You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Alex Chan
d47c697748
ipn/ipnlocal: skip TKA bootstrap request if Tailnet Lock is unavailable ...
If you run tailscaled without passing a `--statedir`, Tailnet Lock is
unavailable -- we don't have a folder to store the AUMs in.
This causes a lot of unnecessary requests to bootstrap TKA, because
every time the node receives a NetMap with some TKA state, it tries to
bootstrap, fetches the bootstrap TKA state from the control plane, then
fails with the error:
TKA sync error: bootstrap: network-lock is not supported in this
configuration, try setting --statedir
We can't prevent the error, but we can skip the control plane request
that immediately gets dropped on the floor.
In local testing, a new node joining a tailnet caused *three* control
plane requests which were unused.
Updates tailscale/corp#19441
Signed-off-by: Alex Chan <alexc@tailscale.com>
6 months ago
..
auditlog
ipn/ipnext: remove some interface indirection to add hooks
12 months ago
conffile
cmd/tailscale/cli,ipn/conffile: add declarative config mode for Services ( #17435 )
6 months ago
desktop
util/syspolicy: finish plumbing policyclient, add feature/syspolicy, move global impl
8 months ago
ipnauth
all: use buildfeature constants in a few more places
7 months ago
ipnext
feature/portlist: pull portlist service porting into extension, use eventbus
7 months ago
ipnlocal
ipn/ipnlocal: skip TKA bootstrap request if Tailnet Lock is unavailable
6 months ago
ipnserver
feature/featuretags, all: add build features, use existing ones in more places
7 months ago
ipnstate
cmd/tailscale, ipn/ipnstate, wgengine/magicsock: update ping output for peer relay ( #16515 )
9 months ago
lapitest
various: allow tailscaled shutdown via LocalAPI
7 months ago
localapi
all: use a consistent capitalisation for "Tailnet Lock"
6 months ago
policy
ipn,tailconfig: clean up unreleased and removed app connector service
2 years ago
store
ipn/store, feature/condregister: permit callers to empty import optonal ipn stores
7 months ago
backend.go
ipn: fix the string representation of an empty ipn.Notify
7 months ago
backend_test.go
ipn: fix the string representation of an empty ipn.Notify
7 months ago
conf.go
ipn: ensure that conffile is source of truth for advertised services. ( #15361 )
1 year ago
doc.go
ipn: generate LoginProfileView and use it instead of *LoginProfile where appropriate
1 year ago
ipn_clone.go
cmd/tailscale/cli,ipn,ipn/ipnlocal: add AutoExitNode preference for automatic exit node selection
10 months ago
ipn_test.go
all: do not depend on the testing package
2 years ago
ipn_view.go
util/linuxfw, feature/buildfeatures: add ts_omit_iptables to make IPTables optional
7 months ago
prefs.go
types/persist: add AttestationKey ( #17281 )
6 months ago
prefs_test.go
types/persist: add AttestationKey ( #17281 )
6 months ago
serve.go
cmd/tailscale/cli: revert key for web config for services to FQDN ( #16627 )
9 months ago
serve_test.go
cmd/tailscale/cli: Add service flag to serve command ( #16191 )
9 months ago
store.go
tailcfg: report StateEncrypted in Hostinfo ( #16434 )
10 months ago
store_test.go
ipn/store: automatically migrate between plaintext and encrypted state ( #16318 )
10 months ago
Alex Chan
d47c697748