Fixed: Do not allow msiexec to reboot the operating system
macOS
Issue that could cause the Tailscale system extension to not be installed upon app launch, when deploying Tailscale using MDM and using a configuration profile to pre-approve the VPN tunnel (applies to standalone variant only)
New: [Web interface][web-interface] now uses ACL grants to manage access on tagged devices
Changed: [Tailscale SSH][tailscale-ssh] connections now disable unnecessary hostname [canonicalization][canonicalization]
Changed: [tailscale bugreport][tailscale-bugreport] command for generating diagnostic logs now contain ethtool information
Changed: Mullvad's [family-friendly server][mullvad-family-friendly] is added to the list of well known DNS over HTTPS (DoH) servers
Changed: DNS over HTTP requests now contain a timeout
Changed: TCP forwarding attempts in [userspace mode][userspace-mode] now have a per-client limit
Changed: Endpoints with link-local IPv6 addresses is preferred over private addresses
Changed: WireGuard logs are less verbose
Changed: Go is updated to version 1.22.1
Fixed: [DERP server][derp-servers] region no longer changes if connectivity to the new DERP region is degraded
Linux
Changed: [Auto-update][auto-updates] version detection on Alpine Linux is improved
Changed: IPv6 support detection in a container environment is improved
Fixed: DNS configuration on Amazon Linux 2023 no longer causes an infinite loop
Windows
Changed: [ManagedByOrganizationName][mdm-keys-org], [ManagedByCaption][mdm-keys-caption], and [ManagedByURL][mdm-keys-URL] system policy keys are now supported
Fixed: Tailscale Tunnel WinTun adapter handling is improved
Fixed: [MSI][windows-msi] upgrades no longer ignore policy properties set during initial install
macOS
New: A .pkg installer package is now available for the [standalone][macos-variants] release of the Tailscale client
Changed: [Taildrop][taildrop] notifications now include actions to reveal the received file in the Finder, or delete it
Changed: [Tailnet lock][tailnet-lock] settings UI displays more information about the status, including key and public key trust status
Changed: The onboarding flow now guides the user in enabling the Tailscale system extension
Changed: Launch Tailscale at login settings item can now be toggled when the Tailscale client is disconnected
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the gomod group with 2 updates: github.com/stretchr/testify and tailscale.com.
Updates
github.com/stretchr/testify
from 1.8.4 to 1.9.0Release notes
Sourced from github.com/stretchr/testify's releases.
... (truncated)
Commits
bb548d0
Merge pull request #1552 from stretchr/dependabot/go_modules/github.com/stret...814075f
build(deps): bump github.com/stretchr/objx from 0.5.1 to 0.5.2e045612
Merge pull request #1339 from bogdandrutu/uintptr5b6926d
Merge pull request #1385 from hslatman/not-implements9f97d67
Merge pull request #1550 from stretchr/release-notesbcb0d3f
Include the auto-release notes in releasesfb770f8
Merge pull request #1247 from ccoVeille/typos85d8bb6
fix typos in comments, tests and github templatese2741fa
Merge pull request #1548 from arjunmahishi/msgAndArgs6e59f20
http_assertions: assert that the msgAndArgs actually works in testsUpdates
tailscale.com
from 1.60.1 to 1.64.0Release notes
Sourced from tailscale.com's releases.
... (truncated)
Commits
78dc862
VERSION.txt: this is v1.64.0a2eb1c2
wgengine/magicsock: allow disco communication without known endpoints7f4cda2
scripts/installer.sh: add rpm GPG key import (#11686)8fa3026
tsweb: switch to fastuuid for request ID generationd0f3fa7
util/fastuuid: add a more efficient uuid generatordb760d0
cmd/tailscaled: move cleanup to an implicit action during startup8d83add
util/winutil/winenv: add package for current Windows environment detailsda4e92b
cmd/tailscale/cli: prefix all --help usages with "tailscale ...", some tidying9da135d
cmd/tailscale/cli: moved share.go to drive.go1e0ebc6
cmd/tailscale/cli: rename share command to driveDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show