tailscale/cmd at e4779146b50f05bbcf07b4e99018902669ddd6cc - tailscale - private dev space

TheArchive/tailscale

mirror of https://github.com/tailscale/tailscale.git synced 2025-02-21 12:28:39 +00:00

History

Brad Fitzpatrick 150cd30b1d ipn/ipnlocal: also use LetsEncrypt-baked-in roots for cert validation

We previously baked in the LetsEncrypt x509 root CA for our tlsdial
package.

This moves that out into a new "bakedroots" package and is now also
shared by ipn/ipnlocal's cert validation code (validCertPEM) that
decides whether it's time to fetch a new cert.

Otherwise, a machine without LetsEncrypt roots locally in its system
roots is unable to use tailscale cert/serve and fetch certs.

Fixes #14690

Change-Id: Ic88b3bdaabe25d56b9ff07ada56a27e3f11d7159
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>

2025-01-21 17:47:55 -08:00

..

all: fix golangci-lint errors

2025-01-07 13:05:37 -08:00

build-webclient

client/web: precompress assets

2023-12-07 20:57:31 -05:00

cmd/checkmetrics: add command for checking metrics against kb

2024-12-02 10:30:46 +01:00

cmd/cloner, cmd/viewer, util/codegen: add support for aliases of cloneable types

2024-08-23 15:43:40 -05:00

cmd/connector-gen: add helper tool for wide app connector configurations

2023-12-15 09:29:42 -08:00

cmd/{k8s-operator,containerboot},kube/kubetypes: parse Ingresses for ingress ProxyGroup (#14583 )

2025-01-21 05:21:03 +00:00

ipn/ipnlocal: also use LetsEncrypt-baked-in roots for cert validation

2025-01-21 17:47:55 -08:00

prober: support filtering regions by region ID in addition to code

2025-01-10 12:33:19 -06:00

release/dist/qnap: add qnap target builder

2024-04-22 17:43:28 -04:00

cmd,{get-authkey,tailscale}: remove unnecessary scope qualifier from OAuth clients

2024-12-06 09:29:07 -06:00

cmd/gitops-pusher: default previousEtag to controlEtag (#14296 )

2024-12-05 15:00:54 -08:00

cmd/hello: link to the Hello KB article (#11022 )

2024-02-02 15:48:31 -08:00

cmd/k8s-nameserver: fix AAAA record query response (#12412 )

2024-06-10 17:57:22 +01:00

ipn/ipnlocal: also use LetsEncrypt-baked-in roots for cert validation

2025-01-21 17:47:55 -08:00

cmd/mkmanifest, cmd/tailscale, cmd/tailscaled: remove Windows arm32 resources from OSS

2023-03-01 15:45:12 -07:00

go.mod: upgrade nfpm to v2 (#8786 )

2023-08-03 13:00:45 -07:00

version/mkversion: open-source version generation logic

2023-02-18 05:21:05 +00:00

all: update copyright and license headers

2023-01-27 15:36:29 -08:00

cmd/natc: fix nil pointer

2024-09-17 09:48:48 -07:00

all: use Go 1.22 range-over-int

2024-04-16 15:32:38 -07:00

tailcfg,all: add and use Node.IsTagged()

2023-03-13 08:44:25 -07:00

tsnet: split user facing and backend logging

2024-05-10 15:29:13 -07:00

cmd/printdep: print correct toolchain URL

2023-02-11 17:57:36 +00:00

proxy-to-grafana

cmd/proxy-to-grafana: add flag for alternative control server

2024-06-21 12:17:39 +02:00

all: use math/rand/v2 more

2024-06-05 15:24:04 -07:00

all: update copyright and license headers

2023-01-27 15:36:29 -08:00

ssh-auth-none-demo

all: replace deprecated ioutil references

2023-08-23 23:53:19 +01:00

cmd/stunc: enforce read timeout deadline (#14309 )

2024-12-06 14:27:52 -05:00

go.{mod,sum},cmd/{k8s-operator,derper,stund}/depaware.txt: bump kube deps (#14601 )

2025-01-17 05:37:53 +00:00

cmd/stunstamp: add protocol context to timeout logs (#13422 )

2024-09-09 18:42:13 -07:00

sync-containers

all: adjust some build tags for plan9

2023-08-24 15:42:35 -07:00

cmd/systray: add cmd/systray back as a small client/systray wrapper

2025-01-06 16:49:34 -08:00

ipn/ipnlocal: also use LetsEncrypt-baked-in roots for cert validation

2025-01-21 17:47:55 -08:00

ipn/ipnlocal: also use LetsEncrypt-baked-in roots for cert validation

2025-01-21 17:47:55 -08:00

all: use Go 1.22 range-over-int

2024-04-16 15:32:38 -07:00

util/slicesx: add MapKeys and MapValues from golang.org/x/exp/maps

2025-01-03 10:48:31 -08:00

cmd/tl-longchain: tool to re-sign nodes with long rotation signatures

2024-08-21 18:22:22 +01:00

build(deps): bump braces from 3.0.2 to 3.0.3 in /cmd/tsconnect (#12468 )

2025-01-20 22:24:13 -07:00

cmd/tsidp: add --dir flag

2024-09-29 16:15:22 -07:00

all: update copyright and license headers

2023-01-27 15:36:29 -08:00

cmd/tta: pull out test driver dialing into a type, fix bugs

2024-08-26 15:36:30 -07:00

cmd/viewer,all: consistently use "read-only" instead of "readonly"

2025-01-14 08:26:56 -08:00

tstest/natlab/vnet: add start of IPv6 support

2024-08-24 18:02:38 -07:00

all: add test for package comments, fix, add comments as needed

2024-07-10 09:57:00 -07:00