Fixed: Do not allow msiexec to reboot the operating system
macOS
Issue that could cause the Tailscale system extension to not be installed upon app launch, when deploying Tailscale using MDM and using a configuration profile to pre-approve the VPN tunnel (applies to standalone variant only)
New: [Web interface][web-interface] now uses ACL grants to manage access on tagged devices
Changed: [Tailscale SSH][tailscale-ssh] connections now disable unnecessary hostname [canonicalization][canonicalization]
Changed: [tailscale bugreport][tailscale-bugreport] command for generating diagnostic logs now contain ethtool information
Changed: Mullvad's [family-friendly server][mullvad-family-friendly] is added to the list of well known DNS over HTTPS (DoH) servers
Changed: DNS over HTTP requests now contain a timeout
Changed: TCP forwarding attempts in [userspace mode][userspace-mode] now have a per-client limit
Changed: Endpoints with link-local IPv6 addresses is preferred over private addresses
Changed: WireGuard logs are less verbose
Changed: Go is updated to version 1.22.1
Fixed: [DERP server][derp-servers] region no longer changes if connectivity to the new DERP region is degraded
Linux
Changed: [Auto-update][auto-updates] version detection on Alpine Linux is improved
Changed: IPv6 support detection in a container environment is improved
Fixed: DNS configuration on Amazon Linux 2023 no longer causes an infinite loop
Windows
Changed: [ManagedByOrganizationName][mdm-keys-org], [ManagedByCaption][mdm-keys-caption], and [ManagedByURL][mdm-keys-URL] system policy keys are now supported
Fixed: Tailscale Tunnel WinTun adapter handling is improved
Fixed: [MSI][windows-msi] upgrades no longer ignore policy properties set during initial install
macOS
New: A .pkg installer package is now available for the [standalone][macos-variants] release of the Tailscale client
Changed: [Taildrop][taildrop] notifications now include actions to reveal the received file in the Finder, or delete it
Changed: [Tailnet lock][tailnet-lock] settings UI displays more information about the status, including key and public key trust status
Changed: The onboarding flow now guides the user in enabling the Tailscale system extension
Changed: Launch Tailscale at login settings item can now be toggled when the Tailscale client is disconnected
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps tailscale.com from 1.60.1 to 1.62.1.
Release notes
Sourced from tailscale.com's releases.
... (truncated)
Commits
2827330
VERSION.txt: this is v1.62.10ad803a
util/linuxfw,wgengine/router: enable IPv6 configuration when netfilter is dis...7074c49
control/controlclient: fix panic regression from earlier load balancer hint h...f9cdd9d
control/controlclient: send load balancing hint HTTP request header6953dbc
cmd/k8s-operator,ipn/conf.go: fix --accept-routes for proxies (#11454)8a0c69d
clientupdate: do not allow msiexec to reboot the OS (#11409) (#11416)cc950c0
VERSION.txt: this is v1.62.0f12d255
prober: add a DERP bandwidth probe5018683
prober: remove unused derp prober latency measurements205a10b
prober: export probe counters and cumulative latencyDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show