You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
 
Go to file
Josh Bleecher Snyder 69cdc30c6d wgengine/wgcfg: remove Config.ListenPort
We don't use the port that wireguard-go passes to us (via magicsock.connBind.Open).
We ignore it entirely and use the port we selected.

When we tell wireguard-go that we're changing the listen_port,
it calls connBind.Close and then connBind.Open.
And in the meantime, it stops calling the receive functions,
which means that we stop receiving and processing UDP and DERP packets.
And that is Very Bad.

That was never a problem prior to b3ceca1dd7,
because we passed the SkipBindUpdate flag to our wireguard-go fork,
which told wireguard-go not to re-bind on listen_port changes.
That commit eliminated the SkipBindUpdate flag.

We could write a bunch of code to work around the gap.
We could add background readers that process UDP and DERP packets when wireguard-go isn't.
But it's simpler to never create the conditions in which wireguard-go rebinds.

The other scenario in which wireguard-go re-binds is device.Down.
Conveniently, we never call device.Down. We go from device.Up to device.Close,
and the latter only when we're shutting down a magicsock.Conn completely.

Rubber-ducked-by: Avery Pennarun <apenwarr@tailscale.com>
Signed-off-by: Josh Bleecher Snyder <josh@tailscale.com>
4 years ago
.github Switch to Go 1.16. 4 years ago
atomicfile atomicfile: don't Chmod on windows 4 years ago
client/tailscale cmd/tailscale, ipn/localapi: add "tailscale bugreport" subcommand 4 years ago
cmd wgengine/...: split into multiple receive functions 4 years ago
control/controlclient cmd/tailscale, ipn/localapi: move IP forwarding check to tailscaled, API 4 years ago
derp derp: return keep-alive message up to callers 4 years ago
disco wgengine/magicsock: send, use endpoints in CallMeMaybe messages 4 years ago
health health: track whether any network interface is up 4 years ago
internal wgengine/wgcfg: remove Config.ListenPort 4 years ago
ipn ipn/ipnlocal: don't install any magicdns names if not proxying. 4 years ago
log log/filelogger: move our Windows disk file writing+rotation package here 4 years ago
logpolicy logpolicy: set log target on windows based on a registry key (#1542) 4 years ago
logtail logtail: use link monitor to determine when to retry after upload failure 4 years ago
metrics metrics: add LabelMap.GetFloat 4 years ago
net net/dns: fix typo in docstring. 4 years ago
paths ipn/ipnlocal: make peerapi work on iOS again 4 years ago
portlist portlist: collect IPv6 listening sockets on linux. 4 years ago
safesocket client/tailscale, cmd/tailscale/cli: plumb --socket through 4 years ago
scripts Allow 2021 in LICENSE header. 4 years ago
smallzstd smallzstd: new package that constructs zstd small encoders/decoders. 4 years ago
syncs syncs: disable TestWatchMultipleValues on Windows CI builds 4 years ago
tailcfg net/dns: remove PerDomain from Config. 4 years ago
tempfork tempfork/wireguard-windows/firewall: add. 4 years ago
tsconst net/netns: add windows support. 4 years ago
tstest tstest/natlab: use net.ErrClosed 4 years ago
tstime tstime: add RandomDurationBetween helper 4 years ago
tsweb tsweb: add num_goroutines expvar 4 years ago
types types/preftype: don't use iota for consts persisted to disk 4 years ago
util net/dns/resolver: teach the forwarder to do per-domain routing. 4 years ago
version version/distro: look for absolute synology path 4 years ago
wgengine wgengine/wgcfg: remove Config.ListenPort 4 years ago
.gitattributes .gitattributes: add a smudge filter for go.mod. 5 years ago
.gitignore Revert "cmd/tailscaled: split package main into main shim + package" 4 years ago
AUTHORS Move Linux client & common packages into a public repo. 5 years ago
CODE_OF_CONDUCT.md Add a code of conduct. 5 years ago
Dockerfile build_docker.sh, Dockerfile: fix bug with shell quoting 4 years ago
LICENSE LICENSE: Reformat for Github 4 years ago
Makefile wgengine/netstack: fix 32-bit build broken from prior commit 4 years ago
PATENTS Move Linux client & common packages into a public repo. 5 years ago
README.md Switch to Go 1.16. 4 years ago
SECURITY.md Add a SECURITY.md for vulnerability reports. 5 years ago
VERSION.txt VERSION.txt: this is 1.7.0. 4 years ago
api.md api.md: add TOC 4 years ago
build_dist.sh build_dist: fix after version refactor. 4 years ago
build_docker.sh build_docker.sh, Dockerfile: fix bug with shell quoting 4 years ago
go.mod go.mod: update to latest wireguard-go and x/sys 4 years ago
go.sum go.mod: update to latest wireguard-go and x/sys 4 years ago
shell.nix add nix-shell boilerplate (#1028) 4 years ago

README.md

Tailscale

https://tailscale.com

Private WireGuard® networks made easy

Overview

This repository contains all the open source Tailscale client code and the tailscaled daemon and tailscale CLI tool. The tailscaled daemon runs primarily on Linux; it also works to varying degrees on FreeBSD, OpenBSD, Darwin, and Windows.

The Android app is at https://github.com/tailscale/tailscale-android

Using

We serve packages for a variety of distros at https://pkgs.tailscale.com .

Other clients

The macOS, iOS, and Windows clients use the code in this repository but additionally include small GUI wrappers that are not open source.

Building

go install tailscale.com/cmd/tailscale{,d}

If you're packaging Tailscale for distribution, use build_dist.sh instead, to burn commit IDs and version info into the binaries:

./build_dist.sh tailscale.com/cmd/tailscale
./build_dist.sh tailscale.com/cmd/tailscaled

If your distro has conventions that preclude the use of build_dist.sh, please do the equivalent of what it does in your distro's way, so that bug reports contain useful version information.

We only guarantee to support the latest Go release and any Go beta or release candidate builds (currently Go 1.16) in module mode. It might work in earlier Go versions or in GOPATH mode, but we're making no effort to keep those working.

Bugs

Please file any issues about this code or the hosted service on the issue tracker.

Contributing

PRs welcome! But please file bugs. Commit messages should reference bugs.

We require Developer Certificate of Origin Signed-off-by lines in commits.

About Us

Tailscale is primarily developed by the people at https://github.com/orgs/tailscale/people. For other contributors, see:

WireGuard is a registered trademark of Jason A. Donenfeld.