You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
 
Go to file
Aaron Klotz f8a4df66de cmd/tailscale/cli, ipn: move exit node IP parsing and validation from cli into prefs.
We need to be able to provide the ability for the GUI clients to resolve and set
the exit node IP from an untrusted string, thus enabling the ability to specify
that information via enterprise policy.

This patch moves the relevant code out of the handler for `tailscale up`,
into a method on `Prefs` that may then be called by GUI clients.

We also update tests accordingly.

Updates https://github.com/tailscale/corp/issues/4239

Signed-off-by: Aaron Klotz <aaron@tailscale.com>
3 years ago
.bencher bencher: add config to suppress failures on benchmark regressions. 3 years ago
.github .github/workflows: add some iOS CI coverage 3 years ago
atomicfile atomicfile: don't Chmod on windows 4 years ago
chirp chirp: remove regex dependency 3 years ago
client/tailscale cmd/tailscale: propagate tailscaled 403s as AccessDeniedErrors 3 years ago
cmd cmd/tailscale/cli, ipn: move exit node IP parsing and validation from cli into prefs. 3 years ago
control control/controlclient, localapi: shorten expiry time via localapi (#4112) 3 years ago
derp derp/derphttp, wgengine/magicsock: prefer IPv6 to DERPs when IPv6 works 3 years ago
disco types/key: export constants for key size, not a method. 3 years ago
docs fix minor typo 3 years ago
envknob envknob: track, log env knobs in use 3 years ago
health net/dns: add health check for particular broken-ish Linux DNS config 3 years ago
hostinfo version, hostinfo: recognize gokrazy as a distro 3 years ago
internal/tooldeps util/deephash: move internal/deephash to util/deephash 3 years ago
ipn cmd/tailscale/cli, ipn: move exit node IP parsing and validation from cli into prefs. 3 years ago
kube ipn/store: add ability to store data as k8s secrets. 3 years ago
log log/filelogger: make filelogger remove redundant date before adding a date 3 years ago
logpolicy ipn/ipnlocal, wgengine/magicsock, logpolicy: quiet more logs 3 years ago
logtail types/logger, logtail: add mechanism to do structured JSON logs 3 years ago
metrics all: use testingutil.MinAllocsPerRun 3 years ago
net net/interfaces: add FreeBSD default route lookup (portmapping, etc) 3 years ago
packages/deb packages/deb: add package to extract metadata from .deb files. 3 years ago
paths cmd/tailscaled: default to userspace-networking mode on gokrazy, set paths 3 years ago
portlist envknob: add new package for all the strconv.ParseBool(os.Getenv(..)) 3 years ago
safesocket safesocket: add ConnectionStrategy, provide control over fallbacks 3 years ago
scripts scripts/installer: add Ubuntu 22.04 LTS Jammy Jellyfish (#3955) 3 years ago
smallzstd smallzstd: new package that constructs zstd small encoders/decoders. 4 years ago
ssh/tailssh ssh/tailssh: handle local port forwarding 3 years ago
syncs syncs: mark as safe for Go 1.18 3 years ago
tailcfg tailcfg: bump capVer for Noise 3 years ago
tempfork/pprof tempfork/wireguard-windows: remove the old windows firewall code now that we are no 3 years ago
tool tool/go: add wrapper to download and use go.toolchain.rev go version. 3 years ago
tsconst net/interfaces/windows: update Tailscale interface detection logic to 3 years ago
tsnet ipn/store: add common package for instantiating ipn.StateStores 3 years ago
tstest control/controlclient: make RegisterRequest go over Noise 3 years ago
tstime tstime/mono: fix Before function comment 3 years ago
tsweb tsweb: fix JSONHandlerFunc regression where HTTP status was lost on gzip 3 years ago
types types/views: add ContainsExitRoutes to IPPrefixSlice 3 years ago
util util/winutil: migrate corp's winutil into OSS. 3 years ago
version version, hostinfo: recognize gokrazy as a distro 3 years ago
wf all: gofmt -w -s (simplify) tests 3 years ago
wgengine wgengine/router: delete legacy netfilter rule cleanup [Linux] 3 years ago
words words: more hamsters, less hampsters (#3938) 3 years ago
.gitattributes .: add .gitattributes entry to use Go hunk-header driver 3 years ago
.gitignore Makefile: update make spk target to use the new go spk builder 3 years ago
AUTHORS Move Linux client & common packages into a public repo. 5 years ago
CODE_OF_CONDUCT.md Add a code of conduct. 5 years ago
Dockerfile Dockerfile: remove long-obsolete -tags=xversion 3 years ago
Dockerfile.base Dockerfile.base: update to alpine:3.15 3 years ago
LICENSE LICENSE: Reformat for Github 4 years ago
Makefile Makefile: update make spk target to use the new go spk builder 3 years ago
PATENTS Move Linux client & common packages into a public repo. 5 years ago
README.md README.md: update platforms 3 years ago
SECURITY.md Add a SECURITY.md for vulnerability reports. 5 years ago
VERSION.txt VERSION.txt: This is 1.23. 3 years ago
api.md api: document preauthorized auth keys 3 years ago
build_dist.sh tool/go: add wrapper to download and use go.toolchain.rev go version. 3 years ago
build_docker.sh tool/go: add wrapper to download and use go.toolchain.rev go version. 3 years ago
go.mod net/tstun: set link speed to SPEED_UNKNOWN 3 years ago
go.sum net/tstun: set link speed to SPEED_UNKNOWN 3 years ago
go.toolchain.branch go.toolchain.rev: add update script 3 years ago
go.toolchain.rev go.toolchain.rev: bump to Go 1.17.8 3 years ago
pull-toolchain.sh go.toolchain.rev: add update script 3 years ago
shell.nix add nix-shell boilerplate (#1028) 4 years ago
staticcheck.conf staticcheck.conf: remove unnecessary warning 3 years ago
version-embed.go go.toolchain.rev: add Go toolchain rev, tool to print it out 3 years ago

README.md

Tailscale

https://tailscale.com

Private WireGuard® networks made easy

Overview

This repository contains all the open source Tailscale client code and the tailscaled daemon and tailscale CLI tool. The tailscaled daemon runs on Linux, Windows and macOS, and to varying degrees on FreeBSD, OpenBSD, and Darwin. (The Tailscale iOS and Android apps use this repo's code, but this repo doesn't contain the mobile GUI code.)

The Android app is at https://github.com/tailscale/tailscale-android

The Synology package is at https://github.com/tailscale/tailscale-synology

Using

We serve packages for a variety of distros at https://pkgs.tailscale.com .

Other clients

The macOS, iOS, and Windows clients use the code in this repository but additionally include small GUI wrappers that are not open source.

Building

go install tailscale.com/cmd/tailscale{,d}

If you're packaging Tailscale for distribution, use build_dist.sh instead, to burn commit IDs and version info into the binaries:

./build_dist.sh tailscale.com/cmd/tailscale
./build_dist.sh tailscale.com/cmd/tailscaled

If your distro has conventions that preclude the use of build_dist.sh, please do the equivalent of what it does in your distro's way, so that bug reports contain useful version information.

We only guarantee to support the latest Go release and any Go beta or release candidate builds (currently Go 1.17) in module mode. It might work in earlier Go versions or in GOPATH mode, but we're making no effort to keep those working.

Bugs

Please file any issues about this code or the hosted service on the issue tracker.

Contributing

PRs welcome! But please file bugs. Commit messages should reference bugs.

We require Developer Certificate of Origin Signed-off-by lines in commits.

About Us

Tailscale is primarily developed by the people at https://github.com/orgs/tailscale/people. For other contributors, see:

WireGuard is a registered trademark of Jason A. Donenfeld.