mirror/tailscale
1
0
Fork 0
mirror of https://github.com/tailscale/tailscale.git synced 2026-05-29 11:11:31 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
mjf/nmc-timing
tailscale/ipn/ipnlocal
History
Brad Fitzpatrick 412c812d76 ipn/ipnlocal: use ACME ALPN for authorized Funnel non-CertDomain domains 
If a user explicitly adds a non-ts.net (not a CertDomain domain) domain
like "foo.com" to their serve config as a web target that's also an allowed
funnel domain (using raw "tailscale serve set-config"), then use the new
ALPN cert fetching (from b553969b) to get certs for that domain.

This is just plumbing; there's no new product functionality to
actually enable this easily client-side, and it also has no visible
product surface to enable it server-side.

Updates tailscale/corp#41736

Change-Id: Ie2e421ac9611bce64bba3de6a454b2d505ea0e8a
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2026-05-28 13:33:45 -07:00
..
netmapcache
ipn/ipnlocal/netmapcache: add UpdateSelfOnly method (#19818)
2026-05-20 16:29:04 -07:00
testdata
ipn/ipnlocal: fix the path for writing cert files (#7203)
2023-02-07 14:34:04 -08:00
breaktcp_darwin.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
breaktcp_linux.go
all: use Go 1.26 things, run most gofix modernizers
2026-03-06 13:32:03 -08:00
bus_test.go
ipn/ipnlocal, control/controlclient: process node adds/removes in constant time
2026-05-21 09:26:19 -07:00
bus.go
ipn/ipnlocal, control/controlclient: process node adds/removes in constant time
2026-05-21 09:26:19 -07:00
c2n_pprof.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
c2n_test.go
ipn/ipnlocal: add health.Tracker to tests where it was warning in CI
2026-04-05 20:20:07 -07:00
c2n.go
ipn/ipnlocal,tailcfg: add /debug/tka c2n endpoint (#19198)
2026-04-20 16:00:03 +01:00
captiveportal.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
cert_disabled.go
ipnlocal: try ACME TLS-ALPN for Funnel renewals
2026-05-27 09:30:23 -07:00
cert_test.go
ipn/ipnlocal: use ACME ALPN for authorized Funnel non-CertDomain domains
2026-05-28 13:33:45 -07:00
cert.go
ipn/ipnlocal: use ACME ALPN for authorized Funnel non-CertDomain domains
2026-05-28 13:33:45 -07:00
diskcache_test.go
ipn/ipnlocal/netmapcache: add UpdateSelfOnly method (#19818)
2026-05-20 16:29:04 -07:00
diskcache.go
ipn/ipnlocal/netmapcache: add UpdateSelfOnly method (#19818)
2026-05-20 16:29:04 -07:00
dnsconfig_test.go
net/dns, ipn/local: skip health warnings in dns forwarder when accept-dns is false (#18572)
2026-02-10 09:29:14 -05:00
drive_test.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
drive_tomove.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
drive.go
ipnlocal/drive: reduce noisey per-peer remote logs (#19493)
2026-04-24 08:26:33 -07:00
expiry_test.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
expiry.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
extension_host_test.go
ipn/{ipnext,ipnlocal}: expose authReconfig in ipnext.Host as AuthReconfigAsync
2026-03-20 17:29:11 -04:00
extension_host.go
ipn/ipnlocal: debounce extra enqueues in ExtensionHost.AuthReconfigAsync
2026-03-25 09:11:15 -04:00
hwattest.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
local_test.go
ipn/ipnlocal: don't dup-suppress UserProfiles on IPNBus on profile switches
2026-05-27 14:47:02 -07:00
local.go
ipn/ipnlocal: don't dup-suppress UserProfiles on IPNBus on profile switches
2026-05-27 14:47:02 -07:00
loglines_test.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
netstack.go
types/ptr: deprecate ptr.To, use Go 1.26 new
2026-03-05 20:13:18 -08:00
node_backend_test.go
types/ptr: deprecate ptr.To, use Go 1.26 new
2026-03-05 20:13:18 -08:00
node_backend.go
types/netmap, ipn/ipnlocal, control/controlclient: rename NodeMutationAdd to NodeMutationUpsert
2026-05-27 08:37:14 -07:00
peerapi_drive.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
peerapi_macios_ext.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
peerapi_test.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
peerapi.go
ipn/ipnlocal, all: split LocalBackend.NetMap into NetMapNoPeers / NetMapWithPeers
2026-04-30 11:14:06 -07:00
prefs_metrics.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
profiles_notwindows.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
profiles_test.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
profiles_windows.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
profiles.go
tailcfg: reintroduce UserProfile.Groups
2026-03-09 11:08:45 +00:00
serve_disabled.go
ipnlocal: try ACME TLS-ALPN for Funnel renewals
2026-05-27 09:30:23 -07:00
serve_test.go
ipn/ipnlocal: add HTTP/2 Content-Type tests for serve reverse proxy (#19905)
2026-05-28 09:46:36 -07:00
serve_unix_test.go
cmd/vet: add subtestnames analyzer; fix all existing violations
2026-04-05 15:52:51 -07:00
serve.go
ipnlocal: try ACME TLS-ALPN for Funnel renewals
2026-05-27 09:30:23 -07:00
state_test.go
cmd/containerboot: track peers from IPN bus updates, stop using netmap.NetworkMap
2026-05-27 14:12:48 -07:00
tailnet-lock_test.go
all: remove network lock references from private method names
2026-05-28 18:00:36 +01:00
tailnet-lock.go
all: remove network lock references from private method names
2026-05-28 18:00:36 +01:00
tailnetlock_disabled.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
web_client_stub.go
all: remove AUTHORS file and references to it
2026-01-23 15:49:45 -08:00
web_client.go
ipn/ipnlocal, all: split LocalBackend.NetMap into NetMapNoPeers / NetMapWithPeers
2026-04-30 11:14:06 -07:00