TheArchive/tailscale
1
0
Fork 0
mirror of https://github.com/tailscale/tailscale.git synced 2025-08-12 05:37:32 +00:00
Code Issues Packages Projects Releases Wiki Activity

client/tailscale, tsnet, ipn/ipnlocal: prove nodekey ownership over noise

Browse Source 
Fixes #5972

Change-Id: Ic33a93d3613ac5dbf172d6a8a459ca06a7f9e547
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
This commit is contained in:
Brad Fitzpatrick
2022-11-01 20:37:13 -07:00
committed by Brad Fitzpatrick
parent 8c790207a0
commit 910db02652
7 changed files with 117 additions and 45 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
tsnet/tsnet.go
View File

@@ -493,11 +493,8 @@ func (s *Server) APIClient() (*tailscale.Client, error) {
return nil, err
}
nm := s.lb.NetMap()
if nm == nil {
return nil, errors.New("no netmap, not logged in?")
}
c := tailscale.NewNoiseClient(nm.Domain, s.lb.NoiseRoundTripper(), nm.NodeKey)
c := tailscale.NewClient("-", nil)
c.HTTPClient = &http.Client{Transport: s.lb.KeyProvingNoiseRoundTripper()}
return c, nil
}