summaryrefslogtreecommitdiffhomepage
AgeCommit message (Expand)AuthorFilesLines
2022-04-21util/kmod: call unix.Capget directly, without kernel.org/pub/linux/libs/secur...bradfitz/kmodBrad Fitzpatrick4-19/+6
2022-04-21net/dns/resolver, net/tsaddr: fix reverse lookups in 4to6 IP rangeTom DNetto3-2/+29
2022-04-20wgengine/router,util/kmod: load & log xt_markJames Tucker6-0/+225
2022-04-20tailcfg: document SSHPrincipal.PubKeys URL expansionsBrad Fitzpatrick1-0/+4
2022-04-20ssh/tailssh: fix double SSH-2.0- prefix in greeting bannerBrad Fitzpatrick1-1/+1
2022-04-20ipn/ipnlocal: close peerapi listeners on LocalBackend.ShutdownBrad Fitzpatrick1-0/+1
2022-04-20ssh/tailssh: send banner messages during auth, move more to connMaisem Ali8-193/+212
2022-04-20scripts/install: add Alma Linux.Denton Gentry1-1/+1
2022-04-20scripts/installer: support LinuxMint Debian.Denton Gentry1-7/+20
2022-04-20scripts/installer: call emerge with --ask=nDenton Gentry1-1/+1
2022-04-20scripts/installer: add ParrotOS supportDenton Gentry1-0/+11
2022-04-20cmd/tailscale: add "debug via" subcommand to do CIDR math for via rangesBrad Fitzpatrick2-0/+67
2022-04-20ssh/tailssh: support expansions in public key fetch URL tooBrad Fitzpatrick2-1/+37
2022-04-20ssh/tailssh: terminate ssh auth early if no policy can matchMaisem Ali5-154/+221
2022-04-20ipn/ipnlocal: use the fake peerapi listener as fallback if netstack availableBrad Fitzpatrick1-2/+9
2022-04-20wgengine/monitor: split the unexpected stringification log lineMaisem Ali1-2/+3
2022-04-20wgengine/monitor: ignore OS-specific uninteresting interfacesMaisem Ali6-4/+32
2022-04-20ipn/ipnlocal: make peerapi listener on Android avoid the kernelBrad Fitzpatrick1-0/+54
2022-04-20tstest/iosdeps: add test for forbidden iOS dependenciesBrad Fitzpatrick2-0/+104
2022-04-20ipn/ipnlocal: reject tailscale up --ssh if disabled on tailnetBrad Fitzpatrick3-2/+12
2022-04-20wgengine/router: make supportsV6NAT check catch more casesBrad Fitzpatrick1-2/+8
2022-04-20cmd/nginx-auth: maintainer scripts and tailnet checking (#4460)Xe Iaso9-11/+107
2022-04-19cmd/proxy-to-grafana: prevent premature terminationBlake Mizerany1-5/+6
2022-04-19derp/derphttp,net/netcheck: improve netcheck behavior under MITM proxiesTom DNetto2-12/+32
2022-04-19net/dns: schedule DoH upgrade explicitly, fix Resolver.Addr confusionBrad Fitzpatrick10-165/+158
2022-04-19net/dns/resolver: count errors when racing DNS queries, fail earlierBrad Fitzpatrick1-25/+34
2022-04-19net/dns: remove an unused functionBrad Fitzpatrick1-8/+0
2022-04-18tailcfg: clarify how SSHPolicy.Rules are evaluated between auth phasesBrad Fitzpatrick1-3/+15
2022-04-18ssh/tailssh: make checkStillValid also consider username changesMaisem Ali1-2/+2
2022-04-18ipn/ipnlocal: also use SSHPolicies when updating filterHashMaisem Ali1-1/+5
2022-04-18go.toolchain.rev: update to go1.18.1 (#4438)Joe Tsai1-1/+1
2022-04-18hostinfo, tailcfg: add desktop detection on Linux to hostinfoTom DNetto4-1/+33
2022-04-18tailcfg, logtail: provide Debug bit to disable logtailBrad Fitzpatrick3-0/+20
2022-04-18net/dns/resolver: make DoH dialer use existing dnscache happy eyeball dialerBrad Fitzpatrick4-15/+113
2022-04-18ipn/ipnlocal: add capability for debugging peers over peerapiBrad Fitzpatrick2-23/+24
2022-04-18cmd/tailscale: [ssh] enable StrictHostKeyChecking modeMaisem Ali1-0/+4
2022-04-18cmd/tailscale, etc: make "tailscale up --ssh" fail fast when unavailableBrad Fitzpatrick4-1/+89
2022-04-18cmd/tailscale: unhide 'up --ssh' behind WIP env varBrad Fitzpatrick1-4/+1
2022-04-18ssh/tailssh: cache public keys fetched from URLsBrad Fitzpatrick2-21/+172
2022-04-17wgengine/monitor: do not set timeJumped on iOS/AndroidMaisem Ali1-26/+33
2022-04-17ssh/tailssh: close sessions on policy change if no longer allowedBrad Fitzpatrick2-26/+55
2022-04-17ipn/ipnlocal: only call updateFilter with mutex heldBrad Fitzpatrick1-15/+16
2022-04-17ipn/ipnlocal: add start of inter-user TaildropBrad Fitzpatrick3-3/+33
2022-04-17net/dnsfallback: update from 'go generate'Brad Fitzpatrick1-8/+15
2022-04-17all: add arbitrary capability supportBrad Fitzpatrick9-5/+218
2022-04-15tailcfg, control/controlclient: TSMP & disco pingsJames Tucker4-37/+110
2022-04-15go.mod: bump u-rootJames Tucker2-6/+7
2022-04-15ssh/tailssh: make the SSH server a singleton, register with LocalBackendBrad Fitzpatrick8-53/+78
2022-04-15tailcfg, ssh/tailssh: optionally support SSH public keys in wire policyBrad Fitzpatrick5-61/+241
2022-04-14tailcfg, ipn/ipnlocal: add debug flag to enable one-big-CGNAT/10 routeBrad Fitzpatrick2-3/+12
Copyright © 2025 - 2026 Wayne Cole. WTFPL. Attribution appreciated. No warranty. Not liable for bodily damages.