wgengine/magicsock: don't reuse TCP conns across peer relay alloc reqs

They must be closed when the request completes. Updates tailscale/corp#30534 Signed-off-by: Jordan Whited <jordan@tailscale.com>
2025-07-28 23:04:10 +00:00 · 2025-07-16 21:01:49 -07:00 · 2025-07-16 21:01:49 -07:00 · f3b00b72fd
commit f3b00b72fd
parent e7238efafa
1 changed files with 5 additions and 1 deletions
--- a/wgengine/magicsock/relaymanager.go
+++ b/wgengine/magicsock/relaymanager.go
@ -870,7 +870,11 @@ func doAllocate(ctx context.Context, server netip.AddrPort, discoKeys [2]key.Dis
 	if err != nil {
 		return udprelay.ServerEndpoint{}, err
 	}
-	resp, err := http.DefaultClient.Do(req)
+	transport := &http.Transport{
+		DisableKeepAlives: true, // this transport is meant to be used once
+	}
+	client := &http.Client{Transport: transport}
+	resp, err := client.Do(req)
 	if err != nil {
 		return udprelay.ServerEndpoint{}, err
 	}