You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
 
Go to file
Tom DNetto 1cfd96cdc2 tka: implement AUM and Key types
This is the first in a series of PRs implementing the internals for the
Tailnet Key Authority. This PR implements the AUM and Key types, which
are used by pretty much everything else. Future PRs:

 - The State type & related machinery
 - The Tailchonk (storage) type & implementation
 - The Authority type and sync implementation

Signed-off-by: Tom DNetto <tom@tailscale.com>
2 years ago
.bencher bencher: add config to suppress failures on benchmark regressions. 3 years ago
.github .github/workflows: downgrade MinGW to work around windows-race failures 2 years ago
atomicfile atomicfile: don't Chmod on windows 4 years ago
chirp all: use any instead of interface{} 3 years ago
client/tailscale client/tailscale: update ACLRow and ACLTest with new ACL fields 2 years ago
cmd util/cloudenv: add Azure support & DNS IPs 2 years ago
control control/controlclient, ipn/ipnlocal: remove Client.SetExpirySooner, fix race 2 years ago
derp net/wsconn: remove homegrown wrapper for turning a websocket.Conn into a net.Conn 3 years ago
disco types/key: export constants for key size, not a method. 3 years ago
docs docs/k8s: Add env vars for tailscaled args 2 years ago
envknob ipn/ipnlocal: reject tailscale up --ssh if disabled on tailnet 3 years ago
health cmd/tailscale: surface authentication errors in status.Health (#4748) 3 years ago
hostinfo util/cloudenv: add Azure support & DNS IPs 2 years ago
internal/tooldeps util/deephash: move internal/deephash to util/deephash 3 years ago
ipn ipn/ipnlocal: prefer to use one CGNAT route on the Mac 2 years ago
kube all: use any instead of interface{} 3 years ago
log wasm: drop pprof dependency 3 years ago
logpolicy logpolicy: fix config initialization bug (#5010) 2 years ago
logtail logtail: do not panic in PrivateID.PublicID (#4815) 3 years ago
metrics all: use testingutil.MinAllocsPerRun 3 years ago
net net/dns/resolver: respond with SERVFAIL if all upstreams fail 2 years ago
packages/deb all: use any instead of interface{} 3 years ago
paths net/dns, paths, util/winutil: change net/dns/windowsManager NRPT management to support more than 50 domains. 3 years ago
portlist wasm: exclude code that's not used on iOS for Wasm too 3 years ago
prober prober: used keyed initializer for LimitedReader. 3 years ago
safesocket safesocket: log warning when running sandboxed Mac binary as root 3 years ago
scripts install.sh: Add archarm and Raspbian Stretch 2 years ago
smallzstd smallzstd: new package that constructs zstd small encoders/decoders. 4 years ago
ssh/tailssh ssh/tailssh: fix Tailscale SSH to Linux Arch machines 2 years ago
syncs syncs: use TryLock and TryRLock instead of unsafe 3 years ago
tailcfg util/cloudenv: add Azure support & DNS IPs 2 years ago
tempfork ssh/tailssh: send banner messages during auth, move more to conn 3 years ago
tka tka: implement AUM and Key types 2 years ago
tool tool/go: add wrapper to download and use go.toolchain.rev go version. 3 years ago
tsconst net/interfaces/windows: update Tailscale interface detection logic to 3 years ago
tsnet tsnet: add Server.AuthKey field 2 years ago
tstest net/portmapper: enable for iOS 3 years ago
tstime tstime/mono: fix Before function comment 3 years ago
tsweb tsweb: implement interceptor for error page presentation 3 years ago
types control/controlclient, types/netmap: remove unused LocalPort field 2 years ago
util util/cloudenv: add Azure support & DNS IPs 2 years ago
version Docker: add ALPINE.txt to manage alpine versions 2 years ago
wf all: use any instead of interface{} 3 years ago
wgengine wgengine/router: avoid unncessary routing configuration changes 2 years ago
words words: The lists continue to drag-on. (#4780) 3 years ago
.gitattributes .: add .gitattributes entry to use Go hunk-header driver 3 years ago
.gitignore Makefile: update make spk target to use the new go spk builder 3 years ago
ALPINE.txt Docker: add ALPINE.txt to manage alpine versions 2 years ago
AUTHORS Move Linux client & common packages into a public repo. 5 years ago
CODE_OF_CONDUCT.md Add a code of conduct. 5 years ago
Dockerfile Dockerfile: fix build 2 years ago
Dockerfile.base Dockerfile: bump alpine to 3.16 2 years ago
LICENSE LICENSE: Reformat for Github 4 years ago
Makefile Makefile: add tidy target 3 years ago
PATENTS Move Linux client & common packages into a public repo. 5 years ago
README.md README.md: update current Go release 3 years ago
SECURITY.md Add a SECURITY.md for vulnerability reports. 5 years ago
VERSION.txt VERSION.txt: this is v1.27.0 3 years ago
api.md api.md: document preauthorized and tags fields 3 years ago
build_dist.sh tool/go: add wrapper to download and use go.toolchain.rev go version. 3 years ago
build_docker.sh Dockerfile: bump alpine to 3.16 2 years ago
go.mod tka: implement AUM and Key types 2 years ago
go.sum tka: implement AUM and Key types 2 years ago
go.toolchain.branch go.toolchain.branch: upgrade to Go 1.18 3 years ago
go.toolchain.rev go.toolchain.rev: bump Go to 1.18.3 (+ Tailscale patches) 3 years ago
pull-toolchain.sh go.toolchain.rev: add update script 3 years ago
shell.nix shell.nix: use 1.18 from system nixpkgs 2 years ago
staticcheck.conf staticcheck.conf: remove unnecessary warning 4 years ago
version-embed.go Docker: add ALPINE.txt to manage alpine versions 2 years ago

README.md

Tailscale

https://tailscale.com

Private WireGuard® networks made easy

Overview

This repository contains all the open source Tailscale client code and the tailscaled daemon and tailscale CLI tool. The tailscaled daemon runs on Linux, Windows and macOS, and to varying degrees on FreeBSD, OpenBSD, and Darwin. (The Tailscale iOS and Android apps use this repo's code, but this repo doesn't contain the mobile GUI code.)

The Android app is at https://github.com/tailscale/tailscale-android

The Synology package is at https://github.com/tailscale/tailscale-synology

Using

We serve packages for a variety of distros at https://pkgs.tailscale.com .

Other clients

The macOS, iOS, and Windows clients use the code in this repository but additionally include small GUI wrappers that are not open source.

Building

go install tailscale.com/cmd/tailscale{,d}

If you're packaging Tailscale for distribution, use build_dist.sh instead, to burn commit IDs and version info into the binaries:

./build_dist.sh tailscale.com/cmd/tailscale
./build_dist.sh tailscale.com/cmd/tailscaled

If your distro has conventions that preclude the use of build_dist.sh, please do the equivalent of what it does in your distro's way, so that bug reports contain useful version information.

We only guarantee to support the latest Go release and any Go beta or release candidate builds (currently Go 1.18) in module mode. It might work in earlier Go versions or in GOPATH mode, but we're making no effort to keep those working.

Bugs

Please file any issues about this code or the hosted service on the issue tracker.

Contributing

PRs welcome! But please file bugs. Commit messages should reference bugs.

We require Developer Certificate of Origin Signed-off-by lines in commits.

About Us

Tailscale is primarily developed by the people at https://github.com/orgs/tailscale/people. For other contributors, see:

WireGuard is a registered trademark of Jason A. Donenfeld.