You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Brad Fitzpatrick
e92eb6b17b
net/tlsdial: fix TLS cert validation of HTTPS proxies ...
If you had HTTPS_PROXY=https://some-valid-cert.example.com running a
CONNECT proxy, we should've been able to do a TLS CONNECT request to
e.g. controlplane.tailscale.com:443 through that, and I'm pretty sure
it used to work, but refactorings and lack of integration tests made
it regress.
It probably regressed when we added the baked-in LetsEncrypt root cert
validation fallback code, which was testing against the wrong hostname
(the ultimate one, not the one which we were being asked to validate)
Fixes #16222
Change-Id: If014e395f830e2f87f056f588edacad5c15e91bc
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
10 months ago
..
archtest
all: cleanup unused code, part 1 ( #10661 )
2 years ago
deptest
tstest/deptest: add DepChecker.ExtraEnv option for callers to set
1 year ago
integration
feature/taildrop, ipn/ipnlocal: remove leftover dup calls to osshare
11 months ago
iosdeps
feature/capture: move packet capture to feature/*, out of iOS + CLI
1 year ago
jsdeps
all: use math/rand/v2 more
2 years ago
mts
tstest/mts: add multiple-tailscaled development tool
1 year ago
natlab
net/{netx,memnet},all: add netx.DialFunc, move memnet Network impl
1 year ago
nettest
net/{netx,memnet},all: add netx.DialFunc, move memnet Network impl
1 year ago
tailmac
tstest/tailmac: add support for mounting host directories in the guest ( #13957 )
1 year ago
tlstest
net/tlsdial: fix TLS cert validation of HTTPS proxies
10 months ago
tools
go.{mod,sum},tstest/tools,k8s-operator,cmd/k8s-operator: autogenerate CRD API docs ( #12884 )
2 years ago
allocs.go
all: update copyright and license headers
3 years ago
clock.go
tstime: add Since method ( #8622 )
3 years ago
clock_test.go
all: use Go 1.22 range-over-int
2 years ago
log.go
net/portmapper: fix test flakes from logging after test done
12 months ago
log_test.go
all: update copyright and license headers
3 years ago
reflect.go
net/dns: fix IsZero and Equal methods on OSConfig
2 years ago
resource.go
tstest: parse goroutines for diff in ResourceCheck ( #15619 )
1 year ago
resource_test.go
tstest: parse goroutines for diff in ResourceCheck ( #15619 )
1 year ago
test-wishlist.md
wf/firewall: allow link-local multicast for permitted local routes when the killswitch is on on Windows
2 years ago
tstest.go
ipn/{conffile,ipnlocal}: start booting tailscaled from a config file w/ auth key
3 years ago
tstest_test.go
tstest: add method to Replace values for tests
3 years ago
Brad Fitzpatrick
e92eb6b17b