David Anderson
0fc1479633
go.mod: update github.com/mdlayher/netlink to 1.6.0
...
This unbreaks some downstream users of tailscale who end up
with build errors from importing a v0 indirect dependency.
Signed-off-by: David Anderson <danderson@tailscale.com>
2022-02-21 14:31:03 -08:00
Brad Fitzpatrick
1af26222b6
go.mod: bump netstack, switch to upstream netstack
...
Now that Go 1.17 has module graph pruning
(https://go.dev/doc/go1.17#go-command ), we should be able to use
upstream netstack without breaking our private repo's build
that then depends on the tailscale.com Go module.
This is that experiment.
Updates #1518 (the original bug to break out netstack to own module)
Updates #2642 (this updates netstack, but doesn't remove workaround)
Change-Id: I27a252c74a517053462e5250db09f379de8ac8ff
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2022-01-26 11:30:03 -08:00
Brad Fitzpatrick
39ffa16853
net/dnscache, net/tsdial: add DNS caching to tsdial UserDial
...
This is enough to handle the DNS queries as generated by Go's
net package (which our HTTP/SOCKS client uses), and the responses
generated by the ExitDNS DoH server.
This isn't yet suitable for putting on 100.100.100.100 where a number
of different DNS clients would hit it, as this doesn't yet do
EDNS0. It might work, but it's untested and likely incomplete.
Likewise, this doesn't handle anything about truncation, as the
exchanges are entirely in memory between Go or DoH. That would also
need to be handled later, if/when it's hooked up to 100.100.100.100.
Updates #3507
Change-Id: I1736b0ad31eea85ea853b310c52c5e6bf65c6e2a
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2021-12-09 11:34:21 -08:00
David Anderson
190b7a4cca
go.mod: mass update with go get -u.
...
Gets ahead of dependabot slightly, but the updates are minor.
Signed-off-by: David Anderson <danderson@tailscale.com>
2021-12-06 13:00:37 -08:00
dependabot[bot]
0d8ef1ff35
go.mod: bump github.com/aws/aws-sdk-go-v2/service/ssm
...
Bumps [github.com/aws/aws-sdk-go-v2/service/ssm](https://github.com/aws/aws-sdk-go-v2 ) from 1.17.0 to 1.17.1.
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases )
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-go-v2/compare/service/s3/v1.17.0...service/ssm/v1.17.1 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2/service/ssm
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-12-06 11:27:21 -08:00
dependabot[bot]
329751c48e
go.mod: bump golang.org/x/tools from 0.1.7 to 0.1.8
...
Bumps [golang.org/x/tools](https://github.com/golang/tools ) from 0.1.7 to 0.1.8.
- [Release notes](https://github.com/golang/tools/releases )
- [Commits](https://github.com/golang/tools/compare/v0.1.7...v0.1.8 )
---
updated-dependencies:
- dependency-name: golang.org/x/tools
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-12-06 11:20:43 -08:00
dependabot[bot]
9ddef8cdbf
go.mod: bump github.com/mdlayher/netlink from 1.4.1 to 1.4.2
...
Bumps [github.com/mdlayher/netlink](https://github.com/mdlayher/netlink ) from 1.4.1 to 1.4.2.
- [Release notes](https://github.com/mdlayher/netlink/releases )
- [Changelog](https://github.com/mdlayher/netlink/blob/main/CHANGELOG.md )
- [Commits](https://github.com/mdlayher/netlink/compare/v1.4.1...v1.4.2 )
---
updated-dependencies:
- dependency-name: github.com/mdlayher/netlink
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-12-06 11:05:15 -08:00
dependabot[bot]
9140f193bc
go.mod: bump github.com/aws/aws-sdk-go-v2/feature/s3/manager
...
Bumps [github.com/aws/aws-sdk-go-v2/feature/s3/manager](https://github.com/aws/aws-sdk-go-v2 ) from 1.7.3 to 1.7.4.
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases )
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-go-v2/compare/service/fsx/v1.7.3...feature/s3/manager/v1.7.4 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2/feature/s3/manager
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-12-06 11:02:21 -08:00
Artyom Pervukhin
49a9e62d58
Replace AWS SDK v1 dependency with v2
...
This change drops AWS SDKv1 dependency, leaving only SDK v2 in use.
Closes #3461
Signed-off-by: Artyom Pervukhin <github@artyom.dev>
2021-12-01 07:51:22 -08:00
dependabot[bot]
d89c61b812
go.mod: bump github.com/aws/aws-sdk-go-v2/service/ssm
...
Bumps [github.com/aws/aws-sdk-go-v2/service/ssm](https://github.com/aws/aws-sdk-go-v2 ) from 1.16.0 to 1.17.0.
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases )
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-go-v2/compare/service/s3/v1.16.0...service/s3/v1.17.0 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2/service/ssm
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-11-30 08:01:44 -08:00
dependabot[bot]
341e1af873
go.mod: bump github.com/aws/aws-sdk-go-v2/config from 1.10.2 to 1.10.3
...
Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2 ) from 1.10.2 to 1.10.3.
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases )
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/CHANGELOG.md )
- [Commits](https://github.com/aws/aws-sdk-go-v2/compare/config/v1.10.2...config/v1.10.3 )
---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2/config
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-11-30 05:48:56 -08:00
David Crawshaw
1e8b4e770a
update github.com/aws/aws-sdk-go-v2
...
Replaces #3464 , #3365 , #3366 with a PR that includes the depaware fix.
Signed-off-by: David Crawshaw <crawshaw@tailscale.com>
2021-11-29 12:10:28 -08:00
dependabot[bot]
6fd6fe11f2
go.mod: bump honnef.co/go/tools from 0.2.1 to 0.2.2
...
Bumps [honnef.co/go/tools](https://github.com/dominikh/go-tools ) from 0.2.1 to 0.2.2.
- [Release notes](https://github.com/dominikh/go-tools/releases )
- [Commits](https://github.com/dominikh/go-tools/compare/v0.2.1...v0.2.2 )
---
updated-dependencies:
- dependency-name: honnef.co/go/tools
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-11-22 22:01:32 -08:00
dependabot[bot]
f76a8d93da
go.mod: bump github.com/godbus/dbus/v5 from 5.0.5 to 5.0.6
...
Bumps [github.com/godbus/dbus/v5](https://github.com/godbus/dbus ) from 5.0.5 to 5.0.6.
- [Release notes](https://github.com/godbus/dbus/releases )
- [Commits](https://github.com/godbus/dbus/compare/v5.0.5...v5.0.6 )
---
updated-dependencies:
- dependency-name: github.com/godbus/dbus/v5
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-11-22 08:40:09 -08:00
Brad Fitzpatrick
2ea765e5d8
go.mod: bump inet.af/netstack
...
Updates #2642 (I'd hoped, but doesn't seem to fix it)
Change-Id: Id54af7c90a1206bc7018215957e20e954782b911
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2021-11-21 09:18:31 -08:00
David Anderson
41da7620af
go.mod: update wireguard-go to pick up roaming toggle
...
wgengine/wgcfg: introduce wgcfg.NewDevice helper to disable roaming
at all call sites (one real plus several tests).
Fixes tailscale/corp#3016 .
Signed-off-by: David Anderson <danderson@tailscale.com>
Signed-off-by: Josh Bleecher Snyder <josh@tailscale.com>
2021-11-16 13:15:04 -08:00
Brad Fitzpatrick
0edd2d1cd5
safesocket: add js/wasm implementation with in-memory net.Conn
...
Updates #3157
Change-Id: Ia35b1e259011fb86f8c4e01f62146f9fd4c9b7c6
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2021-11-07 12:13:14 -08:00
dependabot[bot]
12148dcf48
go.mod: bump github.com/frankban/quicktest from 1.13.1 to 1.14.0
...
Bumps [github.com/frankban/quicktest](https://github.com/frankban/quicktest ) from 1.13.1 to 1.14.0.
- [Release notes](https://github.com/frankban/quicktest/releases )
- [Commits](https://github.com/frankban/quicktest/compare/v1.13.1...v1.14.0 )
---
updated-dependencies:
- dependency-name: github.com/frankban/quicktest
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-11-04 09:39:31 -07:00
Josh Bleecher Snyder
3fd5f4380f
util/multierr: new package
...
github.com/go-multierror/multierror served us well.
But we need a few feature from it (implement Is),
and it's not worth maintaining a fork of such a small module.
Instead, I did a clean room implementation inspired by its API.
Signed-off-by: Josh Bleecher Snyder <josh@tailscale.com>
2021-11-02 17:50:15 -07:00
Brad Fitzpatrick
ff1954cfd9
wgengine/router: use netlink for ip rules on Linux
...
Using temporary netlink fork in github.com/tailscale/netlink until we
get the necessary changes upstream in either vishvananda/netlink
or jsimonetti/rtnetlink.
Updates #391
Change-Id: I6e1de96cf0750ccba53dabff670aca0c56dffb7c
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2021-11-01 15:40:36 -07:00
Brad Fitzpatrick
0303ec44c3
go.mod: bump netstack for mipsle fix
...
Fixes #3233
Change-Id: I18d1af886402774ce0ecc77dae3bc71eb8ba5c9d
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2021-11-01 11:23:05 -07:00
Brad Fitzpatrick
dc2fbf5877
wgengine/router: start using netlink instead of 'ip' on Linux
...
Converts up, down, add/del addresses, add/del routes.
Not yet done: rules.
Updates #391
Change-Id: I02554ca07046d18f838e04a626ba99bbd35266fb
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2021-10-28 10:16:26 -07:00
Josh Bleecher Snyder
f27950e97f
go.mod: upgrade netaddr, netstack
...
For Go 1.18 support.
Signed-off-by: Josh Bleecher Snyder <josh@tailscale.com>
2021-10-27 15:47:15 -07:00
Brad Fitzpatrick
505f844a43
cmd/derper, derp/derphttp: add websocket support
...
Updates #3157
Change-Id: I337a919a3b350bc7bd9af567b49c4d5d6616abdd
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2021-10-22 12:51:30 -07:00
Brad Fitzpatrick
c209278a9b
go.mod: bump wireguard-go to pick up upstreamed js/wasm build fixes
...
Updates #3157
Change-Id: I727cb5f77110c87850061aa3b9f03c15dbda70d3
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2021-10-21 10:37:07 -07:00
dependabot[bot]
eaa0aef934
go.mod: bump github.com/creack/pty from 1.1.16 to 1.1.17
...
Bumps [github.com/creack/pty](https://github.com/creack/pty ) from 1.1.16 to 1.1.17.
- [Release notes](https://github.com/creack/pty/releases )
- [Commits](https://github.com/creack/pty/compare/v1.1.16...v1.1.17 )
---
updated-dependencies:
- dependency-name: github.com/creack/pty
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-10-18 15:34:09 -07:00
Aaron Klotz
1991a1ac6a
net/tstun: update tun_windows for wintun 0.14 API revisions, update wireguard-go dependency to 82d2aa87aa623cb5143a41c3345da4fb875ad85d
...
Signed-off-by: Aaron Klotz <aaron@tailscale.com>
2021-10-12 16:07:46 -06:00
Maxime VISONNEAU
4528f448d6
ipn/store/aws, cmd/tailscaled: add AWS SSM ipn.StateStore implementation
...
From https://github.com/tailscale/tailscale/pull/1919 with
edits by bradfitz@.
This change introduces a new storage provider for the state file. It
allows users to leverage AWS SSM parameter store natively within
tailscaled, like:
$ tailscaled --state=arn:aws:ssm:eu-west-1:123456789:parameter/foo
Known limitations:
- it is not currently possible to specific a custom KMS key ID
RELNOTE=tailscaled on Linux supports using AWS SSM for state
Edits-By: Brad Fitzpatrick <bradfitz@tailscale.com>
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
Signed-off-by: Maxime VISONNEAU <maxime.visonneau@gmail.com>
2021-10-12 13:51:13 -07:00
Brad Fitzpatrick
a2e1e5d909
go.mod: bump go-ole for windows/arm64 support
...
Updates #2606
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2021-10-11 08:48:25 -07:00
Brad Fitzpatrick
2d11503cff
cmd/tailscale: add up --qr to show QR code
...
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2021-10-06 11:13:31 -07:00
Brad Fitzpatrick
7cf8ec8108
net/tlsdial: bake in LetsEncrypt's ISRG Root X1 root
...
We still try the host's x509 roots first, but if that fails (like if
the host is old), we fall back to using LetsEncrypt's root and
retrying with that.
tlsdial was used in the three main places: logs, control, DERP. But it
was missing in dnsfallback. So added it there too, so we can run fine
now on a machine with no DNS config and no root CAs configured.
Also, move SSLKEYLOGFILE support out of DERP. tlsdial is the logical place
for that support.
Fixes #1609
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2021-10-01 08:30:07 -07:00
dependabot[bot]
5809386525
go.mod: bump golang.zx2c4.com/wireguard/windows from 0.4.9 to 0.4.10
...
Bumps golang.zx2c4.com/wireguard/windows from 0.4.9 to 0.4.10.
---
updated-dependencies:
- dependency-name: golang.zx2c4.com/wireguard/windows
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-09-29 08:16:35 -07:00
dependabot[bot]
0fa1da2d1b
go.mod: bump golang.org/x/tools from 0.1.6 to 0.1.7
...
Bumps [golang.org/x/tools](https://github.com/golang/tools ) from 0.1.6 to 0.1.7.
- [Release notes](https://github.com/golang/tools/releases )
- [Commits](https://github.com/golang/tools/compare/v0.1.6...v0.1.7 )
---
updated-dependencies:
- dependency-name: golang.org/x/tools
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-09-29 07:47:38 -07:00
dependabot[bot]
8949305820
go.mod: bump github.com/creack/pty from 1.1.15 to 1.1.16
...
Bumps [github.com/creack/pty](https://github.com/creack/pty ) from 1.1.15 to 1.1.16.
- [Release notes](https://github.com/creack/pty/releases )
- [Commits](https://github.com/creack/pty/compare/v1.1.15...v1.1.16 )
---
updated-dependencies:
- dependency-name: github.com/creack/pty
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-09-28 07:39:14 -07:00
dependabot[bot]
7f0fcf8571
go.mod: bump github.com/pkg/sftp from 1.13.3 to 1.13.4
...
Bumps [github.com/pkg/sftp](https://github.com/pkg/sftp ) from 1.13.3 to 1.13.4.
- [Release notes](https://github.com/pkg/sftp/releases )
- [Commits](https://github.com/pkg/sftp/compare/v1.13.3...v1.13.4 )
---
updated-dependencies:
- dependency-name: github.com/pkg/sftp
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-09-27 07:22:40 -07:00
dependabot[bot]
b7b7d21514
go.mod: bump github.com/frankban/quicktest from 1.13.0 to 1.13.1
...
Bumps [github.com/frankban/quicktest](https://github.com/frankban/quicktest ) from 1.13.0 to 1.13.1.
- [Release notes](https://github.com/frankban/quicktest/releases )
- [Commits](https://github.com/frankban/quicktest/compare/v1.13.0...v1.13.1 )
---
updated-dependencies:
- dependency-name: github.com/frankban/quicktest
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-09-23 08:13:41 -07:00
dependabot[bot]
46b59e8c48
go.mod: bump github.com/google/uuid from 1.1.2 to 1.3.0
...
Bumps [github.com/google/uuid](https://github.com/google/uuid ) from 1.1.2 to 1.3.0.
- [Release notes](https://github.com/google/uuid/releases )
- [Commits](https://github.com/google/uuid/compare/v1.1.2...v1.3.0 )
---
updated-dependencies:
- dependency-name: github.com/google/uuid
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-09-23 08:13:32 -07:00
Brad Fitzpatrick
b0481ba37a
go.mod: bump x/tools
...
Fixes #2912 (which had rebase issues)
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2021-09-23 08:11:35 -07:00
dependabot[bot]
9219ca49f5
go.mod: bump golang.zx2c4.com/wireguard/windows from 0.3.16 to 0.4.9
...
Bumps golang.zx2c4.com/wireguard/windows from 0.3.16 to 0.4.9.
---
updated-dependencies:
- dependency-name: golang.zx2c4.com/wireguard/windows
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-09-23 08:07:52 -07:00
dependabot[bot]
c350321eec
go.mod: bump github.com/gliderlabs/ssh from 0.3.2 to 0.3.3
...
Bumps [github.com/gliderlabs/ssh](https://github.com/gliderlabs/ssh ) from 0.3.2 to 0.3.3.
- [Release notes](https://github.com/gliderlabs/ssh/releases )
- [Commits](https://github.com/gliderlabs/ssh/compare/v0.3.2...v0.3.3 )
---
updated-dependencies:
- dependency-name: github.com/gliderlabs/ssh
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-09-22 15:47:20 -07:00
dependabot[bot]
2bb915dd0a
go.mod: bump github.com/creack/pty from 1.1.9 to 1.1.15
...
Bumps [github.com/creack/pty](https://github.com/creack/pty ) from 1.1.9 to 1.1.15.
- [Release notes](https://github.com/creack/pty/releases )
- [Commits](https://github.com/creack/pty/compare/v1.1.9...v1.1.15 )
---
updated-dependencies:
- dependency-name: github.com/creack/pty
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-09-22 15:46:44 -07:00
dependabot[bot]
aaea175dd0
go.mod: bump github.com/godbus/dbus/v5 from 5.0.4 to 5.0.5
...
Bumps [github.com/godbus/dbus/v5](https://github.com/godbus/dbus ) from 5.0.4 to 5.0.5.
- [Release notes](https://github.com/godbus/dbus/releases )
- [Commits](https://github.com/godbus/dbus/compare/v5.0.4...v5.0.5 )
---
updated-dependencies:
- dependency-name: github.com/godbus/dbus/v5
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-09-22 15:45:40 -07:00
dependabot[bot]
eeee713c69
go.mod: bump github.com/miekg/dns from 1.1.42 to 1.1.43
...
Bumps [github.com/miekg/dns](https://github.com/miekg/dns ) from 1.1.42 to 1.1.43.
- [Release notes](https://github.com/miekg/dns/releases )
- [Changelog](https://github.com/miekg/dns/blob/master/Makefile.release )
- [Commits](https://github.com/miekg/dns/compare/v1.1.42...v1.1.43 )
---
updated-dependencies:
- dependency-name: github.com/miekg/dns
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-09-22 15:45:17 -07:00
dependabot[bot]
dbce536316
go.mod: bump github.com/pkg/sftp from 1.13.0 to 1.13.3
...
Bumps [github.com/pkg/sftp](https://github.com/pkg/sftp ) from 1.13.0 to 1.13.3.
- [Release notes](https://github.com/pkg/sftp/releases )
- [Commits](https://github.com/pkg/sftp/compare/v1.13.0...v1.13.3 )
---
updated-dependencies:
- dependency-name: github.com/pkg/sftp
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-09-22 15:44:46 -07:00
David Anderson
18086c4cb7
go.mod: bump github.com/klauspost/compress to 1.13.6
...
Signed-off-by: David Anderson <danderson@tailscale.com>
2021-09-22 15:11:25 -07:00
Josh Bleecher Snyder
865d8c0d23
cmd: upgrade to ffcli v3
...
None of the breaking changes from v2 to v3 are relevant to us.
Signed-off-by: Josh Bleecher Snyder <josh@tailscale.com>
2021-09-14 13:21:55 -07:00
David Crawshaw
b2a3d1da13
tstest/integration/vms: use fork of goexpect to avoid proto/grpc dep
...
Signed-off-by: David Crawshaw <crawshaw@tailscale.com>
2021-09-07 14:44:56 -07:00
David Anderson
159d88aae7
go.mod: tidy.
...
Signed-off-by: David Anderson <danderson@tailscale.com>
2021-09-02 14:26:27 -07:00
David Anderson
b96159e820
go.mod: update github.com/ulikunitz/xz for https://github.com/advisories/GHSA-25xm-hr59-7c27
...
Our code is not vulnerable to the issue in question: it only happens in the decompression
path for untrusted inputs, and we only use xz as part of mkpkg, which is write-only
and operates on trusted build system outputs to construct deb and rpm packages.
Still, it's nice to keep the dependabot dashboard clean.
Signed-off-by: David Anderson <danderson@tailscale.com>
2021-09-02 14:02:57 -07:00
Brad Fitzpatrick
db3586cd43
go.mod: upgrade staticcheck
...
It was crashing on a PR of mine and this fixes it.
2021-09-02 13:13:42 -07:00