Adrian Dewhurst 04dd6d1dae
control/controlclient: sign RegisterRequest ()
control/controlclient: sign RegisterRequest

Some customers wish to verify eligibility for devices to join their
tailnets using machine identity certificates. TLS client certs could
potentially fulfill this role but the initial customer for this feature
has technical requirements that prevent their use. Instead, the
certificate is loaded from the Windows local machine certificate store
and uses its RSA public key to sign the RegisterRequest message.

There is room to improve the flexibility of this feature in future and
it is currently only tested on Windows (although Darwin theoretically
works too), but this offers a reasonable starting place for now.

Updates 

Signed-off-by: Adrian Dewhurst <adrian@tailscale.com>
2021-03-26 10:01:08 -04:00
2021-02-19 13:18:31 -08:00
2021-03-25 17:41:51 -07:00
2021-03-25 16:25:30 -07:00
2020-07-19 12:31:12 -07:00
2021-03-25 17:40:52 -07:00
2021-01-08 10:23:32 -08:00
2021-03-23 12:39:28 -07:00
2020-09-14 16:28:49 -07:00
2021-03-24 09:46:36 -07:00
2021-02-01 14:38:59 -08:00
2021-03-25 17:41:51 -07:00
2021-01-19 12:35:09 -08:00
2020-02-10 22:16:30 -08:00
2021-01-24 16:20:22 -08:00
2021-02-19 13:18:31 -08:00
2020-12-29 12:17:03 -05:00
2021-03-16 19:04:55 -07:00

Tailscale

https://tailscale.com

Private WireGuard® networks made easy

Overview

This repository contains all the open source Tailscale client code and the tailscaled daemon and tailscale CLI tool. The tailscaled daemon runs primarily on Linux; it also works to varying degrees on FreeBSD, OpenBSD, Darwin, and Windows.

The Android app is at https://github.com/tailscale/tailscale-android

Using

We serve packages for a variety of distros at https://pkgs.tailscale.com .

Other clients

The macOS, iOS, and Windows clients use the code in this repository but additionally include small GUI wrappers that are not open source.

Building

go install tailscale.com/cmd/tailscale{,d}

If you're packaging Tailscale for distribution, use build_dist.sh instead, to burn commit IDs and version info into the binaries:

./build_dist.sh tailscale.com/cmd/tailscale
./build_dist.sh tailscale.com/cmd/tailscaled

If your distro has conventions that preclude the use of build_dist.sh, please do the equivalent of what it does in your distro's way, so that bug reports contain useful version information.

We only guarantee to support the latest Go release and any Go beta or release candidate builds (currently Go 1.16) in module mode. It might work in earlier Go versions or in GOPATH mode, but we're making no effort to keep those working.

Bugs

Please file any issues about this code or the hosted service on the issue tracker.

Contributing

PRs welcome! But please file bugs. Commit messages should reference bugs.

We require Developer Certificate of Origin Signed-off-by lines in commits.

About Us

Tailscale is primarily developed by the people at https://github.com/orgs/tailscale/people. For other contributors, see:

WireGuard is a registered trademark of Jason A. Donenfeld.

Description
The easiest, most secure way to use WireGuard and 2FA.
Readme BSD-3-Clause 121 MiB
Languages
Go 94.8%
C 2.1%
TypeScript 1.4%
Shell 0.7%
Swift 0.3%
Other 0.3%