search

tailscale / terraform-provider-tailscale

Terraform provider for Tailscale
https://registry.terraform.io/providers/tailscale/tailscale
MIT License
263 stars 47 forks source link

build(deps): bump tailscale.com from 1.64.2 to 1.66.3 #370

Closed dependabot[bot] closed 6 months ago

dependabot[bot] commented 6 months ago

Bumps tailscale.com from 1.64.2 to 1.66.3.

Release notes

Sourced from tailscale.com's releases.

v1.66.3

Changelog incoming shortly

v1.66.2

An internal release which was not distributed

v1.66.1

This release is exclusively for Linux platforms and the standalone variant of the macOS client. It is not available for other platforms.

Linux

  • tailscale set command flags --netfilter-mode, --snat-subnet-routes, and --stateful-filtering are added.
  • Resolved issues with nftables rules for stateful filtering, introduced in v1.66.0.

macOS

  • A version mismatch warning no longer displays when upgrading, if no mismatch is detected.

v1.66.0

We recommend updating all Tailscale clients to v1.66.0 or later to benefit from additional security improvements.

All platforms

  • Implemented client-side quarantining for shared-in exit nodes, as a mitigation for a security vulnerability described in TS-2024-005.

Linux

  • Use the --stateful-filtering flag for the tailscale up to enable stateful filtering for subnet routers and exit nodes, as a mitigation for a security vulnerability described in TS-2024-005.
    • Note: This change can break existing setups that depend on forwarding connections from external hosts (internet, LAN, Docker containers, etc.) into the tailnet through a Tailscale node. If your setup depends on such forwarding, you can disable stateful filtering with the tailscale up --stateful-filtering=false command.
  • Use tab completion to type the first few letters of a Tailscale CLI command, flag, or arguments, followed by the tab key to complete the item being typed. Set up tab completion by using the tailscale completion command.
  • Use the tailscale exit-node suggest command to automatically pick an available exit node that is likely to perform best.
  • Site-to-site networking now also requires --stateful-filtering=false in addition to --snat-subnet-routes=false on new subnet routers. Existing subnet routers with --snat-subnet-routes=false will default to --stateful-filtering=false.

macOS

  • View a suggested exit node in the Exit Node picker when available.
  • Generate a macOS Configuration Report .txt file from the Bug Report view to help the Tailscale support team diagnose issues.
  • Improved error detection logic warns the user when a version mismatch is detected between the Tailscale client GUI and the network extension.

iOS

  • See direct vs. relayed connections in the Ping view.
  • View a suggested exit node in the Exit Node picker when available.
  • Use auth keys to log in without using the browser.
  • Search tagged devices by tag in the Devices list.
  • Remove accounts in the Fast User Switching view by using a long press, without having to log out.
  • Improved UI experience to log into a custom coordination server like Headscale.
  • The Fast User Switching view can now be used when Tailscale is disconnected.
  • Improved error detection logic warns the user when a version mismatch is detected between the Tailscale client GUI and the network extension.
  • Reduced app launch time.

... (truncated)

Commits
  • eae73f8 VERSION.txt: this is v1.66.3
  • 8ff13e9 version: fix macOS uploads by increasing build number prefix (#12134)
  • 78566fd VERSION.txt: this is v1.66.2
  • 9d2768a util/linuxfw: fix IPv6 availability check for nftables (#12009) (#12123)
  • 32cb8a3 ipn/ipnlocal: simplify authURL vs authURLSticky, remove interact field
  • c88abff cmd/k8s-operator,cmd/containerboot,ipn,k8s-operator: turn off stateful filter...
  • 88e23b6 VERSION.txt: this is v1.66.1
  • d77499e wgengine/router: print Docker warning when stateful filtering is enabled
  • d904990 util/linuxfw: fix table name in DelStatefulRule
  • b10ee74 cmd/tailscale: add missing set flags for linux
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 6 months ago

Superseded by #372.