You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
 
Go to file
Brad Fitzpatrick 756d6a72bd wgengine: lazily create peer wireguard configs more explicitly
Rather than consider bigs jumps in last-received-from activity as a
signal to possibly reconfigure the set of wireguard peers to have
configured, instead just track the set of peers that are currently
excluded from the configuration. Easier to reason about.

Also adds a bit more logging.

This might fix an error we saw on a machine running a recent unstable
build:

2020-08-26 17:54:11.528033751 +0000 UTC: 8.6M/92.6M magicsock: [unexpected] lazy endpoint not created for [UcppE], d:42a770f678357249
2020-08-26 17:54:13.691305296 +0000 UTC: 8.7M/92.6M magicsock: DERP packet received from idle peer [UcppE]; created=false
2020-08-26 17:54:13.691383687 +0000 UTC: 8.7M/92.6M magicsock: DERP packet from unknown key: [UcppE]

If it does happen again, though, we'll have more logs.
4 years ago
.github Switch to Go 1.15. 4 years ago
atomicfile atomicfile: don't Chmod on windows 4 years ago
cmd cmd/tailscale/cli: add basic 'down' subcommand 4 years ago
control/controlclient tailcfg, wgengine, controlclient: add control-side gating of lazy WG config 4 years ago
derp derp: set NotBefore and NotAfter in DERP server's metacert 4 years ago
disco wgengine/magicsock: run test DERP in mode where only disco packets allowed 4 years ago
internal/deepprint all: dns refactor, add Proxied and PerDomain flags from control (#615) 4 years ago
ipn cmd/tailscale/cli: add basic 'down' subcommand 4 years ago
log/logheap log/logheap: appease staticcheck 5 years ago
logpolicy net/tshttpproxy: new package, support WPAD/PAC proxies on Windows 4 years ago
logtail backoff: update to Go style, document a bit, make 30s explicit 4 years ago
metrics metrics: add LabelMap.GetFloat 4 years ago
net net/tshttpproxy: add start of Kerberos Negotiate auth to proxies on Windows 4 years ago
paths paths, cmd/tailscaled: on Windows, don't try to migrate from legacy relay.conf 4 years ago
portlist portlist: avoid syscall audit violation logspam on Android 4 years ago
safesocket safesocket: gofmt 4 years ago
scripts wgengine/router: split out from wgengine. 5 years ago
smallzstd smallzstd: new package that constructs zstd small encoders/decoders. 4 years ago
syncs syncs: add AtomicBool 5 years ago
tailcfg tailcfg, tsdns: derive root domains from list of nodes (#708) 4 years ago
tempfork tempfork: add lite fork of net/http/pprof w/o html/template or reflect 4 years ago
tstest ipn: tag and test for grinder log lines (#711) 4 years ago
tstime tstime: hand-implement parseInt for specific needs of rfc3339 parsing. 5 years ago
tsweb tsweb: rewrite JSONHandler without using reflect (#684) 4 years ago
types types/key: restore Curve25519 clamping in NewPrivate 4 years ago
util/lineread util/lineread: add little package to read lines from files/Readers 4 years ago
version version: bump date 4 years ago
wgengine wgengine: lazily create peer wireguard configs more explicitly 4 years ago
.gitattributes .gitattributes: add a smudge filter for go.mod. 5 years ago
.gitignore cmd/relaynode: drop local --acl-file in favour of central packet filter. 5 years ago
AUTHORS Move Linux client & common packages into a public repo. 5 years ago
CODE_OF_CONDUCT.md Add a code of conduct. 5 years ago
Dockerfile Dockerfile: install iproute2 in the container image. 5 years ago
LICENSE Move Linux client & common packages into a public repo. 5 years ago
Makefile cmd/tailscale/cli: fix vet warning 4 years ago
PATENTS Move Linux client & common packages into a public repo. 5 years ago
README.md Switch to Go 1.15. 4 years ago
SECURITY.md Add a SECURITY.md for vulnerability reports. 5 years ago
go.mod net/tshttpproxy: add start of Kerberos Negotiate auth to proxies on Windows 4 years ago
go.sum net/tshttpproxy: add start of Kerberos Negotiate auth to proxies on Windows 4 years ago

README.md

Tailscale

https://tailscale.com

Private WireGuard® networks made easy

Overview

This repository contains all the open source Tailscale client code and the tailscaled daemon and tailscale CLI tool. The tailscaled daemon runs primarily on Linux; it also works to varying degrees on FreeBSD, OpenBSD, Darwin, and Windows.

The Android app is at https://github.com/tailscale/tailscale-android

Using

We serve packages for a variety of distros at https://pkgs.tailscale.com .

Other clients

The macOS, iOS, and Windows clients use the code in this repository but additionally include small GUI wrappers that are not open source.

Building

go install tailscale.com/cmd/tailscale{,d}

We only guarantee to support the latest Go release and any Go beta or release candidate builds (currently Go 1.15) in module mode. It might work in earlier Go versions or in GOPATH mode, but we're making no effort to keep those working.

Bugs

Please file any issues about this code or the hosted service on the issue tracker.

Contributing

PRs welcome! But please file bugs. Commit messages should reference bugs.

We require Developer Certificate of Origin Signed-off-by lines in commits.

About Us

We are apenwarr, bradfitz, crawshaw, danderson, dfcarney, josharian from Tailscale Inc. You can learn more about us from our website.

WireGuard is a registered trademark of Jason A. Donenfeld.