

1. if componentCount is lower than it should, then the service fails to start (due to Throw startup error if TeleportReadyEvent is not emitted #11725)
2. if componentCount is higher than it should, then an error is logged in function processState.getStateLocked.

Testing

None.

[vitorenesduarte]

@vitorenesduarte I'm not certain, but does process.ServiceCount() work?

Thanks! I initially tried this but process.ServiceCount() is not exactly what's needed here. There are more services than components (e.g. the auth component has 5 services: "auth.tls", "auth.heartbeat.broadcast", "auth.broadcast", "auth.heartbeat", and "auth.shutdown").

[smallinsky]

How does the proxyConfig.DisableReverseTunnel impact kubernetes_service ?

Also I think that there are some cases where proxyConfig.Kube.ListenAddr is empty but kube service should be started

For example when teleport is stared as kube agent:

teleport:
    kubernetes_service:
    enabled: true
    kubeconfig_file: /path/to/kubeconfig

    auth_service:
      enabled: false
    
    ssh_service:
      enabled: false
    
    proxy_service:
      enabled: false
    
    app_service:
      enabled: false
    
    db_service:
      enabled: false

[vitorenesduarte]

How does the proxyConfig.DisableReverseTunnel impact kubernetes_service ?

I'm not familiar enough with Teleport to able to answer this.

I came up with if proxyConfig.Kube.Enabled && !proxyConfig.Kube.ListenAddr.IsEmpty() && !proxyConfig.DisableReverseTunnel { by putting the following two conditions together:

teleport/lib/service/service.go

Line 3043 in b70c1d6

if listeners.kube != nil && !process.Config.Proxy.DisableReverseTunnel {

teleport/lib/service/service.go

Lines 2581 to 2588 in b70c1d6

	if cfg.Proxy.Kube.Enabled && !cfg.Proxy.Kube.ListenAddr.IsEmpty() {
	process.log.Debugf("Setup Proxy: turning on Kubernetes proxy.")
	listener, err := process.importOrCreateListener(listenerProxyKube, cfg.Proxy.Kube.ListenAddr.Addr)
	if err != nil {
	return nil, trace.Wrap(err)
	}
	listeners.kube = listener
	}

ComponentCount counts the number of components that send heartbeats. When the condition above holds, it seems that the proxy kube component will be started and will send heartbeats.

Also I think that there are some cases where proxyConfig.Kube.ListenAddr is empty but kube service should be started

For example when teleport is stared as kube agent:

teleport:
    kubernetes_service:
    enabled: true
    kubeconfig_file: /path/to/kubeconfig

    auth_service:
      enabled: false
    
    ssh_service:
      enabled: false
    
    proxy_service:
      enabled: false
    
    app_service:
      enabled: false
    
    db_service:
      enabled: false

I think that in this case this function will correctly return 1 due to this piece of code below:

	if cfg.Kube.Enabled {
		componentCount++
	}

[smallinsky]

Can we emphasise in variable name what is the difference between current component calculated based on len(states
and desired stateOK componentCount ?

[vitorenesduarte]

Tried to improve this in 4c0fca2.

[vitorenesduarte]

@zmb3 @smallinsky Since it seems difficult to have a compile-time error when this new function Config.ComponentCount should be updated, maybe we can have the following two run-time errors instead (with the goal of quickly detecting a bug when it's introduced):

1. if Config.ComponentCount undercounts, then the service fails to start
2. if Config.ComponentCount overcounts, then an error is logged

This PR already solves 2. with the new error added to function processState.getStateLocked.

While researching how to solve 1., I noticed #11724. The fix for #11724 in #11725 ensures that a startup error is thrown if the TeleportReadyEvent is not emitted.

So, if #11725 makes sense, we can also solve 1. by making sure that the Config.ComponentCount function has equal (not similar) conditions to the ones in the code that creates the TeleportReadyEvent event mapping. (We can't ensure this with a compile-time error, but we can leave a note that the two should be updated together.)

With #11725 merged, I pushed 734795f so that this PR now implements both 1. and 2. @zmb3 @smallinsky

[espadolini]

If the mapping is 1:1, can't we just calculate the value here and store it in the process?

[vitorenesduarte]

Oh, I think this is a good idea. Implemented something similar in 16b4228.

[vitorenesduarte]

Updated the top-level comment to reflect the latest changes.