TheArchive/tailscale
1
0
Fork 0
mirror of https://github.com/tailscale/tailscale.git synced 2025-06-19 14:48:39 +00:00
Code Issues Packages Projects Releases Wiki Activity
tailscale/cmd
History
Brad Fitzpatrick e92eb6b17b net/tlsdial: fix TLS cert validation of HTTPS proxies 
If you had HTTPS_PROXY=https://some-valid-cert.example.com running a
CONNECT proxy, we should've been able to do a TLS CONNECT request to
e.g. controlplane.tailscale.com:443 through that, and I'm pretty sure
it used to work, but refactorings and lack of integration tests made
it regress.

It probably regressed when we added the baked-in LetsEncrypt root cert
validation fallback code, which was testing against the wrong hostname
(the ultimate one, not the one which we were being asked to validate)

Fixes #16222

Change-Id: If014e395f830e2f87f056f588edacad5c15e91bc
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2025-06-18 14:20:39 -07:00
..
addlicense
all: fix golangci-lint errors
2025-01-07 13:05:37 -08:00
build-webclient
client/web: precompress assets
2023-12-07 20:57:31 -05:00
checkmetrics
cmd/checkmetrics: add command for checking metrics against kb
2024-12-02 10:30:46 +01:00
cloner
scripts/check_license_headers.sh: delete, rewrite as a Go test
2025-06-16 13:35:38 -07:00
connector-gen
cmd/connector-gen: add helper tool for wide app connector configurations
2023-12-15 09:29:42 -08:00
containerboot
cmd/containerboot: allow setting --accept-dns via TS_EXTRA_ARGS again (#16129)
2025-05-30 11:30:03 +01:00
derper
derp/derphttp: add error notify for RunWatchConnectionLoop (#16261)
2025-06-17 13:05:05 -04:00
derpprobe
cmd/{derp,derpprobe},prober,derp: add mesh support to derpprobe (#15414)
2025-06-10 15:29:42 -04:00
dist
cmd/dist,release/dist: sign QNAP builds with a Google Cloud hosted key
2025-04-17 08:39:31 -05:00
get-authkey
cmd,tsnet,internal/client: create internal shim to deprecated control plane API
2025-02-18 10:23:04 -06:00
gitops-pusher
scripts/check_license_headers.sh: delete, rewrite as a Go test
2025-06-16 13:35:38 -07:00
hello
cmd/hello: display native ipv4 (#15191)
2025-03-04 08:47:35 -07:00
k8s-nameserver
cmd/k8s-nameserver: fix AAAA record query response (#12412)
2024-06-10 17:57:22 +01:00
k8s-operator
cmd/k8s-operator: ensure that TLS resources are updated for HA Ingress (#16262)
2025-06-16 12:21:59 +01:00
mkmanifest
cmd/mkmanifest, cmd/tailscale, cmd/tailscaled: remove Windows arm32 resources from OSS
2023-03-01 15:45:12 -07:00
mkpkg
go.mod: upgrade nfpm to v2 (#8786)
2023-08-03 13:00:45 -07:00
mkversion
version/mkversion: open-source version generation logic
2023-02-18 05:21:05 +00:00
nardump
cmd/nardump: support symlinks, add basic test
2025-04-07 19:24:51 -07:00
natc
cmd/natc: add a flag to use specific DNS servers
2025-06-16 13:05:49 -07:00
netlogfmt
all: use Go 1.22 range-over-int
2024-04-16 15:32:38 -07:00
nginx-auth
tailcfg,all: add and use Node.IsTagged()
2023-03-13 08:44:25 -07:00
pgproxy
all: use new LocalAPI client package location
2025-02-05 14:41:42 -08:00
printdep
cmd/printdep: print correct toolchain URL
2023-02-11 17:57:36 +00:00
proxy-test-server
net/tlsdial: fix TLS cert validation of HTTPS proxies
2025-06-18 14:20:39 -07:00
proxy-to-grafana
scripts/check_license_headers.sh: delete, rewrite as a Go test
2025-06-16 13:35:38 -07:00
sniproxy
net/{netx,memnet},all: add netx.DialFunc, move memnet Network impl
2025-04-08 10:07:47 -07:00
speedtest
all: update copyright and license headers
2023-01-27 15:36:29 -08:00
ssh-auth-none-demo
ssh,tempfork/gliderlabs/ssh: replace github.com/tailscale/golang-x-crypto/ssh with golang.org/x/crypto/ssh
2025-01-31 16:36:39 -06:00
stunc
cmd/stunc: enforce read timeout deadline (#14309)
2024-12-06 14:27:52 -05:00
stund
tsweb/varz: export GC CPU fraction gauge
2025-04-28 11:52:21 -07:00
stunstamp
cmd/stunstamp: add protocol context to timeout logs (#13422)
2024-09-09 18:42:13 -07:00
sync-containers
all: adjust some build tags for plan9
2023-08-24 15:42:35 -07:00
systray
cmd/systray: add cmd/systray back as a small client/systray wrapper
2025-01-06 16:49:34 -08:00
tailscale
cmd/tailscale: clean up dns --help messages (#16306)
2025-06-17 20:39:59 -07:00
tailscaled
feature/tpm: implement ipn.StateStore using TPM sealing (#16030)
2025-06-18 14:17:12 -07:00
testcontrol
all: use Go 1.22 range-over-int
2024-04-16 15:32:38 -07:00
testwrapper
cmd/testwrapper: print failed tests preventing retry (#15270)
2025-03-13 14:21:29 +00:00
tl-longchain
all: use new LocalAPI client package location
2025-02-05 14:41:42 -08:00
tsconnect
all: update the tsd.System constructor name (#15372)
2025-04-16 10:10:45 -07:00
tsidp
cmd/tsidp: fix OIDC client persistence across restarts
2025-06-18 10:43:19 -05:00
tsshd
all: update copyright and license headers
2023-01-27 15:36:29 -08:00
tta
all: use new LocalAPI client package location
2025-02-05 14:41:42 -08:00
viewer
cmd/viewer,all: consistently use "read-only" instead of "readonly"
2025-01-14 08:26:56 -08:00
vnet
cmd/vnet: add wsproxy mode
2025-03-29 11:02:42 -07:00
xdpderper
tsweb: split promvarz into an optional dependency
2025-03-18 16:57:04 -07:00