mirror of
https://github.com/tailscale/tailscale.git
synced 2026-06-11 21:02:39 +08:00
85bb5f84a5
When a client starts up without being able to connect to control, it sends its discoKey to other nodes it wants to communicate with over TSMP. This disco key will be a newer key than the one control knows about. If the client that can connect to control gets a full netmap, ensure that the disco key for the node not connected to control is not overwritten with the stale key control knows about. This is implemented through keeping track of mapSession and use that for the discokey injection if it is available. This ensures that we are not constantly resetting the wireguard connection when getting the wrong keys from control. This is implemented as: - If the key is received via TSMP: - Set lastSeen for the peer to now() - Set online for the peer to false - When processing new keys, only accept keys where either: - Peer is online - lastSeen is newer than existing last seen If mapSession is not available, as in we are not yet connected to control, punt down the disco key injection to magicsock. Ideally, we will want to have mapSession be long lived at some point in the near future so we only need to inject keys in one location and then also use that for testing and loading the cache, but that is a yak for another PR. Updates #12639 Signed-off-by: Claus Lensbøl <claus@tailscale.com> |
||
|---|---|---|
| .. | ||
| appctype | ||
| bools | ||
| dnstype | ||
| empty | ||
| events | ||
| flagtype | ||
| geo | ||
| iox | ||
| ipproto | ||
| jsonx | ||
| key | ||
| lazy | ||
| logger | ||
| logid | ||
| mapx | ||
| netlogfunc | ||
| netlogtype | ||
| netmap | ||
| nettype | ||
| opt | ||
| persist | ||
| prefs | ||
| preftype | ||
| ptr | ||
| result | ||
| structs | ||
| tkatype | ||
| views | ||