rename tailnet lock tskey-wrap to tailnet lock sign
FreeBSD
fixes a bug setting the effective group ID on some non-interactive Tailscale SSH sessions. This issue is specific to FreeBSD's implementation of setgroups and does not impact other platforms.
Early warning: as early as August 2023, Windows 7, 8, Server 2008 and Server 2012 will no longer be supported. Similarly, for macOS, macOS 10.13 High Sierra or 10.14 Mojave will no longer be supported and macOS 10.15 Catalina or later will be required.
All platforms
The tailscale debug portmap command replaces tailscaled debug -portmap; this is now available on platforms without a tailscaled binary (like the macOS App Store).
Several improvements to UPnP portmapping have been made that should allow it to work with a broader set of home routers (#7377).
Add tailscale configure to help configure third party applications to use Tailscale features.
Add tailscale debug derp to help diagnose DERP-related difficulty.
Allow tailnet-lock to be used with preauth keys.
The tailscale serve command has been overhauled, and we've moved Funnel to its own command, tailscale funnel (docs).
Added tailscale debug capture to write pcaps for debugging.
Linux
Allow certificates to be stored in Kubernetes secret storage.
Windows
MSI installers start the GUI without user interaction, to allow remote upgrade.
macOS
Add a notification upon node key expiration (only on macOS 10.14 and later).
Support alternate control servers by setting the URL in Settings > Tailscale.
Android
Fix Chromecast support while Tailscale is active.
1.38.0
Not released
We tagged the tree for v1.38.0 but were not able to build a release. The tag point itself is fine, if you have pulled from this tag you should feel free to build and use the 1.38.0 binaries which result.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps tailscale.com from 1.36.2 to 1.38.2.
Release notes
Sourced from tailscale.com's releases.
Commits
3db61d0
VERSION.txt: this is v1.38.2817aa28
net/sockstats: export cellular-only clientmetricsd00c046
ssh/tailssh: fix privilege dropping on FreeBSD; add testsaad01c8
cmd/tailscale/cli: move tskey-wrap functionality under lock signfd558e2
net/interfaces: also allow link-local for AzureAppServices.3eeff9e
VERSION.txt: this is v1.38.16c0e6a5
version/mkversion: don't break on tagged go.mod entries10d462d
VERSION.txt: this is v1.38.051b0169
licenses: update win/apple licensesb4d3e29
tsnet: avoid deadlock on closeDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)